Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.3.5.60 par Nicolas Coolman, Update du 12/02/2013
Run by bernard at 16/02/2013 21:03:10
State : Nouvelle version disponible
UAC : Not Found
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 17.0.1 v17.0.1
GCIE: Google Chrome Frame v23.0.1271.97 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : KO
---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (78% free)
System Restore: Activ� (Enable)
System drive C: has 109 GB (47%) free of 230 GB
---\\ Logged in mode
~ Computer Name: BERNARD-6331E9E
~ User Name: bernard
~ All Users Names: SUPPORT_388945a0, HelpAssistant, bernard, ASPNET, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\bernard\Application Data\
~ %Desktop% : C:\Documents and Settings\bernard\Bureau\
~ %Favorites% : C:\Documents and Settings\bernard\Favoris\
~ %LocalAppData% : C:\Documents and Settings\bernard\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\bernard\Menu D�marrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 109 Go of 230 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 78 Go of 932 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
H:\ Hard drive, Flash drive, Thumb drive (Free 21 Go of 233 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.13/04/2008 - 18:34:04.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.F60FB84A5F9DC64C62B5EDADD399C38B] - (.Microsoft Corporation - Internet Extensions for Win32.) (.26/12/2012 - 21:06:36.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.13/04/2008 - 18:34:30.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 10:40:32.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 11:14:22.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 10:40:48.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.13/04/2008 - 17:57:40.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 08:36:06.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.13/04/2008 - 18:00:54.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 10:41:00.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 10:57:16.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 11:19:44.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 11:21:02.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 11:15:54.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parall�le.) (.13/04/2008 - 18:09:42.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 11:19:44.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 10:32:52.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.13/04/2008 - 17:57:36.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.13/04/2008 - 17:56:06.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/274
~ Mes musiques (My Musics) : 1/704
~ Mes Favoris (My Favorites) : 1/929
~ Mes Documents (My Documents) : 2/259803
~ Mon Bureau (My Desktop) : 1/49
~ Menu demarrer (Programs) : 1/49
~ Scan Hidden Files in 05mn 07s
---\\ Processus lanc�s
[MD5.C23082B890F21267037CA6111C385FF3] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [409600] [PID.976]
[MD5.8FA553E9AE69808D99C164733A0F9590] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [44808] [PID.1436]
[MD5.A5299D04ED225D64CF07A568A3E1BF8C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55184] [PID.1732]
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.1772]
[MD5.B98EF68B1E3DC5AC79A432900947EA2D] - (...) -- C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [2561488] [PID.1788]
[MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] [PID.1844]
[MD5.136E913B1D3771B3535C3622C36B5E38] - (.Duuqu Group - Duuqu Installer.) -- C:\Program Files\Duuqu\Update\DuuquUpdate.exe [98360] [PID.2032]
[MD5.346086A99E6347C11E20D3FCBAEEAB77] - (.Teruten - FsUsbDevice.) -- C:\WINDOWS\system32\FsUsbExService.exe [238952] [PID.200]
[MD5.126A16F569122AE00AD3D12EF831D651] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [PID.692]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184] [PID.1220]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe [4297136] [PID.1852]
[MD5.916B8954AC3E06DC9E898AFFB41F3FB6] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [682344] [PID.2128]
[MD5.E319535A8124F25C1C9C5288CACF3101] - (.TomTom - Windows Service for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [92632] [PID.2236]
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [512360] [PID.2332]
[MD5.BC0EA61246F8D940FBC5F652D337D6BD] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [821648] [PID.2756]
[MD5.8906FFADDF99ACCB5C751E75E879481F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [5676032] [PID.3584]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.3216]
~ Scan Processes Running in 00mn 05s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.babylon.com
G0 - GCSP: Preference [User Data\Default] http://search.babylon.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\prefs.js
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\user.js
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\BabylonMngr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\browsemngr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\daemon-search.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\Search_Results.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\Search_Results.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\firebug@software.joehewitt.com] [] Firebug v1.11.1 (.Joe Hewitt.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\foxyseotool@foxyseotool.com] [] Foxy SEO Tool v0.8.6 (.Martin Favreau.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\ienetrenderer-nico@nc] [] IE NetRenderer v0.8.6 (.nico@nc.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\ietab@ip.cn] [] IE Tab Plus v1.94.20100904 (.quaful@msn.com.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{99079a25-328f-4bd4-be04-00955acaa0a7}] [] Searchqu Toolbar v4.6.1.01 (.Visicom Media Inc..)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{9b339f6e-ddcd-401b-8764-230adbd01761}] [] Messenger Plus Live Toolbar v2.7.2.0 (.Conduit Ltd..)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{c45c406e-ab73-11d8-be73-000a95be3b12}] [] Web Developer v1.2.2 (.Chris Pederick.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{dc572301-7619-498c-a57d-39143191b318}] [] Web Developer v1.2.2 (.Chris Pederick.)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.3".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.1.10329.0.) -- C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2852] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.46] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1662] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.46] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@www.dlmanager.net/omaha/tools//Software Update;version=8] - (.Boxore OU. - Software Update.) -- C:\Program Files\Software\Update\1.2.201.0\npSoftwareOneClick8.dll
P2 - FPN: [HKLM] [@www.duuqu.com/omaha/tools//Duuqu Update;version=3] - (.Duuqu Group - Duuqu Update.) -- C:\Program Files\Duuqu\Update\1.3.37.0\npDuuquUpdate3.dll
P2 - FPN: [HKLM] [@www.duuqu.com/omaha/tools//Duuqu Update;version=9] - (.Duuqu Group - Duuqu Update.) -- C:\Program Files\Duuqu\Update\1.3.37.0\npDuuquUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.3".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 03s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:home
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =;*.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - hpswp_printenhancer dll.) -- C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} . (.Hewlett-Packard Co. - Leo (Framework) - add-on for Internet Explo.) -- C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Cl� orpheline
O2 - BHO: CmjBrowserHelperObject Object - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} . (.Mindjet - Internet Explorer add-in.) -- C:\Program Files\Mindjet\MindManager 11\Mm8InternetExplorer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propri�taire - dtx Dynamic Link Library.) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} . (.Bandoo Media, inc - Url Helper.) -- C:\Program Files\Searchqu Toolbar\Datamngr\BrowserConnection.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} . (.Pas de propri�taire - PDFCreator Toolbar.) -- C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: ChromeFrame BHO - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} . (.Google Inc. - Chrome Frame renders the Web of the future.) -- C:\Program Files\Google\Chrome\Application\23.0.1271.97\npchrome_frame.dll
~ Scan BHO in 00mn 02s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: PDFCreator Toolbar - [HKLM]{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} . (.Pas de propri�taire - PDFCreator Toolbar.) -- C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O3 - Toolbar: IsoBuster Toolbar - [HKLM]{D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Searchqu Toolbar - [HKLM]{99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propri�taire - dtx Dynamic Link Library.) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O3 - Toolbar: (no name) - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} Cl� orpheline
~ Scan Toolbar in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Bridge CS4.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Device Central CS4.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Device Central CS4\DeviceCentral.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Encore CS4.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Encore CS4\Adobe Encore.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe ExtendScript Toolkit CS4.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit CS4\ExtendScript Toolkit.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Extension Manager CS4.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Extension Manager CS4\Adobe Extension Manager CS4.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe ImageReady CS.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\ImageReady.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Media Encoder CS4.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Media Encoder CS4\Adobe Media Encoder.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe OnLocation CS4.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe OnLocation CS4\Adobe OnLocation.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Photoshop CS.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\Photoshop.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Premiere Pro CS4.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Premiere Pro CS4\Adobe Premiere Pro.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A95000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. SA.) -- C:\Program Files\HP\Digital Imaging\DocProc\regipe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Giganews Accelerator.lnk . (.Giganews, Inc..) -- C:\Program Files\Giganews Accelerator\GiganewsAccelerator.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\SWiSH Max2.lnk . (.SWiSHzone.com Pty Ltd.) -- C:\Program Files\SWiSH Max2\SwishMax2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\Assistance � distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\User Agent String Utility.lnk . (...) -- C:\Documents and Settings\bernard\Application Data\Microsoft\Installer\{9DF095E1-8EC2-4892-8740-93769DB1E944}\_607A19AA30DDE3644FDD0
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu D�marrer\Programmes\Assistance � distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu D�marrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 11s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer � OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Envoyer � Mindjet - {2F72393D-2472-4F82-B600-ED77F354B7FF} . (...) -- C:\Program Files\Mindjet\MindManager 11\Mm6InternetExplorer.ico
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} . (.Hewlett-Packard Co. - Leo (Toolbar Extensions) - add-on for Internet Explorer.) -- C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: S�lection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} . (.Hewlett-Packard Co. - Leo (Toolbar Extensions) - add-on for Internet Explorer.) -- C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Cl� orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ((no name)) - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} ((no name)) - https://cisco.webex.com/client/T27L10NSP15/nbr/ieatgpc.cab
~ Scan Objets ActiveX in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{386676B5-5608-497E-B959-4888D92254BA}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{386676B5-5608-497E-B959-4888D92254BA}: DhcpNameServer = 212.27.40.240 212.27.40.241
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent r�seau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll
~ Scan AppInit DLL in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart (ATI Smart) . (.Pas de propri�taire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Browser Manager (Browser Manager) . (...) - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
O23 - Service: Duuqu Update Service (dqupdate) (dqupdate) . (.Duuqu Group - Duuqu Installer.) - C:\Program Files\Duuqu\Update\DuuquUpdate.exe
O23 - Service: FsUsbExService (FsUsbExService) . (.Teruten - FsUsbDevice.) - C:\WINDOWS\system32\FsUsbExService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
~ Scan Services in 00mn 10s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\avast! Emergency Update.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\DuuquUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\DuuquUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-2025429265-725345543-1004Core1cc6fc76677121a.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-2025429265-725345543-1004UA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{9995FDEC-42FA-43E5-9251-004C3ADAC994}.job
~ Scan Scheduled Task in 00mn 00s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Mise � jour de la version d�Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Lecteur Windows Media - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d�initialisation d�Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} . (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O40 - ASIC: Microsoft VM - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Microsoft Corporation - Microsoft� VM.) -- C:\WINDOWS\system32\msjava.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Lecteur Windows Media Microsoft 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\system32\themeui.dll
O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Biblioth�que d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp.inf
O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Microsoft Corporation - Biblioth�que d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: Mise � jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d�initialisation d�Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\WINDOWS\system32\mscories.dll
O40 - ASIC: (no name) - {90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB} . (...) -- C:\Program Files\Mindjet\MindManager 11\sys\MmInternetExplorerActiveSetup.vbs
O40 - ASIC: Shockwave Flash Object - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.5 r502.) -- C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_149.ocx
O40 - ASIC: Installed Component - S-1-5-21-1715567821-2025429265-725345543-1004 - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} -- Not Hexad�cimal CLSID
~ Scan Active Setup in 00mn 02s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de p�riph�rique processeur.) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vid�o VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
~ Scan Drivers in 00mn 01s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
O42 - Logiciel: AAA Logo 1.2 - (.SWGSoft.com.) [HKLM] -- AAA Logo_is1
O42 - Logiciel: ATI - Utilitaire de d�sinstallation du logiciel - (.Pas de propri�taire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Catalyst Control Center - (.Pas de propri�taire.) [HKLM] -- {2CA41BA1-9842-4819-8ABB-76FDC14AB9EA}
O42 - Logiciel: ATI Display Driver - (.Pas de propri�taire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: AVS DVDMenu Editor 1.2.1.19 - (.Online Media Technologies Ltd..) [HKLM] -- AVS DVDMenu Editor_is1
O42 - Logiciel: AVS Video Tools 5.6 - (.Online Media Technologies Ltd..) [HKLM] -- AVS Video Tools 5_is1
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
O42 - Logiciel: Adobe Anchor Service CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {1618734A-3957-4ADD-8199-F973763109A8}
O42 - Logiciel: Adobe Bridge CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {83877DB1-8B77-45BC-AB43-2BAC22E093E0}
O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {94D398EB-D2FD-4FD1-B8C4-592635E8A191}
O42 - Logiciel: Adobe CS4 American English Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}
O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_6c8e2cb4fd241c55406016127a6ab2e
O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM] -- {6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {C52E3EC1-048C-45E1-8D53-10B0C6509683}
O42 - Logiciel: Adobe Device Central CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {67F0E67A-8E93-4C2C-B29D-47C48262738A}
O42 - Logiciel: Adobe Dynamiclink Support - (.Adobe Systems Incorporated.) [HKLM] -- {60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}
O42 - Logiciel: Adobe Encore CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {5EAD5443-7194-46CC-A055-428E6ABB1BAF}
O42 - Logiciel: Adobe Encore CS4 Codecs - (.Adobe Systems Incorporated.) [HKLM] -- {FB2A5FCC-B81B-48C2-A009-7804694D83E9}
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_3e054d2218e7aa282c2369d939e58ff
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
O42 - Logiciel: Adobe ExtendScript Toolkit CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
O42 - Logiciel: Adobe Extension Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {054EFA56-2AC1-48F4-A883-0AB89874B972}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM] -- {FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
O42 - Logiciel: Adobe Media Encoder CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}
O42 - Logiciel: Adobe Media Encoder CS4 Additional Exporter - (.Adobe Systems Incorporated.) [HKLM] -- {BE9CEAAA-F069-4331-BF2F-8D350F6504F4}
O42 - Logiciel: Adobe Media Encoder CS4 Dolby - (.Adobe Systems Incorporated.) [HKLM] -- {EE353798-E875-42E0-B58D-7E6696182EA8}
O42 - Logiciel: Adobe Media Encoder CS4 Exporter - (.Adobe Systems Incorporated.) [HKLM] -- {561968FD-56A1-49FD-9ED0-F55482C7C5BC}
O42 - Logiciel: Adobe Media Encoder CS4 Importer - (.Adobe Systems Incorporated.) [HKLM] -- {8186FF34-D389-4B7E-9A2F-C197585BCFBD}
O42 - Logiciel: Adobe OnLocation CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {7406DF60-016D-476B-A2C7-55D997592047}
O42 - Logiciel: Adobe Output Module - (.Adobe Systems Incorporated.) [HKLM] -- {BB4E33EC-8181-4685-96F7-8554293DEC6A}
O42 - Logiciel: Adobe PDF Library Files CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F93C84A6-0DC6-42AF-89FA-776F7C377353}
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC}
O42 - Logiciel: Adobe Premiere Pro CS4 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_26b63376f4efc354dae41af6b5e3343
O42 - Logiciel: Adobe Premiere Pro CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {D499F8DE-3F31-4900-9157-61061613704B}
O42 - Logiciel: Adobe Premiere Pro CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {DE3BB35E-C0CE-4CA1-9CB4-CD9E69364BD9}
O42 - Logiciel: Adobe Premiere Pro CS4 Functional Content - (.Adobe Systems Incorporated.) [HKLM] -- {B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}
O42 - Logiciel: Adobe Premiere Pro CS4 Third Party Content - (.Adobe Systems Incorporated.) [HKLM] -- {C938BE91-3BB5-4B84-9EF6-88F0505D0038}
O42 - Logiciel: Adobe Reader 9.5.3 - Fran�ais - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A95000000001}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {566BB41D-F006-4956-A5D3-94D8DFFA7F51}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
O42 - Logiciel: Adobe Update Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {05308C4E-7285-4066-BAE3-6B50DA6ED755}
O42 - Logiciel: Adobe XMP Panels CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.) [HKLM] -- {16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {63EC2120-1742-4625-AA47-C6A8AEC9C64C}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {D4DDFAA1-EC37-4529-AD5B-A433ADE68662}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propri�taire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
O42 - Logiciel: AxCrypt 1.7.2931.0 - (.Axantum Software AB.) [HKLM] -- {19ABDEEB-3B53-4C40-B00C-7C2994393F19}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {95A6C0BE-BE04-462D-A623-7F98B15C1FC3}
O42 - Logiciel: Browser Manager - (.Pas de propri�taire.) [HKLM] -- {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}
O42 - Logiciel: Ciel Auto-entrepreneur Facile 1.40 - (.Ciel.) [HKLM] -- {AF86BA3B-B465-4E12-B771-E12208FDB89B}
O42 - Logiciel: Ciel Compta 16.0 - (.Ciel.) [HKLM] -- {F3BCE8FA-0EE2-4628-BF02-AB5AF4077997}
O42 - Logiciel: Ciel Gestion Commerciale 16.0 - (.Ciel.) [HKLM] -- {EFABFA23-0807-4BB3-8375-BE04923A5E37}
O42 - Logiciel: Ciel Immobilisations 16.0 - (.Ciel.) [HKLM] -- {83BB956C-103E-4D36-823D-A2A640DFAF06}
O42 - Logiciel: Ciel Paye 16.00 - (.CIEL.) [HKLM] -- {CB004EB8-C6DD-4908-8D49-C8ABA082B346}
O42 - Logiciel: Creative WebCam Center - (.Pas de propri�taire.) [HKLM] -- Creative WebCam Center
O42 - Logiciel: Creative WebCam Live! Driver (1.01.01.0730) - (.Pas de propri�taire.) [HKLM] -- Creative PD0630
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Dell Resource CD - (.Nom de votre soci�t�.) [HKLM] -- {42929F0F-CE14-47AF-9FC7-FF297A603021}
O42 - Logiciel: Dream Pinball 3D - (.TopWare Interactive Inc..) [HKLM] -- Dream Pinball 3D
O42 - Logiciel: EasyPHP 1.8 - (.Pas de propri�taire.) [HKLM] -- EasyPHP_is1
O42 - Logiciel: FileZilla (remove only) - (.Pas de propri�taire.) [HKLM] -- FileZilla
O42 - Logiciel: FrameFox Extensions 1.0.8.0 - (.QwertyBox Team.) [HKLM] -- {F842523D-0F22-4A00-A523-BA14655A4155}
O42 - Logiciel: Free M4a to MP3 Converter 5.9 - (.ManiacTools.com.) [HKLM] -- Free M4a to MP3 Converter_is1
O42 - Logiciel: Free Mp3 Wma Converter V 1.4.0 - (.Renan Broquin.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Free Video Converter V 3.1 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1
O42 - Logiciel: Free Video Flip and Rotate version 2.1.5.1212 - (.DVDVideoSoft Ltd..) [HKLM] -- Free Video Flip and Rotate_is1
O42 - Logiciel: FreeMind - (.Pas de propri�taire.) [HKLM] -- B991B020-2968-11D8-AF23-444553540000_is1
O42 - Logiciel: GameHouse Sudoku - (.GameHouse, Inc..) [HKLM] -- GameHouse Sudoku
O42 - Logiciel: Giganews Accelerator - (.Giganews.) [HKLM] -- {E7300AF3-DD5B-4E86-A291-7631BE0C62C7}
O42 - Logiciel: Glary Utilities 2.53.0.1726 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Chrome Frame - (.Google Inc..) [HKLM] -- Google Chrome Frame
O42 - Logiciel: Google�Earth - (.Google.) [HKLM] -- {28E82311-8616-11E1-BEB0-B8AC6F97B88E}
O42 - Logiciel: GrabIt 1.7.2 Beta 6 (build 1008) - (.Ilan Shemes.) [HKLM] -- GrabIt_is1
O42 - Logiciel: HP OCR Software 9.0 - (.HP.) [HKLM] -- HPOCR
O42 - Logiciel: HP Photosmart All-In-One Software 9.0 - (.HP.) [HKLM] -- {B46AC30C-22D2-4610-B041-1DA7BB29EB57}
O42 - Logiciel: HP Smart Web Printing - (.Nom de votre soci�t�.) [HKLM] -- {415CDA53-9100-476F-A7B2-476691E117C7}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {8C6027FD-53DC-446D-BB75-CACD7028A134}
O42 - Logiciel: HPSSupply - (.Nom de votre soci�t�.) [HKLM] -- {487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}
O42 - Logiciel: High Definition Audio Driver Package - KB888111 - (.Microsoft Corporation.) [HKLM] -- KB888111WXPSP2
O42 - Logiciel: Hitori Sudoku - (.Mindscape.) [HKLM] -- {2B2DACCB-0C84-4C1A-B224-2CAEE250EF9F}
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Installer Yahoo! Messenger - (.Pas de propri�taire.) [HKLM] -- Get Yahoo! Messenger
O42 - Logiciel: Intel(R) PRO Network Connections 12.1.12.0 - (.Intel.) [HKLM] -- {777CA40C-0206-4EF6-A0FC-618BF06BF8D0}
O42 - Logiciel: Internet Explorer (Enable DEP) - (.Pas de propri�taire.) [HKLM] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9}
O42 - Logiciel: IsoBuster 2.5.5 - (.Smart Projects.) [HKLM] -- IsoBuster_is1
O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216012FF}
O42 - Logiciel: Java(TM) 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}
O42 - Logiciel: MSN - (.Pas de propri�taire.) [HKLM] -- MSNINST
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 6.0 Parser - (.Microsoft Corporation.) [HKLM] -- {AEB9948B-4FF2-47C9-990E-47014492A0FE}
O42 - Logiciel: Macromedia Dreamweaver 8 - (.Macromedia.) [HKLM] -- {0837A661-FEC3-48B3-876C-91E7D32048A9}
O42 - Logiciel: Macromedia Extension Manager - (.Macromedia, Inc..) [HKLM] -- {5546CDB5-2CE2-498B-B059-5B3BF81FC41F}
O42 - Logiciel: Macromedia Flash 8 - (.Macromedia.) [HKLM] -- {2BD5C305-1B27-4D41-B690-7A61172D2FEB}
O42 - Logiciel: Macromedia Flash 8 Video Encoder - (.Macromedia.) [HKLM] -- {8BF2C401-02CE-424D-BC26-6C4F9FB446B6}
O42 - Logiciel: Magic ISO Maker v5.5 (build 0276) - (.Pas de propri�taire.) [HKLM] -- Magic ISO Maker v5.5 (build 0276)
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM] -- Messenger Plus! Live
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Mindjet - (.Mindjet.) [HKLM] -- {1BDEB9AD-A0ED-4F59-AD04-416A35FCB15B}
O42 - Logiciel: MobileMe Control Panel - (.Apple Inc..) [HKLM] -- {BA165460-FCF7-4D6C-A7A2-F2321700720F}
O42 - Logiciel: Mozilla Firefox 17.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 17.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: MyFreeCodec - (.Pas de propri�taire.) [HKCU] -- MyFreeCodec
O42 - Logiciel: Notepad++ - (.Pas de propri�taire.) [HKLM] -- Notepad++
O42 - Logiciel: OpenOffice.org 3.0 - (.OpenOffice.org.) [HKLM] -- {6860B340-530D-46B3-91F8-1AE1F70F7C33}
O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM] -- {AC599724-5755-48C1-ABE7-ABB857652930}
O42 - Logiciel: PDF-XChange 3 - (.Tracker Software.) [HKLM] -- PDF-XChange 3_is1
O42 - Logiciel: PDFCreator - (.Frank Heind�rfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: PDFCreator Toolbar - (.Pas de propri�taire.) [HKLM] -- PDFCreator Toolbar
O42 - Logiciel: PPT2Flash Professional - (.Wondershare Software.) [HKLM] -- Wondershare PPT2Flash Professional(Build 3.2.2.2)_is1
O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) - (.Nokia.) [HKLM] -- 3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F
O42 - Logiciel: Photoshop Camera Raw - (.Adobe Systems Incorporated.) [HKLM] -- {CC75AB5C-2110-4A7F-AF52-708680D22FE8}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: Quick Zip 4.60.019 - (.Joseph Leung.) [HKLM] -- Quick Zip_is1
O42 - Logiciel: QuickPar 0.9 - (.Peter B. Clements.) [HKLM] -- QuickPar
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {C9E14402-3631-4182-B377-6B0DFB1C0339}
O42 - Logiciel: QwertyBox 1.0.3.0 - (.QwertyBox Team.) [HKLM] -- {836B2544-9D21-4C69-BC3A-FF5E6320B5A9}
O42 - Logiciel: Real Alternative 1.8.2 - (.Pas de propri�taire.) [HKLM] -- RealAlt_is1
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva
O42 - Logiciel: SAMSUNG SYMBIAN USB Download Driver - (.SAMSUNG Electronics CO,.LTD.) [HKLM] -- {D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: SWiSH Max2 - (.Pas de propri�taire.) [HKLM] -- SWiSH Max2
O42 - Logiciel: SafeFax 3.0.999 - (.Alliance MCA.) [HKLM] -- SafeFax_is1
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97}
O42 - Logiciel: Samsung PC Studio 3 USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM] -- {EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}
O42 - Logiciel: SamsungConnectivityCableDriver - (.Samsung.) [HKLM] -- {7E84FAC8-C518-40F9-9807-7455301D6D25}
O42 - Logiciel: Searchqu Toolbar - (.Bandoo Media Inc.) [HKLM] -- Searchqu Toolbar
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Signal Spam Addin Outlook 2007 - (.Signal Spam.) [HKLM] -- {2770A92E-A60B-4F5F-A82E-F2EF4AD5D2C6}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Suite Shared Configuration CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {842B4B72-9E8F-4962-B3C1-1C422A5C4434}
O42 - Logiciel: TomTom HOME - (.Nom de votre soci�t�.) [HKLM] -- {9017CEAF-BE5A-4F73-8A0E-C87E26971E55}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: User Agent String Utility - (.Microsoft.) [HKLM] -- {9DF095E1-8EC2-4892-8740-93769DB1E944}
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: WinDjView 1.0.3 - (.Andrew Zhezherun.) [HKLM] -- WinDjView
O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propri�taire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows PowerShell(TM) 1.0 - (.Microsoft Corporation.) [HKLM] -- KB926139-v2
O42 - Logiciel: Windows XP Service Pack�3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: dBpowerAMP FLAC Codec - (.Pas de propri�taire.) [HKLM] -- dBpowerAMP FLAC Codec
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {0F6F6876-6334-4977-B5DD-CFC12E193420}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: �Torrent - (.Pas de propri�taire.) [HKCU] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\5a28ad8e139e549]
[HKCU\Software\AAA_LOGO]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ASK Homework]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS]
[HKCU\Software\Adobe]
[HKCU\Software\Alliance MCA]
[HKCU\Software\Andrew Zhezherun]
[HKCU\Software\AppDataLow\AskToolbarInfo]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ask.com]
[HKCU\Software\AskToolbar]
[HKCU\Software\Aurigma]
[HKCU\Software\Axantum]
[HKCU\Software\BitTorrent]
[HKCU\Software\BrowserMngr]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\Convar]
[HKCU\Software\Creative Tech]
[HKCU\Software\DT Soft]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\Dell Computer Corporation]
[HKCU\Software\Digital River]
[HKCU\Software\DivXNetworks]
[HKCU\Software\Duuqu]
[HKCU\Software\Fastlane]
[HKCU\Software\FileZilla]
[HKCU\Software\Gabest]
[HKCU\Software\GameHouse]
[HKCU\Software\Giganews, Inc.]
[HKCU\Software\Giganews]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\Illustrate]
[HKCU\Software\InstallCore]
[HKCU\Software\Intel]
[HKCU\Software\Iris]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\MagicISO]
[HKCU\Software\MainConcept (Adobe2)]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\ManiacTools]
[HKCU\Software\Mindjet]
[HKCU\Software\Mobileleader]
[HKCU\Software\Monitored]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Myfree Codec]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PDFCreator]
[HKCU\Software\Patchou]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\QuickPar]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SWiSHzone.com]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Sage]
[HKCU\Software\Samsung]
[HKCU\Software\Shemes]
[HKCU\Software\Smart Projects]
[HKCU\Software\SpoonInstall]
[HKCU\Software\TeleCharger]
[HKCU\Software\TomTom]
[HKCU\Software\Tracker Software]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VirtualDub.org]
[HKCU\Software\Webex]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\WonderShare]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\mozilla]
[HKCU\Software\pdfforge.org]
[HKCU\Software\searchqutoolbar]
[HKCU\Software\settings]
[HKCU\Software\?? ?? ???? ????? ??? ?? ????]
[HKLM\Software\5a28ad8e139e549]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\AVS4YOU]
[HKLM\Software\AVS]
[HKLM\Software\ActiveTouch]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Axantum]
[HKLM\Software\BrowserMngr]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Creative Tech]
[HKLM\Software\DEVGURU]
[HKLM\Software\DT Soft]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\DataMngr]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Duuqu]
[HKLM\Software\GEAR Software]
[HKLM\Software\Gabest]
[HKLM\Software\Gemplus]
[HKLM\Software\GlarySoft]
[HKLM\Software\Global IP Solutions]
[HKLM\Software\Google]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\MCCI]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MarkAny]
[HKLM\Software\McAfee.com]
[HKLM\Software\Mindjet]
[HKLM\Software\Mindscape]
[HKLM\Software\Minnetonka Audio Software]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Myfree Codec]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PC Connectivity Solution]
[HKLM\Software\PCSuite]
[HKLM\Software\Patchou]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RealAlternative]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SWiSHzone.com]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sage]
[HKLM\Software\Samsung]
[HKLM\Software\Schlumberger]
[HKLM\Software\SearchquMediabarTb]
[HKLM\Software\Sierra On-Line]
[HKLM\Software\Software FX, Inc.]
[HKLM\Software\Software]
[HKLM\Software\Sonic]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\TomTom]
[HKLM\Software\Tracker Software]
[HKLM\Software\Ushustech]
[HKLM\Software\VideoLAN]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\WonderShare]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
[HKLM\Software\pdfforge.org]
[HKLM\Software\tpfmon]
~ Scan Softwares in 00mn 01s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 31/10/2008 - 11:40:46 - [30,274] ----D C:\Program Files\AAALOGO
O43 - CFD: 12/10/2010 - 15:34:52 - [-1907,242] ----D C:\Program Files\Adobe
O43 - CFD: 02/12/2010 - 10:27:25 - [14,717] ----D C:\Program Files\Alliance MCA
O43 - CFD: 07/02/2010 - 07:08:54 - [390,566] ----D C:\Program Files\Alwil Software
O43 - CFD: 27/08/2011 - 21:17:19 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 13/04/2010 - 14:12:57 - [1,434] ----D C:\Program Files\Ask.com
O43 - CFD: 24/10/2008 - 09:45:30 - [130,759] ----D C:\Program Files\ATI Technologies
O43 - CFD: 28/06/2010 - 13:05:06 - [81,493] ----D C:\Program Files\AVSMedia
O43 - CFD: 05/02/2013 - 22:04:30 - [2,430] ----D C:\Program Files\Axantum
O43 - CFD: 06/10/2012 - 10:47:51 - [0,602] ----D C:\Program Files\Bonjour
O43 - CFD: 16/02/2013 - 12:14:05 - [0] ----D C:\Program Files\Boxore
O43 - CFD: 21/08/2010 - 19:17:45 - [354,733] ----D C:\Program Files\Ciel
O43 - CFD: 24/10/2008 - 08:41:34 - [0] ----D C:\Program Files\ComPlus Applications
O43 - CFD: 15/01/2010 - 18:54:35 - [0,497] ----D C:\Program Files\Conduit
O43 - CFD: 07/02/2011 - 19:31:35 - [6,869] ----D C:\Program Files\Convar
O43 - CFD: 07/01/2009 - 10:00:00 - [16,797] ----D C:\Program Files\Creative
O43 - CFD: 07/09/2012 - 19:36:58 - [25,441] ----D C:\Program Files\DAEMON Tools Lite
O43 - CFD: 24/10/2008 - 09:31:01 - [0] ----D C:\Program Files\Dell
O43 - CFD: 28/08/2010 - 10:29:27 - [4,296] ----D C:\Program Files\DIFX
O43 - CFD: 26/11/2012 - 14:20:56 - [3,324] ----D C:\Program Files\Duuqu
O43 - CFD: 20/12/2012 - 11:19:18 - [4,141] ----D C:\Program Files\DVDVideoSoft
O43 - CFD: 19/08/2010 - 22:11:46 - [95,420] ----D C:\Program Files\EasyPHP1-8
O43 - CFD: 23/10/2010 - 19:53:54 - [219,525] ----D C:\Program Files\EasyPHP5.2.10
O43 - CFD: 21/08/2011 - 14:42:14 - [409,260] ----D C:\Program Files\eMule
O43 - CFD: 08/05/2010 - 16:33:28 - [0,049] ----D C:\Program Files\Fastlane
O43 - CFD: 20/12/2012 - 11:19:18 - [1285,401] ----D C:\Program Files\Fichiers communs
O43 - CFD: 13/12/2010 - 10:25:10 - [12,157] ----D C:\Program Files\FileZilla
O43 - CFD: 26/11/2012 - 14:22:16 - [0,274] ----D C:\Program Files\FrameFox
O43 - CFD: 11/11/2008 - 12:59:48 - [11,233] ----D C:\Program Files\Free Audio Pack
O43 - CFD: 08/10/2009 - 16:20:47 - [2,559] ----D C:\Program Files\Free M4a to MP3 Converter
O43 - CFD: 06/10/2012 - 13:10:29 - [10,901] ----D C:\Program Files\Free Video Converter
O43 - CFD: 02/11/2012 - 08:49:11 - [16,071] ----D C:\Program Files\FreeMind
O43 - CFD: 13/04/2010 - 14:12:58 - [3,659] ----D C:\Program Files\GameHouse
O43 - CFD: 22/02/2010 - 19:01:26 - [1,035] ----D C:\Program Files\Giganews Accelerator
O43 - CFD: 14/02/2013 - 09:51:15 - [18,836] ----D C:\Program Files\Glary Utilities
O43 - CFD: 07/01/2013 - 13:41:47 - [521,172] ----D C:\Program Files\Google
O43 - CFD: 22/11/2011 - 19:26:24 - [7,749] ----D C:\Program Files\GrabIt
O43 - CFD: 24/10/2008 - 17:38:40 - [0] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 24/10/2008 - 17:40:39 - [198,923] ----D C:\Program Files\HP
O43 - CFD: 11/11/2008 - 12:52:58 - [8,275] ----D C:\Program Files\Illustrate
O43 - CFD: 08/12/2012 - 16:14:16 - [53,051] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 24/10/2008 - 09:43:22 - [7,599] ----D C:\Program Files\Intel
O43 - CFD: 13/02/2013 - 11:34:51 - [8,684] ----D C:\Program Files\Internet Explorer
O43 - CFD: 06/10/2012 - 10:53:40 - [2,258] ----D C:\Program Files\iPod
O43 - CFD: 06/10/2012 - 10:54:50 - [145,931] ----D C:\Program Files\iTunes
O43 - CFD: 22/08/2010 - 16:34:52 - [148,783] ----D C:\Program Files\Java
O43 - CFD: 30/10/2008 - 20:31:51 - [15,244] ----D C:\Program Files\JRE
O43 - CFD: 08/06/2010 - 17:18:32 - [328,623] ----D C:\Program Files\Macromedia
O43 - CFD: 24/12/2009 - 13:58:01 - [2,960] ----D C:\Program Files\MagicISO
O43 - CFD: 16/02/2013 - 11:25:36 - [12,157] ----D C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 28/08/2010 - 10:28:45 - [2,414] ----D C:\Program Files\MarkAny
O43 - CFD: 24/10/2008 - 20:47:55 - [2,053] ----D C:\Program Files\Messenger
O43 - CFD: 15/01/2010 - 19:07:48 - [12,648] ----D C:\Program Files\Messenger Plus! Live
O43 - CFD: 20/04/2012 - 06:35:58 - [0,718] ----D C:\Program Files\Microsoft
O43 - CFD: 24/10/2008 - 08:44:15 - [0] ----D C:\Program Files\microsoft frontpage
O43 - CFD: 01/07/2011 - 17:47:01 - [667,076] ----D C:\Program Files\Microsoft Office
O43 - CFD: 11/05/2012 - 06:46:38 - [36,641] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 04/10/2010 - 11:10:57 - [0,268] ----D C:\Program Files\Microsoft User Agent String Utility
O43 - CFD: 01/03/2010 - 19:48:57 - [0,014] ----D C:\Program Files\Microsoft Visual Studio
O43 - CFD: 01/03/2010 - 19:45:22 - [1,323] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 03/03/2010 - 08:25:01 - [3,554] ----D C:\Program Files\Microsoft Works
O43 - CFD: 02/11/2012 - 09:08:56 - [7,797] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 02/11/2012 - 10:01:40 - [236,594] ----D C:\Program Files\Mindjet
O43 - CFD: 17/10/2012 - 13:09:47 - [68,135] ----D C:\Program Files\Mindscape
O43 - CFD: 12/08/2010 - 04:46:09 - [9,894] ----D C:\Program Files\Movie Maker
O43 - CFD: 07/02/2013 - 11:05:05 - [44,368] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 02/01/2013 - 10:51:08 - [0,212] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 01/03/2010 - 19:27:52 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 21/11/2008 - 10:30:58 - [28,414] ----D C:\Program Files\MSECache
O43 - CFD: 25/05/2009 - 22:01:52 - [20,477] ----D C:\Program Files\MSN
O43 - CFD: 24/10/2008 - 08:41:03 - [0] ----D C:\Program Files\MSN Gaming Zone
O43 - CFD: 24/10/2008 - 20:45:27 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 08/12/2012 - 17:35:14 - [10,585] ----D C:\Program Files\MyFree Codec
O43 - CFD: 24/10/2008 - 17:08:36 - [3,133] ----D C:\Program Files\NetMeeting
O43 - CFD: 05/06/2010 - 15:42:07 - [8,739] ----D C:\Program Files\Notepad++
O43 - CFD: 24/10/2008 - 08:41:09 - [0,002] ----D C:\Program Files\Online Services
O43 - CFD: 30/10/2008 - 20:31:49 - [337,930] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 15/12/2010 - 23:17:33 - [4,176] ----D C:\Program Files\Outlook Express
O43 - CFD: 28/08/2010 - 10:28:43 - [9,319] ----D C:\Program Files\PC Connectivity Solution
O43 - CFD: 24/10/2008 - 13:31:11 - [32,307] ----D C:\Program Files\PDFCreator
O43 - CFD: 24/10/2008 - 13:31:03 - [0,973] ----D C:\Program Files\PDFCreator Toolbar
O43 - CFD: 08/12/2009 - 18:42:47 - [0,987] ----D C:\Program Files\QuickPar
O43 - CFD: 27/08/2011 - 21:19:06 - [76,969] ----D C:\Program Files\QuickTime
O43 - CFD: 24/10/2008 - 13:34:54 - [11,219] ----D C:\Program Files\QuickZip4
O43 - CFD: 26/11/2012 - 14:22:48 - [1,196] ----D C:\Program Files\QwertyBox
O43 - CFD: 24/10/2008 - 13:13:48 - [20,407] ----D C:\Program Files\Real Alternative
O43 - CFD: 24/10/2008 - 09:55:40 - [14,271] ----D C:\Program Files\Realtek
O43 - CFD: 07/02/2011 - 19:34:01 - [1,908] ----D C:\Program Files\Recuva
O43 - CFD: 21/11/2009 - 05:30:14 - [34,730] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 21/08/2010 - 12:49:01 - [1,090] ----D C:\Program Files\RegCleaner
O43 - CFD: 08/12/2012 - 16:12:32 - [753,129] ----D C:\Program Files\Samsung
O43 - CFD: 06/10/2012 - 13:09:56 - [20,101] ----D C:\Program Files\Searchqu Toolbar
O43 - CFD: 24/10/2008 - 08:42:55 - [0,001] ----D C:\Program Files\Services en ligne
O43 - CFD: 13/01/2011 - 09:36:16 - [0,268] ----D C:\Program Files\Signal Spam
O43 - CFD: 28/08/2009 - 14:19:49 - [8,916] ----D C:\Program Files\Smart Projects
O43 - CFD: 06/10/2012 - 13:07:44 - [2,858] ----D C:\Program Files\Software
O43 - CFD: 03/12/2009 - 07:45:23 - [75,388] ----D C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 20/04/2010 - 10:57:01 - [57,818] ----D C:\Program Files\SWiSH Max2
O43 - CFD: 21/08/2012 - 11:24:41 - [0] ----D C:\Program Files\TomTom DesktopSuite
O43 - CFD: 21/08/2012 - 11:30:47 - [48,411] ----D C:\Program Files\TomTom HOME 2
O43 - CFD: 21/08/2012 - 11:25:34 - [0,021] ----D C:\Program Files\TomTom International B.V
O43 - CFD: 07/09/2012 - 19:50:57 - [754,191] ----D C:\Program Files\TopWare
O43 - CFD: 24/10/2008 - 09:04:38 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 10/12/2008 - 16:21:57 - [19,176] ----D C:\Program Files\uTorrent
O43 - CFD: 24/10/2008 - 13:16:19 - [75,345] ----D C:\Program Files\VideoLAN
O43 - CFD: 01/11/2012 - 12:22:42 - [1,725] ----D C:\Program Files\WinDjView
O43 - CFD: 20/11/2009 - 08:10:42 - [59,062] ----D C:\Program Files\Windows Live
O43 - CFD: 20/11/2009 - 08:07:30 - [0,234] ----D C:\Program Files\Windows Live SkyDrive
O43 - CFD: 08/12/2012 - 16:09:54 - [4,962] ----D C:\Program Files\Windows Media Player
O43 - CFD: 19/08/2010 - 22:03:42 - [0] ----D C:\Program Files\Windows NT
O43 - CFD: 24/10/2008 - 08:42:58 - [0] --H-D C:\Program Files\WindowsUpdate
O43 - CFD: 24/10/2008 - 13:39:24 - [3,362] ----D C:\Program Files\WinRAR
O43 - CFD: 08/06/2010 - 16:37:47 - [17,495] ----D C:\Program Files\Wondershare
O43 - CFD: 24/10/2008 - 08:44:15 - [0] ----D C:\Program Files\xerox
O43 - CFD: 16/02/2013 - 21:08:28 - [11,466] ----D C:\Program Files\ZHPDiag
O43 - CFD: 18/02/2012 - 07:08:29 - [649,839] ----D C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 21/06/2010 - 12:20:14 - [26,106] ----D C:\Program Files\Fichiers communs\Adobe AIR
O43 - CFD: 06/10/2012 - 10:53:39 - [118,009] ----D C:\Program Files\Fichiers communs\Apple
O43 - CFD: 28/06/2010 - 13:05:45 - [49,200] ----D C:\Program Files\Fichiers communs\AVSMedia
O43 - CFD: 26/07/2010 - 10:14:41 - [26,626] ----D C:\Program Files\Fichiers communs\Ciel
O43 - CFD: 01/03/2010 - 19:48:57 - [0,089] ----D C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 20/12/2012 - 11:19:23 - [56,582] ----D C:\Program Files\Fichiers communs\DVDVideoSoft
O43 - CFD: 24/10/2008 - 17:38:31 - [0,436] ----D C:\Program Files\Fichiers communs\Hewlett-Packard
O43 - CFD: 24/10/2008 - 17:38:58 - [4,768] ----D C:\Program Files\Fichiers communs\HP
O43 - CFD: 24/10/2008 - 09:55:34 - [14,614] ----D C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 22/08/2010 - 16:35:26 - [30,839] ----D C:\Program Files\Fichiers communs\Java
O43 - CFD: 31/10/2008 - 11:25:22 - [0,957] ----D C:\Program Files\Fichiers communs\Macromedia
O43 - CFD: 21/06/2010 - 12:13:16 - [0,626] ----D C:\Program Files\Fichiers communs\Macrovision Shared
O43 - CFD: 28/03/2012 - 20:04:02 - [243,453] ----D C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 24/10/2008 - 08:42:12 - [0,893] ----D C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 28/12/2009 - 13:09:06 - [0] ----D C:\Program Files\Fichiers communs\Nero
O43 - CFD: 24/10/2008 - 10:34:47 - [0] ----D C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 26/07/2010 - 10:11:36 - [0,586] ----D C:\Program Files\Fichiers communs\Sage
O43 - CFD: 24/10/2008 - 08:42:16 - [0,008] ----D C:\Program Files\Fichiers communs\Services
O43 - CFD: 24/10/2008 - 10:34:44 - [3,612] ----D C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 20/04/2010 - 09:28:31 - [0,059] ----D C:\Program Files\Fichiers communs\SWiSHzone.com
O43 - CFD: 11/07/2012 - 07:17:02 - [39,746] ----D C:\Program Files\Fichiers communs\System
O43 - CFD: 13/11/2009 - 19:09:53 - [0] ----D C:\Program Files\Fichiers communs\Windows Live
O43 - CFD: 26/10/2008 - 15:42:16 - [18,356] -SH-D C:\Program Files\Fichiers communs\WindowsLiveInstaller
O43 - CFD: 16/02/2013 - 11:25:30 - [-1021,988] R-H-D C:\Documents and Settings\All Users\Application Data
O43 - CFD: 16/02/2013 - 11:25:32 - [0,003] ----D C:\Documents and Settings\All Users\Bureau
O43 - CFD: 28/01/2013 - 14:03:22 - [8,557] R---D C:\Documents and Settings\All Users\Documents
O43 - CFD: 07/01/2013 - 15:34:31 - [0,377] -SH-D C:\Documents and Settings\All Users\DRM
O43 - CFD: 24/10/2008 - 10:34:23 - [0] ----D C:\Documents and Settings\All Users\Favoris
O43 - CFD: 02/11/2012 - 10:02:16 - [0,332] R---D C:\Documents and Settings\All Users\Menu D�marrer
O43 - CFD: 02/11/2012 - 10:02:14 - [0,032] --H-D C:\Documents and Settings\All Users\Mod�les
O43 - CFD: 11/11/2008 - 12:53:03 - [0] ----D C:\Documents and Settings\bernard\Application Data\AccurateRip
O43 - CFD: 07/02/2013 - 12:44:04 - [56,132] ----D C:\Documents and Settings\bernard\Application Data\Adobe
O43 - CFD: 06/10/2012 - 14:26:34 - [37,831] ----D C:\Documents and Settings\bernard\Application Data\Apple Computer
O43 - CFD: 24/10/2008 - 10:54:24 - [0] ----D C:\Documents and Settings\bernard\Application Data\ATI
O43 - CFD: 13/10/2010 - 20:09:26 - [0,000] ----D C:\Documents and Settings\bernard\Application Data\AVSMedia
O43 - CFD: 07/01/2009 - 10:05:22 - [0,001] ----D C:\Documents and Settings\bernard\Application Data\Creative
O43 - CFD: 08/09/2012 - 12:27:56 - [1,049] ----D C:\Documents and Settings\bernard\Application Data\DAEMON Tools Lite
O43 - CFD: 20/01/2013 - 16:54:22 - [0,002] ----D C:\Documents and Settings\bernard\Application Data\dvdcss
O43 - CFD: 20/12/2012 - 11:19:32 - [0,148] ----D C:\Documents and Settings\bernard\Application Data\DVDVideoSoft
O43 - CFD: 21/08/2010 - 11:33:57 - [0,271] ----D C:\Documents and Settings\bernard\Application Data\ElevatedDiagnostics
O43 - CFD: 26/12/2012 - 16:37:26 - [0,001] ----D C:\Documents and Settings\bernard\Application Data\FreeVideoConverter
O43 - CFD: 28/06/2010 - 12:58:40 - [0,089] ----D C:\Documents and Settings\bernard\Application Data\GlarySoft
O43 - CFD: 11/12/2010 - 13:05:21 - [0,075] ----D C:\Documents and Settings\bernard\Application Data\Google
O43 - CFD: 14/02/2013 - 14:13:28 - [135,056] ----D C:\Documents and Settings\bernard\Application Data\GrabIt
O43 - CFD: 05/07/2010 - 14:09:59 - [0,050] ----D C:\Documents and Settings\bernard\Application Data\HP
O43 - CFD: 24/10/2008 - 17:40:34 - [0,063] ----D C:\Documents and Settings\bernard\Application Data\HPAppData
O43 - CFD: 24/10/2008 - 09:04:39 - [0] ----D C:\Documents and Settings\bernard\Application Data\Identities
O43 - CFD: 08/06/2010 - 17:21:31 - [4,794] ----D C:\Documents and Settings\bernard\Application Data\Macromedia
O43 - CFD: 16/02/2013 - 11:25:45 - [0,014] ----D C:\Documents and Settings\bernard\Application Data\Malwarebytes
O43 - CFD: 21/11/2008 - 16:54:21 - [0,000] ----D C:\Documents and Settings\bernard\Application Data\Media Player Classic
O43 - CFD: 11/06/2012 - 16:41:14 - [7,961] -S--D C:\Documents and Settings\bernard\Application Data\Microsoft
O43 - CFD: 24/10/2008 - 12:52:39 - [38,441] ----D C:\Documents and Settings\bernard\Application Data\Mozilla
O43 - CFD: 27/12/2009 - 10:39:04 - [0,454] ----D C:\Documents and Settings\bernard\Application Data\Nero
O43 - CFD: 21/04/2010 - 06:48:56 - [0,107] ----D C:\Documents and Settings\bernard\Application Data\Notepad++
O43 - CFD: 05/02/2013 - 22:03:26 - [0,288] ----D C:\Documents and Settings\bernard\Application Data\OpenCandy
O43 - CFD: 30/10/2008 - 20:33:17 - [2,452] ----D C:\Documents and Settings\bernard\Application Data\OpenOffice.org
O43 - CFD: 30/01/2010 - 19:41:22 - [0,000] ----D C:\Documents and Settings\bernard\Application Data\PC Suite
O43 - CFD: 06/11/2008 - 17:56:16 - [0,001] ----D C:\Documents and Settings\bernard\Application Data\Real
O43 - CFD: 08/12/2012 - 16:55:18 - [75,460] ----D C:\Documents and Settings\bernard\Application Data\Samsung
O43 - CFD: 06/10/2012 - 13:10:46 - [0] ----D C:\Documents and Settings\bernard\Application Data\searchquband
O43 - CFD: 06/10/2012 - 13:11:22 - [0,014] ----D C:\Documents and Settings\bernard\Application Data\searchqutoolbar
O43 - CFD: 30/10/2008 - 20:31:08 - [104,109] ----D C:\Documents and Settings\bernard\Application Data\Sun
O43 - CFD: 21/08/2012 - 11:26:44 - [3,481] ----D C:\Documents and Settings\bernard\Application Data\TomTom
O43 - CFD: 30/11/2012 - 15:41:00 - [49,936] ----D C:\Documents and Settings\bernard\Application Data\uTorrent
O43 - CFD: 16/02/2013 - 12:49:22 - [5,694] ----D C:\Documents and Settings\bernard\Application Data\vlc
O43 - CFD: 24/10/2008 - 13:39:37 - [0] ----D C:\Documents and Settings\bernard\Application Data\WinRAR
O43 - CFD: 23/06/2010 - 09:27:17 - [272,421] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Adobe
O43 - CFD: 24/10/2008 - 13:32:23 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Apple
O43 - CFD: 28/01/2010 - 13:07:49 - [72,901] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Apple Computer
O43 - CFD: 25/10/2008 - 15:45:11 - [0,001] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 28/08/2009 - 14:30:36 - [0,181] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\AskToolbar
O43 - CFD: 13/01/2011 - 09:38:38 - [0,067] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\assembly
O43 - CFD: 24/10/2008 - 10:54:24 - [0,010] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\ATI
O43 - CFD: 27/02/2010 - 10:31:20 - [0,016] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Conduit
O43 - CFD: 12/06/2010 - 11:01:29 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Deployment
O43 - CFD: 21/08/2012 - 11:29:37 - [227,885] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 07/01/2013 - 13:43:45 - [-1049,126] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Google
O43 - CFD: 28/01/2012 - 15:33:48 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Help
O43 - CFD: 13/04/2009 - 12:00:14 - [1,804] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\HP
O43 - CFD: 24/01/2009 - 16:21:55 - [0,216] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Identities
O43 - CFD: 28/10/2008 - 07:21:52 - [33,915] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Installer260
O43 - CFD: 28/10/2008 - 07:25:14 - [30,447] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Installer3132
O43 - CFD: 08/06/2010 - 17:21:33 - [7,282] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Macromedia
O43 - CFD: 08/12/2012 - 16:39:49 - [-1329,048] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Microsoft
O43 - CFD: 13/01/2011 - 09:38:38 - [0,000] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Microsoft Corporation
O43 - CFD: 28/02/2010 - 16:18:31 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Microsoft Help
O43 - CFD: 02/11/2012 - 10:03:22 - [15,263] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Mindjet
O43 - CFD: 24/10/2008 - 12:52:38 - [134,952] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Mozilla
O43 - CFD: 27/12/2009 - 21:56:03 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Nero
O43 - CFD: 28/06/2010 - 08:29:39 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\PCHealth
O43 - CFD: 13/02/2013 - 20:58:50 - [0,476] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\QuickPar
O43 - CFD: 24/10/2008 - 13:13:45 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Real
O43 - CFD: 08/12/2012 - 16:54:56 - [0,032] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Samsung
O43 - CFD: 06/10/2012 - 13:13:00 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Software
O43 - CFD: 06/10/2012 - 13:13:33 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Temp
O43 - CFD: 21/08/2012 - 11:26:44 - [1,899] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\TomTom
O43 - CFD: 23/06/2010 - 10:02:34 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 02/11/2012 - 09:06:26 - [92,291] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\{99124B14-63B6-4E6B-8C2D-65B84228B0C9}
O43 - CFD: 24/10/2008 - 12:59:26 - [0,014] R---D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Accessoires
O43 - CFD: 07/02/2011 - 19:31:35 - [0,003] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Convar
O43 - CFD: 11/11/2008 - 12:55:43 - [0,001] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\dBpowerAMP Music Converter
O43 - CFD: 30/10/2008 - 20:37:32 - [0,000] R---D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\D�marrage
O43 - CFD: 27/10/2008 - 20:40:53 - [0,003] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\FileZilla
O43 - CFD: 01/11/2008 - 22:11:51 - [0,000] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\GameHouse
O43 - CFD: 12/06/2010 - 11:03:40 - [0,005] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Google Chrome
O43 - CFD: 24/12/2009 - 13:58:00 - [0,004] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\MagicISO
O43 - CFD: 21/04/2010 - 06:48:32 - [0,001] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Notepad++
O43 - CFD: 11/09/2009 - 08:49:56 - [0,000] R---D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Outils d'administration
O43 - CFD: 08/12/2009 - 18:41:43 - [0,002] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\QuickPar
O43 - CFD: 21/08/2012 - 11:26:39 - [0,001] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\TomTom
O43 - CFD: 07/09/2012 - 19:52:41 - [0,004] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\TopWare
O43 - CFD: 24/10/2008 - 13:39:24 - [0,002] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\WinRAR
~ Scan Program Folder in 03mn 33s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.04596D9F6D257FB7686A51C84FB766D9] - 16/02/2013 - 18:30:27 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [2058152]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/02/2013 - 18:25:57 ---A- . (...) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.30F465EC3BCF8D83696D196008C0A9A9] - 16/02/2013 - 18:25:44 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.6126492B237AE753280818B22A448784] - 16/02/2013 - 18:25:44 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 16/02/2013 - 18:25:23 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.51D6D4FF91C4FFF6893C73A3F1DAF570] - 16/02/2013 - 13:27:38 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32406]
O44 - LFC:[MD5.629CABB0421668C9D3D402A3C3D77E14] - 16/02/2013 - 11:25:27 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\system32\Drivers\mbam.sys [21104]
O44 - LFC:[MD5.62A4A464BC1740842FAB1EFFDAF15F70] - 16/02/2013 - 11:14:07 ---A- . (...) -- C:\WINDOWS\setupact.log [197250]
O44 - LFC:[MD5.A71C37E08BE1C53549828122496D9E51] - 15/02/2013 - 19:19:17 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [395726]
O44 - LFC:[MD5.5B54E9A7F909D734DAF401E56932BFCD] - 13/02/2013 - 13:47:27 ---A- . (...) -- C:\WINDOWS\system32\FNTCACHE.DAT [2379024]
O44 - LFC:[MD5.47FD7C6F04446182B44FFA3A1528D9C1] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\comsetup.log [668584]
O44 - LFC:[MD5.0AA3FC53CA84C6433505F46890C1162C] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\iis6.log [311338]
O44 - LFC:[MD5.5ECD4D6AD73775ADBF4C0288DA643369] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.C39BCC987D456DF5FF9DAD4D79A407AA] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [403306]
O44 - LFC:[MD5.FD251C94B032793CDF7C769A3BCB36D9] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\ocmsn.log [109319]
O44 - LFC:[MD5.337D5AA6F2F2E9C61E0BB1C2673024A3] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\tsoc.log [756793]
O44 - LFC:[MD5.1B5812F52EAD7E496CEF18FDAE9C07B2] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [1970137]
O44 - LFC:[MD5.5CE62DDCA6BFDA25D15A5833D196A243] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\KB2797052-IE8.log [11933]
O44 - LFC:[MD5.5C01F38CEE8D36DA5EE50A6694ACDA82] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\msgsocm.log [98927]
O44 - LFC:[MD5.A10EF0035DC95F7D9CD4EA40CD94018E] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\ocgen.log [963657]
O44 - LFC:[MD5.EB5F98E42A20F57636E59BDC36DEC72C] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\setupapi.log [669272]
O44 - LFC:[MD5.92843E46B0BC7F4A2E48493C70051C81] - 13/02/2013 - 11:37:58 ---A- . (...) -- C:\WINDOWS\KB2778344.log [16984]
O44 - LFC:[MD5.68FF06A76A297E3B211601D7551560F7] - 13/02/2013 - 11:37:58 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.4AB5E5D955AA5162DB389E41BF288CBE] - 13/02/2013 - 11:37:04 ---A- . (...) -- C:\WINDOWS\KB2799494.log [17586]
O44 - LFC:[MD5.B7173E57A5174C2F42A7C4A95B149509] - 13/02/2013 - 11:36:40 ---A- . (...) -- C:\WINDOWS\KB2802968.log [15864]
O44 - LFC:[MD5.5328BA2163D11BA109EB7B17043BC028] - 13/02/2013 - 11:35:43 ---A- . (...) -- C:\WINDOWS\KB2780091.log [15248]
O44 - LFC:[MD5.07A9D8AA9D06CF7F7960C0D5B6CDD27E] - 13/02/2013 - 11:35:26 ---A- . (...) -- C:\WINDOWS\KB2792100-IE8.log [15984]
O44 - LFC:[MD5.2E24B0EFC806AB6C12D3A3F675EF960A] - 13/02/2013 - 11:34:46 ---A- . (...) -- C:\WINDOWS\updspapi.log [731577]
O44 - LFC:[MD5.9D069CD8BF955DF95567899FC48ED4B4] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI [1294138]
O44 - LFC:[MD5.41F940B3C0912E843221796665E5B76B] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfc009.dat [89284]
O44 - LFC:[MD5.E93C2080636414E4A4BC2726D44A8885] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfc00C.dat [105868]
O44 - LFC:[MD5.ABA3C9D8E9D6CF7C421B0422ACF6CBEC] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfh009.dat [505820]
O44 - LFC:[MD5.51ECDFA8EF65CBC02468888CDB37D189] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfh00C.dat [579320]
O44 - LFC:[MD5.6280A479148CAEAD59E17A0CC3789161] - 10/02/2013 - 10:47:19 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerApp.exe [697712]
O44 - LFC:[MD5.3E5633C0E3B4FE04E6EBFFA597227617] - 10/02/2013 - 10:47:19 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl [74096]
O44 - LFC:[MD5.9501CE82389A3B51720E7B8A4B614216] - 05/02/2013 - 20:18:19 ---A- . (...) -- C:\WINDOWS\system32\CONFIG.NT [3121]
O44 - LFC:[MD5.668A0A822C7F99C21657CE58F3797C2C] - 29/01/2013 - 15:13:54 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [2206]
O44 - LFC:[MD5.36C2C22ACAEF3DD98E9A0D58E1E6CB01] - 28/01/2013 - 10:16:35 ---A- . (...) -- C:\WINDOWS\system32\SENT.log [1572]
O44 - LFC:[MD5.98431442B4A0A087BABFF6DD3A9F3924] - 28/01/2013 - 10:16:35 ---A- . (...) -- C:\WINDOWS\system32\TEST.log [7323]
O44 - LFC:[MD5.0171FE544E937EF8826463C6FE11043B] - 28/01/2013 - 10:16:21 ---A- . (...) -- C:\WINDOWS\hpoins21.dat [167153]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/01/2013 - 10:15:53 ---A- . (...) -- C:\WINDOWS\system32\RECV.log [0]
~ Scan Files in 00mn 23s
---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
~ Scan ShellExecuteHooks in 00mn 00s
---\\ Export de cl� d'application autoris�e (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau � distance de Microsoft�.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(...) -- C:\Program Files\eMule\emule.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\uTorrent\uTorrent.exe" [Enabled] .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" [Enabled] .(.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" [Enabled] .(.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" [Enabled] .(.Hewlett-Packard Co. - HP AiO Fax Manager.) -- C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" [Enabled] .(.Hewlett-Packard Co. - HP OfficeJet SendFax Interface.) -- C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" [Enabled] .(.Hewlett-Packard Co. - HP All-in-One Launcher Utility.) -- C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe" [Enabled] .(.Pas de propri�taire - hpqscnvw.) -- C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" [Enabled] .(.Hewlett-Packard - HP CUE-Scanning Flow Component.) -- C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" [Enabled] .(.Hewlett-Packard Co. - HP Fax Setup Wizard.) -- C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" [Enabled] .(.Hewlett-Packard Co. - Embedded Web Server Link application.) -- C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" [Enabled] .(.Hewlett-Packard Co. - HP Network Device Rediscovery Service.) -- C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\iexplore.exe" [Disabled] .(.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export SP - "C:\Program Files\EasyPHP 3.0\mysql\bin\mysqld.exe" [Enabled] .(...) -- C:\Program Files\EasyPHP 3.0\mysql\bin\mysqld.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" [Enabled] .(.PeeringPortal - KTF MUSIC AoD Server.) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" [Enabled] .(.PeeringPortal - KTF MUSIC VoD Server.) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\VideoLAN\VLC\vlc.exe" [Disabled] .(...) -- C:\Program Files\VideoLAN\VLC\vlc.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files\Microsoft Office\Office12\GROOVE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fastlane\fastlane.exe" [Enabled] .(...) -- C:\Program Files\Fastlane\fastlane.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\client\googleearth.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\client\googleearth.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\plugin\geplugin.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Real Alternative\Media Player Classic\mplayerc.exe" [Enabled] .(.Gabest - Media Player Classic.) -- C:\Program Files\Real Alternative\Media Player Classic\mplayerc.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe" [Enabled] .(.Apple Inc..) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe" [Enabled] .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\muzapp.exe" [Enabled] .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\WINDOWS\system32\muzapp.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau � distance de Microsoft�.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
~ Scan Keys in 00mn 04s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'�diteur de configuration de s�curit� Windows.) -- C:\WINDOWS\system32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Kerberos Security Package.) -- C:\WINDOWS\system32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\WINDOWS\system32\wdigest.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de d�marrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de syst�me de fichiers pour la restauration du syst�me.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de d�marrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de syst�me de fichiers pour la restauration du syst�me.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
~ Scan CSB in 00mn 00s
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ Scan IFEO in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak� Codec.) -- C:\WINDOWS\system32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo� Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo� audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo� video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \Drivers32\"msacm.voxacm160"="vct3216.acm" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\WINDOWS\system32\vct3216.acm
O52 - TDSD: \Drivers32\"msacm.scg726"="scg726.acm" . (.SHARP Corporation - SHARP G.726 ACM Audio Decoder.) -- C:\WINDOWS\system32\scg726.acm
O52 - TDSD: \Drivers32\"msacm.alf2cd"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\WINDOWS\system32\alf2cd.acm
O52 - TDSD: \Drivers32\"msacm.ac3acm"="AC3ACM.acm" . (.fccHandler - AC-3 ACM Decompressor.) -- C:\WINDOWS\system32\AC3ACM.acm
O52 - TDSD: \Drivers32\"vidc.dvsd"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\WINDOWS\system32\mcdvd_32.dll
O52 - TDSD: \Drivers32\"vidc.xvid"="xvidvfw.dll" . (...) -- C:\WINDOWS\system32\xvidvfw.dll
O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivXNetworks, Inc. - DivX Video for Windows Codec.) -- C:\WINDOWS\system32\DivX.dll
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo� audio software" . (.Intel Corporation - Indeo� audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"vct3216.acm"="Voxware Compression Toolkit" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\WINDOWS\system32\vct3216.acm
O52 - TDSD: \drivers.desc\"alf2cd.acm"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\WINDOWS\system32\alf2cd.acm
O52 - TDSD: \drivers.desc\"AC3ACM.acm"="AC-3 ACM Decompressor" . (.fccHandler - AC-3 ACM Decompressor.) -- C:\WINDOWS\system32\AC3ACM.acm
O52 - TDSD: \drivers.desc\"mcdvd_32.dll"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\WINDOWS\system32\mcdvd_32.dll
O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec" . (...) -- C:\WINDOWS\system32\xvidvfw.dll
~ Scan Keys in 00mn 03s
---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\AppleSyncNotifier [Key] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O53 - SMSR:HKLM\...\startupreg\AutoStartNPSAgent [Key] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
~ Scan SMSR Keys in 00mn 00s
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.149A8F7ADF9742554DC323E290551E3E] - 30/10/2012 - 23:51:56 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\Drivers\aavmker4.sys [25256]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 11:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\Aavmker4.sys (Aavmker4) .(.AVAST Software - avast! Base Kernel-Mode Device Driver for W.) - LEGACY_AAVMKER4
O64 - Services: CurCS - 10/02/2013 - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (AdobeFlashPlayerUpdateSvc) .(.Adobe Systems Incorporated - Adobe� Flash� Player Update Service 11.5 r5.) - LEGACY_ADOBEFLASHPLAYERUPDATESVC
O64 - Services: CurCS - 11/08/2012 - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device) .(.Apple Inc. - MobileDeviceService.) - LEGACY_APPLE_MOBILE_DEVICE
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswMon2.sys (aswMon2) .(.AVAST Software - avast! File System Filter Driver for Window.) - LEGACY_ASWMON2
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswRdr.sys (aswRdr) .(.AVAST Software - avast! TDI Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 07/06/2006 - C:\WINDOWS\system32\Ati2evxx.exe (Ati HotKey Poller) .(.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - LEGACY_ATI_HOTKEY_POLLER
O64 - Services: CurCS - 28/07/2006 - C:\WINDOWS\system32\ati2sgag.exe (ATI Smart) .(.Pas de propri�taire - ATI Smart.) - LEGACY_ATI_SMART
O64 - Services: CurCS - 30/10/2012 - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Antivirus) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS
O64 - Services: CurCS - 30/08/2011 - C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service) .(.Apple Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE
O64 - Services: CurCS - 31/01/2013 - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe - Browser Manager (Browser Manager) .(...) - LEGACY_BROWSER_MANAGER
O64 - Services: CurCS - ??\??\???? - (DcomLaunch) .(. - .) - LEGACY_DCOMLAUNCH
O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\dmadmin.exe (dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN
O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\drivers\dmboot.sys (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de d�marrage du gestionnaire de disq.) - LEGACY_DMBOOT
O64 - Services: CurCS - 05/08/2004 - C:\WINDOWS\system32\drivers\dmload.sys (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD
O64 - Services: CurCS - 26/11/2012 - C:\Program Files\Duuqu\Update\DuuquUpdate.exe (dqupdate) .(.Duuqu Group - Duuqu Installer.) - LEGACY_DQUPDATE
O64 - Services: CurCS - 21/06/2010 - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (FLEXnet Licensing Service) .(.Acresso Software Inc. - Activation Licensing Service.) - LEGACY_FLEXNET_LICENSING_SERVICE
O64 - Services: CurCS - 14/06/2010 - C:\WINDOWS\system32\FsUsbExDisk.sys - FsUsbExDisk (FsUsbExDisk) .(...) - LEGACY_FSUSBEXDISK
O64 - Services: CurCS - 29/07/2010 - C:\WINDOWS\system32\FsUsbExService.exe (FsUsbExService) .(.Teruten - FsUsbDevice.) - LEGACY_FSUSBEXSERVICE
O64 - Services: CurCS - 11/12/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE
O64 - Services: CurCS - 11/12/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe (gupdatem) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATEM
O64 - Services: CurCS - 16/08/2012 - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC
O64 - Services: CurCS - 14/11/2005 - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe (IDriverT) .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT
O64 - Services: CurCS - 09/09/2012 - C:\Program Files\iPod\bin\iPodService.exe (iPod Service) .(.Apple Inc. - iPodService Module (32-bit).) - LEGACY_IPOD_SERVICE
O64 - Services: CurCS - 17/07/2010 - C:\Program Files\Java\jre6\bin\jqs.exe (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE
O64 - Services: CurCS - 14/12/2012 - C:\WINDOWS\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 14/12/2012 - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (MBAMScheduler) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMSCHEDULER
O64 - Services: CurCS - 14/12/2012 - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (MBAMService) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMSERVICE
O64 - Services: CurCS - ??\??\???? - (RpcSs) .(. - .) - LEGACY_RPCSS
O64 - Services: CurCS - 07/04/2008 - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer) .(.Nokia. - ServiceLayer Module.) - LEGACY_SERVICELAYER
O64 - Services: CurCS - 07/09/2012 - C:\WINDOWS\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD
O64 - Services: CurCS - ??\??\???? - (TermService) .(. - .) - LEGACY_TERMSERVICE
O64 - Services: CurCS - 26/07/2012 - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTomHOMEService) .(.TomTom - Windows Service for TomTom HOME.) - LEGACY_TOMTOMHOMESERVICE
~ Scan Services in 00mn 03s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\WINDOWS\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("avg.install.userHPSettings", "http://search.babylon.com/?affID=113357&tt=031012_ccp_4012_3&babsrc=HP_ss&mntrId=14d1e598[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("avg.install.userSPSettings", "Search the web (Babylon)");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.defaultenginename", "Search Results");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.defaultthis.engineName", "Messenger Plus Live Customized Web Search");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2124320&SearchSource=3&q={searchTerms}");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.order.1", "Search Results");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.selectedEngine", "Search the web (Babylon)");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2124320");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.ToolbarsList", "CT2124320");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.ToolbarsList2", "CT2124320");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.clientLogIsEnabled", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CommunitiesChangesLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CommunityChanged", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.FeedLastCount129046484595382063", 131);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingInvalidateCache", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastErrorCode", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastResponse", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastServerUpdateTime", "129082239856330000");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.InvalidateCache", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.LanguagePackLastCheckTime", "Sun Jan 17 2010 17:57:40 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.Locale", "fr");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.RadioLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.RadioLastUpdateIPServer", "4");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.RadioLastUpdateServer", "4");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=ct2467816&[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SearchInNewTabLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SettingsCheckIntervalMin", 120);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SettingsLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SettingsLastUpdate", "1263743185");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.ThirdPartyComponentsLastCheck", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.ThirdPartyComponentsLastUpdate", "1263743185");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CTID", "ct2467816");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CurrentServerDate", "17-1-2010");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DownloadDomainsCheckInterval", "168");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DownloadDomainsListLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DownloadDomainsListLastServerUpdateTime", "1201073583");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.EMailNotifierPollDate", "Sun Jan 17 2010 17:57:39 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746777097562523", "Sun Jan 17 2010 17:57:37 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746777252093961", "Sun Jan 17 2010 17:57:37 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746777461468985", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746790824594437", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746790988031938", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791145844439", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791280844460", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791444750814", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791615375007", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791787562545", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791931312886", "Sun Jan 17 2010 17:57:39 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746792089906714", "Sun Jan 17 2010 17:57:39 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746792196156845", "Sun Jan 17 2010 17:57:40 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746777252093961", 60);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746777461468985", 60);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746791787562545", 5);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746792089906714", 30);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746792196156845", 30);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FirstServerDate", "17-1-2010");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FirstTime", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FirstTimeFF3", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FixPageNotFoundErrors", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastErrorCode", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastResponse", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastServerUpdateTime", "129082138158130000");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.Initialize", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.InstalledDate", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.InvalidateCache", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsGrouping", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsMulticommunity", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsOpenUninstallPage", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LanguagePackLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LastLogin_2.5.4.7", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LatestVersion", "2.1.0.18");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.Locale", "en-us");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LoginCache", 4);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffEnabled", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffSearchUrl", "http://search.conduit.com/Results.aspx?q=SEARCH_TERM&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioIsPodcast", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioLastUpdateIPServer", "0");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioMediaID", "9962");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioMenuSelectedID", "EBRadioMenu_CT21243209962");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SavedHomepage", "http://www.google.fr/");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchEngine", "Search||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=ct2124320&octid=EB_ORIG[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2124320&q=");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabServiceUrl", "http://hosting.conduit-services.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SettingsCheckIntervalMin", 120);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SettingsLastCheckTime", "Sun Jan 17 2010 17:57:35 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SettingsLastUpdate", "1263733015");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SHRINK_TOOLBAR", 1);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ThirdPartyComponentsLastCheck", "Sun Jan 17 2010 17:57:35 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ThirdPartyComponentsLastUpdate", "1263733015");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.UserID", "UN99111132919363546");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.WeatherNetwork", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.WeatherPollDate", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.WeatherUnit", "C");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.cbid", "RI");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.default-channel-url-mask", "http://fr.ask.com/web?q={query}&qsrc={qsrc}&o={o}&l={l}");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.fresh-install", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.l", "dis");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.last-config-req", "1263747455094");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.locale", "fr_FR");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.o", "14906");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.qsrc", "2871");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.r", "5");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.admin", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.aflt", "babsst");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.autoRvrt", "false");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.dfltLng", "en");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.excTlbr", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.id", "14d1e598000000000000001aa092d937");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.instlDay", "15590");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.instlRef", "sst");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.tlbrId", "tb9");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "http://search.babylon.com/?babsrc=TB_def&mntrId=14d1e598000000000000001aa092d9[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.vrsn", "1.6.9.12");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.vrsni", "1.6.9.12");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.babExt", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.babTrack", "affID=113357&tt=3612_4");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.newTab", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.9.1220:32:45");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "Search the web (Babylon)");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("sweetim.toolbar.urls.homepage", "http://search.babylon.com/?affID=113357&tt=3612_4&babsrc=HP_ss&mntrId=14d1e59800000000[...]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com
O69 - SBI: SearchScopes [HKCU] {13D0FD16-BFC5-4705-B3AC-6AE879968AD2} - (01net) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {31CF9EBE-5755-4a1d-AC25-2834D952D9B4} - (Barre d'outils PDFCreator) - http://search.pdfcreator-toolbar.org
O69 - SBI: SearchScopes [HKCU] {5B8FB2DE-F580-43E6-993B-31CDEA79D1C4} - (Recherche produits informatique 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {6EB4E915-2DEC-457D-A237-2F605F566187} - (Rercherche d'articles 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {7C1E6F6D-D58B-4294-B429-816F93F9B5EB} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {8A3CE644-DEAC-4F03-A29B-6C876DA8FF2A} - (Recherche de t�l�chargements 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {8DF14089-E627-418B-8F8D-4FEF3C0948A3} - (Recherche 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {986AB314-D974-4C9A-8E1B-99C44199FB63} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2414} - (Search Results) - http://dts.search-results.com
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} - (DAEMON Search) - http://www.daemon-search.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Messenger Plus Live Customized Web Search) - http://search.conduit.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (...) -- C:\WINDOWS\system32\appmgmts.dll [0]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496]
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336]
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464]
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576]
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488]
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040]
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - Pas de description.) -- C:\WINDOWS\system32\es.dll [253952]
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840]
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096]
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792]
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions r�seau.) -- C:\WINDOWS\system32\netman.dll [198144]
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll [247808]
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248]
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de t�ches.) -- C:\WINDOWS\system32\schedsvc.dll [194560]
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\system32\seclogon.dll [18944]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance � Microsoft NAT.) -- C:\WINDOWS\system32\ipnathlp.dll [332800]
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du syst�me.) -- C:\WINDOWS\system32\srsvc.dll [171520]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\WINDOWS\system32\tapisrv.dll [249856]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112]
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176]
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [145408]
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896]
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\WINDOWS\system32\qmgr.dll [409088]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400]
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\MsPMSNSv.dll [27136]
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Ex�cution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\WINDOWS\system32\kmsvc.dll [61440]
~ Scan Services in 00mn 02s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.8F70AE5B66EF4F00B6DA9F0C311C7A4C] [SPRF][24/10/2008] (...) -- C:\Documents and Settings\bernard\Local Settings\Application Data\fusioncache.dat [130]
[MD5.88783EB39D8EF000CDA3413C789C4E21] [SPRF][24/10/2008] (...) -- C:\Program Files\settings.dat [15397]
[MD5.29CFE9ED23C55E55838A789EB1182A9B] [SPRF][04/10/2008] (.Adobe Systems Incorporated - Adobe� Flash� Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1887080]
[MD5.8C8BB80297E8C7795B7F4354BE8F9B7A] [SPRF][30/04/2010] (.Cisco WebEx LLC - Download Manager.) -- C:\WINDOWS\Downloaded Program Files\ieatgpc.dll [101760]
~ Scan Files in 00mn 00s
---\\ Scan Additionnel (O88)
Database Version : v2.10682 - (12/02/2013)
Cl�s trouv�es (Keys found) : 133
Valeurs trouv�es (Values found) : 2
Dossiers trouv�s (Folders found) : 15
Fichiers trouv�s (Files found) : 3
[HKLM\Software\Classes\CLSID\{35b8892d-c3fb-4d88-990d-31db2ebd72bd}] =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}] =>Adware.RecordNRip
[HKLM\Software\Classes\TypeLib\{93e3d79c-0786-48ff-9329-93bc9f6dc2b3}] =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}] =>Adware.RecordNRip
[HKLM\Software\Classes\CLSID\{092A2C6B-43EE-4F9F-8F8E-14ED5E11C14B}] =>Adware.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{257A6158-1416-4B31-9BF8-29FF49F3814F}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{736EF78E-5A04-46F9-893E-EDEC6EA5DF45}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{7A1BCE27-099C-4628-B63A-AEC00C6376B3}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Adware.AskSBAR
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Adware.AskSBAR
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Adware.AskSBAR
[HKLM\Software\Classes\CLSID\{AC5C4189-A8A0-4C9D-8910-C9CEF8360077}] =>Adware.Agent
[HKLM\Software\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{AF3AFF7C-B9E9-48DD-9002-212B6DEAAC02}] =>Adware.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{DBE82879-914A-422F-BAE9-2ECC80BE536F}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{E12D7149-73EF-45E4-A1E9-99FD7DAE62D3}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{ea551c00-2ae5-11d3-8592-00a0c98e9ea4}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{F2B184F1-547C-4EE9-BFC4-AC489C7077D9}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\DNSBHO.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] =>Adware.AskSBAR
[HKLM\Software\Classes\BrowserConnection.Loader] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader.1] =>Adware.Bandoo
[HKLM\Software\Classes\DnsBHO.BHO] =>Adware.Bandoo
[HKLM\Software\Classes\DnsBHO.BHO.1] =>Adware.Bandoo
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd] =>Adware.AskSBAR
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1] =>Adware.AskSBAR
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard] =>Adware.Bandoo
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard.1] =>Adware.Bandoo
[HKLM\Software\Classes\Software.OneClickCtrl.8] =>Adware.Agent
[HKLM\Software\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph] =>PUP.SpecialSavings
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch
[HKCU\Software\Ask.com] =>Toolbar.AskBar
[HKCU\Software\AskToolbar] =>Toolbar.AskTBar
[HKCU\Software\AppDataLow\AskToolbarInfo] =>Toolbar.AskTBar
[HKCU\Software\BrowserMngr] =>Toolbar.Babylon
[HKLM\Software\BrowserMngr] =>Toolbar.Babylon
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\pdfforge.org] =>Toolbar.Agent
[HKLM\Software\pdfforge.org] =>Toolbar.Agent
[HKLM\Software\SearchquMediabarTb] =>Adware.Bandoo
[HKCU\Software\searchqutoolbar] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{95A6C0BE-BE04-462D-A623-7F98B15C1FC3}] =>Adware.Boxore
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}] =>Adware.Boxore
[HKLM\Software\Classes\Prod.cap] =>Adware.Bandoo
[HKLM\Software\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MSISERVER] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38D5CDD0A851B3940A43CC50ABBA251C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{99079A25-328F-4BD4-BE04-00955ACAA0A7} =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Adware.AskSBAR
C:\Program Files\Ask.com =>Toolbar.AskBar
C:\Program Files\Boxore =>Adware.Boxore
C:\Program Files\Conduit =>Toolbar.Conduit
C:\Program Files\Duuqu =>Toolbar.Agent
C:\Program Files\FrameFox =>Toolbar.Agent
C:\Program Files\QwertyBox =>Toolbar.Agent
C:\Program Files\Searchqu Toolbar =>Adware.Bandoo
C:\Program Files\Software =>Adware.Boxore
C:\Documents and Settings\bernard\Application Data\OpenCandy =>Adware.OpenCandy
C:\Documents and Settings\bernard\Application Data\searchquband =>Adware.Bandoo
C:\Documents and Settings\bernard\Application Data\searchqutoolbar =>Adware.Bandoo
C:\Documents and Settings\bernard\Local Settings\Application Data\AskToolbar =>Toolbar.AskTBar
C:\Documents and Settings\bernard\Local Settings\Application Data\Conduit =>Toolbar.Conduit
C:\Documents and Settings\bernard\Local Settings\Application Data\Software =>Adware.Boxore
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchqutoolbar =>Adware.Bandoo
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\bprotector_extensions.sqlite =>PUP.BProtector
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\bprotector_prefs.js =>PUP.BProtector
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\SearchPlugins\conduit.xml =>Toolbar.Conduit
~ Scan Additionnel in 00mn 55s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "000021090200C0400000000000F01FEC" . (.Module de compatibilit� pour Microsoft Office System 2007.) -- C:\WINDOWS\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
O90 - PUC: "0212CE3624715264AA746C8AEA9C6CC4" . (.Apple Application Support.) -- C:\WINDOWS\Installer\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}\WinInstall.ico
O90 - PUC: "043B0686D0353B64198FA11E7FF0C733" . (.OpenOffice.org 3.0.) -- C:\WINDOWS\Installer\{6860B340-530D-46B3-91F8-1AE1F70F7C33}\soffice.exe
O90 - PUC: "064561AB7FCFC6D47A2A2F23710027F0" . (.MobileMe Control Panel.) -- C:\WINDOWS\Installer\{BA165460-FCF7-4D6C-A7A2-F2321700720F}\Installer.ico
O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\WINDOWS\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe
O90 - PUC: "104C2FB8EC20D424CB62C6F4F94B646B" . (.Macromedia Flash 8 Video Encoder.) -- C:\WINDOWS\Installer\{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}\ARPPRODUCTICONFLV1.exe
O90 - PUC: "11328E8261681E11EB0B8BCAF6798BE8" . (.Google�Earth.) -- C:\WINDOWS\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "166A73803CEF3B8478C6197E3D02849A" . (.Macromedia Dreamweaver 8.) -- C:\WINDOWS\Installer\{0837A661-FEC3-48B3-876C-91E7D32048A9}\DWARPPRODUCTICON.exe
O90 - PUC: "1AAFDD4D73CE9254DAB54A33DA6E6826" . (.Apple Mobile Device Support.) -- C:\WINDOWS\Installer\{D4DDFAA1-EC37-4529-AD5B-A433ADE68662}\Installer.ico
O90 - PUC: "1AB14AC224899184A8BB67DF1CA49BAE" . (.ATI Catalyst Control Center.) -- C:\WINDOWS\Installer\{2CA41BA1-9842-4819-8ABB-76FDC14AB9EA}\ARPPRODUCTICON.exe
O90 - PUC: "20441E9C136328143B77B6D0BFC13093" . (.QuickTime.) -- C:\WINDOWS\Installer\{C9E14402-3631-4182-B377-6B0DFB1C0339}\Installer.ico
O90 - PUC: "32AFBAFE70803BB43857EB4029A3E573" . (.Ciel Gestion Commerciale 16.0.) -- C:\WINDOWS\Installer\{EFABFA23-0807-4BB3-8375-BE04923A5E37}\ARPPRODUCTICON.exe
O90 - PUC: "3FA0037EB5DD68E42A196713EBC0267C" . (.Giganews Accelerator.) -- C:\WINDOWS\Installer\{E7300AF3-DD5B-4E86-A291-7631BE0C62C7}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "427995CA55751C84BA7EBA8B75569203" . (.PC Connectivity Solution.) -- C:\WINDOWS\Installer\{AC599724-5755-48C1-ABE7-ABB857652930}\ARPPRODUCTICON.exe
O90 - PUC: "4452B63812D996C4CBA3FFE536025B9A" . (.QwertyBox 1.0.3.0.) -- C:\WINDOWS\Installer\{836B2544-9D21-4C69-BC3A-FF5E6320B5A9}\QwertyBox.ico
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "503C5DB272B114D46B09A71671D2F2BE" . (.Macromedia Flash 8.) -- C:\WINDOWS\Installer\{2BD5C305-1B27-4D41-B690-7A61172D2FEB}\ARPPRODUCTICONFL8.exe
O90 - PUC: "6786F6F0433677945BDDFC1CE2914302" . (.iTunes.) -- C:\WINDOWS\Installer\{0F6F6876-6334-4977-B5DD-CFC12E193420}\Installer.ico
O90 - PUC: "68AB67CA7DA76301B7449A0500000010" . (.Adobe Reader 9.5.3 - Fran�ais.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A95000000001}\SC_Reader.ico
O90 - PUC: "7CC6113DCD423AC4C91E32EF8D639E2F" . (.Assistant de connexion Windows Live.) -- C:\WINDOWS\Installer\{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}\prodicon.ico
O90 - PUC: "7CEBB04F4A2C00A4B942A750A5C22526" . (.Microsoft Office Live Add-in 1.5.) -- C:\WINDOWS\Installer\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}\ProductIcon
O90 - PUC: "8BE400BCDD6C8094D8948CBA0A283B64" . (.Ciel Paye 16.00.) -- C:\WINDOWS\Installer\{CB004EB8-C6DD-4908-8D49-C8ABA082B346}\ARPPRODUCTICON.exe
O90 - PUC: "8CAF48E7815C9F048970475503D1D652" . (.SamsungConnectivityCableDriver.) -- C:\WINDOWS\Installer\{7E84FAC8-C518-40F9-9807-7455301D6D25}\ARPPRODUCTICON.exe
O90 - PUC: "A12B436470CC693498C0B2188666F1AE" . (.Windows Live Writer.) -- C:\WINDOWS\Installer\{4634B21A-CC07-4396-890C-2B8168661FEA}\ApplicationIcon.ico
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.IsoBuster Toolbar.) -- C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
O90 - PUC: "AF8ECB3F2EE08264FB20BAA54F709779" . (.Ciel Compta 16.0.) -- C:\WINDOWS\Installer\{F3BCE8FA-0EE2-4628-BF02-AB5AF4077997}\ARPPRODUCTICON.exe
O90 - PUC: "B2839838AB3578A48845193E8DA0A57C" . (.HP Photosmart Essential2.01.) -- C:\WINDOWS\Installer\{8389382B-53BA-4A87-8854-91E3D80A5AC7}\ARPPRODUCTICON.exe
O90 - PUC: "B2F5519759897D9468219D52080EEDB5" . (.Bonjour.) -- C:\WINDOWS\Installer\{79155F2B-9895-49D7-8612-D92580E0DE5B}\Bonjour.ico
O90 - PUC: "B3AB68FA564B21E47B171E2280DF8BB9" . (.Ciel Auto-entrepreneur Facile 1.40.) -- C:\WINDOWS\Installer\{AF86BA3B-B465-4E12-B771-E12208FDB89B}\ARPPRODUCTICON.exe1
O90 - PUC: "B8499BEA2FF49C7499E0741044290AEF" . (.MSXML 6.0 Parser.) -- C:\WINDOWS\Installer\{AEB9948B-4FF2-47C9-990E-47014492A0FE}\ARPIco
O90 - PUC: "B9B0B7844DCDD044980A6ADE1E5A543A" . (.HPSSupply.) -- C:\WINDOWS\Installer\{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}\ARPPRODUCTICON.exe
O90 - PUC: "BEEDBA9135B304C40BC0C7924993F391" . (.AxCrypt 1.7.2931.0.) -- C:\WINDOWS\Installer\{19ABDEEB-3B53-4C40-B00C-7C2994393F19}\axcrypt.ico
O90 - PUC: "C04AC77760206FE40ACF16B80FB68F0D" . (..) -- C:\WINDOWS\Installer\{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}\ARPPRODUCTICON.exe
O90 - PUC: "C659BB38E30163D428D32A6A04FDFA60" . (.Ciel Immobilisations 16.0.) -- C:\WINDOWS\Installer\{83BB956C-103E-4D36-823D-A2A640DFAF06}\ARPPRODUCTICON.exe
O90 - PUC: "CDD2E27F8BD309142AD13688D359F57E" . (.PSSWCORE.) -- C:\WINDOWS\Installer\{F72E2DDC-3DB8-4190-A21D-63883D955FE7}\ARPPRODUCTICON.exe
O90 - PUC: "CEB1F077178207E48B73BF5852FF3A1B" . (.Windows Live Messenger.) -- C:\WINDOWS\Installer\{770F1BEC-2871-4E70-B837-FB8525FFA3B1}\MsblIco.Exe
O90 - PUC: "D325248F22F000A45A32AB4156A51455" . (.FrameFox Extensions 1.0.8.0.) -- C:\WINDOWS\Installer\{F842523D-0F22-4A00-A523-BA14655A4155}\FrameFox.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DA9BEDB1DE0A95F4DA4014A653CF1BB5" . (.Mindjet.) -- C:\WINDOWS\Installer\{1BDEB9AD-A0ED-4F59-AD04-416A35FCB15B}\ARPPRODUCTICON.exe
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de t�l�chargement Windows Live.) -- C:\WINDOWS\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "DF7206C8CD35D644BB57ACDC07821A43" . (.HP Update.) -- C:\WINDOWS\Installer\{8C6027FD-53DC-446D-BB75-CACD7028A134}\ARPPRODUCTICON.exe
O90 - PUC: "E0CF391F81E9CF049A4705A9B1DD42A0" . (.Samsung New PC Studio.) -- C:\WINDOWS\Installer\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\ARPPRODUCTICON.exe
O90 - PUC: "EB0C6A5940EBD2646A32F7891BC5F13C" . (.Boxore Client.) -- C:\WINDOWS\Installer\{95A6C0BE-BE04-462D-A623-7F98B15C1FC3}\boxore.ico
O90 - PUC: "FAEC7109A5EB37F4A8E08CE76279E155" . (.TomTom HOME.) -- C:\WINDOWS\Installer\{9017CEAF-BE5A-4F73-8A0E-C87E26971E55}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s
---\\ Random Export Key (O91)
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:dllName="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:exeName="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:folderName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:serviceName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:version="2.2.630.40"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:dllName="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:exeName="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:folderName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:serviceName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:version="2.3.762.17"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:dllName="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:exeName="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:folderName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:serviceName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:version="2.3.787.43"
[HKCU\Software\5a28ad8e139e549]:GUID="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549]:HPCHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:HPCHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:HPCHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:HPFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:HPFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:HPFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:HPIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:HPIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:HPIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:INSTALL_FOLDER_NAME="Browser Manager"
[HKCU\Software\5a28ad8e139e549]:KWFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:KWFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:KWFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKCU\Software\5a28ad8e139e549]:NTFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:NTFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:NTFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:PROTECTOR_DLL_NAME="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549]:PROTECT_EXE_NAME="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549]:SECHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:SECHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:SECHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:SEFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:SEFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:SEFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:SEIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:SEIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:SEIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:SEREGEXP=""
[HKCU\Software\5a28ad8e139e549]:SERVICE_NAME="Browser Manager"
[HKCU\Software\5a28ad8e139e549]:usrcheckbox=""
[HKCU\Software\5a28ad8e139e549]:version="2.6.1123.78"
[HKLM\Software\5a28ad8e139e549]:GUID="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKLM\Software\5a28ad8e139e549]:HPCHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:HPCHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:HPCHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:HPFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:HPFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:HPFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:HPIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:HPIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:HPIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:INSTALL_FOLDER_NAME="Browser Manager"
[HKLM\Software\5a28ad8e139e549]:KWFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:KWFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:KWFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKLM\Software\5a28ad8e139e549]:NTFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:NTFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:NTFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:PROTECTOR_DLL_NAME="browsemngr.dll"
[HKLM\Software\5a28ad8e139e549]:PROTECT_EXE_NAME="browsemngr.exe"
[HKLM\Software\5a28ad8e139e549]:SECHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:SECHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:SECHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:SEFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:SEFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:SEFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:SEIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:SEIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:SEIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:SEREGEXP=""
[HKLM\Software\5a28ad8e139e549]:SERVICE_NAME="Browser Manager"
[HKLM\Software\5a28ad8e139e549]:usrcheckbox=""
[HKLM\Software\5a28ad8e139e549]:version="2.6.1123.78"
~ Scan Export Key Software in 00mn 00s
---\\ MyComputer Name Space (O92)
O92 - MNS: Web Folders - {BDEADF00-C265-11D0-BCED-00A0C90AB50F}
~ Scan MNS in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 10/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/06/2006 409600 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe
SS - | Auto 520192 | (ATI Smart) . (...) - C:\WINDOWS\system32\ati2sgag.exe
SR - | Auto 30/10/2012 44808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 2561488 | (Browser Manager) . (...) - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
SS - | Demand 13/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Auto 26/11/2012 98360 | (dqupdate) . (.Duuqu Group.) - C:\Program Files\Duuqu\Update\DuuquUpdate.exe
SS - | Demand 26/11/2012 98360 | (dqupdatem) . (.Duuqu Group.) - C:\Program Files\Duuqu\Update\DuuquUpdate.exe
SS - | Demand 21/06/2010 655624 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SR - | Auto 29/07/2010 238952 | (FsUsbExService) . (.Teruten.) - C:\WINDOWS\system32\FsUsbExService.exe
SS - | Auto 11/12/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 11/12/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 16/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Demand 13/04/2008 14336 | C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 13/04/2008 14336 | C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\WINDOWS\system32\svchost.exe
SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SR - | Demand 09/09/2012 821648 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 17/07/2010 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe
SR - | Auto 14/12/2012 398184 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 14/12/2012 682344 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 02/01/2013 115168 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 13/04/2008 14336 | C:\WINDOWS\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 13/04/2008 14336 | C:\WINDOWS\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SS - | Demand 07/04/2008 430592 | (ServiceLayer) . (.Nokia..) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
SR - | Auto 26/07/2012 92632 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
~ Scan Services in 00mn 04s
---\\ Liste des �mulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
~ Scan Emulateurs in 00mn 04s
End of the scan (1952 lines in 11mn 07s)(0)
Run by bernard at 16/02/2013 21:03:10
State : Nouvelle version disponible
UAC : Not Found
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 17.0.1 v17.0.1
GCIE: Google Chrome Frame v23.0.1271.97 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : KO
---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (78% free)
System Restore: Activ� (Enable)
System drive C: has 109 GB (47%) free of 230 GB
---\\ Logged in mode
~ Computer Name: BERNARD-6331E9E
~ User Name: bernard
~ All Users Names: SUPPORT_388945a0, HelpAssistant, bernard, ASPNET, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\bernard\Application Data\
~ %Desktop% : C:\Documents and Settings\bernard\Bureau\
~ %Favorites% : C:\Documents and Settings\bernard\Favoris\
~ %LocalAppData% : C:\Documents and Settings\bernard\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\bernard\Menu D�marrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 109 Go of 230 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 78 Go of 932 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
H:\ Hard drive, Flash drive, Thumb drive (Free 21 Go of 233 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.13/04/2008 - 18:34:04.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.F60FB84A5F9DC64C62B5EDADD399C38B] - (.Microsoft Corporation - Internet Extensions for Win32.) (.26/12/2012 - 21:06:36.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.13/04/2008 - 18:34:30.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 10:40:32.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 11:14:22.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 10:40:48.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.13/04/2008 - 17:57:40.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 08:36:06.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.13/04/2008 - 18:00:54.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 10:41:00.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 10:57:16.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 11:19:44.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 11:21:02.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 11:15:54.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parall�le.) (.13/04/2008 - 18:09:42.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 11:19:44.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 10:32:52.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.13/04/2008 - 17:57:36.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.13/04/2008 - 17:56:06.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/274
~ Mes musiques (My Musics) : 1/704
~ Mes Favoris (My Favorites) : 1/929
~ Mes Documents (My Documents) : 2/259803
~ Mon Bureau (My Desktop) : 1/49
~ Menu demarrer (Programs) : 1/49
~ Scan Hidden Files in 05mn 07s
---\\ Processus lanc�s
[MD5.C23082B890F21267037CA6111C385FF3] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [409600] [PID.976]
[MD5.8FA553E9AE69808D99C164733A0F9590] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [44808] [PID.1436]
[MD5.A5299D04ED225D64CF07A568A3E1BF8C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55184] [PID.1732]
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.1772]
[MD5.B98EF68B1E3DC5AC79A432900947EA2D] - (...) -- C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [2561488] [PID.1788]
[MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] [PID.1844]
[MD5.136E913B1D3771B3535C3622C36B5E38] - (.Duuqu Group - Duuqu Installer.) -- C:\Program Files\Duuqu\Update\DuuquUpdate.exe [98360] [PID.2032]
[MD5.346086A99E6347C11E20D3FCBAEEAB77] - (.Teruten - FsUsbDevice.) -- C:\WINDOWS\system32\FsUsbExService.exe [238952] [PID.200]
[MD5.126A16F569122AE00AD3D12EF831D651] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [PID.692]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184] [PID.1220]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe [4297136] [PID.1852]
[MD5.916B8954AC3E06DC9E898AFFB41F3FB6] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [682344] [PID.2128]
[MD5.E319535A8124F25C1C9C5288CACF3101] - (.TomTom - Windows Service for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [92632] [PID.2236]
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [512360] [PID.2332]
[MD5.BC0EA61246F8D940FBC5F652D337D6BD] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [821648] [PID.2756]
[MD5.8906FFADDF99ACCB5C751E75E879481F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [5676032] [PID.3584]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.3216]
~ Scan Processes Running in 00mn 05s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.babylon.com
G0 - GCSP: Preference [User Data\Default] http://search.babylon.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\prefs.js
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\user.js
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\BabylonMngr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\browsemngr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\daemon-search.xml
M3 - MFPP: Plugins - [bernard] -- C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\Search_Results.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\Search_Results.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [bernard] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\firebug@software.joehewitt.com] [] Firebug v1.11.1 (.Joe Hewitt.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\foxyseotool@foxyseotool.com] [] Foxy SEO Tool v0.8.6 (.Martin Favreau.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\ienetrenderer-nico@nc] [] IE NetRenderer v0.8.6 (.nico@nc.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\ietab@ip.cn] [] IE Tab Plus v1.94.20100904 (.quaful@msn.com.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{99079a25-328f-4bd4-be04-00955acaa0a7}] [] Searchqu Toolbar v4.6.1.01 (.Visicom Media Inc..)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{9b339f6e-ddcd-401b-8764-230adbd01761}] [] Messenger Plus Live Toolbar v2.7.2.0 (.Conduit Ltd..)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{c45c406e-ab73-11d8-be73-000a95be3b12}] [] Web Developer v1.2.2 (.Chris Pederick.)
M2 - MFEP: prefs.js [bernard - 3bnp795r.default\{dc572301-7619-498c-a57d-39143191b318}] [] Web Developer v1.2.2 (.Chris Pederick.)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.3".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.1.10329.0.) -- C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2852] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.46] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1662] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.46] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@www.dlmanager.net/omaha/tools//Software Update;version=8] - (.Boxore OU. - Software Update.) -- C:\Program Files\Software\Update\1.2.201.0\npSoftwareOneClick8.dll
P2 - FPN: [HKLM] [@www.duuqu.com/omaha/tools//Duuqu Update;version=3] - (.Duuqu Group - Duuqu Update.) -- C:\Program Files\Duuqu\Update\1.3.37.0\npDuuquUpdate3.dll
P2 - FPN: [HKLM] [@www.duuqu.com/omaha/tools//Duuqu Update;version=9] - (.Duuqu Group - Duuqu Update.) -- C:\Program Files\Duuqu\Update\1.3.37.0\npDuuquUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.3".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 03s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:home
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - hpswp_printenhancer dll.) -- C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} . (.Hewlett-Packard Co. - Leo (Framework) - add-on for Internet Explo.) -- C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Cl� orpheline
O2 - BHO: CmjBrowserHelperObject Object - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} . (.Mindjet - Internet Explorer add-in.) -- C:\Program Files\Mindjet\MindManager 11\Mm8InternetExplorer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propri�taire - dtx Dynamic Link Library.) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} . (.Bandoo Media, inc - Url Helper.) -- C:\Program Files\Searchqu Toolbar\Datamngr\BrowserConnection.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} . (.Pas de propri�taire - PDFCreator Toolbar.) -- C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: ChromeFrame BHO - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} . (.Google Inc. - Chrome Frame renders the Web of the future.) -- C:\Program Files\Google\Chrome\Application\23.0.1271.97\npchrome_frame.dll
~ Scan BHO in 00mn 02s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: PDFCreator Toolbar - [HKLM]{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} . (.Pas de propri�taire - PDFCreator Toolbar.) -- C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O3 - Toolbar: IsoBuster Toolbar - [HKLM]{D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Searchqu Toolbar - [HKLM]{99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propri�taire - dtx Dynamic Link Library.) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
O3 - Toolbar: (no name) - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} Cl� orpheline
~ Scan Toolbar in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Bridge CS4.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Bridge CS4\Bridge.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Device Central CS4.lnk . (.Adobe Systems.) -- C:\Program Files\Adobe\Adobe Device Central CS4\DeviceCentral.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Encore CS4.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Encore CS4\Adobe Encore.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe ExtendScript Toolkit 2.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe ExtendScript Toolkit CS4.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities\ExtendScript Toolkit CS4\ExtendScript Toolkit.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Extension Manager CS4.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Extension Manager CS4\Adobe Extension Manager CS4.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe ImageReady CS.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\ImageReady.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Media Encoder CS4.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Media Encoder CS4\Adobe Media Encoder.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe OnLocation CS4.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe OnLocation CS4\Adobe OnLocation.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Photoshop CS.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Photoshop CS\Photoshop.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Premiere Pro CS4.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Premiere Pro CS4\Adobe Premiere Pro.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A95000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. SA.) -- C:\Program Files\HP\Digital Imaging\DocProc\regipe.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Giganews Accelerator.lnk . (.Giganews, Inc..) -- C:\Program Files\Giganews Accelerator\GiganewsAccelerator.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\SWiSH Max2.lnk . (.SWiSHzone.com Pty Ltd.) -- C:\Program Files\SWiSH Max2\SwishMax2.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu D�marrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\Assistance � distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\bernard\Menu D�marrer\Programmes\User Agent String Utility.lnk . (...) -- C:\Documents and Settings\bernard\Application Data\Microsoft\Installer\{9DF095E1-8EC2-4892-8740-93769DB1E944}\_607A19AA30DDE3644FDD0
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu D�marrer\Programmes\Assistance � distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu D�marrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 11s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer � OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Envoyer � Mindjet - {2F72393D-2472-4F82-B600-ED77F354B7FF} . (...) -- C:\Program Files\Mindjet\MindManager 11\Mm6InternetExplorer.ico
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} . (.Hewlett-Packard Co. - Leo (Toolbar Extensions) - add-on for Internet Explorer.) -- C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: S�lection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} . (.Hewlett-Packard Co. - Leo (Toolbar Extensions) - add-on for Internet Explorer.) -- C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Cl� orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ((no name)) - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} ((no name)) - https://cisco.webex.com/client/T27L10NSP15/nbr/ieatgpc.cab
~ Scan Objets ActiveX in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{386676B5-5608-497E-B959-4888D92254BA}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{386676B5-5608-497E-B959-4888D92254BA}: DhcpNameServer = 212.27.40.240 212.27.40.241
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent r�seau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll
~ Scan AppInit DLL in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart (ATI Smart) . (.Pas de propri�taire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Browser Manager (Browser Manager) . (...) - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
O23 - Service: Duuqu Update Service (dqupdate) (dqupdate) . (.Duuqu Group - Duuqu Installer.) - C:\Program Files\Duuqu\Update\DuuquUpdate.exe
O23 - Service: FsUsbExService (FsUsbExService) . (.Teruten - FsUsbDevice.) - C:\WINDOWS\system32\FsUsbExService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
~ Scan Services in 00mn 10s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\avast! Emergency Update.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\DuuquUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\DuuquUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-2025429265-725345543-1004Core1cc6fc76677121a.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1715567821-2025429265-725345543-1004UA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{9995FDEC-42FA-43E5-9251-004C3ADAC994}.job
~ Scan Scheduled Task in 00mn 00s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Mise � jour de la version d�Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Lecteur Windows Media - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d�initialisation d�Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} . (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O40 - ASIC: Microsoft VM - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Microsoft Corporation - Microsoft� VM.) -- C:\WINDOWS\system32\msjava.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Lecteur Windows Media Microsoft 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\system32\themeui.dll
O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Biblioth�que d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp.inf
O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Microsoft Corporation - Biblioth�que d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: Mise � jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d�initialisation d�Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\WINDOWS\system32\mscories.dll
O40 - ASIC: (no name) - {90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB} . (...) -- C:\Program Files\Mindjet\MindManager 11\sys\MmInternetExplorerActiveSetup.vbs
O40 - ASIC: Shockwave Flash Object - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.5 r502.) -- C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_149.ocx
O40 - ASIC: Installed Component - S-1-5-21-1715567821-2025429265-725345543-1004 - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} -- Not Hexad�cimal CLSID
~ Scan Active Setup in 00mn 02s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de p�riph�rique processeur.) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vid�o VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
~ Scan Drivers in 00mn 01s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
O42 - Logiciel: AAA Logo 1.2 - (.SWGSoft.com.) [HKLM] -- AAA Logo_is1
O42 - Logiciel: ATI - Utilitaire de d�sinstallation du logiciel - (.Pas de propri�taire.) [HKLM] -- All ATI Software
O42 - Logiciel: ATI Catalyst Control Center - (.Pas de propri�taire.) [HKLM] -- {2CA41BA1-9842-4819-8ABB-76FDC14AB9EA}
O42 - Logiciel: ATI Display Driver - (.Pas de propri�taire.) [HKLM] -- ATI Display Driver
O42 - Logiciel: AVS DVDMenu Editor 1.2.1.19 - (.Online Media Technologies Ltd..) [HKLM] -- AVS DVDMenu Editor_is1
O42 - Logiciel: AVS Video Tools 5.6 - (.Online Media Technologies Ltd..) [HKLM] -- AVS Video Tools 5_is1
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
O42 - Logiciel: Adobe Anchor Service CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {1618734A-3957-4ADD-8199-F973763109A8}
O42 - Logiciel: Adobe Bridge CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {83877DB1-8B77-45BC-AB43-2BAC22E093E0}
O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {94D398EB-D2FD-4FD1-B8C4-592635E8A191}
O42 - Logiciel: Adobe CS4 American English Speech Analysis Models - (.Adobe Systems Incorporated.) [HKLM] -- {297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}
O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_6c8e2cb4fd241c55406016127a6ab2e
O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM] -- {6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {C52E3EC1-048C-45E1-8D53-10B0C6509683}
O42 - Logiciel: Adobe Device Central CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {67F0E67A-8E93-4C2C-B29D-47C48262738A}
O42 - Logiciel: Adobe Dynamiclink Support - (.Adobe Systems Incorporated.) [HKLM] -- {60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}
O42 - Logiciel: Adobe Encore CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {5EAD5443-7194-46CC-A055-428E6ABB1BAF}
O42 - Logiciel: Adobe Encore CS4 Codecs - (.Adobe Systems Incorporated.) [HKLM] -- {FB2A5FCC-B81B-48C2-A009-7804694D83E9}
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_3e054d2218e7aa282c2369d939e58ff
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
O42 - Logiciel: Adobe ExtendScript Toolkit CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
O42 - Logiciel: Adobe Extension Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {054EFA56-2AC1-48F4-A883-0AB89874B972}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM] -- {FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
O42 - Logiciel: Adobe Media Encoder CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}
O42 - Logiciel: Adobe Media Encoder CS4 Additional Exporter - (.Adobe Systems Incorporated.) [HKLM] -- {BE9CEAAA-F069-4331-BF2F-8D350F6504F4}
O42 - Logiciel: Adobe Media Encoder CS4 Dolby - (.Adobe Systems Incorporated.) [HKLM] -- {EE353798-E875-42E0-B58D-7E6696182EA8}
O42 - Logiciel: Adobe Media Encoder CS4 Exporter - (.Adobe Systems Incorporated.) [HKLM] -- {561968FD-56A1-49FD-9ED0-F55482C7C5BC}
O42 - Logiciel: Adobe Media Encoder CS4 Importer - (.Adobe Systems Incorporated.) [HKLM] -- {8186FF34-D389-4B7E-9A2F-C197585BCFBD}
O42 - Logiciel: Adobe OnLocation CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {7406DF60-016D-476B-A2C7-55D997592047}
O42 - Logiciel: Adobe Output Module - (.Adobe Systems Incorporated.) [HKLM] -- {BB4E33EC-8181-4685-96F7-8554293DEC6A}
O42 - Logiciel: Adobe PDF Library Files CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {F93C84A6-0DC6-42AF-89FA-776F7C377353}
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC}
O42 - Logiciel: Adobe Premiere Pro CS4 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_26b63376f4efc354dae41af6b5e3343
O42 - Logiciel: Adobe Premiere Pro CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {D499F8DE-3F31-4900-9157-61061613704B}
O42 - Logiciel: Adobe Premiere Pro CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {DE3BB35E-C0CE-4CA1-9CB4-CD9E69364BD9}
O42 - Logiciel: Adobe Premiere Pro CS4 Functional Content - (.Adobe Systems Incorporated.) [HKLM] -- {B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}
O42 - Logiciel: Adobe Premiere Pro CS4 Third Party Content - (.Adobe Systems Incorporated.) [HKLM] -- {C938BE91-3BB5-4B84-9EF6-88F0505D0038}
O42 - Logiciel: Adobe Reader 9.5.3 - Fran�ais - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A95000000001}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {566BB41D-F006-4956-A5D3-94D8DFFA7F51}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
O42 - Logiciel: Adobe Update Manager CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {05308C4E-7285-4066-BAE3-6B50DA6ED755}
O42 - Logiciel: Adobe XMP Panels CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.) [HKLM] -- {16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {63EC2120-1742-4625-AA47-C6A8AEC9C64C}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {D4DDFAA1-EC37-4529-AD5B-A433ADE68662}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propri�taire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
O42 - Logiciel: AxCrypt 1.7.2931.0 - (.Axantum Software AB.) [HKLM] -- {19ABDEEB-3B53-4C40-B00C-7C2994393F19}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {95A6C0BE-BE04-462D-A623-7F98B15C1FC3}
O42 - Logiciel: Browser Manager - (.Pas de propri�taire.) [HKLM] -- {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}
O42 - Logiciel: Ciel Auto-entrepreneur Facile 1.40 - (.Ciel.) [HKLM] -- {AF86BA3B-B465-4E12-B771-E12208FDB89B}
O42 - Logiciel: Ciel Compta 16.0 - (.Ciel.) [HKLM] -- {F3BCE8FA-0EE2-4628-BF02-AB5AF4077997}
O42 - Logiciel: Ciel Gestion Commerciale 16.0 - (.Ciel.) [HKLM] -- {EFABFA23-0807-4BB3-8375-BE04923A5E37}
O42 - Logiciel: Ciel Immobilisations 16.0 - (.Ciel.) [HKLM] -- {83BB956C-103E-4D36-823D-A2A640DFAF06}
O42 - Logiciel: Ciel Paye 16.00 - (.CIEL.) [HKLM] -- {CB004EB8-C6DD-4908-8D49-C8ABA082B346}
O42 - Logiciel: Creative WebCam Center - (.Pas de propri�taire.) [HKLM] -- Creative WebCam Center
O42 - Logiciel: Creative WebCam Live! Driver (1.01.01.0730) - (.Pas de propri�taire.) [HKLM] -- Creative PD0630
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Dell Resource CD - (.Nom de votre soci�t�.) [HKLM] -- {42929F0F-CE14-47AF-9FC7-FF297A603021}
O42 - Logiciel: Dream Pinball 3D - (.TopWare Interactive Inc..) [HKLM] -- Dream Pinball 3D
O42 - Logiciel: EasyPHP 1.8 - (.Pas de propri�taire.) [HKLM] -- EasyPHP_is1
O42 - Logiciel: FileZilla (remove only) - (.Pas de propri�taire.) [HKLM] -- FileZilla
O42 - Logiciel: FrameFox Extensions 1.0.8.0 - (.QwertyBox Team.) [HKLM] -- {F842523D-0F22-4A00-A523-BA14655A4155}
O42 - Logiciel: Free M4a to MP3 Converter 5.9 - (.ManiacTools.com.) [HKLM] -- Free M4a to MP3 Converter_is1
O42 - Logiciel: Free Mp3 Wma Converter V 1.4.0 - (.Renan Broquin.) [HKLM] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Free Video Converter V 3.1 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1
O42 - Logiciel: Free Video Flip and Rotate version 2.1.5.1212 - (.DVDVideoSoft Ltd..) [HKLM] -- Free Video Flip and Rotate_is1
O42 - Logiciel: FreeMind - (.Pas de propri�taire.) [HKLM] -- B991B020-2968-11D8-AF23-444553540000_is1
O42 - Logiciel: GameHouse Sudoku - (.GameHouse, Inc..) [HKLM] -- GameHouse Sudoku
O42 - Logiciel: Giganews Accelerator - (.Giganews.) [HKLM] -- {E7300AF3-DD5B-4E86-A291-7631BE0C62C7}
O42 - Logiciel: Glary Utilities 2.53.0.1726 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Chrome Frame - (.Google Inc..) [HKLM] -- Google Chrome Frame
O42 - Logiciel: Google�Earth - (.Google.) [HKLM] -- {28E82311-8616-11E1-BEB0-B8AC6F97B88E}
O42 - Logiciel: GrabIt 1.7.2 Beta 6 (build 1008) - (.Ilan Shemes.) [HKLM] -- GrabIt_is1
O42 - Logiciel: HP OCR Software 9.0 - (.HP.) [HKLM] -- HPOCR
O42 - Logiciel: HP Photosmart All-In-One Software 9.0 - (.HP.) [HKLM] -- {B46AC30C-22D2-4610-B041-1DA7BB29EB57}
O42 - Logiciel: HP Smart Web Printing - (.Nom de votre soci�t�.) [HKLM] -- {415CDA53-9100-476F-A7B2-476691E117C7}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {8C6027FD-53DC-446D-BB75-CACD7028A134}
O42 - Logiciel: HPSSupply - (.Nom de votre soci�t�.) [HKLM] -- {487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}
O42 - Logiciel: High Definition Audio Driver Package - KB888111 - (.Microsoft Corporation.) [HKLM] -- KB888111WXPSP2
O42 - Logiciel: Hitori Sudoku - (.Mindscape.) [HKLM] -- {2B2DACCB-0C84-4C1A-B224-2CAEE250EF9F}
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Installer Yahoo! Messenger - (.Pas de propri�taire.) [HKLM] -- Get Yahoo! Messenger
O42 - Logiciel: Intel(R) PRO Network Connections 12.1.12.0 - (.Intel.) [HKLM] -- {777CA40C-0206-4EF6-A0FC-618BF06BF8D0}
O42 - Logiciel: Internet Explorer (Enable DEP) - (.Pas de propri�taire.) [HKLM] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9}
O42 - Logiciel: IsoBuster 2.5.5 - (.Smart Projects.) [HKLM] -- IsoBuster_is1
O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216012FF}
O42 - Logiciel: Java(TM) 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}
O42 - Logiciel: MSN - (.Pas de propri�taire.) [HKLM] -- MSNINST
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 6.0 Parser - (.Microsoft Corporation.) [HKLM] -- {AEB9948B-4FF2-47C9-990E-47014492A0FE}
O42 - Logiciel: Macromedia Dreamweaver 8 - (.Macromedia.) [HKLM] -- {0837A661-FEC3-48B3-876C-91E7D32048A9}
O42 - Logiciel: Macromedia Extension Manager - (.Macromedia, Inc..) [HKLM] -- {5546CDB5-2CE2-498B-B059-5B3BF81FC41F}
O42 - Logiciel: Macromedia Flash 8 - (.Macromedia.) [HKLM] -- {2BD5C305-1B27-4D41-B690-7A61172D2FEB}
O42 - Logiciel: Macromedia Flash 8 Video Encoder - (.Macromedia.) [HKLM] -- {8BF2C401-02CE-424D-BC26-6C4F9FB446B6}
O42 - Logiciel: Magic ISO Maker v5.5 (build 0276) - (.Pas de propri�taire.) [HKLM] -- Magic ISO Maker v5.5 (build 0276)
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM] -- Messenger Plus! Live
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Mindjet - (.Mindjet.) [HKLM] -- {1BDEB9AD-A0ED-4F59-AD04-416A35FCB15B}
O42 - Logiciel: MobileMe Control Panel - (.Apple Inc..) [HKLM] -- {BA165460-FCF7-4D6C-A7A2-F2321700720F}
O42 - Logiciel: Mozilla Firefox 17.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 17.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: MyFreeCodec - (.Pas de propri�taire.) [HKCU] -- MyFreeCodec
O42 - Logiciel: Notepad++ - (.Pas de propri�taire.) [HKLM] -- Notepad++
O42 - Logiciel: OpenOffice.org 3.0 - (.OpenOffice.org.) [HKLM] -- {6860B340-530D-46B3-91F8-1AE1F70F7C33}
O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM] -- {AC599724-5755-48C1-ABE7-ABB857652930}
O42 - Logiciel: PDF-XChange 3 - (.Tracker Software.) [HKLM] -- PDF-XChange 3_is1
O42 - Logiciel: PDFCreator - (.Frank Heind�rfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: PDFCreator Toolbar - (.Pas de propri�taire.) [HKLM] -- PDFCreator Toolbar
O42 - Logiciel: PPT2Flash Professional - (.Wondershare Software.) [HKLM] -- Wondershare PPT2Flash Professional(Build 3.2.2.2)_is1
O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) - (.Nokia.) [HKLM] -- 3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F
O42 - Logiciel: Photoshop Camera Raw - (.Adobe Systems Incorporated.) [HKLM] -- {CC75AB5C-2110-4A7F-AF52-708680D22FE8}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: Quick Zip 4.60.019 - (.Joseph Leung.) [HKLM] -- Quick Zip_is1
O42 - Logiciel: QuickPar 0.9 - (.Peter B. Clements.) [HKLM] -- QuickPar
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {C9E14402-3631-4182-B377-6B0DFB1C0339}
O42 - Logiciel: QwertyBox 1.0.3.0 - (.QwertyBox Team.) [HKLM] -- {836B2544-9D21-4C69-BC3A-FF5E6320B5A9}
O42 - Logiciel: Real Alternative 1.8.2 - (.Pas de propri�taire.) [HKLM] -- RealAlt_is1
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva
O42 - Logiciel: SAMSUNG SYMBIAN USB Download Driver - (.SAMSUNG Electronics CO,.LTD.) [HKLM] -- {D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: SWiSH Max2 - (.Pas de propri�taire.) [HKLM] -- SWiSH Max2
O42 - Logiciel: SafeFax 3.0.999 - (.Alliance MCA.) [HKLM] -- SafeFax_is1
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97}
O42 - Logiciel: Samsung PC Studio 3 USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM] -- {EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}
O42 - Logiciel: SamsungConnectivityCableDriver - (.Samsung.) [HKLM] -- {7E84FAC8-C518-40F9-9807-7455301D6D25}
O42 - Logiciel: Searchqu Toolbar - (.Bandoo Media Inc.) [HKLM] -- Searchqu Toolbar
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Signal Spam Addin Outlook 2007 - (.Signal Spam.) [HKLM] -- {2770A92E-A60B-4F5F-A82E-F2EF4AD5D2C6}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Suite Shared Configuration CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {842B4B72-9E8F-4962-B3C1-1C422A5C4434}
O42 - Logiciel: TomTom HOME - (.Nom de votre soci�t�.) [HKLM] -- {9017CEAF-BE5A-4F73-8A0E-C87E26971E55}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: User Agent String Utility - (.Microsoft.) [HKLM] -- {9DF095E1-8EC2-4892-8740-93769DB1E944}
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: WinDjView 1.0.3 - (.Andrew Zhezherun.) [HKLM] -- WinDjView
O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propri�taire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows PowerShell(TM) 1.0 - (.Microsoft Corporation.) [HKLM] -- KB926139-v2
O42 - Logiciel: Windows XP Service Pack�3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: dBpowerAMP FLAC Codec - (.Pas de propri�taire.) [HKLM] -- dBpowerAMP FLAC Codec
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {0F6F6876-6334-4977-B5DD-CFC12E193420}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: �Torrent - (.Pas de propri�taire.) [HKCU] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\5a28ad8e139e549]
[HKCU\Software\AAA_LOGO]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ASK Homework]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS]
[HKCU\Software\Adobe]
[HKCU\Software\Alliance MCA]
[HKCU\Software\Andrew Zhezherun]
[HKCU\Software\AppDataLow\AskToolbarInfo]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ask.com]
[HKCU\Software\AskToolbar]
[HKCU\Software\Aurigma]
[HKCU\Software\Axantum]
[HKCU\Software\BitTorrent]
[HKCU\Software\BrowserMngr]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\Convar]
[HKCU\Software\Creative Tech]
[HKCU\Software\DT Soft]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\Dell Computer Corporation]
[HKCU\Software\Digital River]
[HKCU\Software\DivXNetworks]
[HKCU\Software\Duuqu]
[HKCU\Software\Fastlane]
[HKCU\Software\FileZilla]
[HKCU\Software\Gabest]
[HKCU\Software\GameHouse]
[HKCU\Software\Giganews, Inc.]
[HKCU\Software\Giganews]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\Illustrate]
[HKCU\Software\InstallCore]
[HKCU\Software\Intel]
[HKCU\Software\Iris]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\MagicISO]
[HKCU\Software\MainConcept (Adobe2)]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\ManiacTools]
[HKCU\Software\Mindjet]
[HKCU\Software\Mobileleader]
[HKCU\Software\Monitored]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Myfree Codec]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PDFCreator]
[HKCU\Software\Patchou]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\QuickPar]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SWiSHzone.com]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Sage]
[HKCU\Software\Samsung]
[HKCU\Software\Shemes]
[HKCU\Software\Smart Projects]
[HKCU\Software\SpoonInstall]
[HKCU\Software\TeleCharger]
[HKCU\Software\TomTom]
[HKCU\Software\Tracker Software]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VirtualDub.org]
[HKCU\Software\Webex]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\WonderShare]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\mozilla]
[HKCU\Software\pdfforge.org]
[HKCU\Software\searchqutoolbar]
[HKCU\Software\settings]
[HKCU\Software\?? ?? ???? ????? ??? ?? ????]
[HKLM\Software\5a28ad8e139e549]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\AVS4YOU]
[HKLM\Software\AVS]
[HKLM\Software\ActiveTouch]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Axantum]
[HKLM\Software\BrowserMngr]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Creative Tech]
[HKLM\Software\DEVGURU]
[HKLM\Software\DT Soft]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\DataMngr]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Duuqu]
[HKLM\Software\GEAR Software]
[HKLM\Software\Gabest]
[HKLM\Software\Gemplus]
[HKLM\Software\GlarySoft]
[HKLM\Software\Global IP Solutions]
[HKLM\Software\Google]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\MCCI]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MarkAny]
[HKLM\Software\McAfee.com]
[HKLM\Software\Mindjet]
[HKLM\Software\Mindscape]
[HKLM\Software\Minnetonka Audio Software]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Myfree Codec]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PC Connectivity Solution]
[HKLM\Software\PCSuite]
[HKLM\Software\Patchou]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RealAlternative]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SWiSHzone.com]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sage]
[HKLM\Software\Samsung]
[HKLM\Software\Schlumberger]
[HKLM\Software\SearchquMediabarTb]
[HKLM\Software\Sierra On-Line]
[HKLM\Software\Software FX, Inc.]
[HKLM\Software\Software]
[HKLM\Software\Sonic]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\TomTom]
[HKLM\Software\Tracker Software]
[HKLM\Software\Ushustech]
[HKLM\Software\VideoLAN]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\WonderShare]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
[HKLM\Software\pdfforge.org]
[HKLM\Software\tpfmon]
~ Scan Softwares in 00mn 01s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 31/10/2008 - 11:40:46 - [30,274] ----D C:\Program Files\AAALOGO
O43 - CFD: 12/10/2010 - 15:34:52 - [-1907,242] ----D C:\Program Files\Adobe
O43 - CFD: 02/12/2010 - 10:27:25 - [14,717] ----D C:\Program Files\Alliance MCA
O43 - CFD: 07/02/2010 - 07:08:54 - [390,566] ----D C:\Program Files\Alwil Software
O43 - CFD: 27/08/2011 - 21:17:19 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 13/04/2010 - 14:12:57 - [1,434] ----D C:\Program Files\Ask.com
O43 - CFD: 24/10/2008 - 09:45:30 - [130,759] ----D C:\Program Files\ATI Technologies
O43 - CFD: 28/06/2010 - 13:05:06 - [81,493] ----D C:\Program Files\AVSMedia
O43 - CFD: 05/02/2013 - 22:04:30 - [2,430] ----D C:\Program Files\Axantum
O43 - CFD: 06/10/2012 - 10:47:51 - [0,602] ----D C:\Program Files\Bonjour
O43 - CFD: 16/02/2013 - 12:14:05 - [0] ----D C:\Program Files\Boxore
O43 - CFD: 21/08/2010 - 19:17:45 - [354,733] ----D C:\Program Files\Ciel
O43 - CFD: 24/10/2008 - 08:41:34 - [0] ----D C:\Program Files\ComPlus Applications
O43 - CFD: 15/01/2010 - 18:54:35 - [0,497] ----D C:\Program Files\Conduit
O43 - CFD: 07/02/2011 - 19:31:35 - [6,869] ----D C:\Program Files\Convar
O43 - CFD: 07/01/2009 - 10:00:00 - [16,797] ----D C:\Program Files\Creative
O43 - CFD: 07/09/2012 - 19:36:58 - [25,441] ----D C:\Program Files\DAEMON Tools Lite
O43 - CFD: 24/10/2008 - 09:31:01 - [0] ----D C:\Program Files\Dell
O43 - CFD: 28/08/2010 - 10:29:27 - [4,296] ----D C:\Program Files\DIFX
O43 - CFD: 26/11/2012 - 14:20:56 - [3,324] ----D C:\Program Files\Duuqu
O43 - CFD: 20/12/2012 - 11:19:18 - [4,141] ----D C:\Program Files\DVDVideoSoft
O43 - CFD: 19/08/2010 - 22:11:46 - [95,420] ----D C:\Program Files\EasyPHP1-8
O43 - CFD: 23/10/2010 - 19:53:54 - [219,525] ----D C:\Program Files\EasyPHP5.2.10
O43 - CFD: 21/08/2011 - 14:42:14 - [409,260] ----D C:\Program Files\eMule
O43 - CFD: 08/05/2010 - 16:33:28 - [0,049] ----D C:\Program Files\Fastlane
O43 - CFD: 20/12/2012 - 11:19:18 - [1285,401] ----D C:\Program Files\Fichiers communs
O43 - CFD: 13/12/2010 - 10:25:10 - [12,157] ----D C:\Program Files\FileZilla
O43 - CFD: 26/11/2012 - 14:22:16 - [0,274] ----D C:\Program Files\FrameFox
O43 - CFD: 11/11/2008 - 12:59:48 - [11,233] ----D C:\Program Files\Free Audio Pack
O43 - CFD: 08/10/2009 - 16:20:47 - [2,559] ----D C:\Program Files\Free M4a to MP3 Converter
O43 - CFD: 06/10/2012 - 13:10:29 - [10,901] ----D C:\Program Files\Free Video Converter
O43 - CFD: 02/11/2012 - 08:49:11 - [16,071] ----D C:\Program Files\FreeMind
O43 - CFD: 13/04/2010 - 14:12:58 - [3,659] ----D C:\Program Files\GameHouse
O43 - CFD: 22/02/2010 - 19:01:26 - [1,035] ----D C:\Program Files\Giganews Accelerator
O43 - CFD: 14/02/2013 - 09:51:15 - [18,836] ----D C:\Program Files\Glary Utilities
O43 - CFD: 07/01/2013 - 13:41:47 - [521,172] ----D C:\Program Files\Google
O43 - CFD: 22/11/2011 - 19:26:24 - [7,749] ----D C:\Program Files\GrabIt
O43 - CFD: 24/10/2008 - 17:38:40 - [0] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 24/10/2008 - 17:40:39 - [198,923] ----D C:\Program Files\HP
O43 - CFD: 11/11/2008 - 12:52:58 - [8,275] ----D C:\Program Files\Illustrate
O43 - CFD: 08/12/2012 - 16:14:16 - [53,051] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 24/10/2008 - 09:43:22 - [7,599] ----D C:\Program Files\Intel
O43 - CFD: 13/02/2013 - 11:34:51 - [8,684] ----D C:\Program Files\Internet Explorer
O43 - CFD: 06/10/2012 - 10:53:40 - [2,258] ----D C:\Program Files\iPod
O43 - CFD: 06/10/2012 - 10:54:50 - [145,931] ----D C:\Program Files\iTunes
O43 - CFD: 22/08/2010 - 16:34:52 - [148,783] ----D C:\Program Files\Java
O43 - CFD: 30/10/2008 - 20:31:51 - [15,244] ----D C:\Program Files\JRE
O43 - CFD: 08/06/2010 - 17:18:32 - [328,623] ----D C:\Program Files\Macromedia
O43 - CFD: 24/12/2009 - 13:58:01 - [2,960] ----D C:\Program Files\MagicISO
O43 - CFD: 16/02/2013 - 11:25:36 - [12,157] ----D C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 28/08/2010 - 10:28:45 - [2,414] ----D C:\Program Files\MarkAny
O43 - CFD: 24/10/2008 - 20:47:55 - [2,053] ----D C:\Program Files\Messenger
O43 - CFD: 15/01/2010 - 19:07:48 - [12,648] ----D C:\Program Files\Messenger Plus! Live
O43 - CFD: 20/04/2012 - 06:35:58 - [0,718] ----D C:\Program Files\Microsoft
O43 - CFD: 24/10/2008 - 08:44:15 - [0] ----D C:\Program Files\microsoft frontpage
O43 - CFD: 01/07/2011 - 17:47:01 - [667,076] ----D C:\Program Files\Microsoft Office
O43 - CFD: 11/05/2012 - 06:46:38 - [36,641] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 04/10/2010 - 11:10:57 - [0,268] ----D C:\Program Files\Microsoft User Agent String Utility
O43 - CFD: 01/03/2010 - 19:48:57 - [0,014] ----D C:\Program Files\Microsoft Visual Studio
O43 - CFD: 01/03/2010 - 19:45:22 - [1,323] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 03/03/2010 - 08:25:01 - [3,554] ----D C:\Program Files\Microsoft Works
O43 - CFD: 02/11/2012 - 09:08:56 - [7,797] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 02/11/2012 - 10:01:40 - [236,594] ----D C:\Program Files\Mindjet
O43 - CFD: 17/10/2012 - 13:09:47 - [68,135] ----D C:\Program Files\Mindscape
O43 - CFD: 12/08/2010 - 04:46:09 - [9,894] ----D C:\Program Files\Movie Maker
O43 - CFD: 07/02/2013 - 11:05:05 - [44,368] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 02/01/2013 - 10:51:08 - [0,212] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 01/03/2010 - 19:27:52 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 21/11/2008 - 10:30:58 - [28,414] ----D C:\Program Files\MSECache
O43 - CFD: 25/05/2009 - 22:01:52 - [20,477] ----D C:\Program Files\MSN
O43 - CFD: 24/10/2008 - 08:41:03 - [0] ----D C:\Program Files\MSN Gaming Zone
O43 - CFD: 24/10/2008 - 20:45:27 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 08/12/2012 - 17:35:14 - [10,585] ----D C:\Program Files\MyFree Codec
O43 - CFD: 24/10/2008 - 17:08:36 - [3,133] ----D C:\Program Files\NetMeeting
O43 - CFD: 05/06/2010 - 15:42:07 - [8,739] ----D C:\Program Files\Notepad++
O43 - CFD: 24/10/2008 - 08:41:09 - [0,002] ----D C:\Program Files\Online Services
O43 - CFD: 30/10/2008 - 20:31:49 - [337,930] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 15/12/2010 - 23:17:33 - [4,176] ----D C:\Program Files\Outlook Express
O43 - CFD: 28/08/2010 - 10:28:43 - [9,319] ----D C:\Program Files\PC Connectivity Solution
O43 - CFD: 24/10/2008 - 13:31:11 - [32,307] ----D C:\Program Files\PDFCreator
O43 - CFD: 24/10/2008 - 13:31:03 - [0,973] ----D C:\Program Files\PDFCreator Toolbar
O43 - CFD: 08/12/2009 - 18:42:47 - [0,987] ----D C:\Program Files\QuickPar
O43 - CFD: 27/08/2011 - 21:19:06 - [76,969] ----D C:\Program Files\QuickTime
O43 - CFD: 24/10/2008 - 13:34:54 - [11,219] ----D C:\Program Files\QuickZip4
O43 - CFD: 26/11/2012 - 14:22:48 - [1,196] ----D C:\Program Files\QwertyBox
O43 - CFD: 24/10/2008 - 13:13:48 - [20,407] ----D C:\Program Files\Real Alternative
O43 - CFD: 24/10/2008 - 09:55:40 - [14,271] ----D C:\Program Files\Realtek
O43 - CFD: 07/02/2011 - 19:34:01 - [1,908] ----D C:\Program Files\Recuva
O43 - CFD: 21/11/2009 - 05:30:14 - [34,730] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 21/08/2010 - 12:49:01 - [1,090] ----D C:\Program Files\RegCleaner
O43 - CFD: 08/12/2012 - 16:12:32 - [753,129] ----D C:\Program Files\Samsung
O43 - CFD: 06/10/2012 - 13:09:56 - [20,101] ----D C:\Program Files\Searchqu Toolbar
O43 - CFD: 24/10/2008 - 08:42:55 - [0,001] ----D C:\Program Files\Services en ligne
O43 - CFD: 13/01/2011 - 09:36:16 - [0,268] ----D C:\Program Files\Signal Spam
O43 - CFD: 28/08/2009 - 14:19:49 - [8,916] ----D C:\Program Files\Smart Projects
O43 - CFD: 06/10/2012 - 13:07:44 - [2,858] ----D C:\Program Files\Software
O43 - CFD: 03/12/2009 - 07:45:23 - [75,388] ----D C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 20/04/2010 - 10:57:01 - [57,818] ----D C:\Program Files\SWiSH Max2
O43 - CFD: 21/08/2012 - 11:24:41 - [0] ----D C:\Program Files\TomTom DesktopSuite
O43 - CFD: 21/08/2012 - 11:30:47 - [48,411] ----D C:\Program Files\TomTom HOME 2
O43 - CFD: 21/08/2012 - 11:25:34 - [0,021] ----D C:\Program Files\TomTom International B.V
O43 - CFD: 07/09/2012 - 19:50:57 - [754,191] ----D C:\Program Files\TopWare
O43 - CFD: 24/10/2008 - 09:04:38 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 10/12/2008 - 16:21:57 - [19,176] ----D C:\Program Files\uTorrent
O43 - CFD: 24/10/2008 - 13:16:19 - [75,345] ----D C:\Program Files\VideoLAN
O43 - CFD: 01/11/2012 - 12:22:42 - [1,725] ----D C:\Program Files\WinDjView
O43 - CFD: 20/11/2009 - 08:10:42 - [59,062] ----D C:\Program Files\Windows Live
O43 - CFD: 20/11/2009 - 08:07:30 - [0,234] ----D C:\Program Files\Windows Live SkyDrive
O43 - CFD: 08/12/2012 - 16:09:54 - [4,962] ----D C:\Program Files\Windows Media Player
O43 - CFD: 19/08/2010 - 22:03:42 - [0] ----D C:\Program Files\Windows NT
O43 - CFD: 24/10/2008 - 08:42:58 - [0] --H-D C:\Program Files\WindowsUpdate
O43 - CFD: 24/10/2008 - 13:39:24 - [3,362] ----D C:\Program Files\WinRAR
O43 - CFD: 08/06/2010 - 16:37:47 - [17,495] ----D C:\Program Files\Wondershare
O43 - CFD: 24/10/2008 - 08:44:15 - [0] ----D C:\Program Files\xerox
O43 - CFD: 16/02/2013 - 21:08:28 - [11,466] ----D C:\Program Files\ZHPDiag
O43 - CFD: 18/02/2012 - 07:08:29 - [649,839] ----D C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 21/06/2010 - 12:20:14 - [26,106] ----D C:\Program Files\Fichiers communs\Adobe AIR
O43 - CFD: 06/10/2012 - 10:53:39 - [118,009] ----D C:\Program Files\Fichiers communs\Apple
O43 - CFD: 28/06/2010 - 13:05:45 - [49,200] ----D C:\Program Files\Fichiers communs\AVSMedia
O43 - CFD: 26/07/2010 - 10:14:41 - [26,626] ----D C:\Program Files\Fichiers communs\Ciel
O43 - CFD: 01/03/2010 - 19:48:57 - [0,089] ----D C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 20/12/2012 - 11:19:23 - [56,582] ----D C:\Program Files\Fichiers communs\DVDVideoSoft
O43 - CFD: 24/10/2008 - 17:38:31 - [0,436] ----D C:\Program Files\Fichiers communs\Hewlett-Packard
O43 - CFD: 24/10/2008 - 17:38:58 - [4,768] ----D C:\Program Files\Fichiers communs\HP
O43 - CFD: 24/10/2008 - 09:55:34 - [14,614] ----D C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 22/08/2010 - 16:35:26 - [30,839] ----D C:\Program Files\Fichiers communs\Java
O43 - CFD: 31/10/2008 - 11:25:22 - [0,957] ----D C:\Program Files\Fichiers communs\Macromedia
O43 - CFD: 21/06/2010 - 12:13:16 - [0,626] ----D C:\Program Files\Fichiers communs\Macrovision Shared
O43 - CFD: 28/03/2012 - 20:04:02 - [243,453] ----D C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 24/10/2008 - 08:42:12 - [0,893] ----D C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 28/12/2009 - 13:09:06 - [0] ----D C:\Program Files\Fichiers communs\Nero
O43 - CFD: 24/10/2008 - 10:34:47 - [0] ----D C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 26/07/2010 - 10:11:36 - [0,586] ----D C:\Program Files\Fichiers communs\Sage
O43 - CFD: 24/10/2008 - 08:42:16 - [0,008] ----D C:\Program Files\Fichiers communs\Services
O43 - CFD: 24/10/2008 - 10:34:44 - [3,612] ----D C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 20/04/2010 - 09:28:31 - [0,059] ----D C:\Program Files\Fichiers communs\SWiSHzone.com
O43 - CFD: 11/07/2012 - 07:17:02 - [39,746] ----D C:\Program Files\Fichiers communs\System
O43 - CFD: 13/11/2009 - 19:09:53 - [0] ----D C:\Program Files\Fichiers communs\Windows Live
O43 - CFD: 26/10/2008 - 15:42:16 - [18,356] -SH-D C:\Program Files\Fichiers communs\WindowsLiveInstaller
O43 - CFD: 16/02/2013 - 11:25:30 - [-1021,988] R-H-D C:\Documents and Settings\All Users\Application Data
O43 - CFD: 16/02/2013 - 11:25:32 - [0,003] ----D C:\Documents and Settings\All Users\Bureau
O43 - CFD: 28/01/2013 - 14:03:22 - [8,557] R---D C:\Documents and Settings\All Users\Documents
O43 - CFD: 07/01/2013 - 15:34:31 - [0,377] -SH-D C:\Documents and Settings\All Users\DRM
O43 - CFD: 24/10/2008 - 10:34:23 - [0] ----D C:\Documents and Settings\All Users\Favoris
O43 - CFD: 02/11/2012 - 10:02:16 - [0,332] R---D C:\Documents and Settings\All Users\Menu D�marrer
O43 - CFD: 02/11/2012 - 10:02:14 - [0,032] --H-D C:\Documents and Settings\All Users\Mod�les
O43 - CFD: 11/11/2008 - 12:53:03 - [0] ----D C:\Documents and Settings\bernard\Application Data\AccurateRip
O43 - CFD: 07/02/2013 - 12:44:04 - [56,132] ----D C:\Documents and Settings\bernard\Application Data\Adobe
O43 - CFD: 06/10/2012 - 14:26:34 - [37,831] ----D C:\Documents and Settings\bernard\Application Data\Apple Computer
O43 - CFD: 24/10/2008 - 10:54:24 - [0] ----D C:\Documents and Settings\bernard\Application Data\ATI
O43 - CFD: 13/10/2010 - 20:09:26 - [0,000] ----D C:\Documents and Settings\bernard\Application Data\AVSMedia
O43 - CFD: 07/01/2009 - 10:05:22 - [0,001] ----D C:\Documents and Settings\bernard\Application Data\Creative
O43 - CFD: 08/09/2012 - 12:27:56 - [1,049] ----D C:\Documents and Settings\bernard\Application Data\DAEMON Tools Lite
O43 - CFD: 20/01/2013 - 16:54:22 - [0,002] ----D C:\Documents and Settings\bernard\Application Data\dvdcss
O43 - CFD: 20/12/2012 - 11:19:32 - [0,148] ----D C:\Documents and Settings\bernard\Application Data\DVDVideoSoft
O43 - CFD: 21/08/2010 - 11:33:57 - [0,271] ----D C:\Documents and Settings\bernard\Application Data\ElevatedDiagnostics
O43 - CFD: 26/12/2012 - 16:37:26 - [0,001] ----D C:\Documents and Settings\bernard\Application Data\FreeVideoConverter
O43 - CFD: 28/06/2010 - 12:58:40 - [0,089] ----D C:\Documents and Settings\bernard\Application Data\GlarySoft
O43 - CFD: 11/12/2010 - 13:05:21 - [0,075] ----D C:\Documents and Settings\bernard\Application Data\Google
O43 - CFD: 14/02/2013 - 14:13:28 - [135,056] ----D C:\Documents and Settings\bernard\Application Data\GrabIt
O43 - CFD: 05/07/2010 - 14:09:59 - [0,050] ----D C:\Documents and Settings\bernard\Application Data\HP
O43 - CFD: 24/10/2008 - 17:40:34 - [0,063] ----D C:\Documents and Settings\bernard\Application Data\HPAppData
O43 - CFD: 24/10/2008 - 09:04:39 - [0] ----D C:\Documents and Settings\bernard\Application Data\Identities
O43 - CFD: 08/06/2010 - 17:21:31 - [4,794] ----D C:\Documents and Settings\bernard\Application Data\Macromedia
O43 - CFD: 16/02/2013 - 11:25:45 - [0,014] ----D C:\Documents and Settings\bernard\Application Data\Malwarebytes
O43 - CFD: 21/11/2008 - 16:54:21 - [0,000] ----D C:\Documents and Settings\bernard\Application Data\Media Player Classic
O43 - CFD: 11/06/2012 - 16:41:14 - [7,961] -S--D C:\Documents and Settings\bernard\Application Data\Microsoft
O43 - CFD: 24/10/2008 - 12:52:39 - [38,441] ----D C:\Documents and Settings\bernard\Application Data\Mozilla
O43 - CFD: 27/12/2009 - 10:39:04 - [0,454] ----D C:\Documents and Settings\bernard\Application Data\Nero
O43 - CFD: 21/04/2010 - 06:48:56 - [0,107] ----D C:\Documents and Settings\bernard\Application Data\Notepad++
O43 - CFD: 05/02/2013 - 22:03:26 - [0,288] ----D C:\Documents and Settings\bernard\Application Data\OpenCandy
O43 - CFD: 30/10/2008 - 20:33:17 - [2,452] ----D C:\Documents and Settings\bernard\Application Data\OpenOffice.org
O43 - CFD: 30/01/2010 - 19:41:22 - [0,000] ----D C:\Documents and Settings\bernard\Application Data\PC Suite
O43 - CFD: 06/11/2008 - 17:56:16 - [0,001] ----D C:\Documents and Settings\bernard\Application Data\Real
O43 - CFD: 08/12/2012 - 16:55:18 - [75,460] ----D C:\Documents and Settings\bernard\Application Data\Samsung
O43 - CFD: 06/10/2012 - 13:10:46 - [0] ----D C:\Documents and Settings\bernard\Application Data\searchquband
O43 - CFD: 06/10/2012 - 13:11:22 - [0,014] ----D C:\Documents and Settings\bernard\Application Data\searchqutoolbar
O43 - CFD: 30/10/2008 - 20:31:08 - [104,109] ----D C:\Documents and Settings\bernard\Application Data\Sun
O43 - CFD: 21/08/2012 - 11:26:44 - [3,481] ----D C:\Documents and Settings\bernard\Application Data\TomTom
O43 - CFD: 30/11/2012 - 15:41:00 - [49,936] ----D C:\Documents and Settings\bernard\Application Data\uTorrent
O43 - CFD: 16/02/2013 - 12:49:22 - [5,694] ----D C:\Documents and Settings\bernard\Application Data\vlc
O43 - CFD: 24/10/2008 - 13:39:37 - [0] ----D C:\Documents and Settings\bernard\Application Data\WinRAR
O43 - CFD: 23/06/2010 - 09:27:17 - [272,421] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Adobe
O43 - CFD: 24/10/2008 - 13:32:23 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Apple
O43 - CFD: 28/01/2010 - 13:07:49 - [72,901] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Apple Computer
O43 - CFD: 25/10/2008 - 15:45:11 - [0,001] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 28/08/2009 - 14:30:36 - [0,181] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\AskToolbar
O43 - CFD: 13/01/2011 - 09:38:38 - [0,067] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\assembly
O43 - CFD: 24/10/2008 - 10:54:24 - [0,010] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\ATI
O43 - CFD: 27/02/2010 - 10:31:20 - [0,016] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Conduit
O43 - CFD: 12/06/2010 - 11:01:29 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Deployment
O43 - CFD: 21/08/2012 - 11:29:37 - [227,885] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 07/01/2013 - 13:43:45 - [-1049,126] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Google
O43 - CFD: 28/01/2012 - 15:33:48 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Help
O43 - CFD: 13/04/2009 - 12:00:14 - [1,804] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\HP
O43 - CFD: 24/01/2009 - 16:21:55 - [0,216] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Identities
O43 - CFD: 28/10/2008 - 07:21:52 - [33,915] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Installer260
O43 - CFD: 28/10/2008 - 07:25:14 - [30,447] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Installer3132
O43 - CFD: 08/06/2010 - 17:21:33 - [7,282] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Macromedia
O43 - CFD: 08/12/2012 - 16:39:49 - [-1329,048] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Microsoft
O43 - CFD: 13/01/2011 - 09:38:38 - [0,000] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Microsoft Corporation
O43 - CFD: 28/02/2010 - 16:18:31 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Microsoft Help
O43 - CFD: 02/11/2012 - 10:03:22 - [15,263] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Mindjet
O43 - CFD: 24/10/2008 - 12:52:38 - [134,952] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Mozilla
O43 - CFD: 27/12/2009 - 21:56:03 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Nero
O43 - CFD: 28/06/2010 - 08:29:39 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\PCHealth
O43 - CFD: 13/02/2013 - 20:58:50 - [0,476] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\QuickPar
O43 - CFD: 24/10/2008 - 13:13:45 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Real
O43 - CFD: 08/12/2012 - 16:54:56 - [0,032] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Samsung
O43 - CFD: 06/10/2012 - 13:13:00 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Software
O43 - CFD: 06/10/2012 - 13:13:33 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\Temp
O43 - CFD: 21/08/2012 - 11:26:44 - [1,899] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\TomTom
O43 - CFD: 23/06/2010 - 10:02:34 - [0] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 02/11/2012 - 09:06:26 - [92,291] ----D C:\Documents and Settings\bernard\Local Settings\Application Data\{99124B14-63B6-4E6B-8C2D-65B84228B0C9}
O43 - CFD: 24/10/2008 - 12:59:26 - [0,014] R---D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Accessoires
O43 - CFD: 07/02/2011 - 19:31:35 - [0,003] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Convar
O43 - CFD: 11/11/2008 - 12:55:43 - [0,001] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\dBpowerAMP Music Converter
O43 - CFD: 30/10/2008 - 20:37:32 - [0,000] R---D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\D�marrage
O43 - CFD: 27/10/2008 - 20:40:53 - [0,003] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\FileZilla
O43 - CFD: 01/11/2008 - 22:11:51 - [0,000] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\GameHouse
O43 - CFD: 12/06/2010 - 11:03:40 - [0,005] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Google Chrome
O43 - CFD: 24/12/2009 - 13:58:00 - [0,004] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\MagicISO
O43 - CFD: 21/04/2010 - 06:48:32 - [0,001] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Notepad++
O43 - CFD: 11/09/2009 - 08:49:56 - [0,000] R---D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\Outils d'administration
O43 - CFD: 08/12/2009 - 18:41:43 - [0,002] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\QuickPar
O43 - CFD: 21/08/2012 - 11:26:39 - [0,001] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\TomTom
O43 - CFD: 07/09/2012 - 19:52:41 - [0,004] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\TopWare
O43 - CFD: 24/10/2008 - 13:39:24 - [0,002] ----D C:\Documents and Settings\bernard\Menu D�marrer\Programmes\WinRAR
~ Scan Program Folder in 03mn 33s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.04596D9F6D257FB7686A51C84FB766D9] - 16/02/2013 - 18:30:27 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [2058152]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/02/2013 - 18:25:57 ---A- . (...) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.30F465EC3BCF8D83696D196008C0A9A9] - 16/02/2013 - 18:25:44 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.6126492B237AE753280818B22A448784] - 16/02/2013 - 18:25:44 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 16/02/2013 - 18:25:23 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.51D6D4FF91C4FFF6893C73A3F1DAF570] - 16/02/2013 - 13:27:38 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32406]
O44 - LFC:[MD5.629CABB0421668C9D3D402A3C3D77E14] - 16/02/2013 - 11:25:27 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\system32\Drivers\mbam.sys [21104]
O44 - LFC:[MD5.62A4A464BC1740842FAB1EFFDAF15F70] - 16/02/2013 - 11:14:07 ---A- . (...) -- C:\WINDOWS\setupact.log [197250]
O44 - LFC:[MD5.A71C37E08BE1C53549828122496D9E51] - 15/02/2013 - 19:19:17 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [395726]
O44 - LFC:[MD5.5B54E9A7F909D734DAF401E56932BFCD] - 13/02/2013 - 13:47:27 ---A- . (...) -- C:\WINDOWS\system32\FNTCACHE.DAT [2379024]
O44 - LFC:[MD5.47FD7C6F04446182B44FFA3A1528D9C1] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\comsetup.log [668584]
O44 - LFC:[MD5.0AA3FC53CA84C6433505F46890C1162C] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\iis6.log [311338]
O44 - LFC:[MD5.5ECD4D6AD73775ADBF4C0288DA643369] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.C39BCC987D456DF5FF9DAD4D79A407AA] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [403306]
O44 - LFC:[MD5.FD251C94B032793CDF7C769A3BCB36D9] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\ocmsn.log [109319]
O44 - LFC:[MD5.337D5AA6F2F2E9C61E0BB1C2673024A3] - 13/02/2013 - 11:38:14 ---A- . (...) -- C:\WINDOWS\tsoc.log [756793]
O44 - LFC:[MD5.1B5812F52EAD7E496CEF18FDAE9C07B2] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [1970137]
O44 - LFC:[MD5.5CE62DDCA6BFDA25D15A5833D196A243] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\KB2797052-IE8.log [11933]
O44 - LFC:[MD5.5C01F38CEE8D36DA5EE50A6694ACDA82] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\msgsocm.log [98927]
O44 - LFC:[MD5.A10EF0035DC95F7D9CD4EA40CD94018E] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\ocgen.log [963657]
O44 - LFC:[MD5.EB5F98E42A20F57636E59BDC36DEC72C] - 13/02/2013 - 11:38:13 ---A- . (...) -- C:\WINDOWS\setupapi.log [669272]
O44 - LFC:[MD5.92843E46B0BC7F4A2E48493C70051C81] - 13/02/2013 - 11:37:58 ---A- . (...) -- C:\WINDOWS\KB2778344.log [16984]
O44 - LFC:[MD5.68FF06A76A297E3B211601D7551560F7] - 13/02/2013 - 11:37:58 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.4AB5E5D955AA5162DB389E41BF288CBE] - 13/02/2013 - 11:37:04 ---A- . (...) -- C:\WINDOWS\KB2799494.log [17586]
O44 - LFC:[MD5.B7173E57A5174C2F42A7C4A95B149509] - 13/02/2013 - 11:36:40 ---A- . (...) -- C:\WINDOWS\KB2802968.log [15864]
O44 - LFC:[MD5.5328BA2163D11BA109EB7B17043BC028] - 13/02/2013 - 11:35:43 ---A- . (...) -- C:\WINDOWS\KB2780091.log [15248]
O44 - LFC:[MD5.07A9D8AA9D06CF7F7960C0D5B6CDD27E] - 13/02/2013 - 11:35:26 ---A- . (...) -- C:\WINDOWS\KB2792100-IE8.log [15984]
O44 - LFC:[MD5.2E24B0EFC806AB6C12D3A3F675EF960A] - 13/02/2013 - 11:34:46 ---A- . (...) -- C:\WINDOWS\updspapi.log [731577]
O44 - LFC:[MD5.9D069CD8BF955DF95567899FC48ED4B4] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI [1294138]
O44 - LFC:[MD5.41F940B3C0912E843221796665E5B76B] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfc009.dat [89284]
O44 - LFC:[MD5.E93C2080636414E4A4BC2726D44A8885] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfc00C.dat [105868]
O44 - LFC:[MD5.ABA3C9D8E9D6CF7C421B0422ACF6CBEC] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfh009.dat [505820]
O44 - LFC:[MD5.51ECDFA8EF65CBC02468888CDB37D189] - 13/02/2013 - 11:28:33 ---A- . (...) -- C:\WINDOWS\system32\perfh00C.dat [579320]
O44 - LFC:[MD5.6280A479148CAEAD59E17A0CC3789161] - 10/02/2013 - 10:47:19 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerApp.exe [697712]
O44 - LFC:[MD5.3E5633C0E3B4FE04E6EBFFA597227617] - 10/02/2013 - 10:47:19 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl [74096]
O44 - LFC:[MD5.9501CE82389A3B51720E7B8A4B614216] - 05/02/2013 - 20:18:19 ---A- . (...) -- C:\WINDOWS\system32\CONFIG.NT [3121]
O44 - LFC:[MD5.668A0A822C7F99C21657CE58F3797C2C] - 29/01/2013 - 15:13:54 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [2206]
O44 - LFC:[MD5.36C2C22ACAEF3DD98E9A0D58E1E6CB01] - 28/01/2013 - 10:16:35 ---A- . (...) -- C:\WINDOWS\system32\SENT.log [1572]
O44 - LFC:[MD5.98431442B4A0A087BABFF6DD3A9F3924] - 28/01/2013 - 10:16:35 ---A- . (...) -- C:\WINDOWS\system32\TEST.log [7323]
O44 - LFC:[MD5.0171FE544E937EF8826463C6FE11043B] - 28/01/2013 - 10:16:21 ---A- . (...) -- C:\WINDOWS\hpoins21.dat [167153]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/01/2013 - 10:15:53 ---A- . (...) -- C:\WINDOWS\system32\RECV.log [0]
~ Scan Files in 00mn 23s
---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
~ Scan ShellExecuteHooks in 00mn 00s
---\\ Export de cl� d'application autoris�e (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau � distance de Microsoft�.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(...) -- C:\Program Files\eMule\emule.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\uTorrent\uTorrent.exe" [Enabled] .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" [Enabled] .(.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" [Enabled] .(.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" [Enabled] .(.Hewlett-Packard Co. - HP AiO Fax Manager.) -- C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" [Enabled] .(.Hewlett-Packard Co. - HP OfficeJet SendFax Interface.) -- C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" [Enabled] .(.Hewlett-Packard Co. - HP All-in-One Launcher Utility.) -- C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe" [Enabled] .(.Pas de propri�taire - hpqscnvw.) -- C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" [Enabled] .(.Hewlett-Packard - HP CUE-Scanning Flow Component.) -- C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" [Enabled] .(.Hewlett-Packard Co. - HP Fax Setup Wizard.) -- C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" [Enabled] .(.Hewlett-Packard Co. - Embedded Web Server Link application.) -- C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" [Enabled] .(.Hewlett-Packard Co. - HP Network Device Rediscovery Service.) -- C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\iexplore.exe" [Disabled] .(.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export SP - "C:\Program Files\EasyPHP 3.0\mysql\bin\mysqld.exe" [Enabled] .(...) -- C:\Program Files\EasyPHP 3.0\mysql\bin\mysqld.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" [Enabled] .(.PeeringPortal - KTF MUSIC AoD Server.) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" [Enabled] .(.PeeringPortal - KTF MUSIC VoD Server.) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\VideoLAN\VLC\vlc.exe" [Disabled] .(...) -- C:\Program Files\VideoLAN\VLC\vlc.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files\Microsoft Office\Office12\GROOVE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fastlane\fastlane.exe" [Enabled] .(...) -- C:\Program Files\Fastlane\fastlane.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\client\googleearth.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\client\googleearth.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\plugin\geplugin.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Real Alternative\Media Player Classic\mplayerc.exe" [Enabled] .(.Gabest - Media Player Classic.) -- C:\Program Files\Real Alternative\Media Player Classic\mplayerc.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe" [Enabled] .(.Apple Inc..) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe" [Enabled] .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\muzapp.exe" [Enabled] .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\WINDOWS\system32\muzapp.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau � distance de Microsoft�.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
~ Scan Keys in 00mn 04s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'�diteur de configuration de s�curit� Windows.) -- C:\WINDOWS\system32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Kerberos Security Package.) -- C:\WINDOWS\system32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\WINDOWS\system32\wdigest.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de d�marrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de syst�me de fichiers pour la restauration du syst�me.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de d�marrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de syst�me de fichiers pour la restauration du syst�me.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
~ Scan CSB in 00mn 00s
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ Scan IFEO in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak� Codec.) -- C:\WINDOWS\system32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo� Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo� audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo� video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \Drivers32\"msacm.voxacm160"="vct3216.acm" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\WINDOWS\system32\vct3216.acm
O52 - TDSD: \Drivers32\"msacm.scg726"="scg726.acm" . (.SHARP Corporation - SHARP G.726 ACM Audio Decoder.) -- C:\WINDOWS\system32\scg726.acm
O52 - TDSD: \Drivers32\"msacm.alf2cd"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\WINDOWS\system32\alf2cd.acm
O52 - TDSD: \Drivers32\"msacm.ac3acm"="AC3ACM.acm" . (.fccHandler - AC-3 ACM Decompressor.) -- C:\WINDOWS\system32\AC3ACM.acm
O52 - TDSD: \Drivers32\"vidc.dvsd"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\WINDOWS\system32\mcdvd_32.dll
O52 - TDSD: \Drivers32\"vidc.xvid"="xvidvfw.dll" . (...) -- C:\WINDOWS\system32\xvidvfw.dll
O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivXNetworks, Inc. - DivX Video for Windows Codec.) -- C:\WINDOWS\system32\DivX.dll
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo� audio software" . (.Intel Corporation - Indeo� audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"vct3216.acm"="Voxware Compression Toolkit" . (.Voxware, Inc. - Voxware Audio Compression Manager Driver.) -- C:\WINDOWS\system32\vct3216.acm
O52 - TDSD: \drivers.desc\"alf2cd.acm"="alf2cd.acm" . (.NCT Company - NCT ALF2CD Audio CODEC.) -- C:\WINDOWS\system32\alf2cd.acm
O52 - TDSD: \drivers.desc\"AC3ACM.acm"="AC-3 ACM Decompressor" . (.fccHandler - AC-3 ACM Decompressor.) -- C:\WINDOWS\system32\AC3ACM.acm
O52 - TDSD: \drivers.desc\"mcdvd_32.dll"="mcdvd_32.dll" . (.MainConcept - MainConcept DV Codec.) -- C:\WINDOWS\system32\mcdvd_32.dll
O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec" . (...) -- C:\WINDOWS\system32\xvidvfw.dll
~ Scan Keys in 00mn 03s
---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\AppleSyncNotifier [Key] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe
O53 - SMSR:HKLM\...\startupreg\AutoStartNPSAgent [Key] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\bernard\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
~ Scan SMSR Keys in 00mn 00s
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.149A8F7ADF9742554DC323E290551E3E] - 30/10/2012 - 23:51:56 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\Drivers\aavmker4.sys [25256]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 11:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\Aavmker4.sys (Aavmker4) .(.AVAST Software - avast! Base Kernel-Mode Device Driver for W.) - LEGACY_AAVMKER4
O64 - Services: CurCS - 10/02/2013 - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (AdobeFlashPlayerUpdateSvc) .(.Adobe Systems Incorporated - Adobe� Flash� Player Update Service 11.5 r5.) - LEGACY_ADOBEFLASHPLAYERUPDATESVC
O64 - Services: CurCS - 11/08/2012 - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device) .(.Apple Inc. - MobileDeviceService.) - LEGACY_APPLE_MOBILE_DEVICE
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswMon2.sys (aswMon2) .(.AVAST Software - avast! File System Filter Driver for Window.) - LEGACY_ASWMON2
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswRdr.sys (aswRdr) .(.AVAST Software - avast! TDI Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\system32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 07/06/2006 - C:\WINDOWS\system32\Ati2evxx.exe (Ati HotKey Poller) .(.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - LEGACY_ATI_HOTKEY_POLLER
O64 - Services: CurCS - 28/07/2006 - C:\WINDOWS\system32\ati2sgag.exe (ATI Smart) .(.Pas de propri�taire - ATI Smart.) - LEGACY_ATI_SMART
O64 - Services: CurCS - 30/10/2012 - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (avast! Antivirus) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS
O64 - Services: CurCS - 30/08/2011 - C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service) .(.Apple Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE
O64 - Services: CurCS - 31/01/2013 - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe - Browser Manager (Browser Manager) .(...) - LEGACY_BROWSER_MANAGER
O64 - Services: CurCS - ??\??\???? - (DcomLaunch) .(. - .) - LEGACY_DCOMLAUNCH
O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\dmadmin.exe (dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN
O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\drivers\dmboot.sys (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de d�marrage du gestionnaire de disq.) - LEGACY_DMBOOT
O64 - Services: CurCS - 05/08/2004 - C:\WINDOWS\system32\drivers\dmload.sys (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD
O64 - Services: CurCS - 26/11/2012 - C:\Program Files\Duuqu\Update\DuuquUpdate.exe (dqupdate) .(.Duuqu Group - Duuqu Installer.) - LEGACY_DQUPDATE
O64 - Services: CurCS - 21/06/2010 - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (FLEXnet Licensing Service) .(.Acresso Software Inc. - Activation Licensing Service.) - LEGACY_FLEXNET_LICENSING_SERVICE
O64 - Services: CurCS - 14/06/2010 - C:\WINDOWS\system32\FsUsbExDisk.sys - FsUsbExDisk (FsUsbExDisk) .(...) - LEGACY_FSUSBEXDISK
O64 - Services: CurCS - 29/07/2010 - C:\WINDOWS\system32\FsUsbExService.exe (FsUsbExService) .(.Teruten - FsUsbDevice.) - LEGACY_FSUSBEXSERVICE
O64 - Services: CurCS - 11/12/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE
O64 - Services: CurCS - 11/12/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe (gupdatem) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATEM
O64 - Services: CurCS - 16/08/2012 - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC
O64 - Services: CurCS - 14/11/2005 - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe (IDriverT) .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT
O64 - Services: CurCS - 09/09/2012 - C:\Program Files\iPod\bin\iPodService.exe (iPod Service) .(.Apple Inc. - iPodService Module (32-bit).) - LEGACY_IPOD_SERVICE
O64 - Services: CurCS - 17/07/2010 - C:\Program Files\Java\jre6\bin\jqs.exe (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE
O64 - Services: CurCS - 14/12/2012 - C:\WINDOWS\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 14/12/2012 - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (MBAMScheduler) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMSCHEDULER
O64 - Services: CurCS - 14/12/2012 - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (MBAMService) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMSERVICE
O64 - Services: CurCS - ??\??\???? - (RpcSs) .(. - .) - LEGACY_RPCSS
O64 - Services: CurCS - 07/04/2008 - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer) .(.Nokia. - ServiceLayer Module.) - LEGACY_SERVICELAYER
O64 - Services: CurCS - 07/09/2012 - C:\WINDOWS\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD
O64 - Services: CurCS - ??\??\???? - (TermService) .(. - .) - LEGACY_TERMSERVICE
O64 - Services: CurCS - 26/07/2012 - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTomHOMEService) .(.TomTom - Windows Service for TomTom HOME.) - LEGACY_TOMTOMHOMESERVICE
~ Scan Services in 00mn 03s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("avg.install.userHPSettings", "http://search.babylon.com/?affID=113357&tt=031012_ccp_4012_3&babsrc=HP_ss&mntrId=14d1e598[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("avg.install.userSPSettings", "Search the web (Babylon)");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.defaultenginename", "Search Results");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.defaultthis.engineName", "Messenger Plus Live Customized Web Search");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2124320&SearchSource=3&q={searchTerms}");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.order.1", "Search Results");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("browser.search.selectedEngine", "Search the web (Babylon)");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2124320");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.ToolbarsList", "CT2124320");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CommunityToolbar.ToolbarsList2", "CT2124320");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.clientLogIsEnabled", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CommunitiesChangesLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CommunityChanged", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.FeedLastCount129046484595382063", 131);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingInvalidateCache", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastErrorCode", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastResponse", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.GroupingLastServerUpdateTime", "129082239856330000");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.InvalidateCache", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.LanguagePackLastCheckTime", "Sun Jan 17 2010 17:57:40 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.Locale", "fr");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.RadioLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.RadioLastUpdateIPServer", "4");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.RadioLastUpdateServer", "4");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=ct2467816&[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SearchInNewTabLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SettingsCheckIntervalMin", 120);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SettingsLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.SettingsLastUpdate", "1263743185");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.ThirdPartyComponentsLastCheck", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ct2467816.ThirdPartyComponentsLastUpdate", "1263743185");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CTID", "ct2467816");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.CurrentServerDate", "17-1-2010");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DownloadDomainsCheckInterval", "168");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DownloadDomainsListLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.DownloadDomainsListLastServerUpdateTime", "1201073583");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.EMailNotifierPollDate", "Sun Jan 17 2010 17:57:39 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746777097562523", "Sun Jan 17 2010 17:57:37 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746777252093961", "Sun Jan 17 2010 17:57:37 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746777461468985", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746790824594437", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746790988031938", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791145844439", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791280844460", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791444750814", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791615375007", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791787562545", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746791931312886", "Sun Jan 17 2010 17:57:39 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746792089906714", "Sun Jan 17 2010 17:57:39 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedPollDate128746792196156845", "Sun Jan 17 2010 17:57:40 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746777252093961", 60);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746777461468985", 60);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746791787562545", 5);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746792089906714", 30);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FeedTTL128746792196156845", 30);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FirstServerDate", "17-1-2010");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FirstTime", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FirstTimeFF3", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.FixPageNotFoundErrors", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastCheckTime", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastErrorCode", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastResponse", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingLastServerUpdateTime", "129082138158130000");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.Initialize", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.InstalledDate", "Sun Jan 17 2010 17:57:36 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.InvalidateCache", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsGrouping", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsMulticommunity", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.IsOpenUninstallPage", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LanguagePackLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LastLogin_2.5.4.7", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LatestVersion", "2.1.0.18");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.Locale", "en-us");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.LoginCache", 4);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffEnabled", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffSearchUrl", "http://search.conduit.com/Results.aspx?q=SEARCH_TERM&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioIsPodcast", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioLastCheckTime", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioLastUpdateIPServer", "0");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioMediaID", "9962");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioMenuSelectedID", "EBRadioMenu_CT21243209962");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SavedHomepage", "http://www.google.fr/");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchEngine", "Search||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=ct2124320&octid=EB_ORIG[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2124320&q=");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabServiceUrl", "http://hosting.conduit-services.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SettingsCheckIntervalMin", 120);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SettingsLastCheckTime", "Sun Jan 17 2010 17:57:35 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SettingsLastUpdate", "1263733015");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.SHRINK_TOOLBAR", 1);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ThirdPartyComponentsLastCheck", "Sun Jan 17 2010 17:57:35 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.ThirdPartyComponentsLastUpdate", "1263733015");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.UserID", "UN99111132919363546");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.WeatherNetwork", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.WeatherPollDate", "Sun Jan 17 2010 17:57:38 GMT+0100");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("CT2124320.WeatherUnit", "C");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.cbid", "RI");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.default-channel-url-mask", "http://fr.ask.com/web?q={query}&qsrc={qsrc}&o={o}&l={l}");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.fresh-install", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.l", "dis");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.last-config-req", "1263747455094");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.locale", "fr_FR");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.o", "14906");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.qsrc", "2871");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.asktb.r", "5");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.admin", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.aflt", "babsst");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.autoRvrt", "false");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.dfltLng", "en");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.excTlbr", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.id", "14d1e598000000000000001aa092d937");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.instlDay", "15590");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.instlRef", "sst");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.tlbrId", "tb9");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "http://search.babylon.com/?babsrc=TB_def&mntrId=14d1e598000000000000001aa092d9[...]
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.vrsn", "1.6.9.12");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar.vrsni", "1.6.9.12");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.babExt", "");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.babTrack", "affID=113357&tt=3612_4");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.newTab", false);
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.9.1220:32:45");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "Search the web (Babylon)");
O69 - SBI: prefs.js [bernard - 3bnp795r.default] user_pref("sweetim.toolbar.urls.homepage", "http://search.babylon.com/?affID=113357&tt=3612_4&babsrc=HP_ss&mntrId=14d1e59800000000[...]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com
O69 - SBI: SearchScopes [HKCU] {13D0FD16-BFC5-4705-B3AC-6AE879968AD2} - (01net) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {31CF9EBE-5755-4a1d-AC25-2834D952D9B4} - (Barre d'outils PDFCreator) - http://search.pdfcreator-toolbar.org
O69 - SBI: SearchScopes [HKCU] {5B8FB2DE-F580-43E6-993B-31CDEA79D1C4} - (Recherche produits informatique 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {6EB4E915-2DEC-457D-A237-2F605F566187} - (Rercherche d'articles 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {7C1E6F6D-D58B-4294-B429-816F93F9B5EB} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {8A3CE644-DEAC-4F03-A29B-6C876DA8FF2A} - (Recherche de t�l�chargements 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {8DF14089-E627-418B-8F8D-4FEF3C0948A3} - (Recherche 01net.com) - http://www.01net.com
O69 - SBI: SearchScopes [HKCU] {986AB314-D974-4C9A-8E1B-99C44199FB63} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2414} - (Search Results) - http://dts.search-results.com
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} - (DAEMON Search) - http://www.daemon-search.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Messenger Plus Live Customized Web Search) - http://search.conduit.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (...) -- C:\WINDOWS\system32\appmgmts.dll [0]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496]
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336]
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464]
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576]
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488]
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040]
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - Pas de description.) -- C:\WINDOWS\system32\es.dll [253952]
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840]
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096]
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792]
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions r�seau.) -- C:\WINDOWS\system32\netman.dll [198144]
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll [247808]
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248]
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de t�ches.) -- C:\WINDOWS\system32\schedsvc.dll [194560]
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\system32\seclogon.dll [18944]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance � Microsoft NAT.) -- C:\WINDOWS\system32\ipnathlp.dll [332800]
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du syst�me.) -- C:\WINDOWS\system32\srsvc.dll [171520]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\WINDOWS\system32\tapisrv.dll [249856]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112]
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176]
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [145408]
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896]
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\WINDOWS\system32\qmgr.dll [409088]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400]
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\MsPMSNSv.dll [27136]
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Ex�cution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\WINDOWS\system32\kmsvc.dll [61440]
~ Scan Services in 00mn 02s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.8F70AE5B66EF4F00B6DA9F0C311C7A4C] [SPRF][24/10/2008] (...) -- C:\Documents and Settings\bernard\Local Settings\Application Data\fusioncache.dat [130]
[MD5.88783EB39D8EF000CDA3413C789C4E21] [SPRF][24/10/2008] (...) -- C:\Program Files\settings.dat [15397]
[MD5.29CFE9ED23C55E55838A789EB1182A9B] [SPRF][04/10/2008] (.Adobe Systems Incorporated - Adobe� Flash� Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1887080]
[MD5.8C8BB80297E8C7795B7F4354BE8F9B7A] [SPRF][30/04/2010] (.Cisco WebEx LLC - Download Manager.) -- C:\WINDOWS\Downloaded Program Files\ieatgpc.dll [101760]
~ Scan Files in 00mn 00s
---\\ Scan Additionnel (O88)
Database Version : v2.10682 - (12/02/2013)
Cl�s trouv�es (Keys found) : 133
Valeurs trouv�es (Values found) : 2
Dossiers trouv�s (Folders found) : 15
Fichiers trouv�s (Files found) : 3
[HKLM\Software\Classes\CLSID\{35b8892d-c3fb-4d88-990d-31db2ebd72bd}] =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}] =>Adware.RecordNRip
[HKLM\Software\Classes\TypeLib\{93e3d79c-0786-48ff-9329-93bc9f6dc2b3}] =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}] =>Adware.RecordNRip
[HKLM\Software\Classes\CLSID\{092A2C6B-43EE-4F9F-8F8E-14ED5E11C14B}] =>Adware.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{257A6158-1416-4B31-9BF8-29FF49F3814F}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{736EF78E-5A04-46F9-893E-EDEC6EA5DF45}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{7A1BCE27-099C-4628-B63A-AEC00C6376B3}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Adware.AskSBAR
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Adware.AskSBAR
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Adware.AskSBAR
[HKLM\Software\Classes\CLSID\{AC5C4189-A8A0-4C9D-8910-C9CEF8360077}] =>Adware.Agent
[HKLM\Software\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{AF3AFF7C-B9E9-48DD-9002-212B6DEAAC02}] =>Adware.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Adware.AskSBAR
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{DBE82879-914A-422F-BAE9-2ECC80BE536F}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{E12D7149-73EF-45E4-A1E9-99FD7DAE62D3}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{ea551c00-2ae5-11d3-8592-00a0c98e9ea4}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{F2B184F1-547C-4EE9-BFC4-AC489C7077D9}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\DNSBHO.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] =>Adware.AskSBAR
[HKLM\Software\Classes\BrowserConnection.Loader] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader.1] =>Adware.Bandoo
[HKLM\Software\Classes\DnsBHO.BHO] =>Adware.Bandoo
[HKLM\Software\Classes\DnsBHO.BHO.1] =>Adware.Bandoo
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd] =>Adware.AskSBAR
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1] =>Adware.AskSBAR
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard] =>Adware.Bandoo
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard.1] =>Adware.Bandoo
[HKLM\Software\Classes\Software.OneClickCtrl.8] =>Adware.Agent
[HKLM\Software\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph] =>PUP.SpecialSavings
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch
[HKCU\Software\Ask.com] =>Toolbar.AskBar
[HKCU\Software\AskToolbar] =>Toolbar.AskTBar
[HKCU\Software\AppDataLow\AskToolbarInfo] =>Toolbar.AskTBar
[HKCU\Software\BrowserMngr] =>Toolbar.Babylon
[HKLM\Software\BrowserMngr] =>Toolbar.Babylon
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\pdfforge.org] =>Toolbar.Agent
[HKLM\Software\pdfforge.org] =>Toolbar.Agent
[HKLM\Software\SearchquMediabarTb] =>Adware.Bandoo
[HKCU\Software\searchqutoolbar] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{95A6C0BE-BE04-462D-A623-7F98B15C1FC3}] =>Adware.Boxore
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}] =>Adware.Boxore
[HKLM\Software\Classes\Prod.cap] =>Adware.Bandoo
[HKLM\Software\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MSISERVER] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38D5CDD0A851B3940A43CC50ABBA251C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{99079A25-328F-4BD4-BE04-00955ACAA0A7} =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Adware.AskSBAR
C:\Program Files\Ask.com =>Toolbar.AskBar
C:\Program Files\Boxore =>Adware.Boxore
C:\Program Files\Conduit =>Toolbar.Conduit
C:\Program Files\Duuqu =>Toolbar.Agent
C:\Program Files\FrameFox =>Toolbar.Agent
C:\Program Files\QwertyBox =>Toolbar.Agent
C:\Program Files\Searchqu Toolbar =>Adware.Bandoo
C:\Program Files\Software =>Adware.Boxore
C:\Documents and Settings\bernard\Application Data\OpenCandy =>Adware.OpenCandy
C:\Documents and Settings\bernard\Application Data\searchquband =>Adware.Bandoo
C:\Documents and Settings\bernard\Application Data\searchqutoolbar =>Adware.Bandoo
C:\Documents and Settings\bernard\Local Settings\Application Data\AskToolbar =>Toolbar.AskTBar
C:\Documents and Settings\bernard\Local Settings\Application Data\Conduit =>Toolbar.Conduit
C:\Documents and Settings\bernard\Local Settings\Application Data\Software =>Adware.Boxore
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\searchqutoolbar =>Adware.Bandoo
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\bprotector_extensions.sqlite =>PUP.BProtector
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\bprotector_prefs.js =>PUP.BProtector
C:\Documents and Settings\bernard\Application Data\Mozilla\Firefox\Profiles\3bnp795r.default\SearchPlugins\conduit.xml =>Toolbar.Conduit
~ Scan Additionnel in 00mn 55s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "000021090200C0400000000000F01FEC" . (.Module de compatibilit� pour Microsoft Office System 2007.) -- C:\WINDOWS\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
O90 - PUC: "0212CE3624715264AA746C8AEA9C6CC4" . (.Apple Application Support.) -- C:\WINDOWS\Installer\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}\WinInstall.ico
O90 - PUC: "043B0686D0353B64198FA11E7FF0C733" . (.OpenOffice.org 3.0.) -- C:\WINDOWS\Installer\{6860B340-530D-46B3-91F8-1AE1F70F7C33}\soffice.exe
O90 - PUC: "064561AB7FCFC6D47A2A2F23710027F0" . (.MobileMe Control Panel.) -- C:\WINDOWS\Installer\{BA165460-FCF7-4D6C-A7A2-F2321700720F}\Installer.ico
O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\WINDOWS\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe
O90 - PUC: "104C2FB8EC20D424CB62C6F4F94B646B" . (.Macromedia Flash 8 Video Encoder.) -- C:\WINDOWS\Installer\{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}\ARPPRODUCTICONFLV1.exe
O90 - PUC: "11328E8261681E11EB0B8BCAF6798BE8" . (.Google�Earth.) -- C:\WINDOWS\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "166A73803CEF3B8478C6197E3D02849A" . (.Macromedia Dreamweaver 8.) -- C:\WINDOWS\Installer\{0837A661-FEC3-48B3-876C-91E7D32048A9}\DWARPPRODUCTICON.exe
O90 - PUC: "1AAFDD4D73CE9254DAB54A33DA6E6826" . (.Apple Mobile Device Support.) -- C:\WINDOWS\Installer\{D4DDFAA1-EC37-4529-AD5B-A433ADE68662}\Installer.ico
O90 - PUC: "1AB14AC224899184A8BB67DF1CA49BAE" . (.ATI Catalyst Control Center.) -- C:\WINDOWS\Installer\{2CA41BA1-9842-4819-8ABB-76FDC14AB9EA}\ARPPRODUCTICON.exe
O90 - PUC: "20441E9C136328143B77B6D0BFC13093" . (.QuickTime.) -- C:\WINDOWS\Installer\{C9E14402-3631-4182-B377-6B0DFB1C0339}\Installer.ico
O90 - PUC: "32AFBAFE70803BB43857EB4029A3E573" . (.Ciel Gestion Commerciale 16.0.) -- C:\WINDOWS\Installer\{EFABFA23-0807-4BB3-8375-BE04923A5E37}\ARPPRODUCTICON.exe
O90 - PUC: "3FA0037EB5DD68E42A196713EBC0267C" . (.Giganews Accelerator.) -- C:\WINDOWS\Installer\{E7300AF3-DD5B-4E86-A291-7631BE0C62C7}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "427995CA55751C84BA7EBA8B75569203" . (.PC Connectivity Solution.) -- C:\WINDOWS\Installer\{AC599724-5755-48C1-ABE7-ABB857652930}\ARPPRODUCTICON.exe
O90 - PUC: "4452B63812D996C4CBA3FFE536025B9A" . (.QwertyBox 1.0.3.0.) -- C:\WINDOWS\Installer\{836B2544-9D21-4C69-BC3A-FF5E6320B5A9}\QwertyBox.ico
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "503C5DB272B114D46B09A71671D2F2BE" . (.Macromedia Flash 8.) -- C:\WINDOWS\Installer\{2BD5C305-1B27-4D41-B690-7A61172D2FEB}\ARPPRODUCTICONFL8.exe
O90 - PUC: "6786F6F0433677945BDDFC1CE2914302" . (.iTunes.) -- C:\WINDOWS\Installer\{0F6F6876-6334-4977-B5DD-CFC12E193420}\Installer.ico
O90 - PUC: "68AB67CA7DA76301B7449A0500000010" . (.Adobe Reader 9.5.3 - Fran�ais.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A95000000001}\SC_Reader.ico
O90 - PUC: "7CC6113DCD423AC4C91E32EF8D639E2F" . (.Assistant de connexion Windows Live.) -- C:\WINDOWS\Installer\{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}\prodicon.ico
O90 - PUC: "7CEBB04F4A2C00A4B942A750A5C22526" . (.Microsoft Office Live Add-in 1.5.) -- C:\WINDOWS\Installer\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}\ProductIcon
O90 - PUC: "8BE400BCDD6C8094D8948CBA0A283B64" . (.Ciel Paye 16.00.) -- C:\WINDOWS\Installer\{CB004EB8-C6DD-4908-8D49-C8ABA082B346}\ARPPRODUCTICON.exe
O90 - PUC: "8CAF48E7815C9F048970475503D1D652" . (.SamsungConnectivityCableDriver.) -- C:\WINDOWS\Installer\{7E84FAC8-C518-40F9-9807-7455301D6D25}\ARPPRODUCTICON.exe
O90 - PUC: "A12B436470CC693498C0B2188666F1AE" . (.Windows Live Writer.) -- C:\WINDOWS\Installer\{4634B21A-CC07-4396-890C-2B8168661FEA}\ApplicationIcon.ico
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.IsoBuster Toolbar.) -- C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
O90 - PUC: "AF8ECB3F2EE08264FB20BAA54F709779" . (.Ciel Compta 16.0.) -- C:\WINDOWS\Installer\{F3BCE8FA-0EE2-4628-BF02-AB5AF4077997}\ARPPRODUCTICON.exe
O90 - PUC: "B2839838AB3578A48845193E8DA0A57C" . (.HP Photosmart Essential2.01.) -- C:\WINDOWS\Installer\{8389382B-53BA-4A87-8854-91E3D80A5AC7}\ARPPRODUCTICON.exe
O90 - PUC: "B2F5519759897D9468219D52080EEDB5" . (.Bonjour.) -- C:\WINDOWS\Installer\{79155F2B-9895-49D7-8612-D92580E0DE5B}\Bonjour.ico
O90 - PUC: "B3AB68FA564B21E47B171E2280DF8BB9" . (.Ciel Auto-entrepreneur Facile 1.40.) -- C:\WINDOWS\Installer\{AF86BA3B-B465-4E12-B771-E12208FDB89B}\ARPPRODUCTICON.exe1
O90 - PUC: "B8499BEA2FF49C7499E0741044290AEF" . (.MSXML 6.0 Parser.) -- C:\WINDOWS\Installer\{AEB9948B-4FF2-47C9-990E-47014492A0FE}\ARPIco
O90 - PUC: "B9B0B7844DCDD044980A6ADE1E5A543A" . (.HPSSupply.) -- C:\WINDOWS\Installer\{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}\ARPPRODUCTICON.exe
O90 - PUC: "BEEDBA9135B304C40BC0C7924993F391" . (.AxCrypt 1.7.2931.0.) -- C:\WINDOWS\Installer\{19ABDEEB-3B53-4C40-B00C-7C2994393F19}\axcrypt.ico
O90 - PUC: "C04AC77760206FE40ACF16B80FB68F0D" . (..) -- C:\WINDOWS\Installer\{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}\ARPPRODUCTICON.exe
O90 - PUC: "C659BB38E30163D428D32A6A04FDFA60" . (.Ciel Immobilisations 16.0.) -- C:\WINDOWS\Installer\{83BB956C-103E-4D36-823D-A2A640DFAF06}\ARPPRODUCTICON.exe
O90 - PUC: "CDD2E27F8BD309142AD13688D359F57E" . (.PSSWCORE.) -- C:\WINDOWS\Installer\{F72E2DDC-3DB8-4190-A21D-63883D955FE7}\ARPPRODUCTICON.exe
O90 - PUC: "CEB1F077178207E48B73BF5852FF3A1B" . (.Windows Live Messenger.) -- C:\WINDOWS\Installer\{770F1BEC-2871-4E70-B837-FB8525FFA3B1}\MsblIco.Exe
O90 - PUC: "D325248F22F000A45A32AB4156A51455" . (.FrameFox Extensions 1.0.8.0.) -- C:\WINDOWS\Installer\{F842523D-0F22-4A00-A523-BA14655A4155}\FrameFox.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DA9BEDB1DE0A95F4DA4014A653CF1BB5" . (.Mindjet.) -- C:\WINDOWS\Installer\{1BDEB9AD-A0ED-4F59-AD04-416A35FCB15B}\ARPPRODUCTICON.exe
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de t�l�chargement Windows Live.) -- C:\WINDOWS\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "DF7206C8CD35D644BB57ACDC07821A43" . (.HP Update.) -- C:\WINDOWS\Installer\{8C6027FD-53DC-446D-BB75-CACD7028A134}\ARPPRODUCTICON.exe
O90 - PUC: "E0CF391F81E9CF049A4705A9B1DD42A0" . (.Samsung New PC Studio.) -- C:\WINDOWS\Installer\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\ARPPRODUCTICON.exe
O90 - PUC: "EB0C6A5940EBD2646A32F7891BC5F13C" . (.Boxore Client.) -- C:\WINDOWS\Installer\{95A6C0BE-BE04-462D-A623-7F98B15C1FC3}\boxore.ico
O90 - PUC: "FAEC7109A5EB37F4A8E08CE76279E155" . (.TomTom HOME.) -- C:\WINDOWS\Installer\{9017CEAF-BE5A-4F73-8A0E-C87E26971E55}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s
---\\ Random Export Key (O91)
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:dllName="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:exeName="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:folderName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:serviceName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:version="2.2.630.40"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:dllName="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:exeName="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:folderName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:serviceName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.762.17]:version="2.3.762.17"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:dllName="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:exeName="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:folderName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:serviceName="Browser Manager"
[HKCU\Software\5a28ad8e139e549\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:version="2.3.787.43"
[HKCU\Software\5a28ad8e139e549]:GUID="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\5a28ad8e139e549]:HPCHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:HPCHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:HPCHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:HPFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:HPFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:HPFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:HPIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:HPIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:HPIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:INSTALL_FOLDER_NAME="Browser Manager"
[HKCU\Software\5a28ad8e139e549]:KWFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:KWFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:KWFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKCU\Software\5a28ad8e139e549]:NTFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:NTFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:NTFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:PROTECTOR_DLL_NAME="browsemngr.dll"
[HKCU\Software\5a28ad8e139e549]:PROTECT_EXE_NAME="browsemngr.exe"
[HKCU\Software\5a28ad8e139e549]:SECHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:SECHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:SECHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:SEFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:SEFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:SEFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:SEIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKCU\Software\5a28ad8e139e549]:SEIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKCU\Software\5a28ad8e139e549]:SEIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKCU\Software\5a28ad8e139e549]:SEREGEXP=""
[HKCU\Software\5a28ad8e139e549]:SERVICE_NAME="Browser Manager"
[HKCU\Software\5a28ad8e139e549]:usrcheckbox=""
[HKCU\Software\5a28ad8e139e549]:version="2.6.1123.78"
[HKLM\Software\5a28ad8e139e549]:GUID="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKLM\Software\5a28ad8e139e549]:HPCHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:HPCHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:HPCHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:HPFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:HPFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:HPFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:HPIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:HPIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:HPIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:INSTALL_FOLDER_NAME="Browser Manager"
[HKLM\Software\5a28ad8e139e549]:KWFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:KWFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:KWFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKLM\Software\5a28ad8e139e549]:NTFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:NTFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:NTFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:PROTECTOR_DLL_NAME="browsemngr.dll"
[HKLM\Software\5a28ad8e139e549]:PROTECT_EXE_NAME="browsemngr.exe"
[HKLM\Software\5a28ad8e139e549]:SECHREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:SECHREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:SECHREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:SEFFREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:SEFFREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:SEFFREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:SEIEREGEXP0="FO81jovjQUF+5S6+hb1oqXHuCoautLvICxmXOjZS8Nofjp1mrjnE"
[HKLM\Software\5a28ad8e139e549]:SEIEREGEXP1="FO81jovjQUF+5S6+hb1oqXHuCoao6JCRNVbcOGoRr/tSgZN57jqd6juo5odlV7RITopCig=="
[HKLM\Software\5a28ad8e139e549]:SEIEREGEXP2="FO81jovjQUF+5S6+hb1oqXHuCoautLvIDR2ZNzsQ7eNQn5Fj3TmN4Df1q8U="
[HKLM\Software\5a28ad8e139e549]:SEREGEXP=""
[HKLM\Software\5a28ad8e139e549]:SERVICE_NAME="Browser Manager"
[HKLM\Software\5a28ad8e139e549]:usrcheckbox=""
[HKLM\Software\5a28ad8e139e549]:version="2.6.1123.78"
~ Scan Export Key Software in 00mn 00s
---\\ MyComputer Name Space (O92)
O92 - MNS: Web Folders - {BDEADF00-C265-11D0-BCED-00A0C90AB50F}
~ Scan MNS in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 10/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/06/2006 409600 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe
SS - | Auto 520192 | (ATI Smart) . (...) - C:\WINDOWS\system32\ati2sgag.exe
SR - | Auto 30/10/2012 44808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 2561488 | (Browser Manager) . (...) - C:\Documents and Settings\All Users\Application Data\Browser Manager\2.6.1123.78\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
SS - | Demand 13/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Auto 26/11/2012 98360 | (dqupdate) . (.Duuqu Group.) - C:\Program Files\Duuqu\Update\DuuquUpdate.exe
SS - | Demand 26/11/2012 98360 | (dqupdatem) . (.Duuqu Group.) - C:\Program Files\Duuqu\Update\DuuquUpdate.exe
SS - | Demand 21/06/2010 655624 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SR - | Auto 29/07/2010 238952 | (FsUsbExService) . (.Teruten.) - C:\WINDOWS\system32\FsUsbExService.exe
SS - | Auto 11/12/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 11/12/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 16/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Demand 13/04/2008 14336 | C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 13/04/2008 14336 | C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\WINDOWS\system32\svchost.exe
SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SR - | Demand 09/09/2012 821648 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 17/07/2010 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe
SR - | Auto 14/12/2012 398184 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 14/12/2012 682344 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 02/01/2013 115168 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 13/04/2008 14336 | C:\WINDOWS\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 13/04/2008 14336 | C:\WINDOWS\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\WINDOWS\system32\svchost.exe
SS - | Demand 07/04/2008 430592 | (ServiceLayer) . (.Nokia..) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
SR - | Auto 26/07/2012 92632 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
~ Scan Services in 00mn 04s
---\\ Liste des �mulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
~ Scan Emulateurs in 00mn 04s
End of the scan (1952 lines in 11mn 07s)(0)