Rapport AdwCleaner

Réponse 21 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

Rapport de ZHPFix 1.3.05 par Nicolas Coolman, Update du 09/10/2012
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-02-11-2012-02-19-08.txt
Run by Slim at 02/11/2012 02:20:45
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Web site : http://nicolascoolman.skyrock.com/

========== Logiciel(s) ==========
ABSENT Software Key: {0094D07C-1FFB-4450-8D10-AD7E05A318DF}_is1
ABSENT Software Key: {16726771-C380-4280-BAF9-1223B3838786}
ABSENT Software Key: GinyasBrowserCompanion
ABSENT Software Key: MediaGet
ABSENT Software Key: {9193306E-5935-47E0-B458-2548778C1614}_is1
ABSENT Software Key: Protected Search_is1
ABSENT Software Key: vfd-ob
ABSENT Software Key: {77236F9C-987C-40EC-832B-5BD6181E4846}
ABSENT Uninstall Process: c:\programdata\{cfb16d39-d446-4a64-8210-b49b863fa372}\imesh_v11_fr_setup.exe
ABSENT Software Key: {8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763}
ABSENT Software Key: iMesh

========== Clé(s) du Registre ==========
SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iMesh]
SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763}]
SUPPRIME Key: CLSID BHO: {7F6AFBF1-E065-4627-A2FD-810366367D01}
ABSENT Key: CLSID BHO: {B6CE479D-9DD2-FD1D-07EF-6E728E6AB5DA}
SUPPRIME Key: Service: DefaultTabUpdate
SUPPRIME Driver Key: deaqebkf
SUPPRIME Driver Key: digitcsh
SUPPRIME Driver Key: mcnfplch
SUPPRIME Key: HKCU\Software\Mediaget
SUPPRIME Key: HKCU\Software\ProtectedSearch
SUPPRIME Key: HKCU\Software\iMesh
SUPPRIME Key: HKLM\Software\Wow6432Node\Default Tab
SUPPRIME Key: HKLM\Software\Wow6432Node\MediaGet
SUPPRIME Key*: StartupReg: iMesh
SUPPRIME Key*: StartupReg: MediaGet2
ABSENT Key: Service: DefaultTabUpdate
SUPPRIME Key: HKLM\Software\Classes\AppID\iMesh.exe
SUPPRIME Key: HKLM\Software\Classes\iMesh.AudioCD
SUPPRIME Key: HKLM\Software\Classes\iMesh.Device
SUPPRIME Key: HKLM\Software\Classes\iMesh.file
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{148132E6-626D-4A5E-8063-A761EB29A50B}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{69d3f709-9de2-479f-980f-532d46895703}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
ABSENT Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{ec96f516-51b2-4b46-8451-8665f5a6ba2b}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{f07fbd3e-2048-44a4-9065-71bf551e2672}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{F8AB43ED-EC88-4de7-B213-F89157D29C62}
SUPPRIME Key*: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Bubble Dock
ABSENT Key: HKLM\Software\Wow6432Node\default tab
ABSENT Key: HKCU\Software\iMesh
SUPPRIME Key: HKLM\Software\Wow6432Node\iMesh
ABSENT Key: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\iMesh
ABSENT Key: HKCU\Software\MediaGet
ABSENT Key: HKLM\Software\Wow6432Node\MediaGet
SUPPRIME Key*: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Tutorials
SUPPRIME Key: SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}
SUPPRIME Key: SearchScopes :{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
SUPPRIME Key: SearchScopes :{1AFFEFB4-5C60-46C2-8665-D49C777DA26A}
SUPPRIME Key: HKLM\Software\Wow6432Node\intellidownload
ABSENT Key: CLSID BHO: {7F6AFBF1-E065-4627-A2FD-810366367D01}
ABSENT Key: HKCU\Software\ProtectedSearch
ABSENT Key: StartupReg: iMesh
ABSENT Key: StartupReg: MediaGet2
ABSENT Key: HKLM\Software\Classes\AppID\iMesh.exe
ABSENT Key: HKLM\Software\Classes\iMesh.AudioCD
ABSENT Key: HKLM\Software\Classes\iMesh.Device
ABSENT Key: HKLM\Software\Classes\iMesh.file
ABSENT Key: HKLM\Software\Wow6432Node\Classes\CLSID\{148132E6-626D-4A5E-8063-A761EB29A50B}
ABSENT Key: HKLM\Software\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\CLSID\{69d3f709-9de2-479f-980f-532d46895703}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
ABSENT Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
ABSENT Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
ABSENT Key: HKLM\Software\Classes\TypeLib\{ec96f516-51b2-4b46-8451-8665f5a6ba2b}
ABSENT Key: HKLM\Software\Classes\TypeLib\{f07fbd3e-2048-44a4-9065-71bf551e2672}
ABSENT Key: HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}
ABSENT Key: HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\CLSID\{F8AB43ED-EC88-4de7-B213-F89157D29C62}
ABSENT Key: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Bubble Dock
ABSENT Key: HKLM\Software\Wow6432Node\iMesh
ABSENT Key: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Tutorials
ABSENT SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}
ABSENT SearchScopes :{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
ABSENT SearchScopes :{1AFFEFB4-5C60-46C2-8665-D49C777DA26A}
ABSENT Key: HKLM\Software\Wow6432Node\intellidownload

========== Valeur(s) du Registre ==========
SUPPRIME RunValue: MediaGet2
ABSENT RunValue: MediaGet2
SUPPRIME {607AC9F7-2C27-478B-95E7-048923010B05}
SUPPRIME {462C020C-8FD4-4C2C-860A-9D7AB4D3C5F1}
SUPPRIME {B48FF428-52B5-439B-8CD5-D30DAA103144}
SUPPRIME {2BEBC65D-F706-49F0-9F9C-8272FA2586EF}
ABSENT TCP Query User{00DD9A31-412B-4B14-88E5-8FC6FAD673EE}C:/program files (x86)/imesh applications/imesh/imesh.exe
ABSENT UDP Query User{2520CEA5-7613-41D2-81EC-4C84C0ECD013}C:/program files (x86)/imesh applications/imesh/imesh.exe
ABSENT TCP Query User{8735E557-FEFD-4A88-8FDE-73B6598393DE}C:/program files (x86)/download guru/download guru.exe
ABSENT UDP Query User{D5D25988-F8CA-49B6-9CA6-FAA63768382E}C:/program files (x86)/download guru/download guru.exe
SUPPRIME {8893155D-FBDF-4319-A524-6DC2CD864F2E}
SUPPRIME {38035F52-66B3-4964-84C1-FF594ED46AE2}
SUPPRIME {354979CF-7FA5-4115-A10B-EE12F469A006}
SUPPRIME {45DA93CE-B33C-4E6F-BC02-A7BEBE93F8DE}
SUPPRIME {C86B33DE-0C6F-40DC-85F1-608295C46698}
ABSENT TCP Query User{FE903AD2-A24C-4CE8-99E9-03D6E80D255F}C:/program files (x86)/torrentsearch/easydownload.exe
ABSENT UDP Query User{F1D4081D-AD45-4957-AD71-4156D384D7DF}C:/program files (x86)/torrentsearch/easydownload.exe
SUPPRIME {FAE437E9-0D03-4B60-BC3F-C4E63FD29DBC}
SUPPRIME {66A15EE1-49CA-4BC0-8036-44F484560EAD}
SUPPRIME {F226F24A-CF6B-4AE0-8B38-C327F17FDE01}
SUPPRIME {19CD6468-89F0-465A-B5F4-9F5AA07C4E79}
SUPPRIME {C3F4BBD1-8701-4A24-88C3-DA62867D6B73}
SUPPRIME {B05D8290-6B73-4ECF-96C7-441854F1FBD2}
SUPPRIME {A6C6BFC0-3A1C-412C-BDE2-D57CF927A9BF}
SUPPRIME {2B896286-A4E6-4F36-A57D-7C572A62EDA1}
SUPPRIME {34006C92-E3D6-4930-B7DD-B888D4B6198A}
SUPPRIME {80C56F3D-5840-4EE3-A7DB-115E73262B1E}
SUPPRIME {143A36D8-C117-4670-9832-76E1850ED5B3}
SUPPRIME {FBB0D538-B79F-49BF-A42F-20354A8BE38F}
SUPPRIME {428C9F14-4670-447A-9F6B-772D7B27EB58}
SUPPRIME {A8DE4F97-F912-48BA-B0AC-22058361568D}
SUPPRIME {2B6DC71E-F69C-4554-BDE8-16BE931E89C7}
SUPPRIME {D51BB965-17ED-45CA-ADC4-BC285A505742}
SUPPRIME {AF161C42-735B-4EF9-A7DE-DF0C1BDAC4CB}
SUPPRIME {6C6FFA79-BC84-4ABA-B424-0A926CDAD345}
SUPPRIME {3EC86686-C8A1-4FF2-816B-8DD159CF80C0}
SUPPRIME {97B629C4-548D-4689-9D17-D60B9DF86729}
ABSENT {607AC9F7-2C27-478B-95E7-048923010B05}
ABSENT {462C020C-8FD4-4C2C-860A-9D7AB4D3C5F1}
ABSENT {B48FF428-52B5-439B-8CD5-D30DAA103144}
ABSENT {2BEBC65D-F706-49F0-9F9C-8272FA2586EF}
ABSENT {8893155D-FBDF-4319-A524-6DC2CD864F2E}
ABSENT {38035F52-66B3-4964-84C1-FF594ED46AE2}
ABSENT {354979CF-7FA5-4115-A10B-EE12F469A006}
ABSENT {45DA93CE-B33C-4E6F-BC02-A7BEBE93F8DE}
ABSENT {C86B33DE-0C6F-40DC-85F1-608295C46698}
ABSENT {FAE437E9-0D03-4B60-BC3F-C4E63FD29DBC}
ABSENT {66A15EE1-49CA-4BC0-8036-44F484560EAD}
ABSENT {F226F24A-CF6B-4AE0-8B38-C327F17FDE01}
ABSENT {19CD6468-89F0-465A-B5F4-9F5AA07C4E79}
ABSENT {C3F4BBD1-8701-4A24-88C3-DA62867D6B73}
ABSENT {B05D8290-6B73-4ECF-96C7-441854F1FBD2}
ABSENT {A6C6BFC0-3A1C-412C-BDE2-D57CF927A9BF}
ABSENT {2B896286-A4E6-4F36-A57D-7C572A62EDA1}
ABSENT {34006C92-E3D6-4930-B7DD-B888D4B6198A}
ABSENT {80C56F3D-5840-4EE3-A7DB-115E73262B1E}
ABSENT {143A36D8-C117-4670-9832-76E1850ED5B3}
ABSENT {FBB0D538-B79F-49BF-A42F-20354A8BE38F}
ABSENT {428C9F14-4670-447A-9F6B-772D7B27EB58}
ABSENT {A8DE4F97-F912-48BA-B0AC-22058361568D}
ABSENT {2B6DC71E-F69C-4554-BDE8-16BE931E89C7}
ABSENT {D51BB965-17ED-45CA-ADC4-BC285A505742}
ABSENT {AF161C42-735B-4EF9-A7DE-DF0C1BDAC4CB}
ABSENT {6C6FFA79-BC84-4ABA-B424-0A926CDAD345}
ABSENT {3EC86686-C8A1-4FF2-816B-8DD159CF80C0}
ABSENT {97B629C4-548D-4689-9D17-D60B9DF86729}

========== Elément(s) de donnée du Registre ==========
SUPPRIME R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page
SUPPRIME R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page
SUPPRIME R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL
SUPPRIME R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs
SUPPRIME AppInit: \Program Files (x86)\SEARCH~1\SEARCH~1\x64\datamngr.dll

========== Préférences navigateur ==========
SUPPRIME Mozilla Pref: user_pref("extensions.BabylonToolbar.prtkDS", 0);
SUPPRIME Mozilla Pref: user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.keyword.URL", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.enable", "");
SUPPRIME Mozilla Pref: user_pref("extensions.BabylonToolbar.prtkDS", 0);
SUPPRIME Mozilla Pref: user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.keyword.URL", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.enable", "");
SUPPRIME Mozilla Pref: user_pref("extensions.BabylonToolbar.prtkDS", 0);
SUPPRIME Mozilla Pref: user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.previous.keyword.URL", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
SUPPRIME Mozilla Pref: user_pref("sweetim.toolbar.searchguard.enable", "");

========== Dossier(s) ==========
SUPPRIME Flash Cookies:
SUPPRIME Temporaires Windows:

========== Fichier(s) ==========
SUPPRIME File: c:\program files (x86)\mozilla firefox\searchplugins\web search.xml
SUPPRIME Reboot c:\users\slim\appdata\local\mediaget2\mediaget.exe
SUPPRIME File: c:\users\slim\appdata\roaming\microsoft\windows\start menu\programs\mediaget.lnk
ABSENT File: c:\users\slim\appdata\roaming\microsoft\windows\start menu\programs\webplayerv2.lnk
ABSENT File: c:\users\slim\appdata\roaming\microsoft\installer\{77236f9c-987c-40ec-832b-5bd6181e4846}\_383c4c6b4d3b599adf1116.exe
ABSENT File: c:\users\slim\appdata\roaming\microsoft\internet explorer\quick launch\imesh.lnk
SUPPRIME File: c:\users\slim\appdata\roaming\microsoft\internet explorer\quick launch\mediaget.lnk
ABSENT File: \program files (x86)\search~1\search~1\x64\datamngr.dll
SUPPRIME Reboot c:\users\slim\appdata\roaming\defaulttab\defaulttab\dtupdate.exe
SUPPRIME File: c:\windows\tasks\optimizerpro1updatertask{7eb6cc02-2d93-4d73-9785-221041afacc5}.job
ABSENT Folder/File: c:\program files (x86)\protected search\protectedsearch.exe
SUPPRIME File: c:\end
ABSENT File: c:\program files (x86)\imesh applications\imesh\imesh.exe
ABSENT File: c:\users\slim\appdata\roaming\defaulttab\defaulttab\dtupdate.exe
ABSENT Folder/File: c:\programdata\imesh
ABSENT Folder/File: c:\programdata\media get llc
ABSENT Folder/File: c:\users\slim\appdata\roaming\defaulttab
ABSENT Folder/File: c:\users\slim\appdata\roaming\media get llc
ABSENT Folder/File: c:\windows\system32\tasks\scheduled update for ask toolbar
SUPPRIME Flash Cookies:
SUPPRIME Temporaires Windows:
ABSENT File: c:\users\slim\appdata\roaming\microsoft\windows\start menu\programs\mediaget.lnk
ABSENT File: c:\users\slim\appdata\roaming\microsoft\internet explorer\quick launch\mediaget.lnk
ABSENT File: c:\windows\tasks\optimizerpro1updatertask{7eb6cc02-2d93-4d73-9785-221041afacc5}.job
ABSENT File: c:\end
ABSENT Folder/File: c:\programdata\microsoft\windows\start menu\programs\imesh
ABSENT Folder/File: c:\users\slim\appdata\local\imesh

========== Tache planifiée ==========
SUPPRIME Task: DealPlyUpdate
SUPPRIME Task: OptimizerPro1UpdaterTask{7EB6CC02-2D93-4D73-9785-221041AFACC5}
SUPPRIME Task: Scheduled Update for Ask Toolbar
SUPPRIME Task: Your File Updater
SUPPRIME Task: YourFile Update
ABSENT Task: Protected Search
SUPPRIME Task: DealPlyUpdate
SUPPRIME Task: OptimizerPro1UpdaterTask{7EB6CC02-2D93-4D73-9785-221041AFACC5}
SUPPRIME Task: Scheduled Update for Ask Toolbar
SUPPRIME Task: Your File Updater
SUPPRIME Task: YourFile Update
ABSENT Task: Protected Search
SUPPRIME Task: DealPlyUpdate
SUPPRIME Task: OptimizerPro1UpdaterTask{7EB6CC02-2D93-4D73-9785-221041AFACC5}
SUPPRIME Task: Scheduled Update for Ask Toolbar
SUPPRIME Task: Your File Updater
SUPPRIME Task: YourFile Update
ABSENT Task: Protected Search

========== Restauration Système ==========
Point de restauration du système créé avec succès

========== Récapitulatif ==========
81 : Clé(s) du Registre
66 : Valeur(s) du Registre
5 : Elément(s) de donnée du Registre
2 : Dossier(s)
27 : Fichier(s)
11 : Logiciel(s)
30 : Préférences navigateur
18 : Tache planifiée
1 : Restauration Système

End of clean in 06mn 52s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 01/11/2012 23:19:58 [488]
C:\ZHP\ZHPFix[R2].txt - 02/11/2012 02:18:38 [13026]
C:\ZHP\ZHPFix[R3].txt - 02/11/2012 02:19:08 [15907]
C:\ZHP\ZHPFix[R4].txt - 02/11/2012 02:20:45 [17052]

Réponse 22 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

Je voudrais un nouveau rapport ZHPDiag.

Réponse 23 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

Rapport de ZHPDiag v1.31.31 par Nicolas Coolman, Update du 19/10/2012
Run by Slim at 02/11/2012 02:47:02
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.
UAC : Not Found or deactivate by user

---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 16.0.2 v16.0.2
GCIE: Google Chrome v22.0.1229.96 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3998 MB (47% free)
System Restore: Activé (Enable)
System drive C: has 321 GB (70%) free of 453 GB

---\\ Logged in mode
~ Computer Name: MOONSKY
~ User Name: Slim
~ All Users Names: __vmware_user__, Slim, HomeGroupUser$, ASPNET, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Slim\AppData\Roaming\
~ %Desktop% : C:\Users\Slim\Desktop\
~ %Favorites% : C:\Users\Slim\Favorites\
~ %LocalAppData% : C:\Users\Slim\AppData\Local\
~ %StartMenu% : C:\Users\Slim\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 321 Go of 453 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)

---\\ Security Center & Tools Informations
~ UAC deactivate by user
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.3D165C53E40236A68B7102D1A622D4E0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.24/08/2012 - 11:21:18.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 04:25:32.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 04:27:28.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 00:19:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 00:26:34.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 01:43:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 00:23:22.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 01:52:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 00:21:58.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 04:34:04.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/81
~ Mes musiques (My Musics) : 4/939
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/1254
~ Mon Bureau (My Desktop) : 2/548
~ Menu demarrer (Programs) : 1/37
~ Scan Hidden Files in 00mn 02s

---\\ Processus lancés
[MD5.12E33DD823D74680DE6F33BFA359EFB3] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [766536] [PID.2976]
[MD5.E02E715FA2BC8D88FF9362374E309D76] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.3868]
[MD5.E7F99B1B97D5169A69BC9156559AC8B1] - (.MediaGet LLC - MediaGet torrent client.) -- C:\Users\Slim\AppData\Local\MediaGet2\mediaget.exe [9662696] [PID.4048]
[MD5.7EBE84B14BA44F0B0E2561A69BC1A11E] - (.Sony Computer Entertainment Inc. - Content Manager Assistant.) -- C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe [2796000] [PID.3680]
[MD5.04135893905EFBE5BC8FA4D60441FC45] - (.VMware, Inc. - VMware Host Network Access Status Tray Appl.) -- C:\Program Files (x86)\VMware\VMware Player\hqtray.exe [64112] [PID.920]
[MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [323640] [PID.2348]
[MD5.DCF9771FE0A0C52F426E2C527E4E3F88] - (.National Instruments Corporation - NI-DAQ Device Monitor.) -- C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe [106576] [PID.4012]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576] [PID.1188]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.4548]
[MD5.DA339CE83E59F537C3B31AF20CC630FC] - (.National Instruments Corporation - NI Error Reporting Server.) -- C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe [619672] [PID.3476]
[MD5.2C1DB5511CA69CDD272949D7BFE1A59A] - (.Sony Computer Entertainment Inc. - Content Manager Assistant.) -- C:\Program Files (x86)\Sony\Content Manager Assistant\CMAWatcher.exe [525800] [PID.2384]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.5864]
[MD5.62DB2B95B24EDAE93B68E2C93AE014F3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1239064] [PID.6676]
[MD5.56873D899C0707AA017AA2D74EC190AE] - (...) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [3770368] [PID.3356]
~ Scan Processes Running in 00mn 00s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Slim\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Slim\AppData\Roaming\Mozilla\Firefox\Profiles\bwtju3pi.default\prefs.js
C:\Users\Slim\AppData\Roaming\Mozilla\Firefox\Profiles\ymzjcgr1.default-1351599553867\prefs.js
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Slim - bwtju3pi.default] https://www.google.fr/?gws_rd=ssl
M0 - MFSP: prefs.js [Slim - ymzjcgr1.default-1351599553867] about:home
M2 - MFEP: prefs.js [Slim - bwtju3pi.default\newtaburl@sogame.cat] [] NewTabURL v2.2.3 (.Sogame.)
M2 - MFEP: prefs.js [Slim - bwtju3pi.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20120926 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Slim - bwtju3pi.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.10 (.Michel Gutierrez.)
M2 - MFEP: prefs.js [Slim - ymzjcgr1.default-1351599553867\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20120926 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Slim - ymzjcgr1.default-1351599553867\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.10 (.Michel Gutierrez.)
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 2010 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv2010win32.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 2011 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv2011win32.dll
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv2011win64.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 8.2 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPLV82Win32.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 8.6 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv86win32.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 9.0 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv90win32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.2".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww7.certified-toolbar.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.com/?gws_rd=ssl
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} Clé orpheline
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline
O2 - BHO: (no name) [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} Clé orpheline
O2 - BHO: (no name) [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} Clé orpheline
O2 - BHO: (no name) [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} Clé orpheline
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline
~ Scan BHO in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [NPSStartup] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Wow6432Node\Run: [VMware hqtray] . (.VMware, Inc. - VMware Host Network Access Status Tray Appl.) -- C:\Program Files (x86)\VMware\VMware Player\hqtray.exe
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
O4 - HKLM\..\Wow6432Node\Run: [niDevMon] . (.National Instruments Corporation - NI-DAQ Device Monitor.) -- C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-21-1151184209-2991270390-1229531096-1001\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qtrax Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ChrisPC Free Anonymous Proxy.lnk . (.Chris P.C. srl.) -- C:\Program Files (x86)\ChrisPC Free Anonymous Proxy\ChrisPC Proxy.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DllSuite.lnk . (...) -- C:\Program Files (x86)\DLLSuite\3.0\DLLSuite.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PyLab.lnk . (...) -- C:\Python27\python.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd..) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe
~ Scan Global Startup in 00mn 00s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.National Instruments Corporation - National Instruments Zeroconf Namespace Service Provider.) -- C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CCS\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CS1\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CS2\Services\Tcpip\..\{02D9E5C0-E541-45DC-B363-90532D97A33B}: DhcpNameServer = 192.168.23.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{7EDEF4AD-178D-4BB0-92C4-79EB13FDD8F7}: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{02D9E5C0-E541-45DC-B363-90532D97A33B}: DhcpDomain = localdomain
O17 - HKLM\System\CS2\Services\Tcpip\..\{7EDEF4AD-178D-4BB0-92C4-79EB13FDD8F7}: DhcpDomain = localdomain
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Lookout Citadel Server (LkCitadelServer) . (.National Instruments, Inc. - Part of Logos.) - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) . (.National Instruments Corporation - lkads.) - C:\Windows\SysWOW64\lkads.exe
O23 - Service: National Instruments Time Synchronizatio (lkTimeSync) . (.National Instruments Corporation - lktsrv.) - C:\Windows\SysWOW64\lktsrv.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NI Configuration Manager (mxssvr) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
O23 - Service: NI-488.2 Enumeration Service (ni488enumsvc) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Windows\SysWOW64\nipalsm.exe
O23 - Service: NI Application Web Server (NIApplicationWebServer) . (.National Instruments Corporation - Application Web Server Daemon.) - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
O23 - Service: NI Device Loader (nidevldu) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Windows\SysWOW64\nipalsm.exe
O23 - Service: National Instruments Domain Service (NIDomainService) . (.National Instruments Corporation - nidmsrv.) - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: National Instruments LXI Discovery Servi (niLXIDiscovery) . (.National Instruments Corporation - National Instruments LXI Discovery Service.) - C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
O23 - Service: National Instruments mDNS Responder Serv (nimDNSResponder) . (.National Instruments Corporation - National Instruments Zeroconf Service.) - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
O23 - Service: NI Network Discovery (NINetworkDiscovery) . (.National Instruments Corporation - National Instruments Network Discovery Serv.) - C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
O23 - Service: NI PXI Resource Manager (nipxirmu) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Windows\SysWOW64\nipalsm.exe
O23 - Service: NI System Web Server (niSvcLoc) . (.National Instruments Corporation - System Web Server Daemon.) - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
O23 - Service: National Instruments Variable Engine (NITaggerService) . (.National Instruments Corporation - National Instruments Variable Engine.) - C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
O23 - Service: Tor Win32 Service (tor) . (...) - C:\Program Files (x86)\Tor\tor.exe
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s

---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForMOONSKY$.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForSlim.job
[MD5.320681DF28D82CDCA7E3EED0846625DB] [APT] [AdobeAAMUpdater-1.0-MOONSKY-Slim] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.455B6AF8235787AB6E36193FBD9BB0AA] [APT] [HPCeeScheduleForSlim] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.718051D3D1A6AAACE954E301ABFC8A65] [APT] [NIUpdateServiceCheckTask] (.National Instruments.) -- C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe
[MD5.F61BC28AC1E4304F0A76B81C6BA0B327] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.F61BC28AC1E4304F0A76B81C6BA0B327] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.00000000000000000000000000000000] [APT] [{02E27D13-5C81-41CC-A719-C48072D12B9E}] (...) -- C:\Users\Slim\Desktop\NI.LabVIEW.2010.v10.0\keygen\NILV10_CTG.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{0CBEFDAB-31C5-4907-9EAD-F15135DA523F}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\dotnetfx.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{174F1F4E-EC77-4295-9436-D8B2C444D313}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\ServoManagerVer1.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{2191B9E3-97E1-413B-AEE3-34FEE63C6551}] (...) -- C:\Program Files (x86)\eMule\Uninstall.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{57808DC4-C532-434E-95C7-C4CB2D7934C6}] (...) -- F:\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{800749A2-D19C-4F10-A025-D3F069D5A98C}] (...) -- C:\Users\Slim\Desktop\TUTO-2 jouer via X-link kai par USB sans cl' WIFI Max\Xlink Set\PSP Type B Driver install - Multi Language.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{8D3CBE5F-731E-483A-B2FC-C1FA416A3DEA}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\GyroManager.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A5F03F49-6429-4177-A700-CAAACF7BF653}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\AutoCAD_2012_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A9502DE0-43BD-4388-85B0-D55333CE2C88}] (...) -- C:\Users\Slim\Desktop\cl'f USB\logiciel PC\cl' activation logiciels\AutoCAD_Electrical_2013_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E212AB93-3BFA-4643-AA1D-D056CC925C71}] (...) -- C:\Users\Slim\Desktop\AutoCAD 2012 Design Software 2D 3D + Serial Key\AutoCAD_2012_64-bit\AutoCAD_2012_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E976CF30-B1B1-471B-BCC9-B9571554025C}] (...) -- C:\Users\Slim\Desktop\AutoCAD_Electrical_2013_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{FBEF4AE5-051E-4149-8919-0A9FDE58087D}] (...) -- C:\Users\Slim\Desktop\AutoCAD_Electrical_2013_English_Win_64bit.exe (.not file.)
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.8DB6B7D82673029329F2F73577453D75] [APT] [videopadShakeIcon] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\VideoPad\VideoPad.exe
~ Scan Scheduled Task in 00mn 03s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: 32.0 - (.Goldenfoundsoft.) [HKLM][64Bits] -- Google Maps With GPS Tracker 32.0_is1
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.5.2 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {63EC2120-1742-4625-AA47-C6A8AEC9C64C}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Assistant du gestionnaire de contenu pour PlayStation(R) - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {DC8FA1C1-BE26-4889-85F1-A98AE6E37979}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: AutoCAD 2012 - English - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2012 - English
O42 - Logiciel: AutoCAD 2012 - English - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-A001-0409-0102-0060B0CE6BBA}
O42 - Logiciel: AutoCAD 2013 - Français (French) - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2013 - Français (French)
O42 - Logiciel: AutoCAD 2013 - Français (French) - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B001-0000-0102-0060B0CE6BBA}
O42 - Logiciel: AutoCAD Electrical 2013 - (.Autodesk.) [HKLM][64Bits] -- AutoCAD Electrical 2013
O42 - Logiciel: AutoCAD Electrical 2013 - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B007-0409-0102-0060B0CE6BBA}
O42 - Logiciel: Autodesk Inventor Fusion 2013 - (.Autodesk, Inc..) [HKLM][64Bits] -- Autodesk Inventor Fusion 2013
O42 - Logiciel: Autodesk Inventor Fusion 2013 - (.Autodesk, Inc..) [HKLM][64Bits] -- {FFF5619F-2013-0064-A85E-9994F70A9E5D}
O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2012 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Inventor Fusion plug-in for AutoCAD 2012
O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2012 - (.Autodesk.) [HKLM][64Bits] -- {EAB3AC1A-68FF-486B-9C6B-E48EBB4B05CC}
O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2013 - (.Autodesk.) [HKLM][64Bits] -- Plug-in Autodesk Inventor Fusion pour AutoCAD 2013
O42 - Logiciel: Autodesk Inventor Fusion plug-in language pack for AutoCAD 2012 - (.Autodesk.) [HKLM][64Bits] -- {E552C39C-C70E-464F-9733-8311331BDD90}
O42 - Logiciel: Autodesk Inventor View 2013 - (.Autodesk.) [HKLM][64Bits] -- {7F4DD591-1764-0004-0000-7107D70F3DB4}
O42 - Logiciel: Autodesk Inventor View 2013 English - (.Autodesk.) [HKLM][64Bits] -- Autodesk Inventor View 2013
O42 - Logiciel: Autodesk Inventor View 2013 English Language Pack - (.Autodesk.) [HKLM][64Bits] -- {7F4DD591-1764-0004-1033-7107D70F3DB4}
O42 - Logiciel: Autodesk Material Library 2012 - (.Autodesk.) [HKLM][64Bits] -- {8F0837C2-EE09-4903-88F3-1976FE7FFF4E}
O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2012 - (.Autodesk.) [HKLM][64Bits] -- {65420DC9-306E-4371-905F-F4DC3B418E52}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {606E12B9-641F-4644-A22A-FF38AE980AFD}
O42 - Logiciel: Autodesk Sync - (.Autodesk, Inc..) [HKLM][64Bits] -- {EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {449CE12D-E2C7-4B97-B19E-55D163EA9435}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: ChrisPC Free Anonymous Proxy 3.10 - (.Chris P.C. srl.) [HKLM][64Bits] -- {6006089C-84B5-4F18-8113-D96792AED0DE}_is1
O42 - Logiciel: Code de la Route Pratic - (.Micro Application.) [HKLM][64Bits] -- Code de la Route Pratic
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM][64Bits] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- {80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DLL Suite 3.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- {B33076A3-14C7-4463-A563-DF0D06D60296}_is1
O42 - Logiciel: EPD_free-7.3-2 - (.Enthought.) [HKLM][64Bits] -- {615A5951-A1FA-42DD-B786-842926DDC27D}
O42 - Logiciel: Emule Windows XP - (.VMware, Inc..) [HKLM][64Bits] -- {78D550E6-E2E1-4C6B-AB98-E855B0C2A89C}
O42 - Logiciel: FARO LS 1.1.406.58 - (.FARO Scanner Production.) [HKLM][64Bits] -- {951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}
O42 - Logiciel: Free Media Pack version 1.7 - (.Pas de propriétaire.) [HKLM][64Bits] -- {ADCABEAB-487A-42CE-B751-6AFDBC3EC676}_is1
O42 - Logiciel: Free Studio version 5.4.8 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free Studio_is1
O42 - Logiciel: Free YouTube Uploader version 3.3.34.706 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Uploader_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Gtk# for .Net 2.12.10 - (.Novell, Inc..) [HKLM][64Bits] -- {550B72C4-F404-4812-971F-947E835A877E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F44AF95-3CDE-4513-AD3F-6D45F17BF324}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0148 - (.Hewlett-Packard.) [HKLM][64Bits] -- {9D3318E1-5A9F-4A95-A7A1-7E045403AE34}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {54CC7901-804D-4155-B353-21F0CC9112AB}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.1.2.0 - (.Hewlett-Packard.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IVI Shared Components - (.Pas de propriétaire.) [HKLM][64Bits] -- IviSharedComponent
O42 - Logiciel: IVI VISA COM Standard Components - (.IVI Foundation Inc..) [HKLM][64Bits] -- {D2533218-3B3D-46C6-ABAA-898EB2908589}
O42 - Logiciel: IVI VISA COM Standard Components - (.Pas de propriétaire.) [HKLM][64Bits] -- IviVisaComStandardComponents
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- HDMI
O42 - Logiciel: Java 7 Update 9 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF}
O42 - Logiciel: Java(TM) 6 Update 35 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216032FF}
O42 - Logiciel: Java(TM) SE Development Kit 6 Update 15 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0160150}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {CC8E94A2-55C7-4460-953C-2A790180578C}
O42 - Logiciel: Logiciels National Instruments - (.National Instruments.) [HKLM][64Bits] -- NI Uninstaller
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {0F733E11-408E-11E1-B5FE-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {331F3940-4093-11E1-9565-F04DA23A5C58}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Malwarebytes Anti-Malware version 1.65.1.1000 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MediaGet - (.Media Get LLC.) [HKCU][64Bits] -- MediaGet
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM][64Bits] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft .NET Framework 4 Extended
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2}
O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {A39AE3AE-9808-39D2-AB7B-FF5F0335095E}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Office Home and Student 2010 - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140011-0061-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.Click2Run
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006D-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D8E6291-B0D5-35EC-8441-6616F567A0F7}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM][64Bits] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM][64Bits] -- {08D2E121-7F6A-43EB-97FD-629B44903403}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft .NET Framework 4 Extended FRA Language Pack
O42 - Logiciel: Module linguistique du plug-in Autodesk Inventor Fusion pour AutoCAD 2013 - (.Autodesk.) [HKLM][64Bits] -- {FE2F4875-095C-427C-9A97-4F8DE05ACF22}
O42 - Logiciel: Mozilla Firefox 16.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 16.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaM

Réponse 24 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

Le rapport est trop long pour être posté directement ici, passe par http://pjjoint.malekal.com/.

Réponse 25 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

https://pjjoint.malekal.com/files.php?read=ZHPDiag_20121102_w6b7y14x13u13

jv finir par cassé une fenêtre mdr

Réponse 26 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

Il reste encore des éléments à retirer mais c'est mieux.

Ton PC fonctionne mieux ?

Réponse 27 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

oui il ais plus rapide ben dit moi qu'est-ce qu'ils faut que je retire??

Réponse 28 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

Je regarderai mieux demain.

Tu peux désinstaller PenWes.

http://www.penwes.com/438-faq-qu-est-ce-que-penwes-desinstaller-penwes.php

Réponse 29 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

ok by

Réponse 30 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

t'es là?

Réponse 31 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

A quoi sert "SProtector 1.66" ?

Même question pour ce dossier : C:\Program Files (x86)\fgy ?

Réponse 32 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

SProtector 1.66 desinstaller

"ce dossier : C:\Program Files (x86)\fgy " j'en es besoin ya koi d'autres sinon?

Réponse 33 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

Réutilise ZHPFix mais avec le script suivant :

SysRestore
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CS1\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CS2\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: NameServer = 178.33.41.181,46.4.70.20
O42 - Logiciel: MediaGet - (.Media Get LLC.) [HKCU][64Bits] -- MediaGet
O42 - Logiciel: PenWes [3392] - (.Pas de propriétaire.) [HKLM][64Bits] -- Penwes
[HKCU\Software\SpeedyPC Software]
[HKLM\Software\Wow6432Node\SpeedyPC Software]
O43 - CFD: 07/06/2012 - 21:05:34 - [1,681] ----D C:\Program Files (x86)\PenWes
[HKCU\Software\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
O43 - CFD: 26/08/2012 - 21:12:03 - [0] ----D C:\ProgramData\SpeedyPC Software
O43 - CFD: 26/04/2012 - 13:10:32 - [0,015] ----D C:\ProgramData\Spybot - Search & Destroy
- CFD: 01/09/2012 - 22:36:47 - [2,327] ----D C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 28/10/2012 - 07:45:53 - [0,961] ----D C:\Users\Slim\AppData\Local\Media Get LLC
O43 - CFD: 02/11/2012 - 02:16:11 - [41,268] ----D C:\Users\Slim\AppData\Local\MediaGet2
O43 - CFD: 28/10/2012 - 07:46:24 - [0,003] ----D C:\Users\Slim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaGet2
O44 - LFC:[MD5.32F0C5D6F44AB220BE3A3633D238BA6C] - 27/10/2012 - 01:33:02 ---A- . (...) -- C:\SetSearchAndHomepageInBrowserLog.txt [109]
O44 - LFC:[MD5.A3CD3C46BDBD9AF5F942A5D64FF37DB9] - 27/10/2012 - 01:33:04 ---A- . (.Pas de propriétaire - Toolbar_Exe_Launcher_Form.) -- C:\Windows\Launcher.exe [15432]
EmptyCLSID
EmptyFlash
EmptyTemp

Réponse 34 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

Rapport de ZHPFix 1.3.05 par Nicolas Coolman, Update du 09/10/2012
Fichier d'export Registre :
Run by Slim at 02/11/2012 16:45:45
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Web site : http://nicolascoolman.skyrock.com/

========== Logiciel(s) ==========
ABSENT Software Key: MediaGet
ABSENT Software Key: Penwes

========== Clé(s) du Registre ==========
SUPPRIME Key: HKCU\Software\SpeedyPC Software
SUPPRIME Key: HKLM\Software\Wow6432Node\SpeedyPC Software
SUPPRIME Key: HKCU\Software\Safer Networking Limited
SUPPRIME Key: HKLM\Software\Wow6432Node\Safer Networking Limited

========== Valeur(s) du Registre ==========
ABSENT TCPIP: NameServer

========== Elément(s) de donnée du Registre ==========
SUPPRIME R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page
SUPPRIME TCPIP: NameServer =

========== Dossier(s) ==========
SUPPRIME Flash Cookies:
SUPPRIME Temporaires Windows:

========== Fichier(s) ==========
SUPPRIME File: c:\setsearchandhomepageinbrowserlog.txt
SUPPRIME File: c:\windows\launcher.exe
SUPPRIME Flash Cookies:
SUPPRIME Temporaires Windows:

========== Restauration Système ==========
Point de restauration du système créé avec succès

========== Autre ==========
NON TRAITE - CFD: 01/09/2012 - 22:36:47 - [2,327] ----D C:\Program Files (x86)\Spybot - Search & Destroy

========== Récapitulatif ==========
4 : Clé(s) du Registre
1 : Valeur(s) du Registre
2 : Elément(s) de donnée du Registre
2 : Dossier(s)
4 : Fichier(s)
2 : Logiciel(s)
1 : Restauration Système
1 : Autre

End of clean in 00mn 28s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 01/11/2012 23:19:58 [488]
C:\ZHP\ZHPFix[R2].txt - 02/11/2012 02:18:38 [13026]
C:\ZHP\ZHPFix[R3].txt - 02/11/2012 02:19:08 [15907]
C:\ZHP\ZHPFix[R4].txt - 02/11/2012 02:20:45 [17105]
C:\ZHP\ZHPFix[R5].txt - 02/11/2012 16:45:45 [1893]

Réponse 35 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

"NON TRAITE - CFD: 01/09/2012 - 22:36:47 - [2,327] ----D C:\Program Files (x86)\Spybot - Search & Destroy"

--> J'ai fait un mauvais copier-coller, supprime le dossier de Spybot manuellement.

Plus de souci ?

Un (dernier) rapport ZHPDiag s'il te plaît.

Réponse 36 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

Rapport de ZHPDiag v1.31.31 par Nicolas Coolman, Update du 19/10/2012
Run by Slim at 02/11/2012 17:05:17
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.
UAC : Not Found or deactivate by user

---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 16.0.2 v16.0.2
GCIE: Google Chrome v22.0.1229.96 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3998 MB (53% free)
System Restore: Activé (Enable)
System drive C: has 321 GB (70%) free of 453 GB

---\\ Logged in mode
~ Computer Name: MOONSKY
~ User Name: Slim
~ All Users Names: __vmware_user__, Slim, HomeGroupUser$, ASPNET, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Slim\AppData\Roaming\
~ %Desktop% : C:\Users\Slim\Desktop\
~ %Favorites% : C:\Users\Slim\Favorites\
~ %LocalAppData% : C:\Users\Slim\AppData\Local\
~ %StartMenu% : C:\Users\Slim\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 321 Go of 453 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)

---\\ Security Center & Tools Informations
~ UAC deactivate by user
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.3D165C53E40236A68B7102D1A622D4E0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.24/08/2012 - 11:21:18.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 04:25:32.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 04:27:28.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 00:19:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 00:26:34.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 01:43:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 00:23:22.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 01:52:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 00:21:58.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 04:34:04.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/81
~ Mes musiques (My Musics) : 4/939
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/1254
~ Mon Bureau (My Desktop) : 2/548
~ Menu demarrer (Programs) : 1/35
~ Scan Hidden Files in 00mn 08s

---\\ Processus lancés
[MD5.12E33DD823D74680DE6F33BFA359EFB3] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [766536] [PID.2096]
[MD5.E02E715FA2BC8D88FF9362374E309D76] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.3684]
[MD5.04135893905EFBE5BC8FA4D60441FC45] - (.VMware, Inc. - VMware Host Network Access Status Tray Appl.) -- C:\Program Files (x86)\VMware\VMware Player\hqtray.exe [64112] [PID.3148]
[MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [323640] [PID.3200]
[MD5.DCF9771FE0A0C52F426E2C527E4E3F88] - (.National Instruments Corporation - NI-DAQ Device Monitor.) -- C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe [106576] [PID.3320]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576] [PID.3380]
[MD5.7EBE84B14BA44F0B0E2561A69BC1A11E] - (.Sony Computer Entertainment Inc. - Content Manager Assistant.) -- C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe [2796000] [PID.3624]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.3900]
[MD5.DA339CE83E59F537C3B31AF20CC630FC] - (.National Instruments Corporation - NI Error Reporting Server.) -- C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe [619672] [PID.3868]
[MD5.2C1DB5511CA69CDD272949D7BFE1A59A] - (.Sony Computer Entertainment Inc. - Content Manager Assistant.) -- C:\Program Files (x86)\Sony\Content Manager Assistant\CMAWatcher.exe [525800] [PID.3540]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.5576]
[MD5.62DB2B95B24EDAE93B68E2C93AE014F3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1239064] [PID.1348]
[MD5.56873D899C0707AA017AA2D74EC190AE] - (...) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [3770368] [PID.3704]
[MD5.BCC4A8B2E2E902F52E7F2E7D8E125765] - (.Hewlett-Packard Company - HP Quick Synchronization Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [94264] [PID.]
[MD5.2238B91AC1A12CC6CC4C4FED41258B2A] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.]
[MD5.B07D786736E7B1719A90365911BC2D0A] - (.National Instruments Corporation - lkads.) -- C:\Windows\SysWOW64\lkads.exe [46192] [PID.]
[MD5.85B16A92B117A5A800032ECD904B86DB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [399432] [PID.]
[MD5.20E2469DB709FC675E655CEAA11BE312] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [676936] [PID.]
[MD5.A3BA8A14490FDBF106939C37A125E82C] - (.National Instruments Corporation - NI-PAL Service Manager.) -- C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [12696] [PID.]
[MD5.A3BA8A14490FDBF106939C37A125E82C] - (.National Instruments Corporation - NI-PAL Service Manager.) -- C:\Windows\SysWOW64\nipalsm.exe [12696] [PID.]
[MD5.908B9667F2FD7453CBCF3A2A0444DCC1] - (.National Instruments Corporation - nidmsrv.) -- C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [362104] [PID.]
[MD5.FC87856060BD0B667D2086B7050240A3] - (.National Instruments Corporation - System Web Server Daemon.) -- C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [50328] [PID.]
[MD5.4DC8C4EC1F9637110142C7D65FFB40E5] - (.National Instruments Corporation - National Instruments Variable Engine.) -- C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [676016] [PID.]
[MD5.498EB62A160674E793FA40FD65390625] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.]
[MD5.C3CDDD18F43D44AB713CF8C4916F7696] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [219496] [PID.]
[MD5.68DDB53B2F96DB98861134604740135E] - (...) -- C:\Program Files (x86)\Tor\tor.exe [2745870] [PID.]
[MD5.D73DAF6961C4FEFE92B914DFABEEA98F] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [539248] [PID.]
[MD5.00E87FE321FEA5D877C2FB45EF639996] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [404080] [PID.]
[MD5.20CDB07017497C94A0BAD253C4BAFCBC] - (.National Instruments, Inc. - Part of Logos.) -- C:\Windows\SysWOW64\lkcitdl.exe [695136] [PID.]
[MD5.AB1FAA47332EC2EE43BBFED7A6F0EA09] - (.National Instruments Corporation - lktsrv.) -- C:\Windows\SysWOW64\lktsrv.exe [56952] [PID.]
[MD5.13693B6354DD6E72DC5131DA7D764B90] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [508776] [PID.]
[MD5.F3055CFB506BADE5697947BEF326BDBF] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [113264] [PID.]
[MD5.C6316A25E1BB013C52D5CA2EB1D4106D] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [334448] [PID.]
[MD5.F0E38750822EECC47B9913C55990F86A] - (.National Instruments Corporation - Application Web Server Daemon.) -- C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [50336] [PID.]
[MD5.8FED4893CB017F81CD1769448AD567E5] - (.National Instruments Corporation - National Instruments Zeroconf Service.) -- C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [194224] [PID.]
[MD5.AE5A69F44C1F97EDC83237FC0B29B6FB] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe [212432] [PID.]
[MD5.A3A61F58CEC5EEB021ACBD2ACCEFD393] - (.National Instruments Corporation - National Instruments LXI Discovery Service.) -- C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [129144] [PID.]
[MD5.5FF602D7890DA09F45811C3263F81264] - (.National Instruments Corporation - National Instruments Network Discovery Serv.) -- C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [121032] [PID.]
[MD5.DDAC7684F4BC3F655ED31D8AA494E9AB] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.exe [822624] [PID.]
[MD5.EC9739A46F1F83C6E52A7A4697F44A65] - (.Hewlett-Packard Company - hpqwmiex Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [799800] [PID.]
[MD5.C7A0E61D5714AC20DE52D4F66EC773B8] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [227896] [PID.]
~ Scan Processes Running in 00mn 01s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Slim\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www6.searchonme.com/?tdfs=1&kw=search&term=Search%20Knowledge%20Base%20Software&term=Help%20Desk%20Ticket%20System&term=Customer%20Support%20Portal&backfill=0
G0 - GCSP: Preference [User Data\Default] https://www.google.fr
G1 - GCS: Preference [User Data\Default] http://www.searchplusnetwork.com
~ Scan Google Browser in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Slim\AppData\Roaming\Mozilla\Firefox\Profiles\bwtju3pi.default\prefs.js
C:\Users\Slim\AppData\Roaming\Mozilla\Firefox\Profiles\ymzjcgr1.default-1351599553867\prefs.js
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Slim] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Slim - bwtju3pi.default] https://www.google.fr/?gws_rd=ssl
M0 - MFSP: prefs.js [Slim - ymzjcgr1.default-1351599553867] about:home
M2 - MFEP: prefs.js [Slim - bwtju3pi.default\newtaburl@sogame.cat] [] NewTabURL v2.2.3 (.Sogame.)
M2 - MFEP: prefs.js [Slim - bwtju3pi.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20120926 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Slim - bwtju3pi.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.10 (.Michel Gutierrez.)
M2 - MFEP: prefs.js [Slim - ymzjcgr1.default-1351599553867\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20120926 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Slim - ymzjcgr1.default-1351599553867\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.10 (.Michel Gutierrez.)
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 2010 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv2010win32.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 2011 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv2011win32.dll
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv2011win64.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 8.2 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPLV82Win32.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 8.6 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv86win32.dll
P2 - FPN:Firefox Plugin Navigator . (.National Instruments - LabVIEW 9.0 Netscape Plug-in for Win32.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nplv90win32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.2".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
~ Scan Firefox Browser in 00mn 02s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww7.certified-toolbar.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.com/?gws_rd=ssl
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} Clé orpheline
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline
O2 - BHO: (no name) [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} Clé orpheline
O2 - BHO: (no name) [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} Clé orpheline
O2 - BHO: (no name) [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} Clé orpheline
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline
~ Scan BHO in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk Sync.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [NPSStartup] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Wow6432Node\Run: [VMware hqtray] . (.VMware, Inc. - VMware Host Network Access Status Tray Appl.) -- C:\Program Files (x86)\VMware\VMware Player\hqtray.exe
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
O4 - HKLM\..\Wow6432Node\Run: [niDevMon] . (.National Instruments Corporation - NI-DAQ Device Monitor.) -- C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1151184209-2991270390-1229531096-1001\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qtrax Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ChrisPC Free Anonymous Proxy.lnk . (.Chris P.C. srl.) -- C:\Program Files (x86)\ChrisPC Free Anonymous Proxy\ChrisPC Proxy.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DllSuite.lnk . (...) -- C:\Program Files (x86)\DLLSuite\3.0\DLLSuite.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PyLab.lnk . (...) -- C:\Python27\python.exe
O4 - Global Startup: C:\Users\Slim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd..) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe
O4 - Global Startup: C:\Users\Administrateur\Desktop\ZIP Password Recovery.lnk . (...) -- C:\Program Files (x86)\ZIP Password Recovery\ZIPPasswordRecovery.exe (.not file.)
~ Scan Global Startup in 00mn 00s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.National Instruments Corporation - National Instruments Zeroconf Namespace Service Provider.) -- C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{02D9E5C0-E541-45DC-B363-90532D97A33B}: DhcpNameServer = 192.168.23.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{7EDEF4AD-178D-4BB0-92C4-79EB13FDD8F7}: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E03D3D69-5DDC-432A-B7C1-FD2E75432748}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{02D9E5C0-E541-45DC-B363-90532D97A33B}: DhcpDomain = localdomain
O17 - HKLM\System\CS2\Services\Tcpip\..\{7EDEF4AD-178D-4BB0-92C4-79EB13FDD8F7}: DhcpDomain = localdomain
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Lookout Citadel Server (LkCitadelServer) . (.National Instruments, Inc. - Part of Logos.) - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) . (.National Instruments Corporation - lkads.) - C:\Windows\SysWOW64\lkads.exe
O23 - Service: National Instruments Time Synchronizatio (lkTimeSync) . (.National Instruments Corporation - lktsrv.) - C:\Windows\SysWOW64\lktsrv.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NI Configuration Manager (mxssvr) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
O23 - Service: NI-488.2 Enumeration Service (ni488enumsvc) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Windows\SysWOW64\nipalsm.exe
O23 - Service: NI Application Web Server (NIApplicationWebServer) . (.National Instruments Corporation - Application Web Server Daemon.) - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
O23 - Service: NI Device Loader (nidevldu) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Windows\SysWOW64\nipalsm.exe
O23 - Service: National Instruments Domain Service (NIDomainService) . (.National Instruments Corporation - nidmsrv.) - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: National Instruments LXI Discovery Servi (niLXIDiscovery) . (.National Instruments Corporation - National Instruments LXI Discovery Service.) - C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
O23 - Service: National Instruments mDNS Responder Serv (nimDNSResponder) . (.National Instruments Corporation - National Instruments Zeroconf Service.) - C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
O23 - Service: NI Network Discovery (NINetworkDiscovery) . (.National Instruments Corporation - National Instruments Network Discovery Serv.) - C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
O23 - Service: NI PXI Resource Manager (nipxirmu) . (.National Instruments Corporation - NI-PAL Service Manager.) - C:\Windows\SysWOW64\nipalsm.exe
O23 - Service: NI System Web Server (niSvcLoc) . (.National Instruments Corporation - System Web Server Daemon.) - C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
O23 - Service: National Instruments Variable Engine (NITaggerService) . (.National Instruments Corporation - National Instruments Variable Engine.) - C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
O23 - Service: Tor Win32 Service (tor) . (...) - C:\Program Files (x86)\Tor\tor.exe
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s

---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForMOONSKY$.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForSlim.job
[MD5.44C00A385CA9DBC1D5CF3781F8C26AEA] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.320681DF28D82CDCA7E3EED0846625DB] [APT] [AdobeAAMUpdater-1.0-MOONSKY-Slim] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.455B6AF8235787AB6E36193FBD9BB0AA] [APT] [HPCeeScheduleForMOONSKY$] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.455B6AF8235787AB6E36193FBD9BB0AA] [APT] [HPCeeScheduleForSlim] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.718051D3D1A6AAACE954E301ABFC8A65] [APT] [NIUpdateServiceCheckTask] (.National Instruments.) -- C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe
[MD5.F61BC28AC1E4304F0A76B81C6BA0B327] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.F61BC28AC1E4304F0A76B81C6BA0B327] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.00000000000000000000000000000000] [APT] [{02E27D13-5C81-41CC-A719-C48072D12B9E}] (...) -- C:\Users\Slim\Desktop\NI.LabVIEW.2010.v10.0\keygen\NILV10_CTG.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{0CBEFDAB-31C5-4907-9EAD-F15135DA523F}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\dotnetfx.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{174F1F4E-EC77-4295-9436-D8B2C444D313}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\ServoManagerVer1.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{2191B9E3-97E1-413B-AEE3-34FEE63C6551}] (...) -- C:\Program Files (x86)\eMule\Uninstall.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{57808DC4-C532-434E-95C7-C4CB2D7934C6}] (...) -- F:\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{800749A2-D19C-4F10-A025-D3F069D5A98C}] (...) -- C:\Users\Slim\Desktop\TUTO-2 jouer via X-link kai par USB sans cl' WIFI Max\Xlink Set\PSP Type B Driver install - Multi Language.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{8D3CBE5F-731E-483A-B2FC-C1FA416A3DEA}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\GyroManager.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A5F03F49-6429-4177-A700-CAAACF7BF653}] (...) -- C:\Users\Slim\Desktop\Video convertie PC\AutoCAD_2012_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A9502DE0-43BD-4388-85B0-D55333CE2C88}] (...) -- C:\Users\Slim\Desktop\cl'f USB\logiciel PC\cl' activation logiciels\AutoCAD_Electrical_2013_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E212AB93-3BFA-4643-AA1D-D056CC925C71}] (...) -- C:\Users\Slim\Desktop\AutoCAD 2012 Design Software 2D 3D + Serial Key\AutoCAD_2012_64-bit\AutoCAD_2012_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E976CF30-B1B1-471B-BCC9-B9571554025C}] (...) -- C:\Users\Slim\Desktop\AutoCAD_Electrical_2013_English_Win_64bit.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{FBEF4AE5-051E-4149-8919-0A9FDE58087D}] (...) -- C:\Users\Slim\Desktop\AutoCAD_Electrical_2013_English_Win_64bit.exe (.not file.)
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.1DB8C2220EFDBA97F671F46F6A8DE51E] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe
[MD5.7A14C25B7EC229B7F8B3E457779C83CC] [APT] [HP Total Care Tune-Up] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe
[MD5.0757398E1539E633CEC5179A3BCA5F4F] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.0757398E1539E633CEC5179A3BCA5F4F] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.A87F567F053191361B617D7908F8E062] [APT] [Update Check] (.Hewlett-Packard.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe
[MD5.8DB6B7D82673029329F2F73577453D75] [APT] [videopadShakeIcon] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\VideoPad\VideoPad.exe
~ Scan Scheduled Task in 00mn 06s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: 32.0 - (.Goldenfoundsoft.) [HKLM][64Bits] -- Google Maps With GPS Tracker 32.0_is1
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.5.2 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {63EC2120-1742-4625-AA47-C6A8AEC9C64C}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Assistant du gestionnaire de contenu pour PlayStation(R) - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {DC8FA1C1-BE26-4889-85F1-A98AE6E37979}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: AutoCAD 2012 - English - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2012 - English
O42 - Logiciel: AutoCAD 2012 - English - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-A001-0409-0102-0060B0CE6BBA}
O42 - Logiciel: AutoCAD 2013 - Français (French) - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2013 - Français (French)
O42 - Logiciel: AutoCAD 2013 - Français (French) - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B001-0000-0102-0060B0CE6BBA}
O42 - Logiciel: AutoCAD 2013 - Français (French) SP1.1 - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2013 - Français (French) SP1.1
O42 - Logiciel: AutoCAD Electrical 2013 - (.Autodesk.) [HKLM][64Bits] -- AutoCAD Electrical 2013
O42 - Logiciel: AutoCAD Electrical 2013 - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B007-0409-0102-0060B0CE6BBA}
O42 - Logiciel: Autodesk Inventor Fusion 2013 - (.Autodesk, Inc..) [HKLM][64Bits] -- Autodesk Inventor Fusion 2013
O42 - Logiciel: Autodesk Inventor Fusion 2013 - (.Autodesk, Inc..) [HKLM][64Bits] -- {FFF5619F-2013-0064-A85E-9994F70A9E5D}
O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2012 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Inventor Fusion plug-in for AutoCAD 2012
O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2012 - (.Autodesk.) [HKLM][64Bits] -- {EAB3AC1A-68FF-486B-9C6B-E48EBB4B05CC}
O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2013 - (.Autodesk.) [HKLM][64Bits] -- Plug-in Autodesk Inventor Fusion pour AutoCAD 2013
O42 - Logiciel: Autodesk Inventor Fusion plug-in language pack for AutoCAD 2012 - (.Autodesk.) [HKLM][64Bits] -- {E552C39C-C70E-464F-9733-8311331BDD90}
O42 - Logiciel: Autodesk Inventor View 2013 - (.Autodesk.) [HKLM][64Bits] -- {7F4DD591-1764-0004-0000-7107D70F3DB4}
O42 - Logiciel: Autodesk Inventor View 2013 English - (.Autodesk.) [HKLM][64Bits] -- Autodesk Inventor View 2013
O42 - Logiciel: Autodesk Inventor View 2013 English Language Pack - (.Autodesk.) [HKLM][64Bits] -- {7F4DD591-1764-0004-1033-7107D70F3DB4}
O42 - Logiciel: Autodesk Material Library 2012 - (.Autodesk.) [HKLM][64Bits] -- {8F0837C2-EE09-4903-88F3-1976FE7FFF4E}
O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2012 - (.Autodesk.) [HKLM][64Bits] -- {65420DC9-306E-4371-905F-F4DC3B418E52}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {606E12B9-641F-4644-A22A-FF38AE980AFD}
O42 - Logiciel: Autodesk Sync - (.Autodesk, Inc..) [HKLM][64Bits] -- {EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {449CE12D-E2C7-4B97-B19E-55D163EA9435}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: ChrisPC Free Anonymous Proxy 3.10 - (.Chris P.C. srl.) [HKLM][64Bits] -- {6006089C-84B5-4F18-8113-D96792AED0DE}_is1
O42 - Logiciel: Code de la Route Pratic - (.Micro Application.) [HKLM][64Bits] -- Code de la Route Pratic
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM][64Bits] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- {80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DLL Suite 3.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- {B33076A3-14C7-4463-A563-DF0D06D60296}_is1
O42 - Logiciel: EPD_free-7.3-2 - (.Enthought.) [HKLM][64Bits] -- {615A5951-A1FA-42DD-B786-842926DDC27D}
O42 - Logiciel: Emule Windows XP - (.VMware, Inc..) [HKLM][64Bits] -- {78D550E6-E2E1-4C6B-AB98-E855B0C2A89C}
O42 - Logiciel: FARO LS 1.1.406.58 - (.FARO Scanner Production.) [HKLM][64Bits] -- {951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}
O42 - Logiciel: Free Media Pack version 1.7 - (.Pas de propriétaire.) [HKLM][64Bits] -- {ADCABEAB-487A-42CE-B751-6AFDBC3EC676}_is1
O42 - Logiciel: Free Studio version 5.4.8 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free Studio_is1
O42 - Logiciel: Free YouTube Uploader version 3.3.34.706 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Uploader_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Gtk# for .Net 2.12.10 - (.Novell, Inc..) [HKLM][64Bits] -- {550B72C4-F404-4812-971F-947E835A877E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F44AF95-3CDE-4513-AD3F-6D45F17BF324}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0148 - (.Hewlett-Packard.) [HKLM][64Bits] -- {9D3318E1-5A9F-4A95-A7A1-7E045403AE34}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {54CC7901-804D-4155-B353-21F0CC9112AB}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.1.2.0 - (.Hewlett-Packard.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IVI Shared Components - (.Pas de propriétaire.) [HKLM][64Bits] -- IviSharedComponent
O42 - Logiciel: IVI VISA COM Standard Components - (.IVI Foundation Inc..) [HKLM][64Bits] -- {D2533218-3B3D-46C6-ABAA-898EB2908589}
O42 - Logiciel: IVI VISA COM Standard Components - (.Pas de propriétaire.) [HKLM][64Bits] -- IviVisaComStandardComponents
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- HDMI
O42 - Logiciel: Java 7 Update 9 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF}
O42 - Logiciel: Java(TM) 6 Update 35 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87

Réponse 37 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

Rappel :

Le rapport est trop long pour être posté directement ici, passe par http://pjjoint.malekal.com/.

Réponse 38 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

https://pjjoint.malekal.com/files.php?id=ZHPDiag_20121102_m10h7b10s13r10

Réponse 39 / 55

Destrio5 Messages postés 85985 Date d'inscription Statut Modérateur Dernière intervention 10 302

Menu Démarrer > Panneau de configuration > Désinstaller un programme.

Dans la liste, tu vois "MediaGet" ?

Réponse 40 / 55

downloadone Messages postés 25 Date d'inscription Statut Membre Dernière intervention

oui il es là je désinstalle?

Rapport AdwCleaner

55 réponses

Votre réponse

Discussions similaires