Rapport de ZHPDiag v2013.3.13.24 par Nicolas Coolman, Update du 13/03/2013
Run by clemence at 16/03/2013 12:26:59
State : Nouvelle version disponible
High Elevated Privileges : OK
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome v25.0.1364.172 (Defaut)
---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3836 MB (56% free)
System Restore: Activé (Enable)
System drive C: has 387 GB (85%) free of 452 GB
---\\ Logged in mode
~ Computer Name: CLEMENCE-PC
~ User Name: clemence
~ All Users Names: HomeGroupUser$, clemence, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\clemence.clemence-PC\AppData\Roaming\
~ %Desktop% : C:\Users\clemence.clemence-PC\Desktop\
~ %Favorites% : C:\Users\clemence.clemence-PC\Favorites\
~ %LocalAppData% : C:\Users\clemence.clemence-PC\AppData\Local\
~ %StartMenu% : C:\Users\clemence.clemence-PC\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 387 Go of 452 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)
E:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.FA274190682AA41A46B285208ED46A74] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.02/02/2013 - 07:47:19.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/26
~ Mes musiques (My Musics) : 6/29
~ Mes Videos (My Videos) : 2/10
~ Mes Favoris (My Favorites) : 1/40
~ Mes Documents (My Documents) : 2/19
~ Mon Bureau (My Desktop) : 1/650
~ Menu demarrer (Programs) : 1/33
~ Scan Hidden Files in 00mn 01s
---\\ Processus lancés
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [512360] [PID.2196]
[MD5.9157189DC07511ECBBE1D2615D8A2FED] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664] [PID.912]
[MD5.CCF2234A35077CA217A61C9CACC48198] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.2908]
[MD5.A2814FED5A47B00BBC99AC58F93B9337] - (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files (x86)\Hp\QuickPlay\QPService.exe [468264] [PID.3268]
[MD5.0771A5C3B78967F9F83C1C429334AD2A] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [320056] [PID.3296]
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.3872]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.2256]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.4216]
[MD5.DDE5A0DFAF7C6370FB36402D7A746ED3] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [757296] [PID.2976]
[MD5.A854BC2D2AD9856F6B84C7870FF246D9] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe [706776] [PID.4100]
[MD5.66374C3F6D2A772BE898D553C335336C] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5747200] [PID.3996]
[MD5.41735B82DB57E4EBE9504EC400FD120E] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [45248] [PID.1356]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1632]
[MD5.47480F4260DAE9AA589BCAF924B3767A] - (.Microsoft Corporation. - BingBar Service.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [193816] [PID.1724]
[MD5.83D8BE94E1CBCBE2EA8372DB1A95A159] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.1928]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184] [PID.1996]
[MD5.916B8954AC3E06DC9E898AFFB41F3FB6] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [682344] [PID.1428]
[MD5.498EB62A160674E793FA40FD65390625] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.2072]
[MD5.388AE59FE75F1B959DFA0900923C61BB] - (.Skype Technologies S.A. - Skype C2C Service.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000] [PID.2604]
[MD5.FDF273A845F1FFCCEADF363AAF47582F] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [229944] [PID.3760]
[MD5.F9A79C5B27037821112C50A9C8FB367A] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [228408] [PID.4472]
~ Scan Processes Running in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\clemence\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preference [User Data\Default] http://www.google.fr
G1 - GCS: Preference [User Data\Default] http://www.google.fr
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.0.1f2.) -- C:\Users\clemence.clemence-PC\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation. - Extensions du client Bing.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files (x86)\HP\QuickPlay\QPService.exe
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePRCShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1607949051-4147538281-2056551771-1000\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKUS\S-1-5-21-1607949051-4147538281-2056551771-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-1607949051-4147538281-2056551771-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Free YouTube to MP3 Converter (2).lnk . (.DVDVideoSoft Ltd. - FreeYouTubeToMP3Converter.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Users\clemence.clemence-PC\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar: Microsoft Office Outlook 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Microsoft Office Outlook.lnk . (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.exe
O4 - GS\QuickLaunch: Yahoo! Messenger.lnk . (.Yahoo! Inc. - Yahoo! Messenger.) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\Desktop: Free YouTube Download.lnk . (.DVDVideoSoft Ltd. - Free YouTube Download.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe
O4 - GS\Desktop: Microsoft Office Outlook 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\outicon.exe
~ Scan Global Startup in 00mn 01s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D79993A6-4521-4339-A113-AE1DC3E054E1}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{D79993A6-4521-4339-A113-AE1DC3E054E1}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{D79993A6-4521-4339-A113-AE1DC3E054E1}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: LightScribeService Direct Disc Labeling (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) . (.Nitro PDF Software - Nitro PDF Spool Service.) - C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 12s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sdnclean64.exe) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1068]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1072]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1607949051-4147538281-2056551771-1000Core.job [1038]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1607949051-4147538281-2056551771-1000UA.job [1090]
[MD5.EA856F4A46320389D1899B2CAA7BF40F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [253656]
[MD5.AB3C4A3667AEAD147F175721D8719B78] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [250248]
[MD5.9CE3B11704038F711481ACD6BD9A9A5A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3274008]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1607949051-4147538281-2056551771-1000Core] (.Google Inc..) -- C:\Users\clemence\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1607949051-4147538281-2056551771-1000UA] (.Google Inc..) -- C:\Users\clemence\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.28B01A58758B08F9B2086DBAAEAE791E] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe [37744]
[MD5.28B01A58758B08F9B2086DBAAEAE791E] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe [37744]
[MD5.92B476DD52794881A4B91A5529C2706B] [APT] [{35ACDCEF-52AB-49BE-95A9-195F74D3DD33}] (...) -- C:\Program Files\AVAST Software\Avast\aswRundll.exe [107568]
[MD5.848D034D067BE2FF5CD3D779BECBDA00] [APT] [{8FA884FE-A059-430F-ADBA-726E6A29E2A3}] (.Google Inc..) -- c:\users\clemence\appdata\local\google\chrome\application\chrome.exe [1239064]
[MD5.ACB856FE8856E8091F5EF0ADB6450A55] [APT] [PC Health Analysis] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [877320]
[MD5.ACB856FE8856E8091F5EF0ADB6450A55] [APT] [PC Tuneup] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [877320]
~ Scan Scheduled Task in 00mn 04s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: AMD USB Filter Driver - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5271C0D4-24E4-4C3D-A782-C012033FD3CF}
O42 - Logiciel: Acer Liquid Tool - (.Acer Inc..) [HKLM][64Bits] -- {F39EE9C9-F855-4C16-A5C4-0F6D1DADF139}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.6) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: Big Fish Games: Game Manager - (...) [HKLM][64Bits] -- BFGC
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {266D0EEA-E5A6-4A08-A0EE-5391D4EA44A7}
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Free MP4 Video Converter version 5.0.17.903 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free MP4 Video Converter_is1
O42 - Logiciel: Free Studio version 5.4.9 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free Studio_is1
O42 - Logiciel: Free YouTube Download version 3.1.38.1005 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Download_is1
O42 - Logiciel: Free YouTube to MP3 Converter version 3.11.32.918 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube to MP3 Converter_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {B53E61D7-7C80-40DF-82D2-CF5390D6D20A}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {5B295588-59C1-4386-9F85-BB4BEDCB0D22}
O42 - Logiciel: HP DVD Play 3.7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {4F46FDB9-B906-47BF-B3D5-C62E01B3C5EE}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0148 - (.Hewlett-Packard.) [HKLM][64Bits] -- {9D3318E1-5A9F-4A95-A7A1-7E045403AE34}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {54CC7901-804D-4155-B353-21F0CC9112AB}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: Java 7 Update 17 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: Java(TM) 6 Update 14 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416014FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {82EF29B1-9B60-4142-A155-0599216DD053}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Sync Framework Runtime v1.0 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {53D7A054-4598-4947-A159-E8FCC77720AB}
O42 - Logiciel: Microsoft Sync Framework Services v1.0 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {32508A23-C9EA-4D29-83CA-97A42A13701E}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Nitro Reader 2 - (.Nitro PDF Software.) [HKLM][64Bits] -- {4D96E560-A473-4A32-A0AB-4D445A2C9E6E}
O42 - Logiciel: Photorécit 3 pour Windows - (.Microsoft Corporation.) [HKLM][64Bits] -- {4F41AD68-89F2-4262-A32C-2F70B01FCE9E}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerRecover - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}
O42 - Logiciel: Realtek 8136 8168 8169 Ethernet Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype™ 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Timbres de France - (...) [HKLM][64Bits] -- {0251056F-ABC7-4CA4-9B8C-16814EDCD907}
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: WinRAR 4.11 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Windows Driver Package - Linux Developer Community Net (08/16/2010 5.1.260 - (.Linux Developer Community.) [HKLM][64Bits] -- 637F4A11ADE9B1B3D8F4A37C0C4CA8EA924B739E
O42 - Logiciel: Yahoo! Messenger - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Messenger
O42 - Logiciel: avast! Free Antivirus v8.0.1483.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: barre d'outils Bing - (.Microsoft Corporation.) [HKLM][64Bits] -- {4D63127D-1D5E-443F-AD3B-94D07FDC53C6}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Big Fish Games]
[HKCU\Software\BugSplat]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\GameHouse]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IncrediMail]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LightScribe]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\MainConcept (Muvee)]
[HKCU\Software\MainConcept (Muvee2)]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NITRO PDF]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PopCap]
[HKCU\Software\Quadratus]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Skype]
[HKCU\Software\Synaptics]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\mozilla]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Agere]
[HKLM\Software\CXT]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DivX]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\LSI]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nitro PDF]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\Volatile]
[HKLM\Software\WildTangent]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\America Online]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\Big Fish Games]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Cyberlink]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\Digital River]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Gamigo Games]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HPQLOG]
[HKLM\Software\Wow6432Node\HPQ]
[HKLM\Software\Wow6432Node\HP]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\LabelPrint_Upgrade]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LightScribe]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nitro PDF]
[HKLM\Software\Wow6432Node\Norton]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\P2G_Upgrade]
[HKLM\Software\Wow6432Node\PDR_Upgrade]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Product_Upgrade]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Vittalia]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\Yvert & Tellier]
[HKLM\Software\Wow6432Node\deskSvc]
[HKLM\Software\Wow6432Node\findSoftware]
[HKLM\Software\Wow6432Node\hdcode]
[HKLM\Software\Wow6432Node\muvee Technologies]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 05/07/2012 - 13:49:06 - [7,207] ----D C:\Program Files (x86)\Acer Inc
O43 - CFD: 05/01/2013 - 14:56:33 - [115,214] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 01/05/2012 - 22:47:22 - [0,073] ----D C:\Program Files (x86)\AMD
O43 - CFD: 01/05/2012 - 22:48:15 - [1,441] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 01/05/2012 - 22:45:56 - [80,724] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 30/11/2012 - 17:45:18 - [22,762] ----D C:\Program Files (x86)\bfgclient
O43 - CFD: 15/03/2013 - 17:55:59 - [612,621] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 01/05/2012 - 22:58:06 - [1043,655] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 08/09/2012 - 19:58:55 - [693,578] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 12/05/2012 - 19:27:44 - [90,595] ----D C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 08/09/2012 - 19:54:59 - [0,116] ----D C:\Program Files (x86)\Free mp3 Wma Converter
O43 - CFD: 27/11/2012 - 15:06:25 - [376,883] ----D C:\Program Files (x86)\Google
O43 - CFD: 27/11/2012 - 15:09:57 - [0] ----D C:\Program Files (x86)\GUM756D.tmp
O43 - CFD: 25/08/2009 - 20:40:57 - [366,594] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 01/05/2012 - 22:54:55 - [73,801] ----D C:\Program Files (x86)\Hp
O43 - CFD: 25/08/2009 - 18:20:30 - [264,572] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 23/02/2013 - 21:46:30 - [180,149] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 15/03/2013 - 16:48:55 - [4,935] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 05/03/2013 - 14:41:56 - [121,972] ----D C:\Program Files (x86)\Java
O43 - CFD: 05/03/2013 - 10:59:18 - [12,170] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 15/03/2013 - 17:38:57 - [18,704] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 23/11/2012 - 23:07:16 - [626,778] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 25/08/2009 - 18:47:59 - [7,431] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 05/07/2012 - 13:53:49 - [4,204] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 05/07/2012 - 13:53:50 - [0,353] ----D C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 04/05/2012 - 20:08:58 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 04/05/2012 - 19:59:10 - [1,323] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 12/10/2012 - 21:11:51 - [138,685] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 05/05/2012 - 08:12:35 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 11/08/2012 - 21:05:33 - [0,001] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 04/05/2012 - 20:09:15 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 06/05/2012 - 21:28:18 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 29/11/2012 - 19:52:34 - [81,643] ----D C:\Program Files (x86)\Nitro PDF
O43 - CFD: 01/05/2012 - 23:28:27 - [18,981] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 04/05/2012 - 20:56:07 - [15,658] ----D C:\Program Files (x86)\Photo Story 3 for Windows
O43 - CFD: 01/05/2012 - 22:47:36 - [9,103] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 14/02/2013 - 22:09:34 - [49,122] R---D C:\Program Files (x86)\Skype
O43 - CFD: 15/03/2013 - 21:10:40 - [1,294] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 22/09/2012 - 13:27:14 - [1,371] ----D C:\Program Files (x86)\SQC
O43 - CFD: 04/05/2012 - 21:09:33 - [0,275] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/05/2012 - 19:57:15 - [0] ----D C:\Program Files (x86)\Video Codec
O43 - CFD: 18/01/2013 - 18:53:15 - [94,419] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 26/08/2009 - 03:17:30 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 15/03/2013 - 17:55:57 - [117,012] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 23/11/2012 - 23:40:03 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 23/11/2012 - 23:40:03 - [5,090] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 23/11/2012 - 23:40:03 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 23/11/2012 - 23:40:03 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 23/11/2012 - 23:40:03 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 23/02/2013 - 22:14:43 - [31,441] ----D C:\Program Files (x86)\Yahoo!
O43 - CFD: 26/12/2012 - 17:34:26 - [41,284] ----D C:\Program Files (x86)\Yvert & Tellier
O43 - CFD: 16/03/2013 - 12:27:18 - [15,212] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 15/03/2013 - 17:48:59 - [28,816] ----D C:\Program Files (x86)\Common Files\337
O43 - CFD: 05/01/2013 - 14:56:43 - [3,797] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 25/08/2009 - 19:11:00 - [30,315] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 25/08/2009 - 18:47:00 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 15/10/2012 - 17:32:09 - [152,642] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 26/12/2012 - 16:25:31 - [6,411] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 20/02/2013 - 19:52:20 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 01/05/2012 - 22:54:35 - [31,218] ----D C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 12/05/2012 - 14:54:43 - [259,347] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 29/11/2012 - 19:52:34 - [15,292] ----D C:\Program Files (x86)\Common Files\Nitro PDF
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/02/2013 - 22:09:33 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 23/11/2012 - 23:40:02 - [42,254] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 25/08/2009 - 17:33:40 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 26/12/2012 - 17:34:56 - [0,001] ----D C:\ProgramData\4D
O43 - CFD: 24/07/2012 - 13:53:20 - [0,001] ----D C:\ProgramData\Acer
O43 - CFD: 20/02/2013 - 16:51:14 - [134,049] ----D C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 01/05/2012 - 22:48:21 - [0,009] ----D C:\ProgramData\Atheros
O43 - CFD: 01/05/2012 - 23:20:23 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 08/05/2012 - 20:26:49 - [30,413] ----D C:\ProgramData\AVAST Software
O43 - CFD: 30/11/2012 - 17:45:14 - [14,812] ----D C:\ProgramData\Big Fish Games
O43 - CFD: 01/05/2012 - 23:25:42 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 05/05/2012 - 13:18:06 - [0,053] ----D C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 31/08/2012 - 21:18:58 - [0,002] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 15/03/2013 - 18:08:59 - [0] ----D C:\ProgramData\eSafe
O43 - CFD: 01/05/2012 - 23:25:42 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 30/11/2012 - 18:33:16 - [77,975] ----D C:\ProgramData\GameHouse
O43 - CFD: 27/11/2012 - 15:06:31 - [0,012] ----D C:\ProgramData\Google
O43 - CFD: 01/05/2012 - 23:30:00 - [39,441] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 04/01/2013 - 23:12:59 - [0,000] ----D C:\ProgramData\IM
O43 - CFD: 04/01/2013 - 23:10:14 - [0,012] ----D C:\ProgramData\IncrediMail
O43 - CFD: 23/02/2013 - 21:39:41 - [0,001] ----D C:\ProgramData\LightScribe
O43 - CFD: 05/03/2013 - 10:59:15 - [6,894] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 01/05/2012 - 23:25:42 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 15/03/2013 - 21:09:19 - [228,541] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/03/2013 - 16:43:33 - [0,063] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 01/05/2012 - 23:25:42 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 08/12/2012 - 22:13:49 - [0,008] ----D C:\ProgramData\MumboJumbo
O43 - CFD: 05/05/2012 - 13:03:42 - [0] ----D C:\ProgramData\muvee Technologies
O43 - CFD: 04/05/2012 - 21:11:10 - [0,335] ----D C:\ProgramData\Nitro PDF
O43 - CFD: 05/05/2012 - 08:37:52 - [0,000] ----D C:\ProgramData\Norton
O43 - CFD: 25/08/2009 - 17:45:40 - [9,708] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 01/05/2012 - 22:50:09 - [0,022] ----D C:\ProgramData\Recovery
O43 - CFD: 14/02/2013 - 22:09:43 - [67,377] ----D C:\ProgramData\Skype
O43 - CFD: 15/03/2013 - 19:52:54 - [0,002] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 08/05/2012 - 21:19:27 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 20/12/2012 - 22:24:49 - [0,500] ---AD C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 19/07/2012 - 14:32:38 - [0] ----D C:\ProgramData\Uniblue
O43 - CFD: 25/08/2009 - 18:20:22 - [-1054,916] ----D C:\ProgramData\WildTangent
O43 - CFD: 13/05/2012 - 21:20:01 - [0] ----D C:\ProgramData\WinZip
O43 - CFD: 23/02/2013 - 22:14:43 - [0,583] ----D C:\ProgramData\Yahoo!
O43 - CFD: 05/01/2013 - 22:07:41 - [13,239] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Adobe
O43 - CFD: 23/11/2012 - 22:19:32 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\ATI
O43 - CFD: 23/11/2012 - 22:25:05 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\CyberLink
O43 - CFD: 29/11/2012 - 19:50:46 - [46,700] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Downloaded Installations
O43 - CFD: 23/11/2012 - 22:25:20 - [57,345] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\DVDVideoSoft
O43 - CFD: 23/11/2012 - 22:25:20 - [0,001] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 15/03/2013 - 17:45:43 - [5,471] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\eIntaller
O43 - CFD: 23/11/2012 - 22:25:20 - [0,000] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\FreeAudioPack
O43 - CFD: 27/11/2012 - 17:13:42 - [0,001] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Google
O43 - CFD: 23/11/2012 - 22:25:20 - [0,042] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Hewlett-Packard
O43 - CFD: 23/11/2012 - 22:25:21 - [0,033] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\HP TCS
O43 - CFD: 23/11/2012 - 22:25:21 - [0,001] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\hpqlog
O43 - CFD: 23/11/2012 - 22:25:21 - [0,000] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\HpUpdate
O43 - CFD: 23/11/2012 - 22:25:21 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Identities
O43 - CFD: 23/11/2012 - 22:25:21 - [0,001] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Macromedia
O43 - CFD: 05/03/2013 - 10:59:21 - [0,801] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Malwarebytes
O43 - CFD: 02/05/2012 - 08:34:56 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Media Center Programs
O43 - CFD: 05/01/2013 - 22:07:41 - [6,820] -S--D C:\Users\clemence.clemence-PC\AppData\Roaming\Microsoft
O43 - CFD: 23/11/2012 - 22:25:25 - [4,376] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Mozilla
O43 - CFD: 23/11/2012 - 22:25:39 - [0,000] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\muvee Technologies
O43 - CFD: 25/02/2013 - 18:20:15 - [0,001] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Nitro PDF
O43 - CFD: 20/12/2012 - 21:01:24 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Oberon Media
O43 - CFD: 21/02/2013 - 23:29:15 - [10,756] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Skype
O43 - CFD: 20/12/2012 - 21:03:20 - [0,000] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\URSE Games
O43 - CFD: 12/03/2013 - 22:26:18 - [0,077] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\vlc
O43 - CFD: 23/11/2012 - 22:25:46 - [0,000] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\Windows Live Writer
O43 - CFD: 23/11/2012 - 22:25:46 - [1,809] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\WinRAR
O43 - CFD: 23/11/2012 - 22:25:51 - [0,004] ----D C:\Users\clemence.clemence-PC\AppData\Roaming\_MDLogs
O43 - CFD: 23/11/2012 - 22:39:22 - [0,065] ----D C:\Users\clemence.clemence-PC\AppData\Local\Acer
O43 - CFD: 05/07/2012 - 14:02:44 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\ADDP
O43 - CFD: 05/01/2013 - 14:55:08 - [14,742] ----D C:\Users\clemence.clemence-PC\AppData\Local\Adobe
O43 - CFD: 23/11/2012 - 22:18:00 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\Application Data
O43 - CFD: 23/11/2012 - 22:39:22 - [21,330] ----D C:\Users\clemence.clemence-PC\AppData\Local\Apps
O43 - CFD: 23/11/2012 - 22:19:32 - [0,085] ----D C:\Users\clemence.clemence-PC\AppData\Local\ATI
O43 - CFD: 04/01/2013 - 23:09:57 - [2,787] ----D C:\Users\clemence.clemence-PC\AppData\Local\CRE
O43 - CFD: 28/02/2013 - 21:27:55 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\Deployment
O43 - CFD: 16/02/2013 - 13:03:47 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\Diagnostics
O43 - CFD: 16/02/2013 - 13:03:47 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\ElevatedDiagnostics
O43 - CFD: 08/02/2013 - 20:17:49 - [578,472] ----D C:\Users\clemence.clemence-PC\AppData\Local\Google
O43 - CFD: 23/11/2012 - 22:41:38 - [0,343] ----D C:\Users\clemence.clemence-PC\AppData\Local\Hewlett-Packard
O43 - CFD: 23/11/2012 - 22:41:38 - [0,000] ----D C:\Users\clemence.clemence-PC\AppData\Local\Hewlett-Packard_Company
O43 - CFD: 23/11/2012 - 22:18:00 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\Historique
O43 - CFD: 04/01/2013 - 23:13:57 - [9,152] ----D C:\Users\clemence.clemence-PC\AppData\Local\IM
O43 - CFD: 15/03/2013 - 17:39:55 - [311,161] ----D C:\Users\clemence.clemence-PC\AppData\Local\Microsoft
O43 - CFD: 08/12/2012 - 20:44:04 - [0,422] ----D C:\Users\clemence.clemence-PC\AppData\Local\Microsoft Games
O43 - CFD: 23/11/2012 - 22:42:06 - [0,130] ----D C:\Users\clemence.clemence-PC\AppData\Local\Microsoft Help
O43 - CFD: 05/03/2013 - 10:58:59 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\Programs
O43 - CFD: 23/11/2012 - 22:42:06 - [0,033] ----D C:\Users\clemence.clemence-PC\AppData\Local\QuickPlay
O43 - CFD: 16/03/2013 - 12:25:09 - [0,016] ----D C:\Users\clemence.clemence-PC\AppData\Local\Temp
O43 - CFD: 23/11/2012 - 22:18:00 - [0] ----D C:\Users\clemence.clemence-PC\AppData\Local\Temporary Internet Files
O43 - CFD: 27/01/2013 - 18:21:39 - [0,208] ----D C:\Users\clemence.clemence-PC\AppData\Local\Unity
O43 - CFD: 26/12/2012 - 17:45:46 - [21,237] ----D C:\Users\clemence.clemence-PC\AppData\Local\VirtualStore
O43 - CFD: 06/12/2012 - 19:28:55 - [0,063] ----D C:\Users\clemence.clemence-PC\AppData\Local\Windows Live
O43 - CFD: 23/1
je déséspere ...
merci beaucoup pour ton aide Destrio 