Rapport de ZHPDiag v1.3.5.49 par Nicolas Coolman, Update du 10/02/2013
Run by Ludivine at 11/02/2013 18:36:38
State : 
UAC : Deactivate by program


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 18.0.2 v18.0.2

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit  (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3766 MB (53% free)
System Restore: Activé (Enable)
System drive C: has 199 GB (43%) free of 453 GB

---\\ Logged in mode
~ Computer Name: LUDIVINE-PC
~ User Name: Ludivine
~ All Users Names: Ludivine, HomeGroupUser$, ASPNET, Administrateur, 
~ Unselected Option: O45,O61,O62
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Ludivine\AppData\Roaming\
~ %Desktop% : C:\Users\Ludivine\Desktop\
~ %Favorites% : C:\Users\Ludivine\Favorites\
~ %LocalAppData% : C:\Users\Ludivine\AppData\Local\
~ %StartMenu% : C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 199 Go of 453 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 07:23:14.) -- C:\Windows\Explorer.exe [2870272]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.5121DB613E10A46A3C5085B479026AA7] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/11/2012 - 07:04:11.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.28/10/2009 - 07:24:40.) -- C:\Windows\System32\Winlogon.exe [389632]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:11.) -- C:\Windows\system32\Drivers\AFD.sys [499200]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072]
[MD5.184C189D4FC416978550FC599BB4EDDA] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 19:02:20.) -- C:\Windows\system32\Drivers\ntfs.sys [1656688]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840]
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 18:38:18.) -- C:\Windows\system32\Drivers\volsnap.sys [295792]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/16781
~ Mes musiques (My Musics) : 11/1056
~ Mes Videos (My Videos) : 1/94
~ Mes Favoris (My Favorites) : 1/80
~ Mes Documents (My Documents) : 1/1486
~ Mon Bureau (My Desktop) : 1/49
~ Menu demarrer (Programs) : 1/32
~ Scan Hidden Files in 00mn 15s



---\\ Processus lancés
[MD5.2C1DF3FA27C399E9B2E95A4F95D64CB0] - (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe   [206208] [PID.2548]
[MD5.CEA0461AAE4B8B6216F164501B1B5A10] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe   [4910912] [PID.3456]
[MD5.775DC2AE72F972935703ADA4FFDF3749] - (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe   [888480] [PID.3556]
[MD5.DD7DAE4E8F169D1FF4511FC292FF6FF6] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe   [284696] [PID.3604]
[MD5.C680CEDEA1D74BA744CDC7417C4A1E91] - (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe   [258560] [PID.3684]
[MD5.3EAA0D8C022091CEAC3DCF39DE3CC1C5] - (.Suyin - Video Web Camera.) -- C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe   [1480032] [PID.3900]
[MD5.BC9C9BE7BB74D629362608ACE470E7DA] - (.Microsoft Corporation - Notification de cadeaux MSN.) -- C:\Users\Ludivine\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe   [135680] [PID.3916]
[MD5.32C26797AB646074A2BB562F9D10ADB5] - (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.exe   [97680] [PID.3924]
[MD5.B283F9A1DEABD43ACC7481F893CF21E9] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe   [908368] [PID.4028]
[MD5.DB6AE749DEECC52163378DEE10EEAB8C] - (.iMesh, Inc - Data Manager.) -- C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\datamngrUI.exe   [1116080] [PID.2956]
[MD5.A64DA4EF938434F19142F964296347BF] - (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe   [111928] [PID.3396]
[MD5.236DB979F8EDFC4A6932909F2E92B8CA] - (.Blabbers Communications LTD - Browser Companion Helper.) -- C:\Program Files (x86)\BrowserCompanion\BCHelper.exe   [182576] [PID.4120]
[MD5.98A078F838A70F84E1BD490D7C7675F4] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [254696] [PID.4128]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe   [4297136] [PID.4136]
[MD5.569E547273C25B019054A12A40400ECE] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe   [11318784] [PID.4276]
[MD5.52A025AEDE99BFFF745A4CC0DBA5816F] - (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe   [598320] [PID.4284]
[MD5.4EB0C6C3EF4D8885CF2B5D0062F31E44] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe   [1259376] [PID.4440]
[MD5.4B723F33D7331F20E06F3A2FD76EC1D5] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin   [11312128] [PID.4520]
[MD5.8911702CC546B76FE8F9C61987C68C43] - (.Microsoft Corporation - Internet Low-Mic Utility Tool.) -- C:\Program Files (x86)\Internet Explorer\IELowutil.exe   [222720] [PID.3432]
[MD5.58ED0528F2B1BFB3301BC10E0E707C35] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe   [917400] [PID.4884]
[MD5.B45F1D52C0A9519028BD95D34FFAB216] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe   [17304] [PID.2976]
[MD5.BB0E24993D9A20931CD578574C05B49B] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [5671936] [PID.3232]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Ludivine\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preference [User Data\Default] http://www.google.com
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\tuca0tlc.default\prefs.js
C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\tuca0tlc.default\user.js
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Ludivine] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Ludivine - tuca0tlc.default] http://search.imesh.com
M2 - MFEP: prefs.js [Ludivine - tuca0tlc.default\bbrs_002@blabbers.com] [] Browser Companion Helper v1.0.5 (.Ginyas.)
M2 - MFEP: prefs.js [Ludivine - tuca0tlc.default\ffxtlbr@babylon.com] [] Babylon v1.2.0 (.Babylon.)
M2 - MFEP: prefs.js [Ludivine - tuca0tlc.default\plugin@yontoo.com] [] Yontoo v1.20.00 (.Yontoo LLC.)
M2 - MFEP: prefs.js [Ludivine - tuca0tlc.default\toolbar@ask.com] [] LimeWire Toolbar v3.6.12.178 (.Ask.com.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKCU\SOFTWARE\Policies\Microsoft\Internet Explorer\Main,Start Page = http://seeearch.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: script helper for ie [64Bits] - {00cbb66b-1d3b-46d3-9577-323a336acb50} . (.Pas de propriétaire - Browser Companion Helper plug-in.) -- C:\Program Files (x86)\BrowserCompanion\jsloader.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper [64Bits] - {2EECD738-5844-4a99-B4B6-146BF802613B} . (.Babylon BHO - Pas de description.) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> [64Bits] - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Plus Web Player HTML5 <video> version.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHT
O2 - BHO: PDF Architect Helper [64Bits] - {3A2D5EBA-F86D-4BD3-A177-019765996711} . (.pdfforge GbR - PDF Architect Helper.) -- C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: UrlHelper Class [64Bits] - {474597C5-AB09-49d6-A4D5-2E8D7341384E} . (.iMesh, Inc - IEHelper.) -- C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Update Timer [64Bits] - {963B125B-8B21-49A2-A3A8-E37092276531} . (.Pas de propriétaire - Browser Companion Helper Verifier.) -- C:\Program Files (x86)\BrowserCompanion\updatebhoWin32.dll
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Wajam IE BHO [64Bits] - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} . (.Wajam - Wajam Internet Explorer Add-on.) -- C:\Program Files (x86)\Wajam\IE\priam_bho.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: MediaBar [64Bits] - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} . (.Pas de propriétaire - MediaBar Link Library.) -- C:\Program Files (x86)\iMesh Applications\MediaBar\ToolBar\iMeshMediaBarDx.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)
O2 - BHO: Ask Toolbar BHO [64Bits] - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SWEETIE [64Bits] - {EEE6C35C-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer.) -- C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: PricePeep [64Bits] - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} . (.PricePeep - PricePeep.) -- C:\Program Files (x86)\PricePeep\pricepeep.dll
O2 - BHO: Yontoo Layers [64Bits] - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} . (.Yontoo LLC - Yontoo Runtime.) -- C:\Program Files (x86)\Yontoo\YontooIEClient.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe 
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe 
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe 
O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe 
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 
O4 - HKLM\..\Run: [ETDWare] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.) 
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe 
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 
O4 - HKCU\..\Run: [EA Core] C:\Program Files (x86)\Electronic Arts\EADM\Core.exe (.not file.) 
O4 - HKCU\..\Run: [orangeinside] . (...) -- C:\Users\Ludivine\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe 
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe 
O4 - HKCU\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe 
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 
O4 - HKLM\..\Wow6432Node\Run: [BackupManagerTray] . (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Wow6432Node\Run: [VideoWebCamera] . (.Suyin - Video Web Camera.) -- C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe 
O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe 
O4 - HKLM\..\Wow6432Node\Run: [DATAMNGR] . (.iMesh, Inc - Data Manager.) -- C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\datamngrUI.exe 
O4 - HKLM\..\Wow6432Node\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe 
O4 - HKLM\..\Wow6432Node\Run: [Browser companion helper] . (.Blabbers Communications LTD - Browser Companion Helper.) -- C:\Program Files (x86)\BrowserCompanion\BCHelper.exe 
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe 
O4 - HKLM\..\Wow6432Node\Run: [Boxore Client] . (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe 
O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe 
O4 - HKUS\S-1-5-21-1348558891-2472996034-3056193347-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 
O4 - HKUS\S-1-5-21-1348558891-2472996034-3056193347-1000\..\Run: [EA Core] C:\Program Files (x86)\Electronic Arts\EADM\Core.exe (.not file.) 
O4 - HKUS\S-1-5-21-1348558891-2472996034-3056193347-1000\..\Run: [orangeinside] . (...) -- C:\Users\Ludivine\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe 
O4 - HKUS\S-1-5-21-1348558891-2472996034-3056193347-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe 
O4 - HKUS\S-1-5-21-1348558891-2472996034-3056193347-1000\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe 
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebPlayerV2.lnk . (...)  -- C:\Users\Ludivine\AppData\Roaming\Microsoft\Installer\{F21ABA47-CE22-4B3D-8F47-8BF08C21C094}\_41AEE37AA709DB5DEA5006.exe
O4 - Global Startup: C:\Users\Ludivine\Desktop\Aller sur MSN.fr.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Ludivine\Desktop\ClubDeJeux.lnk . (...)  -- C:\Users\Ludivine\ClubDeJeux\starter.exe
O4 - Global Startup: C:\Users\Ludivine\Desktop\Contrôle parental.url . (...)  -- C:\Users\Ludivine\Desktop\Contrôle parental.url
O4 - Global Startup: C:\Users\Ludivine\Desktop\Jeux - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Ludivine\Desktop\LimeWire 5.5.16.lnk . (.Lime Wire, LLC.)  -- C:\Program Files (x86)\LimeWire\LimeWire.exe
O4 - Global Startup: C:\Users\Ludivine\Desktop\Microsoft Office Word 2007.lnk . (...)  -- C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
O4 - Global Startup: C:\Users\Ludivine\Desktop\PDF Architect.lnk . (.pdfforge GbR.)  -- C:\Program Files (x86)\PDF Architect\PDF Architect.exe
O4 - Global Startup: C:\Users\Ludivine\Desktop\Project64.lnk . (...)  -- C:\Program Files (x86)\Project64 v1.5\Project64.exe
O4 - Global Startup: C:\Users\Ludivine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iMesh.lnk . (.iMesh, Inc.)  -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe
O4 - Global Startup: C:\Users\Ludivine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Global Startup in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Restriction de l'accès aux options IE par l'Administrateur (O6)
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel présent
~ Scan IE Restrictions in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{607EA30D-07AD-4503-9480-31099B7E3EB6}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{87790B54-ADC4-4AF1-99CB-C6DE02F3F406}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{607EA30D-07AD-4503-9480-31099B7E3EB6}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{87790B54-ADC4-4AF1-99CB-C6DE02F3F406}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{607EA30D-07AD-4503-9480-31099B7E3EB6}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{87790B54-ADC4-4AF1-99CB-C6DE02F3F406}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.iMesh, Inc - Data Manager.) - C:\Program Files (x86)\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll
~ Scan AppInit DLL in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: Acer ePower Service (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NTI IScheduleSvc (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: Orange update Core Service (Orange update Core Service) . (.France Telecom SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GbR - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GbR - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: Intel(R) Management & Security Applicati (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: WajamUpdater (WajamUpdater) . (.Wajam - Auto-updater.) - C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
O23 - Service:  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 06s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.9309B115B18C5D132203FA3BBD4A4FA1] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe
[MD5.00000000000000000000000000000000] [APT] [{0D77FB41-1059-49C7-9A8C-B151A779F04B}] (...) -- D:\setup.exe (.not file.)
[MD5.744DFAB8F7BF020E0583E848591DDB48] [APT] [{13FC56AF-6DF8-4398-AD15-876AFC04FD35}] (.The 3DO Company.) -- C:\Heros\HOMM3\Heroes3.exe
[MD5.744DFAB8F7BF020E0583E848591DDB48] [APT] [{3EA047F5-CD4C-47E8-AE45-2FCDFD0FBF91}] (.The 3DO Company.) -- C:\Heros\HOMM3\Heroes3.exe
[MD5.00000000000000000000000000000000] [APT] [{527363BA-9F20-4D98-AB4B-C784ED2B557F}] (...) -- C:\Program Files (x86)\adslTV\Uninstall.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{90251105-F0FC-4E7E-AEFD-D3E17C9C316D}] (...) -- c:\program files (x86)\google\chrome\application\chrome.exe (.not file.)
[MD5.4431819859CEEC9A86D28FFCA4221897] [APT] [{951F50C0-C2C4-4234-BD2A-99EBCFDA8245}] (...) -- C:\Users\Ludivine\Downloads\setup-adsltv-vlc2(1).exe
[MD5.00000000000000000000000000000000] [APT] [{B4C7C15B-EA99-4536-9DFF-A7BB70982DC9}] (...) -- D:\Setup.exe (.not file.)
~ Scan Scheduled Task in 00mn 04s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver:  (kl1) . (.Kaspersky Lab - Kaspersky Unified Driver.) - C:\Windows\System32\DRIVERS\kl1.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: AbiWord 2.8.6 - (.AbiSource Developers.) [HKLM][64Bits] -- AbiWord2
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin 64-bit - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 8.0
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM][64Bits] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
O42 - Logiciel: Babylon toolbar on IE - (.Pas de propriétaire.) [HKLM][64Bits] -- BabylonToolbar
O42 - Logiciel: Backup Manager Basic - (.NewTech Infosystems.) [HKLM][64Bits] -- {72B776E5-4530-4C4B-9453-751DF87D9D93}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078791
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT078960
O42 - Logiciel: Bob the Builder Can-Do-Zoo - (.WildTangent.) [HKLM][64Bits] -- WT078964
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {89601BB9-C8C0-493D-9912-AD7F51A918A3}
O42 - Logiciel: Broadcom Gigabit NetLink Controller - (.Broadcom Corporation.) [HKLM][64Bits] -- {A84DB02B-9C2B-4272-9D2D-A80E00A56513}
O42 - Logiciel: BrowserCompanion - (.Pas de propriétaire.) [HKLM][64Bits] -- BrowserCompanion
O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM][64Bits] -- WT079363
O42 - Logiciel: Chicken Invaders 3 - Revenge of the Yolk - (.WildTangent.) [HKLM][64Bits] -- WT079366
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Complément Microsoft Word pour Microsoft Works Suite - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9DAF1AF-D9B7-4397-A3B6-AFA27D329DAB}
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: ETDWare PS/2-x64 7.0.6.5_WHQL - (.ELAN Microelectronics Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: Encyclopédie Microsoft Encarta 2006 - (.Microsoft Corporation.) [HKLM][64Bits] -- {06180048-3E21-46D6-9A91-D927BA08F41D}
O42 - Logiciel: Escape Rosecliff Island - (.WildTangent.) [HKLM][64Bits] -- WT079395
O42 - Logiciel: Faerie Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT079020
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078806
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: James Bond 007: Nightfire - (.Pas de propriétaire.) [HKLM][64Bits] -- James Bond 007: Nightfire
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF}
O42 - Logiciel: Jewel Quest - (.WildTangent.) [HKLM][64Bits] -- WT079064
O42 - Logiciel: Jewel Quest Solitaire 3 - (.WildTangent.) [HKLM][64Bits] -- WT079068
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- LManager
O42 - Logiciel: Les Sims™ 3 - (.Electronic Arts.) [HKLM][64Bits] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: LimeWire 5.5.16 - (.Lime Wire, LLC.) [HKLM][64Bits] -- LimeWire
O42 - Logiciel: Lollipop - (.Pas de propriétaire.) [HKCU][64Bits] -- lollipop
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Macromedia Shockwave Player - (.Pas de propriétaire.) [HKLM][64Bits] -- Macromedia Shockwave Player
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT079397
O42 - Logiciel: MediaBar - (.iMesh Inc..) [HKLM][64Bits] -- iMesh 1 MediaBar
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Metaboli - (.Packard Bell.) [HKLM][64Bits] -- Metaboli
O42 - Logiciel: Microsoft AutoRoute 2006 - (.Microsoft Corporation.) [HKLM][64Bits] -- {83ED1E80-A1B7-4236-BCF1-AC4A88151A6B}
O42 - Logiciel: Microsoft Money - (.Microsoft.) [HKLM][64Bits] -- Money2005b
O42 - Logiciel: Microsoft Photo 2006 Standard Edition - (.Microsoft Corporation.) [HKLM][64Bits] -- PictureItPrem_v11
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
O42 - Logiciel: Moniteur de la technologie Intel® Turbo Boost - (.Intel.) [HKLM][64Bits] -- {39F4C6F9-618A-4E5B-8FB2-6BD661174E32}
O42 - Logiciel: Mozilla Firefox 18.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 18.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {707bfad4-e437-40ed-9c9c-32dbc1d89a23}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: Notification Mail - (.Orange.) [HKLM][64Bits] -- MailNotifier
O42 - Logiciel: Notification de cadeaux MSN - (.Microsoft.) [HKCU][64Bits] -- Notification de cadeaux MSN
O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM][64Bits] -- {266517E6-D866-439D-919C-B8B1A52E6080}
O42 - Logiciel: Orange Inside - (.Orange.) [HKCU][64Bits] -- Orange Inside
O42 - Logiciel: Orange Installeur version 1.2.1.0 - (.Orange.) [HKLM][64Bits] -- {D13FE823-C575-4451-AC37-E645A67AA581}_1.2.1.0
O42 - Logiciel: Orange Web Player 1.212788 - (.Orange.) [HKLM][64Bits] -- Orange Web Player_is1
O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin
O42 - Logiciel: PDF Architect - (.pdfforge.) [HKLM][64Bits] -- {09531CAE-B186-49A9-B44F-C607CC54FA2A}
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Packard Bell Game Console - (.WildTangent.) [HKLM][64Bits] -- Packard Bell Game Console
O42 - Logiciel: Packard Bell Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent packardbell Master Uninstall
O42 - Logiciel: Packard Bell InfoCentre - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell InfoCentre
O42 - Logiciel: Packard Bell MyBackup - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration
O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell .) [HKLM][64Bits] -- Packard Bell Screensaver
O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9}
O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- {64EF903E-D00A-414C-94A4-FBA368FFCDC9}
O42 - Logiciel: Packard Bell Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT079108
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT079116
O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WT079120
O42 - Logiciel: Polar Pool - (.WildTangent.) [HKLM][64Bits] -- WT079124
O42 - Logiciel: PricePeep - (.betwikx LLC.) [HKLM][64Bits] -- PricePeep
O42 - Logiciel: RCT3 Soaked - (.Pas de propriétaire.) [HKLM][64Bits] -- {EA926717-CE5A-4CB4-AB21-9E6E9565A458}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: RollerCoaster Tycoon 3 - (.Pas de propriétaire.) [HKLM][64Bits] -- {907B4640-266B-4A21-92FB-CD1A86CD0F63}
O42 - Logiciel: Software Update Helper - (.Boxore OU..) [HKLM][64Bits] -- {006E6A46-8D55-4F10-BBA8-2C9653B4278B}
O42 - Logiciel: SweetIM Toolbar for Internet Explorer 4.0 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {BF67F764-95B6-4360-BB57-B2E5AA6C814B}
O42 - Logiciel: SweetIM for Messenger 3.3 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {1D301950-EA2F-4882-9AA0-49467756842A}
O42 - Logiciel: Sélecteur d'installation de Microsoft Works 2006 - (.Pas de propriétaire.) [HKLM][64Bits] -- Works2006Setup
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: Veetle TV - (.Veetle, Inc.) [HKLM][64Bits] -- Veetle TV
O42 - Logiciel: Video Web Camera - (.SuYin.) [HKLM][64Bits] -- {6D9021DC-CF1B-4148-8C80-6D8E8A8A33EB}
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WT079421
O42 - Logiciel: Virtual Villagers - A New Home - (.WildTangent.) [HKLM][64Bits] -- WT079177
O42 - Logiciel: Wajam - (.Wajam.) [HKLM][64Bits] -- Wajam
O42 - Logiciel: WebPlayerV2 - (.Kreapixel.) [HKLM][64Bits] -- {F21ABA47-CE22-4B3D-8F47-8BF08C21C094}
O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Welcome Center
O42 - Logiciel: WinRAR 4.01 (32 bits) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Winamax Poker - (.Table 14.) [HKLM][64Bits] -- wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O42 - Logiciel: Winamax Poker - (.Table 14.) [HKLM][64Bits] -- {FC774FC5-A056-68CF-E6CB-EF49B4C0DF45}
O42 - Logiciel: Woonoz SKY 3.3 - (.Woonoz SAs.) [HKLM][64Bits] -- Woonoz SKY 3.3
O42 - Logiciel: Yahtzee - (.WildTangent.) [HKLM][64Bits] -- WT079184
O42 - Logiciel: Yontoo 1.12.02 - (.Yontoo LLC.) [HKLM][64Bits] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B}
O42 - Logiciel: Zoo Tycoon: Complete Collection - (.Pas de propriétaire.) [HKLM][64Bits] -- Zoo Tycoon 1.0
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078833
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: barre d'outils Orange - (.France Telecom SA.) [HKLM][64Bits] -- OrangeToolbarFR
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965}
O42 - Logiciel: iLivid - (.Bandoo Media Inc.) [HKLM][64Bits] -- iLivid
O42 - Logiciel: iMesh - (.iMesh Inc..) [HKLM][64Bits] -- iMesh
O42 - Logiciel: iMesh - (.iMesh Inc..) [HKLM][64Bits] -- {8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763}
O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6}
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\AVAST Software]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\AskToolbarInfo]
[HKCU\Software\AppDataLow\Software\AskToolbar]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Orange]
[HKCU\Software\AppDataLow\Software\PricePeep]
[HKCU\Software\AppDataLow\Software\imeshmediabartb]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Ask.com]
[HKCU\Software\BabylonToolbar]
[HKCU\Software\BitTorrent]
[HKCU\Software\Blabbers       ]
[HKCU\Software\Blabbers]
[HKCU\Software\BrowserCompanion]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cyberlink]
[HKCU\Software\DT Soft]
[HKCU\Software\DataMngr]
[HKCU\Software\DivX]
[HKCU\Software\Dritek]
[HKCU\Software\Elantech]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HipSoft]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallCore]
[HKCU\Software\Intel]
[HKCU\Software\JaboSoft]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept (Adobe2)]
[HKCU\Software\MediaChance]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\N64 Emulation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\New World Computing]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\OrangeInside]
[HKCU\Software\Orange]
[HKCU\Software\PDF Architect]
[HKCU\Software\PDFCreator]
[HKCU\Software\Packard Bell]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\Software]
[HKCU\Software\Sonix]
[HKCU\Software\Spointer]
[HKCU\Software\Stormblade]
[HKCU\Software\Suyin]
[HKCU\Software\SweetIM]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Veetle]
[HKCU\Software\Wajam]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ej-technologies]
[HKCU\Software\iMesh]
[HKCU\Software\ilivid]
[HKCU\Software\kde.org]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Acer]
[HKLM\Software\Audible]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DivX]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Intel]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\New World Computing]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Tarma Installer]
[HKLM\Software\Waves Audio]
[HKLM\Software\WildTangent]
[HKLM\Software\Wow6432Node\ALWIL Software]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AbiWord]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Atari]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\Babylon]
[HKLM\Software\Wow6432Node\Boxore]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\C07ft5Y]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\DataMngr]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Maxis]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MusicNet]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\New World Computing]
[HKLM\Software\Wow6432Node\NewTech Infosystems]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\PDFCreator]
[HKLM\Software\Wow6432Node\Packard Bell]
[HKLM\Software\Wow6432Node\PocketSoft]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Sagem]
[HKLM\Software\Wow6432Node\SecureDigitalServices]
[HKLM\Software\Wow6432Node\Sims]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\SuYin]
[HKLM\Software\Wow6432Node\Sun Microsystems]
[HKLM\Software\Wow6432Node\SweetIM]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Veetle]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\iMeshMediabarTb]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\webtogo]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/02/2011 - 20:23:37 - [20,310] ----D C:\Program Files (x86)\AbiWord
O43 - CFD: 06/01/2012 - 19:44:16 - [1392,563] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/01/2013 - 14:08:09 - [3,145] ----D C:\Program Files (x86)\adslTV
O43 - CFD: 18/12/2011 - 13:50:38 - [1,597] ----D C:\Program Files (x86)\Ask.com
O43 - CFD: 21/08/2011 - 17:18:05 - [1008,796] ----D C:\Program Files (x86)\Atari
O43 - CFD: 18/12/2011 - 13:47:43 - [1,725] ----D C:\Program Files (x86)\BabylonToolbar
O43 - CFD: 04/05/2012 - 20:04:34 - [2,316] ----D C:\Program Files (x86)\Boxore
O43 - CFD: 18/12/2011 - 13:47:37 - [1,563] ----D C:\Program Files (x86)\BrowserCompanion
O43 - CFD: 10/01/2013 - 17:58:18 - [628,728] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 26/04/2010 - 06:06:49 - [0,064] ----D C:\Program Files (x86)\Cyberlink
O43 - CFD: 06/11/2011 - 10:55:25 - [24,459] ----D C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 11/04/2012 - 19:57:02 - [98,355] ----D C:\Program Files (x86)\DivX
O43 - CFD: 14/11/2012 - 19:25:41 - [1100,347] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 24/07/2012 - 20:44:15 - [-1324,896] ----D C:\Program Files (x86)\Electronic Arts
O43 - CFD: 27/02/2011 - 19:52:03 - [536,210] ----D C:\Program Files (x86)\Encarta
O43 - CFD: 04/01/2011 - 21:00:41 - [0] ----D C:\Program Files (x86)\Fluendo
O43 - CFD: 10/01/2013 - 18:10:16 - [23,533] ----D C:\Program Files (x86)\Google
O43 - CFD: 31/12/2010 - 13:58:27 - [49,069] ----D C:\Program Files (x86)\iMesh Applications
O43 - CFD: 24/07/2012 - 20:44:15 - [209,919] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 08/06/2010 - 20:10:20 - [35,554] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/12/2012 - 11:54:07 - [5,006] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 23/02/2012 - 20:35:13 - [85,003] ----D C:\Program Files (x86)\Java
O43 - CFD: 10/02/2011 - 19:59:59 - [15,541] ----D C:\Program Files (x86)\JRE
O43 - CFD: 08/06/2010 - 20:25:50 - [6,961] ----D C:\Program Files (x86)\Launch Manager
O43 - CFD: 18/12/2011 - 13:50:38 - [68,758] ----D C:\Program Files (x86)\LimeWire
O43 - CFD: 30/12/2010 - 18:58:00 - [609,253] ----D C:\Program Files (x86)\Maxis
O43 - CFD: 16/03/2011 - 17:27:29 - [19,751] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 27/02/2011 - 19:58:31 - [1015,688] ----D C:\Program Files (x86)\Microsoft AutoRoute
O43 - CFD: 27/02/2011 - 19:47:09 - [382,509] ----D C:\Program Files (x86)\Microsoft Digital Image 2006
O43 - CFD: 30/08/2011 - 13:46:36 - [1070,583] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 27/02/2011 - 19:43:18 - [70,203] ----D C:\Program Files (x86)\microsoft money 2005
O43 - CFD: 26/01/2012 - 20:43:07 - [366,939] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 16/01/2013 - 18:11:07 - [32,573] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 08/06/2010 - 20:33:14 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 11/10/2012 - 02:04:26 - [200,209] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 27/02/2011 - 19:33:06 - [8,048] ----D C:\Program Files (x86)\Microsoft Works Suite 2006
O43 - CFD: 07/01/2011 - 18:12:27 - [0,934] ----D C:\Program Files (x86)\Microsoft WSE
O43 - CFD: 12/09/2011 - 13:23:56 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 06/02/2013 - 21:00:46 - [44,646] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 08/02/2013 - 16:53:15 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 23/02/2011 - 18:18:13 - [90,399] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 30/12/2010 - 20:13:05 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 26/04/2010 - 06:23:06 - [360,150] ----D C:\Program Files (x86)\Nero
O43 - CFD: 26/04/2010 - 06:14:26 - [28,217] ----D C:\Program Files (x86)\NewTech Infosystems
O43 - CFD: 25/12/2010 - 10:44:23 - [0,102] ----D C:\Program Files (x86)\OEM
O43 - CFD: 12/02/2011 - 18:12:16 - [370,139] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 21/09/2011 - 19:36:29 - [54,024] ----D C:\Program Files (x86)\Orange
O43 - CFD: 07/11/2011 - 17:29:22 - [107,228] ----D C:\Program Files (x86)\Origin
O43 - CFD: 07/11/2011 - 17:29:23 - [0] ----D C:\Program Files (x86)\Origin Games
O43 - CFD: 25/12/2010 - 10:44:27 - [60,669] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 26/04/2010 - 06:05:38 - [1292,853] ----D C:\Program Files (x86)\Packard Bell Games
O43 - CFD: 10/01/2013 - 12:31:26 - [92,743] ----D C:\Program Files (x86)\PDF Architect
O43 - CFD: 10/01/2013 - 12:31:37 - [26,173] ----D C:\Program Files (x86)\PDFCreator
O43 - CFD: 10/01/2013 - 17:56:59 - [0,621] ----D C:\Program Files (x86)\PricePeep
O43 - CFD: 28/02/2011 - 20:18:45 - [2,434] ----D C:\Program Files (x86)\Project64 v1.5
O43 - CFD: 08/06/2010 - 20:24:42 - [14,622] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [36,813] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 25/12/2010 - 13:02:34 - [7,703] ----D C:\Program Files (x86)\SAGEM
O43 - CFD: 25/12/2010 - 13:01:35 - [36,633] ----D C:\Program Files (x86)\Securitoo
O43 - CFD: 26/04/2010 - 06:06:49 - [24,636] ----D C:\Program Files (x86)\Social Networks
O43 - CFD: 11/04/2012 - 19:51:58 - [2,859] ----D C:\Program Files (x86)\Software
O43 - CFD: 05/01/2011 - 18:01:55 - [7,925] ----D C:\Program Files (x86)\SweetIM
O43 - CFD: 08/06/2010 - 20:25:11 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 08/12/2012 - 20:39:17 - [0,924] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 31/10/2011 - 21:19:14 - [9,935] ----D C:\Program Files (x86)\Veetle
O43 - CFD: 08/06/2010 - 20:23:15 - [25,245] ----D C:\Program Files (x86)\VideoWebCamera
O43 - CFD: 16/01/2013 - 17:56:20 - [0,524] ----D C:\Program Files (x86)\Wajam
O43 - CFD: 10/01/2013 - 17:57:35 - [18,740] ----D C:\Program Files (x86)\WebPlayer
O43 - CFD: 31/01/2012 - 17:17:07 - [7,312] ----D C:\Program Files (x86)\Winamax Poker
O43 - CFD: 09/06/2010 - 06:03:47 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/12/2010 - 19:18:40 - [176,124] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 30/12/2010 - 13:07:18 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 30/12/2010 - 13:06:44 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 09/06/2010 - 06:03:48 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 09/06/2010 - 06:03:48 - [5,716] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 06/11/2011 - 10:35:47 - [3,865] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 13/06/2011 - 15:18:09 - [95,582] ----D C:\Program Files (x86)\Woonoz
O43 - CFD: 16/01/2013 - 17:56:15 - [0,189] ----D C:\Program Files (x86)\Yontoo
O43 - CFD: 11/02/2013 - 18:37:04 - [11,462] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 08/06/2010 - 20:30:47 - [68,543] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 06/01/2012 - 19:44:15 - [37,554] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 12/09/2011 - 19:35:24 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 11/04/2012 - 19:56:21 - [23,581] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 27/12/2010 - 14:22:34 - [4,811] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 08/06/2010 - 20:10:21 - [10,410] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 09/01/2012 - 20:41:35 - [0] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 23/02/2012 - 20:35:49 - [1,201] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 08/06/2010 - 20:30:58 - [0,827] ----D C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 17/02/2012 - 12:33:32 - [275,526] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 26/04/2010 - 06:24:33 - [117,852] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 21/08/2011 - 17:21:15 - [0,631] ----D C:\Program Files (x86)\Common Files\PocketSoft
O43 - CFD: 26/04/2010 - 05:59:36 - [0,159] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 11/04/2012 - 19:56:29 - [4,646] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 08/06/2010 - 20:29:52 - [0,324] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 18/02/2011 - 19:21:52 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 10/11/2011 - 20:56:26 - [43,339] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 08/06/2010 - 20:31:16 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 26/04/2010 - 06:05:53 - [0,000] ----D C:\ProgramData\Acer
O43 - CFD: 08/06/2010 - 20:30:47 - [530,629] ----D C:\ProgramData\Adobe
O43 - CFD: 23/02/2011 - 17:39:08 - [16,101] ----D C:\ProgramData\Alwil Software
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 18/12/2011 - 13:47:35 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 26/04/2010 - 06:14:40 - [0,222] ----D C:\ProgramData\BackupManager
O43 - CFD: 28/04/2011 - 19:50:11 - [0] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 25/12/2010 - 10:43:23 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 19/03/2011 - 14:18:12 - [0,005] ----D C:\ProgramData\CyberLink
O43 - CFD: 06/11/2011 - 10:54:32 - [0,001] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 11/04/2012 - 19:57:08 - [4,598] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 29/09/2011 - 12:06:24 - [688,388] ----D C:\ProgramData\EA Core
O43 - CFD: 07/11/2011 - 17:29:23 - [0,003] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 25/12/2010 - 10:43:23 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 26/04/2010 - 06:20:04 - [0,511] ----D C:\ProgramData\Google
O43 - CFD: 26/02/2011 - 12:49:11 - [0,106] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 26/12/2010 - 23:01:40 - [0,185] ----D C:\ProgramData\HipSoft
O43 - CFD: 31/12/2010 - 13:57:20 - [0,087] ----D C:\ProgramData\iMesh
O43 - CFD: 18/02/2011 - 20:02:25 - [0] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 25/12/2010 - 10:43:23 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 12/09/2011 - 13:36:37 - [45,143] -S--D C:\ProgramData\Microsoft
O43 - CFD: 29/08/2011 - 14:12:35 - [0] ----D C:\ProgramData\Microsoft Games
O43 - CFD: 09/01/2013 - 23:21:32 - [0,116] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 25/12/2010 - 10:43:23 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 28/04/2012 - 11:10:32 - [0,034] ----D C:\ProgramData\Mozilla
O43 - CFD: 26/04/2010 - 06:22:15 - [10,570] ----D C:\ProgramData\Nero
O43 - CFD: 18/02/2011 - 19:50:48 - [0,016] ----D C:\ProgramData\Norton
O43 - CFD: 26/04/2010 - 06:27:23 - [5,464] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 25/12/2010 - 10:45:44 - [0,001] ----D C:\ProgramData\OEM
O43 - CFD: 09/07/2011 - 16:48:52 - [9,062] ----D C:\ProgramData\Orange
O43 - CFD: 07/11/2011 - 17:30:03 - [0,594] ----D C:\ProgramData\Origin
O43 - CFD: 26/04/2010 - 06:18:34 - [1,578] ----D C:\ProgramData\Packard Bell
O43 - CFD: 16/01/2011 - 17:39:21 - [0,001] ----D C:\ProgramData\Partner
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 04/01/2011 - 20:40:12 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 05/01/2011 - 18:01:45 - [0,384] ----D C:\ProgramData\SweetIM
O43 - CFD: 16/01/2013 - 17:56:14 - [2,571] ----D C:\ProgramData\Tarma Installer
O43 - CFD: 26/04/2010 - 06:06:06 - [0,035] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 26/12/2010 - 22:50:27 - [7,862] ----D C:\ProgramData\Wild Tangent
O43 - CFD: 05/01/2011 - 22:30:31 - [503,720] ----D C:\ProgramData\WildTangent
O43 - CFD: 31/12/2010 - 13:58:29 - [15,089] --H-D C:\ProgramData\{1FF7E3C7-093A-41FC-92FB-6FA7048E505A}
O43 - CFD: 06/01/2012 - 19:42:09 - [14,886] ----D C:\Users\Ludivine\AppData\Roaming\Adobe
O43 - CFD: 10/01/2013 - 12:31:30 - [1,478] ----D C:\Users\Ludivine\AppData\Roaming\APP_NAME_NON_STRING
O43 - CFD: 21/08/2011 - 17:26:42 - [0,001] ----D C:\Users\Ludivine\AppData\Roaming\Atari
O43 - CFD: 18/12/2011 - 13:47:35 - [0,003] ----D C:\Users\Ludivine\AppData\Roaming\Babylon
O43 - CFD: 06/11/2011 - 10:56:24 - [0] ----D C:\Users\Ludivine\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 08/02/2011 - 19:09:46 - [0] ----D C:\Users\Ludivine\AppData\Roaming\Download Manager
O43 - CFD: 10/02/2011 - 20:24:58 - [0] ----D C:\Users\Ludivine\AppData\Roaming\enchant
O43 - CFD: 27/12/2010 - 01:16:53 - [0,001] ----D C:\Users\Ludivine\AppData\Roaming\Faerie Solitaire
O43 - CFD: 27/12/2010 - 01:10:48 - [0,002] ----D C:\Users\Ludivine\AppData\Roaming\Gamelab
O43 - CFD: 25/12/2010 - 10:47:07 - [0,016] ----D C:\Users\Ludivine\AppData\Roaming\Google
O43 - CFD: 25/12/2010 - 10:45:16 - [0] ----D C:\Users\Ludivine\AppData\Roaming\Identities
O43 - CFD: 25/12/2010 - 13:02:15 - [0] ----D C:\Users\Ludivine\AppData\Roaming\InstallShield
O43 - CFD: 25/12/2010 - 10:46:04 - [0] ----D C:\Users\Ludivine\AppData\Roaming\Intel Corporation
O43 - CFD: 11/02/2013 - 17:16:57 - [22,444] ----D C:\Users\Ludivine\AppData\Roaming\LimeWire
O43 - CFD: 27/02/2011 - 19:49:36 - [25,510] ----D C:\Users\Ludivine\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - 08:44:38 - [0] ----D C:\Users\Ludivine\AppData\Roaming\Media Center Programs
O43 - CFD: 19/01/2013 - 21:07:53 - [27,293] -S--D C:\Users\Ludivine\AppData\Roaming\Microsoft
O43 - CFD: 29/08/2011 - 14:12:35 - [0,001] ----D C:\Users\Ludivine\AppData\Roaming\Microsoft Games
O43 - CFD: 01/01/2011 - 21:26:40 - [0,560] ----D C:\Users\Ludivine\AppData\Roaming\moovida-1
O43 - CFD: 08/10/2011 - 16:44:16 - [169,462] ----D C:\Users\Ludivine\AppData\Roaming\Mozilla
O43 - CFD: 30/12/2010 - 18:31:27 - [0,000] ----D C:\Users\Ludivine\AppData\Roaming\Nero
O43 - CFD: 25/01/2012 - 22:31:47 - [1,985] ----D C:\Users\Ludivine\AppData\Roaming\OpenCandy
O43 - CFD: 19/01/2011 - 19:02:18 - [6,078] ----D C:\Users\Ludivine\AppData\Roaming\OpenOffice.org
O43 - CFD: 01/05/2011 - 11:56:10 - [6,302] ----D C:\Users\Ludivine\AppData\Roaming\Orange
O43 - CFD: 07/11/2011 - 17:30:03 - [0,001] ----D C:\Users\Ludivine\AppData\Roaming\Origin
O43 - CFD: 25/12/2010 - 10:49:26 - [0,000] ----D C:\Users\Ludivine\AppData\Roaming\Packard Bell
O43 - CFD: 10/01/2013 - 12:33:05 - [0,081] ----D C:\Users\Ludivine\AppData\Roaming\PDF Architect
O43 - CFD: 10/01/2013 - 12:31:03 - [0,002] ----D C:\Users\Ludivine\AppData\Roaming\pdfforge
O43 - CFD: 07/01/2011 - 08:54:27 - [0,000] ----D C:\Users\Ludivine\AppData\Roaming\SNS
O43 - CFD: 26/12/2010 - 22:06:13 - [0,013] ----D C:\Users\Ludivine\AppData\Roaming\Template
O43 - CFD: 02/02/2013 - 23:48:59 - [5,543] ----D C:\Users\Ludivine\AppData\Roaming\uTorrent
O43 - CFD: 16/01/2013 - 18:42:11 - [0,077] ----D C:\Users\Ludivine\AppData\Roaming\vlc
O43 - CFD: 06/01/2012 - 19:44:20 - [1,130] ----D C:\Users\Ludivine\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O43 - CFD: 17/01/2013 - 22:01:50 - [0,039] ----D C:\Users\Ludivine\AppData\Roaming\WebPlayerBdd
O43 - CFD: 25/12/2010 - 13:19:27 - [0,001] ----D C:\Users\Ludivine\AppData\Roaming\WildTangent
O43 - CFD: 19/09/2011 - 13:45:23 - [0,000] ----D C:\Users\Ludivine\AppData\Roaming\Windows Live Writer
O43 - CFD: 06/11/2011 - 11:55:20 - [0,000] ----D C:\Users\Ludivine\AppData\Roaming\WinRAR
O43 - CFD: 27/10/2012 - 11:29:33 - [0] ----D C:\Users\Ludivine\AppData\Roaming\{27ABEAD9-B7C4-4994-891F-48F5F48861FA}
O43 - CFD: 06/01/2012 - 19:41:58 - [22,632] ----D C:\Users\Ludivine\AppData\Local\Adobe
O43 - CFD: 16/01/2013 - 19:15:51 - [13,747] ----D C:\Users\Ludivine\AppData\Local\adslTV
O43 - CFD: 25/12/2010 - 10:43:33 - [0] ----D C:\Users\Ludivine\AppData\Local\Application Data
O43 - CFD: 28/02/2011 - 14:56:58 - [0,003] ----D C:\Users\Ludivine\AppData\Local\ApplicationHistory
O43 - CFD: 18/12/2011 - 13:47:36 - [3,540] ----D C:\Users\Ludivine\AppData\Local\Babylon
O43 - CFD: 28/01/2013 - 19:14:25 - [49,165] ----D C:\Users\Ludivine\AppData\Local\CrashDumps
O43 - CFD: 11/04/2012 - 19:57:59 - [0,000] ----D C:\Users\Ludivine\AppData\Local\DDMSettings
O43 - CFD: 20/01/2013 - 12:07:01 - [0,059] ----D C:\Users\Ludivine\AppData\Local\Diagnostics
O43 - CFD: 31/03/2012 - 13:56:42 - [0] ----D C:\Users\Ludivine\AppData\Local\ElevatedDiagnostics
O43 - CFD: 09/07/2012 - 18:59:08 - [22,090] ----D C:\Users\Ludivine\AppData\Local\Google
O43 - CFD: 25/12/2010 - 10:43:33 - [0] ----D C:\Users\Ludivine\AppData\Local\Historique
O43 - CFD: 27/10/2012 - 11:40:03 - [151,365] ----D C:\Users\Ludivine\AppData\Local\iLivid
O43 - CFD: 28/12/2012 - 18:36:59 - [64,826] ----D C:\Users\Ludivine\AppData\Local\iMesh
O43 - CFD: 16/01/2013 - 17:57:24 - [0,353] ----D C:\Users\Ludivine\AppData\Local\Lollipop
O43 - CFD: 01/02/2013 - 15:02:15 - [-1388,415] ----D C:\Users\Ludivine\AppData\Local\Microsoft
O43 - CFD: 24/12/2011 - 18:21:59 - [1,101] ----D C:\Users\Ludivine\AppData\Local\Microsoft Games
O43 - CFD: 15/01/2011 - 18:12:23 - [0,101] ----D C:\Users\Ludivine\AppData\Local\Microsoft Help
O43 - CFD: 17/02/2012 - 13:31:15 - [0,170] ----D C:\Users\Ludivine\AppData\Local\MigWiz
O43 - CFD: 04/01/2011 - 20:59:59 - [0,325] ----D C:\Users\Ludivine\AppData\Local\moovida Air
O43 - CFD: 08/10/2011 - 16:44:16 - [151,554] ----D C:\Users\Ludivine\AppData\Local\Mozilla
O43 - CFD: 01/05/2011 - 11:58:05 - [0,000] ----D C:\Users\Ludivine\AppData\Local\Orange
O43 - CFD: 07/11/2011 - 17:29:27 - [0,001] ----D C:\Users\Ludivine\AppData\Local\Origin
O43 - CFD: 31/12/2010 - 13:56:28 - [0] ----D C:\Users\Ludivine\AppData\Local\PackageAware
O43 - CFD: 25/12/2010 - 10:49:25 - [0,002] ----D C:\Users\Ludivine\AppData\Local\Packard Bell
O43 - CFD: 10/01/2013 - 12:28:59 - [0] ----D C:\Users\Ludivine\AppData\Local\Programs
O43 - CFD: 11/04/2012 - 19:51:58 - [0] ----D C:\Users\Ludivine\AppData\Local\Software
O43 - CFD: 11/02/2013 - 18:37:24 - [2029,790] ----D C:\Users\Ludivine\AppData\Local\Temp
O43 - CFD: 25/12/2010 - 10:43:33 - [0] ----D C:\Users\Ludivine\AppData\Local\Temporary Internet Files
O43 - CFD: 01/09/2011 - 16:06:36 - [102,343] ----D C:\Users\Ludivine\AppData\Local\VirtualStore
O43 - CFD: 16/01/2013 - 17:56:10 - [0,054] ----D C:\Users\Ludivine\AppData\Local\Wajam
O43 - CFD: 21/01/2013 - 19:05:33 - [0,113] ----D C:\Users\Ludivine\AppData\Local\Windows Live
O43 - CFD: 05/01/2011 - 20:17:28 - [0,620] ----D C:\Users\Ludivine\AppData\Local\Windows Live Writer
O43 - CFD: 21/04/2011 - 17:37:04 - [0] ----D C:\Users\Ludivine\AppData\Local\{062F0E90-C983-407D-B175-789E390DB937}
O43 - CFD: 03/11/2011 - 18:51:49 - [0] ----D C:\Users\Ludivine\AppData\Local\{06B3AB7E-29B7-432E-99F0-83ACA6466BC7}
O43 - CFD: 19/03/2011 - 19:05:28 - [0] ----D C:\Users\Ludivine\AppData\Local\{092CC479-A750-4BD0-8198-874E44A4888E}
O43 - CFD: 23/04/2011 - 09:06:18 - [0] ----D C:\Users\Ludivine\AppData\Local\{0F699B3C-F04A-4CB9-9851-E92020D5E485}
O43 - CFD: 19/01/2013 - 21:05:45 - [0] ----D C:\Users\Ludivine\AppData\Local\{1298FE4E-6E2B-48FE-9046-D399B058580A}
O43 - CFD: 27/09/2011 - 10:36:18 - [0] ----D C:\Users\Ludivine\AppData\Local\{1315C2A2-91AC-47C8-B94F-98AD8772CA3F}
O43 - CFD: 28/04/2011 - 16:51:39 - [0] ----D C:\Users\Ludivine\AppData\Local\{1B9FF2EB-EB72-408D-A63E-DDCCEBC4F6B7}
O43 - CFD: 21/01/2013 - 19:05:58 - [0] ----D C:\Users\Ludivine\AppData\Local\{2BFEEE1E-C7A3-4FB5-AA18-4AB86EA29B01}
O43 - CFD: 06/04/2011 - 15:34:14 - [0] ----D C:\Users\Ludivine\AppData\Local\{3270D681-0066-449E-ACF6-CF916C59ACC8}
O43 - CFD: 15/04/2011 - 18:06:56 - [0] ----D C:\Users\Ludivine\AppData\Local\{458179AC-2E70-4AE5-BB2D-32B29855C004}
O43 - CFD: 22/04/2011 - 18:24:06 - [0] ----D C:\Users\Ludivine\AppData\Local\{488C3E16-3381-4C15-A00A-B3F6156EDD97}
O43 - CFD: 05/01/2011 - 20:17:40 - [0] ----D C:\Users\Ludivine\AppData\Local\{53475B27-B504-42A6-B5C7-E89E0A2C07AE}
O43 - CFD: 01/02/2013 - 15:00:29 - [0] ----D C:\Users\Ludivine\AppData\Local\{534FE55C-D405-42DC-9785-12F1083F25A0}
O43 - CFD: 30/03/2011 - 14:37:16 - [0] ----D C:\Users\Ludivine\AppData\Local\{59130743-D8C1-4B0F-BBAD-00D89BE0BDC8}
O43 - CFD: 18/04/2011 - 20:57:12 - [0] ----D C:\Users\Ludivine\AppData\Local\{62103327-DE98-4F62-AA15-94DF93E6DF4C}
O43 - CFD: 14/04/2011 - 17:38:59 - [0] ----D C:\Users\Ludivine\AppData\Local\{683BB4DD-14A3-4995-A306-F1A2CA19F42B}
O43 - CFD: 01/01/2011 - 21:27:36 - [0] ----D C:\Users\Ludivine\AppData\Local\{68CD0147-9CAD-4A7A-8E68-0D893B1382B8}
O43 - CFD: 09/04/2011 - 12:06:42 - [0] ----D C:\Users\Ludivine\AppData\Local\{6C01F7E3-C0EC-44A6-9EAC-FFD58FC6E1D8}
O43 - CFD: 28/03/2011 - 18:04:33 - [0] ----D C:\Users\Ludivine\AppData\Local\{6CCF4CD8-C069-4A4C-BC45-B53F2731B069}
O43 - CFD: 20/04/2011 - 09:48:56 - [0] ----D C:\Users\Ludivine\AppData\Local\{7472D43B-FF98-4A21-A670-CF3FBD679E9D}
O43 - CFD: 16/04/2011 - 06:43:31 - [0] ----D C:\Users\Ludivine\AppData\Local\{76E1FD6F-4A72-406C-851F-F1E4E8B1279B}
O43 - CFD: 17/04/2011 - 07:37:54 - [0] ----D C:\Users\Ludivine\AppData\Local\{7ABB2928-53EE-4433-B912-6E6520C9D373}
O43 - CFD: 19/09/2011 - 13:45:39 - [0] ----D C:\Users\Ludivine\AppData\Local\{899B6801-8814-4515-A4A6-5ADC886E9C42}
O43 - CFD: 27/04/2011 - 13:48:35 - [0] ----D C:\Users\Ludivine\AppData\Local\{8F751964-DF47-4D4D-A178-343B8284C24D}
O43 - CFD: 18/04/2011 - 19:12:34 - [0] ----D C:\Users\Ludivine\AppData\Local\{947F291C-B6FF-47F0-8014-05B6D671F6D5}
O43 - CFD: 31/03/2011 - 17:25:05 - [0] ----D C:\Users\Ludivine\AppData\Local\{95479577-61C1-40CE-A3D3-1827F8D4D6F3}
O43 - CFD: 19/03/2011 - 19:06:38 - [0] ----D C:\Users\Ludivine\AppData\Local\{9C1AF6CA-2225-4B65-BFAD-0D641F49D7ED}
O43 - CFD: 25/04/2011 - 17:12:53 - [0] ----D C:\Users\Ludivine\AppData\Local\{9F44DFF1-C406-4D1A-A162-87018F276CBF}
O43 - CFD: 23/04/2011 - 06:24:20 - [0] ----D C:\Users\Ludivine\AppData\Local\{A4D90B1E-D5F6-4AD0-9D3C-41AEB9B2FD1E}
O43 - CFD: 16/04/2011 - 11:12:02 - [0] ----D C:\Users\Ludivine\AppData\Local\{A55D9016-AF59-4942-89F7-A022BC2716F3}
O43 - CFD: 16/04/2011 - 19:21:59 - [0] ----D C:\Users\Ludivine\AppData\Local\{A5BD4D51-8AA7-40B7-901E-B9F2F10937B0}
O43 - CFD: 13/04/2011 - 19:02:18 - [0] ----D C:\Users\Ludivine\AppData\Local\{AF2A32B4-928F-4940-87AB-3069960564BC}
O43 - CFD: 22/04/2011 - 17:27:18 - [0] ----D C:\Users\Ludivine\AppData\Local\{B1D0668B-A7EF-4A47-9D29-469BA2B51E96}
O43 - CFD: 10/10/2011 - 10:11:11 - [0] ----D C:\Users\Ludivine\AppData\Local\{B58D70F9-A394-4141-AF62-C296D0C2CA86}
O43 - CFD: 17/04/2011 - 20:17:15 - [0] ----D C:\Users\Ludivine\AppData\Local\{BC70D2DA-D94A-42B6-80CD-02AD20C49E5D}
O43 - CFD: 13/04/2011 - 06:04:51 - [0] ----D C:\Users\Ludivine\AppData\Local\{BE70C31E-0E65-424E-9EFF-8519A691723C}
O43 - CFD: 26/04/2011 - 19:00:27 - [0] ----D C:\Users\Ludivine\AppData\Local\{C014D328-81AF-4012-A073-7BB1E330AE28}
O43 - CFD: 19/01/2013 - 22:05:55 - [0] ----D C:\Users\Ludivine\AppData\Local\{CECF008F-1543-4557-B25B-D617EA3D0BC4}
O43 - CFD: 24/04/2011 - 09:31:46 - [0] ----D C:\Users\Ludivine\AppData\Local\{D606BE39-8E62-4E04-AC1A-C8959721CB00}
O43 - CFD: 28/03/2011 - 16:26:42 - [0] ----D C:\Users\Ludivine\AppData\Local\{DE30B21A-69A2-44BF-ACCA-3820AA7498E3}
O43 - CFD: 27/03/2011 - 17:18:36 - [0] ----D C:\Users\Ludivine\AppData\Local\{F64ADE23-C1C3-4CEB-BAD0-24B5F15C7D6E}
O43 - CFD: 29/03/2011 - 17:33:59 - [0] ----D C:\Users\Ludivine\AppData\Local\{FBE3D302-D21F-4887-B456-261ABE36680F}
O43 - CFD: 10/02/2011 - 20:23:33 - [0] ----D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AbiWord Word Processor
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/07/2012 - 18:49:46 - [0,000] R---D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/08/2011 - 17:25:13 - [0,001] ----D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 18/12/2011 - 13:50:15 - [0] ----D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LimeWire
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 16/01/2013 - 17:56:53 - [0,006] R---D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 16/01/2013 - 17:56:14 - [0,001] ----D C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
~ Scan Program Folder in 01mn 11s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.1A2249E61CAA89FC4DA27E16D2257289] - 11/02/2013 - 18:30:01 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1137862]
O44 - LFC:[MD5.6121165E0B7E8C0CDB0CA0C18A8DC9DA] - 11/02/2013 - 17:21:06  . (...) -- C:\Windows\System32\perfc009.dat   []
O44 - LFC:[MD5.3BC7A9022914FA249E4489B02FA148C7] - 11/02/2013 - 17:21:06  . (...) -- C:\Windows\System32\perfc00C.dat   []
O44 - LFC:[MD5.CA1246FBFE2D37F42692B0E41C959E5A] - 11/02/2013 - 17:21:06  . (...) -- C:\Windows\System32\perfh009.dat   []
O44 - LFC:[MD5.4DCE9E031A14441F3D49284BF71BC256] - 11/02/2013 - 17:21:06  . (...) -- C:\Windows\System32\perfh00C.dat   []
O44 - LFC:[MD5.EAD905D7785D005FA4730F3BAACF9DCB] - 11/02/2013 - 17:21:06 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1553042]
O44 - LFC:[MD5.6121165E0B7E8C0CDB0CA0C18A8DC9DA] - 11/02/2013 - 17:21:06 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [107594]
O44 - LFC:[MD5.3BC7A9022914FA249E4489B02FA148C7] - 11/02/2013 - 17:21:06 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [132546]
O44 - LFC:[MD5.CA1246FBFE2D37F42692B0E41C959E5A] - 11/02/2013 - 17:21:06 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [615958]
O44 - LFC:[MD5.4DCE9E031A14441F3D49284BF71BC256] - 11/02/2013 - 17:21:06 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [704856]
O44 - LFC:[MD5.EAD905D7785D005FA4730F3BAACF9DCB] - 11/02/2013 - 17:21:06 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1553042]
O44 - LFC:[MD5.02F15D511309696D362B4399DEF6E161] - 11/02/2013 - 17:15:21 ---A- . (...) -- C:\Windows\setupact.log   [130602]
O44 - LFC:[MD5.8A93B5C519370C9D375798521E58E7FF] - 11/02/2013 - 17:15:20 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 31/01/2013 - 21:35:24 ---A- . (...) -- C:\END   [0]
O44 - LFC:[MD5.94BCE5A03EF5F9340AD9095E0D409C82] - 17/01/2013 - 01:28:58  . (...) -- C:\Windows\System32\MpSigStub.exe   []
O44 - LFC:[MD5.D4ED7B70F189D9F4D264DB2F5CAC8B37] - 16/01/2013 - 18:53:23 ---A- . (...) -- C:\Windows\PFRO.log   [250952]
~ Scan Files in 00mn 21s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [491088]
~ Scan Drivers in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/10/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 15/10/2012 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 01/09/2009 - C:\Windows\System32\DRIVERS\kl1.sys (kl1)  .(.Kaspersky Lab - Kaspersky Unified Driver.) - LEGACY_KL1
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 02/11/2009 - C:\Windows\System32\DRIVERS\TurboB.sys - Turbo Boost UI Monitor driver (TurboB)  .(...) - LEGACY_TURBOB
~ Scan Services in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.admin", false);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.aflt", "babsst");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.babExt", "");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.babTrack", "affID=101365");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.bbDpng", 11);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.dfltSrch", false);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.hmpg", false);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.id", "209cfdc80000000000007af1a1abd3e2");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.instlDay", "15326");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.instlRef", "sst");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.lastDP", 11);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1713:47:41");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "18.0");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.newTab", true);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.newTabUrl", "http://search.babylon.com/?babsrc=NT_FFUP");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.propectorlck", 99163801);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.ptch_0717", true);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.smplGrp", "azb");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.srcExt", "ss");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.tlbrId", "base");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1713:47:41");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.babExt", "");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.babTrack", "affID=101365");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.hardId", "209cfdc80000000000007af1a1abd3e2");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.id", "209cfdc80000000000007af1a1abd3e2");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.instlDay", "15326");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.newTab", false);
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.tlbrId", "base");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1713:47:41");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
O69 - SBI: prefs.js [Ludivine - tuca0tlc.default] user_pref("extensions.enabledAddons", "cliptomp3_plugin%40ClipToMP3:1.0.2,DivXWebPlayer%40divx.com:2.0.2.039,ffxtlbr%40babylon.com[...]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com
O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {814C76CB-2623-43F4-AAD0-58A0E5190A20} - (Orange) - http://www.orange.fril
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59} - (Web Search) - http://search.imesh.com
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (SweetIM Search) - http://search.sweetim.com
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1114624]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [208896]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.384B87D7EDE07437119C38D91318F42F] [SPRF][27/02/2011] (...) -- C:\Users\Ludivine\AppData\Local\fusioncache.dat   [96]
[MD5.D2D53AC8CC6584DEFEA4CDE71F46DE4C] [SPRF][24/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD1054.exe   [1841152]
[MD5.2023BC097E30BC5419120EC232A216E5] [SPRF][15/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD10C2.exe   [1003520]
[MD5.9C82DE30C67E78E5F6533BFF61CBC5D3] [SPRF][19/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD16CA.exe   [847872]
[MD5.DF085207A3E18AF85EAECEBE678C82D8] [SPRF][02/02/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EAD1C46.exe   [280576]
[MD5.D2B7319FD48FC0AD8F7D92BFBFC9F1D6] [SPRF][06/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD1F81.exe   [6752256]
[MD5.D83C314C00CEC917C4FE0BE205A45703] [SPRF][21/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD222F.exe   [10680320]
[MD5.BD656DF08CA002A7B96ECCC6289637F2] [SPRF][06/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD249F.exe   [2539520]
[MD5.66998F42106B6C76C11E317830CF1FF1] [SPRF][06/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD28B4.exe   [19113448]
[MD5.32D967DE134280A9FF48AD439A7ECB31] [SPRF][12/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD28C4.exe   [12978176]
[MD5.F9A7AC5D2325A6A39A67D90FA04A8E3D] [SPRF][19/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD2960.exe   [7571456]
[MD5.5F318A5AE3F12D9E90F14C99C0ABF6F0] [SPRF][21/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD29AE.exe   [2150400]
[MD5.A755F1CB516834CEFE694B13DE7A3E54] [SPRF][06/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD29E.exe   [413696]
[MD5.C986002A1E40C21C499D96651F813ACA] [SPRF][07/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD2DA4.exe   [4186112]
[MD5.38A6F00AC1E004601B3324EE86DEB3D6] [SPRF][26/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD38FA.exe   [2627584]
[MD5.124DD675829C79D9D3D6B449F5B2416C] [SPRF][04/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD421E.exe   [376832]
[MD5.93255D9E327782B7AD9FEFA99886DC2A] [SPRF][19/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD42E8.exe   [1691648]
[MD5.1D54A8872A10992F6528C996E95FCFEB] [SPRF][01/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD45C6.exe   [9611264]
[MD5.E6CAD0E1A1EFEA2908FD29DF220559E2] [SPRF][26/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD4CA8.exe   [4358144]
[MD5.3EB7FD15CB1DD50AFDC6F2BAB313E711] [SPRF][11/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD4CB8.exe   [3430400]
[MD5.6DF3E275316DBA9EB847B76E126F5097] [SPRF][22/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD52B1.exe   [9441280]
[MD5.C41095673EEF14060521AAB3BC7574CB] [SPRF][02/02/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EAD54F2.exe   [315392]
[MD5.AEF88E1066DCEAB51455638FC8947185] [SPRF][24/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD555F.exe   [6600704]
[MD5.82365B4B7A9AE8786EB6DC502DF1BDB6] [SPRF][25/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD5974.exe   [10151936]
[MD5.D5AE5C48AC932E7A34C782306DE484FB] [SPRF][10/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD60F3.exe   [1615872]
[MD5.D2D8D04B244A53935D22BEE1C33B5ECC] [SPRF][02/03/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EAD6D.exe   [190464]
[MD5.590D7814E95EDCDC227895AA649DB878] [SPRF][13/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD71C5.exe   [1902592]
[MD5.66998F42106B6C76C11E317830CF1FF1] [SPRF][05/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD73D7.exe   [19113448]
[MD5.99D8DDE210A56CCF3D598DC791CC5E37] [SPRF][19/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD7FB.exe   [2791424]
[MD5.86E7318DF1F98F3E67B55B84042A9D33] [SPRF][08/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD82D5.exe   [2068480]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF][13/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD83AF.exe   [19072216]
[MD5.0E27CF9D59B5B7653E2BA092ACD50E40] [SPRF][04/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD892B.exe   [3659776]
[MD5.445BE83C33E4826869E5E8055EED978F] [SPRF][27/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD8999.exe   [3219456]
[MD5.485F7C1D89E7BE9E3D25BF031DB54779] [SPRF][07/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD8D9E.exe   [2258944]
[MD5.B566272210AA911015953C816EB667A8] [SPRF][21/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD8E0B.exe   [7858176]
[MD5.603D0BAEC3CF82F221AC127E0AC71C8A] [SPRF][18/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD8F15.exe   [1533952]
[MD5.C4F41F41FFD140241B85606D6A52FB7E] [SPRF][08/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD91B3.exe   [1652736]
[MD5.B81B4A37A85EEFFDEA516CFE587B21A1] [SPRF][24/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD92DC.exe   [1337344]
[MD5.E206662343F4E6440D336C1462C66E1E] [SPRF][18/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD9701.exe   [458752]
[MD5.E3EB4EADABB3B4B698140436D5A770F1] [SPRF][01/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD9990.exe   [1304576]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF][21/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD9C.exe   [19072216]
[MD5.5DFDF663C0433E12419D4D9F1BFFBA1E] [SPRF][31/01/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EAD9C00.exe   [303104]
[MD5.3E83E6089B3C3E723E7D28128D4ABDAC] [SPRF][05/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD9CBB.exe   [753664]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF][22/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EAD9E7F.exe   [19072216]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF][14/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA218.exe   [19072216]
[MD5.35214964F09B116CDE47231E0678A06A] [SPRF][18/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA3DC.exe   [14975948]
[MD5.8D2A6147450A5678BE73CB5D49B3015F] [SPRF][01/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA3FB.exe   [4931584]
[MD5.1270C5D705FD8E2B08FCDE72C98C951D] [SPRF][07/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA5C0.exe   [2850816]
[MD5.BA2CE4DDDEF1EBDB6008C420ED542DE2] [SPRF][05/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA63D.exe   [3072000]
[MD5.1D21CB4AB6B8C4426F37A495E2AECD49] [SPRF][29/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA64C.exe   [6789120]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF][26/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA801.exe   [19072216]
[MD5.9ECB14E1C2EE816593CDFF9B9F9538B7] [SPRF][04/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA8BC.exe   [876544]
[MD5.56D3B753069F353909098DC74737C82B] [SPRF][30/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA8DB.exe   [19766800]
[MD5.E5578554CEBD6221205029EAE87AA3E0] [SPRF][07/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADA8EB.exe   [5169152]
[MD5.E0D73CC88CB28E46C3B29D07423231EE] [SPRF][06/03/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EADAA04.exe   [120832]
[MD5.DABB30024B1B8082B8886D0E6CF7CA27] [SPRF][06/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADAB0D.exe   [608256]
[MD5.39D76A41249895097B11F94E255A56C8] [SPRF][18/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADAFFD.exe   [19763928]
[MD5.91B4A9243568AEF9C76828FDEF0EA46B] [SPRF][15/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADB2F9.exe   [1714176]
[MD5.D2E195178A19896F40F438418C3803C7] [SPRF][14/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADB6EF.exe   [2285568]
[MD5.74B0269DF6BE296CF8494B5AE6C3B6AA] [SPRF][15/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADB6F0.exe   [968704]
[MD5.CECC8A6E95A54757A56AFFFA379501AF] [SPRF][05/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADB6F1.exe   [7483392]
[MD5.39D76A41249895097B11F94E255A56C8] [SPRF][19/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADB75C.exe   [19763928]
[MD5.924600A04BD86D4CF2655015A8008622] [SPRF][29/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADB7E9.exe   [1843200]
[MD5.D7BEF2F576DDEFEE87E9E6860F0206A6] [SPRF][02/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADBAF5.exe   [4243456]
[MD5.6E288116094055B14A11523D3AE5CD60] [SPRF][31/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADBB81.exe   [960512]
[MD5.8A26EF3162509316ACE82F38BB5B566E] [SPRF][26/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADBE10.exe   [1585152]
[MD5.A58B265C349FCF0B8C83008BA93DE031] [SPRF][17/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC080.exe   [376832]
[MD5.C5B8889912A98C9DF86F3EB3BC6AD925] [SPRF][26/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC081.exe   [954368]
[MD5.73EF5ACE9224F0750B6EC2B943F1B41A] [SPRF][17/03/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EADC0FD.exe   [337920]
[MD5.8A1FD4885FFFA0B96D129B64A650039E] [SPRF][28/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC10D.exe   [5969920]
[MD5.E2B447DBC32700B7AAC31A72D0634BCD] [SPRF][28/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC2E1.exe   [3895296]
[MD5.1AD25D8FF521127D52543384A8909AFF] [SPRF][14/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC31F.exe   [1282048]
[MD5.1F1833739175D813016D782C9511F803] [SPRF][26/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC32F.exe   [5535744]
[MD5.66998F42106B6C76C11E317830CF1FF1] [SPRF][05/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC3F.exe   [19113448]
[MD5.F3912376FA16509CCB82625ECB2803F0] [SPRF][31/01/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EADC4A5.exe   [47104]
[MD5.BAE3151C4E5FD09744665A17C7A58324] [SPRF][17/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC531.exe   [4579328]
[MD5.1325B083681CD4BFACF4E5A19361EFF2] [SPRF][18/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC81E.exe   [1675264]
[MD5.DD11117D06C1DB91CCCB6267BE0D8A3C] [SPRF][16/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC918.exe   [1898496]
[MD5.798F716C8189A9144EDD0C3B91C2399D] [SPRF][14/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADC9B4.exe   [684032]
[MD5.33C23F8E6ED99EFCFD1434E97DA4D644] [SPRF][05/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADCA8E.exe   [3280896]
[MD5.D822C28D5820BA923295E8ACCE7E7EE9] [SPRF][09/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADCCEF.exe   [10039296]
[MD5.6539B1C2241F80D52F15035091FC3A93] [SPRF][29/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADD049.exe   [9957376]
[MD5.04A4CF9BF3C2EDCA71AEF5FB5D84C8D2] [SPRF][05/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADD46D.exe   [17346560]
[MD5.675E93096572EBB8275C652479EC73A6] [SPRF][10/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADD548.exe   [993280]
[MD5.E83F666284A2DB7CE7B61D36AE75D59C] [SPRF][25/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADD557.exe   [864256]
[MD5.7566F4D19A1E0C72246B1E7BE6B1B3BF] [SPRF][27/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADD806.exe   [4499456]
[MD5.D4829FFD19208A3EB89C4C7C692BAC47] [SPRF][14/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADD815.exe   [3373056]
[MD5.DB25D5FB1966A1892E712C9266510696] [SPRF][02/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADDBBD.exe   [399360]
[MD5.7CABC911E082DF3D9974EC821E7EC777] [SPRF][26/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADDCB7.exe   [4524032]
[MD5.8D9694A96D6E71B9B1B619B731F9396A] [SPRF][05/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADDDDF.exe   [770048]
[MD5.A4950E1584DE9B86CFABAB85EF0532DD] [SPRF][28/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADDDEF.exe   [3098624]
[MD5.4BCCACD73A0A62EBEF0701D56B3B1376] [SPRF][28/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADE281.exe   [19786880]
[MD5.2E3661BEAE8A2ACD43043C1C2C07F152] [SPRF][21/03/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADE5FA.exe   [7272448]
[MD5.A9F11E3C7A0AA1446EA078A871EA7B98] [SPRF][14/01/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EADE993.exe   [169984]
[MD5.83D914489941BDDFC1A26A8F6AE3376C] [SPRF][26/02/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\EADEDB7.exe   [49152]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF][26/01/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADF324.exe   [19072216]
[MD5.D18BA6FE95AB8E075456FF87F71BFA39] [SPRF][02/02/2011] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Ludivine\AppData\Local\Temp\EADF94C.exe   [9156608]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBU189E.exe   [483386]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBU77CE.exe   [483386]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBU8DED.exe   [483386]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBUB490.exe   [483386]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBUBB44.exe   [483386]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBUD826.exe   [483386]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBUDF86.exe   [483386]
[MD5.012B5011C40B40558F38F59BBB52B9DD] [SPRF][03/07/2003] (.Microsoft Corporation - Microsoft Games AutoRun/Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\EBUECF.exe   [483386]
[MD5.FF637BFA17992211F0AA14120CE70283] [SPRF][26/01/2010] (.Adobe Systems Incorporated - Adobe® Flash® Player Plugin Installer.) -- C:\Users\Ludivine\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe   [1919084]
[MD5.7E7BCEAFA5183DEF2E8FFD6C3C653372] [SPRF][16/01/2013] (.Pas de propriétaire - adsl TV.) -- C:\Users\Ludivine\AppData\Local\Temp\giN6D9SE.exe   [604519]
[MD5.7E7BCEAFA5183DEF2E8FFD6C3C653372] [SPRF][16/01/2013] (.Pas de propriétaire - adsl TV.) -- C:\Users\Ludivine\AppData\Local\Temp\giN6ENG5.exe   [604519]
[MD5.7E7BCEAFA5183DEF2E8FFD6C3C653372] [SPRF][16/01/2013] (.Pas de propriétaire - adsl TV.) -- C:\Users\Ludivine\AppData\Local\Temp\giN6ETUR.exe   [604519]
[MD5.7E7BCEAFA5183DEF2E8FFD6C3C653372] [SPRF][16/01/2013] (.Pas de propriétaire - adsl TV.) -- C:\Users\Ludivine\AppData\Local\Temp\giN6F49H.exe   [604519]
[MD5.262FFFA7DAE3043393153E2D5C19698C] [SPRF][13/06/2011] (...) -- C:\Users\Ludivine\AppData\Local\Temp\i4jdel0.exe   [4608]
[MD5.A0C86236B993D2B275E6717892A0E5E1] [SPRF][31/12/2010] (.iMesh Inc. - iMesh.) -- C:\Users\Ludivine\AppData\Local\Temp\iMesh_setup.exe   [2298112]
[MD5.A43530B4EECAFB28AB741D13B955C5A3] [SPRF][29/03/2011] (.Electronic Arts, Inc. - EADM installer extension.) -- C:\Users\Ludivine\AppData\Local\Temp\installerdll.dll   [656704]
[MD5.31DB7E250F1D8FB6A4ABA52F679EA12E] [SPRF][23/09/2011] (.Electronic Arts, Inc. - Origin installer extension.) -- C:\Users\Ludivine\AppData\Local\Temp\installerdll1372403.dll   [3028608]
[MD5.0B54D0F88A5DC32A05FC66C0C963F407] [SPRF][19/08/2011] (.Electronic Arts, Inc. - Origin installer extension.) -- C:\Users\Ludivine\AppData\Local\Temp\installerdll1765868.dll   [3028608]
[MD5.0B54D0F88A5DC32A05FC66C0C963F407] [SPRF][19/08/2011] (.Electronic Arts, Inc. - Origin installer extension.) -- C:\Users\Ludivine\AppData\Local\Temp\installerdll1774807.dll   [3028608]
[MD5.31DB7E250F1D8FB6A4ABA52F679EA12E] [SPRF][23/09/2011] (.Electronic Arts, Inc. - Origin installer extension.) -- C:\Users\Ludivine\AppData\Local\Temp\installerdll227387.dll   [3028608]
[MD5.31DB7E250F1D8FB6A4ABA52F679EA12E] [SPRF][23/09/2011] (.Electronic Arts, Inc. - Origin installer extension.) -- C:\Users\Ludivine\AppData\Local\Temp\installerdll229352.dll   [3028608]
[MD5.31DB7E250F1D8FB6A4ABA52F679EA12E] [SPRF][23/09/2011] (.Electronic Arts, Inc. - Origin installer extension.) -- C:\Users\Ludivine\AppData\Local\Temp\installerdll245108.dll   [3028608]
[MD5.FA10EC7AD771D5F466DA8381D40DB901] [SPRF][26/12/2010] (...) -- C:\Users\Ludivine\AppData\Local\Temp\Installhelper.dll   [1137072]
[MD5.4ACE9EEB32DE26548956B5E5841E90CB] [SPRF][26/08/2011] (.Java(TM) Native Access (JNA) - JNA native library.) -- C:\Users\Ludivine\AppData\Local\Temp\jna4211423235392918909.dll   [347258]
[MD5.4ACE9EEB32DE26548956B5E5841E90CB] [SPRF][18/12/2011] (.Java(TM) Native Access (JNA) - JNA native library.) -- C:\Users\Ludivine\AppData\Local\Temp\jna8934149758651044197.dll   [347258]
[MD5.A8D666FCE8EFD0788FA0DF14FB3491B4] [SPRF][10/02/2011] (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Users\Ludivine\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe   [885536]
[MD5.EE622B2CD2D3C5CD950D49BD1708A9D4] [SPRF][20/02/2012] (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Users\Ludivine\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe   [909600]
[MD5.33C8275F17D47E88D5BC0B0264E02C7A] [SPRF][18/12/2011] (.Lime Wire LLC - The Fastest File Sharing Program on Earth.) -- C:\Users\Ludivine\AppData\Local\Temp\LimeWire 5.5.164.exe   [2293760]
[MD5.745230F57C16806076FCA58C04155050] [SPRF][07/01/2012] (...) -- C:\Users\Ludivine\AppData\Local\Temp\mjregutil6603345257439803096.exe   [56080]
[MD5.E4B73CDAFB624D146F24100CCBB1448D] [SPRF][29/09/2011] (.Electronic Arts, Inc. - Origin.) -- C:\Users\Ludivine\AppData\Local\Temp\OriginLauncher227387.exe   [48012696]
[MD5.5A432A042DAE460ABE7199B758E8606C] [SPRF][28/10/2006] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Ludivine\AppData\Local\Temp\ose00000.exe   [145184]
[MD5.420525B53B92001F2BD5C3B5CF4093A1] [SPRF][07/01/2012] (...) -- C:\Users\Ludivine\AppData\Local\Temp\pngfix2802454104907059962.dat   [51]
[MD5.71EA857B02F778B3D54BA59444A9F802] [SPRF][30/07/2011] (.Microsoft Corporation - Win32 Cabinet Self-Extractor.) -- C:\Users\Ludivine\AppData\Local\Temp\rootsupd.exe   [336280]
[MD5.212C77E53C9925C033C327387EB72E0D] [SPRF][19/08/2011] (.Electronic Arts, Inc. - Origin.) -- C:\Users\Ludivine\AppData\Local\Temp\Setup.exe   [46880640]
[MD5.A0C86236B993D2B275E6717892A0E5E1] [SPRF][31/12/2010] (.iMesh Inc. - iMesh.) -- C:\Users\Ludivine\AppData\Local\Temp\TomsDownloader15121.exe   [2298112]
[MD5.E28A290FBF38C63AB28B688784F5CB72] [SPRF][28/03/2009] (.Electronic Arts, Inc. - EADM Installer.) -- C:\Users\Ludivine\AppData\Local\Temp\UninstallEADM.dll   [195056]
[MD5.CBE0B05C11D5D523C2AF997D737C137B] [SPRF][30/07/2011] (.Microsoft Corporation - Microsoft Visual C++ 2010  x64 Redistributable Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\vcredist_x64.exe   [5673816]
[MD5.CEDE02D7AF62449A2C38C49ABECC0CD3] [SPRF][30/07/2011] (.Microsoft Corporation - Microsoft Visual C++ 2010  x86 Redistributable Setup.) -- C:\Users\Ludivine\AppData\Local\Temp\vcredist_x86.exe   [4995416]
[MD5.225CCDCFE5625795647043679CB77112] [SPRF][16/01/2013] (...) -- C:\Users\Ludivine\AppData\Local\Temp\wajam_install.exe   [417256]
[MD5.EC42E8E9768D01AF0BB0FA0A614E2290] [SPRF][19/01/2013] (.Kreapixel - WebPlayerV2.) -- C:\Users\Ludivine\AppData\Local\Temp\WebPlayerV2.upgrade.exe   [3510784]
[MD5.342F79337765760AD4E392EB67D5ED2C] [SPRF][15/08/2011] (.Microsoft Corporation - Update Package.) -- C:\Users\Ludivine\AppData\Local\Temp\WindowsInstaller-KB893803-v2-x86.exe   [2585872]
[MD5.719AF0A81B65A4AEB4BA7BD6644BB1A7] [SPRF][30/12/2010] (...) -- C:\Users\Ludivine\AppData\Local\Temp\WLM2011Installer.exe   [1289216]
[MD5.64281AF23447705DAB84E1A198D920C7] [SPRF][30/12/2010] (.Microsoft Corporation - Windows Live Installer.) -- C:\Users\Ludivine\AppData\Local\Temp\WLM_2011.exe   [1289576]
[MD5.1108B166160D6023AF76435B074052B6] [SPRF][20/01/2007] (.Macrovision Corporation - Setup.exe.) -- C:\Users\Ludivine\AppData\Local\Temp\_is9F2B.exe   [455600]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][09/10/2012] (...) -- C:\Users\Ludivine\AppData\Local\Temp\{BF9B2D0D-9A3C-4229-86F9-E013BED5D59F}-22.0.1229.92_22.0.1229.79_chrome_updater.exe   [0]
[MD5.E759656EB7AF98DFA58F27AD82D9A253] [SPRF][28/01/2013] (...) -- C:\Users\Ludivine\AppData\Roaming\wklnhst.dat   [6206]
[MD5.A594716D8D12BAE296DA6CF35F3C5748] [SPRF][08/06/2010] (.Akamai Technologies, Inc. - Download Manager ActiveX Control.) -- C:\Windows\Downloaded Program Files\Manager.exe   [705984]
~ Scan Files in 00mn 18s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{F868199D-4415-4EEC-B77A-0DBF9431195A}" | In - Public - P6 - FALSE | .(.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{87745346-D053-4CA3-A1D7-58D5CFBC502A}" | In - Public - P17 - FALSE | .(.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{7E2CFDED-7D9E-433C-8577-7022679EE8E1}" | In - Domain - P6 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe
O87 - FAEL: "{8DB5315B-0E84-4DC8-B0BD-FB221DF681E9}" | In - Domain - P17 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe
O87 - FAEL: "{E5568768-BD10-490B-99CD-A40EDA2660C2}" | In - Private - P6 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe
O87 - FAEL: "{ED4D3A1A-0D43-44DD-ACA7-9A8249371591}" | In - Private - P17 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe
O87 - FAEL: "{0B0594F6-2F57-43E7-8802-B8EDABF3CC29}" | In - Private - P6 - TRUE | .(.Lime Wire, LLC - LimeWire.) -- C:\Program Files (x86)\LimeWire\LimeWire.exe
O87 - FAEL: "{90279DAC-2114-46E4-B826-A1D17C60FAE9}" | In - Private - P17 - TRUE | .(.Lime Wire, LLC - LimeWire.) -- C:\Program Files (x86)\LimeWire\LimeWire.exe
O87 - FAEL: "TCP Query User{93A14531-D4B7-4828-A6B6-064F3A950562}C:\program files (x86)\electronic arts\eadm\core.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{A233A739-22AE-4F99-B2F2-41ADA4D345AD}C:\program files (x86)\electronic arts\eadm\core.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "TCP Query User{B5DF0D39-B41A-4A68-8FD7-0EBD237CF575}C:\program files (x86)\limewire\limewire.exe" | In - Public - P6 - TRUE | .(.Lime Wire, LLC - LimeWire.) -- C:\program files (x86)\limewire\limewire.exe
O87 - FAEL: "UDP Query User{430F006D-6E3D-4549-8D3F-BF0C917D0D21}C:\program files (x86)\limewire\limewire.exe" | In - Public - P17 - TRUE | .(.Lime Wire, LLC - LimeWire.) -- C:\program files (x86)\limewire\limewire.exe
O87 - FAEL: "TCP Query User{1EBEA923-519D-427B-832F-47CCF110764A}C:\program files (x86)\electronic arts\eadm\core.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{DE89F6B8-B34B-45BA-A332-1E298343A361}C:\program files (x86)\electronic arts\eadm\core.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "{620CA63C-3C54-42C4-A14A-18A86D7B50CB}" |In - Public - P6 - TRUE | .(...) -- D:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{7CA7123F-21E1-429E-9011-28060BEC780A}" |In - Public - P17 - TRUE | .(...) -- D:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{71BAA9C2-4DBA-4667-BE72-C08A4725D17C}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{958FB109-7111-4444-996C-35FE9B97F08E}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{10A59F16-D8A6-46E6-A975-12B1098F43BF}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{340B8471-5857-429B-9D86-EE5F2F28F727}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "TCP Query User{3C1929C3-06DF-48D3-9903-93B49B69D399}C:\program files (x86)\imesh applications\imesh\imesh.exe" | In - Public - P6 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\program files (x86)\imesh applications\imesh\imesh.exe
O87 - FAEL: "UDP Query User{9EA710F0-A53B-46D2-9B13-F79499DBD12B}C:\program files (x86)\imesh applications\imesh\imesh.exe" | In - Public - P17 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\program files (x86)\imesh applications\imesh\imesh.exe
O87 - FAEL: "{0D01D29D-3CE4-4B0E-8DB4-186F6F474389}" |In - Public - P6 - TRUE | .(...) -- C:\Users\Ludivine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZVNRT9G6\SweetImSetup.exe (.not file.)
O87 - FAEL: "{BD4A0E59-E719-4178-A8D7-79D759E8EF3F}" |In - Public - P17 - TRUE | .(...) -- C:\Users\Ludivine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZVNRT9G6\SweetImSetup.exe (.not file.)
O87 - FAEL: "{A61FD985-8227-40EC-98E4-84774D165A6D}" | In - Public - P6 - TRUE | .(.SweetIM Technologies, Ltd. - SweetIM Installer.) -- C:\Users\Ludivine\AppData\Local\Temp\SweetIMReinstall\SweetImSetup.exe
O87 - FAEL: "{974FED23-4992-4F27-996A-D88A62076A9F}" | In - Public - P17 - TRUE | .(.SweetIM Technologies, Ltd. - SweetIM Installer.) -- C:\Users\Ludivine\AppData\Local\Temp\SweetIMReinstall\SweetImSetup.exe
O87 - FAEL: "{BED89C4B-8E5B-4CF0-B0D3-2197BA50B0D5}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Veetle\Player\VeetleNet.exe
O87 - FAEL: "TCP Query User{B590A029-8530-42DA-B8C4-913931BACC88}C:\program files (x86)\java\jre6\bin\javaw.exe" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre6\bin\javaw.exe
O87 - FAEL: "UDP Query User{7C80D505-72B1-4832-B7D3-402B4D1CF1B4}C:\program files (x86)\java\jre6\bin\javaw.exe" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre6\bin\javaw.exe
O87 - FAEL: "TCP Query User{16AC5198-768C-4C12-A5A9-C49D04E53EE7}C:\users\ludivine\clubdejeux\jre\jre\bin\javaw.exe" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc..) -- C:\users\ludivine\clubdejeux\jre\jre\bin\javaw.exe
O87 - FAEL: "UDP Query User{7A203D96-73E5-4785-B6E4-DE69D96D7CE2}C:\users\ludivine\clubdejeux\jre\jre\bin\javaw.exe" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\users\ludivine\clubdejeux\jre\jre\bin\javaw.exe
O87 - FAEL: "{51C2B698-185D-489D-AF16-3AD2A03BF725}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Veetle\Player\VeetleNet.exe
O87 - FAEL: "TCP Query User{EF6B31B8-0A4E-4C9D-8181-2CF77DF0194B}C:\program files (x86)\utorrent\utorrent.exe" | In - Public - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\program files (x86)\utorrent\utorrent.exe
O87 - FAEL: "UDP Query User{49DA817A-C9A3-4755-BFEC-F4A2EC4C28B5}C:\program files (x86)\utorrent\utorrent.exe" | In - Public - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\program files (x86)\utorrent\utorrent.exe
O87 - FAEL: "TCP Query User{21209DB1-A6EF-4285-A1D6-9DAD2762BB76}C:\users\ludivine\downloads\microtorrent_torrent_3.2_build_27886_francais_18245.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\ludivine\downloads\microtorrent_torrent_3.2_build_27886_fr
O87 - FAEL: "UDP Query User{C17F123E-22EE-45AA-A34D-6A726E396323}C:\users\ludivine\downloads\microtorrent_torrent_3.2_build_27886_francais_18245.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\ludivine\downloads\microtorrent_torrent_3.2_build_27886_f
O87 - FAEL: "{2F79BF4D-AEA1-444D-B619-2A76532CABCB}" | In - Public - P6 - TRUE | .(.France Telecom SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{9F8D4BD2-7456-4430-99EB-F03D2DA02A85}" | In - Public - P17 - TRUE | .(.France Telecom SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{70F10F37-58FC-4B7D-8DA9-3F5BC15947AA}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{04E77D7B-E64F-4B30-A17A-57DA4645F284}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{8CF64722-4900-4504-B6E4-718C0CB1B374}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe (.not file.)
O87 - FAEL: "{FA6F50DA-3ED3-49A8-A36E-66D3A342BF46}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe (.not file.)
~ Scan Firewall in 00mn 01s



---\\ Scan Additionnel (O88)
Database Version : v2.10655 - (10/02/2013)
Clés trouvées (Keys found) : 85
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 28
Fichiers trouvés  (Files found) : 3

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50}]   =>PUP.Blabbers
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]   =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{474597C5-AB09-49d6-A4D5-2E8D7341384E}]   =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{474597C5-AB09-49D6-A4D5-2E8D7341384E}]   =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{474597C5-AB09-49D6-A4D5-2E8D7341384E}]   =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531}]   =>PUP.Blabbers
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9bb47c17-9c68-4bb3-b188-dd9af0fd2a59}]   =>PUP.iMesh
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}]   =>Toolbar.PricePeep
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}]   =>Toolbar.PricePeep
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]   =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]   =>Adware.Yontoo
[HKCU\Software\Ask.com]   =>Toolbar.AskBar
[HKCU\Software\AppDataLow\Software\AskToolbar]   =>Toolbar.AskTBar
[HKCU\Software\AppDataLow\AskToolbarInfo]   =>Toolbar.AskTBar
[HKCU\Software\BabylonToolbar]   =>Toolbar.Babylon
[HKCU\Software\Blabbers]   =>PUP.Blabbers
[HKCU\Software\DataMngr]   =>Adware.Bandoo
[HKCU\Software\lollipop]   =>Adware.Lollipop
[HKCU\Software\ilivid]   =>Adware.Bandoo
[HKCU\Software\iMesh]   =>PUP.iMesh
[HKCU\Software\AppDataLow\Software\iMeshMediabarTB]   =>PUP.iMesh
[HKCU\Software\Softonic]   =>Toolbar.Conduit
[HKCU\Software\Spointer]   =>Adware.SPointer
[HKCU\Software\SweetIM]   =>PUP.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lollipop]   =>Adware.Lollipop
[HKCU\Software\InstallCore]   =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}]   =>Toolbar.Agent
[HKLM\Software\Classes\escort.escortIEPane]   =>PUP.Funmoods
[HKLM\Software\Classes\escort.escortIEPane.1]   =>PUP.Funmoods
[HKLM\Software\Classes\escort.escrtBtn.1]   =>PUP.Funmoods
[HKLM\Software\Classes\SWEETIE.IEToolbar]   =>PUP.SweetIM
[HKLM\Software\Classes\SWEETIE.IEToolbar.1]   =>PUP.SweetIM
[HKLM\Software\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook]   =>PUP.SweetIM
[HKLM\Software\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]   =>PUP.SweetIM
[HKLM\Software\Classes\Toolbar3.SWEETIE]   =>PUP.SweetIM
[HKLM\Software\Classes\Toolbar3.SWEETIE.1]   =>PUP.SweetIM
[HKLM\Software\Classes\wajam.WajamBHO]   =>Toolbar.Wajam
[HKLM\Software\Classes\wajam.WajamBHO.1]   =>Toolbar.Wajam
[HKLM\Software\Classes\wajam.WajamDownloader]   =>Toolbar.Wajam
[HKLM\Software\Classes\wajam.WajamDownloader.1]   =>Toolbar.Wajam
[HKLM\Software\Classes\YontooIEClient.Api]   =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Api.1]   =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers]   =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers.1]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\escort.escrtBtn.1]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\SWEETIE.IEToolbar]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\SWEETIE.IEToolbar.1]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Toolbar3.SWEETIE]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Toolbar3.SWEETIE.1]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\wajam.WajamBHO]   =>Toolbar.Wajam
[HKLM\Software\Wow6432Node\Classes\wajam.WajamBHO.1]   =>Toolbar.Wajam
[HKLM\Software\Wow6432Node\Classes\wajam.WajamDownloader]   =>Toolbar.Wajam
[HKLM\Software\Wow6432Node\Classes\wajam.WajamDownloader.1]   =>Toolbar.Wajam
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api.1]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers.1]   =>Adware.Yontoo
[HKLM\Software\Classes\AppID\escort.DLL]   =>PUP.Funmoods
[HKLM\Software\Classes\AppID\escortApp.DLL]   =>PUP.Funmoods
[HKLM\Software\Classes\AppID\escortEng.DLL]   =>PUP.Funmoods
[HKLM\Software\Classes\AppID\escorTlbr.DLL]   =>PUP.Funmoods
[HKLM\Software\Classes\AppID\YontooIEClient.DLL]   =>Adware.Yontoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe]   =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}]   =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}]   =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}]   =>PUP.SweetIM^
C:\Program Files (x86)\yontoo   =>Adware.Yontoo
C:\Program Files (x86)\Ask.com   =>Toolbar.AskBar
C:\Program Files (x86)\BabylonToolbar   =>Toolbar.Babylon
C:\Program Files (x86)\Boxore   =>Adware.Boxore
C:\Program Files (x86)\BrowserCompanion   =>PUP.Blabbers
C:\Program Files (x86)\iMesh Applications   =>PUP.iMesh
C:\Program Files (x86)\PricePeep   =>Toolbar.PricePeep
C:\Program Files (x86)\Software   =>Adware.Boxore
C:\Program Files (x86)\SweetIM   =>PUP.SweetIM
C:\ProgramData\Babylon   =>Toolbar.Babylon
C:\ProgramData\iMesh   =>PUP.iMesh
C:\ProgramData\SweetIM   =>PUP.SweetIM
C:\Users\Ludivine\AppData\Roaming\Babylon   =>Toolbar.Babylon
C:\Users\Ludivine\AppData\Roaming\OpenCandy   =>Adware.OpenCandy
C:\Users\Ludivine\AppData\Roaming\WebPlayerBdd   =>Adware.SocialSkinz
C:\Users\Ludivine\AppData\Local\Babylon   =>Toolbar.Babylon
C:\Users\Ludivine\AppData\Local\iMesh   =>PUP.iMesh
C:\Users\Ludivine\AppData\Local\lollipop   =>Adware.Lollipop
C:\Users\Ludivine\AppData\Local\moovida air   =>Adware.SPointer
C:\Users\Ludivine\AppData\Local\Software   =>Adware.Boxore
C:\Users\Ludivine\AppData\LocalLow\bbrs_002.tb   =>PUP.Blabbers
C:\Users\Ludivine\AppData\LocalLow\iMeshMediabarTb   =>PUP.iMesh
C:\Users\Ludivine\AppData\Local\Temp\AskSearch   =>Toolbar.AskBarDis
C:\Users\Ludivine\AppData\Local\Temp\BabylonToolbar   =>Toolbar.Babylon
C:\Users\Ludivine\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb   =>Toolbar.PricePeep
C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\tuca0tlc.default\Extensions\plugin@yontoo.com   =>Adware.Yontoo
C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\tuca0tlc.default\Extensions\ffxtlbr@babylon.com   =>Toolbar.Babylon
C:\Users\Ludivine\AppData\Roaming\Mozilla\Firefox\Profiles\tuca0tlc.default\Extensions\toolbar@ask.com   =>Toolbar.AskTBar
C:\Users\Ludivine\AppData\Local\Temp\yontoo-C4-02D4.log  =>Adware.Yontoo
C:\Users\Ludivine\AppData\Local\Temp\wajam_install.exe  =>Toolbar.Wajam
C:\Users\Ludivine\AppData\Local\Temp\iMesh_setup.exe  =>PUP.iMesh
~ Scan Additionnel in 00mn 29s



---\\ Recherche détournement de DNS routeur (O89) (None)

---\\ Product Upgrade Codes (O90)
O90 - PUC: "000021090200C0400000000000F01FEC" . (.Module de compatibilité pour Microsoft Office System 2007.) -- c:\Windows\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
O90 - PUC: "059103D1F2AE2884A90A9464776548A2" . (.SweetIM for Messenger 3.3.) -- C:\Windows\Installer\{1D301950-EA2F-4882-9AA0-49467756842A}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "144A4120BA4A8A34D8FEF2375C636437" . (.Microsoft Works.) -- c:\Windows\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\MSWorks.exe
O90 - PUC: "1C4235E6CF4867F4A9A36CE5708FE06E" . (.Complément Messenger.) -- C:\Windows\Installer\{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}\CompanionIcon
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "243493A986A4ABE4586A555B954F7E00" . (.Microsoft .NET Framework 1.1 French Language Pack.) -- C:\Windows\Installer\{9A394342-4A68-4EBA-85A6-55B559F4E700}\ndpsetup.ico
O90 - PUC: "467F76FB6B590634BB752B5EAAC618B4" . (.SweetIM Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\{BF67F764-95B6-4360-BB57-B2E5AA6C814B}\ARPPRODUCTICON.exe
O90 - PUC: "53DA59D5F8635D746BA30A28DD0F1061" . (.Microsoft Photo 2006 Standard Edition Retouche.) -- C:\Windows\Installer\{5D95AD35-368F-47D5-B63A-A082DDF00116}\PI_v11.exe
O90 - PUC: "5E677B270354B4C4493557D18FD7D939" . (.Backup Manager Basic.) -- C:\Windows\Installer\{72B776E5-4530-4C4B-9453-751DF87D9D93}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA7FFFFB7449A0100000010" . (.Adobe Reader 9.1 MUI.) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-A91000000001}\SC_Reader.ico
O90 - PUC: "6E715662668DD93419C98B1B5AE20608" . (.OpenOffice.org 3.2.) -- C:\Windows\Installer\{266517E6-D866-439D-919C-B8B1A52E6080}\soffice.ico
O90 - PUC: "7FD91B0E7C1B7394284CE0B4E1439656" . (.eBay Worldwide.) -- c:\Windows\Installer\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "8400816012E36D64A9199D72AB804FD1" . (.Encyclopédie Microsoft Encarta 2006.) -- C:\Windows\Installer\{06180048-3E21-46D6-9A91-D927BA08F41D}\ENC.ICO
O90 - PUC: "884FD4BEFEAAF6043A14BCA2AA13B509" . (.Windows Live Messenger.) -- C:\Windows\Installer\{EB4DF488-AAEF-406F-A341-CB2AAA315B90}\MsblIco.Exe
O90 - PUC: "9BB106980C8CD3949921DAF7159A813A" . (.Boxore Client.) -- C:\Windows\Installer\{89601BB9-C8C0-493D-9912-AD7F51A918A3}\boxore.ico
O90 - PUC: "9EBF5A643BDA39441ACC4BFCDF422DA6" . (.Windows Live Family Safety.) -- C:\Windows\Installer\{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}\fssicon.ico
O90 - PUC: "9F6C4F93A816B5E4F82BB66D1671E423" . (.Moniteur de la technologie Intel® Turbo Boost.) -- C:\Windows\Installer\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}\ARPPRODUCTICON.exe
O90 - PUC: "A0BC5702F62DAAD44B42059792B634AB" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{2075CB0A-D26F-4DAA-B424-5079296B43BA}\FolderShare48x48.ico
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.LimeWire Toolbar.) -- C:\Program Files (x86)\Ask.com\cobrand.ico
O90 - PUC: "B20BD48AB2C92724D9D28AE0005A5631" . (.Broadcom Gigabit NetLink Controller.) -- C:\Windows\Installer\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D83BC1B64E2E03a439D3FEEDAB67DAC9" . (.Microsoft Works.) -- C:\Windows\Installer\{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}\Win2Kico.exe
O90 - PUC: "E17A8F77515323848B2BF2E1BD2D0E1F" . (.Bing Bar.) -- C:\Windows\Installer\{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}\icon_installer_ico
O90 - PUC: "E309FE46A00DC414494ABF3A86FFDC9C" . (.SocialNetworkService.) -- C:\Windows\Installer\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\ARPPRODUCTICON.exe
O90 - PUC: "EAC13590681B9A944BF46C70CC45AFA2" . (.PDF Architect.) -- C:\Windows\Installer\{09531CAE-B186-49A9-B44F-C607CC54FA2A}\main_icon
O90 - PUC: "FA1FAD9D7B9D79343A6BFA2AD723D9BA" . (.Complément Microsoft Word pour Microsoft Works Suite.) -- C:\Windows\Installer\{D9DAF1AF-D9B7-4397-A3B6-AFA27D329DAB}\Win2Kico_WordAddin.exe
~ Scan Files in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Demand 09/10/2009 169312 |  (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
SR - | Demand  0 |  (aspnet_state) . (...) - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
SR - | Auto 30/10/2012 44808 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SR - | Demand 28/02/2011 183560 |  (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.exe
SR - | Auto 08/04/2010 312400 |  (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
SR - | Auto 17/03/2010 866336 |  (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
SR - | Demand 08/06/2010 867080 |  (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SR - | Demand 10/10/2009 238328 |  (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe
SR - | Auto 08/01/2010 23584 |  (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
SR - | Auto 25/12/2010 135664 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 25/12/2010 135664 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 21/08/2012 194032 |  (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 24/12/2009 13336 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Auto 18/03/2010 268824 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Demand 06/02/2013 115608 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Demand 15/01/2010 935208 |  (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 09/03/2010 250368 |  (NTI IScheduleSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
SR - | Auto 18/09/2012 1082016 |  (Orange update Core Service) . (.France Telecom SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
SR - | Auto 14/12/2012 1522912 |  (PDF Architect Helper Service) . (.pdfforge GbR.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
SR - | Auto 14/12/2012 906464 |  (PDF Architect Service) . (.pdfforge GbR.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
SR - | Auto 25/02/2011 249648 |  (SeaPort) . (.Microsoft Corporation.) - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.exe
SR - | Demand 02/11/2009 126352 |  (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
SR - | Auto 18/03/2010 2320920 |  (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 29/01/2010 243232 |  (Updater Service) . (.Acer Group.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
SR - | Auto 05/10/2012 109064 |  (WajamUpdater) . (.Wajam.) - C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 03s



---\\ Recherche Master Boot Record Infection (MBR)(O80) (None)

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) (None)

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
~ Scan Emulateurs in 00mn 04s



End of the scan (1702 lines in 04mn 34s)(0)