Pc espionné?

bonsoir,
je suis nouveau sur votre forum mais me connecte régulièrement pour avoir des réponses.
e suivant des conseil sur le site j'ai installé et lancé ZHP diag dont voici le rapport.
quelqu'un peut-il me le décrypter

cordialement
~ Rapport de ZHPDiag v2015.2.11.18 - Nicolas Coolman (11/02/2015)
~ Lancé par bado (11/02/2015 22:19:15)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17633
GCIE: Google Chrome v39.0.2171.95 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 733WD
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Professional, 32-bit Service Pack 1 (Build 7601)

---\\ Logiciels de protection du système
Sophos Anti-Virus v10.3.7
Windows Defender W7 (Activate)

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 ActiveX
Adobe Reader 9.3 - Français

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3240 MB (40% free)
System Restore: Activé (Enable)
System drive C: has 152 GB (69%) free of 220 GB

---\\ Mode de connexion au système
~ Computer Name: EXTPLSP01
~ User Name: bado
~ All Users Names: bado, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\bado.ExtPlsP01\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\bado.ExtPlsP01\AppData\Roaming\
~ %Desktop% : C:\Users\bado.ExtPlsP01\Desktop\
~ %Favorites% : C:\Users\bado.ExtPlsP01\Favorites\
~ %LocalAppData% : C:\Users\bado.ExtPlsP01\AppData\Local\
~ %StartMenu% : C:\Users\bado.ExtPlsP01\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 152 Go of 220 Go)
D: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyGames: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 38 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/05/2012 - 13:56:20.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.F285D499EC42969D963CA49EADA63218] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/01/2015 - 02:00:17.) -- C:\Windows\System32\wininet.dll [1888256]
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 02:39:27.) -- C:\Windows\System32\Winlogon.exe [304128]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 22:29:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:36:07.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 22:29:03.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 22:29:07.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 22:29:03.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.25/05/2012 - 13:56:12.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 22:29:08.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:18:22.) -- C:\Windows\system32\Drivers\ntfs.sys [1212352]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 22:29:49.) -- C:\Windows\system32\Drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.7FE680A3DFA421C4A8E4879AE4C5AAB0] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:32:14.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 22:29:03.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/7
~ Mes musiques (My Musics) : 1/292
~ Mes Favoris (My Favorites) : 1/15
~ Mes Documents (My Documents) : 2/2648
~ Mon Bureau (My Desktop) : 1/21
~ Menu demarrer (Programs) : 1/24
~ Hidden Files: Scanned in 00mn 07s



---\\ Processus lancés
[MD5.6103B6E41E588551189862453879E098] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe [505720] [PID.4488]
[MD5.12C864E55D5ED1A4061FA18BCCD80AC5] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe [536668] [PID.4496]
[MD5.E83D6BA916FCBAE7C4DD54258D980485] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [142616] [PID.4508]
[MD5.91A0008D2749539E166D3FDD30D87CA5] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [177432] [PID.4536]
[MD5.899378BD96D3993A9DBDAB04DCC6C076] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [176408] [PID.4596]
[MD5.A92AC5C2B800460316E2FBD99349ABF2] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1210640] [PID.4628]
[MD5.A0EDCF34A355729CD4A38648A6142FE6] - (.Pas de propriétaire - FF_Protection MFC Application.) -- C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704] [PID.4680]
[MD5.8817313A31DB7DEA4B2E329FB3AA90D3] - (.Dell Inc. - Dell Feature Enhancement Pack.) -- C:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe [6306712] [PID.4732]
[MD5.F928A70B855CF83E3CE9704BDD0BD895] - (.Wave Systems Corp. - Trusted Drive Manager User Notifier.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe [214384] [PID.4748]
[MD5.88FD47E3BD31BC358AD1EF14E75C7681] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [87336] [PID.4824]
[MD5.4164A47F3A2DA7EA44572904C3DF44A4] - (.Pas de propriétaire - Roxio Burn Launcher.) -- C:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544] [PID.4908]
[MD5.D53C287DEF473F0FDF1EE859DA9523C9] - (.Dell Computer Corporation - DBRM_Toaster.) -- C:\dell\DBRM\Reminder\DbrmTrayicon.exe [227328] [PID.5068]
[MD5.7D46CE32283158EB7F1D0C8E02D8DDD1] - (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files\Nuance\PaperPort\pptd40nt.exe [30568] [PID.5132]
[MD5.0EF0822810009D58118CCDFD098FA9F4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [157480] [PID.5160]
[MD5.319E55118479B7264EFA5068BD3EF187] - (.LITE-ON TECHNOLOGY CORP. - Lenovo Slim USB Keyboard.) -- C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Skd8821.exe [286208] [PID.5200]
[MD5.D2124327CB66F3727D26343122DBC4F5] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [5088456] [PID.5228]
[MD5.6BF7676296D5359AFC135A5397000053] - (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496] [PID.5240]
[MD5.B70EFFF003D51A94FCC4C6C66F5E610F] - (.Alps Electric Co., Ltd. - ApMsgFwd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe [57680] [PID.5360]
[MD5.7A42A8E161DC32C5A40C5813ED64DF03] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\HidFind.exe [54744] [PID.5436]
[MD5.DFC8186972EB21F75E5B532194AF4C3A] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\DellTPad\Apntex.exe [54640] [PID.5460]
[MD5.14767A3B686BB46F600C2325D2689C8E] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [840992] [PID.5568]
[MD5.586CBBFC7162FF4B6B4CE3864A6FDD7C] - (.Microsoft - DellSmartSettings.) -- C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe [494488] [PID.5616]
[MD5.5F3587E344F2990B59C941FB405CAA0F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [856904] [PID.5392]
[MD5.11B3252211948CED1ADB4547091B2FF1] - (.Broadcom Corporation. - Bluetooth Stack COM Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe [2852128] [PID.7040]
[MD5.BEDBAAE1658ED5CBD8AF0B514774F7DD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8166912] [PID.4896]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\bado\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [bepbmhgboaologfdajaanbcjmnhjmhfn] Google Voice Search Hotword (Beta) v.0.1.1.5023, (Désactivé)
G2 - GCE: Preference [User Data\Default] [dnhpdliibojhegemfjheidglijccjfmc] hotword helper v.0.0.2.0 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [jnlpadeaobfkbbhieoebdnmcpdkccmdn] Tennis 3D v.2.2.0 (Activé)
G2 - GCE: Preference [User Data\Default] [kmendfapggjehodndflmmgagdbamhnfd] CryptoTokenExtension v.0.8.59 (Activé)
G2 - GCE: Preference [User Data\Default] [leahdjjpjmnamomgpojikeapflgbmjab] cacaoweb v.1.16 (Désactivé) =>PUP.CacaoWeb
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Google+ Hangouts v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé)

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\bado.ExtPlsP01\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\bado.ExtPlsP01\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [Google Voice Search Hotword (Beta)]
G2 - EXT: C:\Users\bado.ExtPlsP01\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
~ Google Lines Browser: 20 Scanned in 00mn 06s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (...) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (.not file.)
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
~ Firefox Browser: 7 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 11 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll
~ BHO: 6 Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IntelPROSet] . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
O4 - HKLM\..\Run: [FreeFallProtection] . (.Pas de propriétaire - FF_Protection MFC Application.) -- C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe
O4 - HKLM\..\Run: [DFEPApplication] . (.Dell Inc. - Dell Feature Enhancement Pack.) -- c:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe
O4 - HKLM\..\Run: [TdmNotify] . (.Wave Systems Corp. - Trusted Drive Manager User Notifier.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe
O4 - HKLM\..\Run: [RemoteControl9] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] . (.CyberLink Corp. - PowerDVD Language Application.) -- C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe
O4 - HKLM\..\Run: [RoxWatchTray] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe =>.Sonic Solutions
O4 - HKLM\..\Run: [Desktop Disc Tool] . (.Pas de propriétaire - Roxio Burn Launcher.) -- C:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe =>.Roxio
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [DBRMTray] . (.Dell Computer Corporation - DBRM_Toaster.) -- C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe
O4 - HKLM\..\Run: [IndexSearch] . (.Nuance Communications, Inc. - PaperPort IndexSearch.) -- C:\Program Files\Nuance\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [PaperPort PTD] . (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files\Nuance\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [Skd8821] . (.LITE-ON TECHNOLOGY CORP. - Lenovo Slim USB Keyboard.) -- C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\SKD8821.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
O4 - HKLM\..\RunOnce: [DBRMTray] . (.Microsoft - TrayApp.) -- C:\Dell\DBRM\Reminder\TrayApp.exe
O4 - HKCU\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKCU\..\Run: [Speech Recognition] . (.Microsoft Corporation - Reconnaissance vocale.) -- C:\Windows\Speech\Common\sapisvr.exe
O4 - HKCU\..\RunOnce: [Application Restart #2] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2133672581-2875510430-822050548-1011\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKUS\S-1-5-21-2133672581-2875510430-822050548-1011\..\Run: [Speech Recognition] . (.Microsoft Corporation - Reconnaissance vocale.) -- C:\Windows\Speech\Common\sapisvr.exe
O4 - HKUS\S-1-5-21-2133672581-2875510430-822050548-1011\..\RunOnce: [Application Restart #2] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{58FB66FD-629A-41B8-8B63-11761854953E}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{58FB66FD-629A-41B8-8B63-11761854953E}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{58FB66FD-629A-41B8-8B63-11761854953E}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
O20 - Winlogon Notify: spba . (...) -- C:\Program Files\Common Files\SPBA\homefus2.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Sophos Limited - Sophos Buffer Overrun Protection.) - C:\Program Files\Sophos\Sophos Anti-Virus\sophos_detoured.dll
~ AppInit DLL: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) . (.AuthenTec, Inc. - AFSS Service.) - C:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Broadcom Management Agent (BrcmMgmtAgent) . (.Broadcom Corporation - Broadcom Management Agent.) - C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dell Feature Enhancement Pack Service (DFEPService) . (.Dell Inc. - Dell - Dell Feature Enhancement Pack Servic.) - c:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: SoftwareRaise (fa120929) . (...) - c:\Program Files\SoftwareRaise\SoftwareRaise.dll (.not file.)
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: O2FLASH (O2FLASH) . (.O2Micro International - O2 Flash Memory Service.) - C:\Windows\System32\DRIVERS\o2flash.exe
O23 - Service: OCS INVENTORY SERVICE (OCS INVENTORY) . (.https://ocsinventory-ng.org/?lang=fr - Open Computers and Software Inventory Agent.) - C:\Program Files\OCS Inventory Agent\ocsservice.exe
O23 - Service: PDFProFiltSrvPP (PDFProFiltSrvPP) . (.Nuance Communications, Inc. - PDFPro IFilter Service.) - C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) . (.Sonic Solutions - RoxWatch12 Module.) - C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) . (.Sophos Limited - Sophos Administrator Service.) - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
O23 - Service: Sophos Anti-Virus (SAVService) . (.Sophos Limited - Performs virus scanning and disinfection fu.) - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
O23 - Service: Skdaemon Service (Sks8821) . (...) - C:\Program Files\Lenovo\Lenovo Slim USB Keyboard\Sks8821.exe
O23 - Service: Sophos Web Control Service (Sophos Web Control Service) . (.Sophos Limited - Sophos Web Control Service.) - C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
O23 - Service: C:\Windows\System32\stlang.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: Sophos Web Intelligence Service (swi_service) . (.Sophos Limited - Sophos Web Intelligence.) - C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
O23 - Service: Sophos Web Intelligence Update (swi_update) . (.Sophos Limited - Sophos Web Intelligence.) - C:\ProgramData\Sophos\Web Intelligence\swi_update.exe
O23 - Service: NTRU TSS v1.2.1.36 TCS (tcsd_win32.exe) . (...) - C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: TdmService (TdmService) . (.Wave Systems Corp. - TDM Service.) - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Wave Authentication Manager Service (Wave Authentication Manager Service) . (.Wave Systems Corp. - WaveAMService.) - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe
O23 - Service: Intel(R) PROSet/Wireless ZeroConfig Service (ZcfgSvc7) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Zero Config Servic.) - C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe
~ Services: 27 Scanned in 00mn 07s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [Adobe Flash Player Updater] (...) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe (.not file.) [0]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [107912]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338Core] (.Google Inc..) -- C:\Users\bado\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338UA] (.Google Inc..) -- C:\Users\bado\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339Core] (.Google Inc..) -- C:\Users\bado\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339UA] (.Google Inc..) -- C:\Users\bado\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.00000000000000000000000000000000] [APT] [{16FB8C11-ACC3-4213-8841-128D2DFD93B6}] (...) -- C:\Program Files\Brother\Brmfl12b\BrScUtil.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{3D324565-1A1E-4845-B077-AC083F562555}] (...) -- C:\Program Files\Brother\Brmfl12b\BrScUtil.exe (.not file.) [0]
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1054]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1054]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1058]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1058]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338Core.job [1042]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338Core [1042]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338UA.job [1094]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2338UA [1094]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339Core.job [1022]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339Core [1022]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339UA.job [1074]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3438990570-3464680694-1361726143-2339UA [1074]
~ Scheduled Task: 17 Scanned in 00mn 06s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\39.0.2171.95\Installer\chrmstp.exe
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (eamonm) . (.ESET - Amon monitor.) - C:\Windows\System32\DRIVERS\eamonm.sys
O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys
O41 - Driver: (EpfwLWF) . (.ESET - Epfw NDIS LightWeight Filter.) - C:\Windows\System32\DRIVERS\EpfwLWF.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SAVOnAccess) . (.Sophos Limited - SAV On-Access and HIPS for Windows Vista (x.) - C:\Windows\System32\DRIVERS\savonaccess.sys
O41 - Driver: (SKMScan) . (.Sophos Limited - Sophos Kernel Memory Scanner (x86).) - C:\Windows\System32\DRIVERS\skmscan.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 78 Scanned in 00mn 30s



---\\ Logiciels installés (O42)
O42 - Logiciel: AccelerometerP11 - (.STMicroelectronics.) [HKLM] -- {87434D51-51DB-4109-B68F-A829ECDCF380}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {235EBB33-3DA1-46DF-AADE-9955123409CB}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: AuthenTec Fingerprint Software - (.AuthenTec, Inc..) [HKLM] -- {560DCF39-61D1-43B0-86DA-5EFF8F7A5144}
O42 - Logiciel: BioAPI Framework - (.Dell Inc..) [HKLM] -- {9DAED4FC-2B0E-4F3F-8141-F2ABF02CCFCB}
O42 - Logiciel: Broadcom NetXtreme-I Netlink Driver and Management Installer - (.Broadcom Corporation.) [HKLM] -- {64973F6A-8754-43D1-BDD0-FC6F0546347B}
O42 - Logiciel: Custom - (.Wave Systems Corp..) [HKLM] -- {7206B668-FEE0-455B-BB1F-9B5A2E0EC94A}
O42 - Logiciel: CyberLink PowerDVD 9.5 - (.CyberLink Corp..) [HKLM] -- InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: CyberLink PowerDVD 9.5 - (.CyberLink Corp..) [HKLM] -- {A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: Dell Backup and Recovery Manager - (.Dell Inc..) [HKLM] -- {B7FB9195-E9FC-4316-930E-D799D5D712F7}
O42 - Logiciel: Dell Client System Update - (.Dell Inc..) [HKLM] -- {2B2B45B1-3CA0-4F8D-BBB3-AC77ED46A0FE}
O42 - Logiciel: Dell Data Protection | Access - (.Dell Inc..) [HKLM] -- {A7D91856-258D-4C87-8041-B170851CE432}
O42 - Logiciel: Dell Data Protection | Access - (.Wave Systems Corp.) [HKLM] -- {ABBA2EA4-740E-4052-902B-9CA70B081E3F}
O42 - Logiciel: Dell Data Protection | Access | Drivers - (.Dell Inc..) [HKLM] -- {4E4E65EE-C456-45AC-B5AD-C62C3A325BD0}
O42 - Logiciel: Dell Data Protection | Access | Middleware - (.Dell Inc..) [HKLM] -- {841CBDD5-4BB5-403E-AEE3-2FADC3890BE8}
O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM] -- {3138EAD3-700B-4A10-B617-B3F8096EE30D}
O42 - Logiciel: Dell Feature Enhancement Pack - (.Dell.) [HKLM] -- {992D1CE7-A20F-4AB0-9D9D-AFC3418844DA}
O42 - Logiciel: Dell Touchpad - (.ALPS ELECTRIC CO., LTD..) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: DellAccess - (.Wave Systems Corp..) [HKLM] -- {F839C6BD-E92E-48FA-9CE6-7BFAF94F7096}
O42 - Logiciel: Digital Line Detect - (.BVRP Software, Inc.) [HKLM] -- {E646DCF0-5A68-11D5-B229-002078017FBF}
O42 - Logiciel: DirectX 9 Runtime - (.Sonic Solutions.) [HKLM] -- {AF9E97C1-7431-426D-A8D5-ABE40995C0B1}
O42 - Logiciel: EMBASSY Security Center - (.Wave Systems Corp..) [HKLM] -- {EEAFE1E5-076B-430A-96D9-B567792AFA88}
O42 - Logiciel: ESET Smart Security - (.ESET, spol s r. o..) [HKLM] -- {006C02BE-3EB6-444C-BB59-75A6BAAFB085}
O42 - Logiciel: Gemalto - (.Wave Systems Corp.) [HKLM] -- {0CCAF47C-E428-48C2-82B2-5F25CE1D67DA}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HomeBank 5.0.0 - (.Maxime DOYEN.) [HKLM] -- {770D94F9-211A-4BC7-9921-FC946ABD82C8}_is1
O42 - Logiciel: Immobilier Loyer - (.Immobilier Loyer.) [HKLM] -- ImmobilierLoyer
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM] -- ProInst
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Lenovo Slim USB Keyboard - (.Lenovo.) [HKLM] -- {494D80C4-3557-4D73-A153-65FE4B3ECDC3}
O42 - Logiciel: Logiciel Intel(R) PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM] -- {4C1CCA11-0D08-4D5E-8444-2D9FB48BCABF}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Modem Diagnostic Tool - (.Dell.) [HKLM] -- {294EAADF-E50F-4DD8-AD8D-19587EA10512}
O42 - Logiciel: NTRU TCG Software Stack - (.Security Innovation, Inc..) [HKLM] -- {414B7B9C-B353-4821-9393-78AE034079E7}
O42 - Logiciel: Netwaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF}
O42 - Logiciel: Nuance PaperPort 12 - (.Nuance Communications, Inc..) [HKLM] -- {88B5FBDC-967D-4B1F-B291-39284AE12201}
O42 - Logiciel: O2Micro Flash Memory Card Windows Driver - (.O2Micro International LTD..) [HKLM] -- InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}
O42 - Logiciel: O2Micro Flash Memory Card Windows Driver - (.O2Micro International LTD..) [HKLM] -- {0CB3B7EE-52C7-4136-AF40-605567D90318}
O42 - Logiciel: O2Micro OZ776 SCR Driver - (.O2Micro.) [HKLM] -- InstallShield_{77FDE44F-3564-4E90-B054-68D1A00FEB6D}
O42 - Logiciel: O2Micro OZ776 SCR Driver - (.O2Micro.) [HKLM] -- {77FDE44F-3564-4E90-B054-68D1A00FEB6D}
O42 - Logiciel: OCS Inventory Agent 4.0.6.1 - (.OCS Inventory NG Team.) [HKLM] -- OCS Inventory Agent
O42 - Logiciel: PC-CCID - (.Gemalto.) [HKLM] -- {BD3068DE-D53B-4CE8-B2BC-32E1323441CD}
O42 - Logiciel: Package de pilotes Windows - AuthenTec Inc. (ATSwpWDF) Biometric (05/13/20 - (.AuthenTec Inc..) [HKLM] -- D3F88C3864C8C031A7C5D5E63A76571EC1B047DF
O42 - Logiciel: Package de pilotes Windows - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) - (.Dell Inc..) [HKLM] -- 9512AA21B791B05A54E27065C45BBC417AB282DF
O42 - Logiciel: PaperPort Image Printer - (.Nuance Communications, Inc..) [HKLM] -- {6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}
O42 - Logiciel: PhotoShowExpress - (.Sonic Solutions.) [HKLM] -- {3250260C-7A95-4632-893B-89657EB5545B}
O42 - Logiciel: Preboot Manager - (.Wave Systems Corp..) [HKLM] -- {3A6BE9F4-5FC8-44BB-BE7B-32A29607FEF6}
O42 - Logiciel: Private Information Manager - (.Wave Systems Corp..) [HKLM] -- {0B0A2153-58A6-4244-B458-25EDF5FCD809}
O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {A121EEDE-C68F-461D-91AA-D48BA226AF1C}
O42 - Logiciel: Roxio BackOnTrack - (.Roxio.) [HKLM] -- {5A06423A-210C-49FB-950E-CB0EB8C5CEC7}
O42 - Logiciel: Roxio Burn - (.Roxio.) [HKLM] -- {7746BFAA-2B5D-4FFD-A0E8-4558F4668105}
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM] -- {6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM] -- {EF56258E-0326-48C5-A86C-3BAC26FC15DF}
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM] -- {F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}
O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
O42 - Logiciel: Roxio File Backup - (.Roxio.) [HKLM] -- {60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}
O42 - Logiciel: SPBA 5.9 - (.UPEK Inc..) [HKLM] -- {2EECD5EF-5095-467C-B80C-4AB3096EFD60}
O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM] -- {9A00EC4E-27E1-42C4-98DD-662F32AC8870}
O42 - Logiciel: Sophos Anti-Virus - (.Sophos Limited.) [HKLM] -- {D929B3B5-56C6-46CC-B3A3-A1A784CBB8E4}
O42 - Logiciel: Trusted Drive Manager - (.Wave Systems Corp..) [HKLM] -- {6AC87FB3-ACFC-4416-890C-8976D5A9B371}
O42 - Logiciel: Upek Touchchip Fingerprint Reader - (.Dell Inc..) [HKLM] -- {4E60E212-3177-4B16-BCB3-616CCC52357D}
O42 - Logiciel: VNC Server 5.0.5 - (.RealVNC Ltd.) [HKLM] -- RealVNC_is1
O42 - Logiciel: VNC Viewer 5.0.5 - (.RealVNC Ltd.) [HKLM] -- RealVNCViewer_is1
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM] -- {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}
O42 - Logiciel: Wave Infrastructure Installer - (.Wave Systems Corp.) [HKLM] -- {63CD55E5-2938-46FA-88E6-AE8EADDC7937}
O42 - Logiciel: Wave Support Software Installer - (.Wave Systems Corp.) [HKLM] -- {07D618CD-B016-438A-ADC9-A75BD23F85CE}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {5D928931-D1D2-4A93-A82D-BF60D0E7CFA5}
~ Logic: 25 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Brother]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Dell]
[HKCU\Software\ESET]
[HKCU\Software\FLEXnet]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IDT]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\LTON_HIS]
[HKCU\Software\Lake]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\Nuance]
[HKCU\Software\ODBC]
[HKCU\Software\Policies]
[HKCU\Software\RealVNC]
[HKCU\Software\Roxio]
[HKCU\Software\SSPrint]
[HKCU\Software\Scansoft]
[HKCU\Software\Sophos]
[HKCU\Software\Visioneer]
[HKCU\Software\Wave Systems Corp.]
[HKCU\Software\Widcomm]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Alps]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Authentec]
[HKLM\Software\Axalto]
[HKLM\Software\BVRP Software, Inc]
[HKLM\Software\BioAPI]
[HKLM\Software\Broadcom]
[HKLM\Software\Brother]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\Debug]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\Dell Inc.]
[HKLM\Software\Dell]
[HKLM\Software\ESET]
[HKLM\Software\FreeFallProtection]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\LTON_HIS]
[HKLM\Software\Lake]
[HKLM\Software\Macromedia]
[HKLM\Software\ManageableUpdatePackage]
[HKLM\Software\MicroVision]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\NTRU Cryptosystems]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\Protector Suite QL]
[HKLM\Software\Protector Suite]
[HKLM\Software\RealVNC]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Roxio]
[HKLM\Software\SHARP]
[HKLM\Software\STMicroelectronics]
[HKLM\Software\ScanSoft]
[HKLM\Software\Sonic]
[HKLM\Software\Sophos]
[HKLM\Software\Visioneer]
[HKLM\Software\WOW6432Node]
[HKLM\Software\Wave Systems Corp.]
[HKLM\Software\Wave Systems Corp]
[HKLM\Software\Widcomm]
[HKLM\Software\ZEON]
[HKLM\Software\b0bb38c7-8a60-ffd6-951c-5bdf92c6aace] =>PUP.CrossRider
[HKLM\Software\illiminable]
[HKLM\Software\vtapi]
~ Key Software: 194 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 09/12/2014 - 21:19:22 - [0] ----D C:\Program Files\4965fe32-aa49-45f9-9f3e-f77fddf43151
O43 - CFD: 03/09/2012 - 09:48:25 - [] ----D C:\Program Files\Adobe
O43 - CFD: 07/12/2014 - 21:36:31 - [] ----D C:\Program Files\Apple Software Update =>.Apple Inc
O43 - CFD: 25/05/2012 - 12:30:38 - [] ----D C:\Program Files\Broadcom
O43 - CFD: 25/05/2012 - 12:27:25 - [] ----D C:\Program Files\Cisco
O43 - CFD: 08/01/2015 - 09:57:05 - [] ----D C:\Program Files\Common Files
O43 - CFD: 24/11/2014 - 17:26:33 - [] ----D C:\Program Files\ControlCenter4
O43 - CFD: 25/05/2012 - 12:40:43 - [] ----D C:\Program Files\CyberLink
O43 - CFD: 25/05/2012 - 12:46:14 - [] ----D C:\Program Files\Dell
O43 - CFD: 25/05/2012 - 12:12:47 - [] ----D C:\Program Files\Dell Inc
O43 - CFD: 25/05/2012 - 13:58:32 - [] ----D C:\Program Files\DellTPad
O43 - CFD: 25/05/2012 - 12:33:16 - [] ----D C:\Program Files\DIFX
O43 - CFD: 25/05/2012 - 12:24:49 - [] ----D C:\Program Files\Digital Line Detect
O43 - CFD: 21/11/2010 - 01:39:54 - [] ----D C:\Program Files\DVD Maker
O43 - CFD: 21/01/2015 - 18:36:21 - [] ----D C:\Program Files\ESET
O43 - CFD: 03/09/2012 - 09:22:05 - [] -SH-D C:\Program Files\Fichiers communs
O43 - CFD: 25/05/2012 - 12:33:15 - [] ----D C:\Program Files\Fingerprint Sensor
O43 - CFD: 25/05/2012 - 12:32:56 - [] ----D C:\Program Files\Gemalto
O43 - CFD: 06/11/2014 - 18:10:22 - [] ----D C:\Program Files\Google
O43 - CFD: 10/02/2015 - 18:58:12 - [] ----D C:\Program Files\HomeBank
O43 - CFD: 25/05/2012 - 05:06:29 - [] ----D C:\Program Files\IDT
O43 - CFD: 10/02/2015 - 20:12:21 - [] ----D C:\Program Files\ImmobilierLoyer
O43 - CFD: 18/11/2013 - 11:32:38 - [] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 25/05/2012 - 12:30:17 - [] ----D C:\Program Files\Intel
O43 - CFD: 11/02/2015 - 20:02:29 - [] ----D C:\Program Files\Internet Explorer
O43 - CFD: 07/12/2014 - 21:37:21 - [] ----D C:\Program Files\iPod
O43 - CFD: 07/12/2014 - 21:38:30 - [] ----D C:\Program Files\iTunes
O43 - CFD: 08/01/2015 - 09:57:38 - [] ----D C:\Program Files\Lenovo
O43 - CFD: 25/05/2012 - 12:45:34 - [] ----D C:\Program Files\Microsoft
O43 - CFD: 03/09/2012 - 09:32:11 - [] ----D C:\Program Files\Microsoft Analysis Services
O43 - CFD: 03/09/2012 - 09:41:06 - [] ----D C:\Program Files\Microsoft Office
O43 - CFD: 06/11/2014 - 23:16:56 - [] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 03/09/2012 - 09:41:05 - [] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 03/09/2012 - 09:41:25 - [] ----D C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 03/09/2012 - 09:41:05 - [] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 25/05/2012 - 12:24:20 - [] ----D C:\Program Files\Modem Diagnostic Tool
O43 - CFD: 14/07/2009 - 05:52:30 - [] ----D C:\Program Files\MSBuild
O43 - CFD: 06/11/2014 - 18:41:42 - [] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 25/05/2012 - 12:24:25 - [] ----D C:\Program Files\Netwaiting
O43 - CFD: 25/05/2012 - 12:34:11 - [] ----D C:\Program Files\NTRU Cryptosystems
O43 - CFD: 24/11/2014 - 18:02:46 - [] ----D C:\Program Files\Nuance
O43 - CFD: 25/05/2012 - 12:29:50 - [] ----D C:\Program Files\O2Micro
O43 - CFD: 25/05/2012 - 12:32:31 - [] ----D C:\Program Files\O2Micro OZ776 SCR Driver
O43 - CFD: 11/02/2015 - 21:59:00 - [] ----D C:\Program Files\OCS Inventory Agent
O43 - CFD: 16/04/2013 - 11:19:15 - [] ----D C:\Program Files\RealVNC
O43 - CFD: 14/07/2009 - 05:52:30 - [] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 09/12/2014 - 22:44:44 - [] ----D C:\Program Files\Reimageplus.com =>Rogue.ReimageRepair
O43 - CFD: 25/05/2012 - 12:50:41 - [] ----D C:\Program Files\Roxio
O43 - CFD: 22/01/2015 - 12:23:41 - [0] ----D C:\Program Files\SoftwareRaise
O43 - CFD: 21/01/2015 - 18:34:04 - [] ----D C:\Program Files\Sophos
O43 - CFD: 25/05/2012 - 13:59:22 - [] ----D C:\Program Files\STMicroelectronics
O43 - CFD: 14/07/2009 - 05:53:23 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 09/12/2014 - 20:30:06 - [] ----D C:\Program Files\VideoLAN
O43 - CFD: 25/05/2012 - 12:25:06 - [] ----D C:\Program Files\WIDCOMM
O43 - CFD: 06/11/2014 - 23:20:38 - [] ----D C:\Program Files\Windows Defender
O43 - CFD: 08/11/2014 - 13:20:22 - [] ----D C:\Program Files\Windows Journal
O43 - CFD: 03/09/2012 - 09:29:32 - [] ----D C:\Program Files\Windows Live
O43 - CFD: 21/11/2010 - 01:30:45 - [] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 06/11/2014 - 23:21:32 - [] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 03/09/2012 - 09:22:05 - [] ----D C:\Program Files\Windows NT
O43 - CFD: 21/11/2010 - 01:30:45 - [] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 20/11/2010 - 22:33:48 - [] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 21/11/2010 - 01:30:45 - [] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 11/02/2015 - 22:18:27 - [] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 03/09/2012 - 09:48:27 - [] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 07/12/2014 - 21:37:19 - [] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 20/05/2014 - 13:33:42 - [] ----D C:\Program Files\Common Files\Cisco Systems
O43 - CFD: 25/05/2012 - 12:40:43 - [] ----D C:\Program Files\Common Files\CyberLink
O43 - CFD: 08/11/2014 - 12:45:42 - [] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 08/01/2015 - 09:57:05 - [] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 25/05/2012 - 12:27:24 - [] ----D C:\Program Files\Common Files\Intel
O43 - CFD: 03/09/2012 - 09:41:44 - [] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 25/05/2012 - 12:30:17 - [] ----D C:\Program Files\Common Files\postureAgent
O43 - CFD: 25/05/2012 - 12:51:01 - [] ----D C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 25/05/2012 - 12:51:27 - [] ----D C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 24/11/2014 - 18:03:08 - [] ----D C:\Program Files\Common Files\ScanSoft Shared
O43 - CFD: 14/07/2009 - 03:37:05 - [] ----D C:\Program Files\Common Files\Services
O43 - CFD: 25/05/2012 - 12:50:36 - [] ----D C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 20/05/2014 - 13:34:06 - [] ----D C:\Program Files\Common Files\Sophos
O43 - CFD: 25/05/2012 - 12:34:14 - [] ----D C:\Program Files\Common Files\SPBA
O43 - CFD: 14/07/2009 - 03:37:05 - [] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 25/05/2012 - 12:50:34 - [] ----D C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 06/11/2014 - 21:42:48 - [] ----D C:\Program Files\Common Files\System
O43 - CFD: 25/05/2012 - 12:40:58 - [] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 09/12/2014 - 20:59:05 - [] ----D C:\ProgramData\1790955706
O43 - CFD: 10/09/2012 - 09:02:39 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 07/12/2014 - 21:36:28 - [] ----D C:\ProgramData\Apple
O43 - CFD: 07/12/2014 - 21:37:19 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 05:53:55 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 07/12/2014 - 21:38:30 - [] ----D C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
O43 - CFD: 18/11/2013 - 11:34:19 - [] ----D C:\ProgramData\Brother
O43 - CFD: 03/09/2012 - 09:22:05 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 14/09/2012 - 12:38:17 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 03/09/2012 - 09:23:13 - [] ----D C:\ProgramData\Dell
O43 - CFD: 14/07/2009 - 05:53:55 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 05:53:55 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 21/01/2015 - 18:36:21 - [] ----D C:\ProgramData\ESET
O43 - CFD: 03/09/2012 - 09:22:05 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 05:53:55 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 06/11/2014 - 18:45:34 - [] ----D C:\ProgramData\FLEXnet
O43 - CFD: 16/05/2014 - 08:14:39 - [] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 25/05/2012 - 12:27:23 - [] ----D C:\ProgramData\Intel
O43 - CFD: 25/05/2012 - 12:48:27 - [] ----D C:\ProgramData\Macrovision
O43 - CFD: 03/09/2012 - 09:22:05 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 11/12/2014 - 21:09:10 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 11/02/2015 - 19:41:13 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 03/09/2012 - 09:22:05 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 10/02/2015 - 23:19:26 - [0] ----D C:\ProgramData\NCH Software
O43 - CFD: 25/05/2012 - 12:34:11 - [] ----D C:\ProgramData\NTRU Cryptosystems
O43 - CFD: 24/11/2014 - 18:02:46 - [] ----D C:\ProgramData\Nuance
O43 - CFD: 09/12/2014 - 22:46:12 - [] ----D C:\ProgramData\odVltWGNKmv
O43 - CFD: 25/05/2012 - 12:50:14 - [] ----D C:\ProgramData\PhotoShow Shared Assets
O43 - CFD: 10/02/2015 - 20:12:13 - [] ----D C:\ProgramData\rocherdigital
O43 - CFD: 25/05/2012 - 13:00:58 - [] ----D C:\ProgramData\Roxio
O43 - CFD: 24/11/2014 - 18:03:40 - [] ----D C:\ProgramData\ScanSoft
O43 - CFD: 11/02/2015 - 21:42:45 - [] ----D C:\ProgramData\Sonic
O43 - CFD: 21/01/2015 - 18:34:04 - [] ----D C:\ProgramData\Sophos
O43 - CFD: 14/07/2009 - 05:53:55 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 25/05/2012 - 12:40:10 - [] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 05:53:55 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 25/05/2012 - 12:51:26 - [] ----D C:\ProgramData\Uninstall
O43 - CFD: 25/05/2012 - 12:37:56 - [] ----D C:\ProgramData\Wave Systems Corp
O43 - CFD: 26/11/2014 - 20:39:46 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/02/2011 - 18:55:43 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 25/05/2012 - 12:30:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broadcom
O43 - CFD: 06/11/2014 - 12:49:42 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9.5
O43 - CFD: 25/05/2012 - 12:46:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 21/01/2015 - 18:36:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
O43 - CFD: 21/11/2010 - 01:39:58 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 09/12/2014 - 22:44:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 10/02/2015 - 18:58:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeBank
O43 - CFD: 10/02/2015 - 20:12:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immobilier Loyer
O43 - CFD: 25/05/2012 - 12:27:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
O43 - CFD: 07/12/2014 - 21:38:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 14/07/2009 - 05:42:30 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 03/09/2012 - 09:42:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 06/11/2014 - 20:33:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 25/05/2012 - 12:24:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netwaiting
O43 - CFD: 24/11/2014 - 18:03:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12
O43 - CFD: 25/05/2012 - 12:24:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outil de diagnostic de modem
O43 - CFD: 25/05/2012 - 12:51:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Creator Starter
O43 - CFD: 03/09/2012 - 10:18:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
O43 - CFD: 25/05/2012 - 12:25:12 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/11/2010 - 01:39:36 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 11/02/2015 - 22:18:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 06/11/2014 - 18:07:05 - [] ----D C:\Users\bado.ExtPlsP01\AppData\Roaming\Adobe
O43 - CFD: 07/12/2014 - 21:48:39 - [] ----D C:\Users\bado.ExtPlsP01\AppData\Roaming\Apple Computer
O43 - CFD: 06/11/2014 - 18:55:36 - [] R---D C:\Users\bado.ExtP