FORUM D’ENTRAIDE INFORMATIQUE (FEI)
Site d’assistance et de sécurité informatique

Aide à la désinfection (pages publicitaires, moteur de recherche remplacé, redirections, virus...).
Règles du forum : Entraide concernant la désinfection et la sécurité informatique : en cas de publicités intempestives, pop-up, redirections, logiciels indésirables, ralentissements suspects, virus, etc.
Une désinfection complète vous sera assurée : désinfection, sécurisation, puis prévention.
Seuls les helpers (personnes qualifiées et formées à la désinfection) ainsi que le staff sont autorisés à apporter leur aide dans cette section.
Merci également de prendre connaissance de la charte générale du forum.
  • Avatar du membre
  • Avatar du membre
  • Avatar du membre
#48693
bonjour à tous

sur les conseils de Grimpeur et de PaperGangsta , je me tourne vers vous pour une vérification de mon pc car le rencontre des soucis , je tiens à préciser que je suis un nul en informatique même un boulet je vous demanderai de m expliquer étape par étape toutes les manipulations à faire et si je dois vous donner les résultats me dire comment faire

je suis sous windows 7 mon pc est un HP PAVILONDV8 1190F mon antivirus est norton 360, j utilise comme navigateur mozilla firefox 18  et internet explorer 10

en vous remerciant pour votre aide ....mais surtout pour votre patience

33-fifix-33
#48700
Salut

On va faire un diagnostic de ton PC pour plus de renseignements ==
Aide en vidéo : http://www.youtube.com/watch?v=n3o7PLTu ... e=youtu.be

Si tu as des questions, n'hésite pas à me les poser !

@+

Gabriel.
#48772
Rapport de ZHPDiag v2013.6.10.15 par Nicolas Coolman, Update du 10/06/2013
Run by 33-fifix-33 at 12/06/2013 07:47:56
WebSite: http://nicolascoolman.webs.com
State : Version à jour.
WhiteList : Disable
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v10.0.9200.16576
MFIE: Mozilla Firefox 21.0 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Protection
Windows Defender W7

---\\ System Optimizer

---\\ Peer To Peer (P2P)
µTorrent v3.3.0.29625   =P2P.µTorrent

---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader 9.5.5 MUI
Java 7 Update 21

---\\ System Information
~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4086 MB (28% free)
System Restore: Activé (Enable)
System drive C: has 341 GB (76%) free of 449 GB

---\\ Logged in mode
~ Computer Name: 33-FIFIX-33-PC
~ User Name: 33-fifix-33
~ All Users Names: HomeGroupUser$, Administrateur, 33-fifix-33,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\33-fifix-33\AppData\Roaming\
~ %Desktop% : C:\Users\33-fifix-33\Desktop\
~ %Favorites% : C:\Users\33-fifix-33\Favorites\
~ %LocalAppData% : C:\Users\33-fifix-33\AppData\Local\
~ %StartMenu% : C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 341 Go of 449 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 330 Go of 466 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 17 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
G:\ CD-ROM drive (Not Inserted)
H:\ CD-ROM drive (Not Inserted)
I:\ Hard drive, Flash drive, Thumb drive (Free 376 Go of 466 Go)



---\\ Security Center Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 29 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.27A9000C534AA9BADC9EE74940F50C6D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/04/2013 - 07:52:14.) -- C:\Windows\System32\wininet.dll [2242048]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/6940
~ Mes musiques (My Musics) : 1/21
~ Mes Videos (My Videos) : 1/3
~ Mes Favoris (My Favorites) : 1/20
~ Mes Documents (My Documents) : 1/538
~ Mon Bureau (My Desktop) : 1/375
~ Menu demarrer (Programs) : 1/47
~ Hidden Files:  Scanned in 00mn 08s



---\\ Processus lancés
[MD5.4C8942B8721813E5C8874D47112DCF73] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe   [2741616] [PID.2320]
[MD5.746886D62F5912C366A25B01D3A971F0] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\33-fifix-33\AppData\Roaming\uTorrent\uTorrent.exe   [1044560] [PID.2380]   =P2P.µTorrent
[MD5.5A576A22EC45B5311A5C00DBFEF6F44A] - (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe   [448736] [PID.2420]
[MD5.A5F78606A9BA8F0C4C8FF9DED6ED5107] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe   [1685048] [PID.2492]
[MD5.B0C8307B90F31C209FCFE90EA9A91209] - (.TomTom - MyTomTom.) -- C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe   [455608] [PID.2504]
[MD5.14AB31B4F673A3AF348A40B20BB2F587] - (...) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe   [70832] [PID.2728]
[MD5.4C944FC01424E8B14F979AE6011413A2] - (.Disc Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe   [2748448] [PID.2852]
[MD5.C6331D11F80B3AFFD91A9B3858E00F23] - (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe   [210216] [PID.2952]
[MD5.A8A71CDF640008DDDF856542A5757CA7] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe   [3587664] [PID.2964]
[MD5.D645B082E49F8655F14C61DB4EEBBA1D] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe   [367016] [PID.2984]
[MD5.659474582C6E060DBD8FFFF97DC892C5] - (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe   [1561968] [PID.3004]
[MD5.760ACD103FFB86AD65DC41CDEB08ABCF] - (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe   [578560] [PID.3056]
[MD5.91EC9827A52D0716A0E69601A98519F3] - (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe   [844168] [PID.132]
[MD5.9EEE55B742B65439A0A45BF895E5CEA1] - (.WebCake LLC - WebCake Desktop.) -- C:\Users\33-fifix-33\AppData\Roaming\WebCake\WebCakeDesktop.exe   [47896] [PID.2668]   =Adware.WebCake
[MD5.B4AF5086F5B4D3966D2EDAAEC797522D] - (.Speedbit Ltd. - Download Accelerator Plus (DAP).) -- C:\Program Files (x86)\DAP\DAP.exe   [3865232] [PID.2640]
[MD5.B54921381A950C8215FB363B485C432B] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe   [270336] [PID.3156]
[MD5.E5F05EDD33B8B2A8CBCDD697AB830A70] - (...) -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe   [15544] [PID.3252]
[MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe   [323640] [PID.3292]
[MD5.1D48CA37FAA59919C1138357ED67E14A] - (.DigitalPersona, Inc. - DigitalPersona Local Agent.) -- C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe   [842816] [PID.3536]
[MD5.9FC60A74E6C4589EC6C16108A518572E] - (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe   [651832] [PID.3684]
[MD5.37B7E005D70C490D320A4D3A088CC4EE] - (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe   [606496] [PID.3708]   =Adware.Boxore
[MD5.FAA729BC3B4EC2900D14E1F0F4D30ED0] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe   [268248] [PID.1676]
[MD5.5C3F2845926655E66BCCE56DD015F6CA] - (.Hewlett-Packard Development Co. L.P. - HP Message Manager.) -- C:\Program Files (x86)\Common Files\HP\Digital Imaging\Bin\hpqPhotoCrm.exe   [544768] [PID.4168]
[MD5.A034CDA126BDDD1035F46F40E992B529] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe   [80480] [PID.4272]
[MD5.9119B48B62562E8094FCBCCC9D21F16B] - (.CyberLink Corp. - PowerDVD 13.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe   [513048] [PID.4284]
[MD5.FDB2FB392B20797AF3F4ED9D7699938E] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe   [311152] [PID.4336]
[MD5.4F282399EC8DA1774904C8787EADA0F2] - (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe   [3589712] [PID.4360]   =Toolbar.Babylon
[MD5.241BD3019FB31E812A51B31B06906335] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\ccSvcHst.exe   [144520] [PID.3864]
[MD5.95110A1C5A1D228AC1DDF6AB67D00BEB] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe   [920472] [PID.4120]
[MD5.59A409BAB55E72D33409A8A99F50DB17] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe   [264616] [PID.3456]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe   [632888] [PID.7924]
[MD5.F16EEA6CCA9D8A7D1193AE80E43FBBC7] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe   [168960] [PID.7548]
[MD5.8A9FACCB684500829F7D0BCC67B386CC] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe   [559104] [PID.7216]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe   [362496] [PID.6488]
[MD5.6FC79A950476A5F539EEB65F9097C0A8] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe   [17304] [PID.7804]
[MD5.23AA0FDCBDD87D0B78092798C68312D8] - (.Adobe Systems, Inc. - Adobe Flash Player 11.7 r700.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe   [1855880] [PID.7972]
[MD5.3A32FAFEEE290E6E6C058DE59EC4EC88] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [7478272] [PID.5288]
[MD5.5BC1D876DFD53C31C5FC65D2E9614015] - (.DigitalPersona, Inc. - DigitalPersona Local Host.) -- C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe   [322624] [PID.1824]
[MD5.76B35CB0F3A4E69D6DFF27F542B9F856] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe   [216968] [PID.1996]
[MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe   [57008] [PID.688]
[MD5.761E6ECE78992CF730AB0777E707F520] - (.CyberLink - Media Server Monitor Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe   [77576] [PID.2528]
[MD5.BF5D3F6CC09191C45D632AFB1D2E7F61] - (.CyberLink - Media Server Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe   [323336] [PID.2576]
[MD5.C34411A244029F1C08687F7C752C4563] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe   [73728] [PID.400]
[MD5.AE6C778717DE2F6B0C0B5335036D3363] - (.Sony Corporation - Device Information Provider.) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe   [430136] [PID.3340]
[MD5.A6A7AD767BF5141665F5C675F671B3E1] - (.Protexis Inc. - PsiService PsiService.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe   [185632] [PID.4136]
[MD5.EA569D48B2E755AF6D96F03F3335D98A] - (.Realtek - RtlService MFC Application.) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe   [36864] [PID.4292]
[MD5.498EB62A160674E793FA40FD65390625] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe   [247152] [PID.4488]
[MD5.4F27622E46491795CFE45B971BDD116B] - (.Realtek Semiconductor Corp. - RtWLan.) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWlan.exe   [2043904] [PID.4540]
[MD5.1DB60CB3E53E2491D5D6C43C06676CA2] - (.Smith Micro Software, Inc. - ArcNameService Application.) -- C:\Program Files (x86)\Smith Micro\StuffIt 2010\ArcNameService.exe   [1916248] [PID.4684]
[MD5.E89D463AB373CFACCCBB0645E9AE8154] - (.WebCake LLC - WebCake.Desktop.Updater.) -- C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe   [23552] [PID.5032]   =Adware.WebCake
[MD5.D6B0939B78C73E1396A9C58DCCBC1983] - (.Disc Soft Ltd - Disc soft bus service.) -- C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe   [580672] [PID.5912]
[MD5.9B7EDD3FE7C211C36E921D34D18A3A0A] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe   [1001376] [PID.6200]
[MD5.C7A0E61D5714AC20DE52D4F66EC773B8] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe   [227896] [PID.6304]
[MD5.E0E4A1F81A7D69C595A8A9DDAD084C19] - (.Nero AG - NeroUpdate.) -- C:\Program Files (x86)\Nero\Update\NASvc.exe   [769432] [PID.5520]
[MD5.FC387225841FF92463C5F65054998E0B] - (.The Software Group - Software Update.) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe   [119408] [PID.6848]
~ Processes Running:  Scanned in 00mn 02s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\33-fifix-33\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\prefs.js
C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\user.js
M3 - MFPP: Plugins - [33-fifix-33] -- C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\babylon.xml   =Toolbar.Babylon
M3 - MFPP: Plugins - [33-fifix-33] -- C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\delta.xml
M3 - MFPP: Plugins - [33-fifix-33] -- C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\speedbit.xml
M0 - MFSP: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446]
M2 - MFEP: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com] [] Plus-HD-2.6 v (..)
M2 - MFEP: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446\ffxtlbr@delta.com] [] Delta Toolbar v1.5.0 (..)
M2 - MFEP: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446\plugin@getwebcake.com] [] WebCake v1.00.01 (..)   =Adware.WebCake
M2 - MFEP: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446\{241aae70-0022-11de-87af-0800200c9a66}] [] Blue Fox v20.0.10.04.13 (..)
M2 - MFEP: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446\{5384767E-00D9-40E9-B72F-9CC39D655D6F}] [] EPUBReader v1.4.2.1 (..)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Lync.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Nullsoft, Inc. - Winamp Application Detector.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npwachk.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll
P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20125.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Share.) -- C:\Program Files\Microsoft Office\Office15\NPSPWRAP.dll
~ Firefox Browser: 29 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.speedbit.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = aboutnoadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = aboutsecurityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = aboutnoadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = aboutsecurityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://go.speedbit.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {834acc44-e0fc-4f17-8e6b-f1029b3bc0de} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 17 Scanned in 00mn 00s
#48773
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8888;https=127.0.0.1:8888
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Norton Identity Protection [64Bits] - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} . (.Symantec Corporation - coIEPlugIn.) -- C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection [64Bits] - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} . (.Symantec Corporation - IPS Browser Helper DLL.) -- C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\IPS\IPSBHO.dll
O2 - BHO: delta Helper Object [64Bits] - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} . (.Delta-search.com - Pas de description.) -- C:\Program Files (x86)\Delta\delta\1.8.21.5\bh\delta.dll   =Toolbar.DeltaSearch
O2 - BHO: LinkVerifierBHO [64Bits] - {D5974A72-C81C-4DC3-BE77-A8A7BBC8864E} . (.Speedbit Ltd. - DAP Link Verification Extension.) -- C:\Program Files (x86)\DAP\LinkVerifier.dll
~ BHO: 4 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) [64Bits] - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} Clé orpheline
~ Toolbar:  Scanned in 00mn 00s



---\\ Applications démarrées par registre par dossier (O4)
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [SmartMenu] . (.Pas de propriétaire - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [HPToneControl] . (.Hewlett-Packard - Tone Control.) -- C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\33-fifix-33\AppData\Roaming\uTorrent\uTorrent.exe   =P2P.µTorrent
O4 - HKCU\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [MyTomTomSA.exe] . (.TomTom - MyTomTom.) -- C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [DAEMON Tools Ultra Agent] . (.Disc Soft Ltd - DAEMON Tools Ultra Agent.) -- C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] . (.Disc Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKCU\..\Run: [SpeedUpSystem] wscript C:\Users\33-fifix-33\AppData\Roaming\Adobe\Flash Player\SpeedCache\afile.vbs C:\Users\33-fifix-33\AppData\Roaming\Adobe\Flash Player\SpeedCache\aso.bat (.not file.)
O4 - HKCU\..\Run: [RC2010 Hyperappel] . (.Dictionnaire Le Robert - Le Robert Collins Hyperappel.) -- C:\Program Files (x86)\Le Robert\Le Robert Collins\RCHA.exe
O4 - HKCU\..\Run: [WebCake Desktop] . (.WebCake LLC - WebCake Desktop.) -- C:\Users\33-fifix-33\AppData\Roaming\WebCake\WebCakeDesktop.exe   =Adware.WebCake
O4 - HKCU\..\Run: [DownloadAccelerator] . (.Speedbit Ltd. - Download Accelerator Plus (DAP).) -- C:\Program Files (x86)\DAP\DAP.exe
O4 - HKLM\..\Wow6432Node\Run: [Corel File Shell Monitor] . (...) -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Wow6432Node\Run: [DpAgent] . (.DigitalPersona, Inc. - DigitalPersona Local Agent.) -- C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [hpqSRMon] . (.Hewlett-Packard - HpqSRmon.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Wow6432Node\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Wow6432Node\Run: [Boxore Client] . (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe   =Adware.Boxore
O4 - HKLM\..\Wow6432Node\Run: [DivXMediaServer] . (.DivX, LLC - DivX DLNA Media Server.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe
O4 - HKLM\..\Wow6432Node\Run: [PowerDVD13Agent] . (.CyberLink Corp. - PowerDVD 13.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
O4 - HKLM\..\Wow6432Node\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [Babylon Client] . (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe   =Toolbar.Babylon
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\33-fifix-33\AppData\Roaming\uTorrent\uTorrent.exe   =P2P.µTorrent
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [MyTomTomSA.exe] . (.TomTom - MyTomTom.) -- C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [DAEMON Tools Ultra Agent] . (.Disc Soft Ltd - DAEMON Tools Ultra Agent.) -- C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [DAEMON Tools Pro Agent] . (.Disc Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [SpeedUpSystem] wscript C:\Users\33-fifix-33\AppData\Roaming\Adobe\Flash Player\SpeedCache\afile.vbs C:\Users\33-fifix-33\AppData\Roaming\Adobe\Flash Player\SpeedCache\aso.bat (.not file.)
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [RC2010 Hyperappel] . (.Dictionnaire Le Robert - Le Robert Collins Hyperappel.) -- C:\Program Files (x86)\Le Robert\Le Robert Collins\RCHA.exe
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [WebCake Desktop] . (.WebCake LLC - WebCake Desktop.) -- C:\Users\33-fifix-33\AppData\Roaming\WebCake\WebCakeDesktop.exe   =Adware.WebCake
O4 - HKUS\S-1-5-21-1653296840-2471907541-4020727312-1000\..\Run: [DownloadAccelerator] . (.Speedbit Ltd. - Download Accelerator Plus (DAP).) -- C:\Program Files (x86)\DAP\DAP.exe
~ Application:  Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: AIMP3.lnk . (.AIMP DevTeam - AIMP3.)  -- C:\Program Files (x86)\AIMP3\AIMP3.exe
O4 - GS\TaskBar: Aiseesoft Transfert iPhone Platinum.lnk . (.Aiseesoft - Aiseesoft iPhone Transfer Platinum.)  -- C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft iPhone Transfer Platinum\Aiseesoft iPhone Transfer Platinum.exe
O4 - GS\TaskBar: Ashampoo MP3 AudioCenter.lnk . (.ashampoo Technology GmbH Co. KG - Ashampoo MP3 AudioCenter.)  -- C:\Program Files (x86)\Ashampoo\Ashampoo MP3 AudioCenter\AudioCenter.exe
O4 - GS\TaskBar: Audials 10.lnk . (.Audials AG - SplashScreenStarter.)  -- C:\Program Files (x86)\Audials\Audials 10\AudialsStarter.exe
O4 - GS\TaskBar: CDRWIN 10.lnk . (.Engelmann Media GmbH - CDRWIN 10.)  -- C:\Program Files (x86)\CDRWIN 10\CDRWIN10.exe
O4 - GS\TaskBar: Centre de solutions HP.lnk . (.Hewlett-Packard Company - hpqdirec.exe.)  -- C:\Program Files (x86)\Hp\Digital Imaging\bin\Hpqdirec.exe
O4 - GS\TaskBar: Download Accelerator Plus (DAP).lnk . (.Speedbit Ltd. - Download Accelerator Plus (DAP).)  -- C:\Program Files (x86)\DAP\DAP.exe
O4 - GS\TaskBar: Easy CD-DA Extractor.lnk . (.Poikosoft - Easy CD-DA Extractor.)  -- C:\Program Files\Easy CD-DA Extractor 16\ezcddax.exe
O4 - GS\TaskBar: Freemake Video Converter.lnk . (.Freemake - Freemake Video Converter.)  -- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe
O4 - GS\TaskBar: HP MediaSmart.lnk . (...)  -- C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (.not file.)
O4 - GS\TaskBar: HPAdvisor.lnk . (.Hewlett-Packard - HP Advisor.)  -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - GS\TaskBar: IncrediMail.lnk . (.IncrediMail, Ltd. - IncrediMail Application.)  -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - GS\TaskBar: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).)  -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: iTunes.lnk . (.Apple Inc. - iTunes.)  -- C:\Program Files (x86)\iTunes\iTunes.exe
O4 - GS\TaskBar: Le Robert Collins.lnk . (...)  -- C:\Program Files (x86)\Le Robert\Le Robert Collins\RobertCollins.exe
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: PowerDVD 13.lnk . (.CyberLink Corp. - PowerDVD 13.)  -- C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe
O4 - GS\TaskBar: Samsung Kies.lnk . (...)  -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - GS\TaskBar: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.)  -- C:\Windows\system32\SnippingTool.exe
O4 - GS\TaskBar: Splash PRO EX.lnk . (.Mirillis Ltd. - Splash PRO EX.)  -- C:\Program Files (x86)\Mirillis\Splash PRO EX\SplashProEx.exe
O4 - GS\TaskBar: TuneUp Utilities - Startoberfläche.lnk . (.TuneUp Software - TuneUp Utilities - Startoberfläche.)  -- C:\Program Files (x86)\TuneUp Utilities 2013\Integrator.exe
O4 - GS\TaskBar: VirtualDJ Home FREE.lnk . (.Atomix Productions - VirtualDJ.)  -- C:\Program Files (x86)\VirtualDJ\virtualdj_home.exe
O4 - GS\TaskBar: VLC media player.lnk . (.VideoLAN - VLC media player 2.0.6.)  -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
O4 - GS\TaskBar: Winamp.lnk . (.Nullsoft, Inc. - Winamp.)  -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.)  -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe
O4 - GS\TaskBar: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.)  -- C:\Users\33-fifix-33\AppData\Roaming\uTorrent\uTorrent.exe   =P2P.µTorrent
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Aiseesoft Transfert iPhone Platinum.lnk . (.Aiseesoft - Aiseesoft iPhone Transfer Platinum.)  -- C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft iPhone Transfer Platinum\Aiseesoft iPhone Transfer Platinum.exe
O4 - GS\QuickLaunch: Ashampoo MP3 AudioCenter.lnk . (.ashampoo Technology GmbH Co. KG - Ashampoo MP3 AudioCenter.)  -- C:\Program Files (x86)\Ashampoo\Ashampoo MP3 AudioCenter\AudioCenter.exe
O4 - GS\QuickLaunch: Babylon.lnk . (.Babylon Ltd. - Babylon Information Tool.)  -- C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe   =Toolbar.Babylon
O4 - GS\QuickLaunch: CDRWIN 10.lnk . (.Engelmann Media GmbH - CDRWIN 10.)  -- C:\Program Files (x86)\CDRWIN 10\CDRWIN10.exe
O4 - GS\QuickLaunch: IncrediMail 2.0.lnk . (.IncrediMail, Ltd. - IncrediMail Application.)  -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Samsung Kies (Lite).lnk . (...)  -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - GS\QuickLaunch: Samsung Kies.lnk . (...)  -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - GS\QuickLaunch: Winamp.lnk . (.Nullsoft, Inc. - Winamp.)  -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - GS\QuickLaunch: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.)  -- C:\Users\33-fifix-33\AppData\Roaming\uTorrent\uTorrent.exe   =P2P.µTorrent
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe
O4 - GS\Desktop: Ashampoo MP3 AudioCenter.lnk . (.ashampoo Technology GmbH Co. KG - Ashampoo MP3 AudioCenter.)  -- C:\Program Files (x86)\Ashampoo\Ashampoo MP3 AudioCenter\AudioCenter.exe
O4 - GS\Desktop: Audials 10.lnk . (.Audials AG - SplashScreenStarter.)  -- C:\Program Files (x86)\Audials\Audials 10\AudialsStarter.exe
O4 - GS\Desktop: DivX Movies.lnk . (...)  -- C:\Users\33-fifix-33\Videos\DivX Movies
O4 - GS\Desktop: Download Accelerator Plus (DAP).lnk . (.Speedbit Ltd. - Download Accelerator Plus (DAP).)  -- C:\Program Files (x86)\DAP\DAP.exe
O4 - GS\Desktop: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.)  -- C:\Program Files (x86)\GoldWave\GoldWave.exe
O4 - GS\Desktop: My DAP Downloads.lnk . (...)  -- D:\
O4 - GS\Desktop: Nero Burning ROM.lnk . (.Nero AG - Nero Burning ROM.)  -- C:\Program Files (x86)\Nero\Nero 12\Nero Burning ROM\nero.exe
O4 - Global Startup: C:\Users\33-fifix-33\Desktop\Outils de diagnostic d'imprimante HP.url . (.Nero AG - Nero Burning ROM.)  -- C:\Users\33-fifix-33\Desktop\Outils de diagnostic d'imprimante HP.url
O4 - GS\Desktop: VirtualDJ Home FREE.lnk . (.Atomix Productions - VirtualDJ.)  -- C:\Program Files (x86)\VirtualDJ\virtualdj_home.exe
~ Global Startup:  Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office15\ONBttnIE.dll (.not file.)
O9 - Extra button: Cliquer pour appeler Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O9 - Extra button: Notes liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office15\ONBTTN~1.dll (.not file.)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 8 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{25FC2AE4-A260-4977-8205-3267B58E61D2}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9D709030-AB5B-484B-BCB4-E848DD8CD2A8}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{C71B802B-EE03-43BF-8AF9-5D839E0A5501}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DC051F7C-D1A3-48B3-969B-AA08BDE7D9AB}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{25FC2AE4-A260-4977-8205-3267B58E61D2}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9D709030-AB5B-484B-BCB4-E848DD8CD2A8}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{C71B802B-EE03-43BF-8AF9-5D839E0A5501}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DC051F7C-D1A3-48B3-969B-AA08BDE7D9AB}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{25FC2AE4-A260-4977-8205-3267B58E61D2}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{9D709030-AB5B-484B-BCB4-E848DD8CD2A8}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{C71B802B-EE03-43BF-8AF9-5D839E0A5501}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DC051F7C-D1A3-48B3-969B-AA08BDE7D9AB}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: CyberLink PowerDVD 13 Media Server Monit (CyberLink PowerDVD 13 Media Server Monitor Service) . (.CyberLink - Media Server Monitor Service.) - C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
O23 - Service: CyberLink PowerDVD 13 Media Server Servi (CyberLink PowerDVD 13 Media Server Service) . (.CyberLink - Media Server Service.) - C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
O23 - Service:  (DpHost) . (.DigitalPersona, Inc. - DigitalPersona Local Host.) - C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
O23 - Service: Freemake Improver (Freemake Improver) . (.Freemake - FreemakeUtilsService.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: LightScribeService Direct Disc Labeling  (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Norton 360 (N360) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\ccSvcHst.exe
O23 - Service:  (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 186.4.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RealtekCU (RealtekCU) . (.Realtek - RtlService MFC Application.) - C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: SpeedBit Update (SBUpd) . (.Speedbit Ltd. - SpeedBit Update Service.) - C:\Program Files\Common Files\SpeedBit\SBUpdate\sbu.exe
O23 - Service: Service Software Update (Software_update (Software_update) . (.The Software Group - Software Update.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
O23 - Service: Stuffit Archive Name Service (Stuffit Archive Name Service) . (.Smith Micro Software, Inc. - ArcNameService Application.) - C:\Program Files (x86)\Smith Micro\StuffIt 2010\ArcNameService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) . (.Validity Sensors, Inc. - VFS101 VCS API Library.) - C:\Windows\system32\vcsFPService.exe
O23 - Service: WebCake Desktop Updater (WebCake Desktop Updater) . (.WebCake LLC - WebCake.Desktop.Updater.) - C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe   =Adware.WebCake
O23 - Service: Power Control [2013/05/28 19:50:07] ({09F57980-3432-4AFC-957D-27AC45FAE1F5}) . (.CyberLink Corp. - Pas de description.) - C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl
O23 - Service: Power Control [2010/01/09 01:33:59] ({55662437-DA8C-40c0-AADA-2C816A897A49}) . (.CyberLink Corp. - Pas de description.) - c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
~ Services: 28 Scanned in 00mn 09s



---\\ Enumération Active Desktop MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1074]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1078]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\HPCeeScheduleFor33-fifix-33.job   [356]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-chromeinstaller.job   [1916]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-codedownloader.job   [1210]   =PUP.SoftwareEngine
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-enabler.job   [1110]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-firefoxinstaller.job   [1842]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-updater.job   [1206]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job   [924]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job   [928]
[MD5.F040037B149FD0F5A5044AE563390FA7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [256904]
[MD5.4510E7A22B82BB99FFEE43953292BAD0] [APT] [CapSchedInst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe   [66856]
[MD5.60747E27A2767B96E4A70DEAF73A30D7] [APT] [CapSvcInst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe   [66856]
[MD5.86BA18FC1681C3274DA50BC6B07FAECD] [APT] [CapUninst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe   [54568]
[MD5.C6331D11F80B3AFFD91A9B3858E00F23] [APT] [CLMLSvc] (.CyberLink.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe   [210216]
[MD5.00000000000000000000000000000000] [APT] [Desk 365 RunAsStdUser] (...) -- C:\Program Files (x86)\Desk 365\desk365.exe (.not file.)   [0]   =Hijacker.22Find
[MD5.00000000000000000000000000000000] [APT] [DVDAgent] (...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (.not file.)   [0]
[MD5.F1B6B19AA752DEA83BCE4DFEF3D4C5BA] [APT] [EPUpdater] (...) -- C:\Users\33-fifix-33\AppData\Roaming\BabSolution\Shared\BabMaint.exe   [9808]   =Hijacker.BabSolution
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.455B6AF8235787AB6E36193FBD9BB0AA] [APT] [HPCeeScheduleFor33-fifix-33] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe   [91704]
[MD5.87E7AABE4F6A0DFD6105224E4D88C4D7] [APT] [HPCustParticipation HP Photosmart Plus B210 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPCustPartic.exe   [3794792]
[MD5.D63797E8E7781EE1500A810CB6194FA6] [APT] [Java Update Scheduler] (.Oracle Corporation.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [253816]
[MD5.4EFCDF3DB1BBA69C09622991280C4ACB] [APT] [MUI StartMenu Application] (.CyberLink Corp..) -- c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe   [222504]
[MD5.EAA2B8155272BC5789E81E7819518559] [APT] [Norton WSC Integration] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\WSCStub.exe   [163432]
[MD5.00000000000000000000000000000000] [APT] [Omiga Plus RunAsStdUser] (...) -- C:\Program Files (x86)\Omiga Plus\omigaplus.exe (.not file.)   [0]
[MD5.273B96F8DE8996D29FAEBB77F8C5CA3B] [APT] [Plus-HD-2.6-chromeinstaller] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-chromeinstaller.exe   [464232]
[MD5.CFE34A3F13EA603C424EEAA95AF1A5B8] [APT] [Plus-HD-2.6-codedownloader] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-codedownloader.exe   [478568]   =PUP.SoftwareEngine
[MD5.78C458F88D9194DC7B6D82DDA10E2CCC] [APT] [Plus-HD-2.6-enabler] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-enabler.exe   [345960]
[MD5.833F229866CD49B863D3E629FDB61E95] [APT] [Plus-HD-2.6-firefoxinstaller] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-firefoxinstaller.exe   [725352]
[MD5.BD177D998A2CCADD894FB24441B2D482] [APT] [Plus-HD-2.6-updater] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-updater.exe   [364392]
[MD5.48BE298F7FD1BEF4D8FBACB04D8D95C4] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   [958576]
[MD5.81800928E0F713DF31F3393CC26F4013] [APT] [Programme de mise … jour en ligne de DivX] (...) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe   [1263952]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] [APT] [Programme de mise … jour en ligne de HP.] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe   [49208]
[MD5.2F407AA24101E4678B110A1FFA13F587] [APT] [Programme de mise … jour en ligne de Sun Microsystems] (.Sun Microsystems, Inc..) -- C:\Program Files\Java\jre6\bin\jusched.exe   [171520]
[MD5.F61BC28AC1E4304F0A76B81C6BA0B327] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe   [38456]
[MD5.FC387225841FF92463C5F65054998E0B] [APT] [SoftwareUpdateTaskMachineCore] (.The Software Group.) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe   [119408]
[MD5.FC387225841FF92463C5F65054998E0B] [APT] [SoftwareUpdateTaskMachineUA] (.The Software Group.) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe   [119408]
[MD5.3BC1A5DAD399DA8EB9901D8943C37727] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (.TuneUp Software.) -- C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe   [424736]
[MD5.1CE55AE7E57826457FD56EB3C50E4E54] [APT] [TVAgent] (.CyberLink Corp..) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe   [415016]
[MD5.00000000000000000000000000000000] [APT] [{032C2E2F-5D2C-40CB-8DAD-A7AFD48F7D8D}] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)   [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe   [561984]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.28E1A34ED1B810BC2F4734F2DBFF2A76] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe   [615736]
[MD5.3832D44C0811EED1338B34328EB493EB] [APT] [Norton Error Analyzer] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\SymErr.exe   [54096]
[MD5.3832D44C0811EED1338B34328EB493EB] [APT] [Norton Error Processor] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\SymErr.exe   [54096]
~ Scheduled Task: 55 Scanned in 00mn 09s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s



-
#48774
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (BHDrvx64) . (.Symantec Corporation - BASH Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130531.001\BHDrvx64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver:  (ccSet_N360) . (.Symantec Corporation - Common Client Settings Driver.) - C:\Windows\system32\drivers\N360x64\1403010.016\ccSetx64.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver:  (eeCtrl) . (.Symantec Corporation - Symantec Eraser Control Driver.) - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
O41 - Driver:  (IDSVia64) . (.Symantec Corporation - IDS Core Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130611.001\IDSvia64.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver:  (Serial) . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) - C:\Windows\system32\DRIVERS\serial.sys
O41 - Driver:  (SRTSP) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\system32\Drivers\N360x64\1403010.016\SRTSP64.sys
O41 - Driver:  (SRTSPX) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\system32\drivers\N360x64\1403010.016\SRTSPX64.sys
O41 - Driver:  (SymIRON) . (.Symantec Corporation - Iron Driver.) - C:\Windows\system32\drivers\N360x64\1403010.016\Ironx64.sys
O41 - Driver:  (SymNetS) . (.Symantec Corporation - Network Security Driver.) - C:\Windows\system32\Drivers\N360x64\1403010.016\SYMNETS.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 90 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: AIMP3 - (.AIMP DevTeam.) [HKLM][64Bits] -- AIMP3
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adblock IE 2.2 - (.MGTEK.) [HKLM][64Bits] -- {58161524-037B-42CD-B575-AF804A2F0F47}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.5.5 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
O42 - Logiciel: Aiseesoft Transfert iPhone Platinum 6.2.10 - (...) [HKLM][64Bits] -- {7C2E211D-4B90-4bc6-BF40-E71A20BF8BE0}_is1
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {5D09C772-ECB3-442B-9CC6-B4341C78FDC2}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2F72F540-1F60-4266-9506-952B21D6640D}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Ashampoo MP3 AudioCenter - (.ashampoo Technology GmbH Co. KG.) [HKLM][64Bits] -- Ashampoo MP3 AudioCenter
O42 - Logiciel: Babylon - (.Babylon.) [HKLM][64Bits] -- Babylon   =Toolbar.Babylon
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}   =Adware.Boxore
O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CANON iMAGE GATEWAY Task
O42 - Logiciel: CDRWIN 10 - (.Engelmann Media GmbH.) [HKLM][64Bits] -- {317618F1-DDBA-4E67-0001-F3AF1185D4A5}
O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- Canon Internet Library for ZoomBrowser EX
O42 - Logiciel: Canon MOV Decoder - (.Canon Inc..) [HKLM][64Bits] -- Canon MOV Decoder
O42 - Logiciel: Canon MOV Encoder - (.Canon Inc..) [HKLM][64Bits] -- Canon MOV Encoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- MovieEditTask
O42 - Logiciel: Canon Utilities CameraWindow - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowLauncher
O42 - Logiciel: Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CameraWindowDVC6
O42 - Logiciel: Canon Utilities Digital Photo Professional 3.6 - (.Canon Inc..) [HKLM][64Bits] -- DPP
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM][64Bits] -- EOS Utility
O42 - Logiciel: Canon Utilities MyCamera - (.Canon Inc..) [HKLM][64Bits] -- MyCamera
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM][64Bits] -- PhotoStitch
O42 - Logiciel: Canon Utilities Picture Style Editor - (.Canon Inc..) [HKLM][64Bits] -- Picture Style Editor
O42 - Logiciel: Canon Utilities RemoteCapture Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities WFT-E1/E2/E3/E4 Utility - (.Canon Inc..) [HKLM][64Bits] -- WFTK
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
O42 - Logiciel: ContinueToSave - (...) [HKLM][64Bits] -- {686FB56C-E1AC-4C54-AEBF-A98EB38C979A}   =PUP.OfferWare
O42 - Logiciel: Corel Paint Shop Pro Photo X2 - (.Corel Corporation.) [HKLM][64Bits] -- {64E72FB1-2343-4977-B4A8-262CD53D0BD3}
O42 - Logiciel: Corel VideoStudio 12 - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink PowerDVD 13 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}
O42 - Logiciel: CyberLink PowerDVD 13 - (.CyberLink Corp..) [HKLM][64Bits] -- {3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}
O42 - Logiciel: DAEMON Tools Pro - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Pro
O42 - Logiciel: DAEMON Tools Ultra - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Ultra
O42 - Logiciel: DMUninstaller - (...) [HKLM][64Bits] -- DMUninstaller
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: Delta Chrome Toolbar - (.Visual Tools.) [HKLM][64Bits] -- Delta Chrome Toolbar
O42 - Logiciel: Delta toolbar   - (.Delta.) [HKLM][64Bits] -- delta
O42 - Logiciel: DigitalPersona Personal 4.11 - (.DigitalPersona, Inc..) [HKLM][64Bits] -- {F74D69E5-ECFD-45D1-A87A-341208ADD7CC}
O42 - Logiciel: DomaIQ - (.Tuguu SLU.) [HKLM][64Bits] -- DomaIQ Uninstaller   =Toolbar.DomaIQ
O42 - Logiciel: Download Accelerator Plus (DAP) - (.Speedbit Ltd..) [HKLM][64Bits] -- Download Accelerator Plus (DAP)
O42 - Logiciel: Download Updater (AOL Inc.) - (.AOL Inc..) [HKLM][64Bits] -- SoftwareUpdUtility
O42 - Logiciel: Détection de l'application Winamp - (.Nullsoft, Inc.) [HKCU][64Bits] -- Winamp Detect
O42 - Logiciel: ENE CIR Receiver Driver - (.ENE.) [HKLM][64Bits] -- FFE7D41DF3C645075BB149E21988B63996C34187
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: Easy CD-DA Extractor 16 - (.Poikosoft.) [HKLM][64Bits] -- Easy CD-DA Extractor 16
O42 - Logiciel: Freemake Video Converter version 4.0.1 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1
O42 - Logiciel: GoldWave v5.69 - (.GoldWave Inc..) [HKLM][64Bits] -- GoldWave v5.69
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM][64Bits] -- {8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Integrated Module with Bluetooth wireless technology - (.Broadcom Corporation.) [HKLM][64Bits] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {67626E09-5366-4480-8F1E-93FADF50CA15}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM][64Bits] -- {88E60521-1E4E-4785-B9F1-1798A4BD0C30}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP Photo Creations - (.HP Photo Creations Powered by RocketLife.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: HP Photosmart Essential 3.5 - (.HP.) [HKLM][64Bits] -- HP Photosmart Essential
O42 - Logiciel: HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B - (.HP.) [HKLM][64Bits] -- {B61ED343-0B14-4241-999C-490CB1A20DA4}
O42 - Logiciel: HP Photosmart Plus B210 series - Enquête sur l'amélioration du produit - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {64E4146D-713D-4E0F-BBE4-DB52CAC8CCD2}
O42 - Logiciel: HP Photosmart Plus B210 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {7F5FDEA1-D0AC-4D80-9D95-59775FCCFA40}
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6}
O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM][64Bits] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center Imaging Support Tools
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {EE202411-2C26-49E8-9784-1BC1DBF7DE96}
O42 - Logiciel: HP Tone Control - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {D0584F36-2BDB-43DF-9168-AD0EE9AD95F6}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
O42 - Logiciel: HP User Guides 0143 - (.Hewlett-Packard.) [HKLM][64Bits] -- {0665989D-2BD9-428B-B433-EF648427C8B0}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {54CC7901-804D-4155-B353-21F0CC9112AB}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.1.1 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: Image Data Converter - (.Sony Corporation.) [HKLM][64Bits] -- {87998E4E-6D9C-411B-AAE9-B8523FFE357D}
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: JMicron Flash Media Controller Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C}
O42 - Logiciel: Java 7 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217021FF}
O42 - Logiciel: Java(TM) 6 Update 15 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416015FF}
O42 - Logiciel: Java(TM) SE Development Kit 6 Update 15 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0160150}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: K-Lite Codec Pack 9.6.5 (Full) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: Le Robert Collins - (.Le Robert.) [HKLM][64Bits] -- RCCD
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {E0E55FC1-C53D-4F8D-B14B-B59C312747C8}
O42 - Logiciel: Live Media Plugin (Todae) - (.Todae.fr.) [HKLM][64Bits] -- Live Media
O42 - Logiciel: Logiciel de base du périphérique HP Photosmart Plus B210 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {B772E8B9-AC44-45D4-9A8B-BC5FEE4608F7}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Media Go - (.Sony.) [HKLM][64Bits] -- {362AB21A-E2C4-40CE-81C2-8C4D62B0635A}
O42 - Logiciel: Media Go Video Playback Engine 1.116.101.02020 - (.Sony.) [HKLM][64Bits] -- {54215B8A-6212-8DB8-39B4-98EE2BB98BD1}
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft VC9 runtime libraries - (.AOL Inc..) [HKLM][64Bits] -- {553C904F-57A2-4113-888E-BA0C3D1C69C0}
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Mozilla Firefox 21.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 21.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyFreeCodec - (...) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: MyTomTom 3.2.0.1055 - (.TomTom.) [HKLM][64Bits] -- MyTomTom
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers
O42 - Logiciel: Nero 12 - (.Nero AG.) [HKLM][64Bits] -- {4744E147-F0F2-4140-825E-B3071FC079F1}
O42 - Logiciel: Nero Audio Pack 1 - (.Nero AG.) [HKLM][64Bits] -- {A7A0BF2E-31CC-49E3-9913-52C503EB969D}
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero Blu-ray Player - (.Nero AG.) [HKLM][64Bits] -- {A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}
O42 - Logiciel: Nero Blu-ray Player Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {5B79E730-D897-4B8F-A1AD-7BB2D1F22B96}
O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {CF508721-0E1E-4F99-A359-59E4EA8DAEC1}
O42 - Logiciel: Nero Burning ROM Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {2890E324-6F3B-4975-8B95-E7D6D80E0226}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74}
O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B}
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {5CD2E27A-F2C9-4A87-9A06-DFAF9A182481}
O42 - Logiciel: Nero Express Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0708FF30-78C0-47B0-81F0-C84604DC769C}
O42 - Logiciel: Nero Kwik Media - (.Nero AG.) [HKLM][64Bits] -- {052A1E34-A54B-458C-A4E3-24C3E054754A}
O42 - Logiciel: Nero Kwik Media Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {1F16820E-D0E7-4636-939E-45CBFEFB06E1}
O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D}
O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {1943C3BD-4462-4612-92C3-D36DD917C447}
O42 - Logiciel: Nero Recode Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {86847081-B387-4F49-AED1-C9B0A090D66C}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {B953732D-B623-4E84-B369-CFFF7B1AE06F}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM][64Bits] -- {83FCCFCD-46E3-43FB-A397-78BFD5A8980A}
O42 - Logiciel: Nero Video Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {B128179D-A5E1-43AC-9422-12A109ECD2A0}
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM][64Bits] -- N360
O42 - Logiciel: Norton Online Backup - (.Symantec.) [HKLM][64Bits] -- {C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}
O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM][64Bits] -- HPOCR
O42 - Logiciel: PMB - (.Sony Corporation.) [HKLM][64Bits] -- {B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- {D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: PlayStation(R)Store - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
O42 - Logiciel: Plus-HD-2.6 - (.Plus HD.) [HKLM][64Bits] -- Plus-HD-2.6
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044}
O42 - Logiciel: REALTEK Wireless LAN Driver and Utility - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9C049499-055C-4A0C-A916-1D12314F45EB}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Search Assistant WebSearch 1.74 - (...) [HKLM][64Bits] -- SP_4e24eecb
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies
O42 - Logiciel: Software Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Sony Ericsson Update Engine - (.Sony Ericsson Communications AB.) [HKLM][64Bits] -- Update Engine
O42 - Logiciel: Sony PC Companion 2.10.155 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}
O42 - Logiciel: Splash PRO EX - (.Mirillis.) [HKLM][64Bits] -- Mirillis Splash PRO EX
O42 - Logiciel: StuffIt 2010 - (.Smith Micro.) [HKLM][64Bits] -- {26A7FC57-FC21-4CA9-85BD-4324B3294D8B}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: TuneUp Utilities 2013 - (.TuneUp Software.) [HKLM][64Bits] -- TuneUp Utilities 2013
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 2.0.6 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Validity Sensors DDK - (.Validity Sensors, Inc..) [HKLM][64Bits] -- {62A20ECA-920E-4052-BF77-88C78DD20FAA}
O42 - Logiciel: VirtualDJ Home FREE - (.Atomix Productions.) [HKLM][64Bits] -- {5E1375CB-6792-4464-8715-CC3EC83D48FA}
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM][64Bits] -- {4412F224-3849-4461-A3E9-DEEF8D252790}
O42 - Logiciel: WebCake 3.00 - (.WebCake LLC.) [HKLM][64Bits] -- {C4ED781C-7394-4906-AAFF-D6AB64FF7C38}   =Adware.WebCake
O42 - Logiciel: Welcome App (Start-up experience) - (.Nero AG.) [HKLM][64Bits] -- {828175FA-7307-4DBF-95AD-9CEE086B6F45}
O42 - Logiciel: WinRAR 4.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth  (06/15/2009 6.2.0.9000) - (.Broadcom.) [HKLM][64Bits] -- 6B8550A319DDC8B17F35F4A89988705E4592349B
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM][64Bits] -- 6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM][64Bits] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Windows Media Encoder 9 Series - (...) [HKLM][64Bits] -- Windows Media Encoder 9
O42 - Logiciel: Windows Media Encoder 9 Series - (.Microsoft Corporation.) [HKLM][64Bits] -- {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {76FF0F03-B707-4332-B5D1-A56C8303514E}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent   =P2P.µTorrent
~ Logic: 331 Scanned in 00mn 01s
#48775
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\Aiseesoft Studio]
[HKCU\Software\AppDataLow\SProtector]   =PUP.Mocaflix
[HKCU\Software\AppDataLow\Software\Crossrider]   =PUP.CrossRider
[HKCU\Software\AppDataLow\Software\DigitalPersona]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Plus-HD-2.6]
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\BabSolution]   =Hijacker.BabSolution
[HKCU\Software\Babylon]   =Toolbar.Babylon
[HKCU\Software\BitTorrent]   =P2P.BitTorrent
[HKCU\Software\Bureau van Dijk]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DT Soft]
[HKCU\Software\DataMngr]   =PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar]   =PUP.Datamngr
[HKCU\Software\Delta]
[HKCU\Software\DigitalPersona]
[HKCU\Software\Disc Soft]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\DownloadManager]
[HKCU\Software\Drivers]
[HKCU\Software\Engelmann Media]
[HKCU\Software\Freemake]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\GoldWave]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\Icaros]
[HKCU\Software\IncrediMail]
[HKCU\Software\InstallCore]   =PUP.InstallCore
[HKCU\Software\InstallShield]
[HKCU\Software\InstalledBrowserExtensions]   =Adware.VidSaver
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Le_Robert]
[HKCU\Software\Licenses]
[HKCU\Software\LightScribe]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MGTEK]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\MainConcept]
[HKCU\Software\MediaInfo]
[HKCU\Software\Mirillis]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\Poikosoft]
[HKCU\Software\Policies]
[HKCU\Software\RapidSolution]
[HKCU\Software\Samsung]
[HKCU\Software\Smartbar]   =Hijacker.SmartBar
[HKCU\Software\Smith Micro]
[HKCU\Software\Softonic]
[HKCU\Software\Software]
[HKCU\Software\Sony Corporation]
[HKCU\Software\Sony]
[HKCU\Software\SpeedBit]
[HKCU\Software\Streaming Video Recorder]
[HKCU\Software\Synaptics]
[HKCU\Software\System32]
[HKCU\Software\TeleCharger]
[HKCU\Software\TeleCharger_v2]
[HKCU\Software\Todae]
[HKCU\Software\TomTom]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VirtualDJ]
[HKCU\Software\Visan]
[HKCU\Software\Widcomm]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Win]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ashampoo]
[HKCU\Software\delta LTD]
[HKCU\Software\lollipop]   =Adware.Lollipop
[HKCU\Software\madshi]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\CXT]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DigitalPersona]
[HKLM\Software\DivX]
[HKLM\Software\DomaIQ]   =Toolbar.DomaIQ
[HKLM\Software\GEAR Software]
[HKLM\Software\HPQ]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\MGTEK]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\RapidSolution]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\Smith Micro]
[HKLM\Software\Sonic]
[HKLM\Software\SpeedBit]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\Tarma Installer]   =Toolbar.Tarma
[HKLM\Software\TuneUp]
[HKLM\Software\Validity]
[HKLM\Software\Widcomm]
[HKLM\Software\WildTangent]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Boxore]   =Adware.Boxore
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\Bureau van Dijk]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Canon_Inc_IC]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Corel]
[HKLM\Software\Wow6432Node\Cyberlink]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\DataMngr]   =PUP.Datamngr
[HKLM\Software\Wow6432Node\Delta]
[HKLM\Software\Wow6432Node\Digital River]
[HKLM\Software\Wow6432Node\DigitalPersona]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Engelmann Media]
[HKLM\Software\Wow6432Node\Freemake]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HPQLOG]
[HKLM\Software\Wow6432Node\HPQ]
[HKLM\Software\Wow6432Node\HP]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\Iminent]   =Adware.IMBooster
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\InterVideo]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KLCodecPack]
[HKLM\Software\Wow6432Node\LAV]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LightScribe]
[HKLM\Software\Wow6432Node\MGTEK]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Norton]
[HKLM\Software\Wow6432Node\Nullsoft]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\P2G_Upgrade]
[HKLM\Software\Wow6432Node\PDR_Upgrade]
[HKLM\Software\Wow6432Node\Poikosoft]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PowerPivot]
[HKLM\Software\Wow6432Node\Product_Upgrade]
[HKLM\Software\Wow6432Node\REALTEK Semiconductor Corp.]
[HKLM\Software\Wow6432Node\RapidSolution]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\RocketLife]
[HKLM\Software\Wow6432Node\RtWLan]
[HKLM\Software\Wow6432Node\SP Global]   =PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector]   =PUP.Mocaflix
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\SmartSound Software]
[HKLM\Software\Wow6432Node\Smith Micro]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Sony]
[HKLM\Software\Wow6432Node\SpeedBit]
[HKLM\Software\Wow6432Node\Supreme Savings]   =PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\Todae]
[HKLM\Software\Wow6432Node\TomTom]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Ulead Systems]
[HKLM\Software\Wow6432Node\Validity]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\VirtualDJ]
[HKLM\Software\Wow6432Node\Visan]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\ashampoo]
[HKLM\Software\Wow6432Node\babylontoolbar]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\deskSvc]
[HKLM\Software\Wow6432Node\hdcode]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\omigaplusSvc]
[HKLM\Software\Wow6432Node\winzipersvc]
[HKLM\Software\Wow6432Node]
~ Key Software: 351 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/11/2009 - 14:11:43 - [657,174] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 09/06/2013 - 18:10:46 - [25,953] ----D C:\Program Files (x86)\AIMP3
O43 - CFD: 09/06/2013 - 21:34:50 - [90,165] ----D C:\Program Files (x86)\Aiseesoft Studio
O43 - CFD: 17/05/2013 - 07:13:40 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 29/05/2013 - 16:26:11 - [23,386] ----D C:\Program Files (x86)\Ashampoo
O43 - CFD: 09/06/2013 - 15:04:28 - [349,307] ----D C:\Program Files (x86)\Audials
O43 - CFD: 09/06/2013 - 15:59:12 - [11,028] ----D C:\Program Files (x86)\Babylon   =Toolbar.Babylon
O43 - CFD: 17/05/2013 - 07:13:11 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 21/05/2013 - 19:13:22 - [1,273] ----D C:\Program Files (x86)\Boxore   =Adware.Boxore
O43 - CFD: 27/05/2013 - 05:45:57 - [374,642] ----D C:\Program Files (x86)\Canon
O43 - CFD: 01/06/2013 - 16:57:30 - [19,590] ----D C:\Program Files (x86)\CDRWIN 10
O43 - CFD: 11/06/2013 - 12:02:01 - [3,432] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 05/06/2013 - 05:57:20 - [588,826] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 13/05/2013 - 19:25:52 - [1,473] ----D C:\Program Files (x86)\ContinueToSave   =PUP.Offerware
O43 - CFD: 09/01/2010 - 02:55:29 - [1454,872] ----D C:\Program Files (x86)\Corel
O43 - CFD: 28/05/2013 - 19:47:46 - [1402,299] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 23/05/2013 - 13:26:01 - [44,221] ----D C:\Program Files (x86)\DAEMON Tools Pro
O43 - CFD: 22/05/2013 - 18:28:02 - [68,711] ----D C:\Program Files (x86)\DAEMON Tools Ultra
O43 - CFD: 11/06/2013 - 10:12:23 - [16,081] ----D C:\Program Files (x86)\DAP
O43 - CFD: 11/06/2013 - 08:56:27 - [2,342] ----D C:\Program Files (x86)\Delta
O43 - CFD: 08/06/2013 - 18:32:18 - [0,008] ----D C:\Program Files (x86)\Desk 365   =Hijacker.22Find
O43 - CFD: 09/05/2013 - 18:45:23 - [48,865] ----D C:\Program Files (x86)\DigitalPersona
O43 - CFD: 22/05/2013 - 05:40:10 - [169,246] ----D C:\Program Files (x86)\DivX
O43 - CFD: 19/11/2009 - 14:46:57 - [90,004] ----D C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 21/05/2013 - 07:58:22 - [69,631] ----D C:\Program Files (x86)\Freemake
O43 - CFD: 09/06/2013 - 18:03:07 - [18,693] ----D C:\Program Files (x86)\GoldWave
O43 - CFD: 09/06/2013 - 14:13:05 - [55,587] ----D C:\Program Files (x86)\Google
O43 - CFD: 15/05/2013 - 12:04:57 - [1508,198] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 17/05/2013 - 07:59:23 - [364,498] ----D C:\Program Files (x86)\Hp
O43 - CFD: 19/11/2009 - 12:53:59 - [219,953] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 09/05/2013 - 18:18:59 - [0,352] ----D C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 27/05/2013 - 12:50:59 - [26,257] ----D C:\Program Files (x86)\IncrediMail
O43 - CFD: 11/06/2013 - 12:00:17 - [312,153] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 09/01/2010 - 02:25:04 - [4,843] ----D C:\Program Files (x86)\Intel
O43 - CFD: 10/06/2013 - 06:38:39 - [10,265] ----D C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 10/06/2013 - 06:38:49 - [5,767] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 06/06/2013 - 08:15:11 - [155,998] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 09/05/2013 - 18:16:14 - [123,219] ----D C:\Program Files (x86)\Java
O43 - CFD: 19/11/2009 - 14:10:31 - [1,840] ----D C:\Program Files (x86)\JMicron
O43 - CFD: 22/05/2013 - 07:20:06 - [65,615] ----D C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 09/06/2013 - 15:41:51 - [490,203] ----D C:\Program Files (x86)\Le Robert
O43 - CFD: 25/05/2013 - 07:55:54 - [0,921] ----D C:\Program Files (x86)\MGTEK
O43 - CFD: 11/05/2013 - 22:40:37 - [33,529] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 28/05/2013 - 18:15:17 - [98,053] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 27/05/2013 - 22:00:08 - [104,344] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 19/11/2009 - 13:28:35 - [7,431] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 11/05/2013 - 19:22:01 - [40,835] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 28/05/2013 - 18:19:10 - [0,029] ----D C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 19/11/2009 - 12:22:51 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 09/01/2010 - 03:06:10 - [2,087] ----D C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 27/05/2013 - 19:41:04 - [137,975] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 28/05/2013 - 18:19:10 - [8,445] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/05/2013 - 18:51:54 - [70,858] ----D C:\Program Files (x86)\Mirillis
O43 - CFD: 11/06/2013 - 08:37:43 - [47,097] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 11/06/2013 - 08:52:14 - [35,266] ----D C:\Program Files (x86)\Mozilla Firefox.bak
O43 - CFD: 11/06/2013 - 09:00:42 - [0,214] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 20/05/2013 - 18:10:30 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 07/06/2013 - 19:25:50 - [10,585] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 18/05/2013 - 17:58:30 - [17,453] ----D C:\Program Files (x86)\MyTomTom 3
O43 - CFD: 18/05/2013 - 19:21:35 - [1238,562] ----D C:\Program Files (x86)\Nero
O43 - CFD: 09/05/2013 - 22:16:44 - [391,039] ----D C:\Program Files (x86)\Norton 360
O43 - CFD: 09/05/2013 - 22:16:18 - [21,336] ----D C:\Program Files (x86)\NortonInstaller
O43 - CFD: 08/06/2013 - 18:42:23 - [0,000] ----D C:\Program Files (x86)\Omiga Plus
O43 - CFD: 09/05/2013 - 18:02:35 - [20,130] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 30/05/2013 - 17:41:34 - [7,231] ----D C:\Program Files (x86)\Plus-HD-2.6
O43 - CFD: 09/06/2013 - 09:21:30 - [73,545] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 11/06/2013 - 12:00:21 - [13,266] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 07/06/2013 - 19:26:58 - [213,019] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 12/05/2013 - 08:48:09 - [42,735] ----D C:\Program Files (x86)\Smith Micro
O43 - CFD: 21/05/2013 - 19:12:32 - [4,773] ----D C:\Program Files (x86)\Software
O43 - CFD: 22/05/2013 - 06:11:36 - [579,773] ----D C:\Program Files (x86)\Sony
O43 - CFD: 27/05/2013 - 19:52:42 - [102,581] ----D C:\Program Files (x86)\Sony Ericsson
O43 - CFD: 22/05/2013 - 06:10:40 - [128,175] ----D C:\Program Files (x86)\Sony Media Go Install
O43 - CFD: 19/11/2009 - 13:15:48 - [1,761] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 18/05/2013 - 17:58:30 - [0,043] ----D C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 21/05/2013 - 11:19:38 - [75,594] ----D C:\Program Files (x86)\TuneUp Utilities 2013
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 18/05/2013 - 18:50:25 - [101,902] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 05/06/2013 - 17:22:13 - [19,534] ----D C:\Program Files (x86)\VirtualDJ
O43 - CFD: 11/06/2013 - 08:56:07 - [0,466] ----D C:\Program Files (x86)\WebCake   =Adware.WebCake
O43 - CFD: 13/05/2013 - 19:26:39 - [1,470] ----D C:\Program Files (x86)\WebSearch
O43 - CFD: 22/05/2013 - 16:41:52 - [67,151] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 22/05/2013 - 16:32:24 - [0,148] ----D C:\Program Files (x86)\Winamp Detect
O43 - CFD: 19/11/2009 - 21:05:14 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 09/01/2010 - 03:04:13 - [127,516] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 19/11/2009 - 12:21:49 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 12/05/2013 - 08:05:32 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 09/01/2010 - 02:48:54 - [13,553] ----D C:\Program Files (x86)\Windows Media Components
O43 - CFD: 22/05/2013 - 17:57:49 - [7,460] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/05/2013 - 08:05:32 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 12/05/2013 - 08:05:32 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/05/2013 - 08:05:32 - [6,039] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 08/06/2013 - 18:43:47 - [0] ----D C:\Program Files (x86)\WinZipper
O43 - CFD: 12/06/2013 - 07:48:18 - [16,864] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 13/05/2013 - 18:53:28 - [16,036] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 19/11/2009 - 14:11:39 - [30,315] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 06/06/2013 - 08:14:37 - [148,185] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 27/05/2013 - 05:43:11 - [1,256] ----D C:\Program Files (x86)\Common Files\Canon
O43 - CFD: 09/01/2010 - 02:55:57 - [6,003] ----D C:\Program Files (x86)\Common Files\Corel
O43 - CFD: 22/05/2013 - 05:39:40 - [36,250] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 17/05/2013 - 07:58:28 - [0,507] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 17/05/2013 - 07:58:18 - [5,403] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 09/01/2010 - 02:50:48 - [3,284] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 05/06/2013 - 05:57:20 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 18/05/2013 - 19:08:03 - [37,336] ----D C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 25/05/2013 - 07:55:54 - [0,206] ----D C:\Program Files (x86)\Common Files\MGTEK
O43 - CFD: 28/05/2013 - 18:18:19 - [153,845] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 18/05/2013 - 19:19:32 - [28,915] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 09/01/2010 - 02:55:30 - [1,577] ----D C:\Program Files (x86)\Common Files\Protexis
O43 - CFD: 22/05/2013 - 16:32:14 - [4,559] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 22/05/2013 - 16:33:36 - [0,264] ----D C:\Program Files (x86)\Common Files\Software Update Utility
O43 - CFD: 22/05/2013 - 06:11:38 - [21,304] ----D C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 25/05/2013 - 19:25:59 - [3,152] ----D C:\Program Files (x86)\Common Files\SpeedBit
O43 - CFD: 10/05/2013 - 22:50:49 - [0,595] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 27/05/2013 - 21:57:27 - [16,096] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 09/01/2010 - 02:48:52 - [33,348] ----D C:\Program Files (x86)\Common Files\Ulead Systems
O43 - CFD: 19/11/2009 - 12:20:34 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 06/06/2013 - 08:15:12 - [2,775] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 13/05/2013 - 18:54:22 - [0,001] ----D C:\ProgramData\Adobe
O43 - CFD: 09/06/2013 - 21:34:50 - [0] ----D C:\ProgramData\Aiseesoft Studio
O43 - CFD: 17/05/2013 - 07:13:34 - [0,021] ----D C:\ProgramData\Apple
O43 - CFD: 22/05/2013 - 05:22:22 - [0,195] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 12/06/2013 - 07:38:27 - [97,686] ----D C:\ProgramData\Babylon   =Toolbar.Babylon
O43 - CFD: 09/05/2013 - 18:00:55 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 08/06/2013 - 18:27:11 - [0,270] ----D C:\ProgramData\ccontineuetoSSaave   =PUP.OfferWare
O43 - CFD: 03/06/2013 - 19:04:42 - [0,355] ----D C:\ProgramData\CDRWIN 10
O43 - CFD: 21/05/2013 - 07:59:12 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 22/05/2013 - 05:30:47 - [0,057] ----D C:\ProgramData\Conduit
O43 - CFD: 09/01/2010 - 02:56:24 - [6,972] ----D C:\ProgramData\Corel
O43 - CFD: 31/05/2013 - 15:06:58 - [0,202] ----D C:\ProgramData\CyberLink
O43 - CFD: 27/05/2013 - 20:42:44 - [0,002] ----D C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 27/05/2013 - 20:41:15 - [0,008] ----D C:\ProgramData\DAEMON Tools Ultra
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 22/05/2013 - 05:40:11 - [4,742] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 09/01/2010 - 03:02:30 - [63,039] ----D C:\ProgramData\Downloaded Installations
O43 - CFD: 24/05/2013 - 22:31:27 - [0,001] ----D C:\ProgramData\Easy CD-DA Extractor
O43 - CFD: 08/06/2013 - 18:47:36 - [0] ----D C:\ProgramData\eSafe
O43 - CFD: 09/05/2013 - 18:00:55 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 21/05/2013 - 07:58:46 - [7,843] ----D C:\ProgramData\Freemake
O43 - CFD: 03/06/2013 - 06:42:44 - [1,163] ----D C:\ProgramData\Google
O43 - CFD: 17/05/2013 - 15:41:34 - [49,363] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 17/05/2013 - 16:16:18 - [27,299] ----D C:\ProgramData\HP
O43 - CFD: 09/05/2013 - 18:34:16 - [2,487] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 17/05/2013 - 07:59:34 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 15/05/2013 - 18:26:18 - [0] ----D C:\ProgramData\IDM
O43 - CFD: 27/05/2013 - 12:51:46 - [0,000] ----D C:\ProgramData\IM
O43 - CFD: 27/05/2013 - 12:50:59 - [6,559] ----D C:\ProgramData\IncrediMail
O43 - CFD: 13/05/2013 - 20:04:28 - [3,492] ----D C:\ProgramData\InstallMate
O43 - CFD: 28/05/2013 - 19:45:57 - [0,451] ----D C:\ProgramData\install_clap
O43 - CFD: 09/01/2010 - 02:50:50 - [0,831] ----D C:\ProgramData\InterVideo
O43 - CFD: 09/06/2013 - 15:42:02 - [2,031] ----D C:\ProgramData\Le Robert
O43 - CFD: 01/06/2013 - 14:50:24 - [0,000] ----D C:\ProgramData\Licenses
O43 - CFD: 21/05/2013 - 05:45:42 - [0,000] ----D C:\ProgramData\LightScribe
O43 - CFD: 09/01/2010 - 03:02:53 - [2,438] ----D C:\ProgramData\Macrovision
O43 - CFD: 09/05/2013 - 18:00:55 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 25/05/2013 - 07:51:28 - [6,414] ----D C:\ProgramData\MGTEK
O43 - CFD: 09/06/2013 - 18:03:20 - [246,878] -S--D C:\ProgramData\Microsoft
O43 - CFD: 02/06/2013 - 21:58:17 - [0,066] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 18/05/2013 - 18:53:11 - [0,000] ----D C:\ProgramData\Mirillis
O43 - CFD: 09/05/2013 - 18:00:55 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 09/05/2013 - 19:23:33 - [0,019] ----D C:\ProgramData\Mozilla
O43 - CFD: 18/05/2013 - 19:22:58 - [222,003] ----D C:\ProgramData\Nero
O43 - CFD: 09/05/2013 - 22:17:46 - [450,112] ----D C:\ProgramData\Norton
O43 - CFD: 09/05/2013 - 22:16:38 - [2,815] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 09/01/2010 - 03:14:03 - [0,226] ----D C:\ProgramData\NVIDIA
O43 - CFD: 09/05/2013 - 22:11:53 - [0] ----D C:\ProgramData\PCSettings
O43 - CFD: 28/05/2013 - 19:49:59 - [0,000] ----D C:\ProgramData\PDVD
O43 - CFD: 09/06/2013 - 15:04:40 - [65,882] ----D C:\ProgramData\RapidSolution
O43 - CFD: 30/05/2013 - 12:36:27 - [23,589] ----D C:\ProgramData\Recovery
O43 - CFD: 28/05/2013 - 18:18:51 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 07/06/2013 - 19:26:03 - [11,423] ----D C:\ProgramData\Samsung
O43 - CFD: 12/05/2013 - 08:48:35 - [2,077] ----D C:\ProgramData\Smith Micro
O43 - CFD: 12/05/2013 - 17:14:16 - [4,354] ----D C:\ProgramData\Sony
O43 - CFD: 22/05/2013 - 06:11:26 - [0,143] ----D C:\ProgramData\Sony Corporation
O43 - CFD: 27/05/2013 - 19:52:54 - [503,689] ----D C:\ProgramData\Sony Ericsson
O43 - CFD: 11/06/2013 - 09:30:52 - [39,721] ----D C:\ProgramData\SpeedBit
O43 - CFD: 13/05/2013 - 19:28:33 - [0] ----D C:\ProgramData\StarApp
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 09/05/2013 - 18:16:34 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 19/11/2009 - 13:15:48 - [0,001] ----D C:\ProgramData\Symantec
O43 - CFD: 11/06/2013 - 08:56:06 - [2,726] ----D C:\ProgramData\Tarma Installer   =Toolbar.Tarma
O43 - CFD: 12/06/2013 - 06:53:24 - [0] ---AD C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 21/05/2013 - 07:59:27 - [6,341] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 09/01/2010 - 02:46:16 - [0,232] ----D C:\ProgramData\Ulead Systems
O43 - CFD: 17/05/2013 - 08:05:08 - [0,000] ----D C:\ProgramData\WEBREG
O43 - CFD: 19/11/2009 - 12:53:57 - [1393,660] ----D C:\ProgramData\WildTangent
O43 - CFD: 27/05/2013 - 05:45:35 - [0] ----D C:\ProgramData\ZoomBrowser
O43 - CFD: 21/05/2013 - 11:24:13 - [0] ----D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
O43 - CFD: 21/05/2013 - 11:24:13 - [0] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 08/06/2013 - 18:32:43 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\337
O43 - CFD: 09/06/2013 - 16:02:39 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\Acapela Group
O43 - CFD: 02/01/2013 - 16:46:12 - [2,093] ----D C:\Users\33-fifix-33\AppData\Roaming\Adobe
O43 - CFD: 09/06/2013 - 18:12:45 - [0,065] ----D C:\Users\33-fifix-33\AppData\Roaming\AIMP3
O43 - CFD: 08/06/2013 - 16:26:48 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\Apowersoft
O43 - CFD: 26/05/2013 - 18:37:35 - [44,183] ----D C:\Users\33-fifix-33\AppData\Roaming\Apple Computer
O43 - CFD: 11/06/2013 - 08:56:32 - [1,573] ----D C:\Users\33-fifix-33\AppData\Roaming\BabSolution   =Hijacker.BabSolution
O43 - CFD: 11/06/2013 - 06:10:32 - [1,114] ----D C:\Users\33-fifix-33\AppData\Roaming\Babylon   =Toolbar.Babylon
O43 - CFD: 31/05/2013 - 15:06:59 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\CyberLink
O43 - CFD: 27/05/2013 - 20:42:39 - [1,376] ----D C:\Users\33-fifix-33\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 22/05/2013 - 18:33:29 - [0,594] ----D C:\Users\33-fifix-33\AppData\Roaming\DAEMON Tools Ultra
O43 - CFD: 11/06/2013 - 08:56:25 - [0,259] ----D C:\Users\33-fifix-33\AppData\Roaming\Delta
O43 - CFD: 08/06/2013 - 18:32:46 - [1,487] ----D C:\Users\33-fifix-33\AppData\Roaming\Desk 365   =Hijacker.22Find
O43 - CFD: 09/05/2013 - 18:08:34 - [0,000] ----D C:\Users\33-fifix-33\AppData\Roaming\DigitalPersona
O43 - CFD: 22/05/2013 - 06:13:06 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\DivX
O43 - CFD: 12/06/2013 - 06:33:40 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\DMCache
O43 - CFD: 12/06/2013 - 06:37:43 - [0,002] ----D C:\Users\33-fifix-33\AppData\Roaming\EQATEC Analytics
O43 - CFD: 08/06/2013 - 17:53:26 - [0,000] ----D C:\Users\33-fifix-33\AppData\Roaming\Google
O43 - CFD: 30/05/2013 - 12:07:46 - [0,081] ----D C:\Users\33-fifix-33\AppData\Roaming\Hewlett-Packard
O43 - CFD: 17/05/2013 - 08:05:58 - [0,347] ----D C:\Users\33-fifix-33\AppData\Roaming\HP
O43 - CFD: 15/05/2013 - 11:46:49 - [0,069] ----D C:\Users\33-fifix-33\AppData\Roaming\HP Support Assistant
O43 - CFD: 01/06/2013 - 09:36:53 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\hpqLog
O43 - CFD: 11/06/2013 - 07:57:05 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\HpUpdate
O43 - CFD: 09/05/2013 - 18:08:08 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\Identities
O43 - CFD: 09/06/2013 - 14:40:21 - [5,664] ----D C:\Users\33-fifix-33\AppData\Roaming\IDM
O43 - CFD: 20/05/2013 - 18:02:05 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\InstallShield
O43 - CFD: 09/05/2013 - 18:51:49 - [0,002] ----D C:\Users\33-fifix-33\AppData\Roaming\Macromedia
O43 - CFD: 09/05/2013 - 18:09:33 - [0,000] ----D C:\Users\33-fifix-33\AppData\Roaming\Macrovision
O43 - CFD: 09/01/2010 - 11:14:09 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\Media Center Programs
O43 - CFD: 22/05/2013 - 07:26:59 - [0,000] ----D C:\Users\33-fifix-33\AppData\Roaming\Media Player Classic
O43 - CFD: 28/05/2013 - 06:32:46 - [49,506] -S--D C:\Users\33-fifix-33\AppData\Roaming\Microsoft
O43 - CFD: 18/05/2013 - 18:53:11 - [0,000] ----D C:\Users\33-fifix-33\AppData\Roaming\Mirillis
O43 - CFD: 09/05/2013 - 19:24:03 - [36,383] ----D C:\Users\33-fifix-33\AppData\Roaming\Mozilla
O43 - CFD: 21/05/2013 - 05:45:38 - [0,612] ----D C:\Users\33-fifix-33\AppData\Roaming\Nero
O43 - CFD: 08/06/2013 - 18:36:40 - [12,103] ----D C:\Users\33-fifix-33\AppData\Roaming\Omiga Plus
O43 - CFD: 21/05/2013 - 07:58:11 - [59,278] ----D C:\Users\33-fifix-33\AppData\Roaming\OpenCandy   =Adware.OpenCandy
O43 - CFD: 08/06/2013 - 18:34:47 - [0,017] ----D C:\Users\33-fifix-33\AppData\Roaming\player
O43 - CFD: 07/06/2013 - 19:29:05 - [17,628] ----D C:\Users\33-fifix-33\AppData\Roaming\Samsung
O43 - CFD: 22/05/2013 - 06:17:00 - [170,234] ----D C:\Users\33-fifix-33\AppData\Roaming\Sony
O43 - CFD: 20/05/2013 - 18:12:57 - [39,801] ----D C:\Users\33-fifix-33\AppData\Roaming\Sony Corporation
O43 - CFD: 14/05/2013 - 08:21:32 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\Systweak
O43 - CFD: 27/05/2013 - 20:37:57 - [0,013] ----D C:\Users\33-fifix-33\AppData\Roaming\Template
O43 - CFD: 30/05/2013 - 17:45:34 - [14,990] ----D C:\Users\33-fifix-33\AppData\Roaming\Todae
O43 - CFD: 18/05/2013 - 17:53:28 - [0,468] ----D C:\Users\33-fifix-33\AppData\Roaming\TomTom
O43 - CFD: 21/05/2013 - 07:59:26 - [0,202] ----D C:\Users\33-fifix-33\AppData\Roaming\TuneUp Software
O43 - CFD: 12/06/2013 - 07:47:48 - [3,258] ----D C:\Users\33-fifix-33\AppData\Roaming\uTorrent   =P2P.µTorrent
O43 - CFD: 12/06/2013 - 07:23:41 - [0,077] ----D C:\Users\33-fifix-33\AppData\Roaming\vlc
O43 - CFD: 11/06/2013 - 08:56:11 - [0,101] ----D C:\Users\33-fifix-33\AppData\Roaming\WebCake   =Adware.WebCake
O43 - CFD: 10/06/2013 - 09:54:46 - [1,401] ----D C:\Users\33-fifix-33\AppData\Roaming\Winamp
O43 - CFD: 13/05/2013 - 20:41:09 - [0,000] ----D C:\Users\33-fifix-33\AppData\Roaming\WinRAR
O43 - CFD: 08/06/2013 - 18:32:24 - [0] ----D C:\Users\33-fifix-33\AppData\Roaming\WinZipper
O43 - CFD: 11/06/2013 - 09:14:59 - [18,370] ----D C:\Users\33-fifix-33\AppData\Local\Adobe
O43 - CFD: 09/06/2013 - 21:40:26 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Aiseesoft Studio
O43 - CFD: 17/05/2013 - 07:13:42 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Apple
O43 - CFD: 24/05/2013 - 08:33:02 - [12,639] ----D C:\Users\33-fifix-33\AppData\Local\Apple Computer
O43 - CFD: 09/05/2013 - 18:01:06 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Application Data
O43 - CFD: 03/06/2013 - 06:41:54 - [1,573] ----D C:\Users\33-fifix-33\AppData\Local\Apps
O43 - CFD: 11/06/2013 - 08:56:32 - [17,493] ----D C:\Users\33-fifix-33\AppData\Local\Babylon   =Toolbar.Babylon
O43 - CFD: 09/05/2013 - 18:08:36 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Broadcom
O43 - CFD: 11/06/2013 - 10:12:30 - [26,087] ----D C:\Users\33-fifix-33\AppData\Local\CrashDumps
O43 - CFD: 09/06/2013 - 15:05:49 - [0] ----D C:\Users\33-fifix-33\AppData\Local\CrashRpt
O43 - CFD: 28/05/2013 - 19:49:40 - [24,552] ----D C:\Users\33-fifix-33\AppData\Local\CyberLink
O43 - CFD: 28/05/2013 - 19:50:46 - [0,000] ----D C:\Users\33-fifix-33\AppData\Local\Cyberlink SoftDMA
O43 - CFD: 03/06/2013 - 06:42:15 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Deployment
O43 - CFD: 11/06/2013 - 12:08:00 - [2,889] ----D C:\Users\33-fifix-33\AppData\Local\Diagnostics
O43 - CFD: 09/05/2013 - 18:08:34 - [0] ----D C:\Users\33-fifix-33\AppData\Local\DigitalPersona
O43 - CFD: 11/06/2013 - 07:57:05 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Downloaded Installations
O43 - CFD: 22/05/2013 - 18:29:04 - [0,001] ----D C:\Users\33-fifix-33\AppData\Local\DTClient
O43 - CFD: 24/05/2013 - 21:44:48 - [0,002] ----D C:\Users\33-fifix-33\AppData\Local\Easy CD-DA Extractor
O43 - CFD: 21/05/2013 - 07:58:54 - [0,001] ----D C:\Users\33-fifix-33\AppData\Local\FreemakeVideoConverter
O43 - CFD: 03/06/2013 - 06:47:45 - [1,450] ----D C:\Users\33-fifix-33\AppData\Local\Google
O43 - CFD: 15/05/2013 - 11:46:01 - [46,024] ----D C:\Users\33-fifix-33\AppData\Local\Hewlett-Packard
O43 - CFD: 09/05/2013 - 18:01:06 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Historique
O43 - CFD: 17/05/2013 - 08:04:40 - [0,155] ----D C:\Users\33-fifix-33\AppData\Local\HP
O43 - CFD: 27/05/2013 - 12:54:10 - [145,868] ----D C:\Users\33-fifix-33\AppData\Local\IM
O43 - CFD: 05/06/2013 - 05:54:48 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Lollipop   =Adware.Lollipop
O43 - CFD: 12/05/2013 - 19:18:05 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Macromedia
O43 - CFD: 28/05/2013 - 19:50:01 - [0] ----D C:\Users\33-fifix-33\AppData\Local\MediaServer
O43 - CFD: 25/05/2013 - 07:56:01 - [2,427] ----D C:\Users\33-fifix-33\AppData\Local\MGTEK
O43 - CFD: 08/06/2013 - 16:38:37 - [269,116] ----D C:\Users\33-fifix-33\AppData\Local\Microsoft
O43 - CFD: 01/06/2013 - 09:36:54 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Microsoft Help
O43 - CFD: 27/05/2013 - 20:00:05 - [0,002] ----D C:\Users\33-fifix-33\AppData\Local\Microsoft Toolkit
O43 - CFD: 11/06/2013 - 08:07:43 - [22,064] ----D C:\Users\33-fifix-33\AppData\Local\Mirillis
O43 - CFD: 09/05/2013 - 19:23:58 - [79,148] ----D C:\Users\33-fifix-33\AppData\Local\Mozilla
O43 - CFD: 26/05/2013 - 11:46:25 - [56,813] ----D C:\Users\33-fifix-33\AppData\Local\Nero
O43 - CFD: 19/05/2013 - 19:06:17 - [0,006] ----D C:\Users\33-fifix-33\AppData\Local\Nero_AG
O43 - CFD: 17/05/2013 - 15:41:41 - [0] ----D C:\Users\33-fifix-33\AppData\Local\PowerCinema
O43 - CFD: 21/05/2013 - 07:56:47 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Programs
O43 - CFD: 09/06/2013 - 15:08:29 - [84,793] ----D C:\Users\33-fifix-33\AppData\Local\RapidSolution
O43 - CFD: 07/06/2013 - 19:29:08 - [0,010] ----D C:\Users\33-fifix-33\AppData\Local\Samsung
O43 - CFD: 11/06/2013 - 15:43:43 - [1,812] ----D C:\Users\33-fifix-33\AppData\Local\Smith Micro
O43 - CFD: 21/05/2013 - 19:12:32 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Software
O43 - CFD: 22/05/2013 - 06:13:05 - [0,009] ----D C:\Users\33-fifix-33\AppData\Local\Sony
O43 - CFD: 12/06/2013 - 07:45:22 - [171,709] ----D C:\Users\33-fifix-33\AppData\Local\Temp
O43 - CFD: 09/05/2013 - 18:01:06 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Temporary Internet Files
O43 - CFD: 18/05/2013 - 17:58:33 - [8,285] ----D C:\Users\33-fifix-33\AppData\Local\TomTom
O43 - CFD: 01/06/2013 - 14:44:10 - [0,005] ----D C:\Users\33-fifix-33\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 15/05/2013 - 17:50:50 - [0,000] R---D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 22/05/2013 - 16:32:24 - [0,001] ----D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Détection de l'application Winamp
O43 - CFD: 21/05/2013 - 07:58:22 - [0,001] ----D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 09/06/2013 - 18:03:09 - [0,003] ----D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoldWave
O43 - CFD: 09/01/2010 - 02:42:58 - [0,002] ----D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 25/05/2013 - 19:04:48 - [0,006] ----D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/05/2013 - 17:50:50 - [0,000] R---D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 05/06/2013 - 17:22:20 - [0,007] ----D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
O43 - CFD: 13/05/2013 - 20:38:01 - [0,003] ----D C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 306 Scanned in 01mn 13s
#48776
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.59D9FF30966F94E3478A87F8FB8EDEA9] - 12/06/2013 - 06:19:11 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1661710]
O44 - LFC:[MD5.E042F60759726080CBEC8E5C47B0304B] - 12/06/2013 - 06:19:11 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [121080]
O44 - LFC:[MD5.13C70A2551CCCB44373F7EE9EDE76E95] - 12/06/2013 - 06:19:11 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [148792]
O44 - LFC:[MD5.0422AB989312A05EA165CE2270E7561C] - 12/06/2013 - 06:19:11 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [652148]
O44 - LFC:[MD5.994CAD9D3A6836C1EA585D22EFCC54C2] - 12/06/2013 - 06:19:11 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [745306]
O44 - LFC:[MD5.59D9FF30966F94E3478A87F8FB8EDEA9] - 12/06/2013 - 06:19:11 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1661710]
O44 - LFC:[MD5.E042F60759726080CBEC8E5C47B0304B] - 12/06/2013 - 06:19:11 RSHAD . (...) -- C:\Windows\System32\perfc009.dat   [121080]
O44 - LFC:[MD5.13C70A2551CCCB44373F7EE9EDE76E95] - 12/06/2013 - 06:19:11 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat   [148792]
O44 - LFC:[MD5.0422AB989312A05EA165CE2270E7561C] - 12/06/2013 - 06:19:11 RSHAD . (...) -- C:\Windows\System32\perfh009.dat   [652148]
O44 - LFC:[MD5.994CAD9D3A6836C1EA585D22EFCC54C2] - 12/06/2013 - 06:19:11 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat   [745306]
O44 - LFC:[MD5.90B7A3E76AC018C0F1D8E0F87F0CEE8D] - 12/06/2013 - 06:05:44 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1626335]
O44 - LFC:[MD5.CBFEBF98C3B363E16F12B50DE85D2FAC] - 12/06/2013 - 05:35:33 ---A- . (...) -- C:\Windows\setupact.log   [69694]
O44 - LFC:[MD5.A911B65EE0E4B98A6768A22386CD2E41] - 12/06/2013 - 05:35:26 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.B061451FCB00769B6F65C44F1A3655A9] - 11/06/2013 - 11:03:42 ---A- . (...) -- C:\Windows\PFRO.log   [463234]
O44 - LFC:[MD5.C66F68E501687573B6EAA66F3F0AB285] - 11/06/2013 - 11:01:12 RSHAD . (.Realtek Semiconductor Corporation - Realtek Selective Suspend Enabler.) -- C:\Windows\System32\Drivers\rtlss.sys   [27240]
O44 - LFC:[MD5.A28E6CBDF3D9BDC916BF3048261EEDCB] - 11/06/2013 - 11:00:47 RSHAD . (.Realtek Semiconductor Corporation - Realtek WLAN USB NDIS Driver.) -- C:\Windows\System32\Drivers\rtwlanu.sys   [986728]
O44 - LFC:[MD5.E645DE6CD838D0021835DC5179F459C5] - 11/06/2013 - 11:00:45 ---A- . (.Realtek Semiconductor Corp. - Realtek CCX SDK IHV Service.) -- C:\Windows\System32\Rtlihvs.dll   [584704]
O44 - LFC:[MD5.E645DE6CD838D0021835DC5179F459C5] - 11/06/2013 - 11:00:45 ---A- . (.Realtek Semiconductor Corp. - Realtek IHV Service.) -- C:\Windows\SysNative\Rtlihvs.dll   [584704]
O44 - LFC:[MD5.678C7EA24776534FF6DDF491A4F86005] - 11/06/2013 - 11:00:23 ---A- . (...) -- C:\Windows\RtlUI2.exe.manifest   [901]
O44 - LFC:[MD5.DA256F9F53336B560201CDEFEAE35320] - 11/06/2013 - 11:00:23 ---A- . (.Realtek - CCX Diagnostics.) -- C:\Windows\RtlUI2.exe   [380928]
O44 - LFC:[MD5.815372073DA85B2098A37DED84083C8A] - 11/06/2013 - 08:23:14 ---A- . (...) -- C:\Windows\_MSRSTRT.EXE   [2560]
O44 - LFC:[MD5.9B2BB51ED6D28860A48CFF46FD6D3DC1] - 09/06/2013 - 22:10:38 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\SysNative\mshtml.tlb   [2706432]
O44 - LFC:[MD5.9B2BB51ED6D28860A48CFF46FD6D3DC1] - 09/06/2013 - 22:10:38 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb   [2706432]
O44 - LFC:[MD5.FE6CB2001A8C2A85B617CD3FC85D8242] - 09/06/2013 - 22:10:38 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\SysNative\ieui.dll   [526336]
O44 - LFC:[MD5.FE6CB2001A8C2A85B617CD3FC85D8242] - 09/06/2013 - 22:10:38 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll   [526336]
O44 - LFC:[MD5.42758AF68D3C4912C8D8A18088AD2555] - 09/06/2013 - 22:10:38 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SysNative\ie4uinit.exe   [51712]
O44 - LFC:[MD5.42758AF68D3C4912C8D8A18088AD2555] - 09/06/2013 - 22:10:38 RSHAD . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe   [51712]
O44 - LFC:[MD5.EC6E8273B6CB79CA5B7B00CA82D1FCEE] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\SysNative\iesysprep.dll   [136704]
O44 - LFC:[MD5.EC6E8273B6CB79CA5B7B00CA82D1FCEE] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll   [136704]
O44 - LFC:[MD5.97588F2871E1FE8E3EB57B17B98DF03B] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\SysNative\iesetup.dll   [67072]
O44 - LFC:[MD5.97588F2871E1FE8E3EB57B17B98DF03B] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll   [67072]
O44 - LFC:[MD5.7DAA72F6C30D81EE31EC2BDC90054326] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\SysNative\msfeeds.dll   [603136]
O44 - LFC:[MD5.7DAA72F6C30D81EE31EC2BDC90054326] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll   [603136]
O44 - LFC:[MD5.A197763AA7487807279AB61CD6835CEF] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - Registers custom PKEYs for IE.) -- C:\Windows\SysNative\RegisterIEPKEYs.exe   [89600]
O44 - LFC:[MD5.A197763AA7487807279AB61CD6835CEF] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - Registers custom PKEYs for IE.) -- C:\Windows\System32\RegisterIEPKEYs.exe   [89600]
O44 - LFC:[MD5.168602AB16D30D5D6E091CA609FC7E75] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\SysNative\iernonce.dll   [39936]
O44 - LFC:[MD5.168602AB16D30D5D6E091CA609FC7E75] - 09/06/2013 - 22:10:37 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll   [39936]
O44 - LFC:[MD5.9D6B9124B582F0FBF275B434CE5A672C] - 09/06/2013 - 22:10:36 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\SysNative\iertutil.dll   [2647552]
O44 - LFC:[MD5.9D6B9124B582F0FBF275B434CE5A672C] - 09/06/2013 - 22:10:36 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll   [2647552]
O44 - LFC:[MD5.E34F0440799F9A0F9DC4265F4ADA75C1] - 09/06/2013 - 22:10:35 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll   [1365504]
O44 - LFC:[MD5.E34F0440799F9A0F9DC4265F4ADA75C1] - 09/06/2013 - 22:10:35 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll   [1365504]
O44 - LFC:[MD5.772EC073332D1BA2DBEC32C6D063811A] - 09/06/2013 - 22:10:35 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript.dll   [855552]
O44 - LFC:[MD5.772EC073332D1BA2DBEC32C6D063811A] - 09/06/2013 - 22:10:35 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll   [855552]
O44 - LFC:[MD5.2C96C695B6015042AC867EA419A45C20] - 09/06/2013 - 22:10:34 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript9.dll   [3958784]
O44 - LFC:[MD5.2C96C695B6015042AC867EA419A45C20] - 09/06/2013 - 22:10:34 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll   [3958784]
O44 - LFC:[MD5.27A9000C534AA9BADC9EE74940F50C6D] - 09/06/2013 - 22:10:33 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll   [2242048]
O44 - LFC:[MD5.27A9000C534AA9BADC9EE74940F50C6D] - 09/06/2013 - 22:10:33 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll   [2242048]
O44 - LFC:[MD5.254502230F2259D255D4149C235173B1] - 09/06/2013 - 22:10:33 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\SysNative\jsproxy.dll   [53248]
O44 - LFC:[MD5.254502230F2259D255D4149C235173B1] - 09/06/2013 - 22:10:33 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll   [53248]
O44 - LFC:[MD5.C56EF4C50A1FEED0CC9B7AE068CBBBBB] - 09/06/2013 - 22:10:30 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysNative\mshtml.dll   [19231232]
O44 - LFC:[MD5.C56EF4C50A1FEED0CC9B7AE068CBBBBB] - 09/06/2013 - 22:10:30 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll   [19231232]
O44 - LFC:[MD5.7F4F74880E0B586EB7A9E225C34B1296] - 09/06/2013 - 22:10:29 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll   [15404032]
O44 - LFC:[MD5.7F4F74880E0B586EB7A9E225C34B1296] - 09/06/2013 - 22:10:29 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll   [15404032]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/06/2013 - 17:21:47 ---A- . (...) -- C:\Windows\SysNative\HP_ActiveX_Patch_NOT_DETECTED.txt   [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/06/2013 - 17:21:47 RSHAD . (...) -- C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt   [0]
O44 - LFC:[MD5.6F30C400CE17F9B0BDC535F0C7B09074] - 08/06/2013 - 17:10:43 ---A- . (...) -- C:\Windows\IE10_main.log   [16771]
O44 - LFC:[MD5.F6FF7917A2E1270C0DDE19E096A7808F] - 08/06/2013 - 17:10:38 ---A- . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\Windows\SysNative\IEUDINIT.EXE   [28672]
O44 - LFC:[MD5.F6FF7917A2E1270C0DDE19E096A7808F] - 08/06/2013 - 17:10:38 RSHAD . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\Windows\System32\IEUDINIT.EXE   [28672]
O44 - LFC:[MD5.1FF56AC32B38A94C3C88497BD6E00C96] - 08/06/2013 - 17:06:18 ---A- . (...) -- C:\Windows\SysNative\ieuinit.inf   [25185]
O44 - LFC:[MD5.1FF56AC32B38A94C3C88497BD6E00C96] - 08/06/2013 - 17:06:18 ---A- . (...) -- C:\Windows\System32\ieuinit.inf   [25185]
O44 - LFC:[MD5.40738329209CBE2C9B48F7E30F7C1414] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Auto-extracteur de fichier CAB Win32.) -- C:\Windows\SysNative\wextract.exe   [144896]
O44 - LFC:[MD5.40738329209CBE2C9B48F7E30F7C1414] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Auto-extracteur de fichier CAB Win32.) -- C:\Windows\System32\wextract.exe   [144896]
O44 - LFC:[MD5.BC0D4AFBE94D8E1F81C8926D805C3366] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\SysNative\webcheck.dll   [247296]
O44 - LFC:[MD5.BC0D4AFBE94D8E1F81C8926D805C3366] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll   [247296]
O44 - LFC:[MD5.D8DD5CBB9668EEE98915EA49C72F78FA] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Convertisseur Microsoft HTML.) -- C:\Windows\SysNative\html.iec   [441856]
O44 - LFC:[MD5.D8DD5CBB9668EEE98915EA49C72F78FA] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Convertisseur Microsoft HTML.) -- C:\Windows\System32\html.iec   [441856]
O44 - LFC:[MD5.EC08E38751854C5B8899139B7DD29FF9] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\SysNative\msrating.dll   [197120]
O44 - LFC:[MD5.EC08E38751854C5B8899139B7DD29FF9] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll   [197120]
O44 - LFC:[MD5.D8076F8A3C34064582035AE6696DC34A] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de licences Microsoft®.) -- C:\Windows\SysNative\licmgr10.dll   [27648]
O44 - LFC:[MD5.D8076F8A3C34064582035AE6696DC34A] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de licences Microsoft®.) -- C:\Windows\System32\licmgr10.dll   [27648]
O44 - LFC:[MD5.3531FA12A76A32ECECD972196775DF7C] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - ELS Hyphenation Service.) -- C:\Windows\SysNative\elshyph.dll   [226304]
O44 - LFC:[MD5.3531FA12A76A32ECECD972196775DF7C] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - ELS Hyphenation Service.) -- C:\Windows\System32\elshyph.dll   [226304]
O44 - LFC:[MD5.402D797A7905DC3C6FE11E75CD5252EB] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\SysNative\url.dll   [235008]
O44 - LFC:[MD5.402D797A7905DC3C6FE11E75CD5252EB] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll   [235008]
O44 - LFC:[MD5.E1055A7FAD39F1F7C44F6152044056EA] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\SysNative\mshtmlmedia.dll   [905728]
O44 - LFC:[MD5.E1055A7FAD39F1F7C44F6152044056EA] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll   [905728]
O44 - LFC:[MD5.23556D116D5FB93395B2A648EEB24251] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft Information Card IE Helper.) -- C:\Windows\SysNative\icardie.dll   [81408]
O44 - LFC:[MD5.23556D116D5FB93395B2A648EEB24251] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft Information Card IE Helper.) -- C:\Windows\System32\icardie.dll   [81408]
O44 - LFC:[MD5.112183DF91C9BAECB498E4A86ECDE598] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft Line Services library file.) -- C:\Windows\SysNative\msls31.dll   [216064]
O44 - LFC:[MD5.112183DF91C9BAECB498E4A86ECDE598] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft Line Services library file.) -- C:\Windows\System32\msls31.dll   [216064]
O44 - LFC:[MD5.8C3D32A4A46326031309A43C52539D7F] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter Data File.) -- C:\Windows\SysNative\ieapfltr.dat   [1400416]
O44 - LFC:[MD5.8C3D32A4A46326031309A43C52539D7F] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter Data File.) -- C:\Windows\System32\ieapfltr.dat   [1400416]
O44 - LFC:[MD5.1456EECCB5CF6B91513200F95D61706E] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\SysNative\ieapfltr.dll   [762368]
O44 - LFC:[MD5.1456EECCB5CF6B91513200F95D61706E] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll   [762368]
O44 - LFC:[MD5.5051BB40FFB2BA4870C0A059CA03294F] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe   [1054720]
O44 - LFC:[MD5.4CFBEC37E4FAD530E623E1541E1EA958] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\SysNative\vbscript.dll   [599552]
O44 - LFC:[MD5.4CFBEC37E4FAD530E623E1541E1EA958] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll   [599552]
O44 - LFC:[MD5.2AAE2B8FED8390879C2369FC63F7001F] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\SysNative\mshtmled.dll   [97280]
O44 - LFC:[MD5.2AAE2B8FED8390879C2369FC63F7001F] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll   [97280]
O44 - LFC:[MD5.4E426A67C46379B75A5E671B46FC07F6] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Moteur d'installation.) -- C:\Windows\SysNative\inseng.dll   [102912]
O44 - LFC:[MD5.4E426A67C46379B75A5E671B46FC07F6] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Moteur d'installation.) -- C:\Windows\System32\inseng.dll   [102912]
O44 - LFC:[MD5.CF1387441D1096DBD4A23E155F1EE958] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\SysNative\ieUnatt.exe   [173568]
O44 - LFC:[MD5.CF1387441D1096DBD4A23E155F1EE958] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe   [173568]
O44 - LFC:[MD5.ADE73A865A5F136E84F49BB6B1627C6E] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\SysNative\inetcpl.cpl   [1509376]
O44 - LFC:[MD5.ADE73A865A5F136E84F49BB6B1627C6E] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl   [1509376]
O44 - LFC:[MD5.D0F66CFAED5B85543216EF526D380B8B] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\SysNative\iedkcs32.dll   [270848]
O44 - LFC:[MD5.D0F66CFAED5B85543216EF526D380B8B] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll   [270848]
O44 - LFC:[MD5.D9C10A4A0B3411146E6FC8936B079934] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Wizard.) -- C:\Windows\SysNative\iexpress.exe   [167424]
O44 - LFC:[MD5.D9C10A4A0B3411146E6FC8936B079934] - 08/06/2013 - 17:06:18 ---A- . (.Microsoft Corporation - Wizard.) -- C:\Windows\System32\iexpress.exe   [167424]
O44 - LFC:[MD5.5051BB40FFB2BA4870C0A059CA03294F] - 08/06/2013 - 17:06:18 RSHAD . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe   [1054720]
O44 - LFC:[MD5.E965529C43D25F2BDA77D705098BF777] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - ADVPACK.) -- C:\Windows\SysNative\IEAdvpack.dll   [135680]
O44 - LFC:[MD5.E965529C43D25F2BDA77D705098BF777] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - ADVPACK.) -- C:\Windows\System32\IEAdvpack.dll   [135680]
O44 - LFC:[MD5.942E110384668EEFF44751A02EDDF5E4] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - DLL de ressource du composant d'édition HTM.) -- C:\Windows\SysNative\mshtmler.dll   [48640]
O44 - LFC:[MD5.942E110384668EEFF44751A02EDDF5E4] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - DLL de ressource du composant d'édition HTM.) -- C:\Windows\System32\mshtmler.dll   [48640]
O44 - LFC:[MD5.658E8FEC79A4AB5BFDE032627B5C9667] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) -- C:\Windows\SysNative\mshta.exe   [13824]
O44 - LFC:[MD5.658E8FEC79A4AB5BFDE032627B5C9667] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) -- C:\Windows\System32\mshta.exe   [13824]
O44 - LFC:[MD5.C2F21E3059AFF5E616F3E361D9FA10CD] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - IE PNG plugin image decoder.) -- C:\Windows\SysNative\pngfilt.dll   [62976]
O44 - LFC:[MD5.C2F21E3059AFF5E616F3E361D9FA10CD] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - IE PNG plugin image decoder.) -- C:\Windows\System32\pngfilt.dll   [62976]
O44 - LFC:[MD5.5B15164486C66B76699E1CD2CD2F3A2A] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - IE plugin image decoder support DLL.) -- C:\Windows\SysNative\imgutil.dll   [51200]
O44 - LFC:[MD5.5B15164486C66B76699E1CD2CD2F3A2A] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - IE plugin image decoder support DLL.) -- C:\Windows\System32\imgutil.dll   [51200]
O44 - LFC:[MD5.82D602EBBBA6D08E4691F32269FD3494] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\SysNative\msfeedssync.exe   [12800]
O44 - LFC:[MD5.82D602EBBBA6D08E4691F32269FD3494] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe   [12800]
O44 - LFC:[MD5.D0D4CE6C6CE87269A34A184356475D17] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Object Control Viewer.) -- C:\Windows\SysNative\occache.dll   [149504]
O44 - LFC:[MD5.D0D4CE6C6CE87269A34A184356475D17] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Object Control Viewer.) -- C:\Windows\System32\occache.dll   [149504]
O44 - LFC:[MD5.18A94D6E9D27D169D38DAB91F6A97518] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Objets homologues Internet Explorer.) -- C:\Windows\SysNative\iepeers.dll   [136192]
O44 - LFC:[MD5.18A94D6E9D27D169D38DAB91F6A97518] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Objets homologues Internet Explorer.) -- C:\Windows\System32\iepeers.dll   [136192]
O44 - LFC:[MD5.F651D95B5043EFC20A6108A853553984] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Sets the date that IE was installed.) -- C:\Windows\SysNative\SetIEInstalledDate.exe   [92160]
O44 - LFC:[MD5.F651D95B5043EFC20A6108A853553984] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Sets the date that IE was installed.) -- C:\Windows\System32\SetIEInstalledDate.exe   [92160]
O44 - LFC:[MD5.63CAE56FE4215F98FEB0188748A99378] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\SysNative\msfeedsbs.dll   [52224]
O44 - LFC:[MD5.63CAE56FE4215F98FEB0188748A99378] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\System32\msfeedsbs.dll   [52224]
O44 - LFC:[MD5.440104AEB9DAF8AC9842080AE59740FA] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - TDC ActiveX Control.) -- C:\Windows\SysNative\tdc.ocx   [77312]
O44 - LFC:[MD5.440104AEB9DAF8AC9842080AE59740FA] - 08/06/2013 - 17:06:17 ---A- . (.Microsoft Corporation - TDC ActiveX Control.) -- C:\Windows\System32\tdc.ocx   [77312]
O44 - LFC:[MD5.7E8A672B7B06A6EB11960C22E0360C59] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Bibliothèque Microsoft D2D.) -- C:\Windows\SysNative\d2d1.dll   [3928064]
O44 - LFC:[MD5.7E8A672B7B06A6EB11960C22E0360C59] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Bibliothèque Microsoft D2D.) -- C:\Windows\System32\d2d1.dll   [3928064]
O44 - LFC:[MD5.893E8C1E4A1263EDDB1A6922D0E32201] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Codec pour photographie Windows Media Photo.) -- C:\Windows\SysNative\WMPhoto.dll   [465920]
O44 - LFC:[MD5.893E8C1E4A1263EDDB1A6922D0E32201] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Codec pour photographie Windows Media Photo.) -- C:\Windows\System32\WMPhoto.dll   [465920]
O44 - LFC:[MD5.C498EF41B93986BCBD483597573EB96D] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 Rasterizer.) -- C:\Windows\SysNative\d3d10warp.dll   [2565120]
O44 - LFC:[MD5.C498EF41B93986BCBD483597573EB96D] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 Rasterizer.) -- C:\Windows\System32\d3d10warp.dll   [2565120]
O44 - LFC:[MD5.B2CA1AC17E78D986B22FD6C2261CD84F] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\SysNative\d3d10.dll   [1238528]
O44 - LFC:[MD5.AFB73882AE41E1629A63E6713FE30FB9] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\SysNative\d3d10core.dll   [296960]
O44 - LFC:[MD5.B2CA1AC17E78D986B22FD6C2261CD84F] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\System32\d3d10.dll   [1238528]
O44 - LFC:[MD5.AFB73882AE41E1629A63E6713FE30FB9] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\System32\d3d10core.dll   [296960]
O44 - LFC:[MD5.3834316FE8A653227282196525E07DFE] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 to Direct3D9 Translation Runtim.) -- C:\Windows\SysNative\d3d10level9.dll   [648192]
O44 - LFC:[MD5.3834316FE8A653227282196525E07DFE] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10 to Direct3D9 Translation Runtim.) -- C:\Windows\System32\d3d10level9.dll   [648192]
O44 - LFC:[MD5.9AE80F6A66B30E3ED8CDF858CF28B11B] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\SysNative\d3d10_1.dll   [194560]
O44 - LFC:[MD5.63F72417CA38D8FC8F53709649B589E3] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\SysNative\d3d10_1core.dll   [333312]
O44 - LFC:[MD5.9AE80F6A66B30E3ED8CDF858CF28B11B] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\System32\d3d10_1.dll   [194560]
O44 - LFC:[MD5.63F72417CA38D8FC8F53709649B589E3] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\System32\d3d10_1core.dll   [333312]
O44 - LFC:[MD5.448B02AD260EC3E1E892FCE6DFDDEEBD] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 11 Runtime.) -- C:\Windows\SysNative\d3d11.dll   [1887232]
O44 - LFC:[MD5.448B02AD260EC3E1E892FCE6DFDDEEBD] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Direct3D 11 Runtime.) -- C:\Windows\System32\d3d11.dll   [1887232]
O44 - LFC:[MD5.8DFB5752FCE145A6B295093C0A8BE131] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - DirectX Graphics Infrastructure.) -- C:\Windows\SysNative\dxgi.dll   [363008]
O44 - LFC:[MD5.8DFB5752FCE145A6B295093C0A8BE131] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - DirectX Graphics Infrastructure.) -- C:\Windows\System32\dxgi.dll   [363008]
O44 - LFC:[MD5.E8EEA503870CB6A6DC4E09A2433DF33E] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Microsoft DTV-DVD Video Decoder.) -- C:\Windows\SysNative\msmpeg2vdec.dll   [2776576]
O44 - LFC:[MD5.E8EEA503870CB6A6DC4E09A2433DF33E] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Microsoft DTV-DVD Video Decoder.) -- C:\Windows\System32\msmpeg2vdec.dll   [2776576]
O44 - LFC:[MD5.F1C19F0AA151B90A7416FA1D50DDB582] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Extended Library.) -- C:\Windows\SysNative\WindowsCodecsExt.dll   [245248]
O44 - LFC:[MD5.F1C19F0AA151B90A7416FA1D50DDB582] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Extended Library.) -- C:\Windows\System32\WindowsCodecsExt.dll   [245248]
O44 - LFC:[MD5.BDDF242A49E7B7DC5CCEC291BCE53ACB] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\SysNative\WindowsCodecs.dll   [1424384]
O44 - LFC:[MD5.BDDF242A49E7B7DC5CCEC291BCE53ACB] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll   [1424384]
O44 - LFC:[MD5.C4C183E6551084039EC862DA1C945E3D] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Service de cache de police Windows.) -- C:\Windows\SysNative\FntCache.dll   [1175552]
O44 - LFC:[MD5.63BB89DED1E9104E68D33E54DE4D340D] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\SysNative\DWrite.dll   [1643520]
O44 - LFC:[MD5.63BB89DED1E9104E68D33E54DE4D340D] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\System32\DWrite.dll   [1643520]
O44 - LFC:[MD5.04CB7C8FDC6D9640DD82A527208F72C4] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Windows Animation Manager.) -- C:\Windows\SysNative\UIAnimation.dll   [221184]
O44 - LFC:[MD5.04CB7C8FDC6D9640DD82A527208F72C4] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - Windows Animation Manager.) -- C:\Windows\System32\UIAnimation.dll   [221184]
O44 - LFC:[MD5.FA428BDBCFAB9DC3D58F0BD2CCD50EA2] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - XPS Printing DLL.) -- C:\Windows\SysNative\XpsPrint.dll   [1682432]
O44 - LFC:[MD5.FA428BDBCFAB9DC3D58F0BD2CCD50EA2] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - XPS Printing DLL.) -- C:\Windows\System32\XpsPrint.dll   [1682432]
O44 - LFC:[MD5.6F623BD09CBB4C3F97374F12976E5EA5] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\SysNative\XpsGdiConverter.dll   [522752]
O44 - LFC:[MD5.6F623BD09CBB4C3F97374F12976E5EA5] - 08/06/2013 - 17:04:29 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\System32\XpsGdiConverter.dll   [522752]
O44 - LFC:[MD5.F49E92B50CED5C9F1725D3C0329FD933] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll   [10752]
O44 - LFC:[MD5.F5CEF064C7E6D95DA86B9D064A56A969] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll   [3584]
O44 - LFC:[MD5.64A4AB126E24FD3F58EBE64852773DB5] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll   [2560]
O44 - LFC:[MD5.0E6FBF19D9DFBB77316C23DF91F8A101] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll   [5632]
O44 - LFC:[MD5.9108540E866F75C7AF2B91DD921A8091] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll   [3072]
O44 - LFC:[MD5.AFC3DB5C6EB8CA8017DDB81D6C0AD02A] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll   [9728]
O44 - LFC:[MD5.FB4045578F5180BDB1963AB352B78548] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll   [5632]
O44 - LFC:[MD5.72723D3E4781BADC62C3180C137E7B23] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll   [4096]
O44 - LFC:[MD5.9094039A00485F71C4DE64BF51F64C46] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll   [3072]
O44 - LFC:[MD5.F49E92B50CED5C9F1725D3C0329FD933] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll   [10752]
O44 - LFC:[MD5.F5CEF064C7E6D95DA86B9D064A56A969] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll   [3584]
O44 - LFC:[MD5.64A4AB126E24FD3F58EBE64852773DB5] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll   [2560]
O44 - LFC:[MD5.0E6FBF19D9DFBB77316C23DF91F8A101] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll   [5632]
O44 - LFC:[MD5.9108540E866F75C7AF2B91DD921A8091] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll   [3072]
O44 - LFC:[MD5.AFC3DB5C6EB8CA8017DDB81D6C0AD02A] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll   [9728]
O44 - LFC:[MD5.FB4045578F5180BDB1963AB352B78548] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll   [5632]
O44 - LFC:[MD5.72723D3E4781BADC62C3180C137E7B23] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll   [4096]
O44 - LFC:[MD5.9094039A00485F71C4DE64BF51F64C46] - 08/06/2013 - 17:04:29 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll   [3072]
O44 - LFC:[MD5.C4C183E6551084039EC862DA1C945E3D] - 08/06/2013 - 17:04:29 RSHAD . (.Microsoft Corporation - Service de cache de police Windows.) -- C:\Windows\System32\FntCache.dll   [1175552]
O44 - LFC:[MD5.511CFB8E0436D77DA67435D2494759DD] - 05/06/2013 - 17:19:08 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT   [496328]
O44 - LFC:[MD5.511CFB8E0436D77DA67435D2494759DD] - 05/06/2013 - 17:19:08 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT   [496328]
O44 - LFC:[MD5.0B3F6C8F93C5C25977EA5A8B2E656357] - 04/06/2013 - 08:15:02 RSHAD . (.DEVGURU Co., LTD.(http://www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\Drivers\ssudbus.sys   [103448]
O44 - LFC:[MD5.EA8F41484CCC5BA6A1455C2AD3D1BE3C] - 04/06/2013 - 08:15:00 RSHAD . (.DEVGURU Co., LTD.(http://www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\Drivers\ssudmdm.sys   [203672]
O44 - LFC:[MD5.C65A3C67630A67A97AD26C21173BA61E] - 01/06/2013 - 12:56:58 RSHAD . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\Drivers\Apowersoft_AudioDevice.sys   [31920]
O44 - LFC:[MD5.5801BB0B48B9D66A7462D7B807599A81] - 01/06/2013 - 05:10:29 RSHAD . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\Drivers\idmwfp.sys   [168288]
O44 - LFC:[MD5.4DAFA018FCE10466ADEE83D2409648F7] - 30/05/2013 - 11:10:47 ---A- . (...) -- C:\hpqlb.log   [186]
O44 - LFC:[MD5.491ADA59899EDF870D89822F2D6D1ADF] - 30/05/2013 - 11:07:01 ---A- . (...) -- C:\Windows\DPINST.LOG   [370708]
O44 - LFC:[MD5.24F64343F14A119308456E1CA7507B26] - 30/05/2013 - 11:06:03 RSHAD . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\Drivers\NETw5s64.sys   [7680512]
O44 - LFC:[MD5.ECE95428E20B66EAAA6EB274F823D211] - 30/05/2013 - 11:03:36 ---A- . (.Intel Corporation - Coinstaller and NCPA 32 bit DLL - Next Gen.) -- C:\Windows\SysNative\NETwNc64.dll   [799232]
O44 - LFC:[MD5.A011BB9B8D895C648E1F0B32D5E98D96] - 30/05/2013 - 11:03:36 ---A- . (.Intel Corporation - Coinstaller and NCPA 32 bit DLL - Next Gen.) -- C:\Windows\SysNative\NETwNr64.dll   [2750464]
O44 - LFC:[MD5.ECE95428E20B66EAAA6EB274F823D211] - 30/05/2013 - 11:03:36 RSHAD . (.Intel Corporation - Coinstaller and NCPA 32 bit DLL - Next Gen.) -- C:\Windows\System32\NETwNc64.dll   [799232]
O44 - LFC:[MD5.A011BB9B8D895C648E1F0B32D5E98D96] - 30/05/2013 - 11:03:36 RSHAD . (.Intel Corporation - Coinstaller and NCPA 32 bit DLL - Next Gen.) -- C:\Windows\System32\NETwNr64.dll   [2750464]
O44 - LFC:[MD5.B9C587BDAA61A689883439D5AE6FE7F3] - 30/05/2013 - 11:03:36 RSHAD . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\Drivers\NETwNs64.sys   [8507392]
O44 - LFC:[MD5.088AB412D2D5DDB123AA36524A511426] - 28/05/2013 - 20:42:51 ---A- . (...) -- C:\Windows\win.ini   [513]
~ Files: 195 Scanned in 00mn 21s



-
#48777
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Notification Packages . (.DigitalPersona, Inc. - DPPwdFlt Module.) -- C:\Windows\System32\DPPWDFLT.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys
~ CSB: 15 Scanned in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{877c8ca2-b8c9-11e2-96d4-806e6f6e6963}\AutoRun\command. (...) -- G:\autorun.exe (.not file.)
O51 - MPSK:{971bfdc5-c292-11e2-964c-a8c458af8486}\AutoRun\command. (...) -- I:\install.exe (.not file.)
O51 - MPSK:{a9480a8d-c110-11e2-bcdb-fbee20eea69d}\AutoRun\command. (...) -- H:\LaunchU3.exe (.not file.)
~ Keys:  Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
~ MWPS: 17 Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.1CFFE9C06E66A57DAE1452E449A58240] - 08/07/2009 - 13:48:50 ---A- . (.Hewlett-Packard - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys   [41272]
~ Drivers:  Scanned in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS:  Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\adp94xx.sys (adp94xx)  .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\adpahci.sys (adpahci)  .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\adpu320.sys (adpu320)  .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\aliide.sys (aliide)  .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdide.sys (amdide)  .(.Microsoft Corporation - Pilote IDE AMD.) - LEGACY_AMDIDE
O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\amdsata.sys (amdsata)  .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\amdsbs.sys (amdsbs)  .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\arc.sys (arc)  .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\arcsas.sys (arcsas)  .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi)  .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 31/05/2013 - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130531.001\BHDrvx64.sys (BHDrvx64)  .(.Symantec Corporation - BASH Driver.) - LEGACY_BHDRVX64
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 16/11/2012 - C:\Windows\system32\drivers\N360x64\1403010.016\ccSetx64.sys (ccSet_N360)  .(.Symantec Corporation - Common Client Settings Driver.) - LEGACY_CCSET_N360
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs)  .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\cmdide.sys (cmdide)  .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 10/04/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 18/08/2012 - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (eeCtrl)  .(.Symantec Corporation - Symantec Eraser Control Driver.) - LEGACY_EECTRL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\elxstor.sys (elxstor)  .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 18/08/2012 - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (EraserUtilRebootDrv)  .(.Symantec Corporation - Symantec Eraser Utility Driver.) - LEGACY_ERASERUTILREBOOTDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat)  .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\HpSAMD.sys (HpSAMD)  .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\iaStorV.sys (iaStorV)  .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV
O64 - Services: CurCS - 25/05/2013 - C:\Windows\System32\DRIVERS\idmwfp.sys (IDMWFP)  .(.Tonec Inc. - Internet Download Manager WFP Driver.) - LEGACY_IDMWFP
O64 - Services: CurCS - 09/05/2013 - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130611.001\IDSvia64.sys (IDSVia64)  .(.Symantec Corporation - IDS Core Driver.) - LEGACY_IDSVIA64
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\iirsp.sys (iirsp)  .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\intelide.sys (intelide)  .(.Microsoft Corporation - Intel PCI IDE Driver.) - LEGACY_INTELIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\isapnp.sys (isapnp)  .(.Microsoft Corporation - Pilote de bus PNP ISA.) - LEGACY_ISAPNP
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_fc.sys (LSI_FC)  .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_sas.sys (LSI_SAS)  .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_sas2.sys (LSI_SAS2)  .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_scsi.sys (LSI_SCSI)  .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\megasas.sys (megasas)  .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\MegaSR.sys (MegaSR)  .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci)  .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msdsm.sys (msdsm)  .(.Microsoft Corporation - Module spécifique de périphériques Microsof.) - LEGACY_MSDSM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP)  .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/05/2013 - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130611.018\ENG64.sys (NAVENG)  .(.Symantec Corporation - AV Engine.) - LEGACY_NAVENG
O64 - Services: CurCS - 22/05/2013 - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130611.018\EX64.sys (NAVEX15)  .(.Symantec Corporation - AV Engine.) - LEGACY_NAVEX15
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio)  .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nfrd960.sys (nfrd960)  .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\nvraid.sys (nvraid)  .(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\nvstor.sys (nvstor)  .(.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pciide.sys (pciide)  .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_PCIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\ql2300.sys (ql2300)  .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\ql40xx.sys (ql40xx)  .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\sbp2port.sys (sbp2port)  .(.Microsoft Corporation - SBP-2 Protocol Driver.) - LEGACY_SBP2PORT
O64 - Services: CurCS - 27/02/2013 - Pas de propriétaire (SBUpdd)  .(...) - LEGACY_SBUPDD
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\SiSRaid2.sys (SiSRaid2)  .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\sisraid4.sys (SiSRaid4)  .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 29/01/2013 - C:\Windows\system32\Drivers\N360x64\1403010.016\SRTSP64.sys (SRTSP)  .(.Symantec Corporation - Symantec AutoProtect.) - LEGACY_SRTSP
O64 - Services: CurCS - 29/01/2013 - C:\Windows\system32\drivers\N360x64\1403010.016\SRTSPX64.sys (SRTSPX)  .(.Symantec Corporation - Symantec AutoProtect.) - LEGACY_SRTSPX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\stexstor.sys (stexstor)  .(.Promise Technology - Promise  SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR
O64 - Services: CurCS - 22/01/2013 - C:\Windows\System32\drivers\N360x64\1403010.016\SYMDS64.sys (SymDS)  .(.Symantec Corporation - Symantec Data Store.) - LEGACY_SYMDS
O64 - Services: CurCS - 31/01/2013 - C:\Windows\System32\drivers\N360x64\1403010.016\SYMEFA64.sys (SymEFA)  .(.Symantec Corporation - Symantec Extended File Attributes.) - LEGACY_SYMEFA
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\Drivers\SYMEVENT64x86.sys (SymEvent)  .(.Symantec Corporation - Symantec Event Library.) - LEGACY_SYMEVENT
O64 - Services: CurCS - 16/11/2012 - C:\Windows\system32\drivers\N360x64\1403010.016\Ironx64.sys (SymIRON)  .(.Symantec Corporation - Iron Driver.) - LEGACY_SYMIRON
O64 - Services: CurCS - 31/01/2013 - C:\Windows\system32\Drivers\N360x64\1403010.016\SYMNETS.sys (SymNetS)  .(.Symantec Corporation - Network Security Driver.) - LEGACY_SYMNETS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 16/11/2012 - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys (TuneUpUtilitiesDrv)  .(.TuneUp Software - TuneUp Utilities Driver.) - LEGACY_TUNEUPUTILITIESDRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs)  .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\viaide.sys (viaide)  .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vsmraid.sys (vsmraid)  .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt)  .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wd.sys (Wd)  .(.Microsoft Corporation - Microsoft Watchdog Timer Driver.) - LEGACY_WD
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\ws2ifsl.sys (ws2ifsl)  .(.Microsoft Corporation - Couche IFS Winsock2.) - LEGACY_WS2IFSL
O64 - Services: CurCS - 26/07/2012 - C:\Windows\system32\drivers\Wudfpf.sys (WudfPf)  .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
O64 - Services: CurCS - 19/03/2013 - C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl ({09F57980-3432-4AFC-957D-27AC45FAE1F5})  .(.CyberLink Corp. - Pas de description.) - LEGACY_{09F57980-3432-4AFC-957D-27AC45FAE1F5}
O64 - Services: CurCS - 16/10/2009 - c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl ({55662437-DA8C-40c0-AADA-2C816A897A49})  .(.CyberLink Corp. - Pas de description.) - LEGACY_{55662437-DA8C-40C0-AADA-2C816A897A49}
~ Legacy: 122 Scanned in 00mn 01s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s
#48778
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("aol_toolbar.default.homepage.check", false);
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("aol_toolbar.default.search.check", false);
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.BabylonToolbar.prtkDS", 0);   =Toolbar.Babylon
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.BabylonToolbar.prtkHmpg", 0);   =Toolbar.Babylon
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.crossrider.bic", "13f322324bf1ef699560436de4db9730");   =PUP.CrossRider
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.admin", false);
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.aflt", "babsst");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.autoRvrt", "false");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.dfltLng", "en");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.excTlbr", false);
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.ffxUnstlRst", true);
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.id", "0ab8aed900000000000000231401351c");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.instlDay", "15867");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.instlRef", "sst");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.newTab", false);
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.prdct", "delta");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.prtnrId", "delta");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.rvrt", "false");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.smplGrp", "none");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.tlbrId", "base");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.tlbrSrchUrl", "");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.vrsn", "1.8.21.5");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.vrsnTs", "1.8.21.58:56:27");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta.vrsni", "1.8.21.5");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta_i.babExt", "");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta_i.babTrack", "affID=121845");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.delta_i.srcExt", "ss");
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");   =PUP.SweetIM
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");   =PUP.SweetIM
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");   =PUP.SweetIM
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.previous.keyword.URL", "");   =PUP.SweetIM
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");   =PUP.SweetIM
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");   =PUP.SweetIM
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");   =PUP.SweetIM
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("sweetim.toolbar.searchguard.enable", "");   =PUP.SweetIM
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com   =Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {7F4EFF06-7032-458e-AE16-1C1D8255C28A} [DefaultScope] - (Speedbit Search) - http://go.speedbit.com
~ Keys:  Scanned in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316928]
O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.TuneUp Software - TuneUp Theme Extension.) -- C:\Windows\System32\uxtuneup.dll   [37664]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Services: 33 Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.DAD557E7BF757C0CADC0DF43D1BBBE34] [SPRF][11/06/2013] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\8C651E12-A9F9-4AFD-A2E4-69316FE768B7.dat   [43467]
[MD5.DE3636B66B3178C20C4DADD4E6C3F5C2] [SPRF][13/05/2013] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\cabex.dll   [105064]
[MD5.FAC2F53DE7FFFFCFC2FCC49E91DD5D48] [SPRF][11/06/2013] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\FE2521C7-8B4A-4029-9BE9-B7FBDFD3E1B3.dat   [43883]
[MD5.9EB1BD3FBA9F932115BD589994036A02] [SPRF][11/06/2013] (.Solid State Networks - Adobe Flash Player Installer.) -- C:\Users\33-fifix-33\AppData\Local\Temp\install_flashplayer11x32_mssd_aih [1].exe   [1034464]
[MD5.5A8FB4C5F12D8BE07E099FA52131466B] [SPRF][14/05/2012] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\RunWizards.exe   [129720]
[MD5.155E34BEB6D5DC3419FFAF9183112E82] [SPRF][25/04/2013] (...) -- C:\Users\33-fifix-33\AppData\Roaming\Audials_One-Setup.exe   [98526320]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][27/05/2013] (...) -- C:\Users\33-fifix-33\AppData\Roaming\wklnhst.dat   [0]
[MD5.EB847C980822FB5BCE60761BD70CD9A6] [SPRF][25/05/2013] (.MGTEK - Adblock IE Installer.) -- C:\Users\33-fifix-33\Desktop\adblockie_1.1.exe   [967512]
[MD5.74818EEAE97E13AAC6F236B4DE36FA40] [SPRF][30/05/2013] (.Lkgamfprdiuig - Mhzwvgevpfw.) -- C:\Users\33-fifix-33\Desktop\plus-hd-2-6.exe   [4829336]
[MD5.ED324284FA119EF0F240AC9E2262D666] [SPRF][30/05/2013] (.Microsoft Corporation - Windows Media Component Setup Application.) -- C:\Users\33-fifix-33\Desktop\wmpfirefoxplugin.exe   [318904]
~ Files:  Scanned in 00mn 06s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{C957A581-73F8-4A3F-B992-1A6F44E6076F}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
O87 - FAEL: "{462C8E15-7B66-4248-B592-38370F761B60}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{E8DF6D94-D12E-4F7B-A0A9-058CBA33B622}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
O87 - FAEL: "{043EDCD2-5454-45D5-A853-F0B91412DD48}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{B0C3623F-F8A8-4CDB-96BD-53BCEA49AEFF}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP DVDSmart Main Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
O87 - FAEL: "{2096B783-9CF2-43E7-A855-7CFA142E2C34}" | In - Private - P6 - TRUE | .(.Hewlett-Packard Co. - DeviceSetup.exe.) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\DeviceSetup.exe
O87 - FAEL: "{F88B5E98-E942-43D5-9081-AA318CA71C4E}" | In - Private - P17 - TRUE | .(.Hewlett-Packard Co. - DeviceSetup.exe.) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\DeviceSetup.exe
O87 - FAEL: "{1DCAE411-7174-4CF8-8C55-F276A9CA5C9B}" | In - Private - P6 - TRUE | .(.Hewlett-Packard Co. - HPNetworkCommunicator.) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe
O87 - FAEL: "{F59DF030-3378-46AF-8DBE-A45DE77CA8BB}" | In - Private - P17 - TRUE | .(.Hewlett-Packard Co. - HPNetworkCommunicator.) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe
O87 - FAEL: "{E5CC69CA-57B4-41BB-9FC8-811934B3254F}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\33-fifix-33\AppData\Roaming\uTorrent\uTorrent.exe   =P2P.µTorrent
O87 - FAEL: "{05E67F68-FA71-4948-9D87-2FCCD0B4A312}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\33-fifix-33\AppData\Roaming\uTorrent\uTorrent.exe   =P2P.µTorrent
O87 - FAEL: "{9069D16B-3A77-433F-87F5-A42EDC8F9EEF}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{1C33134C-B5A0-408C-AF9D-57E41D012510}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{FFCF997D-B9A0-412A-9E05-8C7CBFE3B9B0}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{1178F306-3D1D-4916-AC19-DB373D9AE721}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{D5A08E07-716C-44AE-B4B5-725B57F0C779}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{24937FBF-64E2-4893-B82F-D58E1A5AA487}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{EEA83220-CBA2-48D7-9421-DEFCEC17D4BE}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{D851A51F-3F37-4F9E-AC14-B3B11A1DF47F}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe
O87 - FAEL: "{89BA31B9-C129-4FC9-A8B3-F383C94A7365}" | In - Public - P6 - TRUE | .(.Nero AG - Nero Blu-ray Player.) -- C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
O87 - FAEL: "{28420731-90B0-4E3C-A0D1-526210848B78}" | In - Public - P17 - TRUE | .(.Nero AG - Nero Blu-ray Player.) -- C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
O87 - FAEL: "{96B10ACD-D62C-4DBA-A7B3-045ED9115B00}" | In - Public - P6 - TRUE | .(.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
O87 - FAEL: "{6DC0DDE7-97BE-4B6E-821F-34431BCD934E}" | In - Public - P17 - TRUE | .(.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
O87 - FAEL: "{3347324D-72BB-41DA-9276-CB6B8DE773CA}" | In - Public - P6 - TRUE | .(.Nero AG - Nero Kwik Media.) -- C:\Program Files (x86)\Nero\KM\KwikMedia.exe
O87 - FAEL: "{C363FB19-4F9C-4F7B-B339-CA339AE51D77}" | In - Public - P17 - TRUE | .(.Nero AG - Nero Kwik Media.) -- C:\Program Files (x86)\Nero\KM\KwikMedia.exe
O87 - FAEL: "{C337B735-0660-44FD-9E21-E59EF468F38D}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
O87 - FAEL: "{4A9D7907-F69F-47AF-B2EC-E76A222A9347}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{870C7835-65ED-4F0B-9C40-8FE285BFCB58}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{1CFF4C2C-BC1A-44A4-BBA5-EAABF1CA2158}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{548EE122-7AEC-4F10-BC5C-79238624BEB4}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{43D82CEE-36AC-483B-A7B9-2C1654B313F2}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{560611FF-A026-440C-9332-9AA0C4EA4EFD}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{3865F33C-3081-46DB-938C-5073AA2730BA}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{D3EC5CCE-15D3-4DCF-8E9C-7EF39F6DF9BB}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{2B5CC729-5A4C-40DC-9C3A-8EB695DFBBF4}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{056DEABA-7756-4922-BEB4-6FBF3A8B5B89}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{77AE906E-C0A9-4EE1-A2D5-795C6ADBDB3D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{981B4B23-CB87-49BF-9BE9-1FAE446E780A}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{40BAF75C-6E5D-4C08-AFAD-D073A86E692B}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{07C7F32F-86A7-4C10-995B-E8CE1876687A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{B256D054-3DA3-493E-8652-3F8038C691F6}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{0AB602B8-1AED-4FC6-983F-8377B32754BE}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{1C36CF13-8A62-458B-9FEA-06120FBD3FD6}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{4F40FBD7-374E-4317-8861-8128EB86601F}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{366DE911-372F-44C5-8B89-1A49248FD4C4}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{383275B0-C1FE-42B7-BED3-C54F708C6AD0}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{6132BCFA-AC7E-4D78-9118-8D1AAA4482AD}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{D92AA035-E8DE-44FE-AC56-6C9F9C8C02F6}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{7CFE8DC9-9C08-45ED-9AD9-93D453CE94DA}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{47AB030D-7E3A-4943-800A-0A38E4BE3E6B}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{F4959123-D1AB-41AE-BDCB-79BABE79F3F6}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{2CD9850C-6444-4355-B410-2FBD38439767}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{E74979E0-1021-4F6A-B310-E13F118754F8}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4CA73020-ADF4-4C95-966E-C582261D152A}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{2D9D2210-C7B0-4A8A-B285-71E03E0CE1E0}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{6E5185A5-4191-4CE8-8EC2-FE450D26C80A}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{5DF5AED0-1DDB-41DF-B365-A980DD3743C6}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{8928C723-7187-49FB-9F3F-135519184028}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{C2506911-5B0E-41F2-848F-49847E1814DA}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office\Office15\outlook.exe
O87 - FAEL: "{B1512FD5-7A1B-4BB7-BEDF-22683C90637C}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{9C813449-41EE-4EE6-A45E-A7A2ACD5636A}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{B36A565B-C44F-4825-84CE-ACB35F3CFFC5}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 13.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe
O87 - FAEL: "{C8618178-57DB-427B-9560-2AF8B8BD8517}" | In - None - P17 - TRUE | .(.CyberLink - Media Server Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
O87 - FAEL: "{7E936A96-5DA9-4B1E-938D-761EF749A1EE}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 13.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
O87 - FAEL: "{3A659BED-5CFF-4A34-A7F3-EAFD72019785}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 13.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13ML.exe
O87 - FAEL: "{64488BA0-C718-4688-B42D-615697D0F782}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 13.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD.exe
O87 - FAEL: "{5F5E8E04-541A-4AED-9257-844F5AB7FD0D}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 13 Main Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
O87 - FAEL: "{E78554AD-8E07-458F-9AA4-6F97FD0DD2AA}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{F2AB0B85-D7B4-4C66-A433-6C498DEDF058}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{18B61945-5C5B-4410-BB09-6D0C802B83CB}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{D652676B-CA6E-4995-A515-CD0F8E486986}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{D08513E8-4670-4CAD-A213-FA61E358577F}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{BA394EAD-9C35-4C3A-BC4C-9DF737A81D38}" | In - Domain - P17 - TRUE | .(.Audials AG - Audials.) -- C:\Program Files (x86)\Audials\Audials 10\Audials.exe
O87 - FAEL: "TCP Query User{9EDF665F-47B4-4985-9E81-EFA1793EFC3E}C:\program files (x86)\le robert\le robert collins\rcha.exe" | In - Public - P6 - TRUE | .(.Dictionnaire Le Robert.) -- C:\program files (x86)\le robert\le robert collins\rcha.exe
O87 - FAEL: "UDP Query User{8E5D86AB-6F50-46A7-A0A4-CF4608BD5B3D}C:\program files (x86)\le robert\le robert collins\rcha.exe" | In - Public - P17 - TRUE | .(.Dictionnaire Le Robert.) -- C:\program files (x86)\le robert\le robert collins\rcha.exe
O87 - FAEL: "{F2612D4B-D9A9-4C2E-86BB-0EB3D0ACB4A3}" | In - Private - P17 - TRUE | .(.Dictionnaire Le Robert - Le Robert Collins Hyperappel.) -- C:\program files (x86)\le robert\le robert collins\rcha.exe
O87 - FAEL: "{E66F3D87-B59C-40A9-BBD7-8E0D49FF27F5}" | In - Private - P6 - TRUE | .(.Dictionnaire Le Robert - Le Robert Collins Hyperappel.) -- C:\program files (x86)\le robert\le robert collins\rcha.exe
O87 - FAEL: "{E937A1A9-EE62-46CD-AF12-19361CCA14B6}" | In - Private - P6 - TRUE | .(.Realtek Semiconductor Corp. - RtWLan.) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
O87 - FAEL: "{CE792E50-8C4B-48AF-8B26-10185CA4B4DD}" | In - Private - P17 - TRUE | .(.Realtek Semiconductor Corp. - RtWLan.) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
O87 - FAEL: "{4166AC29-6661-4750-8B08-D553C0776240}" | In - None - P17 - TRUE | .(.Realtek - RtlDHCP.) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\Rtldhcp.exe
~ Firewall: 241 Scanned in 00mn 02s



-
#48779
---\\ Scan Additionnel (O88)
Database Version : v2.12437 - (10/06/2013)
Clés trouvées (Keys found) : 186
Valeurs trouvées (Values found) : 1
Dossiers trouvés  (Folders found) : 25
Fichiers trouvés  (Files found) : 0

[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}]   =Hijacker.SmartBar
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]   =Toolbar.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]   =Toolbar.Babylon
[HKCU\Software\delta LTD]   =Toolbar.DeltaSearch
[HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}]   =Toolbar.Agent
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =Toolbar.Babylon
[HKLM\Software\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}]   =Toolbar.Babylon
[HKCU\Software\Microsoft\Office\Word\Addins\BabylonOfficeAddin.OfficeAddin]   =Toolbar.Babylon
[HKLM\Software\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}]   =PUP.Whitesmoke
[HKLM\Software\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}]   =PUP.Whitesmoke
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASAPI32]   =Hijacker.SmartBar
[HKCU\Software\Microsoft\Office\PowerPoint\Addins\BabylonOfficeAddin.OfficeAddin]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASMANCS]   =Hijacker.SmartBar
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}]   =Adware.Agent
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}]   =Toolbar.TuneUp
[HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}]   =Toolbar.Wajam
[HKLM\Software\Wow6432Node\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}]   =Toolbar.Wajam
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =Toolbar.Babylon
[HKLM\Software\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}]   =Toolbar.Babylon
[HKLM\Software\Classes\AppID\escort.dll]   =Toolbar.Babylon
[HKLM\Software\Classes\AppID\escortapp.dll]   =Toolbar.Babylon
[HKLM\Software\Classes\AppID\escorteng.dll]   =Toolbar.Babylon
[HKLM\Software\Classes\AppID\esrv.EXE]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS]   =Toolbar.Bing
[HKLM\Software\Classes\escort.escortIEPane]   =PUP.Funmoods
[HKLM\Software\Classes\escort.escortIEPane.1]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb]   =Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160]   =Adware.PredictAd
[HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD]   =Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD]   =Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\90C64EA18BA25EE488BF80DCF07F2FFD]   =Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD]   =Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD]   =Toolbar.Agent
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater]   =Toolbar.Wajam
[HKLM\Software\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}]   =Toolbar.Agent
[HKLM\Software\Wow6432Node\BabylonToolbar]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Boxore]   =Adware.Boxore
[HKCU\Software\DataMngr]   =Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr]   =Adware.Bandoo
[HKCU\Software\lollipop]   =Adware.Lollipop
[HKLM\Software\Wow6432Node\Iminent]   =Adware.IMBooster
[HKCU\Software\Softonic]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\SP Global]   =PUP.AdvancedSystemProtector
[HKCU\Software\AppDataLow\SProtector]   =PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector]   =PUP.AdvancedSystemProtector
[HKLM\Software\Tarma Installer]   =Toolbar.Tarma
[HKCU\Software\AppDataLow\Toolbar]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Babylon_RASAPI32]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Babylon_RASMANCS]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}]   =Toolbar.Agent
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}]   =Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]   =Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]   =Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]   =Toolbar.DeltaSearch
[HKLM\Software\Classes\Prod.cap]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32]   =Toolbar.Bing
[HKCU\Software\InstallCore]   =Adware.InstallCore
[HKLM\Software\Classes\AppID\secman.DLL]   =Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}]   =Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}]   =Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}]   =Toolbar.Babylon
[HKLM\Software\Classes\BabyDict]   =Toolbar.Babylon
[HKLM\Software\Classes\BabyGloss]   =Toolbar.Babylon
[HKLM\Software\Classes\BabyOptFile]   =Toolbar.Babylon
[HKLM\Software\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}]   =Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}]   =Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}]   =Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}]   =PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}]   =Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]   =Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]   =Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}]   =Toolbar.DeltaSearch
[HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}]   =Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}]   =Toolbar.DeltaSearch
[HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}]   =Toolbar.DeltaSearch
[HKLM\Software\Classes\delta.deltaappCore]   =PUP.Funmoods
[HKLM\Software\Classes\delta.deltaappCore.1]   =PUP.Funmoods
[HKLM\Software\Classes\delta.deltadskBnd]   =PUP.Funmoods
[HKLM\Software\Classes\delta.deltadskBnd.1]   =PUP.Funmoods
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc]   =Hijacker.22find
[HKLM\Software\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}]   =Toolbar.Conduit
[HKLM\Software\Classes\AppID\ESRV.EXE]   =Adware.Facemoods
[HKLM\Software\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}]   =Adware.MagniPic
[HKLM\Software\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}]   =Adware.MagniPic
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}]   =Toolbar.AOL
[HKLM\Software\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}]   =Toolbar.AOL
[HKLM\Software\Wow6432Node\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}]   =Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUIBrowser]   =Toolbar.AOL
[HKLM\Software\Classes\dnUpdate]   =Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUIBrowser.1]   =Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUpdController]   =Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUpdController.1]   =Toolbar.AOL
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}]   =Adware.Boxore
[HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817]   =Adware.Boxore
[HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817]   =Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817]   =Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817]   =Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817]   =Adware.Boxore
[HKLM\Software\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}]   =Toolbar.Conduit
[HKLM\Software\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}]   =Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{947217BD-E967-400A-B14A-BA851A8EDCBB}]   =Toolbar.Conduit
[HKLM\Software\Classes\.bdc]   =Toolbar.Conduit
[HKLM\Software\Classes\.bgl]   =Toolbar.Conduit
[HKLM\Software\Classes\.bof]   =Toolbar.Conduit
[HKLM\Software\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}]   =Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}]   =Toolbar.Babylon
[HKCU\Software\AppDataLow\Software\Crossrider]   =PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Tracing\boxore_RASAPI32]   =Adware.Boxore
[HKLM\Software\Wow6432Node\Microsoft\Tracing\boxore_RASMANCS]   =Adware.Boxore
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\eSafeSvc]   =PUP.eSafeSecurity
[HKLM\Software\Classes\AppID\BabylonHelper.EXE]   =Toolbar.Babylon
[HKLM\SYSTEM\CurrentControlSet\Services\WebCake Desktop Updater]   =Adware.WebCake
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}]   =Adware.WebCake
[HKLM\Software\Classes\CrossriderApp0033440.BHO]   =PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0033440.BHO.1]   =PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0033440.Sandbox]   =PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0033440.Sandbox.1]   =PUP.CrossRider
[HKLM\Software\Classes\delta.deltaHlpr]   =toolbar.DeltaSearch
[HKLM\Software\Classes\delta.deltaHlpr.1]   =toolbar.DeltaSearch
[HKLM\Software\Classes\esrv.deltaESrvc]   =toolbar.DeltaSearch
[HKLM\Software\Classes\esrv.deltaESrvc.1]   =toolbar.DeltaSearch
[HKLM\Software\Classes\IncrediSpooler.DeltaSync]   =toolbar.DeltaSearch
[HKLM\Software\Classes\IncrediSpooler.DeltaSync.1]   =toolbar.DeltaSearch
[HKLM\Software\Classes\Toolbar.CT3297124]   =Toolbar.Conduit
[HKLM\Software\Classes\AppID\escort.DLL]   =PUP.Funmoods
[HKLM\Software\Classes\AppID\escortApp.DLL]   =PUP.Funmoods
[HKLM\Software\Classes\AppID\escortEng.DLL]   =PUP.Funmoods
[HKLM\Software\Classes\AppID\escorTlbr.DLL]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0033440.BHO]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0033440.BHO.1]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0033440.Sandbox]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0033440.Sandbox.1]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\delta.deltaappCore]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltaappCore.1]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd.1]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltaHlpr.1]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\esrv.deltaESrvc.1]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\IncrediSpooler.DeltaSync]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\IncrediSpooler.DeltaSync.1]   =toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT3297124]   =Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311341140}]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110311341140}]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322342240}]   =PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL]   =PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL]   =PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA]   =Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC]   =Adware.Boxore^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:WebCake Desktop   =Adware.WebCake
C:\Program Files (x86)\Babylon   =Toolbar.Babylon
C:\Program Files (x86)\Boxore   =Adware.Boxore
C:\Program Files (x86)\Software   =Adware.Boxore
C:\Program Files (x86)\continuetosave   =PUP.Offerware
C:\Program Files (x86)\Desk 365   =Hijacker.22find
C:\Program Files (x86)\WebSearch   =Adware.Browse2Save
C:\Program Files (x86)\WebCake   =Adware.WebCake
C:\Program Files (x86)\Common Files\Software Update Utility   =Toolbar.AOL
C:\ProgramData\Babylon   =Toolbar.Babylon
C:\ProgramData\Conduit   =Toolbar.Conduit
C:\ProgramData\InstallMate   =Toolbar.Agent
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon   =Toolbar.Babylon
C:\Users\33-fifix-33\AppData\Roaming\Babylon   =Toolbar.Babylon
C:\Users\33-fifix-33\AppData\Roaming\OpenCandy   =Adware.OpenCandy
C:\Users\33-fifix-33\AppData\Roaming\BabSolution   =Hijacker.BabSolution
C:\Users\33-fifix-33\AppData\Roaming\Desk 365   =Hijacker.22find
C:\Users\33-fifix-33\AppData\Roaming\337   =Hijacker.22find
C:\Users\33-fifix-33\AppData\Roaming\WebCake   =Adware.WebCake
C:\Users\33-fifix-33\AppData\Local\Babylon   =Toolbar.Babylon
C:\Users\33-fifix-33\AppData\Local\lollipop   =Adware.Lollipop
C:\Users\33-fifix-33\AppData\Local\Software   =Adware.Boxore
C:\Users\33-fifix-33\AppData\LocalLow\Conduit   =Toolbar.Conduit
C:\Users\33-fifix-33\AppData\Local\Temp\Babylon   =Toolbar.Babylon
C:\ProgramData\ccontineuetoSSaave  =PUP.Offerware^
C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\Extensions\ffxtlbr@delta.com   =PUP.Funmoods
~ Additionnel Scan: 567787 Items scanned in 00mn 28s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "00005109F10010400100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - ????? ???????.) -- C:\Windows\Installer\{90150000-001F-0401-1000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F10031400100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - Nederlands.) -- C:\Windows\Installer\{90150000-001F-0413-1000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F10070400100000000F01FEC" . (.Microsoft Office Korrekturhilfen 2013 - Deutsch.) -- C:\Windows\Installer\{90150000-001F-0407-1000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F10090400100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - English.) -- C:\Windows\Installer\{90150000-001F-0409-1000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F100A0C00100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - Español.) -- C:\Windows\Installer\{90150000-001F-0C0A-1000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F100C0400100000000F01FEC" . (.Outils de vérification linguistique 2013 de Microsoft Office - Français.) -- C:\Windows\Installer\{90150000-001F-040C-1000-0000000FF1CE}\misc.exe,6
O90 - PUC: "0295D0EDB0FEEBD4F8D142E26F43CCFF" . (.Audials.) -- C:\Windows\Installer\{DE0D5920-EF0B-4DBE-8F1D-242EF634CCFF}\AudialsOne_installer.exe
O90 - PUC: "037E97B5798DF8B41ADAB72B1D2FB269" . (.Nero Blu-ray Player Help (CHM).) -- C:\Windows\Installer\{5B79E730-D897-4B8F-A1AD-7BB2D1F22B96}\NeroHelpIcon.8BC7562A_6065_4ED9_8502_C368ECC0724D
O90 - PUC: "03FF80700C870B74180F8C6440CD67C9" . (.Nero Express Help (CHM).) -- C:\Windows\Installer\{0708FF30-78C0-47B0-81F0-C84604DC769C}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "045F27F206F16624596059B2126D46D0" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{2F72F540-1F60-4266-9506-952B21D6640D}\Installer.ico
O90 - PUC: "05D94ECADC916A441B29649F5882B362" . (.Nero PiP Effects Basic.) -- C:\Windows\Installer\{ACE49D50-19CD-44A6-B192-46F985283B26}\ARPPRODUCTICON.exe
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "098990BCF5D15D11E99A0005AB3E711E" . (.PowerDirector.) -- C:\Windows\Installer\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\ARPPRODUCTICON.exe
O90 - PUC: "0ACADCF8090EA9A4CA179AE63717CDE6" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}\controlPanelIcon.exe
O90 - PUC: "0D00C83EB86A81348A6A7F4D5B1BFDE0" . (.Windows Media Encoder 9 Series.) -- C:\Windows\Installer\{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}\ARPIcon
O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\Windows\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe
O90 - PUC: "1097CC45D40855143B35120FCC1921BA" . (.HP Wireless Assistant.) -- C:\Windows\Installer\{54CC7901-804D-4155-B353-21F0CC9112AB}\controlPanelIcon.exe
O90 - PUC: "114202EE62C28E947948B11CBD7FED69" . (.HP Support Assistant.) -- C:\Windows\Installer\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\ARPPRODUCTICON.exe
O90 - PUC: "122113B05A506674D830A74664971465" . (.Nero RescueAgent Help (CHM).) -- C:\Windows\Installer\{0B311221-05A5-4766-8D03-7A6446794156}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "12506E88E4E158749B1F71894ADBC003" . (.HP MediaSmart SmartMenu.) -- C:\Windows\Installer\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}\SmartMenuIcon
O90 - PUC: "127805FCE1E099F43A95954EAED8EA1C" . (.Nero Burning ROM.) -- C:\Windows\Installer\{CF508721-0E1E-4F99-A359-59E4EA8DAEC1}\ARPPRODUCTICON.exe
O90 - PUC: "15E5F6B1E5753964CB2A573475D070D6" . (.Nero Kwik Themes Basic.) -- C:\Windows\Installer\{1B6F5E51-575E-4693-BCA2-7543570D076D}\ARPPRODUCTICON.exe
O90 - PUC: "168061B30527E1545BEEB829FB037A01" . (.Microsoft Works.) -- C:\Windows\Installer\{3B160861-7250-451E-B5EE-8B92BF30A710}\MSWorks.exe
O90 - PUC: "18074868783B94F4EA1D9C0B0A096DC6" . (.Nero Recode Help (CHM).) -- C:\Windows\Installer\{86847081-B387-4F49-AED1-C9B0A090D66C}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "1AEDF5F7CA0D08D4D9599577F5CCAF04" . (.HP Photosmart Plus B210 series Aide.) -- C:\Windows\Installer\{7F5FDEA1-D0AC-4D80-9D95-59775FCCFA40}\ARP_Icon
O90 - PUC: "1BF27E46343277944B8A62C25DD3B03D" . (.Corel Paint Shop Pro Photo X2.) -- C:\Windows\Installer\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}\ARPPRODUCTICON.exe
O90 - PUC: "1CF55E0ED35CD8F41BB45BC91372748C" . (.LightScribe System Software.) -- C:\Windows\Installer\{E0E55FC1-C53D-4F8D-B14B-B59C312747C8}\ARPPRODUCTICON.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "1EAD96AE2CB1DE84BAA9425A8CCA0817" . (.Boxore Client.) -- C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico   =Adware.Boxore
O90 - PUC: "1EDCB75C9BC7D7643BABE7119961DC1C" . (.Norton Online Backup.) -- C:\Windows\Installer\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}\Icon.ico
O90 - PUC: "277C90D53BCEB244C96C4B43C187DF2C" . (.Apple Application Support.) -- C:\Windows\Installer\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}\WinInstall.ico
O90 - PUC: "2921D0FE1CF8EB147904BD1C436F4651" . (.Nero BackItUp Help (CHM).) -- C:\Windows\Installer\{EF0D1292-8FC1-41BE-9740-DBC134F66415}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "3030C407C02DFA54DBB255E6FA13EB90" . (.iCloud.) -- C:\Windows\Installer\{704C0303-D20C-45AF-BD2B-556EAF31BE09}\ARP.ico
O90 - PUC: "30F0FF67707B23345B1D5AC6383015E4" . (.iTunes.) -- C:\Windows\Installer\{76FF0F03-B707-4332-B5D1-A56C8303514E}\Installer.ico
O90 - PUC: "35588CBA077879B44BE3A50946A7B536" . (.Nero ControlCenter.) -- C:\Windows\Installer\{ABC88553-8770-4B97-B43E-5A90647A5B63}\ARPPRODUCTICON.exe
O90 - PUC: "38E1FB04BE028D11795C00905C206085" . (.Power2Go.) -- C:\Windows\Installer\{40BF1E83-20EB-11D8-97C5-0009C5020658}\ARPPRODUCTICON.exe
O90 - PUC: "3A80BAA3921F5DB44B90EA76F43957D9" . (.Prerequisite installer.) -- C:\Windows\Installer\{3AAB08A3-F129-4BD5-B409-AE674F93759D}\ARPPRODUCTICON.exe
O90 - PUC: "41DC8ECD5FBF46449B4A1EE87453647C" . (.Assistant de connexion Windows Live.) -- C:\Windows\Installer\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}\prodicon.ico
O90 - PUC: "423E0982B3F65794B8597E6D8DE02062" . (.Nero Burning ROM Help (CHM).) -- C:\Windows\Installer\{2890E324-6F3B-4975-8B95-E7D6D80E0226}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "42516185B730DC245B57FA08A4F2F074" . (.Adblock IE 2.2.) -- C:\Windows\Installer\{58161524-037B-42CD-B575-AF804A2F0F47}\app.ico
O90 - PUC: "42C6FBF1DF1C10144AB2C065F4E9E897" . (.PowerStarter.) -- C:\Windows\Installer\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe
O90 - PUC: "43E1A250B45AC8544A3E423C0E4557A4" . (.Nero Kwik Media.) -- C:\Windows\Installer\{052A1E34-A54B-458C-A4E3-24C3E054754A}\NeroKwikMedia._63C8A7B0BBE5459F9AC436392B2FF50D.exe
O90 - PUC: "451FDFC306E789E48AFD6C394A8F6E6B" . (.PowerDVD.) -- C:\Windows\Installer\{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "487EA05EEBAFAD641A8FB7B665CD2BE2" . (.Microsoft Office Suite Activation Assistant.) -- C:\Windows\Installer\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}\ARPPRODUCTICON.exe
O90 - PUC: "48C235E057243B14D9184D1A2AD0E87E" . (.PlayStation(R)Store.) -- C:\Windows\Installer\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}\ARPPRODUCTICON.exe
O90 - PUC: "48D76F9207A3E65408A62503B12070B0" . (.Nero Effects Basic.) -- C:\Windows\Installer\{29F67D84-3A70-456E-806A-52301B02070B}\ARPPRODUCTICON.exe
O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\Windows\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe
O90 - PUC: "4A94D9E94FD183147BBDD5788A3980E8" . (.HP Integrated Module with Bluetooth wireless technology.) -- C:\Windows\Installer\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}\ARPPRODUCTICON.exe
O90 - PUC: "5E96D47FDFCE1D548AA7432180DA7DCC" . (.DigitalPersona Personal 4.11.) -- C:\Windows\Installer\{F74D69E5-ECFD-45D1-A87A-341208ADD7CC}\ARPPRODUCTICON.exe
O90 - PUC: "623DD63D08278D11798C00109267C0EB" . (.PhotoNow.) -- C:\Windows\Installer\{D36DD326-7280-11D8-97C8-000129760CBE}\ARPPRODUCTICON.exe
O90 - PUC: "647C499C0D6CABE40BE9FDB78183B196" . (.Nero ControlCenter Help (CHM).) -- C:\Windows\Installer\{C994C746-C6D0-4EBA-B09E-DF7B18381B69}\NeroHelpIcon.8BC7562A_6065_4ED9_8502_C368ECC0724D
O90 - PUC: "67BCB71E42995DB46B6D053D04B7E447" . (.Nero Disc Menus Basic.) -- C:\Windows\Installer\{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}\ARPPRODUCTICON.exe
O90 - PUC: "68267DD57EB949849A099E509EA18C81" . (.Windows Live Mail.) -- C:\Windows\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe
O90 - PUC: "68AB67CA7DA7FFFFB7449A0100000010" . (.Adobe Reader 9.5.5 MUI.) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-A91000000001}\SC_Reader.ico
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.1.1.) -- C:\Windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "7040BB568CC47CD459E2E3FEFD5006A2" . (.Nero Update.) -- C:\Windows\Installer\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}\ARPPRODUCTICON.exe
O90 - PUC: "741E44742F0F041428E53B70F10C971F" . (.Nero 12.) -- C:\Windows\Installer\{4744E147-F0F2-4140-825E-B3071FC079F1}\ARPPRODUCTICON.exe
O90 - PUC: "75CF7A6212CF9AC458DB34423B92D4B8" . (.StuffIt 2010.) -- C:\Windows\Installer\{26A7FC57-FC21-4CA9-85BD-4324B3294D8B}\ARPPRODUCTICON.exe
O90 - PUC: "782BB4BF9F7372E4C9D4D283280EE8FF" . (.HP.) -- c:\Windows\Installer\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}\ARPPRODUCTICON.exe
O90 - PUC: "7E31197DC472B074DB64101B2091FDA6" . (.HPPhotosmartEssential.) -- C:\Windows\Installer\{D79113E7-274C-470B-BD46-01B10219DF6A}\ARPPRODUCTICON.exe
O90 - PUC: "8703D2ADC85A8E54E80E818BEBB6437F" . (.Nero BackItUp.) -- C:\Windows\Installer\{DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}\ARPPRODUCTICON.exe
O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.HP.) -- c:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe
O90 - PUC: "90C64EA18BA25EE488BF80DCF07F2FFD" . (.Bing Bar.) -- C:\Windows\Installer\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}\icon_installer_ico
O90 - PUC: "90E6267666350844F8E139AFFD05AC51" . (.MediaSmart Live TV.) -- c:\Windows\Installer\{67626E09-5366-4480-8F1E-93FADF50CA15}\ARPPRODUCTICON.exe
O90 - PUC: "970DACCDC29FAD442B8526F46C15A7A5" . (.MediaSmart DVD.) -- c:\Windows\Installer\{DCCAD079-F92C-44DA-B258-624FC6517A5A}\ARPPRODUCTICON.exe
O90 - PUC: "985E2342652631540BFBFE8A3E525D0F" . (.Nero SharedVideoCodecs.) -- C:\Windows\Installer\{2432E589-6256-4513-B0BF-EFA8E325D5F0}\ARPPRODUCTICON.exe
O90 - PUC: "9B52EE2B00B5FCA4490F2934C3823CE9" . (.HP.) -- c:\Windows\Installer\{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}\ARPPRODUCTICON.exe
O90 - PUC: "9B8E277B44CA4D54A9B8CBF5EE64807F" . (.Logiciel de base du périphérique HP Photosmart Plus B210 series.) -- C:\Windows\Installer\{B772E8B9-AC44-45D4-9A8B-BC5FEE4608F7}\ARP_Icon
O90 - PUC: "9C9FDF0FCDD1F1046B83631FAC8E8A57" . (.VideoStudio.) -- C:\Windows\Installer\{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875}\ARPPRODUCTICON.exe
O90 - PUC: "A0BC5702F62DAAD44B42059792B634AB" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{2075CB0A-D26F-4DAA-B424-5079296B43BA}\FolderShare48x48.ico
O90 - PUC: "A12B436470CC693498C0B2188666F1AE" . (.Windows Live Writer.) -- C:\Windows\Installer\{4634B21A-CC07-4396-890C-2B8168661FEA}\ApplicationIcon.ico
O90 - PUC: "A12BA2634C2EEC04182CC8D4260B36A5" . (.Media Go.) -- C:\Windows\Installer\{362AB21A-E2C4-40CE-81C2-8C4D62B0635A}\mediago.ico
O90 - PUC: "A72E2DC59C2F78A4A960FDFAA9814218" . (.Nero Express.) -- C:\Windows\Installer\{5CD2E27A-F2C9-4A87-9A06-DFAF9A182481}\ARPPRODUCTICON.exe
O90 - PUC: "A8B5124521268BD8934B89EEB29BB81D" . (.Media Go Video Playback Engine 1.116.101.02020.) -- C:\Windows\Installer\{54215B8A-6212-8DB8-39B4-98EE2BB98BD1}\MediaGo__0001.ico
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
O90 - PUC: "ACE02A26E0292504FB77887CD82DF0AA" . (.Validity Sensors DDK.) -- C:\Windows\Installer\{62A20ECA-920E-4052-BF77-88C78DD20FAA}\ValidityLogo.ico
O90 - PUC: "ADBE3203B1FB13843B745E1058552FE6" . (.HP.) -- c:\Windows\Installer\{3023EBDA-BF1B-4831-B347-E5018555F26E}\ARPPRODUCTICON.exe
O90 - PUC: "BA0A2B44E214C8F40B851D8EEACCFD5F" . (.PowerRecover.) -- C:\Windows\Installer\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\ARPPRODUCTICON.exe
O90 - PUC: "C7D8BF048FF62FA4CBB8B0D13BA20FB4" . (.HP Advisor.) -- C:\Windows\Installer\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}\ARPPRODUCTICON.exe
O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe
O90 - PUC: "CEB1F077178207E48B73BF5852FF3A1B" . (.Windows Live Messenger.) -- C:\Windows\Installer\{770F1BEC-2871-4E70-B837-FB8525FFA3B1}\MsblIco.Exe
O90 - PUC: "D067355E7F7DFB84DBB87C2EB30AC45B" . (.MediaSmart Internet TV.) -- C:\Windows\Installer\{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}\ARPPRODUCTICON.exe
O90 - PUC: "D237359B326B48E43B96FCFFB7A10EF6" . (.Nero RescueAgent.) -- C:\Windows\Installer\{B953732D-B623-4E84-B369-CFFF7B1AE06F}\ARPPRODUCTICON.exe
O90 - PUC: "D6414E46D317F0E4BB4EBD25AC8CCC2D" . (.HP Photosmart Plus B210 series - Enquête sur l'amélioration du produit.) -- C:\Windows\Installer\{64E4146D-713D-4E0F-BBE4-DB52CAC8CCD2}\ARP_Icon
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D95E131BC2026C34489C860F3C57141F" . (.Galerie de photos Windows Live.) -- C:\Windows\Installer\{B131E59D-202C-43C6-84C9-68F0C37541F1}\WLXPhotoGalleryIcon.exe
O90 - PUC: "D971821B1E5ACA344922211A90CE2D0A" . (.Nero Video Help (CHM).) -- C:\Windows\Installer\{B128179D-A5E1-43AC-9422-12A109ECD2A0}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "DB3C349126442164293C3DD69D714C74" . (.Nero Recode.) -- C:\Windows\Installer\{1943C3BD-4462-4612-92C3-D36DD917C447}\ARPPRODUCTICON.exe
O90 - PUC: "DCFCCF383E64BF343A7987FB5D8A89A0" . (.Nero Video.) -- C:\Windows\Installer\{83FCCFCD-46E3-43FB-A397-78BFD5A8980A}\ARPPRODUCTICON.exe
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de téléchargement Windows Live.) -- C:\Windows\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "E02861F17E0D636439E954BCEFBF601E" . (.Nero Kwik Media Help (CHM).) -- C:\Windows\Installer\{1F16820E-D0E7-4636-939E-45CBFEFB06E1}\NeroHelpIcon.BBDB24D3_07A5_496B_AA18_6A3ED03D6698
O90 - PUC: "E196EF2AE8F303E4AAD7FF71CA77AE78" . (.Nero Blu-ray Player.) -- C:\Windows\Installer\{A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}\ARPPRODUCTICON.exe
O90 - PUC: "E2FB0A7ACC133E949931255C30BE69D9" . (.Nero Audio Pack 1.) -- C:\Windows\Installer\{A7A0BF2E-31CC-49E3-9913-52C503EB969D}\ARPPRODUCTICON.exe
~ Update Products: 197 Scanned in 00mn 00s
#48780
---\\ MyComputer Name Space (O92)
O92 - MNS: @C:\Program Files (x86)\Norton 360\Branding\muis.dll,-115 - {0579E89F-E364-4a3d-A9CB-90262B2B7E1C}
O92 - MNS: Flux de photos - {F0D63F85-37EC-4097-B30D-61B4A8917118}
~ MNS: 2 Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 11/06/2013 256904 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 02/03/2009 89600 |  (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
SR - | Auto 21/12/2012 57008 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SS - | Auto 11/06/2012 193616 |  (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
SR - | Demand 11/06/2012 240208 |  (BBUpdate) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
SR - | Auto 30/08/2011 462184 |  (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 04/09/2009 873248 |  (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Demand 25/02/2010 227896 |  (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
SR - | Auto 20/03/2013 77576 |  (CyberLink PowerDVD 13 Media Server Monitor Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
SR - | Auto 20/03/2013 323336 |  (CyberLink PowerDVD 13 Media Server Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
SR - | Demand 06/03/2013 580672 |  (Disc Soft Bus Service) . (.Disc Soft Ltd.) - C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
SR - | Auto 01/12/2009 322624 |  (DpHost) . (.DigitalPersona, Inc..) - C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\ezsvc7.dll (ezSharedSvc) . (.EasyBits Sofware AS.) - C:\Windows\System32\svchost.exe
SS - | Auto 16/05/2013 101888 |  (Freemake Improver) . (.Freemake.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
SS - | Demand 06/06/2009 250616 |  (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - | Auto 03/06/2013 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 03/06/2013 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 03/06/2013 194032 |  (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 27/09/2012 86528 |  (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
SR - | Demand 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Demand 10/08/2012 1001376 |  (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 08/07/2009 30520 |  (hpsrv) . (.Hewlett-Packard.) - C:\Windows\System32\Hpservice.exe
SS - | Demand 31/05/2013 641352 |  (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 04/03/2011 73728 |  (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SS - | Demand 11/06/2013 117144 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 24/12/2012 144520 |  (N360) . (.Symantec Corporation.) - C:\Program Files (x86)\Norton 360\Engine\20.3.1.22\ccSvcHst.exe
SR - | Auto 13/07/2012 769432 |  (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 23/07/2009 382496 |  (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 24/08/2011 430136 |  (PMBDeviceInfoProvider) . (.Sony Corporation.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 24/07/2007 185632 |  (PSI_SVC_2) . (.Protexis Inc..) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
SR - | Auto 16/04/2010 36864 |  (RealtekCU) . (.Realtek.) - C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
SR - | Auto  247152 |  (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SR - | Auto 27/02/2013 1097848 |  (SBUpd) . (.Speedbit Ltd..) - C:\Program Files\Common Files\SpeedBit\SBUpdate\sbu.exe
SR - | Auto 21/05/2013 119408 |  (Software_update) . (.The Software Group.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe
SS - | Demand 21/05/2013 119408 |  (Software_update_m) . (.The Software Group.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe
SS - | Demand 04/02/2013 155824 |  (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
SR - | Auto 22/07/2009 240128 |  (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
SR - | Auto 30/10/2009 1916248 |  (Stuffit Archive Name Service) . (.Smith Micro Software, Inc..) - C:\Program Files (x86)\Smith Micro\StuffIt 2010\ArcNameService.exe
SR - | Auto 31/01/2013 2402080 |  (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\uxtuneup.dll (UxTuneUp) . (.TuneUp Software.) - C:\Windows\System32\svchost.exe
SR - | Auto 12/07/2009 1924400 |  (vcsFPService) . (.Validity Sensors, Inc..) - C:\Windows\system32\vcsFPService.exe
SR - | Auto 07/06/2013 23552 |  (WebCake Desktop Updater) . (.WebCake LLC.) - C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe   =Adware.WebCake
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 19/03/2013 130320 |  ({09F57980-3432-4AFC-957D-27AC45FAE1F5}) . (.CyberLink Corp..) - C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl
SR - | Auto 16/10/2009 146928 |  ({55662437-DA8C-40c0-AADA-2C816A897A49}) . (.CyberLink Corp..) - c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
~ Services:  Scanned in 00mn 03s



---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Pro - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Pro
O42 - Logiciel: DAEMON Tools Ultra - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Ultra
~ Emulateurs:  Scanned in 00mn 03s



End of the scan (2578 lines in 03mn 12s)(0)
Avatar du membre
par Invité
#48784
Bonsoir,
Oui, très très grave (tu les as tous) mais ton rapport est surtout ingérrable car il fallait héberger ton résultat (relis les recommandations de 2011N1 pour le rapport sur son lien avant ton post)

- Héberge le rapport ZHPDiag.txt sur le site ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse :
http://www.cjoint.com
 
#48796
Salut,

Effectivement c'est mieux en hébergeant.

Ton ordinateur est infecté par des PUPs/LPIs.

Les PUPs/LPIs (Logiciels Potentiellement Indésirables) sont des programmes indésirables qui généralement, affichent des publicités et installent des barres d'outils (toolbars). Ils s'installent en même temps que l'installation d'autres logiciels, en général, gratuits.
Ils modifient les paramètres des navigateurs (page de démarrage et de recherche).
Afin d'éviter cela, il faut donc faire attention lors de l'installation des logiciels (surtout ceux gratuits), et ne pas installer les modules complémentaires proposés avec ceux-là (en décochant les cases, souvent pré-cochées). Il est également fortement conseillé de télécharger les logiciels sur le site de l'éditeur (et non Softonic, 01Net, etc... qui incluent dans leurs installations ce genre de programmes néfastes).

Nous allons nous occuper de les éradiquer.
  • Télécharge AdwCleaner (d'Xplode) sur ton bureau.
  • Lance le, clique sur [Recherche] puis patiente le temps du scan.
  • Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.

    Note : Le rapport est également sauvegardé sous C:\AdwCleaner[R1].txt
Aide en vidéo ici : http://www.youtube.com/watch?v=vOa47SdO ... e=youtu.be
Si tu as des questions, n'hésite pas à les poser !

@+

Gabriel.
#48799
# AdwCleaner v2.303 - Rapport créé le 12/06/2013 à 21:26:26
# Mis à jour le 08/06/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : 33-fifix-33 - 33-FIFIX-33-PC
# Mode de démarrage : Normal
# Exécuté depuis : D:\AdwCleaner.exe
# Option [Recherche]


***** [Services] *****

Présent : WajamUpdater
Présent : WebCake Desktop Updater

***** [Fichiers / Dossiers] *****

Dossier Présent : C:\Program Files (x86)\Babylon
Dossier Présent : C:\Program Files (x86)\Boxore
Dossier Présent : C:\Program Files (x86)\Common Files\Software Update Utility
Dossier Présent : C:\Program Files (x86)\Common Files\Speedbit
Dossier Présent : C:\Program Files (x86)\continuetosave
Dossier Présent : C:\Program Files (x86)\Delta
Dossier Présent : C:\Program Files (x86)\Desk 365
Dossier Présent : C:\Program Files (x86)\Software
Dossier Présent : C:\Program Files (x86)\Wajam
Dossier Présent : C:\Program Files (x86)\WebCake
Dossier Présent : C:\Program Files (x86)\WebSearch
Dossier Présent : C:\Program Files\Babylon
Dossier Présent : C:\Program Files\DomaIQ Uninstaller
Dossier Présent : C:\ProgramData\Babylon
Dossier Présent : C:\ProgramData\ccontineuetoSSaave
Dossier Présent : C:\ProgramData\Conduit
Dossier Présent : C:\ProgramData\eSafe
Dossier Présent : C:\ProgramData\InstallMate
Dossier Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon
Dossier Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ccontineuetoSSaave
Dossier Présent : C:\ProgramData\Speedbit
Dossier Présent : C:\ProgramData\Tarma Installer
Dossier Présent : C:\Users\33-FIF~1\AppData\Local\Temp\Babylon
Dossier Présent : C:\Users\33-fifix-33\AppData\Local\Babylon
Dossier Présent : C:\Users\33-fifix-33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmididopbjifnmpoiedbcmlmeempbfpa
Dossier Présent : C:\Users\33-fifix-33\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpfeggemggokijeahnacacopejaabljl
Dossier Présent : C:\Users\33-fifix-33\AppData\Local\lollipop
Dossier Présent : C:\Users\33-fifix-33\AppData\LocalLow\ccontineuetoSSaave
Dossier Présent : C:\Users\33-fifix-33\AppData\LocalLow\Conduit
Dossier Présent : C:\Users\33-fifix-33\AppData\LocalLow\Delta
Dossier Présent : C:\Users\33-fifix-33\AppData\LocalLow\Speedbit
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\337
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\BabSolution
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\Babylon
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\Delta
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\Desk 365
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\extensions\ffxtlbr@delta.com
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\extensions\plugin@getwebcake.com
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\OpenCandy
Dossier Présent : C:\Users\33-fifix-33\AppData\Roaming\WebCake
Dossier Présent : C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}
Fichier Présent : C:\END
Fichier Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Fichier Présent : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\Babylon.xml
Fichier Présent : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\delta.xml
Fichier Présent : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\speedbit.xml
Fichier Présent : C:\Users\Public\Desktop\Babylon.lnk
Fichier Présent : C:\Users\Public\Desktop\eBay.lnk
Fichier Présent : C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
Fichier Présent : C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job

***** [Registre] *****

Clé Présente : HKCU\Software\AppDataLow\Software\Crossrider
Clé Présente : HKCU\Software\AppDataLow\SProtector
Clé Présente : HKCU\Software\AppDataLow\Toolbar
Clé Présente : HKCU\Software\BabSolution
Clé Présente : HKCU\Software\Babylon
Clé Présente : HKCU\Software\DataMngr
Clé Présente : HKCU\Software\DataMngr_Toolbar
Clé Présente : HKCU\Software\Delta
Clé Présente : HKCU\Software\delta LTD
Clé Présente : HKCU\Software\IM
Clé Présente : HKCU\Software\InstallCore
Clé Présente : HKCU\Software\InstalledBrowserExtensions
Clé Présente : HKCU\Software\lollipop
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4200C837-E222-BFEA-DC1A-CDD5C8BC5B5C}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4200C837-E222-BFEA-DC1A-CDD5C8BC5B5C}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Présente : HKCU\Software\SmartBar
Clé Présente : HKCU\Software\Softonic
Clé Présente : HKCU\Software\SpeedBit
Clé Présente : HKCU\Software\Wajam
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Clé Présente : HKLM\Software\Babylon
Clé Présente : HKLM\Software\BabylonToolbar
Clé Présente : HKLM\Software\Boxore
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Clé Présente : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Clé Présente : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Clé Présente : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Clé Présente : HKLM\SOFTWARE\Classes\BabyDict
Clé Présente : HKLM\SOFTWARE\Classes\BabyGloss
Clé Présente : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Clé Présente : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Clé Présente : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
Clé Présente : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
Clé Présente : HKLM\SOFTWARE\Classes\BabyOptFile
Clé Présente : HKLM\SOFTWARE\Classes\CrossriderApp0033440.BHO
Clé Présente : HKLM\SOFTWARE\Classes\CrossriderApp0033440.BHO.1
Clé Présente : HKLM\SOFTWARE\Classes\CrossriderApp0033440.Sandbox
Clé Présente : HKLM\SOFTWARE\Classes\CrossriderApp0033440.Sandbox.1
Clé Présente : HKLM\SOFTWARE\Classes\delta.deltaappCore
Clé Présente : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Clé Présente : HKLM\SOFTWARE\Classes\delta.deltadskBnd
Clé Présente : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
Clé Présente : HKLM\SOFTWARE\Classes\delta.deltaHlpr
Clé Présente : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
Clé Présente : HKLM\SOFTWARE\Classes\dnUpdate
Clé Présente : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Clé Présente : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Clé Présente : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Clé Présente : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Clé Présente : HKLM\SOFTWARE\Classes\escort.escortIEPane
Clé Présente : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Clé Présente : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
Clé Présente : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
Clé Présente : HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817
Clé Présente : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Clé Présente : HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817
Clé Présente : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Clé Présente : HKLM\SOFTWARE\Classes\Prod.cap
Clé Présente : HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass
Clé Présente : HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass.1
Clé Présente : HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassMachine
Clé Présente : HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassMachine.1.0
Clé Présente : HKLM\SOFTWARE\Classes\Toolbar.CT3297124
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}
Clé Présente : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Clé Présente : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Clé Présente : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Clé Présente : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Clé Présente : HKLM\Software\DataMngr
Clé Présente : HKLM\Software\Delta
Clé Présente : HKLM\Software\Desksvc
Clé Présente : HKLM\Software\Iminent
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Babylon.exe
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Clé Présente : HKLM\Software\SP Global
Clé Présente : HKLM\Software\SpeedBit
Clé Présente : HKLM\Software\SProtector
Clé Présente : HKLM\Software\Supreme Savings
Clé Présente : HKLM\Software\Wajam
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4200C837-E222-BFEA-DC1A-CDD5C8BC5B5C}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Babylon
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DomaIQ Uninstaller
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Clé Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Clé Présente : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{64B00DAC-870D-4E6A-8D34-3A6E3E427A30}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Clé Présente : HKLM\SOFTWARE\Tarma Installer
Clé Présente : HKU\S-1-5-21-1653296840-2471907541-4020727312-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKU\S-1-5-21-1653296840-2471907541-4020727312-1000\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Donnée Présente : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\contin~1\sprote~1.dll
Donnée Présente : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\websea~1\sprote~1.dll
Valeur Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [WebCake Desktop]
Valeur Présente : HKCU\Software\Mozilla\Firefox\Extensions [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Babylon Client]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Boxore Client]
Valeur Présente : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1]
Valeur Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{82E1477C-B154-48D3-9891-33D83C26BCD3}]
Valeur Présente : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Navigateurs] *****

-\\ Internet Explorer v10.0.9200.16576

[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://go.speedbit.com/tab/?s=D6Baya1

-\\ Mozilla Firefox v21.0 (fr)

Fichier : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\prefs.js

Présente : user_pref("aol_toolbar.default.homepage.check", false);
Présente : user_pref("aol_toolbar.default.search.check", false);
Présente : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Présente : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Présente : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Présente : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Présente : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Présente : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Présente : user_pref("extensions.delta.admin", false);
Présente : user_pref("extensions.delta.aflt", "babsst");
Présente : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Présente : user_pref("extensions.delta.autoRvrt", "false");
Présente : user_pref("extensions.delta.dfltLng", "en");
Présente : user_pref("extensions.delta.excTlbr", false);
Présente : user_pref("extensions.delta.ffxUnstlRst", true);
Présente : user_pref("extensions.delta.id", "0ab8aed900000000000000231401351c");
Présente : user_pref("extensions.delta.instlDay", "15867");
Présente : user_pref("extensions.delta.instlRef", "sst");
Présente : user_pref("extensions.delta.newTab", false);
Présente : user_pref("extensions.delta.prdct", "delta");
Présente : user_pref("extensions.delta.prtnrId", "delta");
Présente : user_pref("extensions.delta.rvrt", "false");
Présente : user_pref("extensions.delta.smplGrp", "none");
Présente : user_pref("extensions.delta.tlbrId", "base");
Présente : user_pref("extensions.delta.tlbrSrchUrl", "");
Présente : user_pref("extensions.delta.vrsn", "1.8.21.5");
Présente : user_pref("extensions.delta.vrsnTs", "1.8.21.58:56:27");
Présente : user_pref("extensions.delta.vrsni", "1.8.21.5");
Présente : user_pref("extensions.delta_i.babExt", "");
Présente : user_pref("extensions.delta_i.babTrack", "affID=121845");
Présente : user_pref("extensions.delta_i.srcExt", "ss");
Présente : user_pref("extensions.enabledAddons", "%7B5384767E-00D9-40E9-B72F-9CC39D655D6F%7D:1.4.2.1,7f404ccc-b[...]
Présente : user_pref("extensions.wajam.affiliate_id", "1666");
Présente : user_pref("extensions.wajam.firstrun", "false");
Présente : user_pref("extensions.wajam.log_send_info", "false");
Présente : user_pref("extensions.wajam.mappingListJsonString", "{\"version\":\"0.21087\",\"supported_sites\":{\[...]
Présente : user_pref("extensions.wajam.no_trace", "false");
Présente : user_pref("extensions.wajam.server_current_mapping_version", "0.21087");
Présente : user_pref("extensions.wajam.supported_sites.encryptedgoogle.wajam_google_js", "try {window['APP_LABE[...]
Présente : user_pref("extensions.wajam.supported_sites.google.wajam_google_se_js", "try {window['APP_LABEL_NAME[...]
Présente : user_pref("extensions.wajam.trace_log", "1371042493844 - processInstallationUpgrade - isUpgrade: fal[...]
Présente : user_pref("extensions.wajam.unique_id", "662246D15BA8EF3F71C10933CA2F8E1B");
Présente : user_pref("extensions.wajam.user_current_mapping_version", "0");
Présente : user_pref("extensions.wajam.version", "1.26");
Présente : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Présente : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Présente : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Présente : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Présente : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Présente : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Présente : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Présente : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\33-fifix-33\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [28620 octets] - [12/06/2013 21:26:26]

########## EOF - C:\AdwCleaner[R1].txt - [28681 octets] ##########
#48805
Re,

Relance AdwCleaner, puis clique sur [Suppression] puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse, comme la fois précédente.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

Bonne soirée,

Gabriel.
#48806
# AdwCleaner v2.303 - Rapport créé le 13/06/2013 à 07:36:08
# Mis à jour le 08/06/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : 33-fifix-33 - 33-FIFIX-33-PC
# Mode de démarrage : Normal
# Exécuté depuis : D:\AdwCleaner\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****

Arrêté Supprimé : WajamUpdater
Arrêté Supprimé : WebCake Desktop Updater

***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Program Files (x86)\Babylon
Dossier Supprimé : C:\Program Files (x86)\Boxore
Dossier Supprimé : C:\Program Files (x86)\Common Files\Software Update Utility
Dossier Supprimé : C:\Program Files (x86)\Common Files\Speedbit
Dossier Supprimé : C:\Program Files (x86)\continuetosave
Dossier Supprimé : C:\Program Files (x86)\Delta
Dossier Supprimé : C:\Program Files (x86)\Desk 365
Dossier Supprimé : C:\Program Files (x86)\Software
Dossier Supprimé : C:\Program Files (x86)\Wajam
Dossier Supprimé : C:\Program Files (x86)\WebCake
Dossier Supprimé : C:\Program Files (x86)\WebSearch
Dossier Supprimé : C:\Program Files\Babylon
Dossier Supprimé : C:\Program Files\DomaIQ Uninstaller
Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\ProgramData\ccontineuetoSSaave
Dossier Supprimé : C:\ProgramData\Conduit
Dossier Supprimé : C:\ProgramData\eSafe
Dossier Supprimé : C:\ProgramData\InstallMate
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ccontineuetoSSaave
Dossier Supprimé : C:\ProgramData\Speedbit
Dossier Supprimé : C:\ProgramData\Tarma Installer
Dossier Supprimé : C:\Users\33-FIF~1\AppData\Local\Temp\Babylon
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Local\Babylon
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmididopbjifnmpoiedbcmlmeempbfpa
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpfeggemggokijeahnacacopejaabljl
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Local\lollipop
Dossier Supprimé : C:\Users\33-fifix-33\AppData\LocalLow\ccontineuetoSSaave
Dossier Supprimé : C:\Users\33-fifix-33\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\33-fifix-33\AppData\LocalLow\Delta
Dossier Supprimé : C:\Users\33-fifix-33\AppData\LocalLow\Speedbit
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\337
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\BabSolution
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Delta
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Desk 365
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\extensions\ffxtlbr@delta.com
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\extensions\plugin@getwebcake.com
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\OpenCandy
Dossier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\WebCake
Dossier Supprimé : C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}
Fichier Supprimé : C:\END
Fichier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Fichier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\Babylon.xml
Fichier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\delta.xml
Fichier Supprimé : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\searchplugins\speedbit.xml
Fichier Supprimé : C:\Users\Public\Desktop\Babylon.lnk
Fichier Supprimé : C:\Users\Public\Desktop\eBay.lnk
Fichier Supprimé : C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
Fichier Supprimé : C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job

***** [Registre] *****

Clé Supprimée : HKCU\Software\AppDataLow\Software\Crossrider
Clé Supprimée : HKCU\Software\AppDataLow\SProtector
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\BabSolution
Clé Supprimée : HKCU\Software\Babylon
Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\DataMngr_Toolbar
Clé Supprimée : HKCU\Software\Delta
Clé Supprimée : HKCU\Software\delta LTD
Clé Supprimée : HKCU\Software\IM
Clé Supprimée : HKCU\Software\InstallCore
Clé Supprimée : HKCU\Software\InstalledBrowserExtensions
Clé Supprimée : HKCU\Software\lollipop
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4200C837-E222-BFEA-DC1A-CDD5C8BC5B5C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4200C837-E222-BFEA-DC1A-CDD5C8BC5B5C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Supprimée : HKCU\Software\SmartBar
Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKCU\Software\SpeedBit
Clé Supprimée : HKCU\Software\Wajam
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Clé Supprimée : HKLM\Software\Babylon
Clé Supprimée : HKLM\Software\BabylonToolbar
Clé Supprimée : HKLM\Software\Boxore
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\BabyDict
Clé Supprimée : HKLM\SOFTWARE\Classes\BabyGloss
Clé Supprimée : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Clé Supprimée : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
Clé Supprimée : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BabyOptFile
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0033440.BHO
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0033440.BHO.1
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0033440.Sandbox
Clé Supprimée : HKLM\SOFTWARE\Classes\CrossriderApp0033440.Sandbox.1
Clé Supprimée : HKLM\SOFTWARE\Classes\delta.deltaappCore
Clé Supprimée : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\delta.deltadskBnd
Clé Supprimée : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
Clé Supprimée : HKLM\SOFTWARE\Classes\delta.deltaHlpr
Clé Supprimée : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\dnUpdate
Clé Supprimée : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Clé Supprimée : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Clé Supprimée : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Clé Supprimée : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escortIEPane
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
Clé Supprimée : HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817
Clé Supprimée : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Clé Supprimée : HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817
Clé Supprimée : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass
Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.CoreClass.1
Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassMachine
Clé Supprimée : HKLM\SOFTWARE\Classes\SoftwareUpdate.OnDemandCOMClassMachine.1.0
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3297124
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}
Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Clé Supprimée : HKLM\Software\DataMngr
Clé Supprimée : HKLM\Software\Delta
Clé Supprimée : HKLM\Software\Desksvc
Clé Supprimée : HKLM\Software\Iminent
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Babylon.exe
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Clé Supprimée : HKLM\Software\SP Global
Clé Supprimée : HKLM\Software\SpeedBit
Clé Supprimée : HKLM\Software\SProtector
Clé Supprimée : HKLM\Software\Supreme Savings
Clé Supprimée : HKLM\Software\Wajam
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4200C837-E222-BFEA-DC1A-CDD5C8BC5B5C}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Babylon
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DomaIQ Uninstaller
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{64B00DAC-870D-4E6A-8D34-3A6E3E427A30}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Clé Supprimée : HKLM\SOFTWARE\Tarma Installer
Donnée Supprimée : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\contin~1\sprote~1.dll
Donnée Supprimée : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\websea~1\sprote~1.dll
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [WebCake Desktop]
Valeur Supprimée : HKCU\Software\Mozilla\Firefox\Extensions [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Babylon Client]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Boxore Client]
Valeur Supprimée : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1]
Valeur Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{82E1477C-B154-48D3-9891-33D83C26BCD3}]
Valeur Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Navigateurs] *****

-\\ Internet Explorer v10.0.9200.16611

Remplacé : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://go.speedbit.com/tab/?s=D6Baya1 -- hxxp://www.google.com

-\\ Mozilla Firefox v21.0 (fr)

Fichier : C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\prefs.js

C:\Users\33-fifix-33\AppData\Roaming\Mozilla\Firefox\Profiles\uz46cvnk.default-1370926823446\user.js ... Supprimé !

Supprimée : user_pref("aol_toolbar.default.homepage.check", false);
Supprimée : user_pref("aol_toolbar.default.search.check", false);
Supprimée : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Supprimée : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Supprimée : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Supprimée : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Supprimée : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Supprimée : user_pref("extensions.a7f404cccb0a94fafb3c089ceea949aeaa6724a0593804ebebe02e67e35a3402ccom33440.3344[...]
Supprimée : user_pref("extensions.delta.admin", false);
Supprimée : user_pref("extensions.delta.aflt", "babsst");
Supprimée : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Supprimée : user_pref("extensions.delta.autoRvrt", "false");
Supprimée : user_pref("extensions.delta.dfltLng", "en");
Supprimée : user_pref("extensions.delta.excTlbr", false);
Supprimée : user_pref("extensions.delta.ffxUnstlRst", true);
Supprimée : user_pref("extensions.delta.id", "0ab8aed900000000000000231401351c");
Supprimée : user_pref("extensions.delta.instlDay", "15867");
Supprimée : user_pref("extensions.delta.instlRef", "sst");
Supprimée : user_pref("extensions.delta.newTab", false);
Supprimée : user_pref("extensions.delta.prdct", "delta");
Supprimée : user_pref("extensions.delta.prtnrId", "delta");
Supprimée : user_pref("extensions.delta.rvrt", "false");
Supprimée : user_pref("extensions.delta.smplGrp", "none");
Supprimée : user_pref("extensions.delta.tlbrId", "base");
Supprimée : user_pref("extensions.delta.tlbrSrchUrl", "");
Supprimée : user_pref("extensions.delta.vrsn", "1.8.21.5");
Supprimée : user_pref("extensions.delta.vrsnTs", "1.8.21.58:56:27");
Supprimée : user_pref("extensions.delta.vrsni", "1.8.21.5");
Supprimée : user_pref("extensions.delta_i.babExt", "");
Supprimée : user_pref("extensions.delta_i.babTrack", "affID=121845");
Supprimée : user_pref("extensions.delta_i.srcExt", "ss");
Supprimée : user_pref("extensions.enabledAddons", "%7B5384767E-00D9-40E9-B72F-9CC39D655D6F%7D:1.4.2.1,7f404ccc-b[...]
Supprimée : user_pref("extensions.wajam.affiliate_id", "1666");
Supprimée : user_pref("extensions.wajam.firstrun", "false");
Supprimée : user_pref("extensions.wajam.log_send_info", "false");
Supprimée : user_pref("extensions.wajam.mappingListJsonString", "{\"version\":\"0.21087\",\"supported_sites\":{\[...]
Supprimée : user_pref("extensions.wajam.no_trace", "false");
Supprimée : user_pref("extensions.wajam.server_current_mapping_version", "0.21087");
Supprimée : user_pref("extensions.wajam.supported_sites.encryptedgoogle.wajam_google_js", "try {window['APP_LABE[...]
Supprimée : user_pref("extensions.wajam.supported_sites.google.wajam_google_se_js", "try {window['APP_LABEL_NAME[...]
Supprimée : user_pref("extensions.wajam.trace_log", "1371042493844 - processInstallationUpgrade - isUpgrade: fal[...]
Supprimée : user_pref("extensions.wajam.unique_id", "662246D15BA8EF3F71C10933CA2F8E1B");
Supprimée : user_pref("extensions.wajam.user_current_mapping_version", "0");
Supprimée : user_pref("extensions.wajam.version", "1.26");
Supprimée : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Supprimée : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Supprimée : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Supprimée : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Supprimée : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Supprimée : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Supprimée : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Supprimée : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\33-fifix-33\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [28681 octets] - [12/06/2013 21:26:26]
AdwCleaner[S1].txt - [28904 octets] - [13/06/2013 07:36:08]

########## EOF - C:\AdwCleaner[S1].txt - [28965 octets] ##########
#48826
Salut,

Bien.
  • Télécharge MalwareBytes' Anti-Malware à cette adresse.
  • Enregistre-le sur ton bureau.
  • Double-clic sur le fichier téléchargé pour lancer le processus d'installation (Si le pare-feu demande l'autorisation de se connecter pour Malwarebytes, accepte)
  • Une fois le logiciel installé et lancé, va dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour.
    Fais le plusieurs fois jusqu'à ce qu'il te dise que tu possèdes la dernière version de base de données.

    Une fois la mise à jour terminée : 
  • Rends-toi dans l'onglet "Recherche" .
  • Sélectionne Exécuter un Examen complet.
  • Sélectionne Tous les disques si proposé.
  • Clique sur Rechercher.
  • Le scan démarre patiente, plusieurs heures de scan sont probables.
  • À la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement, clique sur "Afficher les résultats" pour afficher tous les objets trouvés.
  • Clique sur Ok pour poursuivre.
  • Si des éléments ont été détectés, cliques sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, ce qui va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
  • Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
  • Redémarre le pc s'il ne le fait pas lui même.
  • Une fois redémarré double-clique sur Malwarebytes' AntiMalware.
  • Rends toi dans l'onglet Rapport/logs.
  • Tu cliques dessus pour l'afficher, colle son contenu dans ta prochaine réponse.
Aide en vidéo : http://www.youtube.com/watch?v=QYRwV6Z6 ... e=youtu.be

@+

Gabriel.
#48842
Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Version de la base de données: v2013.06.13.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16614
33-fifix-33 :: 33-FIFIX-33-PC [administrateur]

13/06/2013 19:15:37
mbam-log-2013-06-13 (19-15-37).txt

Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 495754
Temps écoulé: 1 heure(s), 11 minute(s), 29 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 1
C:\Windows\Installer\1aa75e2.msi (Adware.Boxore) - Mis en quarantaine et supprimé avec succès.

(fin)
#48851
Re,

Ok.
  • Copie les lignes qui sont à l'intérieur de ce lien (Ctrl + A puis Ctrl + C) : https://dl.dropboxusercontent.com/u/328 ... fix-33.txt
  • Ouvre ZHPfix, icone seringue (Vista/7/8 : "Exécuter en tant qu'administrateur").
  • Colle les lignes helpers si elles ne sont déjà présentes. Pour ce, clique sur la balise document (Coller le presse papier), à droite de l'appareil photo.
  • Clique sur Go.
  • Clique sur Oui pour confirmer le nettoyage des données.
  • Copie le rapport, et colle-le dans la prochaine réponse sur le forum.
P.S. Si le bureau disparaît, fais Ctrl + Alt + Suppr afin d'ouvrir le gestionnaire des tâches puis dans Applications, clique sur Nouvelle tâche puis tape explorer.exe. Le bureau devrait normalent réapparaître.

/!\ Attention, ta corbeille va être vidée. Vérifie qu'il n'y ait aucun fichier supprimé par mégarde à l'intérieur. /!\

Aide en vidéo ici : http://www.youtube.com/watch?v=8gBWXPow ... e=youtu.be


Si tu as des questions, n'hésite pas à me les poser.

@+

Gabriel.
#48860
Rapport de ZHPFix 2013.6.4.1 par Nicolas Coolman, Update du 04/06/2013
Fichier d'export Registre :
Run by 33-fifix-33 at 14/06/2013 05:38:07
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée

========== Autre ==========
NON TRAITE https://dl.dropboxusercontent.com/u/328 ... fix-33.txt


========== Récapitulatif ==========
1 : Autre


End of clean in 00mn 01s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 14/06/2013 05:38:08 [507]
#48881
Rapport de ZHPFix 2013.6.4.1 par Nicolas Coolman, Update du 04/06/2013
Fichier d'export Registre :
Run by 33-fifix-33 at 14/06/2013 14:36:21
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée

========== Autre ==========
NON TRAITE https://dl.dropboxusercontent.com/u/328 ... fix-33.txt


========== Récapitulatif ==========
1 : Autre


End of clean in 00mn 00s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 14/06/2013 04:38:08 [558]
C:\ZHP\ZHPFix[R2].txt - 14/06/2013 14:36:21 [558]
#48886
Re,

Non, ce qui est DANS le lien justement.

Soit, tout ça :

O2 - BHO: SBCONVERT [64Bits] - {92A9ACF4-9333-43AE-9698-DB283326F87F} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files (x86)\SPEEDbit Video Downloader\Toolbar\tbcore3.dll
O2 - BHO: GrabberObj Class [64Bits] - {FF7C3CF0-4B15-11D1-ABED-709549C10000} . (.SPEEDbit - SPEEDbit Grab Convert.) -- C:\Program Files (x86)\SPEEDbit Video Downloader\Toolbar\grabber.dll
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
[HKLM\Software\DomaIQ]
O43 - CFD: 21/05/2013 - 11:24:13 - [0] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}]
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF7C3CF0-4B15-11D1-ABED-709549C10000}]
[HKLM\Software\Classes\AppID\TbCommonUtils.DLL]
[HKLM\Software\Classes\AppID\TbHelper.EXE]
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS]
[HKLM\Software\Classes\comobject.deskbarenabler]
[HKLM\Software\Classes\comobject.deskbarenabler.1]
[HKLM\Software\Classes\TbCommonUtils.CommonUtils]
[HKLM\Software\Classes\TbCommonUtils.CommonUtils.1]
[HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\90C64EA18BA25EE488BF80DCF07F2FFD]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}]
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32]
[HKLM\Software\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}]
[HKLM\Software\Classes\.bdc]
[HKLM\Software\Classes\.bgl]
[HKLM\Software\Classes\.bof]
[HKLM\Software\Classes\IncrediSpooler.DeltaSync]
[HKLM\Software\Classes\IncrediSpooler.DeltaSync.1]
[HKLM\Software\Classes\TbHelper.TbDownloadManager]
[HKLM\Software\Classes\TbHelper.TbDownloadManager.1]
[HKLM\Software\Classes\TbHelper.TbPropertyManager]
[HKLM\Software\Classes\TbHelper.TbPropertyManager.1]
[HKLM\Software\Classes\TbHelper.TbRequest]
[HKLM\Software\Classes\TbHelper.TbRequest.1]
[HKLM\Software\Classes\TbHelper.TbTask]
[HKLM\Software\Classes\TbHelper.TbTask.1]
[HKLM\Software\Classes\TbHelper.ToolbarHelper]
[HKLM\Software\Classes\TbHelper.ToolbarHelper.1]
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier]
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1]
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl]
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1]
[HKLM\Software\Classes\Toolbar3.SBCONVERT]
[HKLM\Software\Classes\Toolbar3.SBCONVERT.1]
[HKLM\Software\Classes\Toolbar3.SearchProviderManager]
[HKLM\Software\Classes\Toolbar3.SearchProviderManager.1]
[HKLM\Software\Wow6432Node\Classes\IncrediSpooler.DeltaSync]
[HKLM\Software\Wow6432Node\Classes\IncrediSpooler.DeltaSync.1]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbDownloadManager]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbDownloadManager.1]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbPropertyManager]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbPropertyManager.1]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbRequest]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbRequest.1]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbTask]
[HKLM\Software\Wow6432Node\Classes\TbHelper.TbTask.1]
[HKLM\Software\Wow6432Node\Classes\TbHelper.ToolbarHelper]
[HKLM\Software\Wow6432Node\Classes\TbHelper.ToolbarHelper.1]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.ContextMenuNotifier]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.ContextMenuNotifier.1]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.CustomInternetSecurityImpl]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.CustomInternetSecurityImpl.1]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.SBCONVERT]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.SBCONVERT.1]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.SearchProviderManager]
[HKLM\Software\Wow6432Node\Classes\Toolbar3.SearchProviderManager.1]
[HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE]
C:\Users\33-fifix-33\AppData\LocalLow\Toolbar4
R3 - URLSearchHook: (no name) [64Bits] - {834acc44-e0fc-4f17-8e6b-f1029b3bc0de} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [EPUpdater] (...) -- C:\Users\33-fifix-33\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe (.not file.)  [0]
O43 - CFD: 28/05/2013 - 19:50:46 - [0,000] ----D C:\Users\33-fifix-33\AppData\Local\Cyberlink SoftDMA
[MD5.DAD557E7BF757C0CADC0DF43D1BBBE34] [SPRF][11/06/2013] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\8C651E12-A9F9-4AFD-A2E4-69316FE768B7.dat  [43467]
[MD5.BB9C03CED83903216AD526BAD3BC7464] [SPRF][13/06/2013] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\DAPInstaller.exe  [13518024]
[MD5.FAC2F53DE7FFFFCFC2FCC49E91DD5D48] [SPRF][11/06/2013] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\FE2521C7-8B4A-4029-9BE9-B7FBDFD3E1B3.dat  [43883]
[MD5.E1FA8D83B963D2F1824A7BB86CB07544] [SPRF][10/11/2011] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\RunWizards.exe  [139960]
[MD5.EEF7CA63B8E0638E3BFBB27A41B7701B] [SPRF][11/12/2011] (.SPEEDbit Ltd. - SPEEDbit Video Downloader Setup.) -- C:\Users\33-fifix-33\AppData\Local\Temp\svd_dap.exe  [265424]
[MD5.7D6E333106E1DA0CCBDC6DA474E9F96C] [SPRF][17/01/2012] (.SPEEDbit Ltd. - SPEEDbit Video Downloader Setup.) -- C:\Users\33-fifix-33\AppData\Local\Temp\svd_va.exe  [265424]
[MD5.A91466B2F222DFE1DDAFF6D022F5544A] [SPRF][25/08/2010] (...) -- C:\Users\33-fifix-33\AppData\Local\Temp\unelevate.exe  [94872]
M2 - MFEP: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446\7f404ccc-b0a9-4faf-b3c0-89ceea949aea@a6724a05-9380-4ebe-be02-e67e35a3402c.com] [] Plus-HD-2.6 v (..)
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8888;https=127.0.0.1:8888
O4 - GS\QuickLaunch: Babylon.lnk . (...)  -- C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe (.not file.)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-codedownloader.job  [1210]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-enabler.job  [1110]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Plus-HD-2.6-updater.job  [1206]
[MD5.00000000000000000000000000000000] [APT] [Desk 365 RunAsStdUser] (...) -- C:\Program Files (x86)\Desk 365\desk365.exe (.not file.)  [0]
[MD5.273B96F8DE8996D29FAEBB77F8C5CA3B] [APT] [Plus-HD-2.6-chromeinstaller] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-chromeinstaller.exe  [464232]
[MD5.CFE34A3F13EA603C424EEAA95AF1A5B8] [APT] [Plus-HD-2.6-codedownloader] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-codedownloader.exe  [478568]
[MD5.78C458F88D9194DC7B6D82DDA10E2CCC] [APT] [Plus-HD-2.6-enabler] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-enabler.exe  [345960]
[MD5.833F229866CD49B863D3E629FDB61E95] [APT] [Plus-HD-2.6-firefoxinstaller] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-firefoxinstaller.exe  [725352]
[MD5.BD177D998A2CCADD894FB24441B2D482] [APT] [Plus-HD-2.6-updater] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-updater.exe  [364392]
O42 - Logiciel: ContinueToSave - (...) [HKLM][64Bits] -- {686FB56C-E1AC-4C54-AEBF-A98EB38C979A}
O42 - Logiciel: Plus-HD-2.6 - (.Plus HD.) [HKLM][64Bits] -- Plus-HD-2.6
O42 - Logiciel: Software Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
[HKCU\Software\AppDataLow\Software\Plus-HD-2.6]
[HKCU\Software\System32]
O43 - CFD: 30/05/2013 - 17:41:34 - [7,231] ----D C:\Program Files (x86)\Plus-HD-2.6
O43 - CFD: 21/05/2013 - 19:12:32 - [0] ----D C:\Users\33-fifix-33\AppData\Local\Software
O69 - SBI: prefs.js [33-fifix-33 - uz46cvnk.default-1370926823446] user_pref("extensions.crossrider.bic", "13f3d6cb2e22f7f53531963f4a06078b");
O69 - SBI: SearchScopes [HKCU] {7F4EFF06-7032-458e-AE16-1C1D8255C28A} [DefaultScope] - (SpeedBit Search) - http://home.speedbit.com
[MD5.155E34BEB6D5DC3419FFAF9183112E82] [SPRF][25/04/2013] (...) -- C:\Users\33-fifix-33\AppData\Roaming\Audials_One-Setup.exe  [98526320]
[HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}]
[HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}]
[HKLM\Software\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}]
[HKLM\Software\Wow6432Node\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}]
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}]
[HKLM\Software\Wow6432Node\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}]
[HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}]
[HKLM\Software\Wow6432Node\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}]
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}]
[HKLM\Software\Wow6432Node\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}]
[HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}]
[HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}]
[HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}]
[HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}]
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}]
[HKLM\Software\Wow6432Node\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}]
[HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}]
[HKLM\Software\Wow6432Node\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}]
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}]
[HKLM\Software\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}]
[HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}]
[HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}]
[HKCU\Software\Microsoft\Office\Word\Addins\BabylonOfficeAddin.OfficeAddin]
[HKLM\Software\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}]
[HKLM\Software\Wow6432Node\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}]
[HKCU\Software\Microsoft\Office\PowerPoint\Addins\BabylonOfficeAddin.OfficeAddin]
[HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}]
[HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}]
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}]
[HKLM\Software\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}]
[HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}]
[HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}]
[HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}]
[HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}]
[HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}]
[HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}]
[HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}]
[HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}]
[HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}]
[HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}]
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}]
[HKLM\Software\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}]
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]
[HKLM\Software\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}]
[HKLM\Software\Wow6432Node\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}]
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook]
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1]
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817]
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\eSafeSvc]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311341140}]
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110311341140}]
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322342240}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC]
C:\Users\33-fifix-33\AppData\Local\Software
ProxyFix
EmptyTemp
EmptyFlash
EmptyCLSID
SysRestore
@+

Gabriel.
#48893
Rapport de ZHPFix 2013.6.4.1 par Nicolas Coolman, Update du 04/06/2013
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-14-06-2013-19-14-23.txt
Run by 33-fifix-33 at 14/06/2013 19:14:23
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée

========== Logiciel(s) ==========
SUPPRIME Bing Bar
SUPPRIME Google Toolbar for Internet Explorer
ABSENT Software Key: {686FB56C-E1AC-4C54-AEBF-A98EB38C979A}
ABSENT Uninstall Process: c:\program files (x86)\plus-hd-2.6\uninstall.exe
SUPPRIME Software Update Helper

========== Processus mémoire ==========
SUPPRIME Memory Process: C:\Users\33-fifix-33\AppData\Local\Temp\DAPInstaller.exe
SUPPRIME Memory Process: C:\Users\33-fifix-33\AppData\Local\Temp\RunWizards.exe
SUPPRIME Memory Process: C:\Users\33-fifix-33\AppData\Local\Temp\svd_dap.exe
SUPPRIME Memory Process: C:\Users\33-fifix-33\AppData\Local\Temp\svd_va.exe
SUPPRIME Memory Process: C:\Users\33-fifix-33\AppData\Local\Temp\unelevate.exe
SUPPRIME Memory Process: C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-chromeinstaller.exe
SUPPRIME Memory Process: C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-codedownloader.exe
SUPPRIME Memory Process: C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-enabler.exe
SUPPRIME Memory Process: C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-firefoxinstaller.exe
SUPPRIME Memory Process: C:\Program Files (x86)\Plus-HD-2.6\Plus-HD-2.6-updater.exe
SUPPRIME Memory Process: C:\Users\33-fifix-33\AppData\Roaming\Audials_One-Setup.exe

========== Clé(s) du Registre ==========
SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}]
SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}]
SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.6]
SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
SUPPRIME Key: CLSID BHO: {92A9ACF4-9333-43AE-9698-DB283326F87F}
SUPPRIME Key: CLSID BHO: {FF7C3CF0-4B15-11D1-ABED-709549C10000}
SUPPRIME Key*: HKLM\Software\DomaIQ
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
ABSENT Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF7C3CF0-4B15-11D1-ABED-709549C10000}
SUPPRIME Key: HKLM\Software\Classes\AppID\TbCommonUtils.DLL
SUPPRIME Key: HKLM\Software\Classes\AppID\TbHelper.EXE
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS
SUPPRIME Key: HKLM\Software\Classes\comobject.deskbarenabler
SUPPRIME Key: HKLM\Software\Classes\comobject.deskbarenabler.1
SUPPRIME Key: HKLM\Software\Classes\TbCommonUtils.CommonUtils
SUPPRIME Key: HKLM\Software\Classes\TbCommonUtils.CommonUtils.1
SUPPRIME Key: HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook
SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\90C64EA18BA25EE488BF80DCF07F2FFD
ABSENT Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32
SUPPRIME Key*: HKLM\Software\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}
ABSENT Key: HKLM\Software\Classes\.bdc
ABSENT Key: HKLM\Software\Classes\.bgl
ABSENT Key: HKLM\Software\Classes\.bof
SUPPRIME Key: HKLM\Software\Classes\IncrediSpooler.DeltaSync
SUPPRIME Key: HKLM\Software\Classes\IncrediSpooler.DeltaSync.1
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbDownloadManager
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbDownloadManager.1
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbPropertyManager
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbPropertyManager.1
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbRequest
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbRequest.1
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbTask
SUPPRIME Key: HKLM\Software\Classes\TbHelper.TbTask.1
SUPPRIME Key: HKLM\Software\Classes\TbHelper.ToolbarHelper
SUPPRIME Key: HKLM\Software\Classes\TbHelper.ToolbarHelper.1
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.ContextMenuNotifier
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.SBCONVERT
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.SBCONVERT.1
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.SearchProviderManager
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.SearchProviderManager.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\IncrediSpooler.DeltaSync
ABSENT Key: HKLM\Software\Wow6432Node\Classes\IncrediSpooler.DeltaSync.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbDownloadManager
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbDownloadManager.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbPropertyManager
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbPropertyManager.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbRequest
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbRequest.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbTask
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.TbTask.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.ToolbarHelper
ABSENT Key: HKLM\Software\Wow6432Node\Classes\TbHelper.ToolbarHelper.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.ContextMenuNotifier
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.ContextMenuNotifier.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.CustomInternetSecurityImpl
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.CustomInternetSecurityImpl.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.SBCONVERT
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.SBCONVERT.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.SearchProviderManager
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Toolbar3.SearchProviderManager.1
ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE
SUPPRIME Key: HKCU\Software\AppDataLow\Software\Plus-HD-2.6
SUPPRIME Key: HKCU\Software\System32
SUPPRIME Key: SearchScopes :{7F4EFF06-7032-458e-AE16-1C1D8255C28A}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}
ABSENT Key: HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}
SUPPRIME Key: HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
SUPPRIME Key: HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
SUPPRIME Key: HKCU\Software\Microsoft\Office\Word\Addins\BabylonOfficeAddin.OfficeAddin
SUPPRIME Key*: HKLM\Software\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
SUPPRIME Key: HKCU\Software\Microsoft\Office\PowerPoint\Addins\BabylonOfficeAddin.OfficeAddin
SUPPRIME Key*: HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}
SUPPRIME Key*: HKLM\Software\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
ABSENT Key: HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook
SUPPRIME Key: HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1
SUPPRIME Key: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc
SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817
SUPPRIME Key: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\eSafeSvc
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311341140}
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110311341140}
SUPPRIME Key: HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322342240}
SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA
SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC

========== Valeur(s) du Registre ==========
ABSENT URLSearchHook: {834acc44-e0fc-4f17-8e6b-f1029b3bc0de}
ProxyFix : Configuration proxy supprimée avec succès
SUPPRIME ProxyServer Value
SUPPRIME ProxyEnable Value
SUPPRIME EnableHttp1_1 Value
SUPPRIME ProxyHttp1.1 Value
SUPPRIME ProxyOverride Value

========== Elément(s) de donnée du Registre ==========
SUPPRIME R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page
SUPPRIME R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant
SUPPRIME R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer

========== Préférences navigateur ==========
SUPPRIME Mozilla Pref: user_pref("extensions.crossrider.bic", "13f3d6cb2e22f7f53531963f4a06078b");

========== Dossier(s) ==========
Aucun dossiers CLSID Local utilisateur vide

========== Fichier(s) ==========
SUPPRIME Reboot c:\program files (x86)\speedbit video downloader\toolbar\tbcore3.dll
SUPPRIME File: C:\Users\33-fifix-33\AppData\Local\Temp\8C651E12-A9F9-4AFD-A2E4-69316FE768B7.dat
SUPPRIME File*: c:\users\33-fifix-33\appdata\local\temp\8c651e12-a9f9-4afd-a2e4-69316fe768b7.dat
SUPPRIME File: c:\users\33-fifix-33\appdata\local\temp\dapinstaller.exe
SUPPRIME File: C:\Users\33-fifix-33\AppData\Local\Temp\FE2521C7-8B4A-4029-9BE9-B7FBDFD3E1B3.dat
SUPPRIME File*: c:\users\33-fifix-33\appdata\local\temp\fe2521c7-8b4a-4029-9be9-b7fbdfd3e1b3.dat
SUPPRIME File: c:\users\33-fifix-33\appdata\local\temp\runwizards.exe
SUPPRIME File*: c:\users\33-fifix-33\appdata\local\temp\svd_dap.exe
SUPPRIME File: c:\users\33-fifix-33\appdata\local\temp\svd_va.exe
SUPPRIME File: c:\users\33-fifix-33\appdata\local\temp\unelevate.exe
ABSENT File: c:\users\33-fifix-33\appdata\roaming\microsoft\internet explorer\quick launch\babylon.lnk
ABSENT File: c:\program files (x86)\babylon\babylon-pro\babylon.exe
SUPPRIME File: c:\windows\tasks\plus-hd-2.6-codedownloader.job
SUPPRIME File: c:\windows\tasks\plus-hd-2.6-enabler.job
SUPPRIME File: c:\windows\tasks\plus-hd-2.6-updater.job
SUPPRIME File***: c:\program files (x86)\plus-hd-2.6\plus-hd-2.6-chromeinstaller.exe
SUPPRIME File: c:\program files (x86)\plus-hd-2.6\plus-hd-2.6-codedownloader.exe
SUPPRIME File: c:\users\33-fifix-33\appdata\roaming\audials_one-setup.exe
ABSENT Folder/File: c:\users\33-fifix-33\appdata\local\software
SUPPRIME Temporaires Windows
SUPPRIME Flash Cookies

========== Tache planifiée ==========
SUPPRIME Task: EPUpdater
SUPPRIME Task: Desk 365 RunAsStdUser
SUPPRIME Task: Plus-HD-2.6-chromeinstaller
SUPPRIME Task: Plus-HD-2.6-codedownloader
SUPPRIME Task: Plus-HD-2.6-enabler
SUPPRIME Task: Plus-HD-2.6-firefoxinstaller
SUPPRIME Task: Plus-HD-2.6-updater

========== Restauration Système ==========
Point de restauration du système créé avec succès


========== Récapitulatif ==========
11 : Processus mémoire
125 : Clé(s) du Registre
7 : Valeur(s) du Registre
3 : Elément(s) de donnée du Registre
1 : Dossier(s)
21 : Fichier(s)
5 : Logiciel(s)
1 : Préférences navigateur
7 : Tache planifiée
1 : Restauration Système


End of clean in 02mn 03s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 14/06/2013 04:38:08 [558]
C:\ZHP\ZHPFix[R2].txt - 14/06/2013 13:36:21 [609]
C:\ZHP\ZHPFix[R3].txt - 14/06/2013 18:08:13 [660]
C:\ZHP\ZHPFix[R4].txt - 14/06/2013 19:14:23 [15142]
#48896
Salut,
  • Copie les lignes qui sont à l'intérieur de ce lien (Ctrl + A puis Ctrl + C) : https://dl.dropboxusercontent.com/u/328 ... fix-33.txt
  • Ouvre ZHPfix, icone seringue (Vista/7/8 : "Exécuter en tant qu'administrateur").
  • Colle les lignes helpers si elles ne sont déjà présentes. Pour ce, clique sur la balise document (Coller le presse papier), à droite de l'appareil photo.
  • Clique sur Go.
  • Clique sur Oui pour confirmer le nettoyage des données.
  • Copie le rapport, et colle-le dans la prochaine réponse sur le forum.
P.S. Si le bureau disparaît, fais Ctrl + Alt + Suppr afin d'ouvrir le gestionnaire des tâches puis dans Applications, clique sur Nouvelle tâche puis tape explorer.exe. Le bureau devrait normalent réapparaître.

/!\ Attention, ta corbeille va être vidée. Vérifie qu'il n'y ait aucun fichier supprimé par mégarde à l'intérieur. /!\

Aide en vidéo ici : http://www.youtube.com/watch?v=8gBWXPow ... e=youtu.be


Si tu as des questions, n'hésite pas à me les poser.

@+

Gabriel.
#48898
Rapport de ZHPFix 2013.6.4.1 par Nicolas Coolman, Update du 04/06/2013
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-14-06-2013-20-16-58.txt
Run by 33-fifix-33 at 14/06/2013 20:16:51
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée

========== Processus mémoire ==========
SUPPRIME Memory Process: C:\Users\33-fifix-33\Desktop\plus-hd-2-6.exe

========== Clé(s) du Registre ==========
SUPPRIME Key: HKLM\Software\Wow6432Node\Plus-HD-2.6
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FF7C3CF0-4B15-11D1-ABED-709549C10000}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FF7C3CF0-4B15-11D1-ABED-709549C10000}

========== Dossier(s) ==========
SUPPRIME Reboot Folder**: c:\users\33-fifix-33\appdata\locallow\toolbar4

========== Fichier(s) ==========
SUPPRIME File*: c:\users\33-fifix-33\desktop\plus-hd-2-6.exe

========== Autre ==========
NON TRAITE :Reg
NON TRAITE :Files
NON TRAITE :commands
NON TRAITE [emptytemp]
#48911
Rapport de ZHPFix 2013.6.4.1 par Nicolas Coolman, Update du 04/06/2013
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-14-06-2013-21-11-33.txt
Run by 33-fifix-33 at 14/06/2013 21:11:33
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée

========== Clé(s) du Registre ==========
SUPPRIME Key: SearchScopes :{7F4EFF06-7032-458e-AE16-1C1D8255C28A}

========== Dossier(s) ==========
SUPPRIME Folder: c:\users\33-fifix-33\appdata\locallow\toolbar4


========== Récapitulatif ==========
1 : Clé(s) du Registre
1 : Dossier(s)


End of clean in 00mn 00s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 14/06/2013 04:38:08 [558]
C:\ZHP\ZHPFix[R2].txt - 14/06/2013 13:36:21 [609]
C:\ZHP\ZHPFix[R3].txt - 14/06/2013 18:08:13 [660]
C:\ZHP\ZHPFix[R4].txt - 14/06/2013 18:14:23 [15195]
C:\ZHP\ZHPFix[R5].txt - 14/06/2013 19:16:52 [1601]
C:\ZHP\ZHPFix[R6].txt - 14/06/2013 21:11:33 [896]
***************************************************

mon pc a l air plus rapide ...tout est ok ....merci à toi Gabriel pour ton aide et ta patience
Hello!

Nice to meet you, guys! Opportunities like schola[…]

désinstaller sophos

bonjour, ci joint les fichiers d'analyse https://w[…]

Bug PC

Bonjour, Essaye de voir si une application du Mic[…]

Channel effortless cool with the Lana Del Rey Fer[…]