coupdepoucepc.fr
Assistance & dépannage informatique gratuits en ligne.

Connexion

Pseudo :

Mot de passe :

Se souvenir de moi



Mot de passe perdu ?

S'inscrire !

Menu principal


Qui est passé ?


anthony0371
il y a 28 secondes

albatroxm13
il y a 9 heures 55 minutes

polux
il y a 14 heures 27 minutes

Guy-Alain
il y a1 jour 11 heures 56 minutes

flo88
il y a2 jours 2 heures 27 minutes

baudot
il y a2 jours 4 heures 5 minutes

brontodahut
il y a2 jours 5 heures 9 minutes

franckthedog
il y a2 jours 8 heures 26 minutes

Antoine84
il y a2 jours 9 heures 39 minutes

jeanlou
il y a5 jours 4 heures 55 minutes

WEALTH
il y a6 jours 11 heures 9 minutes

Nouveaux membres


     
 
cdppc.fr >> Accueil >>> test rapport zhpdiag [Forums - Sécurité, virus]
Bienvenue sur CoupDePoucePc !! Nous sommes le et il est déjà




Coupdepoucepc.fr est un site d’entraide et de dépannage informatique en ligne, totalement gratuit.
L'équipe est composée de passionnés, bénévoles, désireux de vous aider rapidement dans une ambiance conviviale.

>>> Comment créer un sujet et y exposer son problème ?<<<

 
     
     
 

Regarde ce sujet :   1 Utilisateur(s) anonymes


 Bas   Précédent   Suivant  Le sujet est verrouillé



test rapport zhpdiag
#1
Inscrit depuis le : 02 05 2010
Mes configs
Messages: 8872
Hors Ligne

Bonjour,

 

test rapport ZHPDiag 





Attacher un fichier:


txt ZHPDiag.txt Taille: 253.88 KB; Hits: 338
txt ZHPFixReport.txt Taille: 0.69 KB; Hits: 146
txt AdwCleaner[S15].txt Taille: 2.29 KB; Hits: 168

Posté le : 31/08/2013 04:13
_________________
Chers Membres, n'oubliez pas de venir voir régulièrement si vous avez de nouvelles réponses. Merci.







Re: test rapport zhpdiag
#2
Inscrit depuis le : 02 05 2010
Mes configs
Messages: 8872
Hors Ligne

Bonjour,





Attacher un fichier:


txt ZHPDiag.txt Taille: 253.88 KB; Hits: 607

Posté le : 31/08/2013 04:38
_________________
Chers Membres, n'oubliez pas de venir voir régulièrement si vous avez de nouvelles réponses. Merci.







Re: test rapport zhpdiag
#3
Inscrit depuis le : 02 05 2010
Mes configs
Messages: 8872
Hors Ligne
~ Rapport de ZHPDiag v2013.8.28.38 - Nicolas Coolman  (28/08/2013)
~ Lancé par pc (31/08/2013 01:37:18)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16660
MFIE: Mozilla Firefox 23.0.1 (Defaut)
GCIE: Google Chrome v29.0.1547.62
OBIE: Safari v5.34.57.2

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 0
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v8.0.1489.0
Malwarebytes Anti-Malware version 1.75.0.1300
Sophos Anti-Rootkit 1.5.0 v1.5.0
Windows Defender W7

---\\ Logiciels d'optimisation du système
CCleaner v4.03  =>Piriform Ltd
Slowin' Killer : Nettoyage & Optimisation v1.208

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 25

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3992 MB (41% free)
System Restore: Activé (Enable)
System drive C: has 87 GB (31%) free of 278 GB

---\\ Mode de connexion au système
~ Computer Name: ANTHONYBRIERE01
~ User Name: anthonybriere
~ All Users Names: HomeGroupUser$, anthonybriere, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\anthonybriere\AppData\Roaming\
~ %Desktop% : C:\Users\anthonybriere\Desktop\
~ %Favorites% : C:\Users\anthonybriere\Favorites\
~ %LocalAppData% : C:\Users\anthonybriere\AppData\Local\
~ %StartMenu% : C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C:\ Hard drive, Flash drive, Thumb drive (Free 87 Go of 278 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 20 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 37 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.10/02/2012 - 03:16:54.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2013 - 06:13:37.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.10/02/2012 - 03:18:52.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.10/02/2012 - 03:15:09.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/21
~ Mes musiques (My Musics) : 5/9
~ Mes Videos (My Videos) : 1/4
~ Mes Favoris (My Favorites) : 1/42
~ Mes Documents (My Documents) : 13/513
~ Mon Bureau (My Desktop) : 2/53729
~ Menu demarrer (Programs) : 1/49
~ Hidden Files:  Scanned in 00mn 53s



---\\ Processus lancés au démarrage du système
[MD5.FA8EC2E971C99F88C3A38D27CBAAA688] - (.Uniblue Systems Ltd - Uniblue DriverScanner Monitor.) -- C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe   [26456] [PID.2448]
[MD5.D645B082E49F8655F14C61DB4EEBBA1D] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe   [367016] [PID.2900]
[MD5.749949494676218FFA99501F4AA22ECC] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe   [10376704] [PID.2208]
[MD5.4EE367B8B1964160A1F1B80095183D3A] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin   [10368512] [PID.2788]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe   [4858968] [PID.3140]
[MD5.6364FA7D825B600251A4D1DE7D6FF695] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe   [291608] [PID.3148]
[MD5.8A3B69683E63808719D24E1C68C21CC7] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe   [379960] [PID.3172]
[MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe   [1343904] [PID.3212]
[MD5.8192B2E274607D1D530F5C191698C544] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe   [578944] [PID.3220]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [253816] [PID.3232]
[MD5.9D999266CA10549B7E0117C35CE91EDA] - (.Glarysoft Ltd - Glary Utilities 3.) -- C:\Program Files (x86)\Glary Utilities 3\Integrator.exe   [470816] [PID.3600]
[MD5.59A409BAB55E72D33409A8A99F50DB17] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe   [264616] [PID.3824]
[MD5.B4CF3FB7E9B8EA69757541DCE6CA20ED] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe   [276376] [PID.8356]
[MD5.72EF708552059546B1AAA82E7AA59439] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe   [17304] [PID.2216]
[MD5.D8425B8D6DC2AA8D871363B0775BCF18] - (.Adobe Systems, Inc. - Adobe Flash Player 11.8 r800.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe   [1861512] [PID.6800]
[MD5.3927774EA73227D94CE45D0E192EF7BA] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe   [17878192] [PID.7884]
[MD5.34B871161A05437DB47602BE7938677D] - (.Nicolas Coolman - Zeb Help Process.) -- C:\Program Files (x86)\ZebHelpProcess\ZHP2.exe   [4959744] [PID.12560]
[MD5.E1CD28D843470D427A2A48D39734939A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [7842304] [PID.12880]
[MD5.9243229DFCCC99B5441750EBA49F1B14] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe   [574272] [PID.880]
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe   [46808] [PID.1676]
[MD5.24EA4E2F76E216CE70353736E3556585] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe   [335168] [PID.1984]
[MD5.177FF6608B48638D4066726F3A3F8444] - (...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe   [102400] [PID.1196]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe   [65640] [PID.1732]
[MD5.65608C44E71D7BA056C9EFCD8A00A7FE] - (.Microsoft Corp. - Bing Desktop updating service.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe   [173192] [PID.2092]
[MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe   [514232] [PID.2260]
[MD5.17BE4BAEC3D4FE887BC5F446FEF4FD97] - (.F-Secure Corporation - F-Secure Host Process.) -- C:\Program Files (x86)\SFR\Pack_Securite\fshoster32.exe   [163536] [PID.2372]
[MD5.2BEC76BDCD1BC080210325E7B5094834] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe   [35200] [PID.2592]
[MD5.C9DCE1CB628AEED3C0C30ABBF4F1E718] - (...) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe   [128280] [PID.2692]
[MD5.3628933AF5305EAB8173949BFF912F04] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe   [161560] [PID.2720]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.exe   [322120] [PID.1668]
[MD5.388AE59FE75F1B959DFA0900923C61BB] - (.Skype Technologies S.A. - Skype C2C Service.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe   [3064000] [PID.3656]
[MD5.DD0042F0C3B606A6A8B92D49AFB18AD6] - (.Yahoo! Inc. - AutoUpater Service Module.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe   [602392] [PID.2100]  =>Toolbar.Yahoo
[MD5.514455F6586473791C5C6B25BA4E1BAB] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe   [1001376] [PID.4940]
[MD5.E07F8E78D08D9269E3365C2A4F637191] - (.Hewlett-Packard Development Company L.P. - HP Connection Manager Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe   [1098296] [PID.3796]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648] [PID.6368]
[MD5.7D4B9A48430ED57ACA6373B71D5904CA] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe   [13592] [PID.6780]
[MD5.BF22ACF4CF3734D61357E67F0521BC03] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe   [277784] [PID.4004]
[MD5.B097EBA0E3FEB020BB65FE43AF5ECCFF] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe   [363800] [PID.3888]
~ Processes Running:  Scanned in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\anthonybriere\AppData\Roaming\Mozilla\Firefox\Profiles\4slb9iq8.default-1362123094607\prefs.js
C:\Users\anthonybriere\AppData\Roaming\Mozilla\Firefox\Profiles\vj0bdhip.default-1340388655822\prefs.js
C:\Users\anthonybriere\AppData\Roaming\Mozilla\Firefox\Profiles\vj0bdhip.default-1340388655822\user.js
M3 - MFPP: Plugins - [anthonybriere] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo.xml  =>Toolbar.Yahoo
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.03.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.21.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20513.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\anthonybriere\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\anthonybriere\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [f4-group.com/F4WebPlugin] - (.F4 - F4 Web Plugin 0.2.20.) -- C:\Users\anthonybriere\AppData\Roaming\F4\F4WebPlugin\npF4WebPlugin.dll
~ Firefox Browser: 23 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 18 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: &Yahoo! Toolbar Helper [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\yt.dll  =>Toolbar.Yahoo
O2 - BHO: Increase performance and video formats for your HTML5 <video> [64Bits] - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Plus Web Player HTML5 <video> version.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Speed [64Bits] - {48A789BF-F6D6-4930-9C8B-77855A63EDE1} . (.Secure Speed Dial - Secure Speed Dial.) -- C:\Program Files (x86)\Secure Speed Dial\IE\SpeedDial.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll  =>Toolbar.Avast
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Advanced SystemCare Browser Protection [64Bits] - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - Pas de description.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll
O2 - BHO: Free Download Manager [64Bits] - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} . (.FreeDownloadManager.ORG - Pas de description.) -- C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
~ BHO: 13 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} Clé orpheline
~ Toolbar:  Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [SetDefault] . (.Hewlett-Packard Development Company, L.P. - SetDefault.) -- C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IntelliType Pro] . (.Microsoft Corporation - IType.exe.) -- c:\Program Files\Microsoft Device Center\itype.exe
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- c:\Program Files\Microsoft Device Center\ipoint.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [HPOSD] . (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Wow6432Node\Run: [HPConnectionManager] . (.Hewlett-Packard Development Company L.P. - HPCMDelayStart Application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Wow6432Node\Run: [HP CoolSense] . (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] . (.IObit - ASCTray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
O4 - HKUS\S-1-5-21-3091538384-1223758719-1488994814-1000\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
~ Application:  Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Advanced SystemCare 6.lnk . (.IObit - Advanced SystemCare 6.)  -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASC.exe
O4 - GS\TaskBar: CCleaner.lnk . (.Piriform Ltd - CCleaner.)  -- C:\Program Files\CCleaner\CCleaner64.exe  =>Piriform Ltd
O4 - GS\TaskBar: Gestionnaire des tâches de Windows.lnk . (.Microsoft Corporation - Gestionnaire des tâches de Windows.)  -- C:\Windows\System32\taskmgr.exe
O4 - GS\TaskBar: Glary Utilities 3.lnk . (.Glarysoft Ltd - Glary Utilities 3.)  -- C:\Program Files (x86)\Glary Utilities 3\Integrator.exe
O4 - GS\TaskBar: HP Recommended.LNK . (...)  -- C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe (.not file.)
O4 - GS\TaskBar: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.)  -- C:\Windows\ehome\ehshell.exe
O4 - GS\TaskBar: Microsoft Calculatrice Plus.lnk . (...)  -- C:\Windows\Installer\{13922F10-BD74-4912-AB11-E34B35062700}\_18be6784.exe
O4 - GS\TaskBar: Microsoft Excel 2010.lnk . (...)  -- C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\TaskBar: Microsoft PowerPoint 2010.lnk . (...)  -- C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe
O4 - GS\TaskBar: Microsoft Word 2010.lnk . (...)  -- C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: OpenOffice.org 3.4.1.lnk . (.OpenOffice.org - OpenOffice.org 3.4.1.)  -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
O4 - GS\TaskBar: Skype.lnk . (...)  -- C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
O4 - GS\TaskBar: Windows Defender User Interface.lnk . (...)  -- C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Piratrax.lnk . (.DENIAU F.A.A - Le nettoyeur de trax.)  -- C:\Program Files (x86)\Piratrax\piratrax.exe
O4 - GS\QuickLaunch: adsl TV.lnk . (.adsl TV / FM - adsl TV.)  -- C:\Program Files (x86)\adslTV\adsltv.exe
O4 - GS\QuickLaunch: Apple Safari.lnk . (...)  -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - GS\QuickLaunch: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.)  -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - GS\QuickLaunch: DriverScanner.lnk . (.Uniblue Systems Ltd - Uniblue DriverScanner.)  -- C:\Program Files (x86)\Uniblue\DriverScanner\driverscanner.exe
O4 - GS\QuickLaunch: DuckCapture.lnk . (.DuckLink Software - DuckLink Screen Capture.)  -- C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe
O4 - GS\QuickLaunch: Excel Recovery Toolbox.lnk . (...)  -- C:\Program Files (x86)\Excel Recovery Toolbox\ExcelRecoveryToolboxLauncher.exe
O4 - GS\QuickLaunch: Gestionnaire de Connexion.lnk . (.SFR - Gestionnaire de connexion.)  -- C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR_Gestionnaire_connexion.exe
O4 - GS\QuickLaunch: Glary Undelete.lnk . (.Glarysoft Ltd - Glary Undelete.)  -- C:\Program Files (x86)\Glary Undelete\undelete.exe
O4 - GS\QuickLaunch: Glary Utilities 3.lnk . (.Glarysoft Ltd - Glary Utilities 3.)  -- C:\Program Files (x86)\Glary Utilities 3\Integrator.exe
O4 - GS\QuickLaunch: IncrediMail 2.0.lnk . (.IncrediMail, Ltd. - IncrediMail Application.)  -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - GS\QuickLaunch: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\QuickLaunch: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.)  -- C:\Program Files (x86)\JetAudio\JetAudio.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.)  -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\QuickLaunch: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.)  -- C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.exe
O4 - GS\QuickLaunch: Nero Home.lnk . (.Nero AG - Nero Home.)  -- C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe
O4 - GS\QuickLaunch: Nero StartSmart.lnk . (.Nero AG - Nero StartSmart.)  -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
O4 - GS\QuickLaunch: PhotoScape.lnk . (...)  -- C:\Program Files (x86)\PhotoScape\PhotoScape.exe
O4 - GS\QuickLaunch: Piratrax.lnk . (.DENIAU F.A.A - Le nettoyeur de trax.)  -- C:\Program Files (x86)\Piratrax\piratrax.exe
O4 - GS\QuickLaunch: Roxio Creator Basic v9.lnk . (...)  -- C:\Program Files (x86)\Common Files\Roxio Shared\9.0\Roxio Central33\Main\Roxio_Central33.exe
O4 - GS\QuickLaunch: Spider Player.lnk . (.VIT Software, LLC - Spider Player.)  -- C:\Program Files (x86)\Spider Player\Spider.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.)  -- C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
O4 - GS\SendTo: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.)  -- C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe
O4 - GS\SendTo: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.)  -- C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
O4 - GS\SendTo: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.)  -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - GS\SendTo: Evernote.lnk . (.Evernote Corp., 333 W Evelyn Ave. Mountain - Evernote.)  -- C:\Program Files (x86)\Evernote\Evernote\Evernote.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe
O4 - GS\SendTo: Lecteur Drag-to-Disc (E).lnk . (...)  -- E:\
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.)  -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\Desktop: 10 000 Lettres et Courriers Types.lnk . (.Micro Application - Pas de description.)  -- C:\Program Files (x86)\Micro Application\10 000 Lettres et Courriers Types\CT.exe
O4 - GS\Desktop: Free Download Manager.lnk . (.FreeDownloadManager.ORG - Free Download Manager.)  -- C:\Program Files (x86)\Free Download Manager\fdm.exe
O4 - GS\Desktop: Nero Express.lnk . (.Nero AG - Nero Burning ROM.)  -- C:\Program Files (x86)\Nero\Nero 7\Core\nero.exe
O4 - GS\Desktop: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.)  -- C:\Windows\system32\notepad.exe
O4 - GS\Desktop: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.)  -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe
~ Global Startup:  Scanned in 00mn 02s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~3\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~3\Office14\ONBTTN~1.dll (.not file.)
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Winsock: 8 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2F976DDF-55FA-451A-9AB2-B785EAAF8A0F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{4198A7D2-0520-4E13-8ED1-AC17D4970F02}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{2F976DDF-55FA-451A-9AB2-B785EAAF8A0F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{4198A7D2-0520-4E13-8ED1-AC17D4970F02}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{2F976DDF-55FA-451A-9AB2-B785EAAF8A0F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{4198A7D2-0520-4E13-8ED1-AC17D4970F02}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain:  Scanned in 00mn 00s



---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Service Planificateur2 Acronis (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) . (...) - C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: F-Secure Dll Hoster (fshoster) . (.F-Secure Corporation - F-Secure Host Process.) - C:\Program Files (x86)\SFR\Pack_Securite\fshoster32.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Client Services (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: SecureUpdate (SecureUpdateSvc) . (...) - C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe
O23 - Service:  (SFR.Dashboard.Service) . (.SFR - SFR.Dashboard.Service.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
~ Services: 24 Scanned in 00mn 08s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\dsmonitor.job   [356]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GlaryInitialize 3.job   [348]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1066]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1070]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\HPCeeScheduleForanthonybriere.job   [364]
[MD5.476BB014F3F68C0C15EDDD5B444DA8FF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [257416]
[MD5.5CE2C1433B9B634591F0A1C4C1203A0B] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe   [251784]
[MD5.4999625054FFA2AFFCAFD085C1218307] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [3611416]  =>Piriform Ltd
[MD5.FA8EC2E971C99F88C3A38D27CBAAA688] [APT] [dsmonitor] (.Uniblue Systems Ltd.) -- C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe   [26456]
[MD5.052B98699F147FEA495F39D8C324A348] [APT] [GlaryInitialize 3] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 3\Initialize.exe   [100640]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.8AA3B22B716A04AC8DD13318A40D708D] [APT] [HPCeeScheduleForanthonybriere] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe   [95800]
[MD5.6B84BDF8A4412A64BA34F5B27C5BA80D] [APT] [{1E08CD4E-87DD-45F3-BB6A-96EFF265C763}] (.Adobe Systems, Copyright 2005-2007.) -- C:\Users\anthonybriere\Desktop\Logiciel divers\adobe\Adobe CS3\Setup.exe   [2713512]
[MD5.00000000000000000000000000000000] [APT] [{45E22609-FA16-4497-A17A-02C74D0B877C}] (...) -- C:\Users\anthonybriere\Downloads\sp56801.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{4D772E80-D56D-461A-A774-32651E90AD2A}] (...) -- F:\Maintenance informatique\Outils de désinfection\ZhP\ZHP 2013.exe (.not file.)   [0]
[MD5.14E0E43D9C2184A19BD83AF270CEA4E6] [APT] [{B49A3F89-2988-4707-9802-5271D0ECCEAF}] (.Nicolas Coolman.) -- C:\Users\anthonybriere\Desktop\Nouveau dossier (5)\Outils de désinfection\ZHPDiag\ZHPDiag2.exe   [5528973]
[MD5.2D890AD63AB1B8CB4AC9AC1C6E58512F] [APT] [{E758A651-5B9D-4D1F-A22A-C64A2BA8E2A0}] (...) -- C:\Users\anthonybriere\Desktop\Téléchargement Logiciel Vidéo Mp3\im_dict_fr.exe   [362088]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe   [561984]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.353680422ADF487E808510E39ED20647] [APT] [HP Total Care Tune-Up] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe   [18336]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.28E1A34ED1B810BC2F4734F2DBFF2A76] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe   [615736]
[MD5.A6578474FB7265891B76A4A3B0BCC4E9] [APT] [WarrantyChecker] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe   [1553112]
[MD5.A6578474FB7265891B76A4A3B0BCC4E9] [APT] [WarrantyChecker_DeviceScan] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe   [1553112]
~ Scheduled Task: 30 Scanned in 00mn 07s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 01s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (DLACDBHE) . (.Roxio - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHE.sys
O41 - Driver: (DLARTL_E) . (.Roxio - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_E.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 72 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: 10 000 Lettres et Courriers Types - (...) [HKLM][64Bits] -- {4AD7CCAE-FCD7-407D-B54A-912C61204E29}
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: AVS Video Converter 8 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1
O42 - Logiciel: AccelerateTab - (.AccelerateTab.) [HKLM][64Bits] -- AccelerateTab_is1
O42 - Logiciel: Acronis Drive Monitor - (.Acronis.) [HKLM][64Bits] -- {706AE61D-40A4-4F50-8359-FE8F6F7FA461}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B}
O42 - Logiciel: Adobe Bridge 1.0 - (.Adobe Systems.) [HKLM][64Bits] -- {AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}
O42 - Logiciel: Adobe Common File Installer - (.Adobe System Incorporated.) [HKLM][64Bits] -- {8EDBA74D-0686-4C99-BFDD-F894678E5102}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Help Center 2.1 - (.Adobe Systems.) [HKLM][64Bits] -- {25569723-DC5A-4467-A639-79535BF01B71}
O42 - Logiciel: Adobe Illustrator CS2 - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe Illustrator CS2
O42 - Logiciel: Adobe InDesign CS2 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe InDesign CS2 - {7F4C8163-F259-49A0-A018-2857A90578BC}
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC}
O42 - Logiciel: Adobe Photoshop CS2 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-1E257A25E34D}
O42 - Logiciel: Adobe Photoshop Elements 5.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop Elements 5
O42 - Logiciel: Adobe Photoshop Lightroom 4.3 64-bit - (.Adobe.) [HKLM][64Bits] -- {D759947B-8C5A-4480-B0DB-FC391F061C85}
O42 - Logiciel: Adobe Premiere Pro 2.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Premiere Pro 2.0
O42 - Logiciel: Adobe Reader XI (11.0.03) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe SVG Viewer
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Adobe Stock Photos 1.0 - (.Adobe Systems.) [HKLM][64Bits] -- {786C5747-0C40-4930-9AFE-113BCE553101}
O42 - Logiciel: Adobe Stock Photos 1.0 - (.Adobe Systems.) [HKLM][64Bits] -- {786C5747-1437-443D-B06E-79A00FE45110}
O42 - Logiciel: Advanced SystemCare 6 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 6_is1
O42 - Logiciel: Agriculture Simulator 2012 - (...) [HKLM][64Bits] -- Agrar Simulator 2012
O42 - Logiciel: Antidote HD - (.Druide informatique inc..) [HKLM][64Bits] -- {56CDB4FE-895F-4E0D-8BB4-9A8D4310898D}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {5D09C772-ECB3-442B-9CC6-B4341C78FDC2}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Archiveur WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Ashampoo Home Designer Pro v.1.0.1 - (.Creative Amadeo GmbH.) [HKLM][64Bits] -- {4D1A0101-17A2-4fca-9119-4734EDBDA12D}_is1
O42 - Logiciel: Beezik - (.Beezik entertainment.) [HKLM][64Bits] -- {2B5E94EB-7D72-4DD1-B9FA-15A7B1746636}_is1
O42 - Logiciel: Bing Bureau - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D095455-D971-4D4C-9EFD-9AF6A6584F3A}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner  =>Piriform Ltd
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex
O42 - Logiciel: CVitaeV4 - (...) [HKCU][64Bits] -- CVitaeV4
O42 - Logiciel: Cake Mania - (.WildTangent.) [HKLM][64Bits] -- WTA-8e3d5800-f69f-4474-9d25-1bd0c61c7b34
O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-83f9ab81-bba2-407f-a9a2-6ff3ac37596c
O42 - Logiciel: Ciel Immobilisations 17.0 Enseignants - (.Ciel.) [HKLM][64Bits] -- {A0AD5B20-5389-4FFF-B2BB-D391BB2A039A}
O42 - Logiciel: Ciel Paye Evolution 10.00 Enseignants & Formateurs - (.CIEL.) [HKLM][64Bits] -- {DF3C3472-7A31-4F36-87A1-2819290A540A}
O42 - Logiciel: Code de la Route - (...) [HKLM][64Bits] -- {10890BBB-5CBB-468B-88E7-C83D56DE2440}
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-0626d3b4-09ab-4693-ac9a-bf32c8308d81
O42 - Logiciel: Crazy Taxi - (...) [HKLM][64Bits] -- {B97ACE80-6D9B-11D6-AFFD-0040052179B6}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DFX - (.Power Technology.) [HKLM][64Bits] -- DFX
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM][64Bits] -- Defraggler
O42 - Logiciel: Diver : Aventures en eau profonde 1.1 - (...) [HKLM][64Bits] -- Diver : Aventures en eau profonde_is1
O42 - Logiciel: Driver pour mobile - (...) [HKLM][64Bits] -- {D2D77DC2-8299-11D1-8949-444553540000}_is1
O42 - Logiciel: DriverScanner - (.Uniblue Systems Ltd.) [HKLM][64Bits] -- {C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
O42 - Logiciel: DriverTuner 3.1.0.0 - (.LionSea SoftWare.) [HKLM][64Bits] -- {520C1D80-935C-42B9-9340-E883849D804F}_is1
O42 - Logiciel: DuckCapture Standard 2.7 - (.DuckLink.) [HKLM][64Bits] -- DuckCapture_is1
O42 - Logiciel: EASEUS Partition Recovery 5.0.1 - (.EASEUS.) [HKLM][64Bits] -- EASEUS Partition Recovery_is1
O42 - Logiciel: ESU for Microsoft Windows 7 SP1 - (.Hewlett-Packard.) [HKLM][64Bits] -- {768A6276-5822-489C-8A2B-67190F745655}
O42 - Logiciel: Easy Drive Data Recovery - (.MunSoft.) [HKLM][64Bits] -- Easy Drive Data Recovery
O42 - Logiciel: Evernote v. 4.5.6 - (.Evernote Corp..) [HKLM][64Bits] -- {D1F7C704-99F2-11E1-9C74-984BE15F174E}
O42 - Logiciel: Excel Recovery Toolbox 1.7 - (.Recovery Toolbox, Inc..) [HKLM][64Bits] -- Excel Recovery Toolbox_is1
O42 - Logiciel: F.C. Manager 2007 - (.Codemasters.) [HKLM][64Bits] -- {2F17F116-2FE6-40B6-97A0-9322421A987F}
O42 - Logiciel: F4WebPlugin 0.2.20 - (.F4.) [HKLM][64Bits] -- {909AA7E1-95FD-4EF4-8819-5DEFA5900BC7}
O42 - Logiciel: Faire-part - (.Micro Application.) [HKLM][64Bits] -- Faire-part
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-14d3ad33-6fc6-40bc-93bc-d504a5b0c327
O42 - Logiciel: Farmscapes - (.WildTangent.) [HKLM][64Bits] -- WTA-89431c6c-c7c2-40d1-b208-49ff9c25fc49
O42 - Logiciel: Final Drive Fury - (.WildTangent.) [HKLM][64Bits] -- WTA-512a2f5a-16fe-41d7-ae3a-bbaa1b6addc1
O42 - Logiciel: Fishdom (TM) 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-1e1eb26a-79b2-4b8d-85b7-8e7517f9b9cc
O42 - Logiciel: Free Devis Factures 2013 - (.JP Eldin.) [HKLM][64Bits] -- {C2D5B90E-92FF-4A5D-93EF-BE1EBA3EBE85}
O42 - Logiciel: Free Download Manager 3.9.2 - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- Free Download Manager_is1
O42 - Logiciel: Game Booster 3 - (.IObit.) [HKLM][64Bits] -- Game Booster_is1
O42 - Logiciel: GameShadow - (.GameShadow Ltd.) [HKLM][64Bits] -- {373C3DAE-62C8-4F63-887C-769A8986ED50}
O42 - Logiciel: Gestionnaire de Connexion 3.4 - (.SFR.) [HKLM][64Bits] -- {FC48747D-095F-4CF6-B54E-37D4F4738A15}_is1
O42 - Logiciel: GetDataBack for FAT - (.Runtime Software.) [HKLM][64Bits] -- {2EEEC858-21F8-419B-8FE2-820621BFFCD7}
O42 - Logiciel: GetDataBack for NTFS - (.Runtime Software.) [HKLM][64Bits] -- {56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}
O42 - Logiciel: Glary Undelete 1.8.0.468 - (.Glarysoft.com.) [HKLM][64Bits] -- Glary Undelete_is1
O42 - Logiciel: Glary Utilities 3.8 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 3
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {C2D4CD4A-AE20-40B3-8726-8ED1C03E8C15}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HD Tune 2.55 - (.EFD Software.) [HKLM][64Bits] -- HD Tune_is1
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F9E399CB-046F-45FD-A67F-CF399E2128E4}
O42 - Logiciel: HP Application Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {0CE7EBAF-157D-4111-9146-057CB2A4023E}
O42 - Logiciel: HP Auto - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
O42 - Logiciel: HP Client Services - (.Hewlett-Packard.) [HKLM][64Bits] -- {2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
O42 - Logiciel: HP Connection Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}
O42 - Logiciel: HP CoolSense - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {16652164-D80F-4EE6-90C6-2E8D5D06092A}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Launch Box - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {5A847522-375C-4D05-BD3D-88C450CC047F}
O42 - Logiciel: HP On Screen Display - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED1BD69A-07E3-418C-91F1-D856582581BF}
O42 - Logiciel: HP Power Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}
O42 - Logiciel: HP Product Detection - (.HP.) [HKLM][64Bits] -- {ACAA0152-96A4-4D93-92F5-1B4728C3D984}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {53B17A98-5BF0-40BC-AAFF-850A357975AC}
O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {DBCD5E64-7379-4648-9444-8A6558DCB614}
O42 - Logiciel: HP Security Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED6CD3AC-616B-4B20-BCF3-6E637B92A5AD}
O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}
O42 - Logiciel: HP Setup Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {AE856388-AFAD-4753-81DF-D96B19D0A17C}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.1.1 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: Hitman 2: Silent Assassin - (.Eidos Interactive.) [HKLM][64Bits] -- Hitman 2: Silent Assassin
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IObit Malware Fighter - (.IObit.) [HKLM][64Bits] -- IObit Malware Fighter_is1
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: Inkscape 0.48.2 - (...) [HKLM][64Bits] -- Inkscape
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-050dab37-fa79-4211-a984-9f30cfb3bf8c
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {6199B534-A1B6-46ED-873B-97B0ECF8F81E}
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-7bf3aabd-8b33-48a2-876a-991a46375fb1
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WTA-9b9784d2-b7fa-490e-aee1-7e7f5f9272e7
O42 - Logiciel: Jewel Quest Solitaire 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-447ebd81-2c48-4390-b591-f242e7772f9b
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: K-Lite Codec Pack 9.0.2 (Basic) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: LinuxLive USB Creator - (.Thibaut Lauziere.) [HKLM][64Bits] -- LinuxLive USB Creator
O42 - Logiciel: MAGIX Photo & Graphic Designer 7 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{DCCB6DE9-7F9E-4059-A59C-CE333993A295}
O42 - Logiciel: MAGIX Photo & Graphic Designer 7 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- {DCCB6DE9-7F9E-4059-A59C-CE333993A295}
O42 - Logiciel: MAGIX Photo & Graphic Designer 7 Version à télécharger Content Pack - (.MAGIX AG.) [HKLM][64Bits] -- {B39D0FAC-D138-42DC-8F9D-F261DF586E18}
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{2D486845-4F4C-402D-81C6-96DD2653166D}
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {2D486845-4F4C-402D-81C6-96DD2653166D}
O42 - Logiciel: MAGIX Web Designer 6 Silver - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{1062C7EF-731C-4EC4-9481-21BD90693F47}
O42 - Logiciel: MAGIX Web Designer 6 Silver - (.MAGIX AG.) [HKLM][64Bits] -- {1062C7EF-731C-4EC4-9481-21BD90693F47}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {08AED066-0002-4E63-8AE9-6D63D4A50C07}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WTA-3e9ec46c-b13c-4493-9539-bc1ce0d00ead
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Calculatrice Plus - (.Microsoft.) [HKLM][64Bits] -- {13922F10-BD74-4912-AB11-E34B35062700}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 23.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 23.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mystery of Mortlake Mansion - (.WildTangent.) [HKLM][64Bits] -- WTA-cca99803-c9fc-4a76-833a-0a817a29358c
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {1C4551A6-4743-4093-91E4-1477CD655043}
O42 - Logiciel: Need For Speed™ World - (.Electronic Arts.) [HKLM][64Bits] -- {7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1
O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM][64Bits] -- {CF097717-F174-4144-954A-FBC4BF301036}
O42 - Logiciel: Office Password Recovery Magic v6.1.1.190 - (.Password Recovery Magic Studio Ltd..) [HKLM][64Bits] -- Office Password Recovery Magic_is1
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: PC SECURITY TEST 2010 - (.AxBx.) [HKLM][64Bits] -- PC SECURITY TEST 2010_is1
O42 - Logiciel: Photo & Graphic Designer 7 Update - (.MAGIX AG.) [HKLM][64Bits] -- {C30D6585-943E-471A-BBA5-022C35BEFAEA}
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM][64Bits] -- Photo Notifier and Animation Creator
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail.) [HKLM][64Bits] -- {788A0222-5690-4212-AA9C-C48FD0E1C9AE}
O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape
O42 - Logiciel: Piratrax - (.DENIAU F.A.A.) [HKCU][64Bits] -- Piratrax
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-54aae0ea-e5fc-4b51-b8b5-d2edbb28be2c
O42 - Logiciel: Poker - (.Micro Application.) [HKLM][64Bits] -- {58A7D3F8-0EBC-4AC6-9782-FC2C4F457E85}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044}
O42 - Logiciel: Ralink RT5390R 802.11b/g/n 1x1 Wi-Fi Adapter - (.Ralink.) [HKLM][64Bits] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}
O42 - Logiciel: Ranch Rush 2 - Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-20983908-4ccf-46d3-a43a-739dc26283d1
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM][64Bits] -- {83FFCFC7-88C6-41c6-8752-958A45325C82}
O42 - Logiciel: Roxio Creator Basic v9 - (.Roxio.) [HKLM][64Bits] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM][64Bits] -- {619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM][64Bits] -- {0D397393-9B50-4c52-84D5-77E344289F87}
O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM][64Bits] -- {0394CDC8-FABD-4ed8-B104-03393876DFDF}
O42 - Logiciel: Roxio Drag-to-Disc - (.Roxio.) [HKLM][64Bits] -- {2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668}
O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM][64Bits] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
O42 - Logiciel: Roxio MyDVD Basic v9 - (.Roxio.) [HKLM][64Bits] -- {938B1CD7-7C60-491E-AA90-1F1888168240}
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D}
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype™ 6.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {EA17F4FC-FDBF-4CF8-A529-2D983132D053}
O42 - Logiciel: Slowin' Killer : Nettoyage & Optimisation - (.Saachaa.) [HKLM][64Bits] -- Slowin Killer
O42 - Logiciel: Smart Defrag 2 - (.IObit.) [HKLM][64Bits] -- Smart Defrag 2_is1
O42 - Logiciel: Sniper Elite - (...) [HKLM][64Bits] -- {A979B2D8-E3EE-4523-A26C-4AF0A6809280}
O42 - Logiciel: Sonic Activation Module - (.Sonic Solutions.) [HKLM][64Bits] -- {35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
O42 - Logiciel: Sophos Anti-Rootkit 1.5.0 - (.Sophos Plc.) [HKLM][64Bits] -- Sophos-AntiRootkit
O42 - Logiciel: Speccy - (.Piriform.) [HKLM][64Bits] -- Speccy
O42 - Logiciel: Spider Player 2.5.3 - (.VIT Software, LLC.) [HKLM][64Bits] -- Spider Player_is1
O42 - Logiciel: Stellar Phoenix Windows Data Recovery - Professional - (.Stellar Information Systems Ltd.) [HKLM][64Bits] -- Stellar Phoenix Windows Data Recovery - Professional_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Torchlight - (.WildTangent.) [HKLM][64Bits] -- WTA-7f7a3ae4-8ed3-4787-b493-0e53ec2b1059
O42 - Logiciel: VC 9.0 Runtime - (.Check Point Software Technologies Ltd.) [HKLM][64Bits] -- {02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 2.0.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WTA-bc7c9dde-a271-468f-b250-2da83565ba11
O42 - Logiciel: Virtual Villagers 4 - The Tree of Life - (.WildTangent.) [HKLM][64Bits] -- WTA-f0397c00-1d7b-4e4d-8a76-a1e02c14bfb6
O42 - Logiciel: Votre Avocat à Domicile - (...) [HKLM][64Bits] -- {CBC5560E-309D-4D67-845E-20C646D01344}
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WTA-b0b16158-fdb4-4919-8f0b-7bd6b62edc88
O42 - Logiciel: Yahoo! Software Update - (...) [HKLM][64Bits] -- Yahoo! Software Update  =>Toolbar.Yahoo
O42 - Logiciel: Yahoo! Toolbar - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Companion  =>Toolbar.Yahoo
O42 - Logiciel: ZebHelpProcess 2013 - (.Nicolas Coolman.) [HKLM][64Bits] -- Zeb Help Process_is1
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM][64Bits] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: avast! Free Antivirus v8.0.1489.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: jetAudio 8 - Traduction française - (.Dominic Desbiens.) [HKLM][64Bits] -- Traduction française jetAudio 8.0x_is1
O42 - Logiciel: jetAudio Basic VX - (.COWON.) [HKLM][64Bits] -- {DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}
O42 - Logiciel: opensource - (.Your Company Name.) [HKLM][64Bits] -- {3677D4D8-E5E0-49FC-B86E-06541CF00BBE}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 316 Scanned in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ASIO]
[HKCU\Software\ASProtect]
[HKCU\Software\AVS4YOU]
[HKCU\Software\ActaLogic]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Aeria Games]
[HKCU\Software\Ahead]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Yahoo]  =>Toolbar.Yahoo
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ashampoo]
[HKCU\Software\Avanquest]
[HKCU\Software\Avast Software]
[HKCU\Software\Beezik]
[HKCU\Software\Borland]
[HKCU\Software\COWON]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Amadeo GmbH]
[HKCU\Software\DFX]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\Druide informatique inc.]
[HKCU\Software\EASEUS]
[HKCU\Software\EasyBits]
[HKCU\Software\Evernote]
[HKCU\Software\Excel Recovery Toolbox]
[HKCU\Software\F4]
[HKCU\Software\FileScout]
[HKCU\Software\FreeDownloadManager.ORG]
[HKCU\Software\GNU]
[HKCU\Software\GRETECH]
[HKCU\Software\Gabest]
[HKCU\Software\GameSpy]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard Company]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\Home Solutions]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\INCAInternet]
[HKCU\Software\IObit]
[HKCU\Software\Icaros]
[HKCU\Software\IncrediMail]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Licenses]
[HKCU\Software\LinuxLive]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Marcus Hebel Freeware]
[HKCU\Software\MarineCat]
[HKCU\Software\MicroVision]
[HKCU\Software\Minnetonka Audio Software]
[HKCU\Software\Mooii]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\MunSoft]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PowerTechnology]
[HKCU\Software\Roxio]
[HKCU\Software\SFRLauncher]
[HKCU\Software\Sage]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Sonic]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\SysInternals]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Xara]
[HKCU\Software\Yahoo]  =>Toolbar.Yahoo
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\bdgest6]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Acronis]
[HKLM\Software\Audible]
[HKLM\Software\Borland]
[HKLM\Software\CBSTEST]
[HKLM\Software\CXT]
[HKLM\Software\Canneverbe Limited]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DFX]
[HKLM\Software\DivX]
[HKLM\Software\Dolby]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\TuneUp]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASDMA]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Aardwork]
[HKLM\Software\Wow6432Node\Acronis]
[HKLM\Software\Wow6432Node\ActaLogic]
[HKLM\Software\Wow6432Node\Adobe Systems]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Adobee]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Ashampoo]
[HKLM\Software\Wow6432Node\BeezikApplication]
[HKLM\Software\Wow6432Node\Borland]
[HKLM\Software\Wow6432Node\COWON]
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\CheckPoint]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Codemasters]
[HKLM\Software\Wow6432Node\Creative Amadeo GmbH]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DriverTuner]
[HKLM\Software\Wow6432Node\DriverTuner_Init]
[HKLM\Software\Wow6432Node\Druide informatique inc.]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Eidos Interactive]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Evernote]
[HKLM\Software\Wow6432Node\F-Secure]
[HKLM\Software\Wow6432Node\Fiorina Entertainment]
[HKLM\Software\Wow6432Node\FreeDownloadManager.ORG]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\IObit]
[HKLM\Software\Wow6432Node\ImInstaller]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Insyde]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KLCodecPack]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\LAV]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\MC2]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Macrovision]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\MicroVision]
[HKLM\Software\Wow6432Node\Minnetonka Audio Software]
[HKLM\Software\Wow6432Node\Monolith Productions]
[HKLM\Software\Wow6432Node\Mooii]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MunSoft]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PowerTechnology]
[HKLM\Software\Wow6432Node\Rebellion]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Roxio]
[HKLM\Software\Wow6432Node\Runtime Software]
[HKLM\Software\Wow6432Node\SFR]
[HKLM\Software\Wow6432Node\Sage]
[HKLM\Software\Wow6432Node\Secure]
[HKLM\Software\Wow6432Node\Sega]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\Stellar information Systems ltd.]
[HKLM\Software\Wow6432Node\Sun Microsystems]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Win32 Services]
[HKLM\Software\Wow6432Node\Xara]
[HKLM\Software\Wow6432Node\Yahoo]  =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\fssg]
[HKLM\Software\Wow6432Node\illiminable]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\webtogo]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 363 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/06/2012 - 06:59:11 - [3,348] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 10/07/2013 - 19:04:23 - [18,522] ----D C:\Program Files (x86)\Acronis
O43 - CFD: 31/12/2012 - 17:01:25 - [562,604] ----D C:\Program Files (x86)\Ad-Remover
O43 - CFD: 02/03/2013 - 09:42:06 - [-1446,658] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 18/07/2013 - 11:59:42 - [1,654] ----D C:\Program Files (x86)\Adobe Download Assistant
O43 - CFD: 29/03/2013 - 14:37:08 - [108,810] ----D C:\Program Files (x86)\adslTV
O43 - CFD: 13/04/2013 - 17:53:12 - [117,518] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 13/04/2013 - 17:53:24 - [267,095] ----D C:\Program Files (x86)\Agrar Simulator 2012
O43 - CFD: 03/12/2012 - 14:56:56 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 25/03/2013 - 21:41:07 - [1156,035] ----D C:\Program Files (x86)\Ashampoo
O43 - CFD: 19/03/2013 - 21:18:02 - [57,327] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 11/06/2012 - 18:46:43 - [8,068] ----D C:\Program Files (x86)\AxBx
O43 - CFD: 27/07/2013 - 02:09:21 - [0] ----D C:\Program Files (x86)\BDGest Evolution
O43 - CFD: 03/12/2012 - 08:07:41 - [10,213] ----D C:\Program Files (x86)\CDex
O43 - CFD: 22/11/2012 - 09:49:28 - [148,547] ----D C:\Program Files (x86)\Ciel
O43 - CFD: 08/06/2012 - 06:28:04 - [-507,579] ----D C:\Program Files (x86)\Codemasters
O43 - CFD: 15/07/2013 - 23:53:20 - [1715,389] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 15/09/2012 - 19:34:48 - [0,877] ----D C:\Program Files (x86)\Dactylo
O43 - CFD: 04/12/2012 - 07:58:40 - [4,454] ----D C:\Program Files (x86)\DFX
O43 - CFD: 22/08/2012 - 20:51:58 - [0] ----D C:\Program Files (x86)\directx
O43 - CFD: 10/06/2012 - 07:15:58 - [-1583,662] ----D C:\Program Files (x86)\Diver
O43 - CFD: 15/07/2013 - 23:39:10 - [178,982] ----D C:\Program Files (x86)\DivX
O43 - CFD: 24/11/2012 - 18:02:55 - [14,661] ----D C:\Program Files (x86)\DriverTuner
O43 - CFD: 26/09/2012 - 16:31:35 - [412,049] ----D C:\Program Files (x86)\Druide
O43 - CFD: 15/12/2012 - 04:50:12 - [18,778] ----D C:\Program Files (x86)\DuckLink
O43 - CFD: 22/04/2013 - 09:59:54 - [30,529] ----D C:\Program Files (x86)\EASEUS
O43 - CFD: 14/09/2012 - 06:43:21 - [109,520] ----D C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 14/11/2012 - 10:40:28 - [497,586] ----D C:\Program Files (x86)\Eidos Interactive
O43 - CFD: 24/06/2012 - 06:44:26 - [13,694] ----D C:\Program Files (x86)\Electronic Arts
O43 - CFD: 09/02/2012 - 19:42:38 - [124,937] ----D C:\Program Files (x86)\Evernote
O43 - CFD: 16/11/2012 - 08:45:36 - [6,919] ----D C:\Program Files (x86)\Excel Recovery Toolbox
O43 - CFD: 14/05/2013 - 14:05:48 - [37,242] ----D C:\Program Files (x86)\Free Devis Factures
O43 - CFD: 24/01/2013 - 08:29:36 - [24,937] ----D C:\Program Files (x86)\Free Download Manager
O43 - CFD: 19/04/2013 - 09:55:58 - [4,619] ----D C:\Program Files (x86)\Glary Undelete
O43 - CFD: 30/08/2013 - 18:39:50 - [41,412] ----D C:\Program Files (x86)\Glary Utilities 3
O43 - CFD: 27/05/2013 - 09:42:40 - [447,859] ----D C:\Program Files (x86)\Google
O43 - CFD: 25/09/2012 - 15:35:53 - [0] ----D C:\Program Files (x86)\Hachette
O43 - CFD: 10/07/2013 - 18:54:39 - [1,234] ----D C:\Program Files (x86)\HD Tune
O43 - CFD: 29/05/2013 - 19:19:06 - [405,732] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 10/07/2013 - 20:53:15 - [2,597] ----D C:\Program Files (x86)\HP
O43 - CFD: 27/12/2012 - 23:05:16 - [437,877] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 16/11/2012 - 14:06:50 - [515,253] ----D C:\Program Files (x86)\Image-Line
O43 - CFD: 28/03/2013 - 08:22:20 - [25,323] ----D C:\Program Files (x86)\IncrediMail
O43 - CFD: 30/12/2012 - 09:53:19 - [160,221] ----D C:\Program Files (x86)\Inkscape
O43 - CFD: 02/07/2013 - 13:42:37 - [73,566] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 16/03/2012 - 02:50:58 - [164,033] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/08/2013 - 03:30:44 - [5,824] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 13/01/2013 - 01:24:24 - [155,063] ----D C:\Program Files (x86)\IObit
O43 - CFD: 20/06/2013 - 06:52:06 - [125,053] ----D C:\Program Files (x86)\Java
O43 - CFD: 04/12/2012 - 08:01:20 - [75,821] ----D C:\Program Files (x86)\JetAudio
O43 - CFD: 30/12/2012 - 21:47:23 - [43,710] ----D C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 01/07/2013 - 07:04:04 - [144,922] ----D C:\Program Files (x86)\LinuxLive USB Creator
O43 - CFD: 25/02/2013 - 16:59:47 - [895,633] ----D C:\Program Files (x86)\MAGIX
O43 - CFD: 27/07/2013 - 10:11:36 - [13,379] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 09/06/2012 - 23:19:35 - [-965,836] ----D C:\Program Files (x86)\MC2
O43 - CFD: 05/07/2013 - 09:11:39 - [141,812] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 14/12/2012 - 21:32:35 - [19,681] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 05/06/2012 - 15:57:40 - [38,002] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 08/06/2012 - 07:00:30 - [0,934] ----D C:\Program Files (x86)\Microsoft Calculatrice Plus
O43 - CFD: 15/09/2012 - 18:17:08 - [1145,344] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 10/07/2013 - 21:08:19 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 09/02/2012 - 19:56:16 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 13/09/2012 - 08:52:55 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 15/11/2012 - 10:21:16 - [4,166] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 05/06/2012 - 16:00:48 - [7,965] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 15/01/2013 - 12:36:13 - [1,944] ----D C:\Program Files (x86)\MonProduit
O43 - CFD: 28/08/2013 - 22:55:32 - [53,921] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 30/08/2013 - 18:36:14 - [0,215] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 01/10/2012 - 13:03:19 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 22/04/2013 - 11:40:46 - [8,184] ----D C:\Program Files (x86)\MunSoft
O43 - CFD: 30/06/2012 - 07:16:25 - [385,632] ----D C:\Program Files (x86)\Nero
O43 - CFD: 14/08/2012 - 18:45:44 - [0] ----D C:\Program Files (x86)\Nobilis
O43 - CFD: 25/01/2013 - 12:15:29 - [5,020] ----D C:\Program Files (x86)\Office Password Recovery Magic
O43 - CFD: 05/06/2012 - 09:40:24 - [21,142] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 29/05/2013 - 11:19:00 - [307,437] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 28/03/2013 - 08:04:39 - [2,630] ----D C:\Program Files (x86)\Photo Notifier and Animation Creator
O43 - CFD: 30/12/2012 - 09:23:08 - [23,597] ----D C:\Program Files (x86)\PhotoScape
O43 - CFD: 11/06/2012 - 18:32:23 - [3,059] ----D C:\Program Files (x86)\Piratrax
O43 - CFD: 24/07/2013 - 17:07:54 - [73,545] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 23/11/2012 - 19:55:20 - [16,595] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 08/04/2013 - 13:07:35 - [200,718] ----D C:\Program Files (x86)\Roxio
O43 - CFD: 22/04/2013 - 11:06:52 - [8,765] ----D C:\Program Files (x86)\Runtime Software
O43 - CFD: 03/12/2012 - 14:58:57 - [102,823] ----D C:\Program Files (x86)\Safari
O43 - CFD: 22/08/2013 - 07:14:39 - [15,442] ----D C:\Program Files (x86)\Secure Speed Dial
O43 - CFD: 14/08/2012 - 16:22:33 - [152,139] ----D C:\Program Files (x86)\Sega
O43 - CFD: 02/05/2013 - 10:02:47 - [48,599] ----D C:\Program Files (x86)\SFR
O43 - CFD: 12/11/2012 - 08:39:51 - [48,318] R---D C:\Program Files (x86)\Skype
O43 - CFD: 31/12/2012 - 18:47:50 - [1,860] ----D C:\Program Files (x86)\Slowin Killer
O43 - CFD: 26/08/2013 - 09:01:06 - [2,652] ----D C:\Program Files (x86)\Sophos
O43 - CFD: 19/10/2012 - 06:19:15 - [8,854] ----D C:\Program Files (x86)\Spider Player
O43 - CFD: 05/05/2013 - 17:17:28 - [7,559] ----D C:\Program Files (x86)\Stellar Phoenix Windows Data Recovery
O43 - CFD: 16/03/2012 - 03:03:11 - [0,727] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 13/06/2012 - 06:20:59 - [0,000] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 28/03/2013 - 13:06:47 - [22,329] ----D C:\Program Files (x86)\Uniblue
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/01/2013 - 01:16:40 - [0,004] ----D C:\Program Files (x86)\Unlocker
O43 - CFD: 15/12/2012 - 05:37:58 - [94,419] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 10/07/2013 - 21:06:46 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/11/2012 - 08:39:54 - [147,701] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 06/06/2012 - 12:53:14 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 06/06/2012 - 12:53:14 - [5,092] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 06/06/2012 - 12:53:14 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 06/06/2012 - 12:53:14 - [6,039] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2012 - 20:54:25 - [2,969] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 16/08/2012 - 05:42:19 - [9,854] ----D C:\Program Files (x86)\Yahoo!  =>Toolbar.Yahoo
O43 - CFD: 31/08/2013 - 01:37:06 - [130,414] ----D C:\Program Files (x86)\ZebHelpProcess
O43 - CFD: 31/08/2013 - 01:38:24 - [24,737] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 25/03/2013 - 19:33:34 - [6,622] ----D C:\Program Files (x86)\ZHPFix
O43 - CFD: 10/07/2013 - 19:04:25 - [4,463] ----D C:\Program Files (x86)\Common Files\Acronis
O43 - CFD: 11/01/2013 - 02:04:17 - [610,596] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 19/06/2013 - 06:35:42 - [45,609] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 06/06/2012 - 09:52:40 - [0,069] ----D C:\Program Files (x86)\Common Files\Adobe Systems Shared
O43 - CFD: 30/06/2012 - 07:17:32 - [106,748] ----D C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 28/03/2013 - 13:19:48 - [63,892] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 19/03/2013 - 21:18:01 - [93,207] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 05/06/2012 - 13:01:26 - [7,320] ----D C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 16/11/2012 - 12:19:42 - [27,605] ----D C:\Program Files (x86)\Common Files\Ciel
O43 - CFD: 03/12/2012 - 08:44:50 - [13,719] ----D C:\Program Files (x86)\Common Files\COWON
O43 - CFD: 05/06/2012 - 16:01:02 - [0,095] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 04/12/2012 - 07:58:38 - [5,467] ----D C:\Program Files (x86)\Common Files\DFX
O43 - CFD: 15/07/2013 - 23:38:07 - [36,250] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 14/08/2012 - 18:44:23 - [11,355] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 16/03/2012 - 02:48:05 - [14,075] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 16/03/2012 - 02:58:02 - [0,007] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 15/07/2013 - 23:53:20 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 01/10/2012 - 13:03:30 - [8,324] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 14/08/2013 - 03:59:16 - [422,002] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 16/11/2012 - 12:17:24 - [0,622] ----D C:\Program Files (x86)\Common Files\MSSoap
O43 - CFD: 16/03/2012 - 02:49:31 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 08/06/2012 - 07:14:56 - [4,521] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 08/04/2013 - 13:02:53 - [104,188] ----D C:\Program Files (x86)\Common Files\Roxio Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 12/11/2012 - 08:39:39 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 08/04/2013 - 13:05:19 - [5,175] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 08/04/2013 - 13:03:33 - [0,573] ----D C:\Program Files (x86)\Common Files\SureThing Shared
O43 - CFD: 05/06/2012 - 15:48:26 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 14/11/2012 - 22:22:35 - [22,925] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 15/11/2012 - 14:49:12 - [0,233] ----D C:\Program Files (x86)\Common Files\Telespree
O43 - CFD: 09/02/2012 - 19:53:58 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 13/04/2013 - 17:52:52 - [63,718] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 10/07/2013 - 19:05:02 - [3,470] ----D C:\ProgramData\Acronis
O43 - CFD: 28/08/2013 - 12:21:54 - [615,167] ----D C:\ProgramData\Adobe
O43 - CFD: 30/06/2012 - 07:17:43 - [0,000] ----D C:\ProgramData\Ahead
O43 - CFD: 03/12/2012 - 14:56:55 - [43,222] ----D C:\ProgramData\Apple
O43 - CFD: 03/12/2012 - 14:58:41 - [62,864] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Application Data
O43 - CFD: 25/03/2013 - 21:44:58 - [0,150] ----D C:\ProgramData\Ashampoo
O43 - CFD: 04/07/2013 - 12:12:57 - [0] ----D C:\ProgramData\Avanquest
O43 - CFD: 23/11/2012 - 19:55:44 - [17,392] ----D C:\ProgramData\AVAST Software
O43 - CFD: 19/03/2013 - 21:18:14 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Bureau
O43 - CFD: 15/06/2012 - 07:21:08 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 05/08/2012 - 19:56:40 - [0,004] ----D C:\ProgramData\CheckPoint
O43 - CFD: 21/11/2012 - 21:54:41 - [0,468] ----D C:\ProgramData\Ciel
O43 - CFD: 27/07/2013 - 01:40:52 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Desktop
O43 - CFD: 04/12/2012 - 08:00:39 - [0,000] ----D C:\ProgramData\DFX
O43 - CFD: 15/07/2013 - 23:39:10 - [4,699] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Documents
O43 - CFD: 24/06/2012 - 06:44:26 - [-1443,183] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 23/11/2012 - 19:58:49 - [69,843] ----D C:\ProgramData\F-Secure
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Favorites
O43 - CFD: 21/11/2012 - 21:58:37 - [0,018] ----D C:\ProgramData\FLEXnet
O43 - CFD: 14/05/2013 - 14:13:01 - [0,264] ----D C:\ProgramData\Free Devis Factures
O43 - CFD: 15/01/2013 - 12:33:22 - [0,317] ----D C:\ProgramData\Free Download Manager
O43 - CFD: 11/07/2013 - 12:45:02 - [6,089] ----D C:\ProgramData\GlarySoft
O43 - CFD: 05/07/2013 - 09:03:23 - [56,880] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 28/03/2013 - 07:55:17 - [0,000] ----D C:\ProgramData\IM
O43 - CFD: 28/03/2013 - 07:54:05 - [6,803] ----D C:\ProgramData\IncrediMail
O43 - CFD: 16/03/2012 - 03:09:45 - [0,981] ----D C:\ProgramData\Intel
O43 - CFD: 28/01/2013 - 12:20:08 - [46,470] ----D C:\ProgramData\IObit
O43 - CFD: 22/04/2013 - 07:51:45 - [0,206] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 30/05/2013 - 10:45:32 - [1,350] ----D C:\ProgramData\ma-config.com
O43 - CFD: 06/06/2012 - 09:52:41 - [0,007] ----D C:\ProgramData\Macrovision
O43 - CFD: 25/02/2013 - 16:59:47 - [0,697] ----D C:\ProgramData\MAGIX
O43 - CFD: 06/06/2012 - 13:00:18 - [17,150] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Menu Démarrer
O43 - CFD: 02/07/2013 - 13:41:10 - [0,000] ----D C:\ProgramData\Micro Application
O43 - CFD: 29/05/2013 - 12:44:55 - [612,425] -S--D C:\ProgramData\Microsoft
O43 - CFD: 14/08/2013 - 04:04:32 - [0,058] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Modèles
O43 - CFD: 05/06/2012 - 09:52:31 - [0,035] ----D C:\ProgramData\Mozilla
O43 - CFD: 30/06/2012 - 07:16:25 - [4,715] ----D C:\ProgramData\Nero
O43 - CFD: 05/06/2012 - 15:49:08 - [0,024] ----D C:\ProgramData\Norton
O43 - CFD: 16/03/2012 - 03:00:00 - [31,018] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 02/12/2012 - 23:06:37 - [1,018] ----D C:\ProgramData\Photo Notifier and Animation Creator
O43 - CFD: 14/06/2012 - 20:36:26 - [0] ----D C:\ProgramData\PlayFirst
O43 - CFD: 14/06/2012 - 22:06:26 - [0,017] ----D C:\ProgramData\Playrix Entertainment
O43 - CFD: 24/09/2012 - 08:47:13 - [0,010] ----D C:\ProgramData\QuickTime
O43 - CFD: 16/03/2012 - 02:53:07 - [4,602] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 08/04/2013 - 13:07:05 - [16,320] ----D C:\ProgramData\Roxio
O43 - CFD: 14/09/2012 - 05:19:06 - [2,004] ----D C:\ProgramData\SecTaskMan
O43 - CFD: 02/05/2013 - 10:03:05 - [0] ----D C:\ProgramData\SFR
O43 - CFD: 12/11/2012 - 08:39:51 - [51,270] ----D C:\ProgramData\Skype
O43 - CFD: 08/04/2013 - 13:29:08 - [0,001] ----D C:\ProgramData\Sonic
O43 - CFD: 22/01/2013 - 11:39:17 - [0,013] ----D C:\ProgramData\Sophos
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Start Menu
O43 - CFD: 05/06/2012 - 11:01:40 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 16/03/2012 - 03:09:47 - [0,177] ----D C:\ProgramData\Synaptics
O43 - CFD: 06/05/2013 - 12:45:18 - [0] ---AD C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Templates
O43 - CFD: 27/07/2013 - 01:42:01 - [0,461] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 27/12/2012 - 23:05:10 - [-1626,370] ----D C:\ProgramData\WildTangent
O43 - CFD: 16/08/2012 - 05:42:19 - [1,235] ----D C:\ProgramData\Yahoo!  =>Toolbar.Yahoo
O43 - CFD: 24/06/2013 - 18:56:14 - [0,032] ----D C:\ProgramData\Yahoo! Companion  =>Toolbar.Yahoo
O43 - CFD: 15/11/2012 - 16:20:31 - [39,643] ----D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
O43 - CFD: 28/01/2013 - 10:16:40 - [0] ----D C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
O43 - CFD: 23/07/2013 - 22:44:07 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\.minecraft
O43 - CFD: 28/08/2013 - 12:21:54 - [54,706] ----D C:\Users\anthonybriere\AppData\Roaming\Adobe
O43 - CFD: 28/07/2013 - 11:05:49 - [0,074] ----D C:\Users\anthonybriere\AppData\Roaming\Ahead
O43 - CFD: 29/03/2013 - 14:35:22 - [0,169] ----D C:\Users\anthonybriere\AppData\Roaming\Apple Computer
O43 - CFD: 19/06/2013 - 09:38:54 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\ARA
O43 - CFD: 19/03/2013 - 21:18:15 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\AVS4YOU
O43 - CFD: 15/06/2012 - 07:21:08 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Canneverbe Limited
O43 - CFD: 05/08/2012 - 20:25:44 - [0,112] ----D C:\Users\anthonybriere\AppData\Roaming\CheckPoint
O43 - CFD: 18/07/2013 - 09:28:33 - [0,010] ----D C:\Users\anthonybriere\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
O43 - CFD: 03/12/2012 - 08:49:47 - [0,645] ----D C:\Users\anthonybriere\AppData\Roaming\COWON
O43 - CFD: 20/01/2013 - 12:23:33 - [0,449] ----D C:\Users\anthonybriere\AppData\Roaming\CVitae
O43 - CFD: 17/01/2013 - 19:40:03 - [0,184] ----D C:\Users\anthonybriere\AppData\Roaming\DivX
O43 - CFD: 26/09/2012 - 16:28:00 - [0,008] ----D C:\Users\anthonybriere\AppData\Roaming\Druide
O43 - CFD: 15/12/2012 - 04:50:19 - [0,000] ----D C:\Users\anthonybriere\AppData\Roaming\DuckLink
O43 - CFD: 30/06/2012 - 07:10:22 - [0,373] ----D C:\Users\anthonybriere\AppData\Roaming\EasyBurner
O43 - CFD: 24/09/2012 - 12:05:42 - [0,046] ----D C:\Users\anthonybriere\AppData\Roaming\Encyclopedie Hachette
O43 - CFD: 15/06/2012 - 21:06:02 - [5,991] ----D C:\Users\anthonybriere\AppData\Roaming\F4
O43 - CFD: 31/03/2013 - 06:31:38 - [7,467] ----D C:\Users\anthonybriere\AppData\Roaming\Free Download Manager
O43 - CFD: 11/06/2012 - 05:07:20 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\GetRightToGo
O43 - CFD: 11/07/2013 - 12:39:06 - [0,079] ----D C:\Users\anthonybriere\AppData\Roaming\GlarySoft
O43 - CFD: 07/08/2013 - 18:59:58 - [0,006] ----D C:\Users\anthonybriere\AppData\Roaming\Hewlett-Packard
O43 - CFD: 15/11/2012 - 14:49:26 - [0,827] ----D C:\Users\anthonybriere\AppData\Roaming\hpqlog
O43 - CFD: 05/06/2012 - 09:42:14 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Identities
O43 - CFD: 15/06/2013 - 16:43:43 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\IDT
O43 - CFD: 24/01/2013 - 18:11:19 - [0,022] ----D C:\Users\anthonybriere\AppData\Roaming\inkscape
O43 - CFD: 13/06/2013 - 02:29:19 - [0,001] ----D C:\Users\anthonybriere\AppData\Roaming\Intel Corporation
O43 - CFD: 14/11/2012 - 14:08:35 - [7,521] ----D C:\Users\anthonybriere\AppData\Roaming\IObit
O43 - CFD: 22/12/2012 - 07:04:18 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\iolo
O43 - CFD: 05/06/2012 - 09:48:44 - [0,058] ----D C:\Users\anthonybriere\AppData\Roaming\Macromedia
O43 - CFD: 25/02/2013 - 17:13:09 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\MAGIX
O43 - CFD: 06/06/2012 - 13:00:28 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Malwarebytes
O43 - CFD: 16/03/2012 - 11:36:09 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Media Center Programs
O43 - CFD: 09/04/2013 - 13:04:33 - [10,720] -S--D C:\Users\anthonybriere\AppData\Roaming\Microsoft
O43 - CFD: 30/04/2013 - 09:55:18 - [98,084] ----D C:\Users\anthonybriere\AppData\Roaming\Mozilla
O43 - CFD: 24/06/2012 - 07:18:29 - [0,049] ----D C:\Users\anthonybriere\AppData\Roaming\Need for Speed World
O43 - CFD: 16/11/2012 - 08:52:22 - [12,517] ----D C:\Users\anthonybriere\AppData\Roaming\OpenOffice.org
O43 - CFD: 30/12/2012 - 09:25:14 - [0,025] ----D C:\Users\anthonybriere\AppData\Roaming\PhotoScape
O43 - CFD: 14/06/2012 - 20:36:26 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\PlayFirst
O43 - CFD: 08/04/2013 - 13:29:18 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Roxio
O43 - CFD: 13/06/2012 - 06:36:36 - [0] R-H-D C:\Users\anthonybriere\AppData\Roaming\SecuROM
O43 - CFD: 25/12/2012 - 11:11:56 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\ShieldApps
O43 - CFD: 31/08/2013 - 01:40:40 - [8,317] ----D C:\Users\anthonybriere\AppData\Roaming\Skype
O43 - CFD: 20/01/2013 - 09:01:19 - [0,669] ----D C:\Users\anthonybriere\AppData\Roaming\Spider Player
O43 - CFD: 05/06/2012 - 09:42:50 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Synaptics
O43 - CFD: 18/07/2013 - 10:09:11 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Systweak
O43 - CFD: 27/07/2013 - 01:42:01 - [0,004] ----D C:\Users\anthonybriere\AppData\Roaming\TuneUp Software
O43 - CFD: 28/03/2013 - 13:06:47 - [0,015] ----D C:\Users\anthonybriere\AppData\Roaming\Uniblue
O43 - CFD: 28/07/2013 - 11:08:27 - [0,077] ----D C:\Users\anthonybriere\AppData\Roaming\vlc
O43 - CFD: 07/06/2012 - 13:58:56 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Windows Live Writer
O43 - CFD: 22/08/2012 - 20:47:04 - [0,000] ----D C:\Users\anthonybriere\AppData\Roaming\WinRAR
O43 - CFD: 16/08/2012 - 05:42:17 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Yahoo!  =>Toolbar.Yahoo
O43 - CFD: 14/09/2012 - 06:13:52 - [0,008] ----D C:\Users\anthonybriere\AppData\Roaming\_MDLogs
O43 - CFD: 29/06/2013 - 17:45:16 - [88,726] ----D C:\Users\anthonybriere\AppData\Local\Adobe
O43 - CFD: 29/03/2013 - 14:41:34 - [13,893] ----D C:\Users\anthonybriere\AppData\Local\adslTV
O43 - CFD: 24/06/2012 - 00:18:33 - [0] ----D C:\Users\anthonybriere\AppData\Local\Aeria Games
O43 - CFD: 28/07/2013 - 11:05:38 - [3,160] ----D C:\Users\anthonybriere\AppData\Local\Ahead
O43 - CFD: 03/12/2012 - 14:56:57 - [0] ----D C:\Users\anthonybriere\AppData\Local\Apple
O43 - CFD: 27/08/2013 - 16:57:47 - [0,082] ----D C:\Users\anthonybriere\AppData\Local\Apple Computer
O43 - CFD: 05/06/2012 - 09:37:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Application Data
O43 - CFD: 30/12/2012 - 21:59:50 - [86,306] ----D C:\Users\anthonybriere\AppData\Local\Beezik
O43 - CFD: 19/08/2013 - 18:36:31 - [0] ----D C:\Users\anthonybriere\AppData\Local\CrashDumps
O43 - CFD: 18/07/2013 - 11:29:04 - [0] ----D C:\Users\anthonybriere\AppData\Local\CRE
O43 - CFD: 14/10/2012 - 19:14:43 - [0,000] ----D C:\Users\anthonybriere\AppData\Local\DDMSettings
O43 - CFD: 04/12/2012 - 08:02:35 - [0,005] ----D C:\Users\anthonybriere\AppData\Local\DFX
O43 - CFD: 02/06/2013 - 01:01:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Diagnostics
O43 - CFD: 24/06/2012 - 06:54:53 - [0,004] ----D C:\Users\anthonybriere\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 09/06/2012 - 05:17:14 - [48,258] ----D C:\Users\anthonybriere\AppData\Local\Evernote
O43 - CFD: 15/06/2012 - 21:05:56 - [93,953] ----D C:\Users\anthonybriere\AppData\Local\F4
O43 - CFD: 27/05/2013 - 09:42:43 - [28,438] ----D C:\Users\anthonybriere\AppData\Local\Google
O43 - CFD: 07/06/2012 - 20:56:23 - [0,042] ----D C:\Users\anthonybriere\AppData\Local\Hewlett-Packard
O43 - CFD: 05/06/2012 - 10:49:27 - [0,003] ----D C:\Users\anthonybriere\AppData\Local\Hewlett-Packard_Company
O43 - CFD: 30/11/2012 - 14:45:17 - [0,000] ----D C:\Users\anthonybriere\AppData\Local\Hewlett-Packard_Developme
O43 - CFD: 05/06/2012 - 09:37:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Historique
O43 - CFD: 28/08/2013 - 21:29:03 - [156,486] ----D C:\Users\anthonybriere\AppData\Local\IM
O43 - CFD: 29/11/2012 - 21:25:46 - [0] ----D C:\Users\anthonybriere\AppData\Local\Learnpulse
O43 - CFD: 13/06/2012 - 20:19:55 - [0] ----D C:\Users\anthonybriere\AppData\Local\Macromedia
O43 - CFD: 04/07/2013 - 06:48:28 - [1,406] ----D C:\Users\anthonybriere\AppData\Local\Micro Application
O43 - CFD: 10/06/2013 - 11:16:47 - [360,660] ----D C:\Users\anthonybriere\AppData\Local\Microsoft
O43 - CFD: 17/09/2012 - 11:56:53 - [0,463] ----D C:\Users\anthonybriere\AppData\Local\Microsoft Games
O43 - CFD: 12/10/2012 - 16:01:00 - [0,209] ----D C:\Users\anthonybriere\AppData\Local\Microsoft Help
O43 - CFD: 08/04/2013 - 13:28:51 - [0,019] ----D C:\Users\anthonybriere\AppData\Local\MicroVision Applications
O43 - CFD: 05/07/2013 - 09:29:35 - [0,004] ----D C:\Users\anthonybriere\AppData\Local\Micro_Application
O43 - CFD: 05/06/2012 - 09:52:35 - [196,997] ----D C:\Users\anthonybriere\AppData\Local\Mozilla
O43 - CFD: 13/04/2013 - 17:41:31 - [0,062] ----D C:\Users\anthonybriere\AppData\Local\Nexway
O43 - CFD: 05/06/2012 - 15:46:07 - [0,193] ----D C:\Users\anthonybriere\AppData\Local\NPE
O43 - CFD: 26/08/2013 - 21:36:57 - [0,007] ----D C:\Users\anthonybriere\AppData\Local\piratrax
O43 - CFD: 25/03/2013 - 21:39:39 - [0] ----D C:\Users\anthonybriere\AppData\Local\Programs
O43 - CFD: 05/06/2012 - 09:40:02 - [0,000] ----D C:\Users\anthonybriere\AppData\Local\RemEngine
O43 - CFD: 08/04/2013 - 13:25:12 - [0] ----D C:\Users\anthonybriere\AppData\Local\Roxio
O43 - CFD: 03/10/2012 - 12:16:48 - [3,152] ----D C:\Users\anthonybriere\AppData\Local\SFR
O43 - CFD: 31/08/2013 - 01:39:35 - [3,313] ----D C:\Users\anthonybriere\AppData\Local\Temp
O43 - CFD: 05/06/2012 - 09:37:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Temporary Internet Files
O43 - CFD: 11/01/2013 - 00:45:26 - [422,963] ----D C:\Users\anthonybriere\AppData\Local\VirtualStore
O43 - CFD: 10/06/2013 - 11:16:46 - [0,074] ----D C:\Users\anthonybriere\AppData\Local\Windows Live
O43 - CFD: 07/06/2012 - 13:59:03 - [0,618] ----D C:\Users\anthonybriere\AppData\Local\Windows Live Writer
O43 - CFD: 25/02/2013 - 23:33:26 - [0,690] ----D C:\Users\anthonybriere\AppData\Local\Xara
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 15/05/2013 - 11:55:06 - [0,000] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 29/03/2013 - 14:35:36 - [0,012] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
O43 - CFD: 24/06/2012 - 00:14:06 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 19/03/2013 - 21:18:03 - [0,001] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 15/01/2013 - 12:36:15 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CVitaeV4
O43 - CFD: 15/11/2012 - 08:07:52 - [0,000] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 13/06/2012 - 06:35:08 - [0,005] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameShadow
O43 - CFD: 01/07/2013 - 07:03:56 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LinuxLive USB Creator
O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/06/2012 - 18:32:23 - [0,004] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Piratrax
O43 - CFD: 17/08/2013 - 16:19:17 - [0,001] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/01/2013 - 10:16:47 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ 1 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 323 Scanned in 02mn 42s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.0C0F8C989FD56CCAF88CD24B1F30AEC5] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1564948]
O44 - LFC:[MD5.65108FFB5386D5CB0F8391303E328158] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [108608]
O44 - LFC:[MD5.2FB96377B014D2D882D4DCE6694F5FD6] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [133630]
O44 - LFC:[MD5.6C787D4CFC2BDC3248F93CAAA26E2099] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [620924]
O44 - LFC:[MD5.7A32AA2DA30B18B9A3D572FAE57736C7] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [709940]
O44 - LFC:[MD5.0C0F8C989FD56CCAF88CD24B1F30AEC5] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1564948]
O44 - LFC:[MD5.65108FFB5386D5CB0F8391303E328158] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfc009.dat   [108608]
O44 - LFC:[MD5.2FB96377B014D2D882D4DCE6694F5FD6] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat   [133630]
O44 - LFC:[MD5.6C787D4CFC2BDC3248F93CAAA26E2099] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfh009.dat   [620924]
O44 - LFC:[MD5.7A32AA2DA30B18B9A3D572FAE57736C7] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat   [709940]
O44 - LFC:[MD5.DD7A97049C973D5459B147885445E835] - 30/08/2013 - 21:58:33 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1169706]
O44 - LFC:[MD5.780CFC752454F0DFC360C29F87AC78B5] - 30/08/2013 - 20:25:56 ---A- . (...) -- C:\PDOXUSRS.NET   [13030]
O44 - LFC:[MD5.1DF9A01FB7077CC96E7183A69F79BD5D] - 30/08/2013 - 20:17:56 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
O44 - LFC:[MD5.655B4AE5FF173AF8949E321DAA5C583E] - 30/08/2013 - 17:39:37 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT   [2591096]
O44 - LFC:[MD5.655B4AE5FF173AF8949E321DAA5C583E] - 30/08/2013 - 17:39:37 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT   [2591096]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 30/08/2013 - 17:37:00 ---A- . (...) -- C:\Windows\setupact.log   [56]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 30/08/2013 - 17:37:00 ---A- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.B5F4682BD867A167ED610985277DC2BE] - 30/08/2013 - 17:36:41 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/08/2013 - 18:17:56 ---A- . (...) -- C:\Windows\SysNative\HP_ActiveX_Patch_NOT_DETECTED.txt   [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/08/2013 - 18:17:56 RSHAD . (...) -- C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt   [0]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:29:50 ----- . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\SysNative\4014.tmp   [6144]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:29:50 RSHAD . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\System32\4014.tmp   [6144]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:01:15 ----- . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\SysNative\14AF.tmp   [6144]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:01:15 RSHAD . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\System32\14AF.tmp   [6144]
O44 - LFC:[MD5.DD0443BC6CC78A19FD399817F8C51401] - 22/08/2013 - 06:15:18 RSHAD . (...) -- C:\Windows\System32\Drivers\SmartDefragDriver.sys   [17720]
~ Files: 25 Scanned in 00mn 45s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.08338C9C0AC199E377C1811590C49ACB] - 14/08/2013 - 02:38:00 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.9F52F91607E713DC4FA8D94A126D8322] - 24/08/2013 - 20:58:34 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.85555B63AF5E1A53CE26962D7A44835F] - 28/08/2013 - 20:23:23 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.C80CB20367137D3B9F47297B06002F1F] - 28/08/2013 - 22:56:39 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
O45 - LFCP:[MD5.08240A996036A97147F033418568B50D] - 29/08/2013 - 09:49:18 ---A- - C:\Windows\Prefetch\JP2LAUNCHER.EXE-6240744E.pf
O45 - LFCP:[MD5.C53B22226DB1A9E46008C5ABBEA51711] - 29/08/2013 - 09:49:19 ---A- - C:\Windows\Prefetch\JAVA.EXE-07FE5A9A.pf
O45 - LFCP:[MD5.56D71BD2205634934A78319A9D2871FD] - 29/08/2013 - 11:10:36 ---A- - C:\Windows\Prefetch\HPUSERINFO64.EXE-C5B6C7DA.pf
O45 - LFCP:[MD5.589AB28DC8FC62806425596BDB049224] - 29/08/2013 - 11:45:27 ---A- - C:\Windows\Prefetch\HPSFUPDATER.EXE-85E87A15.pf
O45 - LFCP:[MD5.9FCB100835CFBB943A49D59540A513E1] - 29/08/2013 - 18:36:15 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf
O45 - LFCP:[MD5.06B2B8D05994C8B9A8A619FD48B1B87E] - 29/08/2013 - 18:39:07 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:[MD5.6C309518F7239547CF84E89FB7C355C8] - 29/08/2013 - 22:45:51 ---A- - C:\Windows\Prefetch\SETUP.EXE-BF56A2D1.pf
O45 - LFCP:[MD5.6FC945CD3A413E874C9E470753C4FD92] - 29/08/2013 - 22:45:56 ---A- - C:\Windows\Prefetch\29.0.1547.62_29.0.1547.57_CHR-0849AA6C.pf
O45 - LFCP:[MD5.98DF253C3B57B53735623A1453B78C0A] - 29/08/2013 - 22:46:01 ---A- - C:\Windows\Prefetch\SETUP.EXE-FBBB264C.pf
O45 - LFCP:[MD5.9966B1B65F6EF8EB70E40ACDEF21EE17] - 29/08/2013 - 23:00:03 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf
O45 - LFCP:[MD5.6E8B6A27E4BBDD4A16A2B6A06EAE1897] - 29/08/2013 - 23:00:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:[MD5.D37EADBDBFF249E089B97DB1DDC7EB3F] - 29/08/2013 - 23:00:11 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:[MD5.AAC5E71D4C74332B93993FDD08C69B5D] - 29/08/2013 - 23:30:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf
O45 - LFCP:[MD5.B4432604204E40D2184AB4DBA8349488] - 30/08/2013 - 10:16:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-67751737.pf
O45 - LFCP:[MD5.A630D1BC9FBD26EA034EA6A1FB11A029] - 30/08/2013 - 10:20:39 ---A- - C:\Windows\Prefetch\INCMAIL.EXE-F91AEC10.pf
O45 - LFCP:[MD5.EB648D9D24ED41E7E4F64E9155A92050] - 30/08/2013 - 10:20:42 ---A- - C:\Windows\Prefetch\IMAPP.EXE-3E2B42CA.pf
O45 - LFCP:[MD5.1607359E3F39166C8B8ED30F81E33176] - 30/08/2013 - 11:26:05 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.BF0D15AB401C8FC16FA7BB47476DD757] - 30/08/2013 - 11:31:21 ---A- - C:\Windows\Prefetch\WATADMINSVC.EXE-082508A5.pf
O45 - LFCP:[MD5.1648C8AA857673DE2AB0170186388D18] - 30/08/2013 - 11:31:22 ---A- - C:\Windows\Prefetch\SLUI.EXE-724E99D9.pf
O45 - LFCP:[MD5.7DD1D5EDC0A4FBB8500A20B1DB1B695D] - 30/08/2013 - 13:51:36 ---A- - C:\Windows\Prefetch\EXCEL.EXE-A3633949.pf
O45 - LFCP:[MD5.47E3729EB3BCF024466CCEA04E8BF04C] - 30/08/2013 - 15:11:58 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.F6CB90E47F49AD523EFCA1CD0626D799] - 30/08/2013 - 15:13:33 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.314ABB106DA64BF0E04CB9ED3FC92913] - 30/08/2013 - 15:13:49 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.157.478.0.EXE-892DE87D.pf
O45 - LFCP:[MD5.6DE376EF9F11C50DD9197AE34BA44A7C] - 30/08/2013 - 15:13:52 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-6394ED2D.pf
O45 - LFCP:[MD5.FA5D7885B918DC7ABAFF583018F17153] - 30/08/2013 - 15:13:52 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
O45 - LFCP:[MD5.2B8F8B03CF22C336828844ADDBF4DF38] - 30/08/2013 - 17:07:27 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-779BD542.pf  =>Piriform Ltd
O45 - LFCP:[MD5.91132E0FB35A130D8AFD23926F91198A] - 30/08/2013 - 17:12:05 ---A- - C:\Windows\Prefetch\INTEGRATOR.EXE-6236533A.pf
O45 - LFCP:[MD5.CA2441CDC98C31B39DBC881213D99F1A] - 30/08/2013 - 17:28:01 ---A- - C:\Windows\Prefetch\ZHP 2013(3).TMP-B9AE13AD.pf
O45 - LFCP:[MD5.38FD3FDEEC64BA31E26B31317B341BCF] - 30/08/2013 - 17:28:04 ---A- - C:\Windows\Prefetch\ZHP 2013(3).EXE-ABA61F6A.pf
O45 - LFCP:[MD5.C032CDDF5BA5C2743D8734349BBFBD66] - 30/08/2013 - 17:28:05 ---A- - C:\Windows\Prefetch\ZHP 2013(3).TMP-BAAC9A7D.pf
O45 - LFCP:[MD5.98D6EC35C6FCCE2F4A679C7F8FE1F683] - 30/08/2013 - 17:28:15 ---A- - C:\Windows\Prefetch\ADDALIAS.EXE-062D0F59.pf
O45 - LFCP:[MD5.E5CA0D1AC3F8E127473FF26D8831CF42] - 30/08/2013 - 17:28:15 ---A- - C:\Windows\Prefetch\MINIREG.EXE-B4E53719.pf
O45 - LFCP:[MD5.8AD9D5B2E62E61CD33BF17795218B592] - 30/08/2013 - 17:32:40 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf
O45 - LFCP:[MD5.13AA5D9B1859F56293A91AFA781F9F68] - 30/08/2013 - 17:34:53 ---A- - C:\Windows\Prefetch\IMBPP.EXE-BF2AD1FF.pf
O45 - LFCP:[MD5.92453C82B51F42655CE4CDFB969402C7] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf
O45 - LFCP:[MD5.A1A9753BF0C1B05FF1379D8A1B195017] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\AVASTSVC.EXE-AEB722C6.pf
O45 - LFCP:[MD5.A9CB33FD3EAC0117B0BD321E5A9ADD3F] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\SPOOLSV.EXE-D1F6B8B6.pf
O45 - LFCP:[MD5.E872BEE171016B55200492342993713E] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-FEDB32D0.pf
O45 - LFCP:[MD5.BF3B4637DAF3E2F73FEF3C07675D6683] - 30/08/2013 - 17:39:40 ---A- - C:\Windows\Prefetch\SECUREUPDATE.EXE-1E40B7E7.pf
O45 - LFCP:[MD5.98F227F938C36774A95DBC2B54769AEA] - 30/08/2013 - 17:39:50 ---A- - C:\Windows\Prefetch\SC.EXE-1CF1DE92.pf
O45 - LFCP:[MD5.8365F4D5105C477725E547923F9B7239] - 30/08/2013 - 17:39:50 ---A- - C:\Windows\Prefetch\UPGRADE.EXE-E4A5AABF.pf
O45 - LFCP:[MD5.1D1932F0D2DF4269C5B497157E3E0832] - 30/08/2013 - 17:40:31 ---A- - C:\Windows\Prefetch\HPCONNECTIONMANAGER.EXE-4032C2F3.pf
O45 - LFCP:[MD5.BF4FCF06C9B5777A638FBCAAFB81E93C] - 30/08/2013 - 17:40:57 ---A- - C:\Windows\Prefetch\HPQWMIEX.EXE-FAAC8C6F.pf
O45 - LFCP:[MD5.58F3180C247DF2028D0855AC8E0C70D0] - 30/08/2013 - 17:40:58 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.BE78B03BCE87A399F163802BD8BD839A] - 30/08/2013 - 17:41:00 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf
O45 - LFCP:[MD5.F8B59058D9F2B7E2A5E0A57B8AD117B1] - 30/08/2013 - 17:41:03 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf
O45 - LFCP:[MD5.00B548C2DFA261E0B91C72CE73B5000E] - 30/08/2013 - 17:41:07 ---A- - C:\Windows\Prefetch\LPKSETUP.EXE-90F505D8.pf
O45 - LFCP:[MD5.08312BF44BD915E028A70499363661A8] - 30/08/2013 - 17:41:19 ---A- - C:\Windows\Prefetch\AUTOUPDATE.EXE-E77B6320.pf
O45 - LFCP:[MD5.AEC99EA2F68F21402DDC972DB8674F17] - 30/08/2013 - 17:41:19 ---A- - C:\Windows\Prefetch\KEYTOOL.EXE-17AA66E3.pf
O45 - LFCP:[MD5.66D8B9606F9A8E677108335856F24F16] - 30/08/2013 - 17:41:23 ---A- - C:\Windows\Prefetch\SYNTPHELPER.EXE-0A20AAC4.pf
O45 - LFCP:[MD5.4978C04458D92514480986907D2C7CC9] - 30/08/2013 - 17:41:30 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf
O45 - LFCP:[MD5.A5F6D8644E4E95574D8C3AC3E4AE0A63] - 30/08/2013 - 17:42:06 ---A- - C:\Windows\Prefetch\HPCMSRV.EXE-90C8761B.pf
O45 - LFCP:[MD5.AEBB4A805C0FADE716B317D867A877FC] - 30/08/2013 - 17:42:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf
O45 - LFCP:[MD5.15557E1A48AA9A1759C96F23FA48364C] - 30/08/2013 - 17:42:46 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.03AB2551A62CAA04A46812B42C75CFCA] - 30/08/2013 - 17:42:47 ---A- - C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf
O45 - LFCP:[MD5.33D0F3E356E45F9E4620D6F3F0309BCB] - 30/08/2013 - 17:42:49 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf
O45 - LFCP:[MD5.25BABF059BDC083692D5CCB47C5742D9] - 30/08/2013 - 17:43:06 ---A- - C:\Windows\Prefetch\HPSA_SERVICE.EXE-AD6579F0.pf
O45 - LFCP:[MD5.F9A2DA41A85DC4B82DB7F1473FFF00C6] - 30/08/2013 - 17:43:13 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-C086B157.pf
O45 - LFCP:[MD5.75F419A4E0DB485BD738F20A83D80864] - 30/08/2013 - 17:43:35 ---A- - C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf
O45 - LFCP:[MD5.9D613671BE9EAD21970436EDF51F7533] - 30/08/2013 - 17:43:36 ---A- - C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf
O45 - LFCP:[MD5.FB85CE808618A4BF0B95C5671D01AAA9] - 30/08/2013 - 17:43:52 ---A- - C:\Windows\Prefetch\LMS.EXE-8C70F87D.pf
O45 - LFCP:[MD5.98CBE58527ECDBDF01F1E21E866B316B] - 30/08/2013 - 17:43:56 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:[MD5.FA6EC551ABDF22EFD9BA83C10E03ACA8] - 30/08/2013 - 17:44:16 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf
O45 - LFCP:[MD5.8862D66C42E1B28C9759B47BE9881985] - 30/08/2013 - 17:44:17 ---A- - C:\Windows\Prefetch\DELAYLOAD.EXE-36BAD4B7.pf
O45 - LFCP:[MD5.61B67AA7D097940326B75E2E8654B80E] - 30/08/2013 - 17:45:09 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf
O45 - LFCP:[MD5.27C3009DAC3EE679367165ED5E746689] - 30/08/2013 - 17:45:32 ---A- - C:\Windows\Prefetch\UNS.EXE-E6E49771.pf
O45 - LFCP:[MD5.764C7BD15C7977D1EED323505640C35B] - 30/08/2013 - 17:50:39 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.E987DA16740FF689F8A215E7F47A7815] - 30/08/2013 - 17:50:40 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-02CC9EFF.pf
O45 - LFCP:[MD5.0A04913DA474D6729BB596636E322F7C] - 30/08/2013 - 17:51:38 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:[MD5.D9E22F7A47076B70A0DA13C23BEFDCFA] - 30/08/2013 - 17:52:02 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf
O45 - LFCP:[MD5.ACFDC0A9B0CDC26CB8E2363B6081A736] - 30/08/2013 - 17:52:54 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E7777CC4.pf
O45 - LFCP:[MD5.7BEFA6B3CB2049FE0F201B6C6C120650] - 30/08/2013 - 20:09:30 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-D066635E.pf
O45 - LFCP:[MD5.FBE5A34D6310ED1E1FA3CC250A3FA098] - 30/08/2013 - 20:10:01 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf
O45 - LFCP:[MD5.CEC8A89153FD9B48554E3E5DBEE87E82] - 30/08/2013 - 20:10:36 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-03FFF510.pf
O45 - LFCP:[MD5.C49A9BC3C4CB40186868E13CB4337493] - 30/08/2013 - 20:10:44 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-2023FAA8.pf
O45 - LFCP:[MD5.0D7DB1874C0B9EB23B471A37E0C9EB12] - 30/08/2013 - 20:10:45 ---A- - C:\Windows\Prefetch\REG.EXE-4978446A.pf
O45 - LFCP:[MD5.6F810AC07E29D129140BA1A30657E2CA] - 30/08/2013 - 20:10:46 ---A- - C:\Windows\Prefetch\ZHPFIX.EXE-32786FC2.pf
O45 - LFCP:[MD5.9C02861A4C823C017419CF11796815F3] - 30/08/2013 - 20:11:21 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf
O45 - LFCP:[MD5.743E026985AA4D7B21B00B8CB254CAA7] - 30/08/2013 - 20:14:29 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-F1B02F03.pf
O45 - LFCP:[MD5.7A1E20BD1F945BA0EB2F2C1F2D3AEC05] - 30/08/2013 - 20:14:30 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_8_800_94-5FD421D3.pf
O45 - LFCP:[MD5.6A139C53234B6D1F3B92A3EDEE94AE57] - 30/08/2013 - 20:14:53 ---A- - C:\Windows\Prefetch\LADS.EXE-046BC4A8.pf
O45 - LFCP:[MD5.CF6E50981816BEC8E2428682FC234BD2] - 30/08/2013 - 20:16:00 ---A- - C:\Windows\Prefetch\NSLOOKUP.EXE-8DBC12C3.pf
O45 - LFCP:[MD5.0018E91FB3522E82E5F4BAD027BBFF22] - 30/08/2013 - 20:17:56 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-2CA9EB2F.pf
O45 - LFCP:[MD5.B80337B71829DDA3A309DB9CC3EDFC0A] - 30/08/2013 - 20:19:47 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.F92D37008299B47E9FBC79FEF98DDFF0] - 30/08/2013 - 20:19:51 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.2CDFCC1F9631413891DB4BA79AF22871] - 30/08/2013 - 20:19:52 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-1605FA5B.pf
O45 - LFCP:[MD5.E064BC7C0E74BC1F49667161337DFD83] - 30/08/2013 - 20:19:52 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.09D712B819F696F82BA8AF1C9470E6AD] - 30/08/2013 - 21:58:23 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:[MD5.632C46EEEFBC241E905C80955607AEF8] - 30/08/2013 - 21:58:35 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.960A12CE8BE9B4C84D4BE0B9977A4B8D] - 30/08/2013 - 21:58:35 ---A- - C:\Windows\Prefetch\WIRELESSOFFMSG.EXE-286C32A5.pf
O45 - LFCP:[MD5.A345EF9D1BA3891C84BFF2AC63D161CD] - 30/08/2013 - 21:58:37 ---A- - C:\Windows\Prefetch\HPCASLNOTIFICATION.EXE-F1274B82.pf
O45 - LFCP:[MD5.FED300396418C79BD191FCE2FA327170] - 30/08/2013 - 21:58:42 ---A- - C:\Windows\Prefetch\AVAST.SETUP-B1D66586.pf
O45 - LFCP:[MD5.DFC0E0695FFFA577BC881CD7D7D0B053] - 30/08/2013 - 21:59:09 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-6EF4B603.pf
O45 - LFCP:[MD5.CF9900B044891C20F2DA77A6BD89AD06] - 30/08/2013 - 21:59:18 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-3B5B9E84.pf
O45 - LFCP:[MD5.E949E0409F580A3694B81B27C76B165E] - 30/08/2013 - 21:59:36 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.0C98F64F0BA5DA7A4AFBF3AA78311848] - 30/08/2013 - 21:59:42 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.29657084BD33E5B12A310D912DEA6737] - 30/08/2013 - 22:02:41 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3091538384-1223758719-1488994814-1000.db
O45 - LFCP:[MD5.1C865D8A05825E248B6E345C65C06913] - 30/08/2013 - 22:02:41 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-3091538384-1223758719-1488994814-1000.db
O45 - LFCP:[MD5.A7A5561887EA1EE764CBAAC53BDB0605] - 30/08/2013 - 22:20:59 ---A- - C:\Windows\Prefetch\SKYPE.EXE-E71BF59F.pf
O45 - LFCP:[MD5.A5A363E878C810FF470D0942044735EF] - 30/08/2013 - 22:21:05 ---A- - C:\Windows\Prefetch\UPDATER.EXE-EA1310CB.pf
O45 - LFCP:[MD5.0E06E14363DB5B77EEFEF0057B3C1FD6] - 30/08/2013 - 22:21:12 ---A- - C:\Windows\Prefetch\IELOWUTIL.EXE-903B8AC1.pf
O45 - LFCP:[MD5.64056127F29FED2B200D21AC15FDB449] - 30/08/2013 - 22:27:23 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf
O45 - LFCP:[MD5.E0F11227A4D451B25B03175171F81C0B] - 30/08/2013 - 23:55:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf
O45 - LFCP:[MD5.6CFABBEC87A20AB9B1341E104E5ED29A] - 30/08/2013 - 23:55:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.EE2B7693FB7C8759257E0098A681B8B7] - 31/08/2013 - 00:03:57 ---A- - C:\Windows\Prefetch\IMNOTFY.EXE-53DEA81D.pf
O45 - LFCP:[MD5.7BB9C46FD3700DC28366FDF2B300A163] - 31/08/2013 - 00:08:15 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf
O45 - LFCP:[MD5.9F547273AAAB2FC6A887374704F7A71C] - 31/08/2013 - 00:15:56 ---A- - C:\Windows\Prefetch\IMLPP.EXE-C9266A11.pf
O45 - LFCP:[MD5.1A0E750D328A863E82F55C05F619FDBA] - 31/08/2013 - 00:36:59 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.8E045BAF9465AE62B1422F702B78B714] - 31/08/2013 - 00:36:59 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.2F88283069835F1CC02FA6BD1AE42CDE] - 31/08/2013 - 00:36:59 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.346F6076C8F2125DF1E52A676F4D3C66] - 31/08/2013 - 00:37:00 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.800C5F1CB1F8EE5AEBCE2D0205D00E5B] - 31/08/2013 - 00:37:00 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.D5888CE1AB75DB335A6744C4A0A436CA] - 31/08/2013 - 00:37:03 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-6E0B8A49.pf
O45 - LFCP:[MD5.0E7223B338CCC3E97E506FAA56946195] - 31/08/2013 - 00:37:06 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.53170752ECDD5CECFDEF75325087C5BC] - 31/08/2013 - 00:37:09 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-EBD3B8D7.pf
O45 - LFCP:[MD5.68FDA841854B493FA727B5777FD52B2A] - 31/08/2013 - 00:37:10 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf
O45 - LFCP:[MD5.2BDC4A9DC0B704F86E24215CE34FC4D5] - 31/08/2013 - 00:37:12 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A8DE6D5B.pf
O45 - LFCP:[MD5.C4AA7D3878B689DD1F7E624DDDC1651C] - 31/08/2013 - 00:37:13 ---A- - C:\Windows\Prefetch\ZHP2.EXE-B86E8D5A.pf
O45 - LFCP:[MD5.E55BEEE913E695F34D17947530E389FD] - 31/08/2013 - 00:37:19 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf
O45 - LFCP:[MD5.61756AEEB36749F66356F7CAE0B09BD7] - 31/08/2013 - 00:37:24 ---A- - C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf
O45 - LFCP:[MD5.04DBF66839B4E475E26207A14EDF8285] - 31/08/2013 - 00:37:24 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
O45 - LFCP:[MD5.18AA7167B5E0B4E35DEBE3934F781180] - 31/08/2013 - 00:37:24 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-0FB3F22C.pf
O45 - LFCP:[MD5.2AA10A7313786896A87FDFE3EFF362FC] - 31/08/2013 - 00:37:29 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-6768A320.pf
O45 - LFCP:[MD5.0DE7557AB2A7AEBF1043BE40D7358C51] - 31/08/2013 - 00:37:30 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.1BF6C89AE2A6351B5313A146D4ED66DA] - 31/08/2013 - 00:38:21 ---A- - C:\Windows\Prefetch\PV.EXE-34B75B82.pf
O45 - LFCP:[MD5.8BF04906D99E9577DBAA4611FFABB78E] - 31/08/2013 - 00:38:29 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-AB0CE9D9.pf
O45 - LFCP:[MD5.22CA5169E7569EAB4A1F382A4BDEABE2] - 31/08/2013 - 00:38:42 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-AD598958.pf
O45 - LFCP:[MD5.65F273C6371DCBEE51725809070C2EB3] - 31/08/2013 - 00:38:55 ---A- - C:\Windows\Prefetch\WINWORD.EXE-7D220BFE.pf
O45 - LFCP:[MD5.593C45347917B5B1ADFB2EA1D6FAD832] - 31/08/2013 - 00:39:57 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
O45 - LFCP:[MD5.321203676C85958A0229974665235EB1] - 31/08/2013 - 00:39:58 ---A- - C:\Windows\Prefetch\OSPPSVC.EXE-E53D3CC0.pf
O45 - LFCP:[MD5.9BF86D867E1D87B77085CE0E3827B60A] - 31/08/2013 - 00:40:28 ---A- - C:\Windows\Prefetch\SPLWOW64.EXE-297C4568.pf
O45 - LFCP:[MD5.B139292C743473B26CCA50AE8AF03E41] - 31/08/2013 - 00:41:01 ---A- - C:\Windows\Prefetch\ADM.EXE-8CEF4B54.pf
~ Prefetcher: 136 Scanned in 00mn 02s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\procexp90.Sys . (...) -- C:\Windows\System32\Drivers\procexp90.Sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\procexp90.Sys . (...) -- C:\Windows\System32\Drivers\procexp90.Sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 15 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\adm_tray.exe  [Key] . (.Acronis - ADM System Tray Application.) -- C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM  [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Photo Downloader  [Key] . (.Adobe Systems Incorporated - Adobe Photo Downloader 3.0 component.) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\apdproxy.exe
O53 - SMSR:HKLM\...\startupreg\Advanced SystemCare 6  [Key] . (.IObit - ASCTray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
O53 - SMSR:HKLM\...\startupreg\agentantidote.exe  [Key] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe
O53 - SMSR:HKLM\...\startupreg\agentantidote64.exe  [Key] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe
O53 - SMSR:HKLM\...\startupreg\APSDaemon  [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}  [Key] . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
O53 - SMSR:HKLM\...\startupreg\BingDesktop  [Key] . (.Microsoft Corp. - Bing Desktop Application.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
O53 - SMSR:HKLM\...\startupreg\DFX  [Key] . (...) -- C:\Program Files (x86)\DFX\DFX.exe
O53 - SMSR:HKLM\...\startupreg\DivXMediaServer  [Key] . (.DivX, LLC - DivX DLNA Media Server.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O53 - SMSR:HKLM\...\startupreg\DivXUpdate  [Key] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
O53 - SMSR:HKLM\...\startupreg\DuckCapture  [Key] . (.DuckLink Software - DuckLink Screen Capture.) -- C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe
O53 - SMSR:HKLM\...\startupreg\Easybits Recovery  [Key] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O53 - SMSR:HKLM\...\startupreg\Free Download Manager  [Key] . (.FreeDownloadManager.ORG - Free Download Manager.) -- C:\Program Files (x86)\Free Download Manager\fdm.exe
O53 - SMSR:HKLM\...\startupreg\IObit Malware Fighter  [Key] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task  [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O53 - SMSR:HKLM\...\startupreg\RoxioDragToDisc  [Key] . (.Roxio - Drag To Disc Application.) -- C:\Program Files (x86)\Roxio\Drag-to-Disc\DrgToDsc.exe
O53 - SMSR:HKLM\...\startupreg\Service Planificateur2 Acronis  [Key] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched  [Key] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O53 - SMSR:HKLM\...\startupreg\SysTrayApp  [Key] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O53 - SMSR:HKLM\...\startupreg\UnlockerAssistant  [Key] . (...) -- C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe (.not file.)
~ SMSR Keys: 22 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1
~ MWPE Keys: 1 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.899B7E724BF19F17978B6A37B864A277] - 24/09/2012 - 12:40:56 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys   [43840]
O58 - SDL:[MD5.577C79B8F5C6A6925F6EF0AE1B0D4051] - 25/08/2010 - 18:39:00 ---A- . (...) -- C:\Windows\System32\prwntdrv.sys   [16776]
O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys   [38224]
O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 01/01/2005 - 10:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\SysWOW64\npptNT2.sys   [4682]
~ Drivers: 17 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 28/08/2013 - 08:28:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Hewlett-Packard\HPCEE.exe_Url_pzhsl5v0i1efivcm1patkorkz2ji0v0q\6.0.1.8\user.config   [5745]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Mots-clés.psp   [344]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Nouveaux formats doc.psp   [370]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Palette Scripts.psp.lnk   [21141]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Préfs Adobe Photoshop CS.psp   [129443]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Workflow\settings.xml   [2952]
O61 - LFC: 28/08/2013 - 11:41:13 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings   [24]
O61 - LFC: 28/08/2013 - 11:41:13 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav   [36]
O61 - LFC: 28/08/2013 - 11:41:13 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav   [54]
O61 - LFC: 28/08/2013 - 18:18:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Hewlett-Packard\HP Support Framework\cee\2437702013.cee   [1996]
O61 - LFC: 28/08/2013 - 19:22:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img9EDF.htm   [298]
O61 - LFC: 28/08/2013 - 19:22:41 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_full_service[1].swf   [22448]
O61 - LFC: 28/08/2013 - 19:22:44 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_gives_more_chubycons[1].swf   [13108]
O61 - LFC: 28/08/2013 - 19:22:45 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_sv.ix   [8]
O61 - LFC: 28/08/2013 - 19:22:46 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_a.ix   [910]
O61 - LFC: 28/08/2013 - 19:23:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_plus_incredibackup[1].swf   [11810]
O61 - LFC: 28/08/2013 - 19:23:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_red_remove_ad_plus[1].swf   [17241]
O61 - LFC: 28/08/2013 - 19:23:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gg_1000s_best_email_bg[1].swf   [48443]
O61 - LFC: 28/08/2013 - 19:23:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left_gold_234x60[1].swf   [30464]
O61 - LFC: 28/08/2013 - 19:24:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_potection_center_spam[1].swf   [12911]
O61 - LFC: 28/08/2013 - 19:24:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left2_gold_234x60[1].swf   [14435]
O61 - LFC: 28/08/2013 - 19:24:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gold_necktie[1].swf   [5948]
O61 - LFC: 28/08/2013 - 19:24:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\gg_mx[1].swf   [40197]
O61 - LFC: 28/08/2013 - 19:25:48 ---A- . (...) -- C:\Users\anthonybriere\Downloads\RogueKiller(5).exe   [913408]
O61 - LFC: 28/08/2013 - 19:42:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_a.ix   [910]
O61 - LFC: 28/08/2013 - 19:42:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_sv.ix   [8]
O61 - LFC: 28/08/2013 - 20:21:09 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img3E1C.htm   [298]
O61 - LFC: 28/08/2013 - 20:21:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BE43516D-950E-4A1B-9764-9E515E0B60BE}\Show\20409_~33.GIF   [44898]
O61 - LFC: 28/08/2013 - 20:21:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BE43516D-950E-4A1B-9764-9E515E0B60BE}\Show\SENDER_EMAILrbarbeau@sfr@@fr2.png   [3543]
O61 - LFC: 28/08/2013 - 20:21:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BE43516D-950E-4A1B-9764-9E515E0B60BE}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [24902]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Barbeau_rené.imm   [9257000]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BF4E83D3-8718-413A-B371-155D7E87CABA}\Show\ATT1.txt   [42]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BF4E83D3-8718-413A-B371-155D7E87CABA}\Show\ATT2.htm   [2880]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BF4E83D3-8718-413A-B371-155D7E87CABA}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [5928]
O61 - LFC: 28/08/2013 - 20:21:21 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{4F7F1F3D-F175-4630-A073-450061527AB5}\Show\textPartPrev.html   [3842]
O61 - LFC: 28/08/2013 - 20:29:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{FDF28935-04A9-4BE0-8771-45B508856623}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 28/08/2013 - 20:29:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv5EB2.htm   [78]
O61 - LFC: 28/08/2013 - 21:55:07 ---A- . (.Mozilla.) -- C:\Users\anthonybriere\Downloads\mozilla-firefox_23-0-1_fr_11003.exe   [22558568]
O61 - LFC: 28/08/2013 - 23:03:41 ---A- . (...) -- C:\Users\anthonybriere\Downloads\Unidialog_0659778A_1377727430963.pdf   [186240]
O61 - LFC: 29/08/2013 - 10:42:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1865\kc_plus_20x22.png   [1101]
O61 - LFC: 29/08/2013 - 10:42:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{2FB2B765-BDB0-43BA-A264-EC6377063A5C}\SWH.dat   [416]
O61 - LFC: 29/08/2013 - 10:42:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{2FB2B765-BDB0-43BA-A264-EC6377063A5C}\SWSB.dat   [236]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1864\kc_gg_20x22.png   [1152]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1866\kc_pc_20x22.png   [1158]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1962\kc_gallery_20x22.png   [736]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\2026\KC3.png   [1724]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1860\ic_gg_20x18.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1861\plus.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1862\ic_pc_20x18.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1959\ic_gallery_20x18.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\2023\ic2.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:43:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_full_service[1]1.swf   [22448]
O61 - LFC: 29/08/2013 - 10:43:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_gives_more_chubycons[1]1.swf   [13108]
O61 - LFC: 29/08/2013 - 10:43:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_plus_incredibackup[1]1.swf   [11810]
O61 - LFC: 29/08/2013 - 10:43:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_red_remove_ad_plus[1]1.swf   [17241]
O61 - LFC: 29/08/2013 - 10:44:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gg_1000s_best_email_bg[1]1.swf   [48443]
O61 - LFC: 29/08/2013 - 10:44:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left_gold_234x60[1]1.swf   [30464]
O61 - LFC: 29/08/2013 - 10:44:38 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_potection_center_spam[1]1.swf   [12911]
O61 - LFC: 29/08/2013 - 10:44:38 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left2_gold_234x60[1]1.swf   [14435]
O61 - LFC: 29/08/2013 - 10:44:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img51E8.htm   [298]
O61 - LFC: 29/08/2013 - 10:45:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\gg_mx[1]1.swf   [40197]
O61 - LFC: 29/08/2013 - 10:45:08 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gold_necktie[1]1.swf   [5948]
O61 - LFC: 29/08/2013 - 17:37:08 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgD488.htm   [298]
O61 - LFC: 29/08/2013 - 17:37:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imvFC15.htm   [78]
O61 - LFC: 29/08/2013 - 23:44:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgF47F.htm   [298]
O61 - LFC: 30/08/2013 - 01:26:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img62DE.htm   [298]
O61 - LFC: 30/08/2013 - 01:26:28 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv8472.htm   [78]
O61 - LFC: 30/08/2013 - 10:15:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Pictures\Pictures.db   [12288]
O61 - LFC: 30/08/2013 - 10:15:14 R--A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Attachments\{44AD5E0B-5795-4993-B5C1-20A081BDE592}\SnipImage.JPG   [135231]
O61 - LFC: 30/08/2013 - 10:15:14 R--A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\SnipImage.JPG   [135231]
O61 - LFC: 30/08/2013 - 10:15:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgBA6B.htm   [298]
O61 - LFC: 30/08/2013 - 10:15:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img4231.htm   [298]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Attachments\{44AD5E0B-5795-4993-B5C1-20A081BDE592}\SnipImage.JPG_thumb.bmp   [24174]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C34B2E86-E8D1-423D-9268-103A94689E2F}\Show\CHUBBY~43.GIF   [9053]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C34B2E86-E8D1-423D-9268-103A94689E2F}\Show\SENDER_EMAILrbarbeau@sfr@@fr2.png   [3543]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C34B2E86-E8D1-423D-9268-103A94689E2F}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [24700]
O61 - LFC: 30/08/2013 - 10:16:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgDF8A.htm   [298]
O61 - LFC: 30/08/2013 - 10:20:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\AddressBook\AddrBook.db3.bak   [105472]
O61 - LFC: 30/08/2013 - 10:51:43 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv8D1.htm   [78]
O61 - LFC: 30/08/2013 - 13:52:01 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Microsoft\Excel\Excel14.xlb   [13753]
O61 - LFC: 30/08/2013 - 13:52:16 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEohQkmv7O_maconfig_0.pdf   [216519]
O61 - LFC: 30/08/2013 - 13:52:18 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEohQkmv7O_maconfig_0(1).pdf   [216519]
O61 - LFC: 30/08/2013 - 13:52:22 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEohQkmv7O_maconfig_0(2).pdf   [216519]
O61 - LFC: 30/08/2013 - 17:09:43 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\History   [102400]
O61 - LFC: 30/08/2013 - 17:09:44 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\Web Data   [73728]
O61 - LFC: 30/08/2013 - 17:27:45 ---A- . (.Nicolas Coolman.) -- C:\Users\anthonybriere\Downloads\ZHP 2013(3).exe   [16197836]
O61 - LFC: 30/08/2013 - 17:34:45 --HA- . (...) -- C:\Users\anthonybriere\AppData\Local\IconCache.db   [4455082]
O61 - LFC: 30/08/2013 - 17:34:47 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\httpfe\cookies.dat   [2]
O61 - LFC: 30/08/2013 - 17:34:53 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\AccountsOrder.dat   [120]
O61 - LFC: 30/08/2013 - 17:39:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\GDIPFONTCACHEV1.DAT   [217408]
O61 - LFC: 30/08/2013 - 17:39:50 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~gu3-ver.dat   [160]
O61 - LFC: 30/08/2013 - 17:39:50 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~upgrade.dat   [936]
O61 - LFC: 30/08/2013 - 17:39:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{433ED63B-9198-4560-93D2-7E71393190DB}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 30/08/2013 - 17:39:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imvCF7E.htm   [78]
O61 - LFC: 30/08/2013 - 17:40:53 -SHA- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Microsoft\Protect\S-1-5-21-3091538384-1223758719-1488994814-1000\9cdf7c16-c60d-4900-9afc-db0c293e8503   [468]
O61 - LFC: 30/08/2013 - 17:40:53 -SHA- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Microsoft\Protect\S-1-5-21-3091538384-1223758719-1488994814-1000\Preferred   [24]
O61 - LFC: 30/08/2013 - 17:41:32 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\OpenOffice.org\3\.lock   [159]
O61 - LFC: 30/08/2013 - 17:41:33 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu   [126976]
O61 - LFC: 30/08/2013 - 17:44:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\IObit\Advanced SystemCare V6\Boottime\AscTray_Delay.Log   [1852684]
O61 - LFC: 30/08/2013 - 17:50:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\663EACF9-3A94-45D3-9EFC-435AA3542D80_data.bak   [0]
O61 - LFC: 30/08/2013 - 18:49:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv41E3.htm   [78]
O61 - LFC: 30/08/2013 - 18:49:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv4666.htm   [78]
O61 - LFC: 30/08/2013 - 18:49:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv4ACA.htm   [78]
O61 - LFC: 30/08/2013 - 18:49:29 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Notifier.xml   [6619]
O61 - LFC: 30/08/2013 - 18:49:52 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Letter\B433CDFE-B71C-42C2-A5C1-D34C076A9851\CC91FD94-274D-4BDC-B669-705C76032709.htm   [46692]
O61 - LFC: 30/08/2013 - 19:22:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{3857A47F-8B16-4C00-9804-B7769BBA5EAB}\New\noScriptHtmlStrWithoutSource_8.htm   [43760]
O61 - LFC: 30/08/2013 - 19:25:24 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\incredicenter_v2.bmp   [5348]
O61 - LFC: 30/08/2013 - 20:09:07 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEvawyT4zq_rapport_conseiller_maj_seven.pdf   [96738]
O61 - LFC: 30/08/2013 - 20:09:08 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEvawyT4zq_rapport_conseiller_maj_seven(1).pdf   [96738]
O61 - LFC: 30/08/2013 - 20:09:51 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\8CD9D1EF-012C-4061-B5F5-15337BC2AB6D_data.msg   [0]
O61 - LFC: 30/08/2013 - 20:11:32 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEvawyT4zq_rapport_conseiller_maj_seven(2).pdf   [96738]
O61 - LFC: 30/08/2013 - 20:11:58 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgF473.htm   [298]
O61 - LFC: 30/08/2013 - 20:12:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{65641321-39DE-46F0-B24E-30AF6050E4D4}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [16462]
O61 - LFC: 30/08/2013 - 22:20:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\shared_dynco\dc.db   [1802240]
O61 - LFC: 30/08/2013 - 22:20:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\shared_dynco\dc.db-journal   [1141424]
O61 - LFC: 30/08/2013 - 22:20:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\DbTemp\temp-9HokEmSILeNdhkGwUwEBtVrH   [0]
O61 - LFC: 30/08/2013 - 22:21:00 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\bistats.db   [61440]
O61 - LFC: 30/08/2013 - 22:21:00 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\bistats.db-journal   [33344]
O61 - LFC: 30/08/2013 - 22:21:04 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\eas.db   [122880]
O61 - LFC: 30/08/2013 - 22:21:04 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\eas.db-journal   [115424]
O61 - LFC: 30/08/2013 - 22:21:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\keyval.db   [49152]
O61 - LFC: 30/08/2013 - 22:21:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\keyval.db-journal   [41552]
O61 - LFC: 30/08/2013 - 22:21:15 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\chatsync\f5\f53ca0e2608b8f35.dat   [1961]
O61 - LFC: 30/08/2013 - 22:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\DbTemp\temp-1XI18mMNTfXsHAlDnw2DW7tT   [0]
O61 - LFC: 30/08/2013 - 22:31:05 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\dc.db   [126976]
O61 - LFC: 30/08/2013 - 22:42:42 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgF580.htm   [298]
O61 - LFC: 30/08/2013 - 23:33:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\663EACF9-3A94-45D3-9EFC-435AA3542D80_data.msg   [0]
O61 - LFC: 30/08/2013 - 23:33:28 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img6E69.htm   [298]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\history.ix   [54458]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_d_1.ix   [131072]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_di_1.ix   [65536]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_i_20.ix   [774]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_k_20.ix   [65536]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_kl_1.ix   [958464]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_klh_20.ix   [490]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_r_1.ix   [130398]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_v.ix   [285]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\indexlog.dat   [2767]
O61 - LFC: 31/08/2013 - 00:00:53 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\imsl.dat   [7689]
O61 - LFC: 31/08/2013 - 00:03:46 ----- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Inbox.imm   [2028438]
O61 - LFC: 31/08/2013 - 00:03:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img5ED1.htm   [298]
O61 - LFC: 31/08/2013 - 00:04:46 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img16DA.htm   [298]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\019810~18.GIF   [21284]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\090104~13.GIF   [9051]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\110109~19.GIF   [21822]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\122912~14.GIF   [2282]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\CONGRA~22.GIF   [6536]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\ROFL_C~15.GIF   [39496]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [36802]
O61 - LFC: 31/08/2013 - 00:04:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\noScriptHtmlStrWithoutSource_7.htm   [43378]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\019810~18.GIF   [21284]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\090104~13.GIF   [9051]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\110109~19.GIF   [21822]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\122912~14.GIF   [2282]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\CONGRA~22.GIF   [6536]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\ROFL_C~15.GIF   [39496]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\noScriptHtmlStrWithoutSource_7.htm   [83174]
O61 - LFC: 31/08/2013 - 00:05:10 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img72FE.htm   [298]
O61 - LFC: 31/08/2013 - 00:06:10 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img6069.htm   [298]
O61 - LFC: 31/08/2013 - 00:06:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\everyday_sad_230608.png   [1206]
O61 - LFC: 31/08/2013 - 00:08:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_di_1.ix   [65536]
O61 - LFC: 31/08/2013 - 00:08:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_kl_1.ix   [655360]
O61 - LFC: 31/08/2013 - 00:08:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_r_1.ix   [22647]
O61 - LFC: 31/08/2013 - 00:10:39 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\110110_sad3.png   [1190]
O61 - LFC: 31/08/2013 - 00:11:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\010105i_angry_steaming.png   [1446]
O61 - LFC: 31/08/2013 - 00:11:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\Order.dat   [380]
O61 - LFC: 31/08/2013 - 00:14:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\msn.db   [69632]
O61 - LFC: 31/08/2013 - 00:14:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\msn.db-journal   [45656]
O61 - LFC: 31/08/2013 - 00:16:01 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\Cookies   [14336]
O61 - LFC: 31/08/2013 - 00:17:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img9556.htm   [298]
O61 - LFC: 31/08/2013 - 00:18:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img830F.htm   [298]
O61 - LFC: 31/08/2013 - 00:21:08 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\config.xml   [12128]
O61 - LFC: 31/08/2013 - 00:24:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\A2507E1E-4A16-42CD-B401-234B7C0754CD_data.bak   [162]
O61 - LFC: 31/08/2013 - 00:28:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img1985.htm   [298]
O61 - LFC: 31/08/2013 - 00:29:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img73E.htm   [298]
O61 - LFC: 31/08/2013 - 00:34:10 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\A2507E1E-4A16-42CD-B401-234B7C0754CD_data.msg   [162]
O61 - LFC: 31/08/2013 - 00:35:11 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\noScriptHtmlStrWithoutSource_8.htm   [64098]
O61 - LFC: 31/08/2013 - 00:36:30 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\AddressBook\AddrBook.db3   [105472]
O61 - LFC: 31/08/2013 - 00:36:31 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\content.xml   [23006]
O61 - LFC: 31/08/2013 - 00:36:46 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Sent Items.imm   [2798056]
O61 - LFC: 31/08/2013 - 00:36:47 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Containers.db   [95232]
O61 - LFC: 31/08/2013 - 00:36:47 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\imit.dat   [9216]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\history.ix   [192956]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\imit.dat   [14336]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_d_1.ix   [131072]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_i_69.ix   [1015]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_k_69.ix   [65536]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_klh_69.ix   [338]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_v.ix   [285]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\indexlog.dat   [2675]
O61 - LFC: 31/08/2013 - 00:37:04 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\INMEM000.REM   [0]
O61 - LFC: 31/08/2013 - 00:38:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\CVR3D55.tmp.cvr   [0]
O61 - LFC: 31/08/2013 - 00:40:40 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\shared.xml   [78448]
O61 - LFC: 31/08/2013 - 00:42:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\main.db   [880640]
O61 - LFC: 31/08/2013 - 00:42:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\main.db-journal   [213920]
~ 33 Fichiers temporaires (Temporary files)
~ Files: 195 Scanned in 01mn 14s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: ZHPFix 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1
~ ADS:  Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 09/05/2013 - Pas de propriétaire (aswRvrt)  .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - 27/06/2013 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 27/06/2013 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 27/06/2013 - Pas de propriétaire (aswVmm)  .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi)  .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (BootDefragDriver)  .(...) - LEGACY_BOOTDEFRAGDRIVER
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs)  .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLABMFSE.sys (DLABMFSE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABMFSE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLABOIOE.sys (DLABOIOE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABOIOE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLADResE.sys (DLADResE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLADRESE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAIFS_E.sys (DLAIFS_E)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAIFS_E
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAOPIOE.sys (DLAOPIOE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAOPIOE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAPoolE.sys (DLAPoolE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAPOOLE
O64 - Services: CurCS - 08/02/2007 - C:\Windows\System32\Drivers\DLARTL_E.sys (DLARTL_E)  .(.Roxio - Shared Driver Component.) - LEGACY_DLARTL_E
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAUDFAE.sys (DLAUDFAE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDFAE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAUDF_E.sys (DLAUDF_E)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDF_E
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64)  .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 09/02/2007 - C:\Windows\System32\Drivers\DRVEDDM.sys (DRVEDDM)  .(.Roxio - Device Driver Manager.) - LEGACY_DRVEDDM
O64 - Services: CurCS - 10/04/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat)  .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 23/03/2013 - C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys (FileMonitor)  .(.IObit - IMF File MiniFilter Driver.) - LEGACY_FILEMONITOR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 29/11/2011 - C:\Windows\System32\drivers\iaStor.sys (iaStor)  .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP)  .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio)  .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 25/08/2010 - Pas de propriétaire (prwntdrv)  .(...) - LEGACY_PRWNTDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 26/03/2013 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys (RegFilter)  .(.IObit.com - Registry Filter.) - LEGACY_REGFILTER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 22/05/2013 - Pas de propriétaire (SmartDefragDriver)  .(...) - LEGACY_SMARTDEFRAGDRIVER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 10/02/2012 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs)  .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 26/03/2013 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys (UrlFilter)  .(.IObit.com - URL Filter.) - LEGACY_URLFILTER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 10/02/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt)  .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl)  .(.Microsoft Corporation - Couche IFS Winsock2.) - LEGACY_WS2IFSL
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf)  .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 102 Scanned in 00mn 01s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <jsfile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {BE5BB1A1-A4AB-4E3E-AD60-2AD8B9AA4109} - (Yahoo! Search) - http://fr.search.yahoo.com  =>Toolbar.Yahoo
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {BE5BB1A1-A4AB-4E3E-AD60-2AD8B9AA4109} - (Yahoo! Search) - http://fr.search.yahoo.com  =>Toolbar.Yahoo
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
C:\Users\anthonybriere\Desktop\Logiciel de maitenance 2013\Logiciel de gravure\nero_7_crack_keygen\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen.rar
C:\Users\anthonybriere\Desktop\Logiciel de maitenance 2013\Logiciel de gravure\nero_7_crack_keygen\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen.rar
~ Files:  Scanned in 01mn 08s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Services: 32 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.7811058E6E6AFEFFF8692AC2B28DEABD] [SPRF][30/08/2013] (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~gu3-ver.dat   [160]
[MD5.08512BFFB233FFA2D77379B74C4EBB54] [SPRF][30/08/2013] (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~upgrade.dat   [936]
[MD5.0139E9FAAC2B6BF7B7303D4FA88AFFD8] [SPRF][20/09/2012] (...) -- C:\Users\anthonybriere\Desktop\adwcleaner (2).exe   [512737]
[MD5.D4C2029F756A161C5ACB88A00D593E51] [SPRF][24/01/2013] (.Swearware - ComboFix NSIS Installer.) -- C:\Users\anthonybriere\Desktop\ComboFix.exe   [5026656]
[MD5.FCA8974A8A7499A0966A38EF2CD8938E] [SPRF][25/07/2013] (...) -- C:\Users\anthonybriere\Desktop\RogueKiller(1).exe   [915968]
~ Files: 5 Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "{8FD3F9F7-5695-43A9-8803-526F56E3B24B}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{00049C9C-7623-4045-9662-395942FB28EA}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{ECE9E674-5FD4-43D5-9FCB-73CB7E02FD46}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{68BDDAB6-F489-461A-854F-4F8AEEF10F4A}C:\program files (x86)\windows live\contacts\wlcomm.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\windows live\contacts\wlcomm.exe
O87 - FAEL: "UDP Query User{BCD5E8FB-4EF8-4AF5-8E76-F23D504E3D36}C:\program files (x86)\windows live\contacts\wlcomm.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\windows live\contacts\wlcomm.exe
O87 - FAEL: "{A3BB7381-32F5-48D1-9CCC-D02382B59B2C}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{F5670394-7C54-410A-A039-6AFA3B7B204C}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DCD0D556-9FFD-4B5A-9B96-2273FA6C5D72}" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{50B44FF2-4D77-4F76-AD28-73DC261A99D4}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{9B24FCE4-6A10-4576-AD45-AC99523528D2}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{20DE93D3-249D-4AE7-8939-29FAD7DC0DAE}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{62618FB7-1118-44BF-9177-15B64E008B83}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DD225609-8968-4498-A06A-33C85EE5A748}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{2FE15CBD-58FC-4A0D-BE1D-B155148D6A37}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{B6FD6717-9622-489A-BDE6-EDF8678EC6FB}C:\program files (x86)\mc2\sniper elite\sniperelite.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\mc2\sniper elite\sniperelite.exe
O87 - FAEL: "UDP Query User{F6E07403-12C8-4ED9-BDD3-6202891A5784}C:\program files (x86)\mc2\sniper elite\sniperelite.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\mc2\sniper elite\sniperelite.exe
O87 - FAEL: "{CB4EE027-4DB4-4ADA-86EF-BC02C2F34696}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{5E4934D5-C279-45EB-890D-0B0461379509}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "{06DC70B1-2785-43A0-9124-D4B6556506C2}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "TCP Query User{BFACE1DA-ADD9-4899-8CDF-89CB86671C5A}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "UDP Query User{816036EF-6529-4BF3-8DAF-21A33D45B286}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "{4977AE1B-68D3-4951-AB56-F636CE8C49AE}" | In - Public - P6 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "{787820F1-569B-4E6C-AFFC-63BC5D62CFD8}" | In - Public - P17 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "{5638E3B3-5ADC-4230-B9E0-8209EB1B205D}" | In - Public - P6 - TRUE | .(.VideoLAN - VLC media player 2.0.7.) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{F4B72862-19D3-4193-8889-9A17484A613F}" | In - Public - P17 - TRUE | .(.VideoLAN - VLC media player 2.0.7.) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{28061782-97B3-4925-91CB-F5F86230AED0}" | In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{24A0C19D-9A9D-4376-B5E0-E5405A438327}" | In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "TCP Query User{6C87F203-7FD7-495F-A985-C37475496711}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "UDP Query User{F536EDC1-2374-4098-B878-3332B160E1F5}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "{A65B4068-DBDF-49EE-B0AC-F0D5DBBE765F}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{BB1FF144-F803-48DB-84D3-E8A99EE43E37}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{4FDAA429-7BDF-4BA3-874E-53B207576E9B}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{0CCA9358-5B55-4A6A-9A1C-C8B8C8263265}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{7A505AA2-E68A-48D2-A723-1823E5273285}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{BD22BF72-C744-49BF-BDDF-4BFAB035E800}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{E173D11D-388B-434A-ACFF-17D908A42575}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{9913981F-2D79-4ECD-8518-571F0781C168}" | In - Public - P6 - TRUE | .(.ActaLogic - auto update.) -- C:\Program Files (x86)\Agrar Simulator 2012\iupdate.dll
O87 - FAEL: "{B347EBCA-91D1-4698-93D8-564284586D24}" | In - Public - P17 - TRUE | .(.ActaLogic - auto update.) -- C:\Program Files (x86)\Agrar Simulator 2012\iupdate.dll
O87 - FAEL: "{5DFFFE33-3CFA-4E45-A9CF-8770B5D28387}" | In - Public - P6 - TRUE | .(.ActaLogic - Agrar Simulator 2011.) -- C:\Program Files (x86)\Agrar Simulator 2012\farm2012.dll
O87 - FAEL: "{E056F395-B767-4747-AF50-BA3610E0DC08}" | In - Public - P17 - TRUE | .(.ActaLogic - Agrar Simulator 2011.) -- C:\Program Files (x86)\Agrar Simulator 2012\farm2012.dll
O87 - FAEL: "{A1CDECC3-D5A3-4F0D-8B73-A1CEA14D43D1}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{F1DA4CC0-A554-494D-A350-93E3B32EC4C9}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "TCP Query User{174FD96C-9D8E-492D-9687-91C975CD002E}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" | In - Public - P6 - TRUE | .(.Electronic Arts.) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe
O87 - FAEL: "UDP Query User{C0FEF646-49E6-4635-B6FF-B73618C8E3AE}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" | In - Public - P17 - TRUE | .(.Electronic Arts.) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe
O87 - FAEL: "TCP Query User{2D7731A5-11D5-4B1B-ADE0-F01E64853910}C:\program files (x86)\hp\common\hpdevicedetection3.exe" | In - Public - P6 - TRUE | .(.Hewlett-Packard Company.) -- C:\program files (x86)\hp\common\hpdevicedetection3.exe
O87 - FAEL: "UDP Query User{D3098BED-E7DE-4022-9AAD-22CDEF38814C}C:\program files (x86)\hp\common\hpdevicedetection3.exe" | In - Public - P17 - TRUE | .(.Hewlett-Packard Company.) -- C:\program files (x86)\hp\common\hpdevicedetection3.exe
O87 - FAEL: "{8720CE97-A44C-406D-B991-97D2840949A6}" | In - None - P17 - TRUE | .(.Hewlett-Packard Company - HP Device Detection.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
~ Firewall: 209 Scanned in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "01F2293147DB2194BA113EB453607200" . (.Microsoft Calculatrice Plus.) -- C:\Windows\Installer\{13922F10-BD74-4912-AB11-E34B35062700}\_294823.exe
O90 - PUC: "02B5DA0A9835FFF42BBB3D19BBA230A9" . (.Ciel Immobilisations 17.0 Enseignants.) -- C:\Windows\Installer\{A0AD5B20-5389-4FFF-B2BB-D391BB2A039A}\ARPPRODUCTICON.exe
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "114202EE62C28E947948B11CBD7FED69" . (.HP Support Assistant.) -- C:\Windows\Installer\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\ARPPRODUCTICON.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "2220A88709652124AAC94CF80D1E9CEA" . (.Photo Notifier and Animation Creator.) -- C:\Windows\Installer\{788A0222-5690-4212-AA9C-C48FD0E1C9AE}\ARPPRODUCTICON.exe
O90 - PUC: "225748A5C57350D4DBD3884C05CC40F7" . (.HP Launch Box.) -- C:\Windows\Installer\{5A847522-375C-4D05-BD3D-88C450CC047F}\_853F67D554F05449430E7E.exe
O90 - PUC: "2743C3FD13A763F4781A829192A045A0" . (.Ciel Paye Evolution 10.00 Enseignants & Formateurs.) -- C:\Windows\Installer\{DF3C3472-7A31-4F36-87A1-2819290A540A}\ARPPRODUCTICON.exe
O90 - PUC: "277C90D53BCEB244C96C4B43C187DF2C" . (.Apple Application Support.) -- C:\Windows\Installer\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}\WinInstall.ico
O90 - PUC: "2C1A65825C073CE4FA7F5E5BE155032A" . (.HP Client Services.) -- C:\Windows\Installer\{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}\ARPPRODUCTICON.exe
O90 - PUC: "35B229754D20CFD4CA423A15D91C4FA9" . (.Adobe Premiere Pro FC.) -- C:\Windows\Installer\{57922B53-02D4-4DFC-AC24-A3519DC1F49A}\ARPPRODUCTICON.exe
O90 - PUC: "3618C4F7952F0A940A8182759A5087CB" . (.Adobe InDesign CS2.) -- C:\Windows\Installer\{7F4C8163-F259-49A0-A018-2857A90578BC}\ARPPRODUCTICON.exe
O90 - PUC: "393793D005B925c4485D773E4482F978" . (.Roxio Creator Data.) -- C:\Windows\Installer\{0D397393-9B50-4c52-84D5-77E344289F87}\RoxioCentral.exe
O90 - PUC: "407C7F1D2F991E11C94789B41EF571E4" . (.Evernote v. 4.5.6.) -- C:\Windows\Installer\{D1F7C704-99F2-11E1-9C74-984BE15F174E}\Evernote.ico
O90 - PUC: "46125661F08D6EE4096CE2D8D56090A2" . (.HP Documentation.) -- C:\Windows\Installer\{16652164-D80F-4EE6-90C6-2E8D5D06092A}\NotebookDocs.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "46E5DCBD973784644944A85685CD6B41" . (.HP Recovery Manager.) -- C:\Windows\Installer\{DBCD5E64-7379-4648-9444-8A6558DCB614}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\Windows\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe
O90 - PUC: "554590D7179DC4D4E9DFA96F6A85F4A3" . (.Bing Bureau.) -- C:\Windows\Installer\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}\icon.ico
O90 - PUC: "5856D03CE349A174BB5A20C253EBAFAE" . (.Photo & Graphic Designer 7 Update.) -- C:\Windows\Installer\{C30D6585-943E-471A-BBA5-022C35BEFAEA}\ProgramIcon.exe
O90 - PUC: "5AACF56B6A3FF3B4BAEEBC2C0B5897B6" . (.HP Connection Manager.) -- C:\Windows\Installer\{B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}\ARPPRODUCTICON.exe
O90 - PUC: "627A71AF922B61147B392ABAA1E4EAE2" . (.Adobe Premiere Pro 2.0.) -- C:\Windows\Installer\{57922B53-02D4-4DFC-AC24-A3519DC1F49A}\ARPPRODUCTICON.exe
O90 - PUC: "660DEA80200036E4A89ED6364D5AC070" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{08AED066-0002-4E63-8AE9-6D63D4A50C07}\maconfico
O90 - PUC: "676C6FEA2A7D7844DBB4B1DE712B925B" . (.Centre Souris et Claviers Microsoft.) -- c:\Windows\Installer\{AEF6C676-D7A2-4487-BD4B-1BED17B229B5}\DeviceCenter.ico
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.03) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "69A9FA1138D6B3C4D8BC61AEA253E8F3" . (.HP CoolSense.) -- C:\Windows\Installer\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}\_853F67D554F05449430E7E.exe
O90 - PUC: "6E42C4F24DBCCAA45BF69CDF44ED6586" . (.Roxio Drag-to-Disc.) -- C:\Windows\Installer\{2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668}\DrgToDscIcon.exe
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.1.1.) -- C:\Windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "717790FC471F441459A4BF4CFB030163" . (.Nero 7 Ultra Edition.) -- C:\Windows\Installer\{CF097717-F174-4144-954A-FBC4BF301036}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "7B65D4CC81F6B0747843BADC57CB4F1F" . (.HP Auto.) -- C:\Windows\Installer\{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}\ARPPRODUCTICON.exe
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "7CFCFF386C886c14782559A85423C528" . (.Roxio Creator Audio.) -- C:\Windows\Installer\{83FFCFC7-88C6-41c6-8752-958A45325C82}\RoxioCentral.exe
O90 - PUC: "7DC1B83906C7E194AA09F18188612804" . (.Roxio MyDVD Basic v9.) -- C:\Windows\Installer\{938B1CD7-7C60-491E-AA90-1F1888168240}\ARPPRODUCTICON.exe
O90 - PUC: "883658EADAFA357418FD9DB6910D1AC7" . (.HP Setup Manager.) -- C:\Windows\Installer\{AE856388-AFAD-4753-81DF-D96B19D0A17C}\ARPPRODUCTICON.exe
O90 - PUC: "89A71B350FB5CB04AAFF58A0539757CA" . (.HP Quick Launch.) -- C:\Windows\Installer\{53B17A98-5BF0-40BC-AAFF-850A357975AC}\_853F67D554F05449430E7E.exe
O90 - PUC: "8CDC4930DBAF8de41B4030938367FDFD" . (.Roxio Creator Tools.) -- C:\Windows\Installer\{0394CDC8-FABD-4ed8-B104-03393876DFDF}\RoxioCentral.exe
O90 - PUC: "8D4D77630E5ECF948BE66045C10FB0EB" . (.opensource.) -- C:\Windows\Installer\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}\ARPPRODUCTICON.exe
O90 - PUC: "8F3D7A85CBE06CA47928CFC2F454E758" . (.Poker.) -- C:\Windows\Installer\{58A7D3F8-0EBC-4AC6-9782-FC2C4F457E85}\_16496df1.exe
O90 - PUC: "9B5ECB8DFC76F3F439EAA3CC57C427BE" . (.HP Power Manager.) -- C:\Windows\Installer\{D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}\_853F67D554F05449430E7E.exe
O90 - PUC: "A4DC4D2C02EA3B047862E81D0CE3C851" . (.Google Drive.) -- C:\Windows\Installer\{C2D4CD4A-AE20-40B3-8726-8ED1C03E8C15}\DriveIcon
O90 - PUC: "A8DDC9166B411a34BAC6F0E44EC80E84" . (.Roxio Creator Copy.) -- C:\Windows\Installer\{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}\RoxioCentral.exe
O90 - PUC: "A96DB1DE3E70C814191F8D65855218FB" . (.HP On Screen Display.) -- C:\Windows\Installer\{ED1BD69A-07E3-418C-91F1-D856582581BF}\_853F67D554F05449430E7E.exe
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
O90 - PUC: "AF5A5D893AA1EBC42BC67A732EF0A8D6" . (.HP Software Framework.) -- C:\Windows\Installer\{98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}\app_1.exe
O90 - PUC: "B0860B8CEADC9084F91983B7D60EF0C7" . (.Roxio Creator Basic v9.) -- C:\Windows\Installer\{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}\RoxioCentral.exe
O90 - PUC: "B749957DA5C808440BBDCF93F160C158" . (.Adobe Photoshop Lightroom 4.3 64-bit.) -- C:\Windows\Installer\{D759947B-8C5A-4480-B0DB-FC391F061C85}\ARPPRODUCTICON.exe
O90 - PUC: "B846977CE014ABB47BB58551CBFE7ED1" . (.Safari.) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\Installer.ico
O90 - PUC: "BC993E9FF640DF546AF7FC93E912824E" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{F9E399CB-046F-45FD-A67F-CF399E2128E4}\controlPanelIcon.exe
O90 - PUC: "C80D5F2B97E7DCF4AA4F75DA53FF6010" . (.Adobe Illustrator CS2.) -- C:\Windows\Installer\{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}\ARPPRODUCTICON.exe
O90 - PUC: "CA3DC6DEB61602B4CB3FE636B7295ADA" . (.HP Security Assistant.) -- C:\Windows\Installer\{ED6CD3AC-616B-4B20-BCF3-6E637B92A5AD}\_853F67D554F05449430E7E.exe
O90 - PUC: "CAF0D93B831DCD24F8D92F16FD85E681" . (.MAGIX Photo & Graphic Designer 7 Version à télécharger Content Pack.) -- C:\Windows\Installer\{B39D0FAC-D138-42DC-8F9D-F261DF586E18}\ProgramIcon.exe
O90 - PUC: "CF4F71AEFBDF8FC45A92D28913230D35" . (.Skype™ 6.0.) -- C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
O90 - PUC: "D16EA6074A0405F43895EFF8F6F74A16" . (.Acronis Drive Monitor.) -- C:\Windows\Installer\{706AE61D-40A4-4F50-8359-FE8F6F7FA461}\product.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "F60C1AD7319C7C64A8F0ADC2AB71AED1" . (.OpenOffice.org 3.4.1.) -- C:\Windows\Installer\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}\soffice.ico
O90 - PUC: "FA9D7E5F6F0603A4783EE49AD423C21E" . (.HP Setup.) -- C:\Windows\Installer\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}\ARPPRODUCTICON.exe
O90 - PUC: "FABE7EC0D7511114196450C72B4A20E3" . (.HP Application Assistant.) -- C:\Windows\Installer\{0CE7EBAF-157D-4111-9146-057CB2A4023E}\ARPPRODUCTICON.exe
~ Update Products: 172 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.486C03972ABBD5DC6E5077CD22B2F2C6] [WIS][15/06/2012] (.F4 - F4WebPlugin 0.2.20 installer.) -- C:\Windows\Installer\17aab18.msi   [735232]
[MD5.D63C670BFEB5D29CF9DAA7023D9252F9] [WIS][10/01/2013] (.Adobe - Adobe Photoshop Lightroom 4.3.) -- C:\Windows\Installer\19c9ca9.msi   [404891136]
[MD5.FB170AD7512F9E3E985C91578FE250BA] [WIS][13/06/2012] (.GameShadow Ltd - GameShadow V2.30.) -- C:\Windows\Installer\24c9d7.msi   [10854784]
[MD5.19712A22B7742B562315F4C73F8D5D20] [WIS][28/03/2013] (.IncrediMail - Photo Notifier and Animation Creator.) -- C:\Windows\Installer\2948b5a.msi   [2832896]
[MD5.A955DCC932530B0B89BA612BC9832B9D] [WIS][28/03/2013] (.IncrediMail - IncrediMail.) -- C:\Windows\Installer\2948e44.msi   [2687488]
[MD5.9D1FC3737A86F6B516152DFF025F2FC7] [WIS][12/07/2013] (.Google Inc. - Google Update Helper.) -- C:\Windows\Installer\2bef30a.msi   [26112]
[MD5.1C5E40F474435FCE78A2C4CBA1BFDB8D] [WIS][16/11/2012] (.CIEL - Ciel Paye Evolution 10.00.) -- C:\Windows\Installer\31765d.msi   [57357824]
[MD5.9D446C932CC158121C7F5F81CD54146D] [WIS][07/07/2010] (.Ciel - Ciel Immobilisations.) -- C:\Windows\Installer\317666.msi   [8405484]
[MD5.6E3C1AC09871AB0D629649F0189839C9] [WIS][12/11/2012] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\4e6fc9.msi   [20185088]
[MD5.3E765C9DA387C8C8C067266C3AE3FB9B] [WIS][12/11/2012] (.Skype Technologies S.A. - Skype Click to Call.) -- C:\Windows\Installer\4e6fcf.msi   [10137600]
[MD5.3F477D33DD7B1C483FE2959B1A13DAA9] [WIS][03/07/2013] (.Google, Inc. - Google Drive.) -- C:\Windows\Installer\79f1298.msi   [31588352]
~ WIS: 185 Scanned in 01mn 38s



---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 27/10/2009 881688 |  (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
SS - | Demand 10/01/2013 72704 |  (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
SR - | Auto 14/09/2006 102400 |  (AdobeActiveFileMonitor5.0) . (...) - C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
SR - | Auto 11/05/2013 65640 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 15/07/2013 257416 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 18/04/2013 574272 |  (AdvancedSystemCareService6) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
SR - | Auto 09/05/2013 46808 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Demand 13/01/2012 274200 |  (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 00\00\0000 0 |  (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe
SR - | Auto 21/06/2012 163536 |  (fshoster) . (.F-Secure Corporation.) - C:\Program Files (x86)\SFR\Pack_Securite\fshoster32.exe
SS - | Auto 05/11/2012 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 05/11/2012 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 27/09/2012 86528 |  (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
SR - | Auto 11/10/2010 346168 |  (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
SR - | Demand 13/09/2011 1098296 |  (hpCMSrv) . (.Hewlett-Packard Development Company L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
SR - | Demand 06/09/2012 1001376 |  (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 24/09/2012 31040 |  (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 05/03/2012 35200 |  (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 29/11/2011 13592 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 22/10/2004 73728 |  (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe
SR - | Auto 25/04/2013 335168 |  (IMFservice) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
SR - | Auto 08/12/2011 607456 |  (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 16/12/2011 128280 |  (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Auto 16/12/2011 161560 |  (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 16/12/2011 277784 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 15/05/2013 1144144 |  (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SS - | Demand 18/06/2009 6144 |  (MEMSWEEP2) . (.Sophos Plc.) - C:\Windows\system32\4014.tmp
SS - | Demand 17/08/2013 117656 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 29/06/2007 800040 |  (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
SS - | Demand 27/06/2007 279848 |  (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
SS - | Demand 00\00\0000 0 |  (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des
SS - | Demand 06/11/2006 887544 |  (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
SS - | Auto 15/08/2013 2298704 |  (SecureUpdateSvc) . (...) - C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe
SS - | Auto 12/11/2012 28632 |  (SFR.Dashboard.Service) . (.SFR.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe
SR - | Auto 02/10/2012 3064000 |  (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SS - | Auto 07/11/2012 160944 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 29/05/2013 314880 |  (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SS - | Demand 01/11/2006 73728 |  (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
SR - | Auto 16/12/2011 363800 |  (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 00\00\0000 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 09/11/2008 602392 |  (YahooAUService) . (.Yahoo! Inc..) - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe  =>Toolbar.Yahoo
~ Services:  Scanned in 01mn 41s



---\\ Recherche dinfection sur le Master Boot Record (MBR)(O80)
Run by anthonybriere at 31/08/2013 01:46:41
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche dinfection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by anthonybriere at 31/08/2013 01:46:43

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR:  Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : v2.12867 - (28/08/2013)
Clés trouvées (Keys found) : 20
Valeurs trouvées (Values found) : 1
Dossiers trouvés  (Folders found) : 4
Fichiers trouvés  (Files found) : 7

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}]   =>Toolbar.Avast^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Software Update]   =>Toolbar.Yahoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion]   =>Toolbar.Yahoo^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion]   =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{EF99BD32-C1FB-11D2-892F-0090271D4F88}   =>Toolbar.Yahoo
C:\Program Files (x86)\Yahoo!   =>Toolbar.Yahoo^
C:\ProgramData\Yahoo!   =>Toolbar.Yahoo^
C:\ProgramData\Yahoo! Companion   =>Toolbar.Yahoo^
C:\Users\anthonybriere\AppData\Roaming\Yahoo!   =>Toolbar.Yahoo^
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe   =>Toolbar.Yahoo^
C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo.xml   =>Toolbar.Yahoo^
C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\yt.dll   =>Toolbar.Yahoo^
C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll   =>Toolbar.Avast^
[HKCU\Software\AppDataLow\Software\Yahoo]   =>Toolbar.Yahoo^
[HKCU\Software\Yahoo]   =>Toolbar.Yahoo^
[HKLM\Software\Wow6432Node\Yahoo]   =>Toolbar.Yahoo^
~ Additionnel Scan: 524269 Items scanned in 02mn 18s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com30268689-toolbar-yahoo   =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com30898585-toolbar-avast   =>Toolbar.Avast
~ MSI: 2 link(s) detected in 02mn 18s



End of the scan (2398 lines in 11mn 46s)(2)


Posté le : 17/11/2013 02:15
_________________
Chers Membres, n'oubliez pas de venir voir régulièrement si vous avez de nouvelles réponses. Merci.








 Haut   Précédent   Suivant

 Le sujet est verrouillé



[Recherche avancée]