Rapport de ZHPDiag v1.3.5.60 par Nicolas Coolman, Update du 2013-02-12 Run by Normand at 2013-02-12 14:35:04 State : Version à jour. UAC : Deactivate by program ---\\ Web Browser MSIE: Internet Explorer v9.10.9200.16453 MFIE: Mozilla Firefox 18.0.2 v18.0.2 (Defaut) ---\\ Windows Product Information ~ Langage: Français Windows 8 Business Edition, 64-bit (Build 9200) Windows Server License Manager Script : OK ~ ion : Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : 8HRFQ Windows License : OK ~ Windows Remaining Initializations Number : 1000 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Information ~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3835 MB (62% free) System Restore: Activé (Enable) System drive C: has 337 GB (72%) free of 466 GB ---\\ Logged in mode ~ Computer Name: NORMAND-PC ~ User Name: Normand ~ All Users Names: Normand, HomeGroupUser$, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Normand\AppData\Roaming\ ~ %Desktop% : C:\Users\Normand\Desktop\ ~ %Favorites% : C:\Users\Normand\Favorites\ ~ %LocalAppData% : C:\Users\Normand\AppData\Local\ ~ %StartMenu% : C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 337 Go of 466 Go) D:\ CD-ROM drive (Not Inserted) E:\ Hard drive, Flash drive, Thumb drive (Free 190 Go of 465 Go) F:\ Hard drive, Flash drive, Thumb drive (Free 371 Go of 465 Go) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Scan Security Center in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.E13A31D5254C25406A7946BDD9B06364] - (.Microsoft Corporation - Explorateur Windows.) (.2012-10-11 - 02:35:16.) -- C:\Windows\Explorer.exe [2380944] [MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.2012-07-25 - 22:08:50.) -- C:\Windows\System32\Wininit.exe [132608] [MD5.AAEF73606F58ADE710208F4B1B988FBF] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.2012-11-07 - 23:22:19.) -- C:\Windows\System32\wininet.dll [2246656] [MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.2012-10-11 - 00:46:58.) -- C:\Windows\System32\Winlogon.exe [517120] [MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.2012-07-25 - 22:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408] [MD5.36D6A3201721558A8AFBCC09C2DA4C2C] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.2012-11-05 - 22:53:44.) -- C:\Windows\system32\Drivers\AFD.sys [560640] [MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.2012-07-26 - 00:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840] [MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2012-07-25 - 21:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544] [MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2012-07-25 - 21:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080] [MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.2012-07-25 - 21:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784] [MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.2012-09-20 - 01:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168] [MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.2012-07-25 - 21:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640] [MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.2012-07-25 - 21:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920] [MD5.877D60D6E4156EC4A2E0B6871D41BED9] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.2012-11-05 - 22:52:49.) -- C:\Windows\system32\Drivers\MRxSmb.sys [366080] [MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.2012-07-25 - 21:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776] [MD5.4A7EEA9C4AD5CBFDA3C0E5B821C99CAD] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.2012-07-26 - 00:26:46.) -- C:\Windows\system32\Drivers\ntfs.sys [1934064] [MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.2012-07-25 - 21:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984] [MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2012-07-25 - 21:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928] [MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.2012-07-25 - 21:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712] [MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.2012-07-26 - 00:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248] [MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.2012-07-25 - 23:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016] ~ Scan Generic Processes in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 3/1276 ~ Mes musiques (My Musics) : 1/3977 ~ Mes Videos (My Videos) : 2/4 ~ Mes Favoris (My Favorites) : 1/22 ~ Mes Documents (My Documents) : 3/694 ~ Mon Bureau (My Desktop) : 1/79 ~ Menu demarrer (Programs) : 1/33 ~ Scan Hidden Files in 00mn 02s ---\\ Processus lancés [MD5.01B64830DE6341004AC00EB8CC302DA0] - (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [403816] [PID.4312] [MD5.BAF49F90F6F5C212F16A3953335ED8A6] - (...) -- C:\Program Files (x86)\Le Robert\Le Petit Robert\PRHYPER.exe [22560] [PID.4452] [MD5.08E6495D47C6F1E9E73EA389794C6058] - (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe [943168] [PID.4896] [MD5.A387D093B66727BF3EDF517E2F4D87C5] - (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe [1466760] [PID.4968] [MD5.A742C935B7411B5CA568484D25BB855D] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6048408] [PID.5116] [MD5.85A1CBD87834A43F9E4A48E9F922B61E] - (.Acronis - Acronis TIB Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [943560] [PID.3744] [MD5.C25EC8FFD59E83D6FCF8E2EBE352C2F9] - (.Emsisoft GmbH - Background Guard.) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [3363752] [PID.4704] [MD5.C32E458C8DDB46220C2D9C7807EC1A3F] - (.Schneider Electric - PowerChute System Tray Power Icon.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe [673144] [PID.4396] [MD5.8906FFADDF99ACCB5C751E75E879481F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5676032] [PID.3652] [MD5.311A0D6F7477051A153479C090B4386D] - (.Emsisoft GmbH - Emsisoft Anti-Malware Service.) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [3089320] [PID.816] [MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1848] [MD5.6342D0CE8D68D93C37F8D79A2D5539AD] - (.Acronis - File Level CDP Manager Service.) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [3717112] [PID.1872] [MD5.C7F8C8080B055B3DE9A8141DFD8E308A] - (.Schneider Electric - Battery Backup Management Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [705912] [PID.1900] [MD5.AD4FAADE819E0DA9933BEA7C01D2C763] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [913144] [PID.1568] [MD5.4C279F23F88E0854CE94731E55BF6E77] - (.iolo technologies, LLC - iolo System component.) -- C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [1053184] [PID.1504] [MD5.E38775922D4A4C05B5D96733AB4CE169] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2232] [MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184] [PID.2320] [MD5.87D4BC51A2E4C5696250BF45DB31CBEF] - (.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7026408] [PID.2656] [MD5.107AB19CC1D40B9D04537F6EEAAC34C9] - (.Schneider Electric - PowerChute Data Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [21880] [PID.2784] [MD5.20F89E232173985A455BC9A5F70D1166] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files (x86)\Canon\CAL\CALMAIN.exe [96341] [PID.2848] [MD5.02C298382359653BEC4C737C2AB7F9C5] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.5396] ~ Scan Processes Running in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Normand\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] None G0 - GCSP: Preference [User Data\Default][HomePage] http://sites.google.com ~ Scan Google Browser in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\snlm08pb.default\prefs.js C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\v8i3kvtq.default\prefs.js M3 - MFPP: Plugins - [Normand] -- C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\snlm08pb.default\searchplugins\bing.xml M3 - MFPP: Plugins - [Normand] -- C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\v8i3kvtq.default\searchplugins\bing.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\McSiteAdvisor.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml M0 - MFSP: prefs.js [Normand - snlm08pb.default] http://tvunderground.org.ru M0 - MFSP: prefs.js [Normand - v8i3kvtq.default] http://tvunderground.org.ru M2 - MFEP: prefs.js [Normand - snlm08pb.default\fr@dictionaries.addons.mozilla.org] [] Dictionnaire français «Réforme 1990» v3.5 (.Olivier R..) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}] [] Garmin Communicator v4.0.4 (.Garmin International.) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{2f17f610-5e97-4fed-828f-9940b7b577a4}] [] TV-Fox v18.0.0 (.tv-fox Inc..) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20110512W (.Google Inc..) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{40a1f5d7-afc2-498f-b264-02668d616ff6}] [] Mega Manager Integration v1.1 (.Megaupload Limited.) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.5.1.20121011034613 (.Yahoo!.) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{95f24680-9e31-11da-a746-0800200c9a66}] [] Update Notifier v0.1.5.5 (.Todd Long <longfocus@gmail.com>.) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{9814c216-0476-4bcc-8f17-53978e414586}] [] Cookie Button in the status bar v0.1.5.5 (.basic (Pang Lih Wuei).) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{bb628310-0ab7-11db-9cd8-0800200c9a66}(159)] [] Ma-config.com v2.0.4.2 (.charon@ma-config.com.) M2 - MFEP: prefs.js [Normand - snlm08pb.default\{DB01DE64-5ECB-4043-A2AF-216932D03DC2}] [] Net Usage ISP Definitions Canada v1.2.222.1 (.^critter.) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\fr@dictionaries.addons.mozilla.org] [] Dictionnaire français «Réforme 1990» v3.5 (.Olivier R..) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}] [] Garmin Communicator v4.0.4 (.Garmin International.) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{2f17f610-5e97-4fed-828f-9940b7b577a4}] [] TV-Fox v17.0.0 (.tv-fox Inc..) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20110512W (.Google Inc..) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{40a1f5d7-afc2-498f-b264-02668d616ff6}] [] Mega Manager Integration v1.1 (.Megaupload Limited.) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.5.1.20121011034613 (.Yahoo!.) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{95f24680-9e31-11da-a746-0800200c9a66}] [] Update Notifier v0.1.5.5 (.Todd Long <longfocus@gmail.com>.) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{9814c216-0476-4bcc-8f17-53978e414586}] [] Cookie Button in the status bar v0.1.5.5 (.basic (Pang Lih Wuei).) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{bb628310-0ab7-11db-9cd8-0800200c9a66}(159)] [] Ma-config.com v2.0.4.2 (.charon@ma-config.com.) M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{DB01DE64-5ECB-4043-A2AF-216932D03DC2}] [] Net Usage ISP Definitions Canada v1.2.222.1 (.^critter.) P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.5.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_5_502_149.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ~ Scan Firefox Browser in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {bb45ef8e-1e36-4535-a017-ec908fb1e335} . (. Microsoft Corporation - 5.1.10411.0.) (No version) -- (.not file.) R3 - URLSearchHook: SearchHook Class [64Bits] - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} . (.DeviceVM, Inc. - Browser Configuration Utility Address Bar S.) (1.1.11.0) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll ~ Scan BHO in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe O4 - HKLM\..\Run: [EKIJ5000StatusMonitor] . (.Eastman Kodak Company - Status Monitor for KODAK AiO Printer (64-Bi.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [IntelliType Pro] . (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe O4 - HKCU\..\Run: [Le Petit Robert Hyperappel] . (...) -- C:\Program Files (x86)\Le Robert\Le Petit Robert\prhyper.exe O4 - HKLM\..\Wow6432Node\Run: [4623FW Scan2PC] . (.Pas de propriétaire - ScanToPc MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Scan2Pc.exe O4 - HKLM\..\Wow6432Node\Run: [agentantidote.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe O4 - HKLM\..\Wow6432Node\Run: [Garmin Lifetime Updater] . (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe O4 - HKLM\..\Wow6432Node\Run: [AcronisTibMounterMonitor] . (.Acronis - Acronis TIB Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Wow6432Node\Run: [emsisoft anti-malware] . (.Emsisoft GmbH - Background Guard.) -- c:\program files (x86)\emsisoft anti-malware\a2guard.exe O4 - HKUS\S-1-5-21-3870268597-1266574348-704908771-1000\..\Run: [Le Petit Robert Hyperappel] . (...) -- C:\Program Files (x86)\Le Robert\Le Petit Robert\prhyper.exe ~ Scan Application in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\ConvertXtoDVD 5.lnk . (.VSO Software SARL.) -- C:\Program Files (x86)\VSO\ConvertX\5\ConvertXtoDvd.exe O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\Downloads.lnk . (...) -- C:\Users\Normand\Downloads O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\MyBookWorld (192.168.0.195).lnk - Clé orpheline O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\System Mechanic.lnk . (.iolo technologies, LLC.) -- C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\WD (E) - Raccourci.lnk - Clé orpheline O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\WD Discovery.lnk . (...) -- C:\Program Files (x86)\Western Digital\WD Discovery Software\WD Discovery.exe O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\WD2 (F) - Raccourci.lnk - Clé orpheline ~ Scan Global Startup in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ Scan IE Control Panel in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll ~ Scan Winsock in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{3B53EE31-F4F9-428D-A05B-DF2A5C9D4325}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{73599DA2-B571-4403-9D8F-F8DADF8B828F}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{3B53EE31-F4F9-428D-A05B-DF2A5C9D4325}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{73599DA2-B571-4403-9D8F-F8DADF8B828F}: DhcpNameServer = 192.168.0.1 ~ Scan Domain in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) -- O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll ~ Scan Protocole Additionnel in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll ~ Scan Winlogon in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ Scan SSODL in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Emsisoft Anti-Malware 7.0 - Service (a2AntiMalware) . (.Emsisoft GmbH - Emsisoft Anti-Malware Service.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: APC Data Service (APC Data Service) . (.Schneider Electric - PowerChute Data Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe O23 - Service: APC UPS Service (APC UPS Service) . (.Schneider Electric - Battery Backup Management Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe O23 - Service: Diskeeper (Diskeeper) . (.Condusiv Technologies - Diskeeper Disk Optimization Service.) - C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe O23 - Service: iolo System Service (ioloSystemService) . (.iolo technologies, LLC - iolo System component.) - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Acronis Sync Agent Service (syncagentsrv) . (.Acronis - TrueImage Sync Agent Service.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe O23 - Service: Intel(R) Management & Security Applicati (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) ~ Scan Services in 00mn 05s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\\ BootExecute (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (autocheck auto_reactivate \\?\Volume{2a03ca1d-0390-11e0-8c47-806e6f6e6963}\bootwiz\asrm.bin) - File not found O34 - HKLM BootExecute: (autocheck AT) - File not found ~ Scan Keys in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [MD5.EC807244904FA170C299AB06D87FBDBE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [MD5.9CE3B11704038F711481ACD6BD9A9A5A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [MD5.00000000000000000000000000000000] [APT] [Microsoft_Hardware_Launch_devicecenter_exe] (...) -- C:\Program Files\Microsoft Device Center\devicecenter.exe (.not file.) [MD5.19C2F2BE3C606B8E649935A2B5682C62] [APT] [Microsoft_Hardware_Launch_mousekeyboardcenter_exe] (.Microsoft.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [MD5.00000000000000000000000000000000] [APT] [{025A900B-AC69-41AE-B945-AD09BE404F99}] (...) -- C:\Users\Normand\Downloads\setup_x64(3).exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{1E863416-DC3D-493C-BE16-D15A936252C2}] (...) -- C:\Users\Normand\Downloads\lide20lide30n670un676un1240uvst7031a_xpen\SetupSG.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{293B3A47-7FFF-4E7E-9CA3-BD31B0AF03CA}] (...) -- C:\Program Files (x86)\Skype\Phone\Skype.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{4509CE95-EDB4-483A-975B-00E099409386}] (...) -- C:\Program Files (x86)\Skype\Phone\Skype.exe (.not file.) [MD5.D90F403153EA3EF43A95F15C2DAC298A] [APT] [{49914EAD-DB7E-43D6-8D11-625A869E1E94}] (.Condusiv Technologies.) -- C:\Users\Normand\Diskeeper\Diskeeper Home Edition\Autorun.exe [MD5.46167154C2A8CA85FA68FB8292FF1948] [APT] [{68AEC0B6-B293-4767-9C2B-DB901D63E64F}] (.Diskeeper Corporation.) -- C:\Users\Normand\Diskeeper\Diskeeper Home Edition\Diskeeper2010_Home.exe [MD5.36F90215D68FB29F247B2A76E1D651A5] [APT] [{6F5C69AE-6DCC-4517-B820-4858EB1D1B15}] (.Schneider Electric.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\PowerChute.exe [MD5.4A40A2E3DDB42643FCFA6186FE7AB196] [APT] [{71FECE59-D302-40EA-99CE-7943D8F26B48}] (.Schneider Electric.) -- C:\Users\Normand\Downloads\PCPEInstaller.exe [MD5.36F90215D68FB29F247B2A76E1D651A5] [APT] [{795DC5B8-4D99-44E8-8D21-7115AF5951DA}] (.Schneider Electric.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\PowerChute.exe [MD5.7F93F0BA9D47F0E6C725601AF288E18A] [APT] [{9EC37C8E-7705-4BF1-A8E5-844FE0BFCD26}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Thunderbird\uninstall\helper.exe [MD5.00000000000000000000000000000000] [APT] [{9EE16F57-7FE0-4788-8DA3-ADB0A8C78B75}] (...) -- D:\WD_Windows_Tools\WDsetup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{C7B9D11D-7E55-45F1-8020-80460745F4A6}] (...) -- C:\Users\Normand\AppData\Local\M‚t‚oM‚dia\M‚t‚oclair\WeatherEye.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{F09054DD-060E-418D-B84E-F79ABFBDCF45}] (...) -- C:\Users\Normand\AppData\Local\Temp\Temp1_Visuel_integre_Windows.zip\Visuel_integre_Windows\Installe Visuel int‚gr‚.exe (.not file.) [MD5.CE1684B99FBC3F322EEE8CBD2465FADA] [APT] [{FF9F357D-63DA-4898-ADBA-A666CDC8BE16}] (.VSO Software SARL.) -- C:\Program Files (x86)\VSO\ConvertX\3\ConvertXtoDvd.exe ~ Scan Scheduled Task in 00mn 05s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll ~ Scan Active Setup in 00mn 00s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (A2DDA) . (.Emsi Software GmbH - Emsisoft Direct Disk Access Support Driver.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys O41 - Driver: (a2injectiondriver) . (.Emsisoft GmbH - Emsisoft Anti-Malware Behavior Blocker.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys O41 - Driver: (a2util) . (.Emsi Software GmbH - a-squared Malware-IDS utility driver.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (AppleCharger) . (...) - C:\Windows\System32\DRIVERS\AppleCharger.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (eamonm) . (.ESET - Amon monitor.) - C:\Windows\System32\DRIVERS\eamonm.sys O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys O41 - Driver: (ElRawDisk) . (.EldoS Corporation - RawDisk Driver. Allows write access to file.) - C:\Windows\system32\drivers\ElRawDsk.sys O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys ~ Scan Drivers in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader X (10.1.5) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} O42 - Logiciel: Antidote HD - (.Druide informatique inc..) [HKLM][64Bits] -- {56CDB4FE-895F-4E0D-8BB4-9A8D4310898D} O42 - Logiciel: Browser Configuration Utility - (.DeviceVM.) [HKLM][64Bits] -- {5B363E1D-8C36-4458-BAE4-D5081999E094} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: CPUID CPU-Z 1.56 - (.Pas de propriétaire.) [HKLM][64Bits] -- CPUID CPU-Z_is1 O42 - Logiciel: Canon Camera Access Library - (.Pas de propriétaire.) [HKLM][64Bits] -- CAL O42 - Logiciel: Canon Camera Window DC_DV 6 for ZoomBrowser EX - (.Pas de propriétaire.) [HKLM][64Bits] -- CameraWindowDVC6 O42 - Logiciel: Canon Camera Window MC 6 for ZoomBrowser EX - (.Pas de propriétaire.) [HKLM][64Bits] -- CameraWindowMC O42 - Logiciel: Canon G.726 WMP-Decoder - (.Pas de propriétaire.) [HKLM][64Bits] -- Canon G.726 WMP-Decoder O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Pas de propriétaire.) [HKLM][64Bits] -- MovieEditTask O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Pas de propriétaire.) [HKLM][64Bits] -- RAW Image Task O42 - Logiciel: Canon RemoteCapture Task for ZoomBrowser EX - (.Pas de propriétaire.) [HKLM][64Bits] -- RemoteCaptureTask O42 - Logiciel: Canon Utilities EOS Utility - (.Pas de propriétaire.) [HKLM][64Bits] -- EOS Utility O42 - Logiciel: Canon Utilities PhotoStitch - (.Pas de propriétaire.) [HKLM][64Bits] -- PhotoStitch O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Pas de propriétaire.) [HKLM][64Bits] -- ZoomBrowser EX O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center O42 - Logiciel: Consommation Internet Vidéotron - (.CodexMundus.com.) [HKLM][64Bits] -- {923DAA43-CC71-403E-B04E-97FE561C8C93} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: Diskeeper 12 - (.Condusiv Technologies.) [HKLM][64Bits] -- {1A6D6767-B771-4752-81C2-1CC30BE941BA} O42 - Logiciel: Désinstaller Le Petit Robert de la langue française - (.Pas de propriétaire.) [HKLM][64Bits] -- Le Petit Robert O42 - Logiciel: Emsisoft Anti-Malware - (.Emsisoft GmbH.) [HKLM][64Bits] -- {BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1 O42 - Logiciel: Garmin City Navigator North America NT 2012.10 Update - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {48D66137-C7A6-4890-8316-534CFF3688EA} O42 - Logiciel: Garmin Communicator Plugin x64 - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {550331CC-C34B-494F-BCDA-37CE4EF6E924} O42 - Logiciel: Garmin Lifetime Updater - (.Garmin.) [HKLM][64Bits] -- {9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521} O42 - Logiciel: Garmin MapInstall - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {6C650BDC-DB9A-4D7C-9AAF-FFF94C336C0B} O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {510D2239-6C2E-457B-9590-485EC552D94D} O42 - Logiciel: ImpôtRapide 2010 - (.Intuit Canada.) [HKLM][64Bits] -- {4D6B46F2-A261-44CA-A7F5-1FEA4EFBEB59} O42 - Logiciel: ImpôtRapide 2011 - (.Intuit Canada.) [HKLM][64Bits] -- {4FEE3953-CE3D-4D46-8835-2FF0D5F64098} O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: LockHunter version 1.0 beta 3, 64 bit edition - (.Crystal Rich, Ltd.) [HKLM][64Bits] -- LockHunter_is1 O42 - Logiciel: Logiciel Home Center pour imprimante multifonction KODAK - (.Eastman Kodak Company.) [HKLM][64Bits] -- {E0F274B7-592B-4669-8FB8-8D9825A09858} O42 - Logiciel: Logitech SetPoint 6.20 - (.Logitech.) [HKLM][64Bits] -- sp6 O42 - Logiciel: MSVC80_x64_v2 - (.Nokia.) [HKLM][64Bits] -- {4D668D4F-FAA2-4726-834C-31F4614F312E} O42 - Logiciel: MSVC80_x86_v2 - (.Nokia.) [HKLM][64Bits] -- {6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6} O42 - Logiciel: MSVC90_x64 - (.Nokia.) [HKLM][64Bits] -- {AB071C8B-873C-459F-ACA9-9EBE03C3E89B} O42 - Logiciel: MSVC90_x86 - (.Nokia.) [HKLM][64Bits] -- {AF111648-99A1-453E-81DD-80DBBF6DAD0D} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Maintenance de Samsung SCX-4623FW Series - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- Samsung SCX-4623FW Series O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: MesNews - (.Arnaud (MesNews).) [HKLM][64Bits] -- MesNews_is1 O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Mozilla Firefox 18.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 18.0.2 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: Mozilla Thunderbird 17.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 17.0.2 (x86 fr) O42 - Logiciel: ON_OFF Charge B10.0301.1 - (.GIGABYTE.) [HKLM][64Bits] -- {3DECD372-76A1-4483-BF10-B547790A3261} O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM][64Bits] -- {7390478C-8581-415E-92E9-2997D9306B81} O42 - Logiciel: PDF Creator - (.Pas de propriétaire.) [HKLM][64Bits] -- PDF Creator O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2 - (.Nokia.) [HKLM][64Bits] -- 62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F O42 - Logiciel: PlayStation(R)Network Downloader - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {B6659DD8-00A7-4A24-BBFB-C1F6982E5D66} O42 - Logiciel: PlayStation(R)Store - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {0E532C84-4275-41B3-9D81-D4A1A20D8EE7} O42 - Logiciel: PowerChute Personal Edition 3.0.2 - (.Schneider Electric.) [HKLM][64Bits] -- {8ED262EE-FC73-47A9-BB86-D92223246881} O42 - Logiciel: PreReq - (.Eastman Kodak Company.) [HKLM][64Bits] -- {DA5BDB2A-12F0-4343-8351-21AAEB293990} O42 - Logiciel: PrintKey 2000 Fr - (.Pas de propriétaire.) [HKLM][64Bits] -- PrintKey 2000 Fr O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: True Image 2013 - (.Acronis.) [HKLM][64Bits] -- {500FD1D4-D3FC-44A0-8187-66B6BD167B48} O42 - Logiciel: True Image 2013 - (.Acronis.) [HKLM][64Bits] -- {500FD1D4-D3FC-44A0-8187-66B6BD167B48}Visible O42 - Logiciel: VSO ConvertXToDVD - (.VSO-Software SARL.) [HKLM][64Bits] -- {CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1 O42 - Logiciel: VSO Downloader 2.9.11.8 - (.VSO Software.) [HKLM][64Bits] -- {DB70FB55-1515-4C75-95C8-FFBD5FE041F8}_is1 O42 - Logiciel: ViewSonic Monitor Drivers - (.Pas de propriétaire.) [HKLM][64Bits] -- {B4FEA924-630D-11D4-B78E-005004566E4D} O42 - Logiciel: Visuel intégré - (.Druide informatique inc..) [HKLM][64Bits] -- {D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF} O42 - Logiciel: WinRAR 4.01 (32 bits) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0 - (.Garmin.) [HKLM][64Bits] -- 49CF605F02C7954F4E139D18828DE298CD59217C O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} O42 - Logiciel: aiofw - (.Eastman Kodak Company.) [HKLM][64Bits] -- {DE6B7599-D3EF-4436-8836-BAA0B0D7768D} O42 - Logiciel: aioprnt - (.Eastman Kodak Company.) [HKLM][64Bits] -- {0645A454-AD44-4F0D-99CF-6B762735AD1F} O42 - Logiciel: aioscnnr - (.Your Company Name.) [HKLM][64Bits] -- {FE24086F-3B0C-4C47-A874-97A7B8E2FBBE} O42 - Logiciel: center - (.Eastman Kodak Company.) [HKLM][64Bits] -- {56BA241F-580C-43D2-8403-947241AAE633} O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM][64Bits] -- eMule O42 - Logiciel: iolo technologies' System Mechanic - (.iolo technologies, LLC.) [HKLM][64Bits] -- {55FD1D5A-7AEF-4DA3-8FAF-A71B2A52FFC7}_is1 ---\\ HKCU & HKLM Software Keys [HKCU\Software\3rd Eye Solutions] [HKCU\Software\APC] [HKCU\Software\Acronis] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\ArcSoft] [HKCU\Software\CDDB] [HKCU\Software\Canon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CodeGear] [HKCU\Software\Convar] [HKCU\Software\DeviceVM] [HKCU\Software\Digital River] [HKCU\Software\DownloadCenter] [HKCU\Software\Druide informatique inc.] [HKCU\Software\ESET] [HKCU\Software\EasyBits] [HKCU\Software\Garmin] [HKCU\Software\Google] [HKCU\Software\IdeoSi] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Lavalys] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LockHunter] [HKCU\Software\LogiShrd] [HKCU\Software\Logitech] [HKCU\Software\MCAFEE] [HKCU\Software\MMTWN] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\Nokia] [HKCU\Software\ODBC] [HKCU\Software\Panda Security] [HKCU\Software\Panda Software] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\PrintKey2000] [HKCU\Software\Pure Networks] [HKCU\Software\Realtek] [HKCU\Software\RegisteredApplications] [HKCU\Software\SSPrint] [HKCU\Software\SSScan] [HKCU\Software\Samsung] [HKCU\Software\SkypeApps] [HKCU\Software\Skype] [HKCU\Software\TeamViewer] [HKCU\Software\Trolltech] [HKCU\Software\VSO] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\Yahoo] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\eMule] [HKCU\Software\iolo] [HKLM\Software\ATI Technologies] [HKLM\Software\Acronis] [HKLM\Software\Alienware] [HKLM\Software\CUSTPDF Writer] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Diskeeper Corporation] [HKLM\Software\ESET] [HKLM\Software\Intel] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\McAfee.com] [HKLM\Software\McAfee] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\PC Connectivity Solution] [HKLM\Software\Panda Software] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\SSPrint] [HKLM\Software\Samsung] [HKLM\Software\Sonic] [HKLM\Software\Waves Audio] [HKLM\Software\Wow6432Node\781] [HKLM\Software\Wow6432Node\APC] [HKLM\Software\Wow6432Node\AceBIT] [HKLM\Software\Wow6432Node\Acronis] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\Canon] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\Data Fellows] [HKLM\Software\Wow6432Node\DeviceVM] [HKLM\Software\Wow6432Node\Druide informatique inc.] [HKLM\Software\Wow6432Node\ESET] [HKLM\Software\Wow6432Node\Eastman Kodak Company] [HKLM\Software\Wow6432Node\Eastman Kodak] [HKLM\Software\Wow6432Node\GIGABYTE] [HKLM\Software\Wow6432Node\GPL Ghostscript] [HKLM\Software\Wow6432Node\Garmin] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\JreMetrics] [HKLM\Software\Wow6432Node\Kodak] [HKLM\Software\Wow6432Node\Le Robert] [HKLM\Software\Wow6432Node\Logitech] [HKLM\Software\Wow6432Node\MAGIX] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\McAfee.com] [HKLM\Software\Wow6432Node\McAfee] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\Nokia] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\PC Connectivity Solution] [HKLM\Software\Wow6432Node\Panda Software] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\SOFTWARE] [HKLM\Software\Wow6432Node\SSScan] [HKLM\Software\Wow6432Node\Samsung] [HKLM\Software\Wow6432Node\Sensible Vision] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\SoftVTU] [HKLM\Software\Wow6432Node\Sony Corporation] [HKLM\Software\Wow6432Node\Sony] [HKLM\Software\Wow6432Node\TeamViewer] [HKLM\Software\Wow6432Node\VSO] [HKLM\Software\Wow6432Node\ViewSonic Corporation] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\WinRAR] [HKLM\Software\Wow6432Node\Windows] [HKLM\Software\Wow6432Node\iolo] [HKLM\Software\Wow6432Node\logishrd] [HKLM\Software\Wow6432Node\midicairus] [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node] ~ Scan Softwares in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 2012-11-03 - 19:10:22 - [141,745] ----D C:\Program Files (x86)\Acronis O43 - CFD: 2011-08-11 - 10:24:37 - [113,547] ----D C:\Program Files (x86)\Adobe O43 - CFD: 2012-06-07 - 19:09:23 - [19,264] ----D C:\Program Files (x86)\APC O43 - CFD: 2011-08-24 - 11:47:42 - [0] ----D C:\Program Files (x86)\ArcSoft O43 - CFD: 2011-08-24 - 11:46:33 - [112,993] ----D C:\Program Files (x86)\Canon O43 - CFD: 2011-05-26 - 16:19:45 - [6,614] ----D C:\Program Files (x86)\CodexMundus.com O43 - CFD: 2013-02-12 - 13:38:25 - [468,917] ----D C:\Program Files (x86)\Common Files O43 - CFD: 2010-12-13 - 18:20:30 - [6,869] ----D C:\Program Files (x86)\Convar O43 - CFD: 2010-12-08 - 18:43:30 - [1,163] --H-D C:\Program Files (x86)\DeviceVM O43 - CFD: 2012-03-21 - 10:20:42 - [820,013] ----D C:\Program Files (x86)\Druide O43 - CFD: 2013-02-12 - 14:34:44 - [271,128] ----D C:\Program Files (x86)\Emsisoft Anti-Malware O43 - CFD: 2013-01-15 - 17:03:21 - [10,401] ----D C:\Program Files (x86)\eMule O43 - CFD: 2012-09-10 - 17:01:42 - [158,767] ----D C:\Program Files (x86)\Garmin O43 - CFD: 2010-12-08 - 18:46:41 - [0,045] ----D C:\Program Files (x86)\GIGABYTE O43 - CFD: 2012-10-14 - 13:19:12 - [7,701] ----D C:\Program Files (x86)\GPLGS O43 - CFD: 2011-04-16 - 06:53:23 - [15,900] ----D C:\Program Files (x86)\Help O43 - CFD: 2011-03-22 - 12:45:08 - [83,500] ----D C:\Program Files (x86)\ImpotRapide 2010 O43 - CFD: 2012-03-19 - 09:03:39 - [75,401] ----D C:\Program Files (x86)\ImpotRapide 2011 O43 - CFD: 2013-01-18 - 23:20:51 - [14,390] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2011-10-03 - 07:53:33 - [14,281] ----D C:\Program Files (x86)\Intel O43 - CFD: 2012-12-12 - 09:14:46 - [4,620] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 2011-12-22 - 18:16:30 - [33,258] ----D C:\Program Files (x86)\iolo O43 - CFD: 2010-12-16 - 14:15:10 - [158,577] ----D C:\Program Files (x86)\Kodak O43 - CFD: 2010-12-10 - 12:17:57 - [551,170] ----D C:\Program Files (x86)\Le Robert O43 - CFD: 2011-10-03 - 07:59:30 - [2,779] ----D C:\Program Files (x86)\LogiShrd O43 - CFD: 2013-01-17 - 09:01:35 - [0] ----D C:\Program Files (x86)\Logitech O43 - CFD: 2013-02-12 - 08:44:49 - [12,242] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 2013-01-18 - 22:36:56 - [6,067] ----D C:\Program Files (x86)\MesNews O43 - CFD: 2010-12-11 - 00:11:15 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 2011-06-29 - 06:59:07 - [359,620] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 2012-05-08 - 18:39:41 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 2011-10-18 - 17:17:08 - [3,554] ----D C:\Program Files (x86)\Microsoft Works O43 - CFD: 2012-10-27 - 13:01:25 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2012-03-23 - 20:38:27 - [0] ----D C:\Program Files (x86)\midicairus O43 - CFD: 2013-02-05 - 22:12:48 - [45,624] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2013-02-06 - 18:04:57 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2013-01-22 - 22:01:03 - [43,368] ----D C:\Program Files (x86)\Mozilla Thunderbird O43 - CFD: 2012-10-27 - 12:43:29 - [0,025] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 2011-08-09 - 06:58:01 - [0] ----D C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 2013-01-18 - 23:19:40 - [0] ----D C:\Program Files (x86)\Nokia O43 - CFD: 2013-01-18 - 22:37:06 - [19,356] ----D C:\Program Files (x86)\PC Connectivity Solution O43 - CFD: 2013-01-26 - 07:34:05 - [11,038] ----D C:\Program Files (x86)\PDFCreator O43 - CFD: 2011-01-18 - 15:32:40 - [0,870] ----D C:\Program Files (x86)\PrintKey 2000 Fr O43 - CFD: 2010-12-08 - 18:45:28 - [5,138] ----D C:\Program Files (x86)\Realtek O43 - CFD: 2012-10-27 - 12:43:29 - [36,536] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2011-08-08 - 13:28:59 - [82,699] ----D C:\Program Files (x86)\Samsung O43 - CFD: 2011-08-08 - 13:26:54 - [10,012] ----D C:\Program Files (x86)\SamsungPrinterLiveUpdate O43 - CFD: 2013-01-18 - 23:17:47 - [219,193] ----D C:\Program Files (x86)\Sony O43 - CFD: 2012-10-28 - 13:52:38 - [144,632] ----D C:\Program Files (x86)\Sony Media Go Install O43 - CFD: 2013-01-18 - 22:33:33 - [1,912] ----D C:\Program Files (x86)\TeamViewer O43 - CFD: 2010-12-08 - 18:45:40 - [0] --H-D C:\Program Files (x86)\Temp O43 - CFD: 2009-07-13 - 23:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information O43 - CFD: 2011-12-09 - 14:05:32 - [0,558] ----D C:\Program Files (x86)\viewsonic O43 - CFD: 2013-01-20 - 19:02:26 - [82,802] ----D C:\Program Files (x86)\VSO O43 - CFD: 2011-03-25 - 17:16:45 - [5,589] ----D C:\Program Files (x86)\Western Digital O43 - CFD: 2012-07-26 - 05:08:59 - [0,870] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 2012-05-01 - 09:49:01 - [63,541] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 2012-07-26 - 05:08:59 - [5,466] ----D C:\Program Files (x86)\Windows Mail O43 - CFD: 2012-10-27 - 18:12:37 - [3,494] ----D C:\Program Files (x86)\Windows Media Player O43 - CFD: 2012-07-26 - 03:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 2012-07-26 - 03:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 2012-07-26 - 05:08:59 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2012-07-26 - 03:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2012-10-27 - 13:01:27 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2012-07-13 - 07:22:10 - [3,865] ----D C:\Program Files (x86)\WinRAR O43 - CFD: 2013-02-12 - 14:35:10 - [11,466] ----D C:\Program Files (x86)\ZHPDiag O43 - CFD: 2012-11-03 - 19:10:46 - [175,891] ----D C:\Program Files (x86)\Common Files\Acronis O43 - CFD: 2011-08-11 - 10:24:39 - [3,797] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2010-12-19 - 12:42:00 - [0,734] ----D C:\Program Files (x86)\Common Files\Canon O43 - CFD: 2010-12-10 - 16:06:51 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 2011-01-28 - 15:32:00 - [7,095] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2011-01-28 - 17:19:20 - [3,095] ----D C:\Program Files (x86)\Common Files\Intuit O43 - CFD: 2013-01-17 - 09:02:34 - [1,514] ----D C:\Program Files (x86)\Common Files\logishrd O43 - CFD: 2013-01-17 - 09:01:30 - [0] ----D C:\Program Files (x86)\Common Files\LWS O43 - CFD: 2012-10-27 - 18:12:52 - [234,148] ----D C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 2010-12-08 - 18:44:31 - [0,159] ----D C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 2012-07-26 - 03:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 2013-01-18 - 23:17:57 - [0,326] ----D C:\Program Files (x86)\Common Files\Sony Shared O43 - CFD: 2012-10-27 - 13:01:23 - [0,223] ----D C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 2012-07-26 - 05:08:59 - [41,845] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 2010-12-17 - 12:36:10 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 2012-11-18 - 20:10:02 - [166,869] ----D C:\ProgramData\Acronis O43 - CFD: 2012-11-07 - 15:29:24 - [152,795] ----D C:\ProgramData\Adobe O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Application Data O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Bureau O43 - CFD: 2011-05-26 - 16:19:51 - [0,149] ----D C:\ProgramData\CIV O43 - CFD: 2012-10-28 - 11:49:39 - [0,000] ----D C:\ProgramData\Condusiv Technologies O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Desktop O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Documents O43 - CFD: 2013-01-15 - 17:03:46 - [0] ----D C:\ProgramData\eMule O43 - CFD: 2012-09-05 - 14:23:57 - [194,666] ----D C:\ProgramData\ESET O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Favoris O43 - CFD: 2011-03-11 - 19:09:59 - [1849,122] ----D C:\ProgramData\Garmin O43 - CFD: 2010-12-11 - 13:20:55 - [0] ----D C:\ProgramData\Google O43 - CFD: 2010-12-08 - 18:46:43 - [0,000] ----D C:\ProgramData\InstallShield O43 - CFD: 2012-01-27 - 20:01:58 - [0,011] ----D C:\ProgramData\Intuit Canada O43 - CFD: 2012-12-16 - 15:33:30 - [113,085] ----D C:\ProgramData\iolo O43 - CFD: 2012-03-24 - 04:27:09 - [14,676] ----D C:\ProgramData\Kodak O43 - CFD: 2011-03-01 - 11:45:46 - [3,692] ----D C:\ProgramData\LogiShrd O43 - CFD: 2010-12-10 - 15:53:14 - [5,273] ----D C:\ProgramData\Logitech O43 - CFD: 2013-02-12 - 08:44:46 - [6,725] ----D C:\ProgramData\Malwarebytes O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Menu Démarrer O43 - CFD: 2012-11-14 - 08:30:11 - [277,085] -S--D C:\ProgramData\Microsoft O43 - CFD: 2013-01-08 - 18:32:59 - [0,249] ----D C:\ProgramData\Microsoft Help O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Modèles O43 - CFD: 2012-04-25 - 06:35:42 - [0,034] ----D C:\ProgramData\Mozilla O43 - CFD: 2013-01-18 - 23:19:40 - [0] ----D C:\ProgramData\Nokia O43 - CFD: 2012-09-06 - 09:30:59 - [214,078] ----D C:\ProgramData\NokiaInstallerCache O43 - CFD: 2012-09-06 - 09:33:15 - [0,099] ----D C:\ProgramData\PC Suite O43 - CFD: 2012-10-27 - 13:38:36 - [0,023] ----D C:\ProgramData\PRICache O43 - CFD: 2012-10-29 - 14:08:31 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 2013-01-18 - 23:21:21 - [128,365] ----D C:\ProgramData\Skype O43 - CFD: 2011-06-15 - 15:50:25 - [4,874] ----D C:\ProgramData\Skype Extras O43 - CFD: 2012-03-12 - 15:46:45 - [0,003] ----D C:\ProgramData\Sony Corporation O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Start Menu O43 - CFD: 2011-09-23 - 18:18:27 - [0,000] ----D C:\ProgramData\Sun O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Templates O43 - CFD: 2013-01-17 - 14:26:47 - [49,855] ----D C:\ProgramData\VSO O43 - CFD: 2013-01-23 - 19:22:31 - [0,000] ----D C:\ProgramData\vsosdk O43 - CFD: 2010-12-12 - 10:49:24 - [0,002] ----D C:\ProgramData\Windows Genuine Advantage O43 - CFD: 2012-11-27 - 08:38:54 - [0] ----D C:\ProgramData\ZoomBrowser O43 - CFD: 2012-10-27 - 10:18:43 - [0] ----D C:\Users\Normand\AppData\Roaming\0D94BBF7-7D0F-4A51-B410-24CBDC128A7D O43 - CFD: 2012-10-27 - 09:25:37 - [0] ----D C:\Users\Normand\AppData\Roaming\1AC6B46F-B5AB-401C-B5C1-E54309930D34 O43 - CFD: 2011-12-10 - 11:45:54 - [0] ----D C:\Users\Normand\AppData\Roaming\47040EF8-481E-4CE8-BE9A-82D4BB058B11 O43 - CFD: 2011-12-22 - 10:46:09 - [0] ----D C:\Users\Normand\AppData\Roaming\4F4EBA5C-80DE-40F6-8CCE-96C185A6E4C3 O43 - CFD: 2012-11-03 - 19:53:44 - [0] ----D C:\Users\Normand\AppData\Roaming\Acronis O43 - CFD: 2011-08-11 - 10:29:12 - [14,665] ----D C:\Users\Normand\AppData\Roaming\Adobe O43 - CFD: 2011-08-22 - 12:56:36 - [0,002] ----D C:\Users\Normand\AppData\Roaming\Arcsoft O43 - CFD: 2012-10-27 - 09:31:48 - [0] ----D C:\Users\Normand\AppData\Roaming\C3635772-3685-4173-AD5B-2DD34A6E7220 O43 - CFD: 2012-06-04 - 21:53:16 - [0,001] ----D C:\Users\Normand\AppData\Roaming\Condusiv_Technologies O43 - CFD: 2010-12-12 - 13:11:26 - [0,025] ----D C:\Users\Normand\AppData\Roaming\Druide O43 - CFD: 2012-10-26 - 12:39:36 - [0] ----D C:\Users\Normand\AppData\Roaming\F0E77BCE-9321-4F0B-A40F-9755EE971BCA O43 - CFD: 2012-05-12 - 09:49:50 - [0] ----D C:\Users\Normand\AppData\Roaming\F71E2C6A-279C-4D80-9C04-E9F731BC2B67 O43 - CFD: 2012-09-10 - 16:59:40 - [9,705] ----D C:\Users\Normand\AppData\Roaming\GARMIN O43 - CFD: 2010-12-08 - 18:40:45 - [0] ----D C:\Users\Normand\AppData\Roaming\Identities O43 - CFD: 2012-01-27 - 20:02:33 - [0,067] ----D C:\Users\Normand\AppData\Roaming\Intuit Canada O43 - CFD: 2011-12-09 - 19:02:31 - [0,001] ----D C:\Users\Normand\AppData\Roaming\iolo O43 - CFD: 2010-12-10 - 15:53:34 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Leadertech O43 - CFD: 2011-10-12 - 09:54:15 - [0,004] ----D C:\Users\Normand\AppData\Roaming\LockHunter O43 - CFD: 2010-12-21 - 21:48:00 - [0,299] ----D C:\Users\Normand\AppData\Roaming\Logishrd O43 - CFD: 2010-12-21 - 21:49:01 - [0,038] ----D C:\Users\Normand\AppData\Roaming\Logitech O43 - CFD: 2010-12-11 - 13:22:47 - [0,001] ----D C:\Users\Normand\AppData\Roaming\Macromedia O43 - CFD: 2013-02-12 - 08:44:53 - [0,003] ----D C:\Users\Normand\AppData\Roaming\Malwarebytes O43 - CFD: 2012-08-25 - 20:42:40 - [0,011] ----D C:\Users\Normand\AppData\Roaming\McAfee O43 - CFD: 2009-07-14 - 10:35:05 - [0] ----D C:\Users\Normand\AppData\Roaming\Media Center Programs O43 - CFD: 2013-01-18 - 22:34:00 - [1,855] -S--D C:\Users\Normand\AppData\Roaming\Microsoft O43 - CFD: 2010-12-11 - 13:02:43 - [229,423] ----D C:\Users\Normand\AppData\Roaming\Mozilla O43 - CFD: 2012-09-06 - 10:17:51 - [0,904] ----D C:\Users\Normand\AppData\Roaming\PC Suite O43 - CFD: 2010-12-15 - 09:30:25 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Redemption O43 - CFD: 2013-01-18 - 23:21:13 - [4,358] ----D C:\Users\Normand\AppData\Roaming\Skype O43 - CFD: 2011-06-19 - 16:45:52 - [0,021] ----D C:\Users\Normand\AppData\Roaming\skypePM O43 - CFD: 2012-03-12 - 15:40:55 - [107,702] ----D C:\Users\Normand\AppData\Roaming\Sony O43 - CFD: 2012-03-12 - 15:45:13 - [0,011] ----D C:\Users\Normand\AppData\Roaming\Sony Corporation O43 - CFD: 2011-01-23 - 18:11:33 - [0,000] ----D C:\Users\Normand\AppData\Roaming\TeamViewer O43 - CFD: 2010-12-16 - 14:14:27 - [0] ----D C:\Users\Normand\AppData\Roaming\Temp O43 - CFD: 2010-12-15 - 09:30:24 - [930,573] ----D C:\Users\Normand\AppData\Roaming\Thunderbird O43 - CFD: 2011-01-07 - 13:34:08 - [0] ----D C:\Users\Normand\AppData\Roaming\U3 O43 - CFD: 2013-02-06 - 10:23:26 - [0,017] ----D C:\Users\Normand\AppData\Roaming\Vso O43 - CFD: 2011-01-15 - 19:04:33 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Windows Live Writer O43 - CFD: 2012-04-22 - 09:33:26 - [0,000] ----D C:\Users\Normand\AppData\Roaming\WinRAR O43 - CFD: 2012-11-27 - 08:43:48 - [0,002] ----D C:\Users\Normand\AppData\Roaming\ZoomBrowser EX O43 - CFD: 2011-08-11 - 10:24:25 - [138,596] ----D C:\Users\Normand\AppData\Local\Adobe O43 - CFD: 2012-08-13 - 09:14:54 - [0,002] ----D C:\Users\Normand\AppData\Local\Adobe Systems, Inc O43 - CFD: 2012-10-27 - 12:56:37 - [0] ----D C:\Users\Normand\AppData\Local\Application Data O43 - CFD: 2012-10-28 - 11:49:26 - [0,015] ----D C:\Users\Normand\AppData\Local\Condusiv_Technologies O43 - CFD: 2013-01-25 - 22:25:11 - [0] ----D C:\Users\Normand\AppData\Local\CrashDumps O43 - CFD: 2013-01-13 - 08:21:17 - [0] ----D C:\Users\Normand\AppData\Local\Diagnostics O43 - CFD: 2012-10-28 - 13:52:28 - [48,754] ----D C:\Users\Normand\AppData\Local\Downloaded Installations O43 - CFD: 2011-01-24 - 13:33:02 - [1,419] ----D C:\Users\Normand\AppData\Local\Eastman Kodak Company O43 - CFD: 2010-12-16 - 14:16:06 - [0,004] ----D C:\Users\Normand\AppData\Local\Eastman_Kodak_Company O43 - CFD: 2012-11-18 - 08:11:58 - [0] ----D C:\Users\Normand\AppData\Local\ElevatedDiagnostics O43 - CFD: 2013-01-15 - 18:46:31 - [7,311] ----D C:\Users\Normand\AppData\Local\eMule O43 - CFD: 2012-09-06 - 07:19:10 - [9,595] ----D C:\Users\Normand\AppData\Local\ESET O43 - CFD: 2011-02-07 - 09:07:00 - [29,800] ----D C:\Users\Normand\AppData\Local\Google O43 - CFD: 2012-10-27 - 12:56:37 - [0] ----D C:\Users\Normand\AppData\Local\Historique O43 - CFD: 2012-06-30 - 11:54:21 - [0,001] ----D C:\Users\Normand\AppData\Local\IdeoSi O43 - CFD: 2011-03-02 - 08:28:34 - [0] ----D C:\Users\Normand\AppData\Local\LogiShrd O43 - CFD: 2011-10-03 - 08:39:44 - [2,779] ----D C:\Users\Normand\AppData\Local\Logitech® Webcam Software O43 - CFD: 2012-06-13 - 06:50:29 - [0] ----D C:\Users\Normand\AppData\Local\Macromedia O43 - CFD: 2010-12-15 - 09:30:27 - [14,523] ----D C:\Users\Normand\AppData\Local\MesNews O43 - CFD: 2012-11-06 - 14:43:00 - [721,622] ----D C:\Users\Normand\AppData\Local\Microsoft O43 - CFD: 2010-12-22 - 10:18:31 - [0,006] ----D C:\Users\Normand\AppData\Local\Microsoft Corporation O43 - CFD: 2010-12-11 - 14:21:57 - [0,078] ----D C:\Users\Normand\AppData\Local\Microsoft Games O43 - CFD: 2010-12-10 - 16:04:45 - [0] ----D C:\Users\Normand\AppData\Local\Microsoft Help O43 - CFD: 2010-12-10 - 11:36:39 - [153,869] ----D C:\Users\Normand\AppData\Local\Mozilla O43 - CFD: 2011-12-21 - 17:31:29 - [0,002] ----D C:\Users\Normand\AppData\Local\Mozilla Messaging O43 - CFD: 2013-01-18 - 22:33:53 - [10,006] ----D C:\Users\Normand\AppData\Local\MétéoMédia O43 - CFD: 2012-09-06 - 09:33:39 - [1,142] ----D C:\Users\Normand\AppData\Local\Nokia O43 - CFD: 2012-09-06 - 10:17:47 - [0,001] ----D C:\Users\Normand\AppData\Local\NokiaAccount O43 - CFD: 2013-01-09 - 08:19:33 - [294,729] ----D C:\Users\Normand\AppData\Local\Packages O43 - CFD: 2013-01-17 - 14:26:08 - [0] ----D C:\Users\Normand\AppData\Local\Programs O43 - CFD: 2011-08-08 - 13:28:01 - [0,002] ----D C:\Users\Normand\AppData\Local\S2PC O43 - CFD: 2012-11-28 - 08:14:48 - [0,023] ----D C:\Users\Normand\AppData\Local\Solitaire_Forever O43 - CFD: 2012-03-14 - 12:46:49 - [0,378] ----D C:\Users\Normand\AppData\Local\Sony O43 - CFD: 2013-02-12 - 14:34:40 - [1,931] ----D C:\Users\Normand\AppData\Local\Temp O43 - CFD: 2012-10-27 - 12:56:37 - [0] ----D C:\Users\Normand\AppData\Local\Temporary Internet Files O43 - CFD: 2012-03-24 - 15:35:32 - [6,413] ----D C:\Users\Normand\AppData\Local\Thunderbird O43 - CFD: 2013-01-18 - 23:18:29 - [0,000] ----D C:\Users\Normand\AppData\Local\VirtualStore O43 - CFD: 2012-11-16 - 08:21:55 - [0,035] ----D C:\Users\Normand\AppData\Local\Windows Live O43 - CFD: 2010-12-19 - 10:33:15 - [0,618] ----D C:\Users\Normand\AppData\Local\Windows Live Writer O43 - CFD: 2011-12-27 - 13:41:26 - [0] ----D C:\Users\Normand\AppData\Local\{0641AD2A-93DA-42F6-8B24-13F50A9ACAF0} O43 - CFD: 2010-12-23 - 10:55:05 - [0] ----D C:\Users\Normand\AppData\Local\{0BD6AE1F-E5CF-4DEA-B7DC-665CDECF1C0D} O43 - CFD: 2012-05-20 - 13:34:50 - [0] ----D C:\Users\Normand\AppData\Local\{0CC07EE8-A645-47AE-92E6-4858552FFE87} O43 - CFD: 2011-12-28 - 08:04:45 - [0] ----D C:\Users\Normand\AppData\Local\{10A1E38F-113D-4F99-889A-A69E624871EA} O43 - CFD: 2012-05-01 - 09:47:18 - [0] ----D C:\Users\Normand\AppData\Local\{16713C5B-1868-4751-A6D8-4A6794DAFBDB} O43 - CFD: 2011-12-28 - 20:05:21 - [0] ----D C:\Users\Normand\AppData\Local\{22283D14-9B8C-49B5-BFF6-42C1E40CB553} O43 - CFD: 2010-12-19 - 10:33:31 - [0] ----D C:\Users\Normand\AppData\Local\{2A230C5D-21D4-4427-9646-E9FCE195C2EB} O43 - CFD: 2011-01-15 - 19:03:28 - [0] ----D C:\Users\Normand\AppData\Local\{2A95BF09-6986-4DBC-BC3F-3C6C6A4357D6} O43 - CFD: 2010-12-23 - 09:09:26 - [0] ----D C:\Users\Normand\AppData\Local\{35926129-E611-4FFD-B7DB-4C09A5A6C7E3} O43 - CFD: 2012-11-16 - 08:21:55 - [0] ----D C:\Users\Normand\AppData\Local\{425F0D55-F990-4A44-9E1F-901F230CE75A} O43 - CFD: 2012-05-01 - 09:47:29 - [0] ----D C:\Users\Normand\AppData\Local\{4571D0AA-BD20-497F-9ACD-7E244C3E6989} O43 - CFD: 2011-02-22 - 09:37:45 - [0] ----D C:\Users\Normand\AppData\Local\{546DCB1F-9AC2-4998-B4D9-97ECA6B12F32} O43 - CFD: 2012-04-30 - 19:27:34 - [0] ----D C:\Users\Normand\AppData\Local\{57581735-7293-442D-96E5-23AFA1309917} O43 - CFD: 2012-05-14 - 07:41:57 - [0] ----D C:\Users\Normand\AppData\Local\{58AC0763-3BAF-46E4-B6DA-98C8839F3AD8} O43 - CFD: 2012-04-30 - 19:27:33 - [0] ----D C:\Users\Normand\AppData\Local\{5E39C027-70FD-4D86-94D8-3297FBDB77C5} O43 - CFD: 2012-05-20 - 13:34:39 - [0] ----D C:\Users\Normand\AppData\Local\{6267BC83-D057-4E56-9C89-02335B53D74D} O43 - CFD: 2012-05-14 - 07:42:08 - [0] ----D C:\Users\Normand\AppData\Local\{6412620B-E000-4DA7-B816-F47764CD2640} O43 - CFD: 2012-06-30 - 11:42:47 - [0] ----D C:\Users\Normand\AppData\Local\{652F521F-D21B-419F-9825-A500856F9F3B} O43 - CFD: 2011-12-28 - 08:04:56 - [0] ----D C:\Users\Normand\AppData\Local\{667DCE34-42F9-4FC9-B579-382E1BF99BF7} O43 - CFD: 2011-12-29 - 20:40:21 - [0] ----D C:\Users\Normand\AppData\Local\{692C0BBA-2148-45CD-8119-F98D0A68ADBA} O43 - CFD: 2012-05-02 - 07:21:43 - [0] ----D C:\Users\Normand\AppData\Local\{6BEB09B9-C6FF-4EF4-8C13-B6988873371A} O43 - CFD: 2012-05-01 - 09:50:51 - [0] ----D C:\Users\Normand\AppData\Local\{6C77BC18-D273-4E74-8048-A8E46FA0404A} O43 - CFD: 2012-04-30 - 15:31:12 - [0] ----D C:\Users\Normand\AppData\Local\{85804958-69C6-428F-A2A0-464FCB1E8367} O43 - CFD: 2012-05-01 - 09:50:40 - [0] ----D C:\Users\Normand\AppData\Local\{87118890-B714-4F6B-BC63-1B616F66F085} O43 - CFD: 2011-01-17 - 17:11:52 - [0] ----D C:\Users\Normand\AppData\Local\{9D87FAD5-9ED0-4A2E-BA0E-00DA5AA2ADC4} O43 - CFD: 2012-05-02 - 07:21:54 - [0] ----D C:\Users\Normand\AppData\Local\{9E46CB98-3DA4-4DC4-94D0-715FF480F457} O43 - CFD: 2011-12-27 - 13:58:33 - [0] ----D C:\Users\Normand\AppData\Local\{A82F4916-73A3-42A2-BAC5-8396550A79CE} O43 - CFD: 2011-12-29 - 20:40:32 - [0] ----D C:\Users\Normand\AppData\Local\{B149ED83-5A81-429A-8301-0C79D6A9C84C} O43 - CFD: 2011-12-27 - 13:58:44 - [0] ----D C:\Users\Normand\AppData\Local\{C0235CAC-333B-4645-B6BC-C85323477753} O43 - CFD: 2011-12-27 - 13:41:15 - [0] ----D C:\Users\Normand\AppData\Local\{E7F616E0-F771-4966-AAAD-B9F3080D9159} O43 - CFD: 2012-11-06 - 14:31:49 - [0] ----D C:\Users\Normand\AppData\Local\{E976D6FB-C3D6-43FD-AF36-3297C21F1C25} O43 - CFD: 2011-12-28 - 20:05:10 - [0] ----D C:\Users\Normand\AppData\Local\{EFEBB7AB-21EC-4E1F-9F75-17307F1FB4FB} O43 - CFD: 2011-12-29 - 08:39:57 - [0] ----D C:\Users\Normand\AppData\Local\{F445EA26-EF4C-482C-8761-FF625CD06F76} O43 - CFD: 2012-06-30 - 11:43:04 - [0] ----D C:\Users\Normand\AppData\Local\{F8FC50F3-691D-451B-9648-D9BCD6547E5C} O43 - CFD: 2011-01-21 - 11:54:48 - [0] ----D C:\Users\Normand\AppData\Local\{FD35E433-2DBC-46EA-93CA-D104C7EF8677} O43 - CFD: 2011-12-29 - 08:40:08 - [0] ----D C:\Users\Normand\AppData\Local\{FDB726F0-98F8-4648-9336-C77385A9A547} O43 - CFD: 2011-11-23 - 18:12:39 - [0] ----D C:\Users\Normand\AppData\Local\{FF7A13F1-5A08-47E6-9F35-07EA08F6421A} O43 - CFD: 2012-07-26 - 03:13:00 - [0,004] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2012-10-27 - 12:59:22 - [0,003] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2012-12-12 - 10:43:28 - [0,000] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2012-10-27 - 12:59:22 - [0,004] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar O43 - CFD: 2012-10-27 - 12:59:22 - [0,001] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Démarrage O43 - CFD: 2012-10-27 - 15:59:10 - [0] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2012-10-27 - 13:15:24 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2012-10-27 - 13:06:00 - [0,003] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrintKey 2000 Fr O43 - CFD: 2012-12-12 - 10:43:28 - [0,000] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2012-07-26 - 03:13:00 - [0,005] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2012-10-27 - 13:06:00 - [0,003] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ Scan Program Folder in 00mn 00s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.92EB844D90615CB266F84C3202B8786E] - 2012-12-14 - 16:49:28 . (...) -- C:\Windows\System32\Drivers\mbam.sys [] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2013-01-15 - 07:41:02 . (...) -- C:\Windows\System32\Drivers\lvuvc.hs [] O44 - LFC:[MD5.64AEB5790901EA8854884981F104CAA6] - 2013-01-15 - 15:41:01 . (...) -- C:\Windows\System32\Drivers\LNonPnP.sys [] O44 - LFC:[MD5.E037AF714935FA78F9B011C31056AD55] - 2013-01-17 - 09:02:32 . (...) -- C:\Windows\System32\lvcoinst.log [] O44 - LFC:[MD5.E037AF714935FA78F9B011C31056AD55] - 2013-01-17 - 09:02:32 ---A- . (...) -- C:\Windows\SysNative\lvcoinst.log [10038] O44 - LFC:[MD5.8C474F253EBDBF7EF1F6CBB7834C45A1] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfc009.dat [] O44 - LFC:[MD5.815913BCE5939D9636114DC66EE623D0] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfc00C.dat [] O44 - LFC:[MD5.FBF8E02DDAC37A2E73C2E405EA9D63EB] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfh009.dat [] O44 - LFC:[MD5.71A65C4DC5FBE880243743D90A37FDD7] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfh00C.dat [] O44 - LFC:[MD5.055250A1D9772B3392FAF90B0BFCE7AD] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [2076734] O44 - LFC:[MD5.8C474F253EBDBF7EF1F6CBB7834C45A1] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [165738] O44 - LFC:[MD5.815913BCE5939D9636114DC66EE623D0] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [198078] O44 - LFC:[MD5.FBF8E02DDAC37A2E73C2E405EA9D63EB] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [803480] O44 - LFC:[MD5.71A65C4DC5FBE880243743D90A37FDD7] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [907774] O44 - LFC:[MD5.055250A1D9772B3392FAF90B0BFCE7AD] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [2076734] O44 - LFC:[MD5.3C2B2836259405116C16D7FE33BBFC37] - 2013-01-26 - 07:34:27 . (...) -- C:\Windows\System32\FNTCACHE.DAT [] O44 - LFC:[MD5.3C2B2836259405116C16D7FE33BBFC37] - 2013-01-26 - 07:34:27 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [328312] O44 - LFC:[MD5.F59F2C574AA5D84477EB89F87C938F16] - 2013-02-03 - 10:30:29 . (...) -- C:\Windows\System32\Drivers\fsbts.sys [] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2013-02-04 - 08:18:01 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.2F305B67B670BDF232EB06751FC647FC] - 2013-02-12 - 09:18:29 ---A- . (...) -- C:\TDSSKiller.2.8.16.0_12.02.2013_09.05.30_log.txt [153496] O44 - LFC:[MD5.B3F638214D2CE620322C74C64CF0F1A4] - 2013-02-12 - 13:52:54 ---A- . (...) -- C:\AdwCleaner[R1].txt [3746] O44 - LFC:[MD5.2B77460D97726EB3046A39A917C31806] - 2013-02-12 - 13:54:48 ---A- . (...) -- C:\AdwCleaner[S1].txt [4078] O44 - LFC:[MD5.4E8AF6B11277AC4D565C3C6A2E0EEB7A] - 2013-02-12 - 13:56:50 ---A- . (...) -- C:\Windows\setupact.log [707760] O44 - LFC:[MD5.F6103291A247BA2CCD62CFED9D52927B] - 2013-02-12 - 13:58:34 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.1F6027004A7ECA5C9F270606F8EC77EB] - 2013-02-12 - 14:31:46 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1066371] ~ Scan Files in 00mn 08s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll ~ Scan Keys in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ Scan CSB in 00mn 00s ---\\ MountPoints2 Shell Key (O51) (None) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.i420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcod64.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ Scan Keys in 00mn 00s ---\\ ShareTools MSconfig StartupReg (O53) (None) ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 2012-07-26 - 00:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736] O58 - SDL:[MD5.0211AB46B73A2623B86C1CFCB30579AB] - 2009-10-22 - 00:28:12 ---A- . (.Samsung Electronics - Port Contention Driver.) -- C:\Windows\SysWOW64\drivers\SSPORT.SYS [11576] ~ Scan Drivers in 00mn 00s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\NOTEPAD.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\NOTEPAD.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {134B70E3-201C-43D7-9770-D312AC78F27D} - (Somoto Customized Web Search) - http://search.conduit.com O69 - SBI: SearchScopes [HKCU] {19F7D875-947B-45ab-95D3-E603813C051E} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {73FD1A91-ECCE-4e62-82E3-4924FA583DAF} - (Yahoo) - http://qc.search.yahoo.com O69 - SBI: SearchScopes [HKCU] {DD5A7BBA-80D3-492B-95DA-3C7F750BA04E} - (Recherche sécurisée) - http://ca.search.yahoo.com O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com ~ Scan Keys in 00mn 00s ---\\ Recherche des services démarrés par Svchost (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [190976] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [309248] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1366016] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1071104] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99840] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [358400] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [107520] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [62976] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [438784] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [305664] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3345920] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [826368] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [565760] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [894464] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [69632] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [105472] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1282560] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [219648] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [80896] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [291328] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [97792] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [190976] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1968128] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [47104] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [207872] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [161792] O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [178176] O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187392] ~ Scan Services in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.16E53BFC96CE14021C0E07EB1C198478] [SPRF][2013-01-20] (...) -- C:\Users\Normand\AppData\Roaming\inst.exe [99384] [MD5.AF7CE12C4F3DC8CB2B07685C916BBCFE] [SPRF][2013-01-20] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Users\Normand\AppData\Roaming\pcouffin.sys [82816] ~ Scan Files in 00mn 00s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{F7A2F7EA-213A-40BB-BD8F-5144D4C86C71}" | In - Private - P17 - TRUE | .(.VSO Software - VSO Downloader.) -- C:\Program Files (x86)\VSO\VSO Downloader\2\VsoDownloader.exe O87 - FAEL: "{AFBCE2F1-DE05-4ADE-A932-3979F67AAFAD}" | In - Private - P6 - TRUE | .(.VSO Software - VSO Downloader.) -- C:\Program Files (x86)\VSO\VSO Downloader\2\VsoDownloader.exe O87 - FAEL: "{FB7B5B1D-BC91-4172-AF04-18A79B5835EC}" | In - Domain - P17 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O87 - FAEL: "{6957EF12-E244-4156-8D54-66F8989AB6AE}" | In - Domain - P6 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O87 - FAEL: "{965F357F-9B60-4B93-9CF6-BAAC0EC84780}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O87 - FAEL: "{491644EE-6682-4A33-B715-1612AE6165B7}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O87 - FAEL: "{167CA3DA-274E-4F4E-A75B-7B3B156C698E}" | In - Domain - P17 - FALSE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe O87 - FAEL: "{0057C5C4-7EED-43F0-87D3-90B9BB384928}" | In - Domain - P6 - FALSE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe O87 - FAEL: "{4F4C6EF1-57D6-4481-BE77-237F7E4147CD}" | In - Private - P17 - TRUE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe O87 - FAEL: "{BD725EB1-6A3A-4076-BD57-B01C9A0522C4}" | In - Private - P6 - TRUE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe O87 - FAEL: "{0BBEE398-09F8-4AAE-99C7-ED5AFEA69949}" | In - Domain - P17 - FALSE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe O87 - FAEL: "{95621F26-1882-4405-9689-E4A006934FB2}" | In - Domain - P6 - FALSE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe O87 - FAEL: "{440BFB39-AEFC-4216-80B1-9B3ED3211B7F}" | In - Private - P17 - TRUE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe O87 - FAEL: "{19C0E1DC-B652-44CD-A56F-3F222508AD27}" | In - Private - P6 - TRUE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe O87 - FAEL: "{CA96B87A-783B-4C70-AB2B-81A09C7C818C}" | In - Domain - P17 - FALSE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe O87 - FAEL: "{E68F0597-0D75-4383-B5C6-539DA8C180BA}" | In - Domain - P6 - FALSE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe O87 - FAEL: "{75D2C3FC-9779-4FF2-9C80-362688493CD0}" | In - Private - P17 - TRUE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe O87 - FAEL: "{3BA1F631-5439-475B-8A67-1535EFCEC8C3}" | In - Private - P6 - TRUE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe O87 - FAEL: "{D9C2D065-D8F8-49DB-84C7-69A1D76E1BD9}" | In - Domain - P17 - FALSE | .(.Condusiv Technologies - Diskeeper® User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe O87 - FAEL: "{9410BD38-FE6C-42B1-BD8A-CA51DABB39DF}" | In - Domain - P6 - FALSE | .(.Condusiv Technologies - Diskeeper® User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe O87 - FAEL: "{0B54F309-FF0B-40BB-9836-1AA80CDB485E}" | In - Private - P17 - TRUE | .(.Condusiv Technologies - Diskeeper® User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe O87 - FAEL: "{8B59AFC2-912E-4135-ADE0-C12FE9A53287}" | In - Private - P6 - TRUE | .(.Condusiv Technologies - Diskeeper® User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe O87 - FAEL: "{12A8077D-7C7B-49B1-BFDE-9DF079F85EFE}" | In - Domain - P17 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe O87 - FAEL: "{E74B6435-7A55-437A-AA4D-01B326A92DBF}" | In - Domain - P6 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe O87 - FAEL: "{3614FE82-5693-4209-B66D-2303AA471BFD}" | In - Private - P17 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe O87 - FAEL: "{48A220D8-0B27-4524-8A41-0BD82D9AF3FE}" | In - Private - P6 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe O87 - FAEL: "{8D332F20-1223-45CE-B0DB-08A6079271D4}" | In - Private - P17 - TRUE | .(.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe O87 - FAEL: "{6E9FAEE0-8479-4879-99A3-E50FB2CAE64A}" | In - Private - P6 - TRUE | .(.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe O87 - FAEL: "{081D100D-A1A2-4DD8-8954-F15BB66F173E}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Net_ScanToPC MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Sscan2io.exe O87 - FAEL: "{6A253DA2-F5EB-4DCF-A585-2D999BAA7BAB}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Net_ScanToPC MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Sscan2io.exe O87 - FAEL: "{D607E099-9C1F-4448-BFBE-71FFD90AFB1F}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - ScanToPc MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Scan2Pc.exe O87 - FAEL: "{AE84F39C-7EFD-4E39-B9DA-5C42E8F0112D}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - ScanToPc MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Scan2Pc.exe O87 - FAEL: "{8DF1007D-7120-48D7-B8BC-AE50C06CE0C1}" | In - Private - P17 - TRUE | .(.Samsung Electronics - Samsung Scan & Fax Manager.) -- C:\Windows\twain_32\Samsung\ScanMgr.exe O87 - FAEL: "{8567D40E-0905-441E-A90C-00CA09CA8E1A}" | In - Private - P6 - TRUE | .(.Samsung Electronics - Samsung Scan & Fax Manager.) -- C:\Windows\twain_32\Samsung\ScanMgr.exe O87 - FAEL: "UDP Query User{9F121CE4-5BE5-412B-B2DC-A03059FF0F38}C:\program files (x86)\western digital\wd discovery software\wd discovery.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\western digital\wd discovery software\wd discov O87 - FAEL: "TCP Query User{F24CEC56-8732-44CF-A4FE-06AC4CB2F79C}C:\program files (x86)\western digital\wd discovery software\wd discovery.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\western digital\wd discovery software\wd discove O87 - FAEL: "UDP Query User{55B9AA50-9793-4146-88B8-FDE22EFD6AE7}D:\wd discovery software\wd discovery.exe" |In - Private - P17 - TRUE | .(...) -- D:\wd discovery software\wd discovery.exe (.not file.) O87 - FAEL: "TCP Query User{F421677F-BB30-4550-8263-08F59495EB62}D:\wd discovery software\wd discovery.exe" |In - Private - P6 - TRUE | .(...) -- D:\wd discovery software\wd discovery.exe (.not file.) O87 - FAEL: "TCP Query User{07D68061-9C40-43CA-905A-FA4E3CEA82B8}C:\program files (x86)\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "UDP Query User{386F29A1-24C2-42BF-A4D6-4D93153EAC64}C:\program files (x86)\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "{D0B9060D-9DB8-42A2-8EB7-C4C7B5612657}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{D7115DE1-0924-44DE-BADF-D2880CCC5675}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{75A16179-B6BC-48D7-A8B5-39BAC89D7CE3}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{1BB9847D-EB93-4D37-AB43-5D310AC78B8E}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) ~ Scan Firewall in 00mn 01s ---\\ Scan Additionnel (O88) Database Version : v2.10682 - (2013-02-12) Clés trouvées (Keys found) : 0 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 1 Fichiers trouvés (Files found) : 0 C:\Program Files (x86)\midicairus =>Toolbar.Agent ~ Scan Additionnel in 00mn 05s ---\\ Product Upgrade Codes (O90) O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico O90 - PUC: "2F64B6D4162AAC447A5FF1AEE4BFBE95" . (.ImpôtRapide 2010.) -- C:\Windows\Installer\{4D6B46F2-A261-44CA-A7F5-1FEA4EFBEB59}\ARPPRODUCTICON.exe O90 - PUC: "34AAD32917CCE3040BE479EF65C1C839" . (.Consommation Internet Vidéotron.) -- C:\Windows\Installer\{923DAA43-CC71-403E-B04E-97FE561C8C93}\_853F67D554F05449430E7E.exe O90 - PUC: "3593EEF4D3EC64D48853F20F5D6F0489" . (.ImpôtRapide 2011.) -- C:\Windows\Installer\{4FEE3953-CE3D-4D46-8835-2FF0D5F64098}\ARPPRODUCTICON.exe O90 - PUC: "40B9DDAB378124146959C6864406F6E2" . (.ESET NOD32 Antivirus.) -- C:\Windows\Installer\{BADD9B04-1873-4142-9695-6C6844606F2E}\egui.exe O90 - PUC: "454A546044DAD0F499FCB6677253DAF1" . (.aioprnt.) -- C:\Windows\Installer\{0645A454-AD44-4F0D-99CF-6B762735AD1F}\ARPPRODUCTICON.exe O90 - PUC: "48C235E057243B14D9184D1A2AD0E87E" . (.PlayStation(R)Store.) -- C:\Windows\Installer\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}\ARPPRODUCTICON.exe O90 - PUC: "4D1DF005CF3D0A441878666BDB61B784" . (.True Image 2013.) -- C:\WINDOWS\Installer\{500FD1D4-D3FC-44A0-8187-66B6BD167B48}\product.ico O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.5) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico O90 - PUC: "73166D846A7C0984386135C4FF6388AE" . (.Garmin City Navigator North America NT 2012.10 Update.) -- C:\Windows\Installer\{48D66137-C7A6-4890-8316-534CFF3688EA}\GarminSetup.ico O90 - PUC: "7676D6A1177B2574182CC13CB09E14AB" . (.Diskeeper 12 .) -- C:\WINDOWS\Installer\{1A6D6767-B771-4752-81C2-1CC30BE941BA}\ARPPRODUCTICON.exe O90 - PUC: "7D8F6BA740872664EBC8A1CFDC06D2F9" . (.Centre Souris et Claviers Microsoft.) -- C:\WINDOWS\Installer\{7AB6F8D7-7804-4662-BE8C-1AFCCD602D9F}\DeviceCenter.ico O90 - PUC: "8DD9566B7A0042A4BBBF1C6F89E2D566" . (.PlayStation(R)Network Downloader.) -- C:\Windows\Installer\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}\ARPPRODUCTICON.exe O90 - PUC: "8E30DAA956F42ED4F8C6B170C9C05812" . (.Garmin Lifetime Updater.) -- C:\Windows\Installer\{9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}\Garmin.ico O90 - PUC: "9322D015E2C6B754590984E55C259DD4" . (.Garmin USB Drivers.) -- C:\Windows\Installer\{510D2239-6C2E-457B-9590-485EC552D94D}\GarminSetup.ico O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico O90 - PUC: "C87409371858E514299E92799D03B618" . (.PC Connectivity Solution.) -- C:\Windows\Installer\{7390478C-8581-415E-92E9-2997D9306B81}\ARPPRODUCTICON.exe O90 - PUC: "CC133055B43CF494CBAD73ECE46F9E42" . (.Garmin Communicator Plugin x64.) -- C:\Windows\Installer\{550331CC-C34B-494F-BCDA-37CE4EF6E924}\GarminSetup.ico O90 - PUC: "CDB056C6A9BDC7D4A9FAFF9FC433C6B0" . (.Garmin MapInstall.) -- C:\Windows\Installer\{6C650BDC-DB9A-4D7C-9AAF-FFF94C336C0B}\GarminSetup.ico O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "EE262DE837CF9A74BB689D2232428618" . (.PowerChute Personal Edition 3.0.2.) -- C:\Windows\Installer\{8ED262EE-FC73-47A9-BB86-D92223246881}\ProductIcon_ico O90 - PUC: "F142AB65C0852D344830492714AA6E33" . (.center.) -- C:\Windows\Installer\{56BA241F-580C-43D2-8403-947241AAE633}\ARPPRODUCTICON.exe O90 - PUC: "F68042EFC0B374C48A47797A8B2EBFEB" . (.aioscnnr.) -- C:\Windows\Installer\{FE24086F-3B0C-4C47-A874-97A7B8E2FBBE}\ARPPRODUCTICON.exe ~ Scan Files in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 2013-02-04 3089320 | (a2AntiMalware) . (.Emsisoft GmbH.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe SR - | Auto 2012-08-23 1127392 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe SR - | Auto 2012-12-18 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SS - | Demand 2013-02-07 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SR - | Auto 2012-11-03 3717112 | (afcdpsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe SR - | Auto 2012-01-24 21880 | (APC Data Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe SR - | Auto 2012-01-24 705912 | (APC UPS Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe SS - | Disabled 2009-08-04 219360 | (BCUService) . (.DeviceVM, Inc..) - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe SR - | Auto 2006-03-30 96341 | (CCALib8) . (.Canon Inc..) - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe SR - | Auto 2012-07-27 2721656 | (Diskeeper) . (.Condusiv Technologies.) - C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe SR - | Auto 2012-03-07 913144 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe SR - | Auto 2012-12-06 1053184 | (ioloSystemService) . (.iolo technologies, LLC.) - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe SS - | Disabled 2010-09-13 308656 | (Kodak AiO Network Discovery Service) . (.Eastman Kodak Company.) - C:\Program Files (x86)\Kodak\AiO\Center\ekdiscovery.exe SS - | Demand 2010-10-28 357456 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe SR - | Auto 2009-09-30 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SR - | Auto 2012-12-14 398184 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe SS - | Auto 2012-12-14 682344 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe SS - | Demand 2013-02-05 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Disabled 2012-08-01 724888 | (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe SR - | Auto 2012-08-18 7026408 | (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe SR - | Auto 2009-09-30 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe SR - | Auto 2012-09-20 29696 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Scan Services in 00mn 01s End of the scan (1254 lines in 00mn 44s)(0)