Fichier ZHPDiagRapport de ZHPDiag v2015.2.17.20 - Nicolas Coolman (17/02/2015)~ Lancé par Armand (17/02/2015 14:16:39)~ Facebook : https://www.facebook.com/nicolascoolman1~ Adresse du Forum http://forum.nicolascoolman.fr~ Traduit par Nicolas Coolman~ Etat de la version : Version à jour.~ Liste blanche : Activée par le programme~ Elévation des Privilèges : OK~ User Account Control (UAC): Activate by user---\\ Navigateurs InternetMSIE: Internet Explorer v11.0.9600.17633MFIE: Mozilla Firefox 35.0.1 (Defaut)GCIE: Google Chrome v24.0.1312.57---\\ Informations sur les produits Windows~ Langage: Franà§aisWindows Server License Manager Script : OK~ Windows Operating System - Windows(R) 7, OEM_COA_NSLP channelWindows ID Activation : OK~ Windows Partial Key : R2P7TWindows License : OK~ Windows Remaining Initializations Number : 4Software Protection Service (Protection logicielle) : OKWindows Automatic Updates : OKWindows Activation Technologies : OKWindows 7 Professional, 64-bit Service Pack 1 (Build 7601)---\\ Logiciels de protection du systèmeBitdefender Total Security 2015 v18.20.0.1429Windows Defender W7 (Deactivate)---\\ Logiciels d'optimisation du systèmeCCleaner v5.02---\\ Logiciels de partage PeerToPeerPando Media Booster v2.6.0.9---\\ Surveillance de LogicielsAdobe Flash Player 16 NPAPIAdobe Reader XI---\\ Informations sur le système~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel~ Operating System: 64 BitsBoot mode: Normal (Normal boot)Total RAM: 8183 MB (64% free)System Restore: Activé (Enable)System drive C: has 389 GB (80%) free of 482 GB---\\ Mode de connexion au système~ Computer Name: GLADIATOR~ User Name: Armand~ All Users Names: HomeGroupUser$, Armand, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89Logged in as Administrator---\\ Variables d'environnement~ System Unit : C:\~ %AppZHP% : C:\Users\Armand\AppData\Roaming\ZHP\~ %AppData% : C:\Users\Armand\AppData\Roaming\~ %Desktop% : C:\Users\Armand\Desktop\~ %Favorites% : C:\Users\Armand\Favorites\~ %LocalAppData% : C:\Users\Armand\AppData\Local\~ %StartMenu% : C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\~ %Windir% : C:\Windows\~ %System% : C:\Windows\System32\---\\ Enumération des unités disquesC: Hard drive, Flash drive, Thumb drive (Free 389 Go of 482 Go)D: Hard drive, Flash drive, Thumb drive (Free 425 Go of 450 Go)E: CD-ROM drive (Not Inserted)---\\ Etat du Centre de Sécurité Windows[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified~ Security Center: 44 Legitimates Filtered in 00mn 00s---\\ Recherche particulière de fichiers génériques[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808][MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024][MD5.9DFE41A69DF70AAB75CB5BA8C1109EA2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/01/2015 - 02:27:32.) -- C:\Windows\System32\wininet.dll [2358272][MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168][MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448][MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152][MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128][MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160][MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456][MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400][MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368][MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472][MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224][MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208][MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\DriversetBT.sys [261632][MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Driverstfs.sys [1684928][MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280][MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536][MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 12:06:41.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888][MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184][MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296][MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]~ Generic Processes: Scanned in 00mn 00s---\\ Etat des fichiers cachés (Caché/Total)~ Mes images (My Pictures) : 3/459~ Mes musiques (My Musics) : 1/8~ Mes Favoris (My Favorites) : 1/27~ Mes Documents (My Documents) : 2/1306~ Mon Bureau (My Desktop) : 1/133~ Menu demarrer (Programs) : 1/63~ Hidden Files: Scanned in 00mn 00s---\\ Processus lancés[MD5.651E4A7AAC51C4DA44CE282A13CFB1B9] - (.IBM Corp. - RapportService.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe [2623768] [PID.2652][MD5.D3F0452392C45081D8866A92C86D1C7C] - (.Flexera Software, Inc. - FLEXnet Connect Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [324976] [PID.4980][MD5.CAF03357DE72F8F19FA099581A685C1A] - (.Apple Computer, Inc. - QuickTime Task.) -- D:\Program Files (x86)\QuickTime\qttask.exe [282624] [PID.5020][MD5.265B49EF94A5AA713192EE97A7D248B5] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [338032] [PID.6400][MD5.78AC6802617A2D4B11602B5567FC84FD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8174080] [PID.6760][MD5.3087F0E56E57BB37EFA299372C22417C] - (.IBM Corp. - RapportMgmtService.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [1919256] [PID.1212][MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.2208][MD5.BC8A3EC1BAE3D18256C09DDE1082D0F3] - (.Samsung - AllShareFrameworkDMS.) -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe [755080] [PID.2536][MD5.2E6F4A8D74358D7C9AFF101AA25CDC42] - (.OLYMPUS IMAGING CORP. - DM1Servis Module.) -- C:\Program Files (x86)\Olympus\DeviceDetector\DM1Service.exe [69632] [PID.2760][MD5.859EB508AFD5E26298B6B902D46F6535] - (.Gladinet, INC - Gladinet Cloud Suite.) -- C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [29552] [PID.2824][MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176] [PID.2936][MD5.397D14958D6C9C2B365469A857B2AC4E] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe [230792] [PID.3040][MD5.A06EFD4965F8A3F97A8C9A291D032678] - (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Servey.) -- C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe [116104] [PID.2428][MD5.C34411A244029F1C08687F7C752C4563] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.3016][MD5.E1095A89EB4BFCA2AB2F4E1F2BA56612] - (.Logitech Inc. - Logitech LVPrS64H Module..) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe [125464] [PID.2572][MD5.543A4EF0923BF70D126625B034EF25AF] - (.Protexis Inc. - PsiService PsiService.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [189728] [PID.3552][MD5.2BFDFE9D19AE4A0CDD07291545D0C2A7] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568] [PID.3596][MD5.E5112D7A79869DEC5DB4EC4CDEE1BABC] - (.RealNetworks, Inc. - RealPlayer Cloud Service.) -- c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848] [PID.3620][MD5.2DF2235DB8AF585BA5F2E11911BF08D2] - (...) -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552] [PID.3668][MD5.C0C121B537DA3AD87481C0502CACE462] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448] [PID.3864][MD5.B83D5071B32A70BEBDB3330BFA7ACB80] - (.Pas de propriétaire - WD File Management Engine.) -- C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896] [PID.4140]~ Processes Running: Scanned in 00mn 00s---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)C:\Users\Armand\AppData\Local\Google\Chrome\User Data\Default\Preferences---\\ Liste des dossiers d'extension Google Chrome~ Google Lines Browser: 3 Legitimates Filtered in 00mn 00s---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)C:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\dsl4s4cx.default\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\fs0l51id.default-1398757347796\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\jklab7zy.default-1369544006918\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\k07mowzz.default-1369411014478\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\pvy3imj8.default-1407131731860\prefs.jsM2 - MFEP: Extension [Armand - dsl4s4cx.default] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - fs0l51id.default-1398757347796] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - jklab7zy.default-1369544006918] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - k07mowzz.default-1369411014478] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - pvy3imj8.default-1407131731860] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpi~ Firefox Browser: 26 Legitimates Filtered in 00mn 00s---\\ Internet Explorer, Proxy Management (R5)R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no keyR5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dllR5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0~ Proxy management: Scanned in 00mn 00s---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programsF2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,F2 - REG:system.ini: Shell=C:\Windows\explorer.exeF2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe~ Keys: Scanned in 00mn 00s---\\ Hosts file redirection (O1)~ Le fichier hôte est sain (The hosts file is clean) (22)~ Hosts File: Scanned in 00mn 00s---\\ Internet Explorer Toolbars (O3)O3 - Toolbar: Canon Easy-WebPrint EX - [HKLM]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dllO3 - Toolbar: Bitdefender Wallet - [HKLM]{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (.Bitdefender - Bitdefender Password Manager Internet Explo.) -- C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll~ Toolbar: Scanned in 00mn 00s---\\ Applications lancées au démarrage du système (O4)O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe O4 - HKLM\..\Run: [CanonSolutionMenu] . (.CANON INC. - CNSLMAIN.) -- C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor CorpO4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe O4 - HKCU\..\Run: [KiesAirMessage] Clé orphelineO4 - HKCU\..\Run: [KiesPDLR] Clé orphelineO4 - HKCU\..\Run: [KiesPreload] Clé orphelineO4 - HKCU\..\Run: [KiesTrayAgent] Clé orphelineO4 - HKCU\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Wallet Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe O4 - HKLM\..\Wow6432Node\Run: [JMB36X IDE Setup] . (...) -- C:\Windows\RaidTool\xInsIDE.exe O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, IncO4 - HKLM\..\Wow6432Node\Run: [ISUSPM] . (.Flexera Software, Inc. - FLEXnet Connect Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\isuspm.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Computer, Inc. - QuickTime Task.) -- D:\Program Files (x86)\QuickTime\qttask.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesAirMessage] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesPDLR] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesPreload] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesTrayAgent] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Wallet Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe ~ Application: Scanned in 00mn 00s---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~2\Office14\ONBttnIE.dll =>.Microsoft CorporationO9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~2\Office14\ONBTTN~1.dll =>.Microsoft CorporationO9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.icoO9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 [64Bits] - {A95fe080-8f5d-11d2-a20b-00aa003c157a} . (.Evernote Corp., 305 Walnut Street, Redwood - Evernote Clipper for Microsoft Internet Explorer.) -- C:\Program Files (x86)\Evernote\Evernote\EvernoteIEx64.dllO9 - Extra button: @btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- D:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico~ IE Extra Buttons: Scanned in 00mn 00s---\\ Site dans la Zone de confiance d'Internet Explorer (O15)O15 - Trusted Zone: [HKCU\...\Domains] http.mcafee.com~ IE Zone Confiance: Scanned in 00mn 00s---\\ Modification Domaine/Adresses DNS (O17)O17 - HKLM\System\CCS\Services\Tcpip\..\{7D7F8311-28DD-4AA4-8794-3DB4B00FAAB1}: DhcpNameServer = 192.168.0.254O17 - HKLM\System\CS1\Services\Tcpip\..\{7D7F8311-28DD-4AA4-8794-3DB4B00FAAB1}: DhcpNameServer = 192.168.0.254O17 - HKLM\System\CS2\Services\Tcpip\..\{7D7F8311-28DD-4AA4-8794-3DB4B00FAAB1}: DhcpNameServer = 192.168.0.254O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254~ Domain: Scanned in 00mn 00s---\\ Protocole additionnel (O18)O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft CorporationO18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation~ Protocole Additionnel: Scanned in 00mn 00s---\\ Liste des services NT non Microsoft et non désactivés (O23)O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe~ Services: 25 Legitimates Filtered in 00mn 12s---\\ Tà¢ches planifiées en automatique (O39)[MD5.B600D97663C45F072F5E6E38936EAF7C] [APT] [{2E175F33-09F8-4D6C-86E3-D7A0CA70F3D6}] (.Waldata.) -- D:\WALDATA\MILLENIUM\PLATINIUM.exe [17007616][MD5.00000000000000000000000000000000] [APT] [{311A0720-7548-48D3-834F-257561F53003}] (...) -- F:\WALDATA\MILLENIUM\platinium.exe (.not file.) [0][MD5.00000000000000000000000000000000] [APT] [{5151EBA2-83EE-4471-B3D7-80D73B6CD96D}] (...) -- C:\Users\Armand\Downloads\DriverDetective.exe (.not file.) [0][MD5.00000000000000000000000000000000] [APT] [{5A35F43E-091D-4379-8BD0-A2BD286ECEB2}] (...) -- E:\install.exe (.not file.) [0][MD5.00000000000000000000000000000000] [APT] [{9A22F837-ED69-4E99-A87D-FED1CDB84DDE}] (...) -- E:\Setup.exe (.not file.) [0]O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]O39 - APT: - (..) -- C:\Windows\System32\Tasks\AppleSoftwareUpdate [298]O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1064]O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1068]~ Scheduled Task: 25 Legitimates Filtered in 00mn 04s---\\ Pilotes lancés au démarrage du système (O41)O41 - Driver: (ncdevice) . (.NT Kernel Resources - NDISRD helper driver.) - C:\Windows\System32\DRIVERScdevice.sys~ Drivers: 81 Legitimates Filtered in 00mn 00s---\\ HKCU & HKLM Software Keys[HKCU\Software\CleanerProConfig][HKCU\Software\CleanerProLanguage][HKCU\Software\Clubic][HKCU\Software\Internet Controller][HKCU\Software\Pando Networks][HKCU\Software\_GI][HKLM\Software\Wow6432Node\Internet Controller][HKLM\Software\Wow6432Node\Pando Networks]~ Key Software: 422 Legitimates Filtered in 00mn 00s---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)O43 - CFD: 27/04/2013 - 17:16:56 - [] ----D C:\Program Files (x86)\Pando NetworksO43 - CFD: 25/01/2014 - 16:12:46 - [] ----D C:\Program Files (x86)\WinPortraitO43 - CFD: 13/02/2015 - 14:46:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development KitO43 - CFD: 14/07/2009 - 16:35:18 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PCO43 - CFD: 05/12/2014 - 07:17:01 - [0] ----D C:\Users\Armand\AppData\Roaming\EncryptStickO43 - CFD: 12/11/2014 - 19:34:47 - [] -SH-D C:\Users\Armand\AppData\Local\EmieBrowserModeListO43 - CFD: 26/05/2013 - 12:48:40 - [] ----D C:\Users\Armand\AppData\Local\frey.aO43 - CFD: 26/08/2013 - 10:30:55 - [] ----D C:\Users\Armand\AppData\Local\NGPRO43 - CFD: 12/01/2014 - 17:19:25 - [] ----D C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto BackupO43 - CFD: 12/12/2013 - 14:58:01 - [] ----D C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Highwave360 v1.2O43 - CFD: 16/07/2014 - 10:52:06 - [] ----D C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WaldataO43 - CFD: 06/12/2014 - 07:52:12 - [] --H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder~ Program Folder: 368 Legitimates Filtered in 00mn 00s---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 06/02/2015 - 13:34:15 --HA- . (...) -- C:\bdr-bz11 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 06/02/2015 - 13:34:15 --HA- . (...) -- C:\bdr-im11.gz [49563064]O44 - LFC:[MD5.F0BE0939B8EFC827FD343CFACC5603F7] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-cf11 [684]O44 - LFC:[MD5.5A411F853FF2C055FECB5A897689DAA6] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-ld11 [253404]O44 - LFC:[MD5.C7CE0CC0CA93A7CAC826DE66DE700ED4] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-ld11.mbr [9216]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 07/02/2015 - 06:00:32 --HA- . (...) -- C:\bdr-bz12 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 07/02/2015 - 06:00:32 --HA- . (...) -- C:\bdr-im12.gz [49563064]O44 - LFC:[MD5.E39A7AD37A18256C8DB9B402263B085A] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-cf12 [684]O44 - LFC:[MD5.50711CF19B0E2822FA0863F727672B2E] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-ld12 [253404]O44 - LFC:[MD5.8A8AB443802D5FD8C16F3570415CB12E] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-ld12.mbr [9216]O44 - LFC:[MD5.531121E7ED50084B493A69F8F8A7A927] - 13/02/2015 - 14:38:43 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [37624]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 13/02/2015 - 14:50:50 --HA- . (...) -- C:\bdr-bz13 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 13/02/2015 - 14:50:50 --HA- . (...) -- C:\bdr-im13.gz [49563064]O44 - LFC:[MD5.1E4C1EB5629C73C10005B4F85C90D882] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-cf13 [684]O44 - LFC:[MD5.D4E00D1198A8DF5A2741684DE3953C79] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-ld13 [253404]O44 - LFC:[MD5.735176BCF8EDA5031ABC77DE45BE702E] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-ld13.mbr [9216]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 15/02/2015 - 14:41:09 --HA- . (...) -- C:\bdr-im14.gz [49563064]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 15/02/2015 - 14:41:10 --HA- . (...) -- C:\bdr-bz14 [3271472]O44 - LFC:[MD5.9309E0E4E98392A95A72B6D1DCCAE14C] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-cf14 [684]O44 - LFC:[MD5.F5C785FFE8EC0B83B386817E0BB58FB2] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-ld14 [253404]O44 - LFC:[MD5.4CAE6BBA4178F118E61246180BC6F039] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-ld14.mbr [9216]O44 - LFC:[MD5.4E8F2BB3A5A87E75C35533723B50E685] - 15/02/2015 - 14:58:46 ---A- . (...) -- C:\Windows\System32\user_gensett.xml [385]O44 - LFC:[MD5.85FD3EBBD78C1AE02FE006C17E354E47] - 17/02/2015 - 10:38:56 ---A- . (...) -- C:\bdlog.txt [1122513]~ Files: 111 Legitimates Filtered in 00mn 18s---\\ Contrôle du Safe Boot (CSB) (O49)O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\CleanHlp.sys . (...) -- C:\Windows\System32\Drivers\CleanHlp.sys (.not file.)O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\CleanHlp.sys . (...) -- C:\Windows\System32\Drivers\CleanHlp.sys (.not file.)~ CSB: 15 Legitimates Filtered in 00mn 00s---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter64.acm" . (.Pas de propriétaire - ac3filter.) -- C:\Windows\System32\ac3filter64.acm~ TDSD: 4 Legitimates Filtered in 00mn 00s---\\ Enumération des clés de registre StartupReg (SMSR) (O53)O53 - SMSR:HKLM\...\startupreg\vspdfprsrv.exe [Key] . (...) -- C:\Program Files\Avanquest\Expert PDF 9 Professional\vspdfprsrv.exe~ SMSR Keys: 11 Legitimates Filtered in 00mn 00s---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1~ MWPS: 17 Legitimates Filtered in 00mn 00s---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s---\\ Liste des pilotes du système (SDL) (O58)O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]O58 - SDL:11/04/2012 - 16:40:28 ---A- . (.AnchorFree Inc. - Hotspot Shield Routing Driver.) -- C:\Windows\System32\Drivers\hssdrv.sys [56832]O58 - SDL:07/10/2009 - 00:45:50 ---A- . (...) -- C:\Windows\System32\Drivers\LVPr2M64.sys [30232]O58 - SDL:22/05/2014 - 18:05:06 ---A- . (.NT Kernel Resources - NDISRD helper driver.) -- C:\Windows\System32\Driverscdevice.sys [41248]O58 - SDL:16/06/2014 - 07:01:38 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [110336]O58 - SDL:16/06/2014 - 07:01:38 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]O58 - SDL:26/03/2012 - 22:45:14 ---A- . (.AnchorFree Inc - TAP-Win32 Virtual Network Driver.) -- C:\Windows\System32\Drivers\taphss.sys [37888]O58 - SDL:13/02/2015 - 14:38:43 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [37624]O58 - SDL:05/06/2002 - 17:07:00 ----- . (.B.H.A Co.,Ltd. - B.H.A Storage Helper Driver (WindowsNT5.x).) -- C:\Windows\SysWOW64\drivers\bsstor.sys [9344]O58 - SDL:20/09/2003 - 07:45:48 ---A- . (.Padus, Inc. - Padus(R) ASPI Shell.) -- C:\Windows\SysWOW64\drivers\pfc.sys [21248]O58 - SDL:05/02/2013 - 09:54:40 ---A- . (...) -- C:\Windows\SysWOW64\FsUsbExDisk.Sys [37344]~ Drivers: 84 Legitimates Filtered in 00mn 01s---\\ Liste des outils de désinfection (LATC) (O63)O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman~ ADS: Scanned in 00mn 00s---\\ Liste les services legacy du registre (LALS) (O64)O64 - Services: CurCS - 22/05/2014 - C:\Windows\System32\DRIVERScdevice.sys (ncdevice) .(.NT Kernel Resources - NDISRD helper driver.) - LEGACY_NCDEVICE~ Legacy: 101 Legitimates Filtered in 00mn 00s---\\ Menu de démarrage Internet (SMI) (O68)O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exeO68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exeO68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe~ Keys: Scanned in 00mn 00s---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.comO69 - SBI: SearchScopes [HKCU] {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} - (Bing) - http://www.bing.com~ Keys: Scanned in 00mn 00s---\\ Recherche particulière à la racine du système (SPRF) (O84)[MD5.A9155082208F1EA98F496B41BE6F0D4E] [SPRF][15/02/2015] (...) -- C:\ProgramData\1424007539.bdinstall.bin [909620][MD5.B5277369D5FAD8DA064BA42664F45DE1] [SPRF][12/04/2011] (...) -- C:\ProgramData\ezsidmv.dat [56]~ Files: 2 Legitimates Filtered in 00mn 00s---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)SS - | Demand 19/03/2014 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exeSS - | Demand 05/02/2015 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeSS - | Demand 09/12/2014 78144 | (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exeSS - | Auto 12/04/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeSS - | Demand 12/04/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeSS - | Demand 19/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exeSS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeSS - | Demand 27/01/2015 114800 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exeSS - | Auto 13/07/2012 769432 | (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exeSS - | Disabled 08/07/2013 94624 | (SafeBox) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exeSS - | Auto 02/03/2012 25504 | (SamsungAllShareV2.0) . (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exeSS - | Demand 02/03/2012 27584 | (SimpleSlideShowServer) . (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exeSS - | Auto 11/12/2014 315496 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exeSS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exeSR - | Auto 19/12/2014 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeSR - | Auto 21/12/2013 404360 | (AllShare Framework DMS) . (.Samsung.) - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exeSR - | Auto 12/10/2011 204288 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exeSR - | Auto 10/10/2006 69632 | (DM1Service) . (.OLYMPUS IMAGING CORP..) - C:\Program Files (x86)\Olympus\DeviceDetector\DM1Service.exeSR - | Auto 26/07/2011 29552 | (GladFileMonSvc) . (.Gladinet, INC.) - C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exeSR - | Auto 10/02/2009 116104 | (IJPLMSVC) . (...) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exeSR - | Auto 04/03/2011 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exeSR - | Auto 07/10/2009 191000 | (LVPrcS64) . (.Logitech Inc..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exeSR - | Auto 09/06/2013 2635600 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exeSR - | Auto 10/03/2010 189728 | (PSI_SVC_2) . (.Protexis Inc..) - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exeSR - | Auto 22/12/2014 1919256 | (RapportMgmtService) . (.IBM Corp..) - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exeSR - | Auto 06/04/2014 39568 | (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exeSR - | Auto 21/04/2014 1141848 | (RealPlayer Cloud Service) . (.RealNetworks, Inc..) - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exeSR - | Auto 07/04/2014 23552 | (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exeSR - | Auto 29/09/2014 616288 | (Samsung Link Service) . (.Copyright 2013 SAMSUNG.) - C:\Program Files\Samsung\Samsung Link\Samsung Link.exeSR - | Auto 15/12/2014 5426448 | (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exeSR - | Auto 27/10/2014 67320 | (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exeSR - | Auto 15/12/2014 1545376 | (VSSERV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exeSR - | Auto 09/03/2011 288768 | (WDDMService) . (.WDC.) - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exeSR - | Auto 09/03/2011 1066896 | (WDFME) . (...) - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exeSR - | Auto 09/03/2011 491920 | (WDSC) . (...) - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exeSR - | Auto 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft CorporationSR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe~ Services: Scanned in 00mn 09s---\\ Scan Additionnel (O88)Database Version : 13008 - (17/02/2015)Clés trouvées (Keys found) : 0Valeurs trouvées (Values found) : 0Dossiers trouvés (Folders found) : 0Fichiers trouvés (Files found) : 0~ Additionnel Scan: 431811 Items scanned in 00mn 39s---\\ Informations complémentaires sur les modules~ http://nicolascoolman.fr/r5-internet-ex ... ment-iepm/ =>.Internet Explorer, Proxy Management (R5)~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)~ http://nicolascoolman.fr/o4-application ... -registre/ =>.Applications lancées au démarrage du système (O4)~ AMI: 3 Legitimates Filtered in 00mn 00s~ 1275 Legitimates filtered by white listEnd of the scan (494 lines in 02mn 04s)(0.11)