cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v2013.4.23.139 par Nicolas Coolman, Update du 23/04/2013
Run by Lucie at 24/04/2013 22:39:27
State : Version � jour.
WhiteList : Disable
High Elevated Privileges : OK
UAC : Deactivate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 20.0.1 (Defaut)

---\\ Windows Product Information
~ Langage: Fran�ais
Windows Vista Home Premium Edition, 64-bit (Build 6000)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK

---\\ System Protection
Bitdefender Total Security 2013 v16.27.0.1763
Malwarebytes Anti-Malware version 1.75.0.1300

---\\ System Optimizer
CCleaner v4.00

---\\ Software Update
Adobe Flash Player 10 Plugin
Java 7 Update 21
Java 7 Update 17

---\\ System Information
~ Processor: AMD64 Family 16 Model 6 Stepping 3, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1786 MB (21% free)
System Restore: Activ� (Enable)
System drive C: has 154 GB (70%) free of 219 GB

---\\ Logged in mode
~ Computer Name: LUCIEPC
~ User Name: Lucie
~ All Users Names: Lucie, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Lucie\AppData\Roaming\
~ %Desktop% : C:\Users\Lucie\Desktop\
~ %Favorites% : C:\Users\Lucie\Favorites\
~ %LocalAppData% : C:\Users\Lucie\AppData\Local\
~ %StartMenu% : C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 154 Go of 219 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.A4F6142CABA82FB7293ECE5FF864B440] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/02/2013 - 07:20:51.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 02s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/344
~ Mes musiques (My Musics) : 17/542
~ Mes Videos (My Videos) : 1/7
~ Mes Favoris (My Favorites) : 1/15
~ Mes Documents (My Documents) : 6/170
~ Mon Bureau (My Desktop) : 10/2151
~ Menu demarrer (Programs) : 1/35
~ Hidden Files: Scanned in 00mn 01s



---\\ Processus lanc�s
[MD5.75102FC486595CF486DFD7239BE30DD5] - (.Pas de propri�taire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe [206208] [PID.3696]
[MD5.D8EBCE395ECA465ACBAADDA3640B16F7] - (.One.com - OnecomCloudDrive.) -- C:\Program Files (x86)\OnecomCloudDrive\Dlls\OnecomCloudDrive.exe [9725864] [PID.3960]
[MD5.B54921381A950C8215FB363B485C432B] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [270336] [PID.2708]
[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840] [PID.584]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.3516]
[MD5.6AFD3970A41F48306874DB23991A4955] - (.Wireless Service - ANIWZCS2 launcher for Windows..) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe [49152] [PID.1248]
[MD5.3D5D73B3E89A2AEA63C5A1164BCCD228] - (.D-Link - D-Link Wireless LAN Monitor.) -- C:\Program Files (x86)\D-Link\D-Link Wireless G DWA-110\AirGCFG.exe [1662976] [PID.1620]
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.3316]
[MD5.F16EEA6CCA9D8A7D1193AE80E43FBBC7] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.1540]
[MD5.8A9FACCB684500829F7D0BCC67B386CC] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.580]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.4428]
[MD5.6F5386A655598F71BAAB2D6B63A69D6A] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472] [PID.3908]
[MD5.AAE42F24B1510ADF8E7DE92085B8E67F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [6971904] [PID.2820]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.1408]
[MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008] [PID.1528]
[MD5.3C8B6609712F4FF78E521F6DCFC4032B] - (.Creative Technology Ltd - Creative Service for CDROM Access.) -- C:\Windows\SysWOW64\CTsvcCDA.exe [44032] [PID.1724]
[MD5.0191DEE9B9EB7902AF2CF4F67301095D] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [23584] [PID.2052]
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376] [PID.2164]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.exe [322120] [PID.2288]
[MD5.F9EC9ACD504D823D9B9CA98A4F8D3CA2] - (.Acer Group - Updater Service.) -- C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [243232] [PID.2712]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Lucie\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\tz5w5qss.default-1363721027281\prefs.js
C:\Users\Lucie\AppData\Roaming\Mozilla\Firefox\Profiles\tz5w5qss.default-1363721027281\user.js
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml =>Toolbar.Babylon
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Lucie] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.3.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.21.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.21.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.21.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20125.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.2] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKCU] [amazon.com/AmazonMP3DownloaderPlugin] - (.Amazon.com, Inc. - Amazon MP3 Downloader Plugin 1.0.17.) -- C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll
~ Firefox Browser: 29 Scanned in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.b1.org
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\SOFTWARE\Policies\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://seeearch.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.b1.org
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do =>Hijacker.SmartBar
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 15 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;localhost
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 02s
~ Nombre de lignes (Lines number): 26



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP Print Enhancer [64Bits] - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Cl� orpheline
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class [64Bits] - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
~ BHO: 6 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propri�taire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe
O4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
O4 - HKCU\..\Run: [One.com] . (...) -- C:\Program Files (x86)\OnecomCloudDrive\Dlls\AppLauncher.exe
O4 - HKCU\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Lucie\AppData\Roaming\SCheck\SCheck.exe
O4 - HKCU\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Lucie\AppData\Roaming\SSync\SSync.exe
O4 - HKCU\..\Run: [Wallpaper Changer] . (.Pas de propri�taire - Wallpaper Changer.) -- C:\Program Files (x86)\Wallpaper Changer\Wallpaper Changer.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [FreeCall] C:\Program Files (x86)\FreeCall.com\FreeCall\FreeCall.exe (.not file.)
O4 - HKCU\..\Run: [Bubble Dock] C:\Users\Lucie\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [hpqSRMon] . (.Hewlett-Packard - HpqSRmon.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [ANIWZCS2Service] . (.Wireless Service - ANIWZCS2 launcher for Windows..) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Wow6432Node\Run: [D-Link D-Link Wireless G DWA-110] . (.D-Link - D-Link Wireless LAN Monitor.) -- C:\Program Files (x86)\D-Link\D-Link Wireless G DWA-110\AirGCFG.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-23088844-1148055684-1297641894-1000\..\Run: [One.com] . (...) -- C:\Program Files (x86)\OnecomCloudDrive\Dlls\AppLauncher.exe
O4 - HKUS\S-1-5-21-23088844-1148055684-1297641894-1000\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Lucie\AppData\Roaming\SCheck\SCheck.exe
O4 - HKUS\S-1-5-21-23088844-1148055684-1297641894-1000\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Lucie\AppData\Roaming\SSync\SSync.exe
O4 - HKUS\S-1-5-21-23088844-1148055684-1297641894-1000\..\Run: [Wallpaper Changer] . (.Pas de propri�taire - Wallpaper Changer.) -- C:\Program Files (x86)\Wallpaper Changer\Wallpaper Changer.exe
O4 - HKUS\S-1-5-21-23088844-1148055684-1297641894-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-23088844-1148055684-1297641894-1000\..\Run: [FreeCall] C:\Program Files (x86)\FreeCall.com\FreeCall\FreeCall.exe (.not file.)
O4 - HKUS\S-1-5-21-23088844-1148055684-1297641894-1000\..\Run: [Bubble Dock] C:\Users\Lucie\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
~ Application: Scanned in 00mn 01s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: PhotoFiltre (2).lnk . (.Antonio Da Cruz - PhotoFiltre.) -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe
O4 - GS\TaskBar: PhotoFiltre.lnk . (.Antonio Da Cruz - PhotoFiltre.) -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe
O4 - GS\TaskBar: Update Checker.lnk . (.FileHippo.com - FileHippo.com Update Checker.) -- C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe
O4 - GS\Programs: eBay - Achetez et vendez vos objets neufs ou d'occasion.lnk . (...) -- C:\Users\Lucie\AppData\Local\Google\Chrome\Application\chrome.exe (.not file.)
O4 - GS\Programs: Google - Historique Web.lnk . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Update Checker.lnk . (.FileHippo.com - FileHippo.com Update Checker.) -- C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe
O4 - GS\QuickLaunch: FreeFileViewer.lnk . (.Bitberry Software - Free File Viewer.) -- C:\Program Files (x86)\FreeFileViewer\FreeFileViewer.exe
O4 - GS\QuickLaunch: KompoZer.lnk . (.Mozilla Foundation - KompoZer.) -- C:\Program Files (x86)\KompoZer\kompozer.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\QuickLaunch: MediaHuman YouTube to MP3 Converter.lnk . (...) -- C:\Program Files (x86)\MediaHuman\YouTube to MP3 Converter\YouTubeToMp3.exe
O4 - GS\QuickLaunch: monAlbumPhoto.lnk . (.monAlbumPhoto - monAlbumPhoto.) -- C:\Program Files (x86)\monAlbumPhoto\monAlbumphoto.exe
O4 - GS\QuickLaunch: WampServer.lnk . (.Aestan Software - Aestan Tray Menu.) -- C:\wamp\wampmanager.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Desktop: bureau.lnk . (...) -- C:\Users\Lucie\Desktop
O4 - GS\Desktop: introduction site.doc - Raccourci.lnk . (...) -- C:\Users\Lucie\Desktop\introduction site.doc (.not file.)
O4 - GS\Desktop: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) -- C:\Program Files (x86)\Notepad++\notepad++.exe
O4 - GS\Desktop: photos.doc - Raccourci.lnk . (...) -- C:\Users\Lucie\Desktop\photos\photos.doc (.not file.)
O4 - GS\Desktop: WampServer.lnk . (.Aestan Software - Aestan Tray Menu.) -- C:\wamp\wampmanager.exe
~ Global Startup: Scanned in 00mn 03s



---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A6CDA8FD-D233-4BB4-83F3-EFC2298E86A1}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{CF4F34D2-30A4-45D5-9250-18B28DDB1822}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{A6CDA8FD-D233-4BB4-83F3-EFC2298E86A1}: DhcpDomain = netgear.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{CF4F34D2-30A4-45D5-9250-18B28DDB1822}: DhcpDomain = netgear.com
O17 - HKLM\System\CS1\Services\Tcpip\..\{A6CDA8FD-D233-4BB4-83F3-EFC2298E86A1}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{CF4F34D2-30A4-45D5-9250-18B28DDB1822}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A6CDA8FD-D233-4BB4-83F3-EFC2298E86A1}: DhcpDomain = netgear.com
O17 - HKLM\System\CS1\Services\Tcpip\..\{CF4F34D2-30A4-45D5-9250-18B28DDB1822}: DhcpDomain = netgear.com
O17 - HKLM\System\CS2\Services\Tcpip\..\{A6CDA8FD-D233-4BB4-83F3-EFC2298E86A1}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{CF4F34D2-30A4-45D5-9250-18B28DDB1822}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{A6CDA8FD-D233-4BB4-83F3-EFC2298E86A1}: DhcpDomain = netgear.com
O17 - HKLM\System\CS2\Services\Tcpip\..\{CF4F34D2-30A4-45D5-9250-18B28DDB1822}: DhcpDomain = netgear.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: text/xml [64Bits] - {807553E5-5146-11D5-A672-00B0D022E945} . (...) --
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Creative Service for CDROM Access (Creative Service for CDROM Access) . (.Creative Technology Ltd - Creative Service for CDROM Access.) - C:\Windows\SysWOW64\CTsvcCDA.exe
O23 - Service: Acer ePower Service (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: SafeBox (SafeBox) . (.Bitdefender - Safebox Service.) - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
O23 - Service: Updater Service (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
O23 - Service: Bitdefender Virus Shield (vsserv) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
~ Services: 12 Scanned in 00mn 21s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FreeFileViewerUpdateChecker.job [402]
[MD5.A9DA5B43CF597F83B1EB441968E24891] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3497240]
[MD5.AD1D6D9736F109DBDBA254C0C74FA554] [APT] [FreeFileViewerUpdateChecker] (.Bitberry Software.) -- C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe [1545592]
[MD5.00000000000000000000000000000000] [APT] [GoforFilesUpdate] (...) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe (.not file.) [0]
[MD5.CEC66E3CA216A4783C6FC54B4FE36DBD] [APT] [ProgramRefresh-ATFST] (...) -- C:\Program Files (x86)\File Type Assistant\tsasetup.exe [1492080]
[MD5.88B6D362E111D87CBCA6CA94E152B7C6] [APT] [ProgramUpdateCheck] (.Trusted Software ApS.) -- C:\Program Files (x86)\File Type Assistant\TSAssist.exe [2749632]
[MD5.D72D08898E2BA14B8FD6E9533C714385] [APT] [{13122369-CF5D-468E-A255-7F96D95AE472}] (.FileHippo.com.) -- C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712]
[MD5.1A790BCC6FC053C1891004F9C75CF3A9] [APT] [{148A051C-C089-462E-8695-D0EDE0F07C25}] (.Nicolas Coolman.) -- C:\Users\Lucie\Downloads\ZHPDiag2(1).exe [5522970]
[MD5.6F5386A655598F71BAAB2D6B63A69D6A] [APT] [{27A77958-3FEB-4DAB-B27F-6EEA91982AF5}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [920472]
[MD5.3D5D73B3E89A2AEA63C5A1164BCCD228] [APT] [{2CC92DD1-0816-4E44-A7B7-133420E23597}] (.D-Link.) -- C:\Program Files (x86)\D-Link\D-Link Wireless G DWA-110\AirGCFG.exe [1662976]
[MD5.00000000000000000000000000000000] [APT] [{3AE636C1-E28B-4E51-95CA-D44EB0EB09B1}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.0533829C445CDB638690A1E5308EEEC0] [APT] [{428AAFC8-6DA4-4BC5-9220-56BFAF7C8660}] (.ArkMicro.) -- C:\Program Files (x86)\USB 2.0 PC CAMERA\Camera Capture.exe [174592]
[MD5.00000000000000000000000000000000] [APT] [{49126B81-EF9C-45F2-9AE0-358C83D5239A}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.0533829C445CDB638690A1E5308EEEC0] [APT] [{494B4770-65A1-4B74-9C2E-42D91CBBFB0F}] (.ArkMicro.) -- C:\Program Files (x86)\USB 2.0 PC CAMERA\Camera Capture.exe [174592]
[MD5.00000000000000000000000000000000] [APT] [{51D750FB-553B-4336-B5B1-51D312DE7EE5}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{679A2E6E-E656-4E5A-B195-025397CAF2E3}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{67B86D6E-EDA3-4F6B-95F4-5CC41B0C8A9B}] (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe (.not file.) [0]
[MD5.3D5D73B3E89A2AEA63C5A1164BCCD228] [APT] [{6B832546-8F64-439E-8640-CECA349010D2}] (.D-Link.) -- C:\Program Files (x86)\D-Link\D-Link Wireless G DWA-110\AirGCFG.exe [1662976]
[MD5.6F5386A655598F71BAAB2D6B63A69D6A] [APT] [{6DD281E1-3BE8-40F0-B0B8-228E79691BB9}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [920472]
[MD5.1321DC81E317EE48C4D004775FB29AC9] [APT] [{6FED92B9-298A-430B-A1FC-E163BCFA7C41}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe [1916928]
[MD5.00000000000000000000000000000000] [APT] [{756974C1-EAD2-4C5A-B62B-BB11B5334A60}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{7F1546F6-D9B7-4975-BE02-7A7D5EA34393}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{849ADAB2-75A6-4A59-9B56-0BB8F7BF7CDF}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{8A7998BB-5918-4E12-9656-B766283286DD}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.6F5386A655598F71BAAB2D6B63A69D6A] [APT] [{8B23A486-E721-44F4-8493-F041E1CD72D1}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [920472]
[MD5.00000000000000000000000000000000] [APT] [{93EDA0B8-7DB9-4924-8EAD-078131BE266B}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A6B11427-27C7-4106-BCC3-FBF8D46E148C}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.6F5386A655598F71BAAB2D6B63A69D6A] [APT] [{ACCB4016-9780-4FC6-8455-B44D27861B0D}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472]
[MD5.00000000000000000000000000000000] [APT] [{B5E9A18F-4CF0-4AB5-A4CA-F02551CCBDDE}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{B5F101CF-A712-4FFB-AE2F-F091F3E7457D}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{B5F480F9-A7E7-4A4F-892D-26101E660292}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C0EDE16D-6A5C-46D2-B54A-93BA87054539}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.854563425495A29FB4B198A6ABEBE06D] [APT] [{D301E6D2-0A98-490A-851B-F28977846BFC}] (.Apple Inc..) -- C:\Program Files (x86)\iTunes\iTunes.exe [9789256]
[MD5.00000000000000000000000000000000] [APT] [{E71E45D2-FC55-46D5-92FE-363FE0927D38}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.6F5386A655598F71BAAB2D6B63A69D6A] [APT] [{ED596465-B215-447B-8BE5-D4D3FC343ED8}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472]
[MD5.00000000000000000000000000000000] [APT] [{EF675A95-BC48-454D-845D-0B373F28EFEA}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EFC36F6E-44C4-427E-A44E-64C75E5161B8}] (...) -- C:\Program Files (x86)\Logitech\Video\Launcher.exe (.not file.) [0]
[MD5.0533829C445CDB638690A1E5308EEEC0] [APT] [{F70625F0-9341-4C2E-A88A-39C18F67B043}] (.ArkMicro.) -- C:\Program Files (x86)\USB 2.0 PC CAMERA\Camera Capture.exe [174592]
[MD5.F13AEFFE4139BF891618649BFAF1CD9E] [APT] [{F96B245E-9A0E-498C-94CF-E2C52EA94EB9}] (.Adobe Systems Inc..) -- C:\Users\Lucie\Downloads\AdobeAIRInstaller.exe [17384056]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
~ Scheduled Task: 42 Scanned in 00mn 32s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (BdfNdisf) . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
O41 - Driver: (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
O41 - Driver: (BDVEDISK) . (.BitDefender - FileVault Disk Driver.) - C:\Windows\System32\DRIVERS\bdvedisk.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SASDIFSV) . (. - .) - C:\Program Files\SUPERAntiSpyware\SASDIFSV64.sys (.not file.)
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 72 Scanned in 00mn 00s



---\\ Logiciels install�s (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: ANIWZCS2 Service - (...) [HKLM][64Bits] -- {4C590030-7469-453E-8589-D15DA9D03F52}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B}
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Agatha Christie - Death on the Nile - (.WildTangent.) [HKLM][64Bits] -- WT088147
O42 - Logiciel: Amazon Kindle - (.Amazon.) [HKLM][64Bits] -- Amazon Kindle
O42 - Logiciel: Amazon MP3 Downloader 1.0.17 - (.Amazon Services LLC.) [HKLM][64Bits] -- Amazon MP3 Downloader
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2F72F540-1F60-4266-9506-952B21D6640D}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Assistant de connexion Microsoft Online Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {E20B2752-0909-4B28-B8A9-A9BE519CA1A1}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT088155
O42 - Logiciel: Bitdefender Total Security 2013 - (.Bitdefender.) [HKLM][64Bits] -- Bitdefender
O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM][64Bits] -- WT088159
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {FC635D8E-FFBA-4B2C-BE68-A37D56BDFB74}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT088166
O42 - Logiciel: Creative Mass Storage Drivers - (...) [HKLM][64Bits] -- MuVo Driver
O42 - Logiciel: Creative MediaSource - (...) [HKLM][64Bits] -- {2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}
O42 - Logiciel: Creative MediaSource 5 - (...) [HKLM][64Bits] -- {BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}
O42 - Logiciel: Creative MuVo N200 - (...) [HKLM][64Bits] -- {985B31BF-A8E8-4B9E-8B76-298E756C3FAB}
O42 - Logiciel: Creative System Information - (...) [HKLM][64Bits] -- SysInfo
O42 - Logiciel: Creative ZEN V Series (R2) - (...) [HKLM][64Bits] -- {E7F56612-69F7-4F85-AD0B-B04B1C5BC3BD}
O42 - Logiciel: Creative Zen Nano Plus - (...) [HKLM][64Bits] -- {BA63612E-0458-416A-ADCD-B2349194F20F}
O42 - Logiciel: D-Link Wireless G DWA-110 - (.D-Link.) [HKLM][64Bits] -- {5F753314-628E-4C13-B8AE-BFA7FD514CBE}
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT088175
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT088414
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WT088181
O42 - Logiciel: FastStone Capture 5.3 - (.FastStone Soft.) [HKLM][64Bits] -- FastStone Capture
O42 - Logiciel: File Type Assistant - (...) [HKLM][64Bits] -- Trusted Software Assistant_is1
O42 - Logiciel: FileHippo.com Update Checker - (...) [HKLM][64Bits] -- FileHippo.com
O42 - Logiciel: FileZilla Client 3.6.0.2 - (.FileZilla Project.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: Final Drive Nitro - (.WildTangent.) [HKLM][64Bits] -- WT088418
O42 - Logiciel: ForceDownload - (.Aedge Performance BCN SL.) [HKLM][64Bits] -- {99870497-1A9D-49FC-949F-ECF4986ABA1F}
O42 - Logiciel: Free File Viewer 2012 - (.Bitberry Software.) [HKLM][64Bits] -- FreeFileViewer_is1
O42 - Logiciel: Gestionnaire de disques amovible Creative - (...) [HKLM][64Bits] -- Creative Removable Disk Manager
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Deskjet All-In-One Driver Software 13.0 Rel. 1 - (.HP.) [HKLM][64Bits] -- {EB773820-0871-46A8-9B96-F2B04F8B34F0}
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart Essential 3.5 - (.HP.) [HKLM][64Bits] -- HP Photosmart Essential
O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM][64Bits] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT088189
O42 - Logiciel: Java 7 Update 17 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: Java 7 Update 21 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86417021FF}
O42 - Logiciel: Jewel Quest Solitaire 2 - (.WildTangent.) [HKLM][64Bits] -- WT088194
O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WT088446
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: KompoZer 0.8b3 - (.KompoZer.) [HKLM][64Bits] -- {20aa4150-b5f4-11de-8a39-0800200c9a66}_is1
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MediaHuman YouTube to MP3 Converter version 2.6.5 - (...) [HKLM][64Bits] -- MediaHuman YouTube to MP3 Converter_is1
O42 - Logiciel: MediaImpression 2.0 for PENTAX - (.ArcSoft.) [HKLM][64Bits] -- {D4C7DAB9-6623-4D86-9B9A-C9F8903BA4D2}
O42 - Logiciel: Mediaplayer Lite v1.0 - (...) [HKLM][64Bits] -- Mediaplayer Lite_is1
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 20.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 20.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Notepad++ - (...) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: One.com Cloud Drive 0.3.15.31225 - (.one.com, Inc..) [HKCU][64Bits] -- OnecomCloudDrive
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT088450
O42 - Logiciel: PhotoFiltre - (...) [HKLM][64Bits] -- PhotoFiltre
O42 - Logiciel: Plants vs. Zombies - (.WildTangent.) [HKLM][64Bits] -- WT088203
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT088454
O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WT088458
O42 - Logiciel: Programme de gestion Camera de Logitech� - (...) [HKLM][64Bits] -- QcDrv
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}
O42 - Logiciel: Realtek HDMI Audio Driver for ATI - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5449FB4F-1802-4D5B-A6D8-087DB1142147}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: USB2.0 PC CAMERA - (.USB 2.0 PC CAMERA.) [HKLM][64Bits] -- {58D4FB3A-98E9-4B9B-B01E-7F005AEFE019}
O42 - Logiciel: VLC media player 2.0.2 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Video Downloader version 2.0 - (...) [HKLM][64Bits] -- Video Downloader_is1
O42 - Logiciel: Video Web Camera - (.Suyin Optronics Corp.) [HKLM][64Bits] -- {7760D94E-B1B5-40A0-9AA0-ABF942108755}
O42 - Logiciel: Virtual Villagers 4 - The Tree of Life - (.WildTangent.) [HKLM][64Bits] -- WT088506
O42 - Logiciel: WampServer 2.2 - (.Herv� Leclerc (HeL).) [HKLM][64Bits] -- WampServer 2_is1
O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- eMachines Welcome Center
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: ZENcast Organizer - (...) [HKLM][64Bits] -- ZENcast Organizer
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT088215
O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WT088521
O42 - Logiciel: eMachines Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent emachines Master Uninstall
O42 - Logiciel: eMachines Power Management - (.Acer Incorporated.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964}
O42 - Logiciel: eMachines Recovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: eMachines Registration - (.Acer Incorporated.) [HKLM][64Bits] -- eMachines Registration
O42 - Logiciel: eMachines Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {0225AD21-F3E2-4916-BFF3-65D3F9052582}
O42 - Logiciel: monAlbumPhoto - (.monAlbumPhoto.) [HKLM][64Bits] -- monAlbumPhoto_is1
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 212 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\3rd Eye Solutions]
[HKCU\Software\4shared]
[HKCU\Software\8322898]
[HKCU\Software\APN PIP]
[HKCU\Software\ASProtect]
[HKCU\Software\ATI]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\Affinix]
[HKCU\Software\Amazon]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Audacity]
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKCU\Software\Bitberry]
[HKCU\Software\Bitdefender]
[HKCU\Software\BrowserTemp]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Tech]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DataMngr] =>PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\Dritek]
[HKCU\Software\E-CONCEPT]
[HKCU\Software\FIXIO PC Utilities]
[HKCU\Software\Fighters]
[HKCU\Software\FileHippo.com]
[HKCU\Software\FileScout]
[HKCU\Software\FileTypeAssistant]
[HKCU\Software\FotoWire]
[HKCU\Software\Free Tarot]
[HKCU\Software\FreeCall]
[HKCU\Software\Fridgesoft]
[HKCU\Software\Gabest]
[HKCU\Software\GoforFiles]
[HKCU\Software\Google]
[HKCU\Software\Greatis]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\HowardMedia]
[HKCU\Software\IM Providers]
[HKCU\Software\IncrediMail]
[HKCU\Software\Intel\Indeo\4.1]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KeepVid]
[HKCU\Software\Kobo]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LogiShrd]
[HKCU\Software\Logitech]
[HKCU\Software\MAP-DN]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaHuman]
[HKCU\Software\Mindscape]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Passware]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Protector]
[HKCU\Software\RIT]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Regrun]
[HKCU\Software\Reimage]
[HKCU\Software\SOFTWIN]
[HKCU\Software\SUPERAntiSpyware.com]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Skype]
[HKCU\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Softonic]
[HKCU\Software\Sonix]
[HKCU\Software\Suyin]
[HKCU\Software\Symantec]
[HKCU\Software\SysInternals]
[HKCU\Software\Tarobot]
[HKCU\Software\TeamViewer]
[HKCU\Software\TeleCharger]
[HKCU\Software\Terravirtual]
[HKCU\Software\Tific]
[HKCU\Software\Trolltech]
[HKCU\Software\UPH]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VB6Dock]
[HKCU\Software\Wallpaper Changer]
[HKCU\Software\WebTarot]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\d57dadbbc68e848]
[HKCU\Software\eMachines]
[HKCU\Software\jZip]
[HKCU\Software\monAlbumPhoto]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVC3]
[HKLM\Software\Acer]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Audible]
[HKLM\Software\BitDefender]
[HKLM\Software\Bitdefender Parental Control 2013]
[HKLM\Software\Bitdefender Parental Control]
[HKLM\Software\Bitdefender SafeBox]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\Cyberlink]
[HKLM\Software\EnigmaSoftwareGroup]
[HKLM\Software\FileZilla 3]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Reimage]
[HKLM\Software\SRS Labs]
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Speedchecker Limited]
[HKLM\Software\VideoLAN]
[HKLM\Software\Waves Audio]
[HKLM\Software\WebSupergoo]
[HKLM\Software\Wow6432Node\ANI]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Acer Incorporated]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Alpha Networks]
[HKLM\Software\Wow6432Node\Amazon]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Bitdefender]
[HKLM\Software\Wow6432Node\Boonty]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canal+ Active]
[HKLM\Software\Wow6432Node\CentricDevelopment]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Computer Updater]
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\Cygnus Solutions]
[HKLM\Software\Wow6432Node\D-Link]
[HKLM\Software\Wow6432Node\DataMngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\DelphineSoft]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DotEmu]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\Fighters]
[HKLM\Software\Wow6432Node\FileZilla 3]
[HKLM\Software\Wow6432Node\GoforFiles]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Greatis]
[HKLM\Software\Wow6432Node\HP]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\InstallIQ]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\Jodix]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\LogMeIn Rescue]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\MAP-DN]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Macrovision]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\Mircrosoft]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MusicNet]
[HKLM\Software\Wow6432Node\NewTech Infosystems]
[HKLM\Software\Wow6432Node\Norton]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\OnecomCloudDrive]
[HKLM\Software\Wow6432Node\PIP]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SOFTWIN]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\SecureDigitalServices]
[HKLM\Software\Wow6432Node\Sensible Vision]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Summitsoft]
[HKLM\Software\Wow6432Node\Suyin Optronics Corp]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\USB 2.0 PC CAMERA]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VDownloader]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WebSupergoo]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Xpiral]
[HKLM\Software\Wow6432Node\afplanet]
[HKLM\Software\Wow6432Node\d57dadbbc68e848]
[HKLM\Software\Wow6432Node\logishrd]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 368 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 24/01/2013 - 18:44:36 - [1,748] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/03/2013 - 22:22:34 - [0] ----D C:\Program Files (x86)\Amaya
O43 - CFD: 20/04/2013 - 01:03:23 - [86,613] ----D C:\Program Files (x86)\Amazon
O43 - CFD: 15/11/2012 - 21:27:49 - [0] ----D C:\Program Files (x86)\AnglaisFacile.com
O43 - CFD: 07/10/2011 - 11:18:05 - [1,020] ----D C:\Program Files (x86)\ANI
O43 - CFD: 04/01/2012 - 14:20:29 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 30/09/2010 - 22:36:36 - [77,715] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 22/04/2011 - 19:56:39 - [5,210] ----D C:\Program Files (x86)\Audible
O43 - CFD: 23/10/2012 - 17:15:14 - [0,055] ----D C:\Program Files (x86)\Chrome
O43 - CFD: 11/06/2011 - 21:21:17 - [0,071] ----D C:\Program Files (x86)\CHRYOPROD
O43 - CFD: 14/04/2013 - 00:35:26 - [634,138] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 23/04/2011 - 20:50:57 - [111,115] ----D C:\Program Files (x86)\Creative
O43 - CFD: 22/04/2011 - 19:55:30 - [50,656] --H-D C:\Program Files (x86)\Creative Installation Information
O43 - CFD: 07/10/2011 - 23:31:42 - [7,890] ----D C:\Program Files (x86)\D-Link
O43 - CFD: 25/03/2013 - 20:28:02 - [0] ----D C:\Program Files (x86)\DsNET Corp
O43 - CFD: 09/02/2013 - 00:16:16 - [43,565] ----D C:\Program Files (x86)\eMachines
O43 - CFD: 19/06/2011 - 18:10:00 - [309,382] ----D C:\Program Files (x86)\eMachines Games
O43 - CFD: 11/06/2012 - 15:04:32 - [0] ----D C:\Program Files (x86)\eMule
O43 - CFD: 13/04/2013 - 14:28:37 - [1,387] ----D C:\Program Files (x86)\FastStone Capture
O43 - CFD: 24/04/2013 - 01:05:25 - [7,859] ----D C:\Program Files (x86)\File Type Assistant
O43 - CFD: 10/05/2012 - 13:33:22 - [0,421] ----D C:\Program Files (x86)\FileHippo.com
O43 - CFD: 28/02/2013 - 02:54:02 - [16,770] ----D C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 10/03/2012 - 01:14:03 - [0,096] ----D C:\Program Files (x86)\Free iPod Video Converter
O43 - CFD: 12/06/2012 - 12:57:41 - [0,116] ----D C:\Program Files (x86)\Free Video Converter
O43 - CFD: 28/02/2013 - 01:57:38 - [51,687] ----D C:\Program Files (x86)\FreeFileViewer
O43 - CFD: 23/02/2013 - 01:06:03 - [5,134] ----D C:\Program Files (x86)\GoforFiles
O43 - CFD: 14/04/2013 - 00:36:57 - [0] ----D C:\Program Files (x86)\Google
O43 - CFD: 06/02/2013 - 11:07:53 - [203,942] ----D C:\Program Files (x86)\HP
O43 - CFD: 06/09/2012 - 00:29:35 - [0,104] ----D C:\Program Files (x86)\Innovative Solutions
O43 - CFD: 09/03/2013 - 18:31:49 - [118,306] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 10/04/2013 - 16:37:57 - [6,004] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 24/03/2013 - 03:14:14 - [154,781] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 16/05/2012 - 00:42:09 - [124,845] ----D C:\Program Files (x86)\Java
O43 - CFD: 23/04/2013 - 00:14:34 - [22,831] ----D C:\Program Files (x86)\KompoZer
O43 - CFD: 10/06/2011 - 12:33:16 - [0,054] ----D C:\Program Files (x86)\Lecteur CANALPLAY
O43 - CFD: 15/05/2012 - 19:15:36 - [7,811] ----D C:\Program Files (x86)\LeTarot
O43 - CFD: 14/11/2011 - 14:57:07 - [0] ----D C:\Program Files (x86)\LimeWire
O43 - CFD: 06/09/2012 - 00:05:15 - [199,905] ----D C:\Program Files (x86)\Logitech
O43 - CFD: 12/04/2013 - 13:47:56 - [13,318] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 25/03/2013 - 21:19:08 - [41,415] ----D C:\Program Files (x86)\MediaHuman
O43 - CFD: 18/08/2011 - 15:25:40 - [3,768] ----D C:\Program Files (x86)\Mediaplayer Lite
O43 - CFD: 11/04/2013 - 23:22:38 - [0,216] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 05/09/2012 - 14:10:19 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 06/01/2013 - 01:49:14 - [144,228] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 15/04/2013 - 19:16:27 - [40,835] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 17/09/2012 - 13:22:32 - [5,306] ----D C:\Program Files (x86)\Microsoft SkyDrive
O43 - CFD: 03/04/2012 - 20:52:12 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 04/04/2012 - 10:05:30 - [4,166] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 02/04/2012 - 17:38:31 - [0,148] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 19/05/2012 - 14:57:49 - [0] ----D C:\Program Files (x86)\Mindscape
O43 - CFD: 13/10/2012 - 14:52:37 - [84,462] ----D C:\Program Files (x86)\monAlbumPhoto
O43 - CFD: 12/04/2013 - 12:58:22 - [51,705] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/04/2013 - 17:01:10 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 02/11/2011 - 11:15:22 - [0] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 19/06/2011 - 15:25:02 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 10/02/2013 - 01:51:55 - [3,374] ----D C:\Program Files (x86)\Multiupload Batch Uploader
O43 - CFD: 24/02/2013 - 21:10:59 - [11,904] ----D C:\Program Files (x86)\Notepad++
O43 - CFD: 23/10/2012 - 19:21:04 - [0] ----D C:\Program Files (x86)\NTI
O43 - CFD: 11/02/2013 - 19:50:02 - [49,787] ----D C:\Program Files (x86)\OnecomCloudDrive
O43 - CFD: 29/01/2012 - 00:10:54 - [0] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 22/03/2012 - 20:42:20 - [0,490] ----D C:\Program Files (x86)\Passware
O43 - CFD: 22/08/2011 - 00:23:03 - [117,850] ----D C:\Program Files (x86)\PENTAX
O43 - CFD: 11/06/2012 - 14:00:12 - [12,352] ----D C:\Program Files (x86)\pese_courrier
O43 - CFD: 24/03/2013 - 03:14:19 - [3,387] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 13/03/2013 - 15:44:13 - [72,326] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 17/10/2012 - 11:21:32 - [0,476] ----D C:\Program Files (x86)\Radio Fr Solo
O43 - CFD: 15/07/2010 - 03:18:33 - [14,626] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 15/07/2010 - 03:33:35 - [0,663] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 30/09/2010 - 22:46:57 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 29/04/2012 - 18:51:28 - [0] ----D C:\Program Files (x86)\ToolKitService
O43 - CFD: 04/04/2013 - 17:20:50 - [1,053] ----D C:\Program Files (x86)\UnHackMe
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 09/03/2013 - 18:40:49 - [24,428] ----D C:\Program Files (x86)\USB 2.0 PC CAMERA
O43 - CFD: 07/01/2012 - 04:31:16 - [0,860] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 01/03/2013 - 15:54:52 - [1,795] ----D C:\Program Files (x86)\Wallpaper Changer
O43 - CFD: 18/03/2013 - 18:43:01 - [0] ----D C:\Program Files (x86)\webcam
O43 - CFD: 13/05/2012 - 22:56:22 - [0,002] ----D C:\Program Files (x86)\Webtarot
O43 - CFD: 01/10/2010 - 08:29:46 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 11/04/2013 - 23:23:08 - [78,125] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 11/04/2013 - 23:22:18 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 02/07/2011 - 15:39:51 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 28/08/2012 - 01:14:17 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 02/07/2011 - 15:39:50 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 02/07/2011 - 15:39:51 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 02/07/2011 - 15:39:51 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 05/09/2012 - 23:00:08 - [4,131] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 05/09/2012 - 00:36:30 - [0,053] ----D C:\Program Files (x86)\Yawcam
O43 - CFD: 24/04/2013 - 22:39:40 - [21,739] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 17/05/2012 - 12:35:57 - [0] ----D C:\Program Files (x86)\ZHPFix
O43 - CFD: 10/02/2013 - 02:15:55 - [0,005] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 12/04/2013 - 13:42:08 - [45,606] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 24/03/2013 - 00:08:47 - [99,466] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 22/08/2011 - 00:23:10 - [64,145] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 07/02/2013 - 15:35:32 - [5,085] ----D C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 22/04/2011 - 19:24:59 - [3,019] ----D C:\Program Files (x86)\Common Files\Creative
O43 - CFD: 29/11/2011 - 15:05:39 - [0,095] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 18/06/2011 - 19:30:56 - [0,507] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 18/06/2011 - 19:31:01 - [5,403] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 05/09/2012 - 18:13:59 - [10,368] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 14/02/2013 - 14:57:58 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 04/09/2012 - 22:53:45 - [0] ----D C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 05/09/2012 - 23:12:26 - [39,327] ----D C:\Program Files (x86)\Common Files\Logitech
O43 - CFD: 04/09/2012 - 23:02:30 - [0] ----D C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 15/07/2010 - 03:31:30 - [0,625] ----D C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 11/04/2013 - 23:22:24 - [260,428] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 23/04/2011 - 20:55:30 - [0] ----D C:\Program Files (x86)\Common Files\SWF Studio
O43 - CFD: 02/06/2012 - 21:01:38 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 06/01/2013 - 01:49:14 - [16,773] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 30/09/2010 - 22:51:29 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 20/03/2013 - 10:58:48 - [42,763] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 24/03/2013 - 03:14:10 - [2,775] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 15/07/2010 - 03:27:10 - [0,000] ----D C:\ProgramData\Acer
O43 - CFD: 22/03/2013 - 21:56:00 - [436,339] ----D C:\ProgramData\Adobe
O43 - CFD: 13/10/2012 - 15:02:27 - [169,881] ----D C:\ProgramData\albumphoto
O43 - CFD: 10/05/2012 - 13:39:52 - [211,989] ----D C:\ProgramData\Apple
O43 - CFD: 03/06/2011 - 18:38:31 - [84,134] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 20/12/2011 - 01:56:33 - [0,010] --H-D C:\ProgramData\ArcSoft
O43 - CFD: 30/09/2010 - 22:41:52 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 07/02/2013 - 15:35:15 - [0,117] ----D C:\ProgramData\Avira
O43 - CFD: 06/04/2013 - 00:14:57 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 25/02/2013 - 20:47:18 - [0,000] ----D C:\ProgramData\bdch
O43 - CFD: 09/03/2013 - 16:15:20 - [12,551] ----D C:\ProgramData\BDLogging
O43 - CFD: 08/04/2013 - 20:42:16 - [1,394] ----D C:\ProgramData\Bitdefender
O43 - CFD: 29/03/2011 - 00:21:27 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 11/06/2012 - 22:54:27 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 28/02/2013 - 01:56:42 - [2,000] ----D C:\ProgramData\Computer Updater
O43 - CFD: 22/04/2011 - 20:00:09 - [0,181] ----D C:\ProgramData\Creative
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 31/01/2012 - 02:40:48 - [0,004] ----D C:\ProgramData\DVD Shrink
O43 - CFD: 15/07/2010 - 03:28:46 - [3,090] ----D C:\ProgramData\eMachines
O43 - CFD: 11/06/2012 - 15:04:32 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 29/03/2011 - 00:21:27 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 23/10/2012 - 19:08:59 - [0,047] ----D C:\ProgramData\Fighters
O43 - CFD: 15/07/2010 - 03:31:33 - [0,003] ----D C:\ProgramData\FLEXnet
O43 - CFD: 18/06/2011 - 19:49:52 - [0,133] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 15/05/2012 - 19:15:36 - [24,142] ----D C:\ProgramData\HP
O43 - CFD: 18/06/2011 - 19:34:03 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 23/02/2013 - 21:03:50 - [0,000] ----D C:\ProgramData\IM
O43 - CFD: 31/12/2012 - 15:58:32 - [0,012] ----D C:\ProgramData\IncrediMail
O43 - CFD: 04/09/2012 - 22:42:38 - [0,000] ----D C:\ProgramData\LogiShrd
O43 - CFD: 04/09/2012 - 22:39:49 - [5,273] ----D C:\ProgramData\Logitech
O43 - CFD: 01/05/2012 - 21:30:07 - [6,050] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 23/08/2011 - 13:59:47 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 29/03/2011 - 00:21:27 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 11/04/2013 - 17:24:33 - [284,241] -S--D C:\ProgramData\Microsoft
O43 - CFD: 22/03/2012 - 21:04:25 - [0,048] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 17/09/2012 - 13:21:50 - [0,000] ----D C:\ProgramData\Microsoft SkyDrive
O43 - CFD: 29/03/2011 - 00:21:27 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 03/05/2012 - 18:31:57 - [0,001] ----D C:\ProgramData\Mozilla
O43 - CFD: 02/06/2012 - 22:54:29 - [0,310] ----D C:\ProgramData\Norton
O43 - CFD: 27/10/2011 - 18:00:24 - [10,458] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 29/03/2011 - 00:23:00 - [0,001] ----D C:\ProgramData\oem
O43 - CFD: 25/05/2011 - 17:51:04 - [0] ----D C:\ProgramData\PCSettings
O43 - CFD: 22/06/2011 - 16:39:57 - [0] ----D C:\ProgramData\QuickTime
O43 - CFD: 04/04/2013 - 17:17:43 - [0] ----D C:\ProgramData\RegRun
O43 - CFD: 14/04/2013 - 00:35:30 - [48,148] ----D C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 14/11/2011 - 14:16:57 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 24/02/2013 - 23:26:41 - [0,004] ----D C:\ProgramData\SUPERAntiSpyware.com
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 10/11/2012 - 23:10:45 - [0] ----D C:\ProgramData\Uniblue
O43 - CFD: 30/11/2011 - 00:45:13 - [0] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 18/06/2011 - 19:51:01 - [0,000] ----D C:\ProgramData\WEBREG
O43 - CFD: 06/09/2012 - 09:06:46 - [1914,915] ----D C:\ProgramData\WildTangent
O43 - CFD: 31/08/2011 - 11:57:22 - [0] ----D C:\ProgramData\WinZip
O43 - CFD: 03/06/2011 - 18:38:55 - [0,002] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 10/02/2013 - 02:30:47 - [27,870] ----D C:\Users\Lucie\AppData\Roaming\Adobe
O43 - CFD: 02/11/2011 - 14:42:56 - [0,077] ----D C:\Users\Lucie\AppData\Roaming\aHisoft
O43 - CFD: 03/02/2013 - 02:58:28 - [0,010] ----D C:\Users\Lucie\AppData\Roaming\Amazon
O43 - CFD: 11/06/2012 - 22:39:06 - [0] ----D C:\Users\Lucie\AppData\Roaming\Apowersoft
O43 - CFD: 16/11/2012 - 19:15:25 - [0,266] ----D C:\Users\Lucie\AppData\Roaming\Apple Computer
O43 - CFD: 15/05/2012 - 19:15:39 - [3,747] ----D C:\Users\Lucie\AppData\Roaming\ArcSoft
O43 - CFD: 29/03/2011 - 00:24:13 - [0] ----D C:\Users\Lucie\AppData\Roaming\ATI
O43 - CFD: 09/10/2012 - 14:25:50 - [0,001] ----D C:\Users\Lucie\AppData\Roaming\Audacity
O43 - CFD: 19/04/2013 - 23:04:12 - [0,457] ----D C:\Users\Lucie\AppData\Roaming\B1Toolbar
O43 - CFD: 06/04/2013 - 00:14:56 - [0,009] ----D C:\Users\Lucie\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 08/04/2013 - 20:43:14 - [0,052] ----D C:\Users\Lucie\AppData\Roaming\Bitdefender
O43 - CFD: 29/01/2012 - 00:04:29 - [0,586] ----D C:\Users\Lucie\AppData\Roaming\BitTorrent
O43 - CFD: 20/04/2013 - 01:37:46 - [0,358] ----D C:\Users\Lucie\AppData\Roaming\calibre
O43 - CFD: 28/02/2013 - 21:19:14 - [0,001] ----D C:\Users\Lucie\AppData\Roaming\Capturino
O43 - CFD: 24/01/2013 - 18:45:09 - [0,012] ----D C:\Users\Lucie\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
O43 - CFD: 09/02/2013 - 02:14:46 - [2,568] ----D C:\Users\Lucie\AppData\Roaming\Common
O43 - CFD: 13/01/2012 - 12:19:49 - [8,945] ----D C:\Users\Lucie\AppData\Roaming\Creative
O43 - CFD: 18/02/2013 - 18:21:30 - [0,003] ----D C:\Users\Lucie\AppData\Roaming\FastStone
O43 - CFD: 23/10/2012 - 19:08:59 - [0,005] ----D C:\Users\Lucie\AppData\Roaming\Fighters
O43 - CFD: 06/04/2013 - 00:15:06 - [0,308] ----D C:\Users\Lucie\AppData\Roaming\File Scout
O43 - CFD: 23/04/2013 - 02:04:16 - [0,060] ----D C:\Users\Lucie\AppData\Roaming\FileZilla
O43 - CFD: 24/03/2013 - 03:14:05 - [0,000] ----D C:\Users\Lucie\AppData\Roaming\FreeFileViewer
O43 - CFD: 19/05/2012 - 03:41:08 - [0,001] ----D C:\Users\Lucie\AppData\Roaming\FreeVideoConverter
O43 - CFD: 23/02/2013 - 01:03:31 - [0,001] ----D C:\Users\Lucie\AppData\Roaming\GoforFiles
O43 - CFD: 01/04/2011 - 21:50:00 - [0] ----D C:\Users\Lucie\AppData\Roaming\Google
O43 - CFD: 08/02/2013 - 02:35:13 - [0,000] ----D C:\Users\Lucie\AppData\Roaming\gtk-2.0
O43 - CFD: 18/06/2011 - 19:51:01 - [0,024] ----D C:\Users\Lucie\AppData\Roaming\HP
O43 - CFD: 29/03/2011 - 00:22:42 - [0] ----D C:\Users\Lucie\AppData\Roaming\Identities
O43 - CFD: 07/10/2011 - 23:31:34 - [0] ----D C:\Users\Lucie\AppData\Roaming\InstallShield
O43 - CFD: 23/04/2013 - 00:14:22 - [0,200] ----D C:\Users\Lucie\AppData\Roaming\kompozer.net
O43 - CFD: 04/09/2012 - 22:41:47 - [0,000] ----D C:\Users\Lucie\AppData\Roaming\Leadertech
O43 - CFD: 14/11/2011 - 14:40:22 - [22,434] ----D C:\Users\Lucie\AppData\Roaming\LimeWire
O43 - CFD: 29/03/2011 - 00:23:02 - [0,055] ----D C:\Users\Lucie\AppData\Roaming\Macromedia
O43 - CFD: 01/05/2012 - 21:30:34 - [0] ----D C:\Users\Lucie\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:38 - [0] ----D C:\Users\Lucie\AppData\Roaming\Media Center Programs
O43 - CFD: 11/04/2013 - 23:22:24 - [12,287] -S--D C:\Users\Lucie\AppData\Roaming\Microsoft
O43 - CFD: 02/06/2011 - 19:54:23 - [41,050] ----D C:\Users\Lucie\AppData\Roaming\Mozilla
O43 - CFD: 13/09/2011 - 14:10:13 - [0,007] ----D C:\Users\Lucie\AppData\Roaming\MusicNet
O43 - CFD: 06/04/2013 - 00:16:39 - [0] ----D C:\Users\Lucie\AppData\Roaming\Nosibay
O43 - CFD: 19/02/2013 - 23:50:42 - [0,432] ----D C:\Users\Lucie\AppData\Roaming\Notepad++
O43 - CFD: 24/04/2013 - 21:38:27 - [19,514] ----D C:\Users\Lucie\AppData\Roaming\OnecomCloudDrive
O43 - CFD: 25/03/2013 - 21:19:10 - [15,787] ----D C:\Users\Lucie\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 27/10/2011 - 18:40:20 - [1,464] ----D C:\Users\Lucie\AppData\Roaming\OpenOffice.org
O43 - CFD: 06/04/2013 - 00:21:55 - [0] ----D C:\Users\Lucie\AppData\Roaming\PerformerSoft
O43 - CFD: 13/01/2013 - 02:01:38 - [0,001] ----D C:\Users\Lucie\AppData\Roaming\PhotoFiltre
O43 - CFD: 09/02/2013 - 02:59:12 - [0,004] ----D C:\Users\Lucie\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 07/02/2013 - 15:39:07 - [0] ----D C:\Users\Lucie\AppData\Roaming\QuickScan
O43 - CFD: 09/02/2013 - 02:14:57 - [0,058] ----D C:\Users\Lucie\AppData\Roaming\SCheck
O43 - CFD: 14/04/2013 - 00:35:12 - [3,599] ----D C:\Users\Lucie\AppData\Roaming\Skype
O43 - CFD: 02/04/2012 - 17:55:17 - [0,883] ----D C:\Users\Lucie\AppData\Roaming\SoftGrid Client
O43 - CFD: 09/02/2013 - 02:15:48 - [0,059] ----D C:\Users\Lucie\AppData\Roaming\SSync
O43 - CFD: 01/03/2013 - 00:28:09 - [0] ----D C:\Users\Lucie\AppData\Roaming\Summitsoft
O43 - CFD: 24/02/2013 - 23:26:47 - [0] ----D C:\Users\Lucie\AppData\Roaming\SUPERAntiSpyware.com
O43 - CFD: 31/08/2011 - 11:30:37 - [0] ----D C:\Users\Lucie\AppData\Roaming\Systweak
O43 - CFD: 20/02/2013 - 17:23:51 - [0,102] ----D C:\Users\Lucie\AppData\Roaming\TeamViewer
O43 - CFD: 23/06/2011 - 14:39:46 - [0,071] ----D C:\Users\Lucie\AppData\Roaming\Tific
O43 - CFD: 28/08/2012 - 01:14:17 - [4,691] ----D C:\Users\Lucie\AppData\Roaming\Todae
O43 - CFD: 29/11/2011 - 15:07:57 - [0] ----D C:\Users\Lucie\AppData\Roaming\TP
O43 - CFD: 14/10/2012 - 02:59:54 - [0,081] ----D C:\Users\Lucie\AppData\Roaming\vlc
O43 - CFD: 12/05/2012 - 22:41:49 - [0] ----D C:\Users\Lucie\AppData\Roaming\Webtarot
O43 - CFD: 06/09/2012 - 09:06:45 - [0,000] ----D C:\Users\Lucie\AppData\Roaming\WildTangent
O43 - CFD: 01/10/2011 - 14:27:13 - [0,000] ----D C:\Users\Lucie\AppData\Roaming\Windows Live Writer
O43 - CFD: 05/09/2012 - 23:09:35 - [0,000] ----D C:\Users\Lucie\AppData\Roaming\WinRAR
O43 - CFD: 10/02/2013 - 02:25:59 - [55,190] ----D C:\Users\Lucie\AppData\Local\Adobe
O43 - CFD: 12/03/2013 - 04:53:11 - [0,179] ----D C:\Users\Lucie\AppData\Local\Amazon
O43 - CFD: 03/06/2011 - 18:34:17 - [0] ----D C:\Users\Lucie\AppData\Local\Apple
O43 - CFD: 20/05/2012 - 03:11:48 - [20,693] ----D C:\Users\Lucie\AppData\Local\Apple Computer
O43 - CFD: 29/03/2011 - 00:21:32 - [0] ----D C:\Users\Lucie\AppData\Local\Application Data
O43 - CFD: 22/03/2012 - 01:52:36 - [8,070] ----D C:\Users\Lucie\AppData\Local\Apps
O43 - CFD: 22/08/2011 - 00:38:55 - [0,001] ----D C:\Users\Lucie\AppData\Local\ArcSoft
O43 - CFD: 29/03/2011 - 00:24:13 - [0,057] ----D C:\Users\Lucie\AppData\Local\ATI
O43 - CFD: 07/07/2011 - 00:59:04 - [0] ----D C:\Users\Lucie\AppData\Local\Axialis
O43 - CFD: 19/04/2013 - 23:04:19 - [0,163] ----D C:\Users\Lucie\AppData\Local\B1E
O43 - CFD: 13/04/2013 - 10:38:54 - [0] ----D C:\Users\Lucie\AppData\Local\CrashDumps
O43 - CFD: 22/03/2013 - 00:41:53 - [0] ----D C:\Users\Lucie\AppData\Local\CrashRpt
O43 - CFD: 13/03/2013 - 01:05:39 - [0] ----D C:\Users\Lucie\AppData\Local\Deployment
O43 - CFD: 13/05/2012 - 16:11:18 - [0] ----D C:\Users\Lucie\AppData\Local\Diagnostics
O43 - CFD: 11/04/2013 - 16:08:17 - [55,491] ----D C:\Users\Lucie\AppData\Local\ElevatedDiagnostics
O43 - CFD: 11/06/2012 - 15:04:32 - [0] ----D C:\Users\Lucie\AppData\Local\eMule
O43 - CFD: 14/03/2013 - 00:16:27 - [0] ----D C:\Users\Lucie\AppData\Local\FastStone
O43 - CFD: 28/02/2013 - 01:57:59 - [0,026] ----D C:\Users\Lucie\AppData\Local\FileTypeAssistant
O43 - CFD: 08/02/2013 - 23:50:57 - [1,355] ----D C:\Users\Lucie\AppData\Local\fontconfig
O43 - CFD: 28/02/2013 - 02:11:15 - [0,000] ----D C:\Users\Lucie\AppData\Local\FreeFileViewer
O43 - CFD: 08/02/2013 - 23:50:29 - [0,001] ----D C:\Users\Lucie\AppData\Local\gegl-0.2
O43 - CFD: 09/02/2013 - 00:33:20 - [645,905] ----D C:\Users\Lucie\AppData\Local\Google
O43 - CFD: 31/03/2012 - 15:26:01 - [0,034] ----D C:\Users\Lucie\AppData\Local\Halite
O43 - CFD: 29/03/2011 - 00:21:32 - [0] ----D C:\Users\Lucie\AppData\Local\Historique
O43 - CFD: 28/06/2011 - 13:57:19 - [6,962] ----D C:\Users\Lucie\AppData\Local\HP
O43 - CFD: 23/02/2013 - 21:27:22 - [34,998] ----D C:\Users\Lucie\AppData\Local\IM
O43 - CFD: 06/09/2012 - 00:29:42 - [52,726] ----D C:\Users\Lucie\AppData\Local\Innovative Solutions
O43 - CFD: 23/04/2013 - 00:14:22 - [2,253] ----D C:\Users\Lucie\AppData\Local\kompozer.net
O43 - CFD: 04/09/2012 - 22:52:02 - [0] ----D C:\Users\Lucie\AppData\Local\LogiShrd
O43 - CFD: 04/09/2012 - 19:02:37 - [0] ----D C:\Users\Lucie\AppData\Local\Logitech-LS
O43 - CFD: 04/09/2012 - 22:47:09 - [2,779] ----D C:\Users\Lucie\AppData\Local\Logitech� Webcam Software
O43 - CFD: 18/03/2013 - 22:32:14 - [0] ----D C:\Users\Lucie\AppData\Local\LogMeIn Rescue Applet
O43 - CFD: 15/05/2012 - 19:23:03 - [0] ----D C:\Users\Lucie\AppData\Local\Macromedia
O43 - CFD: 11/04/2013 - 23:38:10 - [336,659] ----D C:\Users\Lucie\AppData\Local\Microsoft
O43 - CFD: 26/02/2012 - 21:18:24 - [0] ----D C:\Users\Lucie\AppData\Local\Microsoft Help
O43 - CFD: 02/06/2011 - 19:53:58 - [7,206] ----D C:\Users\Lucie\AppData\Local\Mozilla
O43 - CFD: 10/02/2013 - 01:48:39 - [0,001] ----D C:\Users\Lucie\AppData\Local\multiupload
O43 - CFD: 09/04/2012 - 16:11:06 - [1,130] ----D C:\Users\Lucie\AppData\Local\NPE
O43 - CFD: 31/01/2013 - 16:32:29 - [0] ----D C:\Users\Lucie\AppData\Local\Programs
O43 - CFD: 29/11/2011 - 15:07:36 - [4,711] ----D C:\Users\Lucie\AppData\Local\SoftGrid Client
O43 - CFD: 16/02/2012 - 16:34:08 - [1,071] ----D C:\Users\Lucie\AppData\Local\Solid State Networks
O43 - CFD: 23/06/2011 - 14:39:17 - [0,005] ----D C:\Users\Lucie\AppData\Local\Symantec
O43 - CFD: 24/04/2013 - 22:39:56 - [24,341] ----D C:\Users\Lucie\AppData\Local\Temp
O43 - CFD: 29/03/2011 - 00:21:32 - [0] ----D C:\Users\Lucie\AppData\Local\Temporary Internet Files
O43 - CFD: 25/05/2011 - 17:55:25 - [0,196] ----D C:\Users\Lucie\AppData\Local\VirtualStore
O43 - CFD: 11/04/2013 - 17:26:31 - [0,148] ----D C:\Users\Lucie\AppData\Local\Windows Live
O43 - CFD: 14/06/2011 - 22:32:40 - [0,618] ----D C:\Users\Lucie\AppData\Local\Windows Live Writer
O43 - CFD: 24/02/2013 - 13:04:00 - [0,002] ----D C:\Users\Lucie\AppData\Local\WPFBChanger
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/07/2012 - 09:20:24 - [0,000] R---D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 20/04/2013 - 01:03:29 - [0,004] ----D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
O43 - CFD: 21/05/2011 - 21:51:10 - [0,000] ----D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/03/2012 - 02:14:06 - [0,002] ----D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Office 365
O43 - CFD: 19/02/2013 - 23:44:00 - [0] ----D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 25/01/2013 - 01:20:07 - [0,004] ----D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\One.com Cloud Drive
O43 - CFD: 04/09/2012 - 22:52:35 - [0,000] R---D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 05/09/2012 - 23:00:09 - [0,003] ----D C:\Users\Lucie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 295 Scanned in 00mn 03s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.CD2A5ABE53AB50FC4D5B59FAC590EBEE] - 24/04/2013 - 21:35:54 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.1CC3292CE929CAF3DFC1AF6FB51272F0] - 24/04/2013 - 20:52:54 ----- . (...) -- C:\Windows\WindowsUpdate.log [2056717]
O44 - LFC:[MD5.AE3E6634EBE00E94B72503FC1D21B7DF] - 24/04/2013 - 20:35:38 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.8643C5F1BE543C743E0A6056A5A8D985] - 24/04/2013 - 18:00:51 ---A- . (...) -- C:\bdlog.txt [108521]
O44 - LFC:[MD5.6FFC6A003F13EDB5195307AD8935543F] - 24/04/2013 - 16:50:02 ---A- . (...) -- C:\Windows\Reimage.ini [162]
O44 - LFC:[MD5.478494BA4562955F6A95DD2744A7C7BD] - 22/04/2013 - 19:14:12 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [122190]
O44 - LFC:[MD5.8BA003229DC821A0F3422371F8C3CB90] - 22/04/2013 - 19:14:12 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [149936]
O44 - LFC:[MD5.222E3DCDD2870D90338B42567595CBC1] - 22/04/2013 - 19:14:12 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [655318]
O44 - LFC:[MD5.D539194E2FF26F8CD1D03F14AB096C67] - 22/04/2013 - 19:14:12 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [748328]
O44 - LFC:[MD5.478494BA4562955F6A95DD2744A7C7BD] - 22/04/2013 - 19:14:12 RSHAD . (...) -- C:\Windows\System32\perfc009.dat [122190]
O44 - LFC:[MD5.8BA003229DC821A0F3422371F8C3CB90] - 22/04/2013 - 19:14:12 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat [149936]
O44 - LFC:[MD5.222E3DCDD2870D90338B42567595CBC1] - 22/04/2013 - 19:14:12 RSHAD . (...) -- C:\Windows\System32\perfh009.dat [655318]
O44 - LFC:[MD5.D539194E2FF26F8CD1D03F14AB096C67] - 22/04/2013 - 19:14:12 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat [748328]
O44 - LFC:[MD5.FC5CA3D7FFBD67936AEA2459CFB754C4] - 22/04/2013 - 19:14:11 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1670512]
O44 - LFC:[MD5.FC5CA3D7FFBD67936AEA2459CFB754C4] - 22/04/2013 - 19:14:11 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1670512]
O44 - LFC:[MD5.315781E506D97F08E22F164B36EB5C11] - 20/04/2013 - 11:02:51 ---A- . (.Oracle Corporation - Pas de description.) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll [108448]
O44 - LFC:[MD5.315781E506D97F08E22F164B36EB5C11] - 20/04/2013 - 11:02:51 RSHAD . (.Oracle Corporation - Pas de description.) -- C:\Windows\System32\WindowsAccessBridge-64.dll [108448]
O44 - LFC:[MD5.B079503F67BAE4FCAC7689B625E81987] - 20/04/2013 - 11:02:49 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\SysNative\javaw.exe [188832]
O44 - LFC:[MD5.B079503F67BAE4FCAC7689B625E81987] - 20/04/2013 - 11:02:49 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe [188832]
O44 - LFC:[MD5.E5820019B309EC94BA0E9C0C67E32091] - 20/04/2013 - 11:02:49 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\SysNative\javaws.exe [311200]
O44 - LFC:[MD5.E5820019B309EC94BA0E9C0C67E32091] - 20/04/2013 - 11:02:49 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe [311200]
O44 - LFC:[MD5.3E560474209C3BB90C472A57947FF2CD] - 20/04/2013 - 11:02:48 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\SysNative\java.exe [188320]
O44 - LFC:[MD5.3E560474209C3BB90C472A57947FF2CD] - 20/04/2013 - 11:02:48 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe [188320]
O44 - LFC:[MD5.08D086D5C5373CDF406BE52A426526EA] - 20/04/2013 - 11:02:47 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\SysNative\deployJava1.dll [971680]
O44 - LFC:[MD5.08D086D5C5373CDF406BE52A426526EA] - 20/04/2013 - 11:02:47 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\deployJava1.dll [971680]
O44 - LFC:[MD5.F1818B54C79A43EB9E859DA30232E1C4] - 20/04/2013 - 11:02:47 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\SysNative\npDeployJava1.dll [1092512]
O44 - LFC:[MD5.F1818B54C79A43EB9E859DA30232E1C4] - 20/04/2013 - 11:02:47 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\System32\npDeployJava1.dll [1092512]
O44 - LFC:[MD5.D12C5B2652110B0FC9AB360FA589710C] - 19/04/2013 - 22:32:56 ---A- . (...) -- C:\Windows\unins000.dat [81311]
O44 - LFC:[MD5.5D55C33BBBA029002741D7B8958E1543] - 19/04/2013 - 22:32:35 ---A- . (.Pas de propri�taire - Setup/Uninstall.) -- C:\Windows\unins000.exe [1169609]
O44 - LFC:[MD5.7ADB9E41548DEEB9312F397753AFFE3C] - 19/04/2013 - 22:04:21 ---A- . (...) -- C:\chid [47]
O44 - LFC:[MD5.E2EDE3179AC4AEF53CE38FB9FD22FC75] - 13/04/2013 - 16:29:26 ---A- . (...) -- C:\fbook.png [324332]
O44 - LFC:[MD5.8F3385D2F7E9E5C0095B8955BE8F5EC7] - 13/04/2013 - 15:47:02 ---A- . (...) -- C:\google 2.png [209804]
O44 - LFC:[MD5.59B30D2CA80A73C29198AC30DCF5C84F] - 13/04/2013 - 15:45:48 ---A- . (...) -- C:\google analytics.png [19621]
O44 - LFC:[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - 12/04/2013 - 15:45:08 RSHAD . (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1656680]
O44 - LFC:[MD5.C496075D6020F4C2194246BA6EA160B5] - 10/04/2013 - 15:40:31 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [378416]
O44 - LFC:[MD5.C496075D6020F4C2194246BA6EA160B5] - 10/04/2013 - 15:40:31 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT [378416]
O44 - LFC:[MD5.D5B800C7E730BDAFF36FE6FC64EB34A1] - 10/04/2013 - 13:00:27 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\SysNative\MRT.exe [72702784]
O44 - LFC:[MD5.D5B800C7E730BDAFF36FE6FC64EB34A1] - 10/04/2013 - 13:00:27 RSHAD . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [72702784]
O44 - LFC:[MD5.5281583B59E5FDB6D55E33B0906D0BFC] - 10/04/2013 - 12:58:42 ---A- . (.Microsoft Corporation - Microsoft� MSHTML Typelib.) -- C:\Windows\SysNative\mshtml.tlb [2382848]
O44 - LFC:[MD5.5281583B59E5FDB6D55E33B0906D0BFC] - 10/04/2013 - 12:58:42 ---A- . (.Microsoft Corporation - Microsoft� MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2382848]
O44 - LFC:[MD5.AC3FF334360EC9E25C9B794DC37399DC] - 10/04/2013 - 12:58:41 ---A- . (.Microsoft Corporation - Microsoft� HTML Editing Component.) -- C:\Windows\SysNative\mshtmled.dll [96768]
O44 - LFC:[MD5.AC3FF334360EC9E25C9B794DC37399DC] - 10/04/2013 - 12:58:41 ---A- . (.Microsoft Corporation - Microsoft� HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [96768]
O44 - LFC:[MD5.566BDBDF479261EA6555B422573BCB95] - 10/04/2013 - 12:58:40 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\SysNative\url.dll [237056]
O44 - LFC:[MD5.566BDBDF479261EA6555B422573BCB95] - 10/04/2013 - 12:58:40 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll [237056]
O44 - LFC:[MD5.737DF2559F880FEC73AA831C8AC8FC4A] - 10/04/2013 - 12:58:40 ---A- . (.Microsoft Corporation - Moteur de l�interface utilisateur d�Interne.) -- C:\Windows\SysNative\ieui.dll [248320]
O44 - LFC:[MD5.737DF2559F880FEC73AA831C8AC8FC4A] - 10/04/2013 - 12:58:40 ---A- . (.Microsoft Corporation - Moteur de l�interface utilisateur d�Interne.) -- C:\Windows\System32\ieui.dll [248320]
O44 - LFC:[MD5.15F628A67C9C88502107320E3206982F] - 10/04/2013 - 12:58:40 ---A- . (.Microsoft Corporation - Outil d�installation sans assistance d�IE 7.) -- C:\Windows\SysNative\ieUnatt.exe [173056]
O44 - LFC:[MD5.15F628A67C9C88502107320E3206982F] - 10/04/2013 - 12:58:40 ---A- . (.Microsoft Corporation - Outil d�installation sans assistance d�IE 7.) -- C:\Windows\System32\ieUnatt.exe [173056]
O44 - LFC:[MD5.D3A6792AED4841B4D055C7C80C815BB7] - 10/04/2013 - 12:58:39 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll [1346560]
O44 - LFC:[MD5.D3A6792AED4841B4D055C7C80C815BB7] - 10/04/2013 - 12:58:39 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1346560]
O44 - LFC:[MD5.2A0AD3BE38087708D03F4A1A80A1C655] - 10/04/2013 - 12:58:39 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\SysNative\inetcpl.cpl [1494528]
O44 - LFC:[MD5.2A0AD3BE38087708D03F4A1A80A1C655] - 10/04/2013 - 12:58:39 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [1494528]
O44 - LFC:[MD5.B54C6B8CBF6F556C9930110164EB63E4] - 10/04/2013 - 12:58:38 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript9.dll [2312704]
O44 - LFC:[MD5.B54C6B8CBF6F556C9930110164EB63E4] - 10/04/2013 - 12:58:38 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [2312704]
O44 - LFC:[MD5.12F5FB993723BF607370C9B74EC32BF6] - 10/04/2013 - 12:58:38 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\SysNative\msfeeds.dll [729088]
O44 - LFC:[MD5.12F5FB993723BF607370C9B74EC32BF6] - 10/04/2013 - 12:58:38 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [729088]
O44 - LFC:[MD5.A4F6142CABA82FB7293ECE5FF864B440] - 10/04/2013 - 12:58:37 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll [1392128]
O44 - LFC:[MD5.A4F6142CABA82FB7293ECE5FF864B440] - 10/04/2013 - 12:58:37 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1392128]
O44 - LFC:[MD5.A13792C4E26F54181B9E9B5B0C958B22] - 10/04/2013 - 12:58:37 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\SysNative\jsproxy.dll [85504]
O44 - LFC:[MD5.A13792C4E26F54181B9E9B5B0C958B22] - 10/04/2013 - 12:58:37 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [85504]
O44 - LFC:[MD5.76D2D5929F5901392703C5F709AC277A] - 10/04/2013 - 12:58:36 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript.dll [816640]
O44 - LFC:[MD5.76D2D5929F5901392703C5F709AC277A] - 10/04/2013 - 12:58:36 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [816640]
O44 - LFC:[MD5.A072A3C7FD6247F1446D26A6929BDFD7] - 10/04/2013 - 12:58:36 ---A- . (.Microsoft Corporation - Microsoft � VBScript.) -- C:\Windows\SysNative\vbscript.dll [599040]
O44 - LFC:[MD5.A072A3C7FD6247F1446D26A6929BDFD7] - 10/04/2013 - 12:58:36 ---A- . (.Microsoft Corporation - Microsoft � VBScript.) -- C:\Windows\System32\vbscript.dll [599040]
O44 - LFC:[MD5.8D4DEA45FCDF9FCFD9E31232A07E6EF9] - 10/04/2013 - 12:58:35 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\SysNative\iertutil.dll [2147840]
O44 - LFC:[MD5.8D4DEA45FCDF9FCFD9E31232A07E6EF9] - 10/04/2013 - 12:58:35 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2147840]
O44 - LFC:[MD5.1154FEFC73880A2EF44295EF0DBDC59F] - 10/04/2013 - 12:58:32 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysNative\mshtml.dll [17817088]
O44 - LFC:[MD5.1154FEFC73880A2EF44295EF0DBDC59F] - 10/04/2013 - 12:58:32 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [17817088]
O44 - LFC:[MD5.652B60C9C4D5391FF0970B9086702E8F] - 10/04/2013 - 12:58:30 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll [10925568]
O44 - LFC:[MD5.652B60C9C4D5391FF0970B9086702E8F] - 10/04/2013 - 12:58:30 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [10925568]
O44 - LFC:[MD5.86F96630D28523F1C402C783F046DEF1] - 10/04/2013 - 11:20:54 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\SysNative\win32k.sys [3153408]
O44 - LFC:[MD5.86F96630D28523F1C402C783F046DEF1] - 10/04/2013 - 11:20:54 RSHAD . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3153408]
O44 - LFC:[MD5.8F6322049018354F45F05A2FD2D4E5E0] - 10/04/2013 - 11:20:48 RSHAD . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [223752]
O44 - LFC:[MD5.AC3232ED772403D38D64C18CD5A66FBD] - 10/04/2013 - 11:20:45 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\SysNative\ntoskrnl.exe [5550424]
O44 - LFC:[MD5.AC3232ED772403D38D64C18CD5A66FBD] - 10/04/2013 - 11:20:45 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [5550424]
O44 - LFC:[MD5.F0371DE302FFFF8F086661611BE60848] - 10/04/2013 - 11:20:41 ---A- . (.Microsoft Corporation - Gestionnaire de sessions Windows.) -- C:\Windows\SysNative\smss.exe [112640]
O44 - LFC:[MD5.F0371DE302FFFF8F086661611BE60848] - 10/04/2013 - 11:20:41 RSHAD . (.Microsoft Corporation - Gestionnaire de sessions Windows.) -- C:\Windows\System32\smss.exe [112640]
O44 - LFC:[MD5.CEC1EDF4022DC4DCA40384DCEC672B0E] - 10/04/2013 - 11:20:40 ---A- . (.Microsoft Corporation - Processus d'ex�cution client-serveur.) -- C:\Windows\SysNative\csrsrv.dll [43520]
O44 - LFC:[MD5.CEC1EDF4022DC4DCA40384DCEC672B0E] - 10/04/2013 - 11:20:40 RSHAD . (.Microsoft Corporation - Processus d'ex�cution client-serveur.) -- C:\Windows\System32\csrsrv.dll [43520]
~ Files: 79 Scanned in 00mn 13s



---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.FA9D577D7007FF7E9DFCDE57E3FA58CC] - 16/04/2013 - 23:59:26 ---A- - C:\Windows\Prefetch\~TMP.EXE-ECCABBBF.pf
O45 - LFCP:[MD5.034D8C480CC0BE072C9F6ED4143D158C] - 18/04/2013 - 14:47:09 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C400FF18.pf
O45 - LFCP:[MD5.3F735C30555B652BCDCB32857B71449A] - 18/04/2013 - 20:55:26 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0879D732.pf
O45 - LFCP:[MD5.4CF658A86BC476FDD6445AAA868CA32B] - 18/04/2013 - 23:23:19 ---A- - C:\Windows\Prefetch\WINWORD.EXE-46D2C290.pf
O45 - LFCP:[MD5.7A944B3D74B3D29318A08140206FFA19] - 19/04/2013 - 07:53:11 ---A- - C:\Windows\Prefetch\MPAS-FE_BD.EXE-9B1F21DB.pf
O45 - LFCP:[MD5.678BA4FC8C9619A6B742C9CBD6574AE8] - 19/04/2013 - 07:53:14 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-D8BB2DE4.pf
O45 - LFCP:[MD5.264342C180DDCFA15E472AFF54A62B7E] - 19/04/2013 - 17:49:12 ---A- - C:\Windows\Prefetch\EUDCEDIT.EXE-90FD0BE8.pf
O45 - LFCP:[MD5.612BA942BC421608CB51D8F34CF183C9] - 19/04/2013 - 17:58:54 ---A- - C:\Windows\Prefetch\KOMPOZER-0.8B3.FR.WIN32.EXE-AD33B1D1.pf
O45 - LFCP:[MD5.D6C2B6FA25D5BFF02671C7F723959C2C] - 19/04/2013 - 17:58:58 ---A- - C:\Windows\Prefetch\KOMPOZER-0.8B3.FR.WIN32.TMP-F790F562.pf
O45 - LFCP:[MD5.350D6AA3C31C5F4EAE6B9E79041EB692] - 19/04/2013 - 20:18:40 ---A- - C:\Windows\Prefetch\MSNMSGR.EXE-0A3C12F9.pf
O45 - LFCP:[MD5.A758AA7F4E6977D5FA5D403719C219B8] - 19/04/2013 - 21:39:40 ---A- - C:\Windows\Prefetch\HACK MOT DE PASSE FACEBOOK V3-25FC779C.pf
O45 - LFCP:[MD5.D35D03696E7C434FEAB897E21265CF9A] - 19/04/2013 - 21:58:06 ---A- - C:\Windows\Prefetch\HACK FACEBOOK 2013.EXE-8FA82C4E.pf
O45 - LFCP:[MD5.FA5ADA51052E2E6CB8C348C2756E7D4F] - 20/04/2013 - 11:07:51 ---A- - C:\Windows\Prefetch\JP2LAUNCHER.EXE-C56C2BA3.pf
O45 - LFCP:[MD5.E29EC952A6435C2AC8512D32ECB8C6C6] - 20/04/2013 - 11:07:57 ---A- - C:\Windows\Prefetch\JAVA.EXE-AB789167.pf
O45 - LFCP:[MD5.4B5B1B6F45ADA8B1A5C84099E23C0CD0] - 20/04/2013 - 18:31:10 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.8CADE6C7B978FEDC6B48D335DB324646] - 20/04/2013 - 18:31:20 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-3D9E8D72.pf
O45 - LFCP:[MD5.7BAD5346C34F7E0F67BE5DDE4E7F7135] - 20/04/2013 - 18:31:23 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-67EC2DA7.pf
O45 - LFCP:[MD5.3548F8C9B852B8A142F9178A73F96E75] - 21/04/2013 - 01:13:26 ---A- - C:\Windows\Prefetch\WLCOMM.EXE-81BAE51F.pf
O45 - LFCP:[MD5.E8538778945CFE2E52E14E3144C00279] - 21/04/2013 - 13:01:50 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.1A10EA45089AD54750C0A530E4F8ED74] - 21/04/2013 - 13:03:08 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.348C3E6BE8A43C6971ADE861A8773E68] - 21/04/2013 - 15:29:08 ---A- - C:\Windows\Prefetch\FREEFILEVIEWER.EXE-3F2B7AB6.pf
O45 - LFCP:[MD5.AC00748008061057C635518359601D22] - 22/04/2013 - 11:33:34 ---A- - C:\Windows\Prefetch\MBAM.EXE-493D9B94.pf
O45 - LFCP:[MD5.4EF6D146BEFDD4195C2B7DBBAB4A581E] - 22/04/2013 - 13:57:14 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D096D5BE.pf
O45 - LFCP:[MD5.2ACE33FB99DF2025B405B1BF0E7CF3DC] - 22/04/2013 - 15:00:19 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-3C4E5BEC.pf
O45 - LFCP:[MD5.9A33D15BBCB459013BDBFBA2393380AE] - 22/04/2013 - 19:09:36 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-DEBBE5F1.pf
O45 - LFCP:[MD5.DA3C0DBC4FE40999F89B4BB2A42C552F] - 22/04/2013 - 19:10:16 ---A- - C:\Windows\Prefetch\ODSCANUI.EXE-B009BCC3.pf
O45 - LFCP:[MD5.E10E0FBCB76AFB7EF7AD06C7D2AA97FD] - 22/04/2013 - 19:14:51 ---A- - C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-D37241ED.pf
O45 - LFCP:[MD5.32B16B70AB655C2172BE75A5D95E7981] - 22/04/2013 - 21:48:22 ---A- - C:\Windows\Prefetch\WSCFIX.EXE-0E94EE21.pf
O45 - LFCP:[MD5.B62874562FD764CC01D1566209F0B43D] - 22/04/2013 - 23:37:01 ---A- - C:\Windows\Prefetch\PHOTOFILTRE.EXE-545D857E.pf
O45 - LFCP:[MD5.7642FF10EFF6FC76B05E50FC00822BEF] - 23/04/2013 - 13:02:01 ---A- - C:\Windows\Prefetch\HPQDIREC.EXE-844C48CD.pf
O45 - LFCP:[MD5.60C9A6FA7A8AFAB70365D333145065DA] - 23/04/2013 - 13:02:12 ---A- - C:\Windows\Prefetch\HPQUSGL.EXE-30283801.pf
O45 - LFCP:[MD5.864B4D0461AEE995EC511F89250BC2AD] - 23/04/2013 - 13:47:40 ---A- - C:\Windows\Prefetch\PRINTISOLATIONHOST.EXE-3DD89C8E.pf
O45 - LFCP:[MD5.AB8A505B2BFADE17C3F9E413284C0954] - 23/04/2013 - 18:18:01 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.AA404500873FF6468AF085E1187B485E] - 23/04/2013 - 18:30:12 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-D2A040D5.pf
O45 - LFCP:[MD5.F5BA27274E364B84B9239A7E43B592A8] - 23/04/2013 - 21:01:40 ---A- - C:\Windows\Prefetch\CVTRES.EXE-F4BA0E72.pf
O45 - LFCP:[MD5.B9D5154BAADEFFD3B87DF8A44E2F6281] - 23/04/2013 - 21:01:41 ---A- - C:\Windows\Prefetch\CSC.EXE-0E09149C.pf
O45 - LFCP:[MD5.7CC151528AB179999B28C55BD4043901] - 23/04/2013 - 21:01:53 ---A- - C:\Windows\Prefetch\ROUTE.EXE-121C5018.pf
O45 - LFCP:[MD5.2B80221419A02698CB7987295BC15D6A] - 23/04/2013 - 23:59:20 ---A- - C:\Windows\Prefetch\TSASETUP.EXE-A68B0B0F.pf
O45 - LFCP:[MD5.CAFA40D0B0D1D002D4E009B679E6F338] - 24/04/2013 - 00:05:54 ---A- - C:\Windows\Prefetch\TSASSIST.EXE-5B056D58.pf
O45 - LFCP:[MD5.73F3DB1D492FC17CFFFD9ACB9E4C55F5] - 24/04/2013 - 00:45:05 ---A- - C:\Windows\Prefetch\WMPRPH.EXE-92EA34B9.pf
O45 - LFCP:[MD5.897293E9FC08BE92E74CE3A59B28F7E9] - 24/04/2013 - 01:26:55 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-425BC49B.pf
O45 - LFCP:[MD5.D2A1E5FFB48C41972F7D5A67EE9C8D98] - 24/04/2013 - 01:27:11 ---A- - C:\Windows\Prefetch\PREVHOST.EXE-7DD93B84.pf
O45 - LFCP:[MD5.D5F2636554E5E0136C24E1D70C6400D0] - 24/04/2013 - 07:59:27 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0D53616E.pf
O45 - LFCP:[MD5.B07D2A0FE519AEA5F2809607ED32835C] - 24/04/2013 - 08:04:59 ---A- - C:\Windows\Prefetch\WSQMCONS.EXE-4048402C.pf
O45 - LFCP:[MD5.8F6638B945A3A238E0694A68560092CA] - 24/04/2013 - 08:37:42 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-5D573F0E.pf
O45 - LFCP:[MD5.93B73D4E8A71AF058B27C7468663455C] - 24/04/2013 - 11:25:42 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf
O45 - LFCP:[MD5.D06297C14097A22D2CAE62AB62E896F6] - 24/04/2013 - 11:26:02 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf
O45 - LFCP:[MD5.9326DB2A5E36C649204B3CF141132AF5] - 24/04/2013 - 11:26:06 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf
O45 - LFCP:[MD5.45B074FC83AE9909E05A1EA4582492F5] - 24/04/2013 - 11:26:07 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf
O45 - LFCP:[MD5.7D2FF06857E4C3C73920FB8BB3FC3D57] - 24/04/2013 - 11:26:10 ---A- - C:\Windows\Prefetch\FFVCHECKFORUPDATES.EXE-2971EDA3.pf
O45 - LFCP:[MD5.9FF01F4A8E8BCDBA0C2A14003573ED0B] - 24/04/2013 - 11:27:11 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-4BB80510.pf
O45 - LFCP:[MD5.EDEDC6FE82129997B5249C06A8450B1F] - 24/04/2013 - 11:27:51 ---A- - C:\Windows\Prefetch\PLFSETI.EXE-D9D6FD5A.pf
O45 - LFCP:[MD5.80FC671F6DE78380B42BC9CE0F95F1AB] - 24/04/2013 - 11:27:59 ---A- - C:\Windows\Prefetch\BDAGENT.EXE-638F8C9E.pf
O45 - LFCP:[MD5.9BF55FABD38E8716F5252C648288FB3F] - 24/04/2013 - 11:28:01 ---A- - C:\Windows\Prefetch\EPOWERTRAY.EXE-9A6C7E85.pf
O45 - LFCP:[MD5.524B93DCE4D63F4829B74EC8C12F3628] - 24/04/2013 - 11:28:17 ---A- - C:\Windows\Prefetch\SCHECK.EXE-C8038C3E.pf
O45 - LFCP:[MD5.D887510EE81002566EB5EFAFDFF7CF95] - 24/04/2013 - 11:28:26 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-72B9DDB3.pf
O45 - LFCP:[MD5.DA9F2A814275B5F39E44DAA045E1F3CF] - 24/04/2013 - 11:28:32 ---A- - C:\Windows\Prefetch\SSYNC.EXE-0DC0D33C.pf
O45 - LFCP:[MD5.B3B2D7C2A733660D18449610048F3A7C] - 24/04/2013 - 11:28:41 ---A- - C:\Windows\Prefetch\APPLAUNCHER.EXE-1EB07BDE.pf
O45 - LFCP:[MD5.7B0E73120355C8D02A6B7D9094E8BA7A] - 24/04/2013 - 11:28:48 ---A- - C:\Windows\Prefetch\WLUA.EXE-B60BDEF2.pf
O45 - LFCP:[MD5.55E282504918C40A705D16CF5BC1524D] - 24/04/2013 - 11:28:50 ---A- - C:\Windows\Prefetch\EPOWEREVENT.EXE-632A27DF.pf
O45 - LFCP:[MD5.0953643AB949E89CFF666BD1052E3EEB] - 24/04/2013 - 11:28:53 ---A- - C:\Windows\Prefetch\WALLPAPER CHANGER.EXE-FB5B145E.pf
O45 - LFCP:[MD5.C41CF6AAD3CB8D905C3603E5BE233B33] - 24/04/2013 - 11:29:00 ---A- - C:\Windows\Prefetch\SETAPM.EXE-B95DC105.pf
O45 - LFCP:[MD5.24C1606F3616829F03AA6186F0AA769B] - 24/04/2013 - 11:29:24 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-4ED41433.pf
O45 - LFCP:[MD5.613F8DCE97B6786765CFFD74C33D8F70] - 24/04/2013 - 11:29:26 ---A- - C:\Windows\Prefetch\ACDAEMON.EXE-04C25D3A.pf
O45 - LFCP:[MD5.D47CF0157E4808E521494059EE4B5207] - 24/04/2013 - 11:29:30 ---A- - C:\Windows\Prefetch\AIRGCFG.EXE-9321E7EF.pf
O45 - LFCP:[MD5.B5CA6633E413321A8102317165270D2F] - 24/04/2013 - 11:29:40 ---A- - C:\Windows\Prefetch\ITUNESHELPER.EXE-399B4696.pf
O45 - LFCP:[MD5.BBCAC9681EE6418A58DFE031DA20695A] - 24/04/2013 - 11:30:32 ---A- - C:\Windows\Prefetch\ONECOMCLOUDDRIVE.EXE-73AB7311.pf
O45 - LFCP:[MD5.1D8883B31993D2579B480303EBD06F83] - 24/04/2013 - 11:49:49 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-23088844-1148055684-1297641894-1000.db
O45 - LFCP:[MD5.8CA168324F5777D0458B38B2236CEDE5] - 24/04/2013 - 11:49:50 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-23088844-1148055684-1297641894-1000.db
O45 - LFCP:[MD5.552BF644AFCE3605F94B080D257B025A] - 24/04/2013 - 12:02:24 ---A- - C:\Windows\Prefetch\WINRAR.EXE-A58334F4.pf
O45 - LFCP:[MD5.CD7DD30D7A9036A94B68A1965B4BE986] - 24/04/2013 - 12:45:15 ---A- - C:\Windows\Prefetch\ITUNES.EXE-3ADE145E.pf
O45 - LFCP:[MD5.61C72CD58D0FA7A67BDFE7A182F59392] - 24/04/2013 - 12:45:30 ---A- - C:\Windows\Prefetch\APPLEMOBILEDEVICEHELPER.EXE-D36FFDFF.pf
O45 - LFCP:[MD5.D73316E1E9C044A5E86F70993D2D59FC] - 24/04/2013 - 12:45:31 ---A- - C:\Windows\Prefetch\DISTNOTED.EXE-BA71F399.pf
O45 - LFCP:[MD5.9E85ECE2E1571DAA734ADE7FAE183D6F] - 24/04/2013 - 12:52:48 ---A- - C:\Windows\Prefetch\MAKECAB.EXE-FC3CBE21.pf
O45 - LFCP:[MD5.206027C4732AD621FCDBEF5F2975698C] - 24/04/2013 - 15:54:26 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.2993728647BA849A78B35F39B42C8F20] - 24/04/2013 - 15:54:33 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf
O45 - LFCP:[MD5.8A5DBCDAD7663FA618627BFF4B447D5C] - 24/04/2013 - 15:54:35 ---A- - C:\Windows\Prefetch\IPODSERVICE.EXE-716E0AD1.pf
O45 - LFCP:[MD5.43B8BA494FDCED9168E173C0E49DD031] - 24/04/2013 - 15:54:49 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-B597A9D1.pf
O45 - LFCP:[MD5.42A7A188791E1A3C044F70A6BB601083] - 24/04/2013 - 15:54:50 ---A- - C:\Windows\Prefetch\DW20.EXE-7D49EFFE.pf
O45 - LFCP:[MD5.4619D5969A3338482DEAD4650279CC2C] - 24/04/2013 - 15:55:07 ---A- - C:\Windows\Prefetch\HPQSTE08.EXE-A880057E.pf
O45 - LFCP:[MD5.D7FB92CDB29B6722F25CCE79FA510D6D] - 24/04/2013 - 16:03:52 ---A- - C:\Windows\Prefetch\PHP-WIN.EXE-A821AFC9.pf
O45 - LFCP:[MD5.D427B59DDC6AE0D45D8CADA0D89E46AB] - 24/04/2013 - 16:04:12 ---A- - C:\Windows\Prefetch\HTTPD.EXE-3DEDAE77.pf
O45 - LFCP:[MD5.43C336FACABA18962C6EE9222A0D4F77] - 24/04/2013 - 16:04:40 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.34BE8DF61482CE25F9306CF1AB192B5B] - 24/04/2013 - 16:10:30 ---A- - C:\Windows\Prefetch\AGCP.EXE-F854F4BA.pf
O45 - LFCP:[MD5.6A70D098E629983AF6CA2F158C39E17F] - 24/04/2013 - 16:27:13 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.ABF18FC8F81A548AE00E44605587E930] - 24/04/2013 - 16:48:50 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-03D3FB87.pf
O45 - LFCP:[MD5.7D22997A617859C1294F29A2DA5DA2EC] - 24/04/2013 - 16:50:14 ---A- - C:\Windows\Prefetch\IPCONFIG.EXE-BFEC2AD0.pf
O45 - LFCP:[MD5.B75B6AEE140D294B3CAB245E5EAB7D1D] - 24/04/2013 - 17:58:05 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-F639BD7E.pf
O45 - LFCP:[MD5.194B8B81F8359F7621E87F408E89C617] - 24/04/2013 - 18:00:32 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.92227CECE1B0330E7541A85983FEA66A] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\APSDAEMON.EXE-688589D3.pf
O45 - LFCP:[MD5.0236C2763580471FC7EEB34F66EC8017] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\CLISTART.EXE-091A18CD.pf
O45 - LFCP:[MD5.9E555EF0F05178FAAE263BB28B22A10C] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\HPQSRMON.EXE-F56C981D.pf
O45 - LFCP:[MD5.ABD55B862DAF36100E55E8E1E5DFC081] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\HPQTRA08.EXE-CEA16CB5.pf
O45 - LFCP:[MD5.C859AB57160C517EA76A3D9935438E1B] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\HPWUSCHD2.EXE-A7B92A68.pf
O45 - LFCP:[MD5.0ACA77C826CA94B27E600B1FE50935FC] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.643D7C66142A0B969A7CC91CED787ECF] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-EDA5A3D2.pf
O45 - LFCP:[MD5.C4122975C8221E2455D3A869EAE1AAA3] - 24/04/2013 - 20:38:06 ---A- - C:\Windows\Prefetch\WZCSLDR2.EXE-9534FA4B.pf
O45 - LFCP:[MD5.AB972B635C81552137DCF16DED8C26FD] - 24/04/2013 - 20:38:17 ---A- - C:\Windows\Prefetch\HPQBAM08.EXE-744309DA.pf
O45 - LFCP:[MD5.0724319FFBF44949661A07911564E8D4] - 24/04/2013 - 20:38:23 ---A- - C:\Windows\Prefetch\CVTRES.EXE-929E64D1.pf
O45 - LFCP:[MD5.C38CB479369075D4D5F24160D6DF0479] - 24/04/2013 - 20:38:24 ---A- - C:\Windows\Prefetch\CSC.EXE-A14D0E83.pf
O45 - LFCP:[MD5.A1D4EB7B61CF2BDED815DB4A13708EAD] - 24/04/2013 - 20:38:26 ---A- - C:\Windows\Prefetch\HPQGPC01.EXE-ABA61901.pf
O45 - LFCP:[MD5.16C933501DBA185947DC39DC8174851A] - 24/04/2013 - 20:38:30 ---A- - C:\Windows\Prefetch\MOM.EXE-F911D5BC.pf
O45 - LFCP:[MD5.ADA8724AF1D4CC6451D9E202481E91E6] - 24/04/2013 - 20:38:39 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.4242DF14D4738B6353D4C71C33083F3D] - 24/04/2013 - 20:38:41 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-16B291C4.pf
O45 - LFCP:[MD5.2B432B3BF8BCB8F9D13A7AF5C992DD1C] - 24/04/2013 - 20:38:47 ---A- - C:\Windows\Prefetch\CCC.EXE-6C5FA59C.pf
O45 - LFCP:[MD5.24E59A544551051EFFA84C11AE2F792F] - 24/04/2013 - 20:39:02 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-F31BDE28.pf
O45 - LFCP:[MD5.979E132DF14A7F69836BE60E4F7A4112] - 24/04/2013 - 20:40:35 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.9A7A1181262458CC8CECFCBB212B4609] - 24/04/2013 - 20:41:06 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf
O45 - LFCP:[MD5.CD5F2307437AE0E8D9A144848E82BB2A] - 24/04/2013 - 20:42:27 ---A- - C:\Windows\Prefetch\SDCLT.EXE-94EAE077.pf
O45 - LFCP:[MD5.E8FCF158C286157D4B855FC1A7CD0A6F] - 24/04/2013 - 20:44:39 ---A- - C:\Windows\Prefetch\WINWORD.EXE-364E9E44.pf
O45 - LFCP:[MD5.68D1016CA640FA727393B89822D86D3E] - 24/04/2013 - 20:44:57 ---A- - C:\Windows\Prefetch\WMIAPSRV.EXE-FC8436DD.pf
O45 - LFCP:[MD5.E4DCE6D3A92A8D52D0F142CEB32D3E27] - 24/04/2013 - 20:45:28 ---A- - C:\Windows\Prefetch\SPLWOW64.EXE-57576C25.pf
O45 - LFCP:[MD5.F3EA0770C3A761D5E6A8DA7FD8E5703E] - 24/04/2013 - 20:50:19 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-CFE81CB7.pf
O45 - LFCP:[MD5.9EC3772493408C79E28F430834C977FF] - 24/04/2013 - 20:50:24 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf
O45 - LFCP:[MD5.DA27ECE46B54E6B3B77E44252FCFD499] - 24/04/2013 - 21:02:01 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-8B6144A9.pf
O45 - LFCP:[MD5.44104547B5FE5280DF9B8249FDF85779] - 24/04/2013 - 21:04:53 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf
O45 - LFCP:[MD5.895E4446BF615BA786702A3F377E07E1] - 24/04/2013 - 21:06:50 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.D0DEF5CB22BE7FD74579E98828B9A9E4] - 24/04/2013 - 21:07:11 ---A- - C:\Windows\Prefetch\MSDT.EXE-D579957D.pf
O45 - LFCP:[MD5.FB7B1E35256A35ED6767926D9F88263B] - 24/04/2013 - 21:07:24 ---A- - C:\Windows\Prefetch\SDIAGNHOST.EXE-B3171AA1.pf
O45 - LFCP:[MD5.A399504B9B43C07BEA088453F595A1BF] - 24/04/2013 - 21:07:32 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf
O45 - LFCP:[MD5.0191A44E05996C8D22624E333CA955AA] - 24/04/2013 - 21:08:35 ---A- - C:\Windows\Prefetch\INSTALLER.EXE-FB682CC5.pf
O45 - LFCP:[MD5.07FA25720AD9F12D69E204AC6D047B8D] - 24/04/2013 - 21:22:41 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.31685EA2D8375F0C69CBE632EA89387B] - 24/04/2013 - 21:22:47 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.BCFD9D6F3573C4FC336CD3D833309A58] - 24/04/2013 - 21:22:57 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.F8F27ADE6B329EDE78A939E3D0012151] - 24/04/2013 - 21:22:58 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.BD7B43C6F425F3463D59A570235ABD08] - 24/04/2013 - 21:24:40 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-2C9109F9.pf
O45 - LFCP:[MD5.F61103A74BB4B4D68305D49E913D4160] - 24/04/2013 - 21:29:40 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-63B92852.pf
O45 - LFCP:[MD5.F443FE92104C5E779DA9999DDA64C91C] - 24/04/2013 - 21:32:11 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-C5670914.pf
O45 - LFCP:[MD5.D5829C6CC747FE1777D15C9980C21F60] - 24/04/2013 - 21:36:05 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf
O45 - LFCP:[MD5.26E124B7DB0DEFAF73F2C9C227E1FC52] - 24/04/2013 - 21:36:08 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.202E5586B03CC7B00614B25570945B6F] - 24/04/2013 - 21:36:08 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
O45 - LFCP:[MD5.841744E0DEBE7B6D03C2AC3260124BBF] - 24/04/2013 - 21:36:22 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.BDF4859FF9390E95AFFF94C650EA35C8] - 24/04/2013 - 21:36:40 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6E1A6101.pf
O45 - LFCP:[MD5.EAF99B2DF9BEE790ACA2ECBE1FF0B8F8] - 24/04/2013 - 21:36:48 ---A- - C:\Windows\Prefetch\DOWNLOADER.EXE-F3313068.pf
O45 - LFCP:[MD5.07B4428C0506EB663031EFDDFD4D3302] - 24/04/2013 - 21:38:32 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-661188F3.pf
O45 - LFCP:[MD5.B98DA34B3AA7DCD7697ED8F93625E633] - 24/04/2013 - 21:39:02 ---A- - C:\Windows\Prefetch\CTBRIDGU.EXE-61EB6568.pf
O45 - LFCP:[MD5.7003BA6B13FE60051F0AADFE443B104E] - 24/04/2013 - 21:39:35 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.498F1299D6E7A4D22983EF42FE0AB12E] - 24/04/2013 - 21:39:44 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-359C61A4.pf
O45 - LFCP:[MD5.BB092D1D9FE5126ED211C04C1557B997] - 24/04/2013 - 21:40:08 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-6B605020.pf
O45 - LFCP:[MD5.75877FE43798B865D3E38019AD0128D1] - 24/04/2013 - 21:40:10 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf
~ Prefetcher: 140 Scanned in 00mn 04s



---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - MSOIDSSP.) -- C:\Windows\System32\msoidssp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 4 Scanned in 00mn 00s



---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.6CCD1135320109D6B219F1A6E04AD9F6] - 14/11/2006 - 10:31:00 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\SysWOW64\drivers\afc.sys [22784]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 21/04/2013 - 11:49:49 ---A- C:\Users\Lucie\Downloads\Win.zip [6209005]
O61 - LFC: 21/04/2013 - 15:18:54 ---A- C:\Users\Lucie\Documents\cr�er site web 0\13666-apprenez-a-creer-votre-site-web-avec-html5-et-css3.pdf [11984590]
O61 - LFC: 21/04/2013 - 15:23:31 ---A- C:\Users\Lucie\Documents\DSCN1853.rar [3297355]
O61 - LFC: 21/04/2013 - 15:29:15 ---A- C:\Users\Lucie\AppData\Local\FreeFileViewer\FreeFileViewer.dat [249]
O61 - LFC: 21/04/2013 - 16:35:51 ---A- C:\Users\Lucie\Downloads\Louise-L-Hay---Oui--je-peux---livre-audio.mp3 [178647281]
O61 - LFC: 21/04/2013 - 16:44:40 ---A- C:\Users\Lucie\Downloads\Louise-L-Hay---Oui--je-peux---livre-audio(1).mp3.part [116828477]
O61 - LFC: 21/04/2013 - 17:16:46 ---A- C:\Users\Lucie\AppData\Roaming\Notepad++\config.xml [7067]
O61 - LFC: 21/04/2013 - 17:16:46 ---A- C:\Users\Lucie\AppData\Roaming\Notepad++\plugins\config\NppFTP\Certificates.xml [84]
O61 - LFC: 21/04/2013 - 17:16:46 ---A- C:\Users\Lucie\AppData\Roaming\Notepad++\plugins\config\NppFTP\NppFTP.xml [208]
O61 - LFC: 21/04/2013 - 17:16:46 ---A- C:\Users\Lucie\AppData\Roaming\Notepad++\session.xml [356]
O61 - LFC: 21/04/2013 - 17:16:46 ---A- C:\Users\Lucie\AppData\Roaming\Notepad++\shortcuts.xml [2111]
O61 - LFC: 21/04/2013 - 17:31:15 ---A- C:\Users\Lucie\Pictures\PHOb92d4936-a6a0-11e2-84ec-fb9ed49bba7b-805x453.jpg [93705]
O61 - LFC: 22/04/2013 - 15:13:32 ---A- C:\Users\Lucie\Music\iTunes\Album Artwork\Cache\1A98416B97A62609\05\13\15\1A98416B97A62609-74A55C226833DFD5.itc2 [492]
O61 - LFC: 22/04/2013 - 15:13:32 ---A- C:\Users\Lucie\Music\iTunes\Album Artwork\Cache\1A98416B97A62609\13\00\11\1A98416B97A62609-05307DA49C981B0D.itc2 [492]
O61 - LFC: 22/04/2013 - 15:13:32 ---A- C:\Users\Lucie\Music\iTunes\Album Artwork\Cache\1A98416B97A62609\15\04\00\1A98416B97A62609-9D9603C3F536004F.itc2 [220157]
O61 - LFC: 22/04/2013 - 15:57:53 ---A- C:\Users\Lucie\Documents\le r�f�rencement.doc [28160]
O61 - LFC: 22/04/2013 - 19:17:11 ---A- C:\Users\Lucie\AppData\Local\Apple Computer\iTunes\iPodDevices.xml [957]
O61 - LFC: 22/04/2013 - 23:14:35 ---A- C:\Users\Lucie\AppData\Local\kompozer.net\KompoZer\Profiles\hy53b7a7.default\XPC.mfl [786294]
O61 - LFC: 22/04/2013 - 23:14:35 ---A- C:\Users\Lucie\AppData\Roaming\kompozer.net\KompoZer\Profiles\hy53b7a7.default\extensions.cache [107]
O61 - LFC: 22/04/2013 - 23:14:35 ---A- C:\Users\Lucie\AppData\Roaming\kompozer.net\KompoZer\Profiles\hy53b7a7.default\extensions.rdf [1285]
O61 - LFC: 22/04/2013 - 23:14:36 ---A- C:\Users\Lucie\AppData\Roaming\kompozer.net\KompoZer\Profiles\hy53b7a7.default\xpti.dat [93302]
O61 - LFC: 22/04/2013 - 23:14:37 ---A- C:\Users\Lucie\AppData\Roaming\kompozer.net\KompoZer\Profiles\hy53b7a7.default\compreg.dat [107502]
O61 - LFC: 22/04/2013 - 23:17:56 ---A- C:\Users\Lucie\AppData\Local\kompozer.net\KompoZer\Profiles\hy53b7a7.default\XUL.mfl [1553157]
O61 - LFC: 23/04/2013 - 00:46:59 ---A- C:\Users\Lucie\AppData\Roaming\kompozer.net\KompoZer\Profiles\hy53b7a7.default\localstore.rdf [3326]
O61 - LFC: 23/04/2013 - 00:47:03 ---A- C:\Users\Lucie\AppData\Local\kompozer.net\KompoZer\Profiles\hy53b7a7.default\Cache\_CACHE_001_ [5888]
O61 - LFC: 23/04/2013 - 00:47:03 ---A- C:\Users\Lucie\AppData\Local\kompozer.net\KompoZer\Profiles\hy53b7a7.default\Cache\_CACHE_002_ [4096]
O61 - LFC: 23/04/2013 - 00:47:03 ---A- C:\Users\Lucie\AppData\Local\kompozer.net\KompoZer\Profiles\hy53b7a7.default\Cache\_CACHE_003_ [4096]
O61 - LFC: 23/04/2013 - 00:47:04 ---A- C:\Users\Lucie\AppData\Local\kompozer.net\KompoZer\Profiles\hy53b7a7.default\Cache\_CACHE_MAP_ [8468]
O61 - LFC: 23/04/2013 - 00:47:04 ---A- C:\Users\Lucie\AppData\Roaming\kompozer.net\KompoZer\Profiles\hy53b7a7.default\prefs.js [937]
O61 - LFC: 23/04/2013 - 00:47:19 ---A- C:\Users\Lucie\Downloads\ccsetup400(1).exe [4316280]
O61 - LFC: 23/04/2013 - 00:51:48 ---A- C:\Users\Lucie\Downloads\ccsetup400(2).exe [4316280]
O61 - LFC: 23/04/2013 - 14:15:24 ---A- C:\Users\Lucie\AppData\Roaming\HP\ScLogs\SolutionCenter.htm [22748]
O61 - LFC: 23/04/2013 - 18:32:54 ---A- C:\Users\Lucie\Documents\mes nouveaux num�ros.txt [262]
O61 - LFC: 23/04/2013 - 18:36:45 ---A- C:\Users\Lucie\Documents\contacts femmes.txt [49]
O61 - LFC: 23/04/2013 - 21:01:22 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042320.000\results.xsl [49097]
O61 - LFC: 23/04/2013 - 21:01:50 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042320.000\5D3B8162-4A5D-4257-A8F6-62411D9EDD36.Diagnose.Admin.0.etl [131072]
O61 - LFC: 23/04/2013 - 21:01:55 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042320.000\NetworkConfiguration.cab [1924]
O61 - LFC: 23/04/2013 - 21:02:03 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042320.000\NetworkDiagnostics.0.debugreport.xml [5625]
O61 - LFC: 23/04/2013 - 21:02:03 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042320.000\ResultReport.xml [38596]
O61 - LFC: 23/04/2013 - 21:02:03 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042320.000\results.xml [256]
O61 - LFC: 23/04/2013 - 21:13:40 ---A- C:\Users\Lucie\Downloads\pwroff30.zip [297026]
O61 - LFC: 23/04/2013 - 21:13:45 ---A- C:\Users\Lucie\AppData\Roaming\Microsoft\MMC\taskschd [145205]
O61 - LFC: 23/04/2013 - 21:25:34 ---A- C:\Users\Lucie\AppData\Local\Temp\Hqv3pwaA.exe.part [392576]
O61 - LFC: 23/04/2013 - 21:26:49 ---A- C:\Users\Lucie\Downloads\iChrono2.0.zip [1309139]
O61 - LFC: 23/04/2013 - 21:56:56 ---A- C:\Users\Lucie\Documents\r�f�rencement.txt [475]
O61 - LFC: 24/04/2013 - 00:46:33 ---A- C:\Users\Lucie\AppData\Roaming\Creative\MediaSource\CTPlayQueueU.dat [658]
O61 - LFC: 24/04/2013 - 01:39:09 ---A- C:\Users\Lucie\AppData\Roaming\Apple Computer\Preferences\com.apple.iTunes.plist [124]
O61 - LFC: 24/04/2013 - 03:00:48 ----- C:\Users\Lucie\AppData\Local\Temp\Rar$DIa0.014\devis_n_24_04_2013.doc [308224]
O61 - LFC: 24/04/2013 - 12:00:56 ---A- C:\Users\Lucie\Downloads\laissez-moi-sortir.com - LACOMBE - Devis de referencement professionnel.zip [308366]
O61 - LFC: 24/04/2013 - 12:45:22 ---A- C:\Users\Lucie\Music\iTunes\iTunes Library Extras.itdb [16384]
O61 - LFC: 24/04/2013 - 12:52:03 ---A- C:\Users\Lucie\Music\iTunes\iTunes Music Library.xml [1239275]
O61 - LFC: 24/04/2013 - 12:52:16 ---A- C:\Users\Lucie\Music\iTunes\iTunes Library.itl [275984]
O61 - LFC: 24/04/2013 - 12:52:16 --HA- C:\Users\Lucie\Music\iTunes\sentinel [8]
O61 - LFC: 24/04/2013 - 12:52:17 ---A- C:\Users\Lucie\AppData\Local\Apple Computer\iTunes\iTunesPrefs.xml [1435020]
O61 - LFC: 24/04/2013 - 12:52:17 ---A- C:\Users\Lucie\AppData\Roaming\Apple Computer\iTunes\iTunesPrefs.xml [196920]
O61 - LFC: 24/04/2013 - 15:58:21 ---A- C:\Users\Lucie\AppData\Local\FileTypeAssistant\prefs.dat [83]
O61 - LFC: 24/04/2013 - 15:58:21 ---A- C:\Users\Lucie\AppData\Local\FileTypeAssistant\prg.dat [27095]
O61 - LFC: 24/04/2013 - 16:22:22 ---A- C:\Users\Lucie\Downloads\kss12.0.1.117mlg_en-fr_ru-fr_fr-fr_de-fr.exe [179968]
O61 - LFC: 24/04/2013 - 16:46:56 ---A- C:\Users\Lucie\Downloads\ReimageRepairNU.exe [710696]
O61 - LFC: 24/04/2013 - 16:47:57 ---A- C:\Users\Lucie\AppData\Local\Temp\downloader_version.xml [320]
O61 - LFC: 24/04/2013 - 16:47:59 ---A- C:\Users\Lucie\AppData\Local\Temp\ReimageRepair.exe [710696]
O61 - LFC: 24/04/2013 - 16:48:07 ---A- C:\Users\Lucie\AppData\Local\Temp\repair_version.xml [1215]
O61 - LFC: 24/04/2013 - 16:48:23 ---A- C:\Users\Lucie\AppData\Local\Temp\ReimagePackage.exe [11871520]
O61 - LFC: 24/04/2013 - 16:48:26 ---A- C:\Users\Lucie\AppData\Local\Temp\downloader log.txt [4649]
O61 - LFC: 24/04/2013 - 17:02:23 ---A- C:\Users\Lucie\AppData\Roaming\Microsoft\Office\Word11.pip [1876]
O61 - LFC: 24/04/2013 - 17:57:46 --HA- C:\Users\Lucie\AppData\Local\IconCache.db [5366704]
O61 - LFC: 24/04/2013 - 20:37:01 ---A- C:\Users\Lucie\AppData\Roaming\FreeFileViewer\updcheck.cfg [179]
O61 - LFC: 24/04/2013 - 20:38:43 ---A- C:\Users\Lucie\AppData\Local\ATI\ACE\Manifest.Bin [26869]
O61 - LFC: 24/04/2013 - 20:38:43 ---A- C:\Users\Lucie\AppData\Local\ATI\ACE\Manifest.xml [19492]
O61 - LFC: 24/04/2013 - 20:38:57 ---A- C:\Users\Lucie\AppData\Local\ATI\ACE\Profiles.xml [13363]
O61 - LFC: 24/04/2013 - 20:39:22 ---A- C:\Users\Lucie\AppData\Roaming\OnecomCloudDrive\Log\OfflineTimeLog.txt [169680]
O61 - LFC: 24/04/2013 - 20:57:53 ---A- C:\Users\Lucie\AppData\Local\Temp\MSI31a15.LOG [492882]
O61 - LFC: 24/04/2013 - 21:01:07 ---A- C:\Users\Lucie\AppData\Local\Temp\MSI6251c.LOG [4412350]
O61 - LFC: 24/04/2013 - 21:01:56 ---A- C:\Users\Lucie\AppData\Local\Temp\~nsu.tmp\MinorSessionID [0]
O61 - LFC: 24/04/2013 - 21:02:23 ---A- C:\Users\Lucie\AppData\Local\Temp\ack.txt [2]
O61 - LFC: 24/04/2013 - 21:02:23 ---A- C:\Users\Lucie\AppData\Local\Temp\repair setup log.txt [4299]
O61 - LFC: 24/04/2013 - 21:07:04 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042420.000\results.xsl [49097]
O61 - LFC: 24/04/2013 - 21:07:54 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042420.000\NetworkDiagnostics.0.debugreport.xml [1767]
O61 - LFC: 24/04/2013 - 21:07:55 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042420.000\ResultReport.xml [38037]
O61 - LFC: 24/04/2013 - 21:07:55 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\2013042420.000\results.xml [256]
O61 - LFC: 24/04/2013 - 21:07:56 ---A- C:\Users\Lucie\AppData\Local\ElevatedDiagnostics\460911090\latest.cab [11625]
O61 - LFC: 24/04/2013 - 21:23:50 ---A- C:\Users\Lucie\AppData\Roaming\FastStone\FSC\fsc.db [2237]
O61 - LFC: 24/04/2013 - 21:32:40 ---A- C:\Users\Lucie\AppData\Roaming\Microsoft\HTML Help\hh.dat [9206]
O61 - LFC: 24/04/2013 - 21:37:17 ---A- C:\Users\Lucie\AppData\Roaming\ArcSoft\Global Deploy\ArcUpdateService.inf [524]
~ 12 Fichiers temporaires (Temporary files)
~ Files: 84 Scanned in 00mn 22s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 21/04/2010 - C:\Windows\System32\DRIVERS\atipmdag.sys (amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 11/01/2013 - C:\Windows\System32\DRIVERS\avc3.sys (avc3) .(.BitDefender - Active Virus Control filter driver.) - LEGACY_AVC3
O64 - Services: CurCS - 11/01/2013 - C:\Windows\System32\DRIVERS\avckf.sys (avckf) .(.BitDefender - Active Virus Control Kernel Filtering drive.) - LEGACY_AVCKF
O64 - Services: CurCS - 06/07/2012 - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys (BdfNdisf) .(.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - LEGACY_BDFNDISF
O64 - Services: CurCS - 14/11/2011 - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (bdfwfpf) .(.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - LEGACY_BDFWFPF
O64 - Services: CurCS - 08/04/2013 - C:\Windows\System32\DRIVERS\bdvedisk.sys (BDVEDISK) .(.BitDefender - FileVault Disk Driver.) - LEGACY_BDVEDISK
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (cpuz134) .(...) - LEGACY_CPUZ134
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 08/04/2013 - C:\Windows\System32\DRIVERS\gzflt.sys (gzflt) .(.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) - LEGACY_GZFLT
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 04/04/2013 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\webclnt.dll (MRxDAV) .(.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) - LEGACY_MRXDAV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pciide.sys (pciide) .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_PCIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - 12/09/2011 - C:\Windows\system32\Drivers\toolkitdisk.sys (ToolkitDisk) .(.Toolkit Development, Ltd. - Toolkit Virtual Disk Driver.) - LEGACY_TOOLKITDISK
O64 - Services: CurCS - 08/04/2013 - C:\Windows\System32\DRIVERS\trufos.sys (trufos) .(.BitDefender S.R.L. - Trufos Kernel Module.) - LEGACY_TRUFOS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\ws2ifsl.sys (ws2ifsl) .(.Microsoft Corporation - Couche IFS Winsock2.) - LEGACY_WS2IFSL
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 97 Scanned in 00mn 01s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} [DefaultScope] - (Web Search) - http://feed.snap.do =>Hijacker.SmartBar
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Hola Search) - http://www.holasearch.com =>Hijacker.HolaSearch
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Services: 32 Scanned in 00mn 01s



---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.1090A8B1D3E2A64082FDE7EC5F04EDE2] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2224.bin [125997]
[MD5.4C2B01EB34E605819B02AE7FE45E8FA7] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2228.bin [17155]
[MD5.22E56608CDECDBA5BA4AE7D36E4551BF] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2244.bin [1090]
[MD5.6DA7A05B5BF040423CAF804B5E678588] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2260.bin [15334]
[MD5.75C3D37E6819EE23ED52A76E96D7C0B2] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2264.bin [1090]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2276.bin [0]
[MD5.8E7D8890865DBCEF3DC30E5CB8351CF7] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2280.bin [7850]
[MD5.7EF9A2D2F3C304FA822BC5A5802FF573] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2284.bin [272040]
[MD5.D4FD30F13F0042E923CE256D7E17F32C] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2288.bin [2275]
[MD5.702E1489BDF19343BFA185C26B9F809C] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.2412.bin [19851]
[MD5.A35257C03F648FB34035B669AC1D6C04] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360244169.4564.bin [8927]
[MD5.80B91780F32DB2FB9A6E2501FE783215] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360245217.bdinstall.bin [259925]
[MD5.E2ABC0EC23EF91BD4AE6D8BEB2A37875] [SPRF][07/02/2013] (...) -- C:\ProgramData\1360246059.bdinstall.bin [439552]
[MD5.0A994CCA07FD47BCA71D6B2BE06EDAEF] [SPRF][08/03/2013] (...) -- C:\ProgramData\1362737421.bdinstall.bin [234287]
[MD5.21398EAEEA6ACF9B6D0367954FE34133] [SPRF][08/03/2013] (...) -- C:\ProgramData\1362739280.bdinstall.bin [502]
[MD5.FBD373B769AC572DC8EC5008B30643CA] [SPRF][08/03/2013] (...) -- C:\ProgramData\1362739466.bdinstall.bin [2617857]
[MD5.A61428FB32BFABC7643E525EE1DC6F83] [SPRF][09/03/2013] (...) -- C:\ProgramData\1362836658.bdinstall.bin [84319]
[MD5.6E1CDA0E3854780ECBA528FE732CF58C] [SPRF][09/03/2013] (...) -- C:\ProgramData\1362836777.bdinstall.bin [235291]
[MD5.8422F57D6E48D13A4438055F702A5F95] [SPRF][09/03/2013] (...) -- C:\ProgramData\1362837092.bdinstall.bin [1549]
[MD5.0241915B27C6D74DAC691D0563D11EE3] [SPRF][09/03/2013] (...) -- C:\ProgramData\1362837356.bdinstall.bin [2846948]
[MD5.579FDC0EE10CC5D9B6DF1F7CC5E5F608] [SPRF][08/04/2013] (...) -- C:\ProgramData\1365434852.bdinstall.bin [233342]
[MD5.7149083D516B403C7A260F57FBFD6FE7] [SPRF][08/04/2013] (...) -- C:\ProgramData\1365441310.bdinstall.bin [945416]
[MD5.2540A168BEFA0AE5C1A9453E39B29434] [SPRF][08/04/2013] (...) -- C:\ProgramData\1365443872.bdinstall.bin [250864]
[MD5.71AF00C0A0096FE6C79D1D1F9AA15ECA] [SPRF][08/04/2013] (...) -- C:\ProgramData\1365444832.bdinstall.bin [464430]
[MD5.7AF23185660F35D932FFD8009F37C2E8] [SPRF][08/04/2013] (...) -- C:\ProgramData\1365445369.bdinstall.bin [58978]
[MD5.67ABEE8DBE716E7B97E8EAD8E16DA429] [SPRF][08/04/2013] (...) -- C:\ProgramData\1365445764.bdinstall.bin [926118]
[MD5.4D5EE039DF40AF36B8643A1388D287A8] [SPRF][24/04/2013] (.Reimage� - Reimage Repair.) -- C:\Users\Lucie\AppData\Local\Temp\ReimagePackage.exe [11871520]
[MD5.6A0D9ED46BD49B5928B2DD6CB1F22D36] [SPRF][24/04/2013] (.Reimage� - Reimage Downloader.) -- C:\Users\Lucie\AppData\Local\Temp\ReimageRepair.exe [710696]
~ Files: Scanned in 00mn 06s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{BD76CB96-317E-4FF7-AEEC-3F10F2467116}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{6F0337F8-1774-45DA-B0CF-2038651C3B54}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{96389022-123A-41B8-85F3-67C3F8473E24}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{83EE82FE-F6CA-4F8E-A9A5-66D5376D2B18}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{67ED67C8-E8C2-4940-9CA2-2DA1906DA31E}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{31CEB148-1154-422B-841B-5BB94C5CFF66}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{54D7237F-350B-434C-997F-1725A1A9AEA3}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{0EE61DF0-612B-4663-B1AC-D2ED97198A5A}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{0EE831E4-8BD4-4229-826A-45CC5A89BB32}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{D5D564C3-0A77-4A5B-8B90-48C108BD2CEF}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{4C3F6E62-CC03-4999-AAB0-C11601E6458F}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{5A2FB052-20BF-413B-9B81-7EFD65E10572}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{3A66DA7E-7BCC-425F-8EB7-BEC11C063F30}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{71481EA0-F6A3-46A5-8A21-85987CA73E24}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{B53B356E-36A6-43B8-ACF9-2731AB9F9649}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{105D7C62-F37B-4501-AE5D-1EB7449F4B9E}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{8A9B6DAF-041E-411E-9B56-7E3B417EE6CF}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{7F63AFBD-AB77-451C-BDB8-A1AB5E0F766E}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{3E527921-6DA7-4657-8791-B4CA5F413C1D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{B19FC423-F2C8-416B-A2E5-8F0E648C2627}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{C3CA976F-4AA4-475D-9FFE-419FF597C8D2}" | In - None - P6 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe
O87 - FAEL: "{5DD4970F-08B1-4F3D-A720-497001972861}" | In - None - P6 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{40CD5648-6C34-477A-BB07-47966A81F59C}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Installateur Windows�.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{9519CCAD-EE49-4F22-8AA1-FA9EAB54C371}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Installateur Windows�.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "TCP Query User{B0490F1A-2A49-4CEE-84C3-47DEAE8E2942}C:\windows\syswow64\javaw.exe" | In - Private - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\windows\syswow64\javaw.exe
O87 - FAEL: "UDP Query User{72665FDD-E064-426E-B413-6273C6E41FC3}C:\windows\syswow64\javaw.exe" | In - Private - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\windows\syswow64\javaw.exe
O87 - FAEL: "{2AA7C1D0-9AC2-4DA1-BD18-BC0DA3A19886}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4D3CCFAF-6677-4275-98BC-67E0F5506686}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{C4F7CC40-D31D-49F2-AB05-06AFD058EE20}" | In - None - P17 - TRUE | .(.Trusted Software ApS - Find software to open your files.) -- C:\Program Files (x86)\File Type Assistant\TSAssist.exe
O87 - FAEL: "{9B3E1611-A864-42F3-8B84-C019286CFAD4}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{14DBE51B-E25A-4BD0-A656-D9701E42C3B5}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{76056504-4A6D-4911-9D36-B66C7CB3B266}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{BB2770D6-4AD4-4CA0-A624-708FEA7007D9}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{0F9D59B8-FF13-4FF3-8D5B-BC7E599DA662}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
O87 - FAEL: "{1AD7D07F-5BA8-4ACF-A62B-37319D6F86B2}" | In - None - P6 - TRUE | .(.Bitberry Software - Bitberry Software Update Checker.) -- C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe
O87 - FAEL: "{8604938E-7689-4E83-A0E1-60B2409D1B86}" | In - None - P6 - TRUE | .(.Trusted Software ApS - Find software to open your files.) -- C:\Program Files (x86)\File Type Assistant\TSAssist.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{7874D46A-FBA7-4FCE-BA75-7542F8C339BF}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "TCP Query User{37395449-3A85-4BBF-89C8-A98DE80F51C7}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe" | In - Private - P6 - TRUE | .(.Apache Software Foundation - Apache HTTP Server.) -- C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe
O87 - FAEL: "UDP Query User{920194D1-6313-46B9-9FE7-9897F890B8E0}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe" | In - Private - P17 - TRUE | .(.Apache Software Foundation - Apache HTTP Server.) -- C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe
O87 - FAEL: "{C1A81FA9-DB4D-4049-AF35-6A19DEBDA4C9}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
O87 - FAEL: "{43CA2E7C-59C1-4C0D-8203-7EA7DBA89475}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{F035F92B-ACF9-442E-BEC5-5CA26DACAE3F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\System32\svchost.exe
O87 - FAEL: "{6594561D-BCB2-40E5-AE1C-4DAA21851BEC}" | In - None - P17 - TRUE | .(.Trusted Software ApS - Find software to open your files.) -- C:\Program Files (x86)\File Type Assistant\TSAssist.exe
~ Firewall: 205 Scanned in 00mn 01s



---\\ Scan Additionnel (O88)
Database Version : v2.11668 - (23/04/2013)
Cl�s trouv�es (Keys found) : 27
Valeurs trouv�es (Values found) : 1
Dossiers trouv�s (Folders found) : 6
Fichiers trouv�s (Files found) : 0

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASAPI32] =>Hijacker.SmartBar
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SnapDo_RASMANCS] =>Hijacker.SmartBar
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\APN PIP] =>Toolbar.Ask
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr] =>Adware.Bandoo
[HKCU\Software\DataMngr_Toolbar] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\PIP] =>Toolbar.Ask
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\InstallIQ] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKCU\Software\Protector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce] =>Adware.OpenCandy
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASMANCS] =>Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT3281675] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT3281675] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:Bubble Dock =>Adware.SPointer
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\Users\Lucie\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Lucie\AppData\Roaming\OpenCandy =>Adware.OpenCandy
C:\Users\Lucie\AppData\Roaming\B1Toolbar =>Toolbar.BrotherSoft
C:\Users\Lucie\AppData\Local\B1E =>Toolbar.BrotherSoft
C:\Users\Lucie\AppData\LocalLow\Conduit =>Toolbar.Conduit
~ Additionnel Scan: 244131 Items scanned in 00mn 54s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "045F27F206F16624596059B2126D46D0" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{2F72F540-1F60-4266-9506-952B21D6640D}\Installer.ico
O90 - PUC: "0C0F69B73DDB763A11CC5495C736BABE" . (.Catalyst Control Center Graphics Light.) -- C:\Windows\Installer\{7B96F0C0-BDD3-A367-11CC-45597C63ABEB}\ARPPRODUCTICON.exe
O90 - PUC: "0C7EC0FA4E3A37D489B82B1978CEE6A9" . (.QuickTime.) -- C:\Windows\Installer\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}\Installer.ico
O90 - PUC: "0EAA8D61A5AECA5F9D7BB408E21CBC64" . (.ccc-utility64.) -- C:\Windows\Installer\{16D8AAE0-EA5A-F5AC-D9B7-4B802EC1CB46}\ARPPRODUCTICON.exe
O90 - PUC: "12DA52202E3F6194FB3F563D9F505228" . (.iTunes.) -- C:\Windows\Installer\{0225AD21-F3E2-4916-BFF3-65D3F9052582}\Installer.ico
O90 - PUC: "2572B02E909082B48B9A9AEB15C91A1A" . (.Assistant de connexion Microsoft Online Services.) -- C:\Windows\Installer\{E20B2752-0909-4B28-B8A9-A9BE519CA1A1}\prodicon.ico
O90 - PUC: "4040EB2C252975688693AEB206AEC38E" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{C2BE0404-9252-8657-6839-EA2B60EA3CE8}\ARPPRODUCTICON.exe
O90 - PUC: "41DC8ECD5FBF46449B4A1EE87453647C" . (.Assistant de connexion Windows Live.) -- C:\Windows\Installer\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}\prodicon.ico
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "68267DD57EB949849A099E509EA18C81" . (.Windows Live Mail.) -- C:\Windows\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe
O90 - PUC: "69CA9BF563CBDEE7D7FCB8F24F34A795" . (.ccc-core-static.) -- C:\Windows\Installer\{5FB9AC96-BC36-7EED-7DCF-8B2FF4437A59}\ARPPRODUCTICON.exe
O90 - PUC: "79407899D9A1CF9449F9CE4F89A6ABF1" . (.ForceDownload.) -- C:\Windows\Installer\{99870497-1A9D-49FC-949F-ECF4986ABA1F}\ARPPRODUCTICON.exe
O90 - PUC: "7AA65C54B1DE00849AF7DEFDF353021B" . (.Apple Application Support.) -- C:\Windows\Installer\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}\WinInstall.ico
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "7E31197DC472B074DB64101B2091FDA6" . (.HPPhotosmartEssential.) -- C:\Windows\Installer\{D79113E7-274C-470B-BD46-01B10219DF6A}\ARPPRODUCTICON.exe
O90 - PUC: "8A655E560AC64A228681C60D86ADA0DF" . (.Catalyst Control Center Graphics Full New.) -- C:\Windows\Installer\{65E556A8-6CA0-22A4-6818-6CD068DA0AFD}\ARPPRODUCTICON.exe
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "C040311900063D11C8EF10054038389C" . (.Microsoft Office Basic Edition 2003.) -- C:\Windows\Installer\{9113040C-6000-11D3-8CFE-0150048383C9}\misc.exe,6
O90 - PUC: "D172A62F206591AC4665EA2BB2FE1EAE" . (.Catalyst Control Center Core Implementation.) -- C:\Windows\Installer\{F26A271D-5602-CA19-6456-AEB22BEFE1EA}\ARPPRODUCTICON.exe
O90 - PUC: "D270DC4E1E31BAE53A05677E8F2ADD15" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{E4CD072D-13E1-5EAB-A350-76E7F8A2DD51}\ARPPRODUCTICON.exe
O90 - PUC: "D381B5441F4F8C549BBD1F3155AC56B7" . (.Windows Live Messenger.) -- C:\Windows\Installer\{445B183D-F4F1-45C8-B9DB-F11355CA657B}\MsblIco.Exe
O90 - PUC: "D64792F66E29387F0A4FF490E6870D05" . (.Catalyst Control Center Graphics Full Existing.) -- C:\Windows\Installer\{6F29746D-92E6-F783-A0F4-4F096E78D050}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de t�l�chargement Windows Live.) -- C:\Windows\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "E8D536CFABFFC2B4EB863AD765DBBF47" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{FC635D8E-FFBA-4B2C-BE68-A37D56BDFB74}\ARPPRODUCTICON.exe
~ Update Products: 103 Scanned in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\d57dadbbc68e848\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\d57dadbbc68e848\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80"
[HKCU\Software\d57dadbbc68e848] =>Toolbar.Babylon^
[HKLM\Software\Wow6432Node\d57dadbbc68e848] => Cl� orpheline
~ Export Key Software: Scanned in 00mn 00s



---\\ MyComputer Name Space (O92)
O92 - MNS: One.com Cloud Drive - {209F971E-F11E-41E8-B6ED-592E85DBA1E4}
O92 - MNS: ZEN V Series Media Explorer - {24849e2f-0a86-40cd-a62a-b12f161882db}
~ MNS: 2 Scanned in 00mn 00s



---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/03/2010 113152 | (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SR - | Auto 21/04/2010 202752 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SS - | Disabled 08/04/2013 69392 | (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe
SR - | Auto 13/12/1999 44032 | (Creative Service for CDROM Access) . (.Creative Technology Ltd.) - C:\Windows\SysWOW64\CTsvcCDA.exe
SR - | Auto 11/06/2010 868896 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
SS - | Demand 15/07/2010 655624 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SR - | Auto 08/01/2010 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
SR - | Demand 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Demand 20/02/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SS - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 12/04/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 25/06/2012 95184 | (SafeBox) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
SR - | Auto 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
SR - | Auto 08/04/2013 68856 | (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
SR - | Auto 08/04/2013 1646792 | (vsserv) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
SS - | Demand 13/05/2012 18432 | (wampapache) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe
SS - | Demand 8177664 | (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 04s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Lucie at 24/04/2013 22:43:40

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s



End of the scan (2076 lines in 04mn 12s)(0)

Publicité


Signaler le contenu de ce document

Publicité