cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v1.27.17042 par Nicolas Coolman, Update du 17/03/2011
Run by Carna 18 at 26/02/2014 17:34:22
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr


---\\ Web Browser
MSIE: Internet Explorer v9.11.9600.16518
MFIE: Mozilla Firefox 27.0.1 v27.0.1 (Defaut)

---\\ System Information
Windows 7 Ultimate Edition, 32-bit Service Pack 1 (Build 7601)
Processor: x86 Family 6 Model 28 Stepping 2, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3063 MB (71% free)
System Restore: Activ� (Enable)
System drive C: has 257 GB (86%) free of 298 GB

---\\ Logged in mode
Computer Name: CARNA18
User Name: Carna 18
All Users Names: Pi�ces Auto 71, HomeGroupUser$, Carna 18, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Users\Carna 18\AppData\Roaming
%LocalAppData%=C:\Users\Carna 18\AppData\Local
%StartMenu%=C:\Users\Carna 18\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 257 Go of 298 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.9C89246184979A070B0C6CCF61C68136] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/02/2014 09:41:35.) -- C:\Windows\System32\wininet.dll [1820160]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 02:26:15.) -- C:\Windows\System32\drivers\atapi.sys [21584]
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 14:45:29.) -- C:\Windows\System32\drivers\ntfs.sys [1211752]



---\\ Processus lanc�s
[MD5.8B6CD5D0EC96D66E0E602E9EC2EED223] - (.TuneUp Software - TuneUp Utilities.) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe [1926496]
[MD5.FF8EA20CFA47CD134B3EABA59C6689F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [640512]



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propri�taire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propri�taire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=1.6.0_37] - (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npdeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_37 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Pas de propri�taire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.dll (.not file.)
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Pas de propri�taire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.dll (.not file.)
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3538.0513] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3555.0308] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.1] - (.VideoLAN - VLC media player Web Plugin 2.0.0.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
M0 - MFSP: prefs.js [Carna 18 - pp2ut6t7.default] chrome://fastdial/content/fastdial.html
M2 - MFEP: prefs.js [Carna 18 - pp2ut6t7.default\fastdial@telega.phpnet.us] [fastdial] Fast Dial v4.11 (.telega.)
M2 - MFEP: prefs.js [Carna 18 - pp2ut6t7.default\support@lastpass.com] [] LastPass v2.0.20 (.LastPass Dev Team.)



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKUS\S-1-5-21-3408061603-3191091562-187893097-1006\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-3408061603-3191091562-187893097-1006\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.16428 (winblue_gdr.131013-1700)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll



---\\ ---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [hpqSRMon] . (.Hewlett-Packard - HpqSRmon.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co..) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe



---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Carna 18\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Carna 18\Desktop\Comp�titions.lnk . (...) -- C:\Users\Carna 18\Documents\Comp�titions
O4 - Global Startup: C:\Users\Carna 18\Desktop\Entreprise.lnk . (...) -- C:\Users\Carna 18\Documents\Entreprise
O4 - Global Startup: C:\Users\Carna 18\Desktop\Guidage.lnk . (...) -- C:\Users\Carna 18\Documents\Guidage
O4 - Global Startup: C:\Users\Carna 18\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Sunbird.lnk . (.Mozilla.) -- C:\Program Files\Mozilla Sunbird\sunbird.exe



---\\ Lignes suppl�mentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~1\Office12\EXCEL.exe



---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companion
O9 - Extra 'Tools' menuitem: &Envoyer � OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.not file.) - C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Notes &li�es OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.not file.) - C:\PROGRA~1\MICROS~3\Office14\ONBTTN~1.dll
O9 - Extra button: Notes &li�es OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propri�taire - Pas de description.) -- C:\PROGRA~1\MICROS~1\Office12\REFBARH.ICO
O9 - Extra button: Notes &li�es OneNote - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: Microsoft XML Parser for Java - (Microsoft XML Parser for Java) - (.not file.) - C:\Windows\Java\classes\xmldso.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{18C98D6F-FFDB-428D-8A47-E7EEE85F0CA9}: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{8C8101BE-6AB3-4E36-B074-3C0D678604EA}: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{18C98D6F-FFDB-428D-8A47-E7EEE85F0CA9}: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{8C8101BE-6AB3-4E36-B074-3C0D678604EA}: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{18C98D6F-FFDB-428D-8A47-E7EEE85F0CA9}: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{8C8101BE-6AB3-4E36-B074-3C0D678604EA}: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{18C98D6F-FFDB-428D-8A47-E7EEE85F0CA9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{8C8101BE-6AB3-4E36-B074-3C0D678604EA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{18C98D6F-FFDB-428D-8A47-E7EEE85F0CA9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8C8101BE-6AB3-4E36-B074-3C0D678604EA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{18C98D6F-FFDB-428D-8A47-E7EEE85F0CA9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{8C8101BE-6AB3-4E36-B074-3C0D678604EA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1



---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL



---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated - Adobe� Flash� Player Update Service 12.0 r0.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (FsUsbExService) . (.Teruten - FsUsbDevice.) - C:\Windows\system32\FsUsbExService.exe
O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (32-bit).) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: (MozillaMaintenance) . (.Mozilla Foundation - Pas de description.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft� Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
[MD5.00000000000000000000000000000000] [APT] [Adobe Flash Player Updater] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [CCleanerSkipUAC] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [Google Updater and Installer] (.Pas de propri�taire.) -- C:\Users\Carna 18\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [Java Update Scheduler] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [Programme de mise � jour en ligne de Adobe] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [Programme de mise � jour en ligne de HP.] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [SidebarExecute] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [TuneUpUtilities_Task_BkGndMaintenance2012] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [User_Feed_Synchronization-{9318A2B9-D470-4259-9A84-546708D4764C}] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [User_Feed_Synchronization-{F125768C-A840-454B-8C05-2F7EE31C54D2}] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{2FD506F7-C4E8-43AC-98A2-B9903F090C2E}] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{34CE5B39-A2A3-40E7-867B-842773979288}] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6368821C-E19A-485B-A5B4-AAB51E7C20C5}] (.Pas de propri�taire.) -- (.not file.)
[MD5.00000000000000000000000000000000] [APT] [AppleSoftwareUpdate] (.Pas de propri�taire.) -- (.not file.)



---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (MpKslfbd3e467) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9B9A140B-3EEF-4E35-A61C-6E28FD22D9F9}\MpKslfbd3e467.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Brother Industries Ltd. - Pilote Brother S�rie I/F (WDM).) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys



---\\ Logiciels install�s (O42)
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {5AF4B3C4-C393-48D7-AC7E-8E7615579548}
O42 - Logiciel: Adobe Download Manager - (.NOS Microsystems Ltd..) [HKLM] -- {E2883E8F-472F-4fb0-9522-AC9BF37916A7}
O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.9) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Pas de propri�taire.) [HKLM] -- Adobe SVG Viewer
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {21FC2093-6E43-460B-B9B0-5F5AA35BBB0F}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {10E3A6DD-84D8-4D8A-BB11-5E5314BCA7FD}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Belkin Wireless USB Adapter Setup - (.Belkin.) [HKLM] -- {4EE9A620-46A0-4BCF-82AC-950D2BBED982}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Ciel Auto-entrepreneur Standard 6.1 - (.Ciel.) [HKLM] -- {1FB9BE7A-77BB-4F26-9886-01259BF87088}
O42 - Logiciel: Compl�ment Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart All-In-One Driver Software 13.0 Rel. A - (.HP.) [HKLM] -- {17016DA1-F040-4032-BD36-34DD317BC9D5}
O42 - Logiciel: HP Photosmart Essential 3.5 - (.HP.) [HKLM] -- HP Photosmart Essential
O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: Hardlock Device Drivers - (.Pas de propri�taire.) [HKLM] -- Hardlock Device Drivers
O42 - Logiciel: Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2461678
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Java(TM) 6 Update 37 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216033FF}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propri�taire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{8283FD64-6A3B-4104-9E12-7CA25EF29A1A}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit - (.Microsoft Corporation.) [HKLM] -- {95140000-007D-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {0CD47142-BA4F-46B0-AA92-2675864928B8}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {50779A29-834E-4E36-BBEB-B7CABC67A825}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 27.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 27.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: MyDriveConnect 3.3.0.1342 - (.TomTom.) [HKLM] -- MyDriveConnect
O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM] -- HPOCR
O42 - Logiciel: OutlookAddInNet3Setup - (.Samsung.) [HKLM] -- {5B4383F2-37EE-4E97-AD81-F5FF76F286DA}
O42 - Logiciel: Revo Uninstaller 1.91 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit
O42 - Logiciel: SFR - Mediacenter Evolution - (.SFR.) [HKLM] -- SFR_Mediacenter Evolution
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2572078
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2604121
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2633870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656351
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656368
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656368v2
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656405
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2686827
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2729449
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2737019
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2742595
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2789642
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2835393
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2840628v2
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2858302v2
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2898855v2) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2898855v2
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2901110v2) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2901110v2
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D33B9EF5-3801-496A-A2D6-B7F4BE972D75}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B145DBBB-7778-4A5D-9D2B-DA6569F02391}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{E34960DB-2A93-45DB-A208-02650F7AB09C}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B7727B4D-5EA3-4C11-9D30-15E47616DCAF}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{293FB6BE-D3EB-4162-B522-F9108040B9FE}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{EA575F57-C5D1-4B5A-B9F9-F16EEBC6B58C}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3579CE34-B225-4B19-A3AF-DE5F562A212F}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{79850906-6D2B-4061-8EAF-EAC84173DEC5}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{DCA9E555-940E-4D9F-87E9-15A672D98DB7}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8907F32C-DF89-4C2F-AEDE-0DB4B65451C0}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{319FC809-3841-4739-A25F-FDBADF073697}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B7112510-2575-4BA4-A576-78BF8A6307BC}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{4CCE0378-386F-4DC2-9CC1-A3710C77057D}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1A0CA3FF-2BB8-4CF8-A5A9-9B314260C327}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6B4A3804-666A-4DD8-84A7-B97701416784}
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{686630EC-8033-4031-85C5-D8E5CD62A958}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8F311D6C-D8DD-4C32-9457-1A129CABD1A5}
O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{12A1DD97-E9A1-4370-837E-D1BBD088584B}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AEA16A27-0B97-4670-818F-A98D06EC0A6F}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{9D689455-5858-4AE4-A3CA-6E4149FE3F70}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8A8710F9-C828-440A-A2A7-2FCE899B7D99}
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies
O42 - Logiciel: Skype� 6.5 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Smart File Advisor 1.1.1 - (.Filefacts.net.) [HKLM] -- Smart File Advisor_is1
O42 - Logiciel: Trust 100K Series Webcam - (.Trust.) [HKLM] -- {C679F9B9-C65D-4C65-BD6C-BF90B859E281}
O42 - Logiciel: TuneUp Utilities 2013 - (.TuneUp Software.) [HKLM] -- TuneUp Utilities 2013
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2600217) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939v3
O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}
O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}
O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}
O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{B83A8864-A85D-437E-9D4C-27350765BF46}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{128A5449-CF71-4DA4-A746-F49E3B5DB584}
O42 - Logiciel: VLC media player 2.0.1 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM] -- {4412F224-3849-4461-A3E9-DEEF8D252790}
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM] -- WinPcapInst
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {C4780F70-8F21-4F0C-95FE-32FF3E2F9247}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\Intel]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Policies]
[HKCU\Software\PrtScr]
[HKCU\Software\TeleCharger]
[HKCU\Software\TomTom]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\WinRAR]
[HKLM\Software\685D6D1C-D73A-4F37-B7E5E53660311DDB]
[HKLM\Software\ADSECURITY]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AUTODATA]
[HKLM\Software\Adobe]
[HKLM\Software\Adobee]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Aladdin Knowledge Systems]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Autodata Limited]
[HKLM\Software\Belkin]
[HKLM\Software\Borland]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\EURATEC]
[HKLM\Software\Freemake]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\Google]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NOS]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Offline Catalog]
[HKLM\Software\Pervasive Software]
[HKLM\Software\Piriform]
[HKLM\Software\PixArt]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Sage]
[HKLM\Software\Samsung]
[HKLM\Software\Skype]
[HKLM\Software\Smart File Advisor]
[HKLM\Software\TECDOC]
[HKLM\Software\TQ566808]
[HKLM\Software\TeamViewer]
[HKLM\Software\TomTom]
[HKLM\Software\Trust]
[HKLM\Software\TuneUp]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WinPcap]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\mozilla.org]



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 06/07/2011 - 12:01:36 - [167936646] ----D- C:\Program Files\Adobe
O43 - CFD: 08/05/2013 - 10:10:30 - [2428606] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 18/01/2012 - 09:44:16 - [985056] ----D- C:\Program Files\Belkin
O43 - CFD: 08/05/2013 - 10:09:22 - [631095] ----D- C:\Program Files\Bonjour
O43 - CFD: 21/12/2012 - 08:40:36 - [5239040] ----D- C:\Program Files\CCleaner
O43 - CFD: 14/02/2014 - 10:09:08 - [118411005] ----D- C:\Program Files\Ciel
O43 - CFD: 25/02/2014 - 15:32:16 - [1024337490] ----D- C:\Program Files\Common Files
O43 - CFD: 25/02/2011 - 14:02:04 - [4191414] ----D- C:\Program Files\DVD Maker
O43 - CFD: 18/02/2011 - 20:04:56 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 26/02/2014 - 10:54:48 - [188623981] ----D- C:\Program Files\Google
O43 - CFD: 25/02/2014 - 15:41:20 - [300166260] ----D- C:\Program Files\HP
O43 - CFD: 03/01/2013 - 09:56:02 - [7041068] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 14/02/2014 - 10:33:12 - [23938098] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 19/02/2014 - 08:24:24 - [2057451] ----D- C:\Program Files\iPod
O43 - CFD: 19/02/2014 - 08:26:40 - [197589393] ----D- C:\Program Files\iTunes
O43 - CFD: 17/10/2012 - 06:28:42 - [88818843] ----D- C:\Program Files\Java
O43 - CFD: 16/02/2014 - 18:16:38 - [190398] ----D- C:\Program Files\ma-config.com
O43 - CFD: 28/02/2011 - 11:05:48 - [4013702] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 08/10/2012 - 19:10:18 - [39616944] ----D- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 19/12/2012 - 12:07:50 - [940795537] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 22/01/2014 - 21:48:44 - [23468468] ----D- C:\Program Files\Microsoft Security Client
O43 - CFD: 23/01/2014 - 07:40:30 - [42835382] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 08/10/2012 - 19:10:26 - [3635637] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 08/10/2012 - 19:10:26 - [683440] ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 08/10/2012 - 19:10:26 - [326800] ----D- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 09/10/2012 - 17:43:10 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 18/02/2011 - 21:01:00 - [24675131] ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 12/10/2012 - 22:02:40 - [3726168] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 26/02/2011 - 03:01:10 - [8167779] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 15/02/2014 - 10:31:02 - [54533251] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 16/02/2014 - 18:16:38 - [345275] ----D- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 15/02/2014 - 11:21:56 - [23500868] ----D- C:\Program Files\Mozilla Sunbird
O43 - CFD: 19/02/2011 - 08:27:22 - [26521] ----D- C:\Program Files\MSBuild
O43 - CFD: 19/02/2011 - 22:14:26 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 25/02/2014 - 09:50:08 - [18461357] ----D- C:\Program Files\MyDrive Connect
O43 - CFD: 18/02/2011 - 21:26:52 - [421776] ----D- C:\Program Files\NOS
O43 - CFD: 14/07/2009 - 05:52:32 - [39171329] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 19/01/2012 - 17:05:34 - [68459514] ----D- C:\Program Files\SFR
O43 - CFD: 15/06/2013 - 13:05:56 - [19874163] R---D- C:\Program Files\Skype
O43 - CFD: 26/06/2013 - 19:25:08 - [1610737] ----D- C:\Program Files\Smart File Advisor
O43 - CFD: 25/02/2014 - 09:50:10 - [22486] ----D- C:\Program Files\TomTom International B.V
O43 - CFD: 10/02/2012 - 11:32:34 - [163840] ----D- C:\Program Files\Trust
O43 - CFD: 03/01/2013 - 12:58:46 - [76787835] ----D- C:\Program Files\TuneUp Utilities 2013
O43 - CFD: 11/02/2012 - 21:36:34 - [93112542] ----D- C:\Program Files\VideoLAN
O43 - CFD: 20/02/2011 - 11:48:08 - [6770777] ----D- C:\Program Files\VS Revo Group
O43 - CFD: 23/01/2014 - 07:37:26 - [3050496] ----D- C:\Program Files\Windows Defender
O43 - CFD: 23/01/2014 - 07:37:28 - [7012984] ----D- C:\Program Files\Windows Journal
O43 - CFD: 15/06/2013 - 19:09:24 - [86385107] ----D- C:\Program Files\Windows Live
O43 - CFD: 25/02/2011 - 03:29:50 - [6181376] ----D- C:\Program Files\Windows Mail
O43 - CFD: 23/01/2014 - 07:37:28 - [6604034] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 18/02/2011 - 20:04:56 - [12197556] ----D- C:\Program Files\Windows NT
O43 - CFD: 25/02/2011 - 03:29:48 - [4417800] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 25/02/2011 - 03:29:48 - [189952] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 25/02/2011 - 03:29:50 - [6332365] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 12/05/2013 - 10:29:36 - [189003] ----D- C:\Program Files\WinPcap
O43 - CFD: 18/02/2011 - 21:10:50 - [5137655] ----D- C:\Program Files\WinRAR
O43 - CFD: 26/02/2014 - 17:34:34 - [338404918] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 27/07/2011 - 19:47:28 - [9077979] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 13/02/2013 - 21:15:04 - [46352040] ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 19/02/2014 - 08:24:20 - [274670472] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 06/01/2012 - 21:41:30 - [560] ----D- C:\Program Files\Common Files\CANON
O43 - CFD: 14/02/2014 - 10:10:26 - [27096] ----D- C:\Program Files\Common Files\Ciel
O43 - CFD: 19/02/2011 - 08:26:24 - [99136] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 02/03/2011 - 13:08:24 - [531477] ----D- C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 25/02/2014 - 15:32:16 - [5665956] ----D- C:\Program Files\Common Files\HP
O43 - CFD: 04/10/2012 - 11:58:48 - [8653941] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 10/06/2011 - 12:54:10 - [1260271] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 12/10/2012 - 22:02:48 - [435669998] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 14/02/2014 - 10:10:34 - [651776] ----D- C:\Program Files\Common Files\MSSoap
O43 - CFD: 10/02/2012 - 11:32:38 - [10167626] ----D- C:\Program Files\Common Files\PAC207
O43 - CFD: 18/02/2011 - 22:49:48 - [614400] ----D- C:\Program Files\Common Files\Sage
O43 - CFD: 01/02/2012 - 15:48:56 - [317770] ----D- C:\Program Files\Common Files\Samsung
O43 - CFD: 14/07/2009 - 03:37:06 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 15/06/2013 - 13:05:56 - [1996392] ----D- C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - 03:37:06 - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 10/11/2011 - 03:23:32 - [44263291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 12/04/2011 - 06:20:46 - [143210824] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 19/02/2014 - 08:26:42 - [2564993] ----D- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 12/04/2013 - 19:28:34 - [70229821] ----D- C:\ProgramData\Adobe
O43 - CFD: 19/02/2014 - 08:16:24 - [0] ----D- C:\ProgramData\Apple
O43 - CFD: 08/05/2013 - 10:12:06 - [24] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 18/02/2011 - 20:04:56 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 24/02/2011 - 12:16:12 - [0] ----D- C:\ProgramData\Canneverbe Limited
O43 - CFD: 24/01/2012 - 13:07:58 - [114] --H-D- C:\ProgramData\CanonIJEGV
O43 - CFD: 14/02/2014 - 10:10:36 - [35116672] ----D- C:\ProgramData\Ciel
O43 - CFD: 03/01/2013 - 12:57:26 - [96] --H-D- C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 18/02/2011 - 20:04:56 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 22/01/2014 - 18:47:30 - [0] ----D- C:\ProgramData\Freemake
O43 - CFD: 18/02/2011 - 20:09:08 - [259350] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 25/02/2014 - 15:37:18 - [21510172] ----D- C:\ProgramData\HP
O43 - CFD: 25/02/2014 - 15:36:52 - [8988] ----D- C:\ProgramData\HP Product Assistant
O43 - CFD: 18/02/2011 - 21:43:24 - [129] ----D- C:\ProgramData\IM
O43 - CFD: 16/02/2014 - 16:44:10 - [1477852] ----D- C:\ProgramData\ma-config.com
O43 - CFD: 28/02/2011 - 11:03:22 - [10941958] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 18/02/2011 - 20:04:56 - [0] -SH-D- C:\ProgramData\Menu D�marrer
O43 - CFD: 14/02/2014 - 12:07:36 - [518193543] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 25/02/2014 - 21:59:52 - [82790] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 18/02/2011 - 20:04:56 - [0] -SH-D- C:\ProgramData\Mod�les
O43 - CFD: 24/04/2012 - 21:15:58 - [0] ----D- C:\ProgramData\Mozilla
O43 - CFD: 18/02/2011 - 22:39:58 - [319102] ----D- C:\ProgramData\NOS
O43 - CFD: 15/06/2013 - 19:01:20 - [22475374] ----D- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 19/02/2011 - 21:17:02 - [260] ----D- C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 03/01/2013 - 12:58:26 - [28085141] ----D- C:\ProgramData\TuneUp Software
O43 - CFD: 02/03/2011 - 13:23:34 - [243] ----D- C:\ProgramData\WEBREG
O43 - CFD: 14/02/2014 - 09:28:56 - [42670] ----D- C:\Users\Carna 18\AppData\Roaming\Adobe
O43 - CFD: 26/02/2014 - 17:22:38 - [80127] ----D- C:\Users\Carna 18\AppData\Roaming\Apple Computer
O43 - CFD: 25/02/2014 - 15:49:54 - [146930] ----D- C:\Users\Carna 18\AppData\Roaming\HP
O43 - CFD: 14/02/2014 - 08:32:08 - [0] ----D- C:\Users\Carna 18\AppData\Roaming\Identities
O43 - CFD: 07/03/2011 - 11:46:52 - [58728] ----D- C:\Users\Carna 18\AppData\Roaming\Macromedia
O43 - CFD: 26/02/2014 - 11:30:46 - [1566] ----D- C:\Users\Carna 18\AppData\Roaming\Malwarebytes
O43 - CFD: 16/02/2014 - 18:16:20 - [625850] -S--D- C:\Users\Carna 18\AppData\Roaming\Microsoft
O43 - CFD: 15/02/2014 - 11:21:48 - [33684576] ----D- C:\Users\Carna 18\AppData\Roaming\Mozilla
O43 - CFD: 14/02/2014 - 09:51:22 - [61828] ----D- C:\Users\Carna 18\AppData\Roaming\TuneUp Software
O43 - CFD: 14/02/2014 - 12:17:36 - [1237116] ----D- C:\Users\Carna 18\AppData\Roaming\WinRAR



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.48CC824E5C5A551C3C3F1B46E9230D0D] - 26/02/2014 - 17:27:55 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [17168]
O44 - LFC:[MD5.48CC824E5C5A551C3C3F1B46E9230D0D] - 26/02/2014 - 17:27:55 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [17168]
O44 - LFC:[MD5.E409D56CD23776444FD531F9D1B715D1] - 26/02/2014 - 17:26:01 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1557650]
O44 - LFC:[MD5.07C4279F7B6DC4B6ADEDA5D8D505F89D] - 26/02/2014 - 17:26:01 ---A- . (...) -- C:\Windows\System32\perfc009.dat [107256]
O44 - LFC:[MD5.BCD3B8282134206CFCE97862044002D1] - 26/02/2014 - 17:26:01 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [131648]
O44 - LFC:[MD5.F9A9BDBB69AD6C3637FC834716996B04] - 26/02/2014 - 17:26:01 ---A- . (...) -- C:\Windows\System32\perfh009.dat [618936]
O44 - LFC:[MD5.EE3F1231992A1BE31763F121F5D007B8] - 26/02/2014 - 17:26:01 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [707220]
O44 - LFC:[MD5.0C000000000000000000000000F01200] - 26/02/2014 - 17:23:46 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1946389]
O44 - LFC:[MD5.6980BFCA1D1EA0B2223094C76D8E4D8E] - 26/02/2014 - 17:21:08 ---A- . (...) -- C:\Windows\win.ini [712]
O44 - LFC:[MD5.3FCEC65F07289774A9E057EAB52CB811] - 26/02/2014 - 17:20:39 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [411328]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 26/02/2014 - 17:20:34 ---A- . (...) -- C:\Windows\setupact.log [56]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/02/2014 - 17:20:34 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.ACD2B0A5832F43300D6D30094000091C] - 26/02/2014 - 17:20:27 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.AC2034F63695864F6DF9F75279D269F7] - 26/02/2014 - 11:38:49 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.16D5E2B38CF4F6255BD53328E24B6855] - 25/02/2014 - 15:59:40 ---A- . (...) -- C:\Windows\hpoins18.dat [226743]
O44 - LFC:[MD5.72F76B12C09B36F26219920D0B2E7EF3] - 21/02/2014 - 00:49:39 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe [692616]
O44 - LFC:[MD5.FD38EBD137378FE594E7EFEBB5B3E096] - 21/02/2014 - 00:49:39 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [71048]
O44 - LFC:[MD5.EA093130471090037BB70A4AF86FAD1B] - 01/01/2014 - 00:05:20 ---A- . (...) -- C:\Windows\System32\locale.nls [420008]



---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - Cl� orpheline



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - ccleaner.exe - "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
O50 - IFEO:Image File Execution Options - hpwucli.exe - "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
O50 - IFEO:Image File Execution Options - skype.exe - "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
O50 - IFEO:Image File Execution Options - uninst.exe - "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak�.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"wdmaud.drv"="Pilote de fonction UAA 1.1 Microsoft pour High Definition Audio" . (.Pas de propri�taire - Pas de description.) -- (.not file.)



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O53 - SMSR:HKLM\...\startupreg\Connexion SFR 9props.exe [Key] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe
O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Users\Pi�ces Auto 71\AppData\Local\Facebook\Update\FacebookUpdate.exe
O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\FlashUtil10n_Plugin.exe
O53 - SMSR:HKLM\...\startupreg\KiesHelper [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesHelper.exe
O53 - SMSR:HKLM\...\startupreg\KiesPDLR [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Samsung\Kies\Kies.exe
O53 - SMSR:HKLM\...\startupreg\KiesTrayAgent [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Pas de propri�taire - Pas de description.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKCU\...\Policies\System] - "LogonHoursAction"=2
O55 - MWPS:[HKCU\...\Policies\System] - "DontDisplayLogonHoursWarnings"=1
O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145



---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.5EE8AAA16951E46D197392BA6F2402EA] - 01/07/2009 - 20:43:06 ---A- . (.none - Autodata Licensing System.) -- C:\Windows\system32\drivers\adatadrv.sys [762112]
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297552]
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [146512]
O58 - SDL:[MD5.A7B8A3A79D35215D798A300DF49ED23F] - 23/02/2005 - 14:58:56 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\system32\drivers\afc.sys [11776]
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14400]
O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 11/03/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [80256]
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 14/07/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys [159312]
O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 11/03/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [22400]
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [76368]
O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [86608]
O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifi� NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys [229888]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother S�rie I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [272128]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 13/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys [430080]
O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [15952]
O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 14/07/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [70720]
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 14/07/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [453712]
O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys [3100160]
O58 - SDL:[MD5.8142D5D886829B9876CB93AF59475C09] - 12/07/2010 - 13:49:18 ---A- . (.FTDI Ltd. - FTDIBUS USB Driver.) -- C:\Windows\system32\drivers\ftdibus.sys [60104]
O58 - SDL:[MD5.63D72A4CF9F163B59DB0CEED940A7D76] - 12/07/2010 - 13:48:56 ---A- . (.FTDI Ltd. - FTDIBUS Serial Device Driver.) -- C:\Windows\system32\drivers\ftser2k.sys [73032]
O58 - SDL:[MD5.185ADA973B5020655CEE342059A86CBB] - 21/08/2012 - 12:01:22 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [26840]
O58 - SDL:[MD5.9D4AD703C57F87118BFCD83787E6D82D] - 09/11/2005 - 08:44:36 ---A- . (...) -- C:\Windows\system32\drivers\hardlock.sys [24064]
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [26624]
O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [67152]
O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 11/03/2011 - 06:38:51 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys [332160]
O58 - SDL:[MD5.9467514EA189475A6E7FDC5D7BDE9D3F] - 23/09/2009 - 19:18:14 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd32.sys [4808192]
O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41040]
O58 - SDL:[MD5.EE67F3634096D49DF6ED2D43DDABF290] - 13/07/2009 - 23:02:47 ---A- . (.Atheros Communications, Inc. - Atheros L2 Fast Ethernet Controller ndis miniport driver.) -- C:\Windows\system32\drivers\l260x86.sys [29184]
O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [95824]
O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89168]
O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [54864]
O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96848]
O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 15:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952]
O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 15:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224]
O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys [30800]
O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [235584]
O58 - SDL:[MD5.95C0E81AECB54B846664C23FB5805B38] - 26/09/2008 - 12:30:54 ---A- . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr28u.sys [651264]
O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [44624]
O58 - SDL:[MD5.B48DC6ABCD3AEFF8618350CCBDC6B09A] - 11/02/2011 - 22:23:34 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\system32\drivers\npf.sys [35088]
O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 11/03/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA� nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [117120]
O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 11/03/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA� nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [143744]
O58 - SDL:[MD5.DCA942C0A19A0AD2ABCD9ACF94EB4B10] - 05/12/2006 - 11:34:42 ---A- . (.PixArt Imaging Inc. - PFC027.) -- C:\Windows\system32\drivers\PFC027.SYS [507136]
O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1383488]
O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106064]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.5FB7FCEA0490D821F26F39CC5EA3D1E2] - 14/07/2009 - 00:45:33 ---A- . (.Brother Industries Ltd. - Pilote Brother S�rie I/F (WDM).) -- C:\Windows\system32\drivers\serial.sys [83456]
O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [40016]
O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [77888]
O58 - SDL:[MD5.9DE6E60CE7FD82B4985DE5D9C22265AD] - 11/07/2008 - 07:05:00 ---A- . (.SafeNet, Inc. - Sentinel System USB Driver.) -- C:\Windows\system32\drivers\SNTNLUSB.SYS [37088]
O58 - SDL:[MD5.2DD4E8844F8F094659DD695A80FED36E] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ss_bcm.sys [12416]
O58 - SDL:[MD5.F9F4BC8A7EC80F39DE8323D0D1BC85FE] - 27/04/2010 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\system32\drivers\ss_bwh.sys [12288]
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [21072]
O58 - SDL:[MD5.6E421CCC57059B0186C6259CA3B6DFC9] - 13/12/2012 - 12:50:38 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl.sys [45056]
O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [16976]
O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 14/07/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [141904]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (...) -- C:\Windows\system32\country.sys [27097]
O58 - SDL:[MD5.CBE5F69A5E5B918225F420BA748F3742] - 24/06/2010 - 14:00:14 ---A- . (...) -- C:\Windows\system32\FsUsbExDisk.Sys [36608]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP
O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - C:\Users\PICESA~1\AppData\Local\Temp\catchme.sys (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - C:\Windows\System32\Drivers\cng.sys - CNG (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - C:\Windows\system32\cscsvc.dll (CSC) .(.Microsoft Corporation - DLL du service CSC.) - LEGACY_CSC
O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - C:\Windows\System32\drivers\dgderdrv.sys (.not file.) - dgderdrv (dgderdrv) .(...) - LEGACY_DGDERDRV
O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT
O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - C:\Windows\system32\FsUsbExDisk.sys - FsUsbExDisk (FsUsbExDisk) .(...) - LEGACY_FSUSBEXDISK
O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC
O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - C:\Windows\system32\drivers\hardlock.sys - Hardlock (Hardlock) .(...) - LEGACY_HARDLOCK
O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR
O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\MpFilter.sys - Microsoft Malware Protection Driver (MpFilter) .(.Microsoft Corporation - Microsoft antimalware file system filter dr.) - LEGACY_MPFILTER
O64 - Services: CurCS - (.not file.) - MpKsl02f1b40e (MpKsl02f1b40e) .(...) - LEGACY_MPKSL02F1B40E
O64 - Services: CurCS - (.not file.) - MpKsl0a05a23d (MpKsl0a05a23d) .(...) - LEGACY_MPKSL0A05A23D
O64 - Services: CurCS - (.not file.) - MpKsl0bc68d26 (MpKsl0bc68d26) .(...) - LEGACY_MPKSL0BC68D26
O64 - Services: CurCS - (.not file.) - MpKsl151a0d25 (MpKsl151a0d25) .(...) - LEGACY_MPKSL151A0D25
O64 - Services: CurCS - (.not file.) - MpKsl1b228f72 (MpKsl1b228f72) .(...) - LEGACY_MPKSL1B228F72
O64 - Services: CurCS - (.not file.) - MpKsl1ec28839 (MpKsl1ec28839) .(...) - LEGACY_MPKSL1EC28839
O64 - Services: CurCS - (.not file.) - MpKsl1f980f30 (MpKsl1f980f30) .(...) - LEGACY_MPKSL1F980F30
O64 - Services: CurCS - (.not file.) - MpKsl26f9a2c1 (MpKsl26f9a2c1) .(...) - LEGACY_MPKSL26F9A2C1
O64 - Services: CurCS - (.not file.) - MpKsl2da683a5 (MpKsl2da683a5) .(...) - LEGACY_MPKSL2DA683A5
O64 - Services: CurCS - (.not file.) - MpKsl2f90e013 (MpKsl2f90e013) .(...) - LEGACY_MPKSL2F90E013
O64 - Services: CurCS - (.not file.) - MpKsl2fd54c56 (MpKsl2fd54c56) .(...) - LEGACY_MPKSL2FD54C56
O64 - Services: CurCS - (.not file.) - MpKsl34a1fdab (MpKsl34a1fdab) .(...) - LEGACY_MPKSL34A1FDAB
O64 - Services: CurCS - (.not file.) - MpKsl3c7032af (MpKsl3c7032af) .(...) - LEGACY_MPKSL3C7032AF
O64 - Services: CurCS - (.not file.) - MpKsl3cd1c86c (MpKsl3cd1c86c) .(...) - LEGACY_MPKSL3CD1C86C
O64 - Services: CurCS - (.not file.) - MpKsl406e8da5 (MpKsl406e8da5) .(...) - LEGACY_MPKSL406E8DA5
O64 - Services: CurCS - (.not file.) - MpKsl439da0e0 (MpKsl439da0e0) .(...) - LEGACY_MPKSL439DA0E0
O64 - Services: CurCS - (.not file.) - MpKsl4a206dcd (MpKsl4a206dcd) .(...) - LEGACY_MPKSL4A206DCD
O64 - Services: CurCS - (.not file.) - MpKsl4c8c156d (MpKsl4c8c156d) .(...) - LEGACY_MPKSL4C8C156D
O64 - Services: CurCS - (.not file.) - MpKsl4fe6ac18 (MpKsl4fe6ac18) .(...) - LEGACY_MPKSL4FE6AC18
O64 - Services: CurCS - (.not file.) - MpKsl51d59606 (MpKsl51d59606) .(...) - LEGACY_MPKSL51D59606
O64 - Services: CurCS - (.not file.) - MpKsl5597c7f1 (MpKsl5597c7f1) .(...) - LEGACY_MPKSL5597C7F1
O64 - Services: CurCS - (.not file.) - MpKsl64a4f1bf (MpKsl64a4f1bf) .(...) - LEGACY_MPKSL64A4F1BF
O64 - Services: CurCS - (.not file.) - MpKsl6970b400 (MpKsl6970b400) .(...) - LEGACY_MPKSL6970B400
O64 - Services: CurCS - (.not file.) - MpKsl6afc109a (MpKsl6afc109a) .(...) - LEGACY_MPKSL6AFC109A
O64 - Services: CurCS - (.not file.) - MpKsl6d3aae8b (MpKsl6d3aae8b) .(...) - LEGACY_MPKSL6D3AAE8B
O64 - Services: CurCS - (.not file.) - MpKsl727181a8 (MpKsl727181a8) .(...) - LEGACY_MPKSL727181A8
O64 - Services: CurCS - (.not file.) - MpKsl763f70e6 (MpKsl763f70e6) .(...) - LEGACY_MPKSL763F70E6
O64 - Services: CurCS - (.not file.) - MpKsl7aa7d2c8 (MpKsl7aa7d2c8) .(...) - LEGACY_MPKSL7AA7D2C8
O64 - Services: CurCS - (.not file.) - MpKsl7c6d2ede (MpKsl7c6d2ede) .(...) - LEGACY_MPKSL7C6D2EDE
O64 - Services: CurCS - (.not file.) - MpKsl7ce1117e (MpKsl7ce1117e) .(...) - LEGACY_MPKSL7CE1117E
O64 - Services: CurCS - (.not file.) - MpKsl7d4dd5aa (MpKsl7d4dd5aa) .(...) - LEGACY_MPKSL7D4DD5AA
O64 - Services: CurCS - (.not file.) - MpKsl7da40760 (MpKsl7da40760) .(...) - LEGACY_MPKSL7DA40760
O64 - Services: CurCS - (.not file.) - MpKsl860ca2cc (MpKsl860ca2cc) .(...) - LEGACY_MPKSL860CA2CC
O64 - Services: CurCS - (.not file.) - MpKsl867d738a (MpKsl867d738a) .(...) - LEGACY_MPKSL867D738A
O64 - Services: CurCS - (.not file.) - MpKsl89650be7 (MpKsl89650be7) .(...) - LEGACY_MPKSL89650BE7
O64 - Services: CurCS - (.not file.) - MpKsl8ff80aa4 (MpKsl8ff80aa4) .(...) - LEGACY_MPKSL8FF80AA4
O64 - Services: CurCS - (.not file.) - MpKsl95df6c81 (MpKsl95df6c81) .(...) - LEGACY_MPKSL95DF6C81
O64 - Services: CurCS - (.not file.) - MpKsl96fc64b3 (MpKsl96fc64b3) .(...) - LEGACY_MPKSL96FC64B3
O64 - Services: CurCS - (.not file.) - MpKsl99f18550 (MpKsl99f18550) .(...) - LEGACY_MPKSL99F18550
O64 - Services: CurCS - (.not file.) - MpKsl9e442b56 (MpKsl9e442b56) .(...) - LEGACY_MPKSL9E442B56
O64 - Services: CurCS - (.not file.) - MpKsla44b5e69 (MpKsla44b5e69) .(...) - LEGACY_MPKSLA44B5E69
O64 - Services: CurCS - (.not file.) - MpKslab8b97b6 (MpKslab8b97b6) .(...) - LEGACY_MPKSLAB8B97B6
O64 - Services: CurCS - (.not file.) - MpKslb93b4f27 (MpKslb93b4f27) .(...) - LEGACY_MPKSLB93B4F27
O64 - Services: CurCS - (.not file.) - MpKslba7a50a4 (MpKslba7a50a4) .(...) - LEGACY_MPKSLBA7A50A4
O64 - Services: CurCS - (.not file.) - MpKslbb509339 (MpKslbb509339) .(...) - LEGACY_MPKSLBB509339
O64 - Services: CurCS - (.not file.) - MpKslbb7efee7 (MpKslbb7efee7) .(...) - LEGACY_MPKSLBB7EFEE7
O64 - Services: CurCS - (.not file.) - MpKslbd549a2b (MpKslbd549a2b) .(...) - LEGACY_MPKSLBD549A2B
O64 - Services: CurCS - (.not file.) - MpKslcc439d6b (MpKslcc439d6b) .(...) - LEGACY_MPKSLCC439D6B
O64 - Services: CurCS - (.not file.) - MpKslcc6b46c1 (MpKslcc6b46c1) .(...) - LEGACY_MPKSLCC6B46C1
O64 - Services: CurCS - (.not file.) - MpKslceda19ea (MpKslceda19ea) .(...) - LEGACY_MPKSLCEDA19EA
O64 - Services: CurCS - (.not file.) - MpKsld1c7d825 (MpKsld1c7d825) .(...) - LEGACY_MPKSLD1C7D825
O64 - Services: CurCS - (.not file.) - MpKsld3ade723 (MpKsld3ade723) .(...) - LEGACY_MPKSLD3ADE723
O64 - Services: CurCS - (.not file.) - MpKsle4876026 (MpKsle4876026) .(...) - LEGACY_MPKSLE4876026
O64 - Services: CurCS - (.not file.) - MpKslebf1fe6f (MpKslebf1fe6f) .(...) - LEGACY_MPKSLEBF1FE6F
O64 - Services: CurCS - (.not file.) - MpKslec6ce0bb (MpKslec6ce0bb) .(...) - LEGACY_MPKSLEC6CE0BB
O64 - Services: CurCS - (.not file.) - MpKsled8f1aa7 (MpKsled8f1aa7) .(...) - LEGACY_MPKSLED8F1AA7
O64 - Services: CurCS - (.not file.) - MpKslee9731c9 (MpKslee9731c9) .(...) - LEGACY_MPKSLEE9731C9
O64 - Services: CurCS - (.not file.) - MpKsleeb49b09 (MpKsleeb49b09) .(...) - LEGACY_MPKSLEEB49B09
O64 - Services: CurCS - (.not file.) - MpKslf6089bed (MpKslf6089bed) .(...) - LEGACY_MPKSLF6089BED
O64 - Services: CurCS - (.not file.) - MpKslf7352752 (MpKslf7352752) .(...) - LEGACY_MPKSLF7352752
O64 - Services: CurCS - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9B9A140B-3EEF-4E35-A61C-6E28FD22D9F9}\MpKslfbd3e467.sys - MpKslfbd3e467 (MpKslfbd3e467) .(.Microsoft Corporation - KSLDriver.) - LEGACY_MPKSLFBD3E467
O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS
O64 - Services: CurCS - C:\Windows\System32\drivers\msisadrv.sys - msisadrv (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\NisDrvWFP.sys - Microsoft Network Inspection System (NisDrv) .(.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) - LEGACY_NISDRV
O64 - Services: CurCS - C:\Windows\System32\drivers\npf.sys - NetGroup Packet Filter Driver (npf) .(.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) - LEGACY_NPF
O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS
O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL
O64 - Services: CurCS - C:\Windows\System32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - C:\Windows\System32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV
O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR
O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - C:\Windows\System32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - (.not file.) - No object (No service) .(...) - LEGACY_TUNEUPUTILITIESDRV
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - C:\Windows\system32\vmbusres.dll (vmbus) .(.Microsoft Corporation - Fichier DLL de ressources de bus VMBus.) - LEGACY_VMBUS
O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - C:\Windows\System32\drivers\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - C:\Windows\System32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - C:\Windows\System32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe



---\\ Search Browser Infection (O69)



---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.936237CED8B6B46AAE9C1786B5DB99C1] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Carna 18\AppData\Local\Temp\Quarantine.exe [360071]



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "{543E2D06-134B-4A09-849C-0A099DE32CBB}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{E254A8D0-C4D5-460D-8612-D92AB534686E}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{8201CFA4-5F87-4A01-97FF-28E136D53F20}" | In - Private - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\System32\muzapp.exe
O87 - FAEL: "{A26CFD2B-8FD1-476B-9C3D-319C69B79F09}" | In - Private - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\System32\muzapp.exe
O87 - FAEL: "{E7164813-DA08-4E1C-9099-546826D73B1B}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\outlook.exe
O87 - FAEL: "{2F8D6105-07EA-4CA0-B1CE-26FAE1E6D5F8}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{C22A7EDE-EF08-4B68-AB4C-7A70C23AE6FE}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{DCE7BB80-35F1-4ABC-B74C-82B6B4F17B29}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O87 - FAEL: "{ABA010A3-D958-4251-A0EE-764216B89325}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O87 - FAEL: "{23674198-0A1E-49DD-B4E4-92774440A947}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files\HP\hp software update\hpwucli.exe



---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 21/02/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 07/01/2014 43336 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SS - | Disabled 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 24/06/2010 233472 | (FsUsbExService) . (.Teruten.) - C:\Windows\system32\FsUsbExService.exe
SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SS - | Disabled 06/02/2014 553288 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 15/02/2014 118896 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Disabled 03/06/2013 162408 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - | Auto 07/12/2012 1723744 | (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, http://www.gmer.net
Run by Carna 18 at 26/02/2014 17:35:48

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys
1 ntkrnlpa!IofCallDriver[0x82C80BBA] -> \Device\Harddisk0\DR0[0x8617F778]
3 CLASSPNP[0x833D959E] -> ntkrnlpa!IofCallDriver[0x82C80BBA] -> [0x85C99918]
5 ACPI[0x8AE993D4] -> ntkrnlpa!IofCallDriver[0x82C80BBA] -> \Device\Ide\IdeDeviceP2T0L0-2[0x8609B908]
kernel: MBR read successfully
user & kernel MBR OK



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Carna 18 at 26/02/2014 17:35:50
Use the desktop link 'MBRCheck' to have full report
Dump file Name : C:\PhysicalDisk0_MBR.bin



End of the scan (1093 lines in 01mn 27s)(0)

Publicité


Signaler le contenu de ce document

Publicité