Virus
Fermé
gubinic
Messages postés
34
Date d'inscription
mercredi 1 juillet 2009
Statut
Membre
Dernière intervention
8 août 2011
-
7 août 2011 à 18:08
kalimusic Messages postés 14014 Date d'inscription samedi 7 novembre 2009 Statut Contributeur sécurité Dernière intervention 20 novembre 2015 - 7 août 2011 à 18:54
kalimusic Messages postés 14014 Date d'inscription samedi 7 novembre 2009 Statut Contributeur sécurité Dernière intervention 20 novembre 2015 - 7 août 2011 à 18:54
A voir également:
- Virus
- Svchost.exe virus - Guide
- Faux message virus iphone - Forum iPhone
- Operagxsetup virus ✓ - Forum Virus
- Youtu.be virus - Guide
- Vérificateur de lien virus - Guide
5 réponses
kalimusic
Messages postés
14014
Date d'inscription
samedi 7 novembre 2009
Statut
Contributeur sécurité
Dernière intervention
20 novembre 2015
3 027
7 août 2011 à 18:10
7 août 2011 à 18:10
Bonjour,
Il faut poster à la suite de ton sujet en cliquant sur répondre, merci :)
https://forums.commentcamarche.net/forum/affich-22810814-searchqu-com-410
Il faut poster à la suite de ton sujet en cliquant sur répondre, merci :)
https://forums.commentcamarche.net/forum/affich-22810814-searchqu-com-410
gubinic
Messages postés
34
Date d'inscription
mercredi 1 juillet 2009
Statut
Membre
Dernière intervention
8 août 2011
7 août 2011 à 18:15
7 août 2011 à 18:15
bonjour,
Merci, je ne savais pas comment repondre
Merci, je ne savais pas comment repondre
gubinic
Messages postés
34
Date d'inscription
mercredi 1 juillet 2009
Statut
Membre
Dernière intervention
8 août 2011
7 août 2011 à 18:50
7 août 2011 à 18:50
Rapport de ZHPDiag v1.28.1313 par Nicolas Coolman, Update du 05/08/2011
Run by EMMA at 07/08/2011 16:20:03
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
OPIE: Opera v11.00
MFIE: Mozilla Firefox 5.0.1 v (Defaut)
GCIE: Google Chrome v13.0.782.107
---\\ Windows Product Information
Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, VOLUME_MAK channel
Windows ID Activation : OK
~ Windows Partial Key : 2R98X
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 6, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3070 MB (58% free)
System Restore: Activé (Enable)
System drive C: has 12 GB (23%) free of 50 GB
---\\ Logged in mode
~ Computer Name: EMMA-PC
~ User Name: EMMA
~ All Users Names: HomeGroupUser$, EMMA, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\EMMA\AppData\Roaming\
~ %Desktop% : C:\Users\EMMA\Desktop\
~ %Favorites% : C:\Users\EMMA\Favorites\
~ %LocalAppData% : C:\Users\EMMA\AppData\Local\
~ %StartMenu% : C:\Users\EMMA\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 12 Go of 50 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 135 Go of 183 Go)
E:\ CD-ROM drive (Free 0 Go of 2 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 310 Go of 466 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.01/05/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.14/07/2009 - 02:14:31.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.01/04/2011 - 06:58:25.) -- C:\Windows\system32\wininet.dll [1126912]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.24/02/2011 - 13:17:54.) -- C:\Windows\system32\Winlogon.exe [286720]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
[MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.01/05/2011 - 06:39:00.) -- C:\Windows\system32\drivers\ntfs.sys [1211264]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.24/02/2011 - 13:21:24.) -- C:\Windows\system32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (....) (.24/02/2011 - 13:08:50.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/39
~ Mes musiques (My Musics) : 3/363
~ Mes Favoris (My Favorites) : 2/20
~ Mes Documents (My Documents) : 9/75
~ Mon Bureau (My Desktop) : 18/2199
~ Menu demarrer (Programs) : 7/35
~ Scan Hidden Files in 00mn 04s
---\\ Processus lancés
[MD5.D043FCB53AEE2398D83F665729028DD8] - (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe [3290224]
[MD5.035A4DC0EA6506F422EBF388DE9EE720] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\LOGICIELS EMMA\AVG\avgtray.exe [2071904]
[MD5.762AE55797CC326E7C92FFD5F8476E08] - (.Logiciels13 - Agenda Informatique.) -- C:\Program Files\Pense-bete\pb79f.exe [2175488]
[MD5.670FCAD3345904BF3BC477EA0FB2D093] - (.Stardock - ObjectDock.) -- C:\LOGICIELS EMMA\Objectdock\ObjectDock\ObjectDock.exe [3450608]
[MD5.8506E4E069EEE07F7A647060B42A7F0A] - (...) -- C:\Program Files\Stardock\DesktopGadgets\Think Green Weather\Think Green Weather.exe [728576]
[MD5.D3B0DDBF380D3D6514AF6614F0BFD945] - (.IObit - Advanced SystemCare 3.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AWC.exe [2402512]
[MD5.AFBFD84BBD80D72C7EE9CA874003C1F2] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\LOGICIELS EMMA\AVG\Identity Protection\agent\bin\avgidsmonitor.exe [596560]
[MD5.9EBA7E33486464209AE48C2C319E4C69] - (.Logitech Inc. - Logitech Video COM Service.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [186904]
[MD5.7A41533F6E5263C2548E90A2F6239AC2] - (.Ginger Software - BabylonTC.) -- C:\Program Files\Babylon\Babylon-Pro\TC\BabylonTC.exe [2899568]
[MD5.5F8C39A444DA36FCCE9801AC0D84811E] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe [366024]
[MD5.80D352BE20A74B3A44F2B4A4E79DDADD] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe [263624]
[MD5.610B6B046D15A11434CCDA3442F104BD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\EMMA\Downloads\Nouveau dossier\ZHPDiag2.exe [2570904]
[MD5.9311F4604EA75FC10C3B783BEA71D813] - (.Pas de propriétaire - Setup/Uninstall.) -- C:\Users\EMMA\AppData\Local\Temp\is-4DFSF.tmp\ZHPDiag2.tmp [715776]
[MD5.12FDBDA5759C7A19F57799F91F9F97A4] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [664064]
~ Scan Processes Running in 00mn 00s
---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1)
B0 - SPO: operaprefs.ini [EMMA] Home URL=http://mystart.incredimail.com?a=19d4nvDFI2Y
B1 - OSP: search.ini [EMMA] URL=http://www.bing.com/search?mkt=fr-FR&form=MIAWB2&q=%s
B1 - OSP: search.ini [EMMA] URL=http://mystart.incredimail.com/?loc=OperaSB&search=%s&a=19d4nvDFI2Y
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Opera\Program\Plugins\NPOFFICE.DLL
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin2.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin3.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin4.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin5.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin6.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin7.dll
~ Scan Opera Browser in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\EMMA\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.searchnu.com/
G2 - GCE: Preference [User Data\Default] [bhmmomiinigofkjcapegjjndpbikblnp] WOT v.1.2.2 (Activé)
G2 - GCE: Preference [User Data\Default] [dhkplhfnhceodhffomolpfigojocbpcb] Babylon Chrome OCR v.1.1 (Activé)
G2 - GCE: Preference [User Data\Default] [hinehgnhgiohbfpbpgkjnelkcgdkcgha] Select To Get Maps v.1.1.1 (Activé)
G2 - GCE: Preference [User Data\Default] [lncjcfkpannmofmpgdfoonkniofdnaba] Chrome PDF Viewer v. (Désactivé)
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\prefs.js
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\MyStart Search.xml
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\SearchResults.xml
M0 - MFSP: prefs.js [EMMA - tfxu0qtg.default] http://www.searchnu.com/410
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\engine@conduit.com] [] Conduit Engine v3.3.3.2 (.Conduit Ltd..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{249d74a3-bd19-4657-b6ce-e62f480a20de}] [] IncrediMail MediaBar Francais 2 Community Toolbar v3.5.0.12 (.Conduit Ltd..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{37fa1426-b82d-11db-8314-0800200c9a66}] [] WebMail Notifier v2.7.9 (.Byungwook Kang.)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.8.20110620112826 (.Yahoo!.)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{64b507cd-5eb6-4217-aef4-c88b4fcfb77b}] [] Hoyle Community Toolbar v3.6.0.10 (.Conduit Ltd..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{99079a25-328f-4bd4-be04-00955acaa0a7}] [] Searchqu Toolbar v4.3.1.00 (.Visicom Media Inc..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20110704 (.WOT Services Oy.)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.4 (.Michel Gutierrez.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\LOGICIELS EMMA\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6] - (.Yahoo! Inc. - Yahoo Application State Plugin version 1.0.0.7.) -- C:\Program Files\Yahoo!\Shared\npYState.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\EMMA\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\EMMA\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKUS\S-1-5-21-3069210402-3106906876-903222181-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.ro/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = https://www.google.ro/?gws_rd=ssl
R1 - HKUS\S-1-5-21-3069210402-3106906876-903222181-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.ro/?gws_rd=ssl
R3 - URLSearchHook: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files\uTorrentBar_FR\tbuTo1.dll
R3 - URLSearchHook: IncrediMail MediaBar 2 Toolbar - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Hoyle Toolbar - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: YTNavAssist.YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} . (.Yahoo! Inc. - Yahoo! Toolbar Nav Assistant plugin.) (2011, 3, 16, 01) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTNavAssist.dll
R3 - URLSearchHook: Hoyle Toolbar - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} . (...) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentBar_FR\tbuTo1.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} . (.Babylon BHO - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\bh\BabylonToolbar.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngin0.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\LOGICIELS EMMA\AVG\avgssie.dll
O2 - BHO: Hoyle - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} Clé orpheline
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\WIA6EB~1\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O2 - BHO: Loader Class - {9D717F81-9148-4f12-8568-69135F087DB0} . (.Bandoo Media, inc - Url Helper.) -- C:\PROGRA~1\WIA6EB~1\Datamngr\BROWSE~1.DLL
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\LOGICIELS EMMA\AVG\Toolbar\IEToolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: IncrediMail MediaBar 2 Toolbar - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} Clé orpheline
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} . (.Yahoo! Inc - Yahoo! Single Instance for Mail.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\LOGICIELS EMMA\AVG\Toolbar\IEToolbar.dll
O3 - Toolbar: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentBar_FR\tbuTo1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngin0.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: IncrediMail MediaBar 2 Toolbar - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} . (...) -- (.not file.)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} . (.Pas de propriétaire - Easy-WebPrint.) -- C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Hoyle Toolbar - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} . (...) -- (.not file.)
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} . (.Babylon Ltd. - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarTlbr.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\WIA6EB~1\Datamngr\ToolBar\searchqudtx.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [BabylonToolbar] . (.Babylon Ltd. - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarsrv.exe
O4 - HKLM\..\Run: [Babylon Client] . (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\Auslogics Disk Defrag.lnk . (.Auslogics.) -- C:\LOGICIELS EMMA\Disk Defrag\Auslogics Disk Defrag\DiskDefrag.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\JQ Solitaire.lnk . (.iWin.) -- C:\LOGICIELS EMMA\JEUX\Jevel Quest\Jewel Quest Solitaire III\JQSolitaire3.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\Ravensburger Puzzle.lnk . (.Daedalic Entertainment.) -- C:\LOGICIELS EMMA\JEUX\Ravensburger Puzzle\RavensburgerPuzzle.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\Total Audio Converter.lnk . (.Softplicity.) -- C:\LOGICIELS EMMA\Total audio converter\TotalAudioConverter\AudioConverter.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare.lnk . (.IObit.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AWC.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{735619D4-B42A-437A-958C-199BFCAEDB38}\SafariIco.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Babylon.lnk . (.Babylon Ltd..) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CodeStuff Starter.lnk . (.CodeStuff.) -- C:\LOGICIELS EMMA\Starter\Starter.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk . (.Gretech Corp..) -- C:\LOGICIELS EMMA\GomPlayer\GOM.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk . (.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Opera.lnk . (.Opera Software.) -- C:\Program Files\Opera\opera.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Total Video Player.lnk . (...) -- C:\LOGICIELS EMMA\Total video Converter\Total Video Converter\tvp.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk . (.Yahoo! Inc..) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
~ Scan Global Startup in 00mn 03s
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Add animation to IncrediMail Style Box . (...) -- C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\LOGICI~1\MICROS~1\OFFICE11\EXCEL.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Impression rapide . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Imprimer . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Prévisualiser . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Translate this web page with Babylon . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O8 - Extra context menu item: Translate with Babylon . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companion
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Skype Plug-In - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\LOGICI~1\MICROS~1\OFFICE11\REFBARH.ICO
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{10046FB8-750B-4964-8BCC-7D45FF65BD18}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{9616F492-3425-4ECA-B4E3-B7B5CE75D409}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{10046FB8-750B-4964-8BCC-7D45FF65BD18}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{9616F492-3425-4ECA-B4E3-B7B5CE75D409}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{10046FB8-750B-4964-8BCC-7D45FF65BD18}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{9616F492-3425-4ECA-B4E3-B7B5CE75D409}: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\LOGICIELS EMMA\AVG\Toolbar\IEToolbar.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\LOGICIELS EMMA\AVG\avgpp.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Bandoo Media, inc - Data Manager.) - C:\PROGRA~1\WIA6EB~1\Datamngr\datamngr.dll
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {E31004D1-A431-41B8-826F-E902F9D95C81} . (.Microsoft Corporation - Microsoft Windows 7 Ultimate Extra: Windows.) -- C:\Windows\System32\DreamScene.dll
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG E-mail Scanner (avg9emc) . (.AVG Technologies CZ, s.r.o. - AVG E-Mail Scanner.) - C:\LOGICIELS EMMA\AVG\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\LOGICIELS EMMA\AVG\avgwdsvc.exe
O23 - Service: AVG Firewall (avgfws9) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\LOGICIELS EMMA\AVG\avgfws9.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG IDS application.) - C:\LOGICIELS EMMA\AVG\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LVCOMSer (LVCOMSer) . (.Logitech Inc. - Logitech Video COM Service.) - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: TeamViewer 6 (TeamViewer6) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\LOGICIELS EMMA\Team Viewer\Version6\TeamViewer_Service.exe
O23 - Service: Stardock WindowBlinds (WindowBlinds) . (.Stardock Corporation - WindowBlinds Service. Part of Stardock Win.) - C:\Program Files\Stardock\MyColors\VistaSrv.exe
O23 - Service: WlanWpsSvc (WlanWpsSvc) . (.Pas de propriétaire - WlanSvc Application.) - C:\Program Files\TRENDnet\TEW-648UB\WlanWpsSvc.exe
O23 - Service: Yahoo! Updater (YahooAUService) . (.Yahoo! Inc. - AutoUpater Service Module.) - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AWC AutoSweep.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AWC Startup.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001UA.job
[MD5.D6E96E6A872C6754014D694712342FC5] [APT] [AWC AutoSweep] (.IObit.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AutoSweep.exe
[MD5.D3B0DDBF380D3D6514AF6614F0BFD945] [APT] [AWC Startup] (.IObit.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AWC.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001Core] (.Google Inc..) -- C:\Users\EMMA\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001UA] (.Google Inc..) -- C:\Users\EMMA\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.2DB9877A60E2343490D71C8EA7E26FE3] [APT] [{054B7882-851D-41E9-9881-31AA775E2543}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 03s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Avgfwfd) . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) - C:\Windows\system32\DRIVERS\avgfwd6x.sys
O41 - Driver: (AvgLdx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\system32\Drivers\avgldx86.sys
O41 - Driver: (AvgMfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\system32\Drivers\avgmfx86.sys
O41 - Driver: (AvgTdiX) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\system32\Drivers\avgtdix.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: A White Christmas Demo - (.Pas de propriétaire.) [HKLM] -- A White Christmas Demo
O42 - Logiciel: AVG 9.0 - (.AVG Technologies.) [HKLM] -- AVG9Uninstall
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Advanced SystemCare 3 - (.IObit.) [HKLM] -- Advanced SystemCare 3_is1
O42 - Logiciel: AnyBizSoft PDF Converter (Build 2.5.0) - (.AnyBizSoft Software.) [HKLM] -- {8F9C77FF-C017-4B12-BA71-A3A53BD52775}_is1
O42 - Logiciel: Aqua Real - (.Pas de propriétaire.) [HKLM] -- {1E66C7FF-F827-4AEF-A998-932EA824998B}
O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
O42 - Logiciel: Babylon - (.Babylon.) [HKLM] -- Babylon
O42 - Logiciel: Babylon toolbar on IE - (.Pas de propriétaire.) [HKLM] -- BabylonToolbar
O42 - Logiciel: CanoScan Toolbox Ver4.9 - (.Pas de propriétaire.) [HKLM] -- {CA9BCD4D-B782-4637-8F1F-F9A328D3C244}
O42 - Logiciel: Canon Inkjet Printer Driver Add-On Module - (.Pas de propriétaire.) [HKLM] -- CANONIJINBOXADDON100
O42 - Logiciel: Canon i320 - (.Pas de propriétaire.) [HKLM] -- CANONBJ_Deinstall_CNMCP47.DLL
O42 - Logiciel: CodeStuff Starter - (.CodeStuff.) [HKLM] -- CodeStuff Starter
O42 - Logiciel: Coffret de pilotes Logitech QuickCam for Enterprise - (.Pas de propriétaire.) [HKLM] -- lvdrivers_11.72
O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] -- conduitEngine
O42 - Logiciel: Dream Aquarium 1.234 - (.Dream Aquarium Screensaver.) [HKLM] -- Dream Aquarium
O42 - Logiciel: DriverMax 5 - (.Innovative Solutions.) [HKLM] -- DMX5_is1
O42 - Logiciel: EPSON Printer Software - (.Pas de propriétaire.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: Easy-WebPrint - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint
O42 - Logiciel: Encyclopédie Microsoft Encarta 99 - (.Microsoft Corporation.) [HKLM] -- Encarta99F
O42 - Logiciel: Fireside Christmas 3D Screensaver - (.3planesoft.) [HKLM] -- Fireside Christmas 3D Screensaver
O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM] -- GOM Player
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Hoyle Puzzle and Board Games 2011 (remove only) - (.Pas de propriétaire.) [HKLM] -- Hoyle Puzzle and Board Games 2011
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel(R) TV Wizard - (.Intel Corporation.) [HKLM] -- TVWiz
O42 - Logiciel: Jewel Quest Solitaire III 1.00 - (.Pas de propriétaire.) [HKLM] -- Jewel Quest Solitaire III 1.00
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mozilla Firefox 5.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 5.0.1 (x86 fr)
O42 - Logiciel: ObjectDock - (.Pas de propriétaire.) [HKLM] -- ObjectDock
O42 - Logiciel: Opera 11.00 - (.Opera Software ASA.) [HKLM] -- Opera 11.00.1156
O42 - Logiciel: Pense-Bete 79f - (.Pas de propriétaire.) [HKLM] -- Pense-Bête 7.9f_is1
O42 - Logiciel: PhotoFiltre Studio X - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre Studio X
O42 - Logiciel: Pixelfusion WMP Plugin 1.60 - (.QO Labs.) [HKLM] -- Pixelfusion WMP Plugin_is1
O42 - Logiciel: Ravensburger Puzzle - (.AllSmartGames.) [HKLM] -- Ravensburger Puzzle1.0
O42 - Logiciel: Redemption Cemetery - Curse of the Raven Collector's Edition - (.Pas de propriétaire.) [HKLM] -- Redemption Cemetery - Curse of the Raven Collector's Edition
O42 - Logiciel: SIW version 2010.07.14 - (.Topala Software Solutions.) [HKLM] -- {AB67580-257C-45FF-B8F4-C8C30682091A}_is1
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870
O42 - Logiciel: Smart Defrag 2 - (.IObit.) [HKLM] -- Smart Defrag 2_is1
O42 - Logiciel: Stardock MyColors - (.Stardock Corporation.) [HKLM] -- Stardock MyColors
O42 - Logiciel: Stardock MyColors - (.Stardock Corporation.) [HKLM] -- {6F7614CC-F33A-4877-8814-49856F441F3C}
O42 - Logiciel: TeamViewer 6 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 6
O42 - Logiciel: Time Adjuster v2.9 (STANDARD) - (.Pas de propriétaire.) [HKLM] -- TimeAdjuster
O42 - Logiciel: Total Video Converter 3.70 100621 - (.EffectMatrix Inc..) [HKLM] -- Total Video Converter 3.70_is1
O42 - Logiciel: TotalAudioConverter - (.Softplicity, Inc..) [HKLM] -- Total Audio Converter_is1
O42 - Logiciel: Utilitaire et pilote d'adaptateur USB 2.0 TEW-648UB sans fil - (.TRENDnet.) [HKLM] -- {74A8117D-07C6-4222-AFFD-51421B69DEF0}
O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Verbatim Hard Drive Formatter - (.Verbatim.) [HKLM] -- Verbatim Hard Drive Formatter_is1
O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Driver Package - Realtek Semiconductor Corp. (RTL8192su) Net (08/15/2009 1085.7.0815.2009) - (.Realtek Semiconductor Corp..) [HKLM] -- 1162B8A9F8FFE9DB06896E4E1E28FD9B9BF5BA86
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Searchqu Toolbar - (.Bandoo Media Inc.) [HKLM] -- Searchqu 0 MediaBar
O42 - Logiciel: Yahoo! Messenger - (.Yahoo! Inc..) [HKLM] -- Yahoo! Messenger
O42 - Logiciel: Yahoo! Software Update - (.Pas de propriétaire.) [HKLM] -- Yahoo! Software Update
O42 - Logiciel: Yahoo! Toolbar - (.Pas de propriétaire.) [HKLM] -- Yahoo! Companion
O42 - Logiciel: uTorrentBar_FR Toolbar - (.uTorrentBar_FR.) [HKLM] -- uTorrentBar_FR Toolbar
O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASProtect]
[HKCU\Software\Adobe]
[HKCU\Software\Alawar]
[HKCU\Software\AnyBizSoft]
[HKCU\Software\AppDataLow\Avg]
[HKCU\Software\AppDataLow\Software\AVG Security Toolbar]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Hoyle]
[HKCU\Software\AppDataLow\Software\IncrediMail_MediaBar_2]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software\conduitEngine]
[HKCU\Software\AppDataLow\Software\searchqutoolbar]
[HKCU\Software\AppDataLow\Software\uTorrentBar_FR]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Auslogics]
[HKCU\Software\Avg]
[HKCU\Software\BabylonToolbar]
[HKCU\Software\Babylon]
[HKCU\Software\BitTorrent]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeStuff]
[HKCU\Software\DataLode]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\Freeverse Software]
[HKCU\Software\GOG]
[HKCU\Software\GRETECH]
[HKCU\Software\Gabest]
[HKCU\Software\GameHouse]
[HKCU\Software\Google]
[HKCU\Software\Helmsman]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\INTEL]
[HKCU\Software\ImInstaller]
[HKCU\Software\IncrediMail]
[HKCU\Software\Incredibar]
[HKCU\Software\Innovative Solutions]
[HKCU\Software\JavaSoft]
[HKCU\Software\LadyDove's Elite Screensavers]
[HKCU\Software\LogiShared]
[HKCU\Software\Logitech]
[HKCU\Software\Macromedia]
[HKCU\Software\Modern UI Test]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OLYMPUS]
[HKCU\Software\OfferBox]
[HKCU\Software\Opera Software]
[HKCU\Software\Pense-bete]
[HKCU\Software\Policies]
[HKCU\Software\QO Developments]
[HKCU\Software\SWiSHzone.com]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\Softplicity]
[HKCU\Software\Spiral Monkey]
[HKCU\Software\Stardock]
[HKCU\Software\TAdvCheckList]
[HKCU\Software\TeamViewer]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WideStream]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\i-FunBox.com]
[HKCU\Software\tvp]
[HKLM\Software\3Planesoft]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVG Security Toolbar]
[HKLM\Software\Adobe]
[HKLM\Software\Alawar]
[HKLM\Software\AnyBizSoft]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Avg]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CanonBJ]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Coral Reef Adventure Aquarium 3D]
[HKLM\Software\DataMngr]
[HKLM\Software\EACADEMY]
[HKLM\Software\EPSON]
[HKLM\Software\Encore]
[HKLM\Software\Formosoft]
[HKLM\Software\GEAR Software]
[HKLM\Software\GRETECH]
[HKLM\Software\Global IP Solutions]
[HKLM\Software\Google]
[HKLM\Software\Hoyle]
[HKLM\Software\IObit]
[HKLM\Software\ImInstaller]
[HKLM\Software\IncrediMail_MediaBar_2]
[HKLM\Software\Incredibar]
[HKLM\Software\Innovative Solutions]
[HKLM\Software\Intel]
[HKLM\Software\IrekZielinskiSoft]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Licenses]
[HKLM\Software\LocalCooling]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nero]
[HKLM\Software\Netscape]
[HKLM\Software\ODBC]
[HKLM\Software\OLYMPUS]
[HKLM\Software\OfferBox]
[HKLM\Software\Opera Software]
[HKLM\Software\Policies]
[HKLM\Software\ReflexiveArcade]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\SearchquMediabarTb]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Spiral Monkey]
[HKLM\Software\Stardock]
[HKLM\Software\TRENDnet]
[HKLM\Software\TeamViewer]
[HKLM\Software\The Silicon Realms Toolworks]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\Windows]
[HKLM\Software\Yahoo]
[HKLM\Software\iTinySoft]
[HKLM\Software\iWin]
[HKLM\Software\mozilla.org]
[HKLM\Software\uTorrentBar_FR]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 06/07/2011 - 11:13:28 - [10450936] ----D- C:\Program Files\3Planesoft
O43 - CFD: 06/07/2011 - 11:05:12 - [38822] ----D- C:\Program Files\A White Christmas Demo
O43 - CFD: 19/06/2011 - 12:47:06 - [164367380] ----D- C:\Program Files\Adobe
O43 - CFD: 08/07/2011 - 07:26:32 - [2428606] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 19/12/2010 - 22:34:06 - [0] ----D- C:\Program Files\AVG
O43 - CFD: 03/08/2011 - 10:59:44 - [14868953] ----D- C:\Program Files\Babylon
O43 - CFD: 03/08/2011 - 10:59:52 - [2172336] ----D- C:\Program Files\BabylonToolbar
O43 - CFD: 28/07/2011 - 09:09:14 - [628535] ----D- C:\Program Files\Bonjour
O43 - CFD: 27/07/2011 - 09:10:18 - [29768426] ----D- C:\Program Files\Boonka
O43 - CFD: 20/06/2011 - 19:41:18 - [11110158] ----D- C:\Program Files\Canon
O43 - CFD: 06/07/2011 - 11:15:24 - [0] ----D- C:\Program Files\christmas
O43 - CFD: 01/08/2011 - 09:54:38 - [775232212] ----D- C:\Program Files\Common Files
O43 - CFD: 20/12/2010 - 15:41:52 - [638560] ----D- C:\Program Files\Conduit
O43 - CFD: 17/03/2011 - 22:06:56 - [7895709] ----D- C:\Program Files\ConduitEngine
O43 - CFD: 31/07/2011 - 18:40:56 - [1474704] ----D- C:\Program Files\DIFX
O43 - CFD: 01/08/2011 - 18:25:36 - [14841101] ----D- C:\Program Files\Dream Aquarium
O43 - CFD: 24/02/2011 - 22:59:56 - [83226644] ----D- C:\Program Files\DVD Maker
O43 - CFD: 19/12/2010 - 21:54:44 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 24/02/2011 - 12:39:00 - [814496] ----D- C:\Program Files\FreeApps
O43 - CFD: 20/12/2010 - 15:32:58 - [92110827] ----D- C:\Program Files\Google
O43 - CFD: 29/06/2011 - 00:06:22 - [0] ----D- C:\Program Files\IncrediBar
O43 - CFD: 28/05/2011 - 10:07:38 - [27494886] ----D- C:\Program Files\IncrediMail
O43 - CFD: 02/08/2011 - 21:36:30 - [6077710] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 10/01/2011 - 20:45:24 - [12036242] ----D- C:\Program Files\Intel
O43 - CFD: 16/06/2011 - 07:02:22 - [6683460] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 24/02/2011 - 12:38:48 - [7824096] ----D- C:\Program Files\IObit
O43 - CFD: 28/07/2011 - 09:10:28 - [1868883] ----D- C:\Program Files\iPod
O43 - CFD: 20/12/2010 - 16:18:26 - [89491703] ----D- C:\Program Files\Java
O43 - CFD: 16/01/2011 - 20:47:30 - [10513727] ----D- C:\Program Files\Logitech
O43 - CFD: 16/01/2011 - 20:54:22 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 11/07/2011 - 02:36:28 - [43953064] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 15/06/2011 - 22:37:58 - [38411899] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 11/07/2011 - 02:19:22 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 11/07/2011 - 02:28:56 - [4368271] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 20/12/2010 - 13:50:52 - [8352099] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 14/07/2009 - 06:52:32 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 11/07/2011 - 02:36:08 - [39944647] ----D- C:\Program Files\MSECache
O43 - CFD: 31/07/2011 - 18:39:08 - [0] ----D- C:\Program Files\MSXML 4.0
Run by EMMA at 07/08/2011 16:20:03
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
OPIE: Opera v11.00
MFIE: Mozilla Firefox 5.0.1 v (Defaut)
GCIE: Google Chrome v13.0.782.107
---\\ Windows Product Information
Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, VOLUME_MAK channel
Windows ID Activation : OK
~ Windows Partial Key : 2R98X
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 6, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3070 MB (58% free)
System Restore: Activé (Enable)
System drive C: has 12 GB (23%) free of 50 GB
---\\ Logged in mode
~ Computer Name: EMMA-PC
~ User Name: EMMA
~ All Users Names: HomeGroupUser$, EMMA, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\EMMA\AppData\Roaming\
~ %Desktop% : C:\Users\EMMA\Desktop\
~ %Favorites% : C:\Users\EMMA\Favorites\
~ %LocalAppData% : C:\Users\EMMA\AppData\Local\
~ %StartMenu% : C:\Users\EMMA\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 12 Go of 50 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 135 Go of 183 Go)
E:\ CD-ROM drive (Free 0 Go of 2 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 310 Go of 466 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.01/05/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.14/07/2009 - 02:14:31.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.01/04/2011 - 06:58:25.) -- C:\Windows\system32\wininet.dll [1126912]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.24/02/2011 - 13:17:54.) -- C:\Windows\system32\Winlogon.exe [286720]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
[MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.01/05/2011 - 06:39:00.) -- C:\Windows\system32\drivers\ntfs.sys [1211264]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.24/02/2011 - 13:21:24.) -- C:\Windows\system32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (....) (.24/02/2011 - 13:08:50.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/39
~ Mes musiques (My Musics) : 3/363
~ Mes Favoris (My Favorites) : 2/20
~ Mes Documents (My Documents) : 9/75
~ Mon Bureau (My Desktop) : 18/2199
~ Menu demarrer (Programs) : 7/35
~ Scan Hidden Files in 00mn 04s
---\\ Processus lancés
[MD5.D043FCB53AEE2398D83F665729028DD8] - (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe [3290224]
[MD5.035A4DC0EA6506F422EBF388DE9EE720] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\LOGICIELS EMMA\AVG\avgtray.exe [2071904]
[MD5.762AE55797CC326E7C92FFD5F8476E08] - (.Logiciels13 - Agenda Informatique.) -- C:\Program Files\Pense-bete\pb79f.exe [2175488]
[MD5.670FCAD3345904BF3BC477EA0FB2D093] - (.Stardock - ObjectDock.) -- C:\LOGICIELS EMMA\Objectdock\ObjectDock\ObjectDock.exe [3450608]
[MD5.8506E4E069EEE07F7A647060B42A7F0A] - (...) -- C:\Program Files\Stardock\DesktopGadgets\Think Green Weather\Think Green Weather.exe [728576]
[MD5.D3B0DDBF380D3D6514AF6614F0BFD945] - (.IObit - Advanced SystemCare 3.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AWC.exe [2402512]
[MD5.AFBFD84BBD80D72C7EE9CA874003C1F2] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\LOGICIELS EMMA\AVG\Identity Protection\agent\bin\avgidsmonitor.exe [596560]
[MD5.9EBA7E33486464209AE48C2C319E4C69] - (.Logitech Inc. - Logitech Video COM Service.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [186904]
[MD5.7A41533F6E5263C2548E90A2F6239AC2] - (.Ginger Software - BabylonTC.) -- C:\Program Files\Babylon\Babylon-Pro\TC\BabylonTC.exe [2899568]
[MD5.5F8C39A444DA36FCCE9801AC0D84811E] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe [366024]
[MD5.80D352BE20A74B3A44F2B4A4E79DDADD] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe [263624]
[MD5.610B6B046D15A11434CCDA3442F104BD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\EMMA\Downloads\Nouveau dossier\ZHPDiag2.exe [2570904]
[MD5.9311F4604EA75FC10C3B783BEA71D813] - (.Pas de propriétaire - Setup/Uninstall.) -- C:\Users\EMMA\AppData\Local\Temp\is-4DFSF.tmp\ZHPDiag2.tmp [715776]
[MD5.12FDBDA5759C7A19F57799F91F9F97A4] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [664064]
~ Scan Processes Running in 00mn 00s
---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1)
B0 - SPO: operaprefs.ini [EMMA] Home URL=http://mystart.incredimail.com?a=19d4nvDFI2Y
B1 - OSP: search.ini [EMMA] URL=http://www.bing.com/search?mkt=fr-FR&form=MIAWB2&q=%s
B1 - OSP: search.ini [EMMA] URL=http://mystart.incredimail.com/?loc=OperaSB&search=%s&a=19d4nvDFI2Y
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Opera\Program\Plugins\NPOFFICE.DLL
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin2.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin3.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin4.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin5.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin6.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin7.dll
~ Scan Opera Browser in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\EMMA\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.searchnu.com/
G2 - GCE: Preference [User Data\Default] [bhmmomiinigofkjcapegjjndpbikblnp] WOT v.1.2.2 (Activé)
G2 - GCE: Preference [User Data\Default] [dhkplhfnhceodhffomolpfigojocbpcb] Babylon Chrome OCR v.1.1 (Activé)
G2 - GCE: Preference [User Data\Default] [hinehgnhgiohbfpbpgkjnelkcgdkcgha] Select To Get Maps v.1.1.1 (Activé)
G2 - GCE: Preference [User Data\Default] [lncjcfkpannmofmpgdfoonkniofdnaba] Chrome PDF Viewer v. (Désactivé)
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\prefs.js
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\MyStart Search.xml
M3 - MFPP: Plugins - [EMMA] -- C:\Users\EMMA\AppData\Roaming\Mozilla\Firefox\Profiles\tfxu0qtg.default\searchplugins\SearchResults.xml
M0 - MFSP: prefs.js [EMMA - tfxu0qtg.default] http://www.searchnu.com/410
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\engine@conduit.com] [] Conduit Engine v3.3.3.2 (.Conduit Ltd..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{249d74a3-bd19-4657-b6ce-e62f480a20de}] [] IncrediMail MediaBar Francais 2 Community Toolbar v3.5.0.12 (.Conduit Ltd..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{37fa1426-b82d-11db-8314-0800200c9a66}] [] WebMail Notifier v2.7.9 (.Byungwook Kang.)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.8.20110620112826 (.Yahoo!.)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{64b507cd-5eb6-4217-aef4-c88b4fcfb77b}] [] Hoyle Community Toolbar v3.6.0.10 (.Conduit Ltd..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{99079a25-328f-4bd4-be04-00955acaa0a7}] [] Searchqu Toolbar v4.3.1.00 (.Visicom Media Inc..)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20110704 (.WOT Services Oy.)
M2 - MFEP: prefs.js [EMMA - tfxu0qtg.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.4 (.Michel Gutierrez.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\LOGICIELS EMMA\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6] - (.Yahoo! Inc. - Yahoo Application State Plugin version 1.0.0.7.) -- C:\Program Files\Yahoo!\Shared\npYState.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\EMMA\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\EMMA\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKUS\S-1-5-21-3069210402-3106906876-903222181-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.ro/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = https://www.google.ro/?gws_rd=ssl
R1 - HKUS\S-1-5-21-3069210402-3106906876-903222181-1001\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.ro/?gws_rd=ssl
R3 - URLSearchHook: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files\uTorrentBar_FR\tbuTo1.dll
R3 - URLSearchHook: IncrediMail MediaBar 2 Toolbar - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Hoyle Toolbar - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: YTNavAssist.YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} . (.Yahoo! Inc. - Yahoo! Toolbar Nav Assistant plugin.) (2011, 3, 16, 01) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTNavAssist.dll
R3 - URLSearchHook: Hoyle Toolbar - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} . (...) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentBar_FR\tbuTo1.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} . (.Babylon BHO - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\bh\BabylonToolbar.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngin0.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\LOGICIELS EMMA\AVG\avgssie.dll
O2 - BHO: Hoyle - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} Clé orpheline
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\WIA6EB~1\Datamngr\ToolBar\searchqudtx.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O2 - BHO: Loader Class - {9D717F81-9148-4f12-8568-69135F087DB0} . (.Bandoo Media, inc - Url Helper.) -- C:\PROGRA~1\WIA6EB~1\Datamngr\BROWSE~1.DLL
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\LOGICIELS EMMA\AVG\Toolbar\IEToolbar.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: IncrediMail MediaBar 2 Toolbar - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} Clé orpheline
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} . (.Yahoo! Inc - Yahoo! Single Instance for Mail.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\LOGICIELS EMMA\AVG\Toolbar\IEToolbar.dll
O3 - Toolbar: uTorrentBar_FR Toolbar - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentBar_FR\tbuTo1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngin0.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: IncrediMail MediaBar 2 Toolbar - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} . (...) -- (.not file.)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} . (.Pas de propriétaire - Easy-WebPrint.) -- C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Hoyle Toolbar - {64b507cd-5eb6-4217-aef4-c88b4fcfb77b} . (...) -- (.not file.)
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} . (.Babylon Ltd. - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarTlbr.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\WIA6EB~1\Datamngr\ToolBar\searchqudtx.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [BabylonToolbar] . (.Babylon Ltd. - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarsrv.exe
O4 - HKLM\..\Run: [Babylon Client] . (.Babylon Ltd. - Babylon Information Tool.) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\Auslogics Disk Defrag.lnk . (.Auslogics.) -- C:\LOGICIELS EMMA\Disk Defrag\Auslogics Disk Defrag\DiskDefrag.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\JQ Solitaire.lnk . (.iWin.) -- C:\LOGICIELS EMMA\JEUX\Jevel Quest\Jewel Quest Solitaire III\JQSolitaire3.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\Ravensburger Puzzle.lnk . (.Daedalic Entertainment.) -- C:\LOGICIELS EMMA\JEUX\Ravensburger Puzzle\RavensburgerPuzzle.exe
O4 - Global Startup: C:\Users\EMMA\Desktop\Total Audio Converter.lnk . (.Softplicity.) -- C:\LOGICIELS EMMA\Total audio converter\TotalAudioConverter\AudioConverter.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare.lnk . (.IObit.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AWC.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{735619D4-B42A-437A-958C-199BFCAEDB38}\SafariIco.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Babylon.lnk . (.Babylon Ltd..) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CodeStuff Starter.lnk . (.CodeStuff.) -- C:\LOGICIELS EMMA\Starter\Starter.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk . (.Gretech Corp..) -- C:\LOGICIELS EMMA\GomPlayer\GOM.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk . (.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Opera.lnk . (.Opera Software.) -- C:\Program Files\Opera\opera.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Total Video Player.lnk . (...) -- C:\LOGICIELS EMMA\Total video Converter\Total Video Converter\tvp.exe
O4 - Global Startup: C:\Users\EMMA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk . (.Yahoo! Inc..) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
~ Scan Global Startup in 00mn 03s
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Add animation to IncrediMail Style Box . (...) -- C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\LOGICI~1\MICROS~1\OFFICE11\EXCEL.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Impression rapide . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Imprimer . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Easy-WebPrint Prévisualiser . (.Pas de propriétaire - Module de ressources Easy-WebPrint - Français.) -- C:\Program Files\Canon\Easy-WebPrint\Resource.dll
O8 - Extra context menu item: Translate this web page with Babylon . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O8 - Extra context menu item: Translate with Babylon . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companion
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Skype Plug-In - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\LOGICI~1\MICROS~1\OFFICE11\REFBARH.ICO
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} . (.Babylon Ltd. - Babylon Internet Explorer Addin.) -- C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{10046FB8-750B-4964-8BCC-7D45FF65BD18}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{9616F492-3425-4ECA-B4E3-B7B5CE75D409}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{10046FB8-750B-4964-8BCC-7D45FF65BD18}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{9616F492-3425-4ECA-B4E3-B7B5CE75D409}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{10046FB8-750B-4964-8BCC-7D45FF65BD18}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{9616F492-3425-4ECA-B4E3-B7B5CE75D409}: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\LOGICIELS EMMA\AVG\Toolbar\IEToolbar.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\LOGICIELS EMMA\AVG\avgpp.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Bandoo Media, inc - Data Manager.) - C:\PROGRA~1\WIA6EB~1\Datamngr\datamngr.dll
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {E31004D1-A431-41B8-826F-E902F9D95C81} . (.Microsoft Corporation - Microsoft Windows 7 Ultimate Extra: Windows.) -- C:\Windows\System32\DreamScene.dll
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG E-mail Scanner (avg9emc) . (.AVG Technologies CZ, s.r.o. - AVG E-Mail Scanner.) - C:\LOGICIELS EMMA\AVG\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\LOGICIELS EMMA\AVG\avgwdsvc.exe
O23 - Service: AVG Firewall (avgfws9) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\LOGICIELS EMMA\AVG\avgfws9.exe
O23 - Service: AVG9IDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG IDS application.) - C:\LOGICIELS EMMA\AVG\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LVCOMSer (LVCOMSer) . (.Logitech Inc. - Logitech Video COM Service.) - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: TeamViewer 6 (TeamViewer6) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\LOGICIELS EMMA\Team Viewer\Version6\TeamViewer_Service.exe
O23 - Service: Stardock WindowBlinds (WindowBlinds) . (.Stardock Corporation - WindowBlinds Service. Part of Stardock Win.) - C:\Program Files\Stardock\MyColors\VistaSrv.exe
O23 - Service: WlanWpsSvc (WlanWpsSvc) . (.Pas de propriétaire - WlanSvc Application.) - C:\Program Files\TRENDnet\TEW-648UB\WlanWpsSvc.exe
O23 - Service: Yahoo! Updater (YahooAUService) . (.Yahoo! Inc. - AutoUpater Service Module.) - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AWC AutoSweep.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AWC Startup.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001UA.job
[MD5.D6E96E6A872C6754014D694712342FC5] [APT] [AWC AutoSweep] (.IObit.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AutoSweep.exe
[MD5.D3B0DDBF380D3D6514AF6614F0BFD945] [APT] [AWC Startup] (.IObit.) -- C:\LOGICIELS EMMA\Care Advenced\Advanced SystemCare 3\AWC.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001Core] (.Google Inc..) -- C:\Users\EMMA\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3069210402-3106906876-903222181-1001UA] (.Google Inc..) -- C:\Users\EMMA\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.2DB9877A60E2343490D71C8EA7E26FE3] [APT] [{054B7882-851D-41E9-9881-31AA775E2543}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 03s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Avgfwfd) . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) - C:\Windows\system32\DRIVERS\avgfwd6x.sys
O41 - Driver: (AvgLdx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\system32\Drivers\avgldx86.sys
O41 - Driver: (AvgMfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\system32\Drivers\avgmfx86.sys
O41 - Driver: (AvgTdiX) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\system32\Drivers\avgtdix.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: A White Christmas Demo - (.Pas de propriétaire.) [HKLM] -- A White Christmas Demo
O42 - Logiciel: AVG 9.0 - (.AVG Technologies.) [HKLM] -- AVG9Uninstall
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Advanced SystemCare 3 - (.IObit.) [HKLM] -- Advanced SystemCare 3_is1
O42 - Logiciel: AnyBizSoft PDF Converter (Build 2.5.0) - (.AnyBizSoft Software.) [HKLM] -- {8F9C77FF-C017-4B12-BA71-A3A53BD52775}_is1
O42 - Logiciel: Aqua Real - (.Pas de propriétaire.) [HKLM] -- {1E66C7FF-F827-4AEF-A998-932EA824998B}
O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
O42 - Logiciel: Babylon - (.Babylon.) [HKLM] -- Babylon
O42 - Logiciel: Babylon toolbar on IE - (.Pas de propriétaire.) [HKLM] -- BabylonToolbar
O42 - Logiciel: CanoScan Toolbox Ver4.9 - (.Pas de propriétaire.) [HKLM] -- {CA9BCD4D-B782-4637-8F1F-F9A328D3C244}
O42 - Logiciel: Canon Inkjet Printer Driver Add-On Module - (.Pas de propriétaire.) [HKLM] -- CANONIJINBOXADDON100
O42 - Logiciel: Canon i320 - (.Pas de propriétaire.) [HKLM] -- CANONBJ_Deinstall_CNMCP47.DLL
O42 - Logiciel: CodeStuff Starter - (.CodeStuff.) [HKLM] -- CodeStuff Starter
O42 - Logiciel: Coffret de pilotes Logitech QuickCam for Enterprise - (.Pas de propriétaire.) [HKLM] -- lvdrivers_11.72
O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] -- conduitEngine
O42 - Logiciel: Dream Aquarium 1.234 - (.Dream Aquarium Screensaver.) [HKLM] -- Dream Aquarium
O42 - Logiciel: DriverMax 5 - (.Innovative Solutions.) [HKLM] -- DMX5_is1
O42 - Logiciel: EPSON Printer Software - (.Pas de propriétaire.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: Easy-WebPrint - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint
O42 - Logiciel: Encyclopédie Microsoft Encarta 99 - (.Microsoft Corporation.) [HKLM] -- Encarta99F
O42 - Logiciel: Fireside Christmas 3D Screensaver - (.3planesoft.) [HKLM] -- Fireside Christmas 3D Screensaver
O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM] -- GOM Player
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Hoyle Puzzle and Board Games 2011 (remove only) - (.Pas de propriétaire.) [HKLM] -- Hoyle Puzzle and Board Games 2011
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel(R) TV Wizard - (.Intel Corporation.) [HKLM] -- TVWiz
O42 - Logiciel: Jewel Quest Solitaire III 1.00 - (.Pas de propriétaire.) [HKLM] -- Jewel Quest Solitaire III 1.00
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mozilla Firefox 5.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 5.0.1 (x86 fr)
O42 - Logiciel: ObjectDock - (.Pas de propriétaire.) [HKLM] -- ObjectDock
O42 - Logiciel: Opera 11.00 - (.Opera Software ASA.) [HKLM] -- Opera 11.00.1156
O42 - Logiciel: Pense-Bete 79f - (.Pas de propriétaire.) [HKLM] -- Pense-Bête 7.9f_is1
O42 - Logiciel: PhotoFiltre Studio X - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre Studio X
O42 - Logiciel: Pixelfusion WMP Plugin 1.60 - (.QO Labs.) [HKLM] -- Pixelfusion WMP Plugin_is1
O42 - Logiciel: Ravensburger Puzzle - (.AllSmartGames.) [HKLM] -- Ravensburger Puzzle1.0
O42 - Logiciel: Redemption Cemetery - Curse of the Raven Collector's Edition - (.Pas de propriétaire.) [HKLM] -- Redemption Cemetery - Curse of the Raven Collector's Edition
O42 - Logiciel: SIW version 2010.07.14 - (.Topala Software Solutions.) [HKLM] -- {AB67580-257C-45FF-B8F4-C8C30682091A}_is1
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870
O42 - Logiciel: Smart Defrag 2 - (.IObit.) [HKLM] -- Smart Defrag 2_is1
O42 - Logiciel: Stardock MyColors - (.Stardock Corporation.) [HKLM] -- Stardock MyColors
O42 - Logiciel: Stardock MyColors - (.Stardock Corporation.) [HKLM] -- {6F7614CC-F33A-4877-8814-49856F441F3C}
O42 - Logiciel: TeamViewer 6 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 6
O42 - Logiciel: Time Adjuster v2.9 (STANDARD) - (.Pas de propriétaire.) [HKLM] -- TimeAdjuster
O42 - Logiciel: Total Video Converter 3.70 100621 - (.EffectMatrix Inc..) [HKLM] -- Total Video Converter 3.70_is1
O42 - Logiciel: TotalAudioConverter - (.Softplicity, Inc..) [HKLM] -- Total Audio Converter_is1
O42 - Logiciel: Utilitaire et pilote d'adaptateur USB 2.0 TEW-648UB sans fil - (.TRENDnet.) [HKLM] -- {74A8117D-07C6-4222-AFFD-51421B69DEF0}
O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Verbatim Hard Drive Formatter - (.Verbatim.) [HKLM] -- Verbatim Hard Drive Formatter_is1
O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Driver Package - Realtek Semiconductor Corp. (RTL8192su) Net (08/15/2009 1085.7.0815.2009) - (.Realtek Semiconductor Corp..) [HKLM] -- 1162B8A9F8FFE9DB06896E4E1E28FD9B9BF5BA86
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Searchqu Toolbar - (.Bandoo Media Inc.) [HKLM] -- Searchqu 0 MediaBar
O42 - Logiciel: Yahoo! Messenger - (.Yahoo! Inc..) [HKLM] -- Yahoo! Messenger
O42 - Logiciel: Yahoo! Software Update - (.Pas de propriétaire.) [HKLM] -- Yahoo! Software Update
O42 - Logiciel: Yahoo! Toolbar - (.Pas de propriétaire.) [HKLM] -- Yahoo! Companion
O42 - Logiciel: uTorrentBar_FR Toolbar - (.uTorrentBar_FR.) [HKLM] -- uTorrentBar_FR Toolbar
O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASProtect]
[HKCU\Software\Adobe]
[HKCU\Software\Alawar]
[HKCU\Software\AnyBizSoft]
[HKCU\Software\AppDataLow\Avg]
[HKCU\Software\AppDataLow\Software\AVG Security Toolbar]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Hoyle]
[HKCU\Software\AppDataLow\Software\IncrediMail_MediaBar_2]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software\conduitEngine]
[HKCU\Software\AppDataLow\Software\searchqutoolbar]
[HKCU\Software\AppDataLow\Software\uTorrentBar_FR]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Auslogics]
[HKCU\Software\Avg]
[HKCU\Software\BabylonToolbar]
[HKCU\Software\Babylon]
[HKCU\Software\BitTorrent]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeStuff]
[HKCU\Software\DataLode]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\Freeverse Software]
[HKCU\Software\GOG]
[HKCU\Software\GRETECH]
[HKCU\Software\Gabest]
[HKCU\Software\GameHouse]
[HKCU\Software\Google]
[HKCU\Software\Helmsman]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\INTEL]
[HKCU\Software\ImInstaller]
[HKCU\Software\IncrediMail]
[HKCU\Software\Incredibar]
[HKCU\Software\Innovative Solutions]
[HKCU\Software\JavaSoft]
[HKCU\Software\LadyDove's Elite Screensavers]
[HKCU\Software\LogiShared]
[HKCU\Software\Logitech]
[HKCU\Software\Macromedia]
[HKCU\Software\Modern UI Test]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OLYMPUS]
[HKCU\Software\OfferBox]
[HKCU\Software\Opera Software]
[HKCU\Software\Pense-bete]
[HKCU\Software\Policies]
[HKCU\Software\QO Developments]
[HKCU\Software\SWiSHzone.com]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\Softplicity]
[HKCU\Software\Spiral Monkey]
[HKCU\Software\Stardock]
[HKCU\Software\TAdvCheckList]
[HKCU\Software\TeamViewer]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WideStream]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\i-FunBox.com]
[HKCU\Software\tvp]
[HKLM\Software\3Planesoft]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVG Security Toolbar]
[HKLM\Software\Adobe]
[HKLM\Software\Alawar]
[HKLM\Software\AnyBizSoft]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Avg]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CanonBJ]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Coral Reef Adventure Aquarium 3D]
[HKLM\Software\DataMngr]
[HKLM\Software\EACADEMY]
[HKLM\Software\EPSON]
[HKLM\Software\Encore]
[HKLM\Software\Formosoft]
[HKLM\Software\GEAR Software]
[HKLM\Software\GRETECH]
[HKLM\Software\Global IP Solutions]
[HKLM\Software\Google]
[HKLM\Software\Hoyle]
[HKLM\Software\IObit]
[HKLM\Software\ImInstaller]
[HKLM\Software\IncrediMail_MediaBar_2]
[HKLM\Software\Incredibar]
[HKLM\Software\Innovative Solutions]
[HKLM\Software\Intel]
[HKLM\Software\IrekZielinskiSoft]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Licenses]
[HKLM\Software\LocalCooling]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nero]
[HKLM\Software\Netscape]
[HKLM\Software\ODBC]
[HKLM\Software\OLYMPUS]
[HKLM\Software\OfferBox]
[HKLM\Software\Opera Software]
[HKLM\Software\Policies]
[HKLM\Software\ReflexiveArcade]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\SearchquMediabarTb]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Spiral Monkey]
[HKLM\Software\Stardock]
[HKLM\Software\TRENDnet]
[HKLM\Software\TeamViewer]
[HKLM\Software\The Silicon Realms Toolworks]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\Windows]
[HKLM\Software\Yahoo]
[HKLM\Software\iTinySoft]
[HKLM\Software\iWin]
[HKLM\Software\mozilla.org]
[HKLM\Software\uTorrentBar_FR]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 06/07/2011 - 11:13:28 - [10450936] ----D- C:\Program Files\3Planesoft
O43 - CFD: 06/07/2011 - 11:05:12 - [38822] ----D- C:\Program Files\A White Christmas Demo
O43 - CFD: 19/06/2011 - 12:47:06 - [164367380] ----D- C:\Program Files\Adobe
O43 - CFD: 08/07/2011 - 07:26:32 - [2428606] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 19/12/2010 - 22:34:06 - [0] ----D- C:\Program Files\AVG
O43 - CFD: 03/08/2011 - 10:59:44 - [14868953] ----D- C:\Program Files\Babylon
O43 - CFD: 03/08/2011 - 10:59:52 - [2172336] ----D- C:\Program Files\BabylonToolbar
O43 - CFD: 28/07/2011 - 09:09:14 - [628535] ----D- C:\Program Files\Bonjour
O43 - CFD: 27/07/2011 - 09:10:18 - [29768426] ----D- C:\Program Files\Boonka
O43 - CFD: 20/06/2011 - 19:41:18 - [11110158] ----D- C:\Program Files\Canon
O43 - CFD: 06/07/2011 - 11:15:24 - [0] ----D- C:\Program Files\christmas
O43 - CFD: 01/08/2011 - 09:54:38 - [775232212] ----D- C:\Program Files\Common Files
O43 - CFD: 20/12/2010 - 15:41:52 - [638560] ----D- C:\Program Files\Conduit
O43 - CFD: 17/03/2011 - 22:06:56 - [7895709] ----D- C:\Program Files\ConduitEngine
O43 - CFD: 31/07/2011 - 18:40:56 - [1474704] ----D- C:\Program Files\DIFX
O43 - CFD: 01/08/2011 - 18:25:36 - [14841101] ----D- C:\Program Files\Dream Aquarium
O43 - CFD: 24/02/2011 - 22:59:56 - [83226644] ----D- C:\Program Files\DVD Maker
O43 - CFD: 19/12/2010 - 21:54:44 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 24/02/2011 - 12:39:00 - [814496] ----D- C:\Program Files\FreeApps
O43 - CFD: 20/12/2010 - 15:32:58 - [92110827] ----D- C:\Program Files\Google
O43 - CFD: 29/06/2011 - 00:06:22 - [0] ----D- C:\Program Files\IncrediBar
O43 - CFD: 28/05/2011 - 10:07:38 - [27494886] ----D- C:\Program Files\IncrediMail
O43 - CFD: 02/08/2011 - 21:36:30 - [6077710] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 10/01/2011 - 20:45:24 - [12036242] ----D- C:\Program Files\Intel
O43 - CFD: 16/06/2011 - 07:02:22 - [6683460] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 24/02/2011 - 12:38:48 - [7824096] ----D- C:\Program Files\IObit
O43 - CFD: 28/07/2011 - 09:10:28 - [1868883] ----D- C:\Program Files\iPod
O43 - CFD: 20/12/2010 - 16:18:26 - [89491703] ----D- C:\Program Files\Java
O43 - CFD: 16/01/2011 - 20:47:30 - [10513727] ----D- C:\Program Files\Logitech
O43 - CFD: 16/01/2011 - 20:54:22 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 11/07/2011 - 02:36:28 - [43953064] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 15/06/2011 - 22:37:58 - [38411899] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 11/07/2011 - 02:19:22 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 11/07/2011 - 02:28:56 - [4368271] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 20/12/2010 - 13:50:52 - [8352099] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 14/07/2009 - 06:52:32 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 11/07/2011 - 02:36:08 - [39944647] ----D- C:\Program Files\MSECache
O43 - CFD: 31/07/2011 - 18:39:08 - [0] ----D- C:\Program Files\MSXML 4.0
gubinic
Messages postés
34
Date d'inscription
mercredi 1 juillet 2009
Statut
Membre
Dernière intervention
8 août 2011
7 août 2011 à 18:51
7 août 2011 à 18:51
bonsoir,
je crois que c'est mieux
Merci
je crois que c'est mieux
Merci
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
kalimusic
Messages postés
14014
Date d'inscription
samedi 7 novembre 2009
Statut
Contributeur sécurité
Dernière intervention
20 novembre 2015
3 027
7 août 2011 à 18:54
7 août 2011 à 18:54
Bonsoir,
Non :)
Il faut répondre dans ton sujet ici => https://forums.commentcamarche.net/forum/affich-22810814-searchqu-com-410
Il faut héberger les rapports, sinon ils seront toujours coupés, sur un des sites suivants :
https://www.cjoint.com/
http://www.cijoint.fr/
http://pjjoint.malekal.com/
https://textup.fr/
Bonne continuation
Non :)
Il faut répondre dans ton sujet ici => https://forums.commentcamarche.net/forum/affich-22810814-searchqu-com-410
Il faut héberger les rapports, sinon ils seront toujours coupés, sur un des sites suivants :
https://www.cjoint.com/
http://www.cijoint.fr/
http://pjjoint.malekal.com/
https://textup.fr/
Bonne continuation
