Rapport de ZHPDiag v1.3.5.86 par Nicolas Coolman, Update du 16/02/2013 Run by Philippe at 16/02/2013 19:29:10 State : Version à jour. High Elevated Privileges : OK UAC : Activate by user ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 GCIE: Google Chrome v24.0.1312.57 (Defaut) ---\\ Windows Product Information ~ Langage: Français Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK Software Protection Service (Protection logicielle) : KO Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Information ~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 4005 MB (43% free) System Restore: Activé (Enable) System drive C: has 273 GB (68%) free of 401 GB ---\\ Logged in mode ~ Computer Name: PHILIPPE-ASUS ~ User Name: Philippe ~ All Users Names: UpdatusUser, Philippe, Martine, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Philippe\AppData\Roaming\ ~ %Desktop% : C:\Users\Philippe\Desktop\ ~ %Favorites% : C:\Users\Philippe\Favorites\ ~ %LocalAppData% : C:\Users\Philippe\AppData\Local\ ~ %StartMenu% : C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 273 Go of 401 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 360 Go of 506 Go) E:\ CD-ROM drive (Not Inserted) M:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Scan Security Center in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024] [MD5.5121DB613E10A46A3C5085B479026AA7] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.24/12/2012 - 11:59:08.) -- C:\Windows\System32\wininet.dll [1392128] [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:32.) -- C:\Windows\System32\Winlogon.exe [390656] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:28.) -- C:\Windows\System32\sppcomapi.dll [232448] [MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.19/02/2012 - 14:07:59.) -- C:\Windows\system32\Drivers\AFD.sys [498688] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:34.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:22.) -- C:\Windows\system32\Drivers\netBT.sys [261632] [MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 07:41:34.) -- C:\Windows\system32\Drivers\ntfs.sys [1659776] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:58.) -- C:\Windows\system32\Drivers\tdx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:04.) -- C:\Windows\system32\Drivers\volsnap.sys [295808] ~ Scan Generic Processes in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/4 ~ Mes musiques (My Musics) : 3/1243 ~ Mes Favoris (My Favorites) : 1/59 ~ Mes Documents (My Documents) : 1/2926 ~ Mon Bureau (My Desktop) : 0/508 ~ Menu demarrer (Programs) : 1/46 ~ Scan Hidden Files in 00mn 01s ---\\ Processus lancés [MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.3720] [MD5.BC3DA234CDA880578526DAB028F40268] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305792] [PID.3732] [MD5.5BB1F77C8AF725A15EC9366498D275BB] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992] [PID.3832] [MD5.37DEB76A2CF005841C4E45DE2B94D84F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [PID.3992] [MD5.AE52451E44BB3464FEAED827B3629016] - (.Samsung Electronics - AllShare Play Launcher.) -- C:\Program Files\Samsung\AllShare Play\utils\AllShare Play Launcher.exe [407384] [PID.2768] [MD5.9CD0A8C7D94234A9F5CE10C44D393D4C] - (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [580096] [PID.3320] [MD5.53FCC32CAE76540AE5AB3D18466DE426] - (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [843208] [PID.2796] [MD5.4835856484D87434BD15EAED93C77EB2] - (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe [966072] [PID.2896] [MD5.8292C93AA02A0451E243A3CF97878968] - (.syncables, LLC - Syncables.) -- C:\Program Files (x86)\syncables\syncables desktop\syncables.exe [370480] [PID.1964] [MD5.ECE9413226D1C6778A9EE4DFC199C1D4] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [16328976] [PID.784] [MD5.8E0831382D3313E75614C9D85237B99F] - (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.exe [719672] [PID.1124] [MD5.2C5BA148BA7936D9BB6BB1F4945BA469] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe [28539272] [PID.3164] [MD5.45D9E6C134735854866608931269B43E] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe [145184] [PID.3448] [MD5.88D86112DD9F2BB6A603674706C7E846] - (.ALWIL Software - avast! service GUI component.) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe [79224] [PID.2708] [MD5.4D042B1F1375CF371AFBE0E0276BA627] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe [624248] [PID.2648] [MD5.207C637BD5C8E56EE5A83340DF5387A7] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [309688] [PID.3892] [MD5.CA13732B91D63CF61F372073719A7C61] - (.syncables, LLC - syncablesMapi.) -- C:\Program Files (x86)\syncables\syncables desktop\syncablesMAPI.exe [383792] [PID.4116] [MD5.03068BE1EF3B2680A19B4BCABDFB779C] - (.Nicolas Coolman - ZHPFix.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPFix.exe [2717184] [PID.5216] [MD5.0654E4C1F597FC07D6FC7443D4F94840] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1248208] [PID.4144] [MD5.6BFBB3E94DDC8AD5850C17A3C2CD7824] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5682688] [PID.4888] [MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [84536] [PID.1416] [MD5.591E7CDF35DE74D55CD462A13FBADE5E] - (.ALWIL Software - avast! Antivirus updating service.) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [17272] [PID.1456] [MD5.7910158929571214A959D5A6D16DD9C0] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1480] [MD5.DBBB6E20EC8C38902C4935B249AEBE2A] - (.ALWIL Software - avast! antivirus service.) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe [140664] [PID.1504] [MD5.73686FE0B2E0469F89FD2075BE724704] - (.Apple Computer, Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376] [PID.1316] [MD5.1355EBE184F9DAB1718BC587F8A7E05E] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376] [PID.1628] [MD5.10DBAA1703253FB511D0F5C5F6064B00] - (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [77824] [PID.1604] [MD5.A08F74F7AC9DA6A184B34DC3EAE9DFF9] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [378472] [PID.1216] [MD5.3199A477F0F06EEDE41BD55179F8EB05] - (.TomTom - Windows Service for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [92592] [PID.2072] [MD5.86ACF7955F4DB72880F61D724A97855A] - (.ALWIL Software - avast! Web Scanner.) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [345464] [PID.2528] [MD5.36088BA16E85C081D7BC48725872D540] - (.ALWIL Software - avast! e-Mail Scanner Service.) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [247160] [PID.2576] [MD5.563206BA66F0170735096AA74CA0F682] - (.ASUS - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [166528] [PID.2132] [MD5.149126216A694E6BA84E92ECA77AAE3B] - (.ASUS - ATKOSD.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe [2488888] [PID.2884] [MD5.AA11E1368EEB237DD100BAC6AFFE1C57] - (.ASUS - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe [113208] [PID.820] [MD5.4A7C441D99D86704D194E7678873B95D] - (.ASUS - WDC.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe [174648] [PID.428] [MD5.227846995AFEEFA70D328BF5334A86A5] - (.Macrovision Europe Ltd. - Activation Licensing Service.) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848] [PID.4432] [MD5.983FC69644DDF0486C8DFEA262948D1A] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13336] [PID.5612] [MD5.98B16E756243BEA9410E32025B19C06F] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [326168] [PID.5012] [MD5.E9B95BB82E5E12EE31AFE275CE4A35F9] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2009704] [PID.5200] [MD5.7A78ED1088890114DFDE2C4AB038D6B6] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.6864] ~ Scan Processes Running in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com G0 - GCSP: Preference [User Data\Default] http://www.google.com G1 - GCS: Preference [User Data\Default] None ~ Scan Google Browser in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll ~ Scan Firefox Browser in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local; R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 168.204.159.4:80 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Aide pour le lien d'Adobe PDF Reader [64Bits] - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: ContributeBHO Class [64Bits] - {074C1DC5-9320-4A9A-947D-C042949C6216} . (.Adobe Systems Incorporated. - Contribute IE Plugin.) -- C:\Program Files (x86)\Adobe\\Adobe Contribute CS3\contributeieplugin.dll O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\ O2 - BHO: Adobe PDF Conversion Toolbar Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll ~ Scan BHO in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [AllShare Play] . (.Samsung Electronics - AllShare Play Launcher.) -- C:\Program Files\Samsung\AllShare Play\utils\AllShare Play Launcher.exe O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe O4 - HKCU\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe O4 - HKCU\..\Run: [Syncables] . (.syncables, LLC - Syncables.) -- C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe O4 - HKCU\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.exe O4 - HKLM\..\Wow6432Node\Run: [avast!] . (.ALWIL Software - avast! service GUI component.) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe_ID0EYTHM] . (.Adobe Systems Incorporated - Adobe Version Cue CS3.) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe O4 - HKLM\..\Wow6432Node\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-2454326240-2265615263-2085163926-1001-2454326240-2265615263-2085163926-1000\..\Run: [Sidebar] Clé orpheline O4 - HKUS\S-1-5-21-2454326240-2265615263-2085163926-1001-2454326240-2265615263-2085163926-1000\..\Run: [ISUSPM] Clé orpheline O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-21-2454326240-2265615263-2085163926-1001-2454326240-2265615263-2085163926-1000\..\RunOnce: [mctadmin] Clé orpheline ~ Scan Application in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\UpdatusUser\Desktop\EVEREST Ultimate Edition.lnk . (.Lavalys, Inc..) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Philippe\Desktop\Base de données APV extension de vie - Raccourci.lnk . (...) -- D:\Goodrich\Base de données APV extension de vie O4 - Global Startup: C:\Users\Philippe\Desktop\Dropbox.lnk . (.Dropbox, Inc..) -- C:\Users\Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Global Startup: C:\Users\Philippe\Desktop\EVEREST Ultimate Edition.lnk . (.Lavalys, Inc..) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe O4 - Global Startup: C:\Users\Philippe\Desktop\Format Factory.lnk . (.Free Time.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe O4 - Global Startup: C:\Users\Philippe\Desktop\Problème impossible de désinstaller 22find.url . (...) -- C:\Users\Philippe\Desktop\Problème impossible de désinstaller 22find.url O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\22find.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Screensavers.lnk . (...) -- C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Screensavers.lnk O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk . (.Samsung.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe O4 - Global Startup: C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Wise Registry Cleaner.lnk . (.WiseCleaner.com.) -- C:\Program Files (x86)\Wise Registry Cleaner\WiseRegCleaner.exe O4 - Global Startup: C:\Users\Martine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Martine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Martine\Desktop\EVEREST Ultimate Edition.lnk . (.Lavalys, Inc..) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe O4 - Global Startup: C:\Users\Martine\Desktop\Glary Utilities.lnk . (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities\Integrator.exe O4 - Global Startup: C:\Users\Martine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Glary Utilities.lnk . (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities\Integrator.exe O4 - Global Startup: C:\Users\Martine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - Global Startup: C:\Users\Martine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ~ Scan Global Startup in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ Scan IE Control Panel in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office14\ONBttnIE.dll (.not file.) O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office14\ONBTTN~1.dll (.not file.) ~ Scan IE Extra Buttons in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Computer, Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll O10 - WLSP:\000000000010\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll ~ Scan Winsock in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{92A25713-1EED-4A4E-BD25-B50806FDDBAA}: DhcpNameServer = 192.168.5.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{92A25713-1EED-4A4E-BD25-B50806FDDBAA}: DhcpDomain = local O17 - HKLM\System\CCS\Services\Tcpip\..\{BA3AEEE2-6E5A-4F00-8BD9-E5E089653824}: DhcpDomain = goodrich.root.local O17 - HKLM\System\CS1\Services\Tcpip\..\{92A25713-1EED-4A4E-BD25-B50806FDDBAA}: DhcpNameServer = 192.168.5.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{92A25713-1EED-4A4E-BD25-B50806FDDBAA}: DhcpDomain = local O17 - HKLM\System\CS1\Services\Tcpip\..\{BA3AEEE2-6E5A-4F00-8BD9-E5E089653824}: DhcpDomain = goodrich.root.local O17 - HKLM\System\CS2\Services\Tcpip\..\{92A25713-1EED-4A4E-BD25-B50806FDDBAA}: DhcpNameServer = 192.168.5.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{92A25713-1EED-4A4E-BD25-B50806FDDBAA}: DhcpDomain = local O17 - HKLM\System\CS2\Services\Tcpip\..\{BA3AEEE2-6E5A-4F00-8BD9-E5E089653824}: DhcpDomain = goodrich.root.local ~ Scan Domain in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll ~ Scan Protocole Additionnel in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll ~ Scan Winlogon in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA Compatible NVIDIA shim initializatio.) - C:\Windows\system32\nvinitx.dll ~ Scan AppInit DLL in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ Scan SSODL in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe O23 - Service: AllShare Play Service (AllShare Play Service) . (.Copyright 2013 SAMSUNG - AllShare Play Service.) - C:\Program Files\Samsung\AllShare Play\AllShare Play Service.exe O23 - Service: ASLDR Service (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) . (.ALWIL Software - avast! Antivirus updating service.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: avast! Antivirus (avast! Antivirus) . (.ALWIL Software - avast! antivirus service.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB (Bonjour Service) . (.Apple Computer, Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Product - 2011/07/19 10:02:33 (CLKMSVC10_38F51D56) . (.CyberLink - CyberLink KM Service.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe O23 - Service: FABS - Helping agent for MAGIX media dat (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\Program Files (x86)\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 268.3.) - C:\Windows\System32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ~ Scan Services in 00mn 03s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\\ BootExecute (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ Scan Keys in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job ~ Scan Scheduled Task in 00mn 00s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll ~ Scan Active Setup in 00mn 00s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (ATKWMIACPIIO) . (.ASUS - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ~ Scan Drivers in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: AHV content for Acrobat and Flash - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD} O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {D39F0676-163E-4595-A917-E28F99BBD4D2} O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {2B81872B-A054-48DA-BE3B-FA5C164C303A} O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158} O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0} O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {33B98264-A889-4913-A0CA-C364A75032B3} O42 - Logiciel: ASUS SmartLogon - (.ASUS.) [HKLM][64Bits] -- {64452561-169F-4A36-A2FF-B5E118EC65F5} O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D} O42 - Logiciel: ASUS USB Charger Plus - (.AsusTek Computer Inc..) [HKLM][64Bits] -- {AECA3622-E634-4A55-A696-70A511CBE06E} O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1} O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM][64Bits] -- ASUS WebStorage O42 - Logiciel: ASUS_Screensaver - (.Pas de propriétaire.) [HKLM][64Bits] -- ASUS_Screensaver O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE} O42 - Logiciel: Adobe After Effects CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {EB0202F7-016A-410C-ADE4-40F848CCC661} O42 - Logiciel: Adobe After Effects CS3 Presets - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {193EAFD0-1BAF-4FB4-B18F-79D5D6A4B285} O42 - Logiciel: Adobe Anchor Service CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {90176341-0A8B-4CCC-A78D-F862228A6B95} O42 - Logiciel: Adobe Asset Services CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61} O42 - Logiciel: Adobe Bridge CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {9C9824D9-9000-4373-A6A5-D0E5D4831394} O42 - Logiciel: Adobe Bridge Start Meeting - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {08B32819-6EEF-4057-AEDA-5AB681A36A23} O42 - Logiciel: Adobe BridgeTalk Plugin CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E} O42 - Logiciel: Adobe CMaps - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A2B242BD-FF8D-4840-9DAA-9170EABEC59C} O42 - Logiciel: Adobe Camera Raw 4.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C} O42 - Logiciel: Adobe Color - Photoshop Specific - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A2D81E70-2A98-4A08-A628-94388B063C5E} O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9} O42 - Logiciel: Adobe Color EU Recommended Settings - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {73B5D990-04EA-4751-B10F-5534770B91F2} O42 - Logiciel: Adobe Color JA Extra Settings - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029} O42 - Logiciel: Adobe Color NA Extra Settings - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FF29A7E2-FF40-4D07-B7E4-2093DE59E10A} O42 - Logiciel: Adobe Contribute CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F84ADE4E-9220-4324-994D-801EDD9DD251} O42 - Logiciel: Adobe Creative Suite 3 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5D2398DF-3022-4820-93BA-F1175FBEA9CA} O42 - Logiciel: Adobe Default Language CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B9B35331-B7E4-4E5C-BF4C-7BC87856124D} O42 - Logiciel: Adobe Device Central CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8D2BA474-F406-4710-9AE4-D4F22D21F0DD} O42 - Logiciel: Adobe Dreamweaver CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4BDB76C6-902E-41D5-9064-68768E02886B} O42 - Logiciel: Adobe Encore CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {54B2EAD9-A110-43F7-B010-2859A1BD2AFE} O42 - Logiciel: Adobe Encore CS3 Codecs - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B8B7A4D8-80E1-4DAE-BD33-7FD535BA3931} O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {C2D69781-F392-4118-A5A7-C7E9C38DBFC2} O42 - Logiciel: Adobe Extension Manager CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BE5F3842-8309-4754-92D5-83E02E6077A3} O42 - Logiciel: Adobe Fireworks CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {21C4D775-368A-46C4-8DC3-4207165B7115} O42 - Logiciel: Adobe Flash CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {80FD3971-8482-49C8-BA8C-B6464A15882F} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 9 Plugin - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {88D422DB-E9C7-4E16-9D80-2999F4FD6AD9} O42 - Logiciel: Adobe Flash Video Encoder - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1B0BCA28-1F11-4D60-8A2F-DEBE04B5341E} O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {6ABE0BEE-D572-4FE8-B434-9E72A289431B} O42 - Logiciel: Adobe Help Viewer CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7ACFB90E-8FD0-4397-AD3A-5195412623A3} O42 - Logiciel: Adobe Illustrator CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {6E08CE13-C2AB-4749-9335-5900B958929E} O42 - Logiciel: Adobe InDesign CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE8327F9-3AC1-4586-8C7E-3DEE2BC92441} O42 - Logiciel: Adobe InDesign CS3 Icon Handler - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {EA7B3CC4-366D-4CF6-8350-FD7A7034116E} O42 - Logiciel: Adobe Linguistics CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {54793AA1-5001-42F4-ABB6-C364617C6078} O42 - Logiciel: Adobe MotionPicture Color Files - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {6B708481-748A-4EB4-97C1-CD386244FF77} O42 - Logiciel: Adobe PDF Library Files - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {D2559B88-CC9D-4B48-81BB-F492BAA9C48C} O42 - Logiciel: Adobe Photoshop CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {C1FA4B3B-1625-4922-9C9D-780E8FCE161A} O42 - Logiciel: Adobe Premiere Pro CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {58DCEEE5-532E-44F4-B1D7-A146EF9E9FDA} O42 - Logiciel: Adobe Premiere Pro CS3 Functional Content - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {50F102CA-4BE2-41A9-9810-5BB05EB91B9A} O42 - Logiciel: Adobe Premiere Pro CS3 Third Party Content - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {485ACF57-F364-440A-8496-E1E81C8FA1AA} O42 - Logiciel: Adobe Reader 6.0 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-000000000001} O42 - Logiciel: Adobe SING CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B671CBFD-4109-4D35-9252-3062D3CCB7B2} O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1628F6BD-5ED1-4FD1-B90F-C106AF4E00F0} O42 - Logiciel: Adobe Soundbooth CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A6B23EFA-6590-482C-A11F-5ACE1B91F5B9} O42 - Logiciel: Adobe Soundbooth CS3 Codecs - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0327FA9D-975C-448C-A086-577D57BB25B8} O42 - Logiciel: Adobe Stock Photos CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {29E5EA97-5F74-4A57-B8B2-D4F169117183} O42 - Logiciel: Adobe Type Support - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8E6808E2-613D-4FCD-81A2-6C8FA8E03312} O42 - Logiciel: Adobe Update Manager CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E69AE897-9E0B-485C-8552-7841F48D42D8} O42 - Logiciel: Adobe Version Cue CS3 Client - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {D0DFF92A-492E-4C40-B862-A74A173C25C5} O42 - Logiciel: Adobe Version Cue CS3 Server - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1D58229F-C505-45CA-8223-F35F3A34B963} O42 - Logiciel: Adobe Video Profiles - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {845A8DB9-8802-4FD3-9FE3-938A6C46A2EC} O42 - Logiciel: Adobe WAS CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {C5BD220A-EFE8-48A5-B70E-9503D535FACE} O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {184CE391-7E0E-4C63-9935-D7A10EDFD3C6} O42 - Logiciel: Adobe XMP DVA Panels CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0224CACC-994D-45F8-B973-D65056EA9C2F} O42 - Logiciel: Adobe XMP Panels CS3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {D5A31AB1-345D-47C7-A87B-036A669F6DF1} O42 - Logiciel: Ajouter ou supprimer Adobe Creative Suite 3 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe_b5d5789539ea1f004a4defceea74312 O42 - Logiciel: AllShare Play 1.5.0.1301241209 - (.Copyright 2013 SAMSUNG.) [HKLM][64Bits] -- 8474-7877-9059-0204 O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {A83279FD-CA4B-4206-9535-90974DE76654} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0 O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} O42 - Logiciel: Bookworm Deluxe - (.Oberon Media Inc..) [HKLM][64Bits] -- Bookworm Deluxe O42 - Logiciel: Composite 2012 64-bit - (.Pas de propriétaire.) [HKLM][64Bits] -- {EA234BC3-39FE-4734-B72F-076086889F6D} O42 - Logiciel: Cooking Dash - (.Oberon Media Inc..) [HKLM][64Bits] -- Cooking Dash O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox O42 - Logiciel: ETDWare PS/2-X64 8.0.5.1_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech O42 - Logiciel: EVEREST Ultimate Edition v5.02 - (.Lavalys, Inc..) [HKLM][64Bits] -- EVEREST Ultimate Edition_is1 O42 - Logiciel: Eco Materials Adviser (x64) - (.Granta Design Limited.) [HKLM][64Bits] -- {E027C59C-4C47-4BE8-8078-BCD3D2680EC3} O42 - Logiciel: FARO LS 1.1.406.58 - (.FARO Scanner Production.) [HKLM][64Bits] -- {951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C} O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755} O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485} O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM][64Bits] -- FormatFactory O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1 O42 - Logiciel: Glary Utilities 2.42.0.1389 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {7A21C722-F259-4976-B7AA-6658E5FDEDAF} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Governor of Poker - (.Oberon Media Inc..) [HKLM][64Bits] -- Governor of Poker O42 - Logiciel: Hardcopy (C:\Program Files (x86)\Hardcopy) - (.Pas de propriétaire.) [HKLM][64Bits] -- Hardcopy(C__Program Files (x86)_Hardcopy) O42 - Logiciel: Hotel Dash Suite Success - (.Oberon Media Inc..) [HKLM][64Bits] -- Hotel Dash Suite Success O42 - Logiciel: IP Camera Viewer 1.0 - (.DeskShare Inc..) [HKLM][64Bits] -- IP Camera Viewer_is1 O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM][64Bits] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1 O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM][64Bits] -- ImgBurn O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor 2.0 - (.Intel.) [HKLM][64Bits] -- {B77EFA0B-9BD3-4122-9F9A-15A963B5EA24} O42 - Logiciel: Internet Everywhere - (.Pas de propriétaire.) [HKLM][64Bits] -- {BEWINTERNET-FR-DMGP-V2}.UninstallSuite O42 - Logiciel: Jewel Quest 3 - (.Oberon Media Inc..) [HKLM][64Bits] -- Jewel Quest 3 O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: K-Lite Codec Pack 9.3.0 (Basic) - (.Pas de propriétaire.) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: Luxor 3 - (.Oberon Media Inc..) [HKLM][64Bits] -- Luxor 3 O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {7EC3E974-38B1-4FAE-9BD6-7491C689793D} O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {ECBC1B4D-FC3A-47E8-AD91-C6F154B27A2D} O42 - Logiciel: MAGIX Vidéo deluxe 17 - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_Videodeluxe17 O42 - Logiciel: MAGIX Vidéo deluxe 17 - (.MAGIX AG.) [HKLM][64Bits] -- {15DBD7B5-6C47-415C-B554-92B0161EAB82} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Mahjongg dimensions - (.Oberon Media Inc..) [HKLM][64Bits] -- Mahjongg dimensions O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13} O42 - Logiciel: MyFreeCodec - (.Pas de propriétaire.) [HKCU][64Bits] -- MyFreeCodec O42 - Logiciel: NVIDIA 3D Vision Driver 268.39 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision O42 - Logiciel: NVIDIA Graphics Driver 268.39 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA HD Audio Driver 1.2.22.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo O42 - Logiciel: Nuance PDF Reader - (.Nuance Communications, Inc..) [HKLM][64Bits] -- {B480904D-F73F-4673-B034-8A5F492C9184} O42 - Logiciel: PDF Settings - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC5B0C19-D851-42F4-BDA0-410ECF7F70A5} O42 - Logiciel: Plants vs Zombies - (.Oberon Media Inc..) [HKLM][64Bits] -- Plants vs Zombies O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {7BE15435-2D3E-4B58-867F-9C75BED0208C} O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Realtek USB 2.0 Reader Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {62BBB2F0-E220-4821-A564-730807D2C34D} O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996} O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- {5442DAB8-7177-49E1-8B22-09A049EA5996} O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A} O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A} O42 - Logiciel: Sonic Focus - (.Synopsys .) [HKLM][64Bits] -- {09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F} O42 - Logiciel: TomTom HOME 2.8.3.2499 - (.TomTom.) [HKLM][64Bits] -- TomTom HOME O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} O42 - Logiciel: Tomtomax Maxi-Box V2.0.24 - (.Tomtomax et KoakDesign.) [HKLM][64Bits] -- {A10F672B-01C4-498F-ADBD-3E5B144284B7}_is1 O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Virgin Mountains Screensaver - (.Freesavers2k.com.) [HKLM][64Bits] -- Virgin Mountains Screensaver_is1 O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D} O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM][64Bits] -- {8150221C-8F7E-4997-AD4E-AFDEE7F4B410} O42 - Logiciel: Wise Registry Cleaner 6.21 - (.WiseCleaner.com, Inc..) [HKLM][64Bits] -- Wise Registry Cleaner_is1 O42 - Logiciel: World of Goo - (.Oberon Media Inc..) [HKLM][64Bits] -- World of Goo O42 - Logiciel: avast! Antivirus v4.7 - (.Alwil Software.) [HKLM][64Bits] -- avast! O42 - Logiciel: syncables desktop SE - (.syncables.) [HKLM][64Bits] -- {341697D8-9923-445E-B42A-529E5A99CB7A} ---\\ HKCU & HKLM Software Keys [HKCU\Software\ALWIL Software] [HKCU\Software\ASUS] [HKCU\Software\ATK0100] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\MarkAny] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Autodesk] [HKCU\Software\BI] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DT Soft] [HKCU\Software\ECAREME] [HKCU\Software\Elantech] [HKCU\Software\FLEXnet] [HKCU\Software\FreeTime] [HKCU\Software\GNU] [HKCU\Software\Gabest] [HKCU\Software\GlarySoft] [HKCU\Software\Google] [HKCU\Software\Haali] [HKCU\Software\IM Providers] [HKCU\Software\IZSoftware] [HKCU\Software\ImgBurn] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Lavalys] [HKCU\Software\LeaderTech] [HKCU\Software\MAGIX AG] [HKCU\Software\Macromedia] [HKCU\Software\Magix] [HKCU\Software\MainConcept (Adobe2)] [HKCU\Software\MainConcept] [HKCU\Software\Minnetonka Audio Software] [HKCU\Software\MozillaPlugins] [HKCU\Software\Myfree Codec] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\Samsung] [HKCU\Software\TomTom] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\Wow6432Node] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\Zeon] [HKCU\Software\ej-technologies] [HKCU\Software\sw4you] [HKCU\Software\syncables] [HKCU\Software\woohook64] [HKLM\Software\] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\ATK0100] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CoreSecurity] [HKLM\Software\Cyberlink] [HKLM\Software\DTS] [HKLM\Software\DirectConnect] [HKLM\Software\ECAREME] [HKLM\Software\EnigmaSoftwareGroup] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\Macromedia] [HKLM\Software\Macrovision] [HKLM\Software\MozillaPlugins] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\ODBC] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SAMSUNG] [HKLM\Software\SonicFocus] [HKLM\Software\Sonic] [HKLM\Software\TrendMicro] [HKLM\Software\Wow6432Node\ALWIL Software] [HKLM\Software\Wow6432Node\ASUS] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\Apple Computer, Inc.] [HKLM\Software\Wow6432Node\Apple Inc.] [HKLM\Software\Wow6432Node\AsLdr] [HKLM\Software\Wow6432Node\Atheros] [HKLM\Software\Wow6432Node\AviSynth] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\CyberLink] [HKLM\Software\Wow6432Node\DT Soft] [HKLM\Software\Wow6432Node\DeskSoft] [HKLM\Software\Wow6432Node\ECAREME] [HKLM\Software\Wow6432Node\FRANCE TELECOM] [HKLM\Software\Wow6432Node\GNU] [HKLM\Software\Wow6432Node\GlarySoft] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\HaaliMkx] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\KLCodecPack] [HKLM\Software\Wow6432Node\Kaydara] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\LAV] [HKLM\Software\Wow6432Node\Lake] [HKLM\Software\Wow6432Node\MAGIX] [HKLM\Software\Wow6432Node\MAXSOFT-OCRON] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Macrovision] [HKLM\Software\Wow6432Node\Minnetonka Audio Software] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\Myfree Codec] [HKLM\Software\Wow6432Node\NVIDIA Corporation] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\Oberon Media] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Samsung] [HKLM\Software\Wow6432Node\ScanSoft] [HKLM\Software\Wow6432Node\TomTom] [HKLM\Software\Wow6432Node\V9] [HKLM\Software\Wow6432Node\VideoLAN] [HKLM\Software\Wow6432Node\WiseCleaner] [HKLM\Software\Wow6432Node\Zeon] [HKLM\Software\Wow6432Node\deskSvc] [HKLM\Software\Wow6432Node\findSoftware] [HKLM\Software\Wow6432Node\hdcode] [HKLM\Software\Wow6432Node\sw4you] [HKLM\Software\Wow6432Node\syncables] [HKLM\Software\Wow6432Node] [HKLM\Software\ej-technologies] ~ Scan Softwares in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 19/12/2011 - 06:47:39 - [1038,632] ----D C:\Program Files (x86)\Adobe O43 - CFD: 12/09/2011 - 12:21:01 - [2,316] ----D C:\Program Files (x86)\Apple Software Update O43 - CFD: 19/08/2011 - 08:01:17 - [570,942] ----D C:\Program Files (x86)\ASUS O43 - CFD: 19/07/2011 - 17:51:16 - [0,001] ----D C:\Program Files (x86)\Atheros O43 - CFD: 19/12/2011 - 06:25:31 - [0,309] ----D C:\Program Files (x86)\Bonjour O43 - CFD: 20/09/2011 - 16:14:31 - [0,352] ----D C:\Program Files (x86)\CardDetector O43 - CFD: 16/02/2013 - 12:46:54 - [1597,304] ----D C:\Program Files (x86)\Common Files O43 - CFD: 19/07/2011 - 18:03:05 - [476,601] ----D C:\Program Files (x86)\CyberLink O43 - CFD: 08/12/2011 - 06:06:11 - [9,902] ----D C:\Program Files (x86)\DAEMON Tools Lite O43 - CFD: 15/02/2013 - 18:15:26 - [2,618] ----D C:\Program Files (x86)\Desk 365 O43 - CFD: 16/02/2013 - 08:39:55 - [16,083] ----D C:\Program Files (x86)\Deskshare O43 - CFD: 14/01/2012 - 11:20:40 - [0,117] ----D C:\Program Files (x86)\DWG TrueView 2012 O43 - CFD: 11/01/2012 - 07:00:36 - [0,730] ----D C:\Program Files (x86)\Freesavers2k.com O43 - CFD: 10/10/2011 - 11:04:26 - [112,601] ----D C:\Program Files (x86)\FreeTime O43 - CFD: 04/02/2012 - 11:26:37 - [18,748] ----D C:\Program Files (x86)\Glary Utilities O43 - CFD: 16/02/2013 - 14:41:18 - [287,856] ----D C:\Program Files (x86)\Google O43 - CFD: 24/11/2011 - 09:23:05 - [5,482] ----D C:\Program Files (x86)\Hardcopy O43 - CFD: 15/09/2011 - 10:25:38 - [3,251] ----D C:\Program Files (x86)\ImgBurn O43 - CFD: 15/02/2013 - 18:14:19 - [114,103] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 19/07/2011 - 17:46:11 - [34,375] ----D C:\Program Files (x86)\Intel O43 - CFD: 25/12/2012 - 09:46:30 - [8,332] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 05/09/2011 - 11:12:33 - [13,232] ----D C:\Program Files (x86)\IZArc O43 - CFD: 15/02/2013 - 19:13:30 - [36,403] ----D C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 19/09/2011 - 10:38:47 - [15,499] ----D C:\Program Files (x86)\Lavalys O43 - CFD: 31/12/2012 - 23:14:57 - [0] ----D C:\Program Files (x86)\Lucius O43 - CFD: 07/10/2011 - 17:08:38 - [549,491] ----D C:\Program Files (x86)\MAGIX O43 - CFD: 17/06/2012 - 16:41:56 - [2,414] ----D C:\Program Files (x86)\MarkAny O43 - CFD: 27/10/2012 - 15:16:15 - [0] ----D C:\Program Files (x86)\Microsoft O43 - CFD: 15/09/2011 - 14:01:40 - [38,002] ----D C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 14/01/2012 - 11:00:39 - [3,469] ----D C:\Program Files (x86)\Microsoft Chart Controls O43 - CFD: 14/01/2012 - 10:58:47 - [957,374] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 26/12/2012 - 13:45:43 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 15/09/2011 - 14:04:14 - [3,467] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 15/09/2011 - 14:04:14 - [0,757] ----D C:\Program Files (x86)\Microsoft Sync Framework O43 - CFD: 15/09/2011 - 14:04:48 - [0,312] ----D C:\Program Files (x86)\Microsoft Synchronization Services O43 - CFD: 15/09/2011 - 14:12:17 - [52,634] ----D C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 14/01/2012 - 10:59:36 - [0,934] ----D C:\Program Files (x86)\Microsoft WSE O43 - CFD: 14/10/2011 - 23:40:58 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 26/10/2012 - 16:00:06 - [0] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 15/09/2011 - 14:05:35 - [0,025] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 15/09/2011 - 14:48:07 - [0] ----D C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 28/06/2012 - 07:17:11 - [10,471] ----D C:\Program Files (x86)\MyFree Codec O43 - CFD: 13/04/2011 - 03:33:04 - [42,963] ----D C:\Program Files (x86)\Nuance O43 - CFD: 19/07/2011 - 17:44:55 - [27,587] ----D C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 20/09/2011 - 16:15:18 - [96,975] ----D C:\Program Files (x86)\Orange O43 - CFD: 14/11/2011 - 06:17:21 - [74,779] ----D C:\Program Files (x86)\QuickTime O43 - CFD: 19/07/2011 - 17:52:36 - [24,937] ----D C:\Program Files (x86)\Realtek O43 - CFD: 14/07/2009 - 06:32:38 - [37,345] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 19/07/2011 - 17:54:55 - [0,987] ----D C:\Program Files (x86)\Renesas Electronics O43 - CFD: 15/02/2013 - 18:14:22 - [281,581] ----D C:\Program Files (x86)\Samsung O43 - CFD: 13/04/2011 - 03:49:28 - [161,465] ----D C:\Program Files (x86)\syncables O43 - CFD: 19/07/2011 - 17:47:48 - [0] --H-D C:\Program Files (x86)\Temp O43 - CFD: 06/01/2012 - 06:09:44 - [0,002] ----D C:\Program Files (x86)\TomTom HOME O43 - CFD: 06/01/2012 - 06:10:31 - [48,338] ----D C:\Program Files (x86)\TomTom HOME 2 O43 - CFD: 06/01/2012 - 06:10:39 - [0,021] ----D C:\Program Files (x86)\TomTom International B.V O43 - CFD: 19/02/2012 - 11:14:49 - [1,857] ----D C:\Program Files (x86)\Tomtomax Maxi-Box O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information O43 - CFD: 27/01/2013 - 09:20:27 - [94,419] ----D C:\Program Files (x86)\VideoLAN O43 - CFD: 20/08/2011 - 09:57:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 28/06/2012 - 07:32:21 - [329,401] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 20/08/2011 - 09:57:08 - [5,895] ----D C:\Program Files (x86)\Windows Mail O43 - CFD: 20/08/2011 - 09:57:08 - [4,791] ----D C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 20/08/2011 - 09:57:08 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 18/02/2011 - 21:09:10 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 20/08/2011 - 09:57:48 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 06/02/2012 - 10:49:50 - [3,350] ----D C:\Program Files (x86)\Wise Registry Cleaner O43 - CFD: 16/02/2013 - 19:29:14 - [15,116] ----D C:\Program Files (x86)\ZHPDiag O43 - CFD: 15/02/2013 - 17:59:00 - [28,816] ----D C:\Program Files (x86)\Common Files\337 O43 - CFD: 19/12/2011 - 06:48:12 - [1138,681] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 12/09/2011 - 12:21:13 - [60,450] ----D C:\Program Files (x86)\Common Files\Apple O43 - CFD: 04/02/2012 - 20:00:32 - [0,306] ----D C:\Program Files (x86)\Common Files\Autodesk Shared O43 - CFD: 19/12/2011 - 06:46:52 - [0,258] ----D C:\Program Files (x86)\Common Files\Control Panels O43 - CFD: 14/01/2012 - 10:58:58 - [0,201] ----D C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 27/10/2012 - 15:30:12 - [7,199] ----D C:\Program Files (x86)\Common Files\France Telecom O43 - CFD: 19/07/2011 - 17:57:08 - [3,111] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 19/07/2011 - 17:42:34 - [13,589] ----D C:\Program Files (x86)\Common Files\Intel O43 - CFD: 19/12/2011 - 06:22:12 - [0,625] ----D C:\Program Files (x86)\Common Files\Macrovision Shared O43 - CFD: 07/10/2011 - 17:07:40 - [11,146] ----D C:\Program Files (x86)\Common Files\MAGIX Services O43 - CFD: 28/06/2012 - 07:31:08 - [240,106] ----D C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 15/09/2011 - 13:11:29 - [0] ----D C:\Program Files (x86)\Common Files\Nero O43 - CFD: 13/04/2011 - 03:48:00 - [0,338] ----D C:\Program Files (x86)\Common Files\Oberon Media O43 - CFD: 19/07/2011 - 17:46:13 - [0,155] ----D C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 25/12/2012 - 11:21:00 - [10,359] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 13/04/2011 - 03:33:36 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 16/02/2013 - 12:46:54 - [42,763] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard O43 - CFD: 07/09/2011 - 05:09:56 - [0,009] --H-D C:\ProgramData\.Syncables O43 - CFD: 07/09/2011 - 05:10:03 - [0,000] --H-D C:\ProgramData\.syncID O43 - CFD: 16/11/2012 - 06:58:11 - [131,131] ----D C:\ProgramData\Adobe O43 - CFD: 19/12/2011 - 06:45:43 - [0] ----D C:\ProgramData\ALM O43 - CFD: 12/09/2011 - 12:21:01 - [40,558] ----D C:\ProgramData\Apple O43 - CFD: 14/11/2011 - 06:17:00 - [25,578] ----D C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data O43 - CFD: 07/09/2011 - 07:17:54 - [0,115] ----D C:\ProgramData\ASUS O43 - CFD: 19/08/2011 - 10:13:57 - [0,002] ----D C:\ProgramData\ASUS WebStorage O43 - CFD: 19/07/2011 - 17:51:20 - [0,010] ----D C:\ProgramData\Atheros O43 - CFD: 04/02/2012 - 19:45:07 - [2,350] ----D C:\ProgramData\Autodesk O43 - CFD: 19/08/2011 - 01:23:12 - [4,522] ----D C:\ProgramData\ChangeFolderView O43 - CFD: 03/09/2011 - 08:48:34 - [0,089] ----D C:\ProgramData\CyberLink O43 - CFD: 08/12/2011 - 06:04:55 - [0,001] ----D C:\ProgramData\DAEMON Tools Lite O43 - CFD: 16/02/2013 - 08:40:00 - [0,000] ----D C:\ProgramData\DeskShare O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents O43 - CFD: 19/07/2011 - 17:54:49 - [21,873] ----D C:\ProgramData\Downloaded Installations O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites O43 - CFD: 11/12/2012 - 06:19:10 - [3,906] ----D C:\ProgramData\FLEXnet O43 - CFD: 19/08/2011 - 01:20:12 - [0,893] ----D C:\ProgramData\FolderView O43 - CFD: 16/02/2013 - 14:10:32 - [0,486] ----D C:\ProgramData\Google O43 - CFD: 19/07/2011 - 17:43:46 - [0,002] ----D C:\ProgramData\Intel O43 - CFD: 07/10/2011 - 19:02:39 - [-839,728] ----D C:\ProgramData\MAGIX O43 - CFD: 27/10/2012 - 15:16:15 - [398,532] -S--D C:\ProgramData\Microsoft O43 - CFD: 27/12/2012 - 19:20:07 - [0,066] ----D C:\ProgramData\Microsoft Help O43 - CFD: 15/09/2011 - 13:11:05 - [0,000] ----D C:\ProgramData\Nero O43 - CFD: 19/08/2011 - 06:36:42 - [0,000] ----D C:\ProgramData\Nuance O43 - CFD: 16/02/2013 - 18:40:23 - [17,395] ----D C:\ProgramData\NVIDIA O43 - CFD: 19/07/2011 - 17:44:03 - [0,908] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 13/04/2011 - 03:48:44 - [27,601] ----D C:\ProgramData\OberonGameConsole O43 - CFD: 19/07/2011 - 17:57:00 - [0,002] ----D C:\ProgramData\P4G O43 - CFD: 17/06/2012 - 16:42:21 - [9,247] ----D C:\ProgramData\Samsung O43 - CFD: 13/04/2011 - 03:33:05 - [1,216] ----D C:\ProgramData\ScanSoft O43 - CFD: 19/07/2011 - 17:47:37 - [0,009] ----D C:\ProgramData\SonicFocus O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu O43 - CFD: 16/02/2013 - 15:32:28 - [0,051] ---AD C:\ProgramData\Temp O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates O43 - CFD: 06/01/2012 - 06:11:13 - [0,000] ----D C:\ProgramData\TomTom O43 - CFD: 19/08/2011 - 07:29:40 - [3,420] ----D C:\ProgramData\Trend Micro O43 - CFD: 19/07/2011 - 17:59:18 - [0,000] ----D C:\ProgramData\USBChargerPlus O43 - CFD: 06/09/2012 - 13:11:01 - [6,315] ----D C:\Users\Philippe\AppData\Roaming\Adobe O43 - CFD: 13/12/2011 - 17:09:41 - [0] ----D C:\Users\Philippe\AppData\Roaming\AdobeUM O43 - CFD: 15/11/2011 - 05:55:04 - [0,022] ----D C:\Users\Philippe\AppData\Roaming\Apple Computer O43 - CFD: 16/02/2013 - 12:16:05 - [85,215] ----D C:\Users\Philippe\AppData\Roaming\ASUS WebStorage O43 - CFD: 22/01/2012 - 17:17:24 - [4,859] ----D C:\Users\Philippe\AppData\Roaming\Autodesk O43 - CFD: 29/08/2011 - 09:24:36 - [0,002] ----D C:\Users\Philippe\AppData\Roaming\CyberLink O43 - CFD: 08/12/2011 - 06:11:35 - [0,001] ----D C:\Users\Philippe\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 15/02/2013 - 18:12:32 - [15,980] ----D C:\Users\Philippe\AppData\Roaming\Desk 365 O43 - CFD: 27/10/2012 - 15:10:33 - [0] ----D C:\Users\Philippe\AppData\Roaming\DeskSoft O43 - CFD: 16/02/2013 - 18:42:07 - [30,113] ----D C:\Users\Philippe\AppData\Roaming\Dropbox O43 - CFD: 19/08/2011 - 06:36:43 - [0,001] ----D C:\Users\Philippe\AppData\Roaming\FLEXnet O43 - CFD: 04/05/2012 - 05:20:36 - [0] ----D C:\Users\Philippe\AppData\Roaming\Google O43 - CFD: 19/08/2011 - 01:20:20 - [0] ----D C:\Users\Philippe\AppData\Roaming\Identities O43 - CFD: 15/09/2011 - 11:23:41 - [0,071] ----D C:\Users\Philippe\AppData\Roaming\ImgBurn O43 - CFD: 19/08/2011 - 01:21:37 - [0,000] ----D C:\Users\Philippe\AppData\Roaming\Intel Corporation O43 - CFD: 19/08/2011 - 06:31:15 - [0,001] ----D C:\Users\Philippe\AppData\Roaming\Macromedia O43 - CFD: 07/10/2011 - 19:02:39 - [0,072] ----D C:\Users\Philippe\AppData\Roaming\MAGIX O43 - CFD: 14/07/2009 - 08:44:38 - [0] ----D C:\Users\Philippe\AppData\Roaming\Media Center Programs O43 - CFD: 27/10/2012 - 14:52:46 - [650,637] -S--D C:\Users\Philippe\AppData\Roaming\Microsoft O43 - CFD: 06/01/2012 - 06:11:01 - [0] ----D C:\Users\Philippe\AppData\Roaming\Mozilla O43 - CFD: 15/09/2011 - 09:52:29 - [0,037] ----D C:\Users\Philippe\AppData\Roaming\Nero O43 - CFD: 19/08/2011 - 06:36:42 - [0,000] ----D C:\Users\Philippe\AppData\Roaming\Nuance O43 - CFD: 15/02/2013 - 18:14:22 - [1291,587] ----D C:\Users\Philippe\AppData\Roaming\Samsung O43 - CFD: 28/06/2012 - 08:08:35 - [0] ----D C:\Users\Philippe\AppData\Roaming\Temp O43 - CFD: 06/01/2012 - 06:11:00 - [30,764] ----D C:\Users\Philippe\AppData\Roaming\TomTom O43 - CFD: 16/02/2013 - 09:36:40 - [0,078] ----D C:\Users\Philippe\AppData\Roaming\vlc O43 - CFD: 01/07/2012 - 19:21:59 - [0,000] ----D C:\Users\Philippe\AppData\Roaming\Windows Live Writer O43 - CFD: 06/02/2012 - 09:02:30 - [17,964] ----D C:\Users\Philippe\AppData\Roaming\Wise Registry Cleaner O43 - CFD: 19/08/2011 - 06:36:41 - [0,077] ----D C:\Users\Philippe\AppData\Roaming\Zeon O43 - CFD: 05/06/2012 - 12:06:03 - [48,784] ----D C:\Users\Philippe\AppData\Local\Adobe O43 - CFD: 12/09/2011 - 12:21:04 - [45,105] ----D C:\Users\Philippe\AppData\Local\Apple O43 - CFD: 19/08/2011 - 01:19:46 - [0] ----D C:\Users\Philippe\AppData\Local\Application Data O43 - CFD: 07/09/2011 - 07:17:53 - [1,310] ----D C:\Users\Philippe\AppData\Local\ASUS O43 - CFD: 22/01/2012 - 17:18:08 - [7,601] ----D C:\Users\Philippe\AppData\Local\Autodesk O43 - CFD: 18/01/2012 - 21:35:07 - [0,001] ----D C:\Users\Philippe\AppData\Local\Autodesk,_Inc O43 - CFD: 29/08/2011 - 09:22:50 - [0,002] ----D C:\Users\Philippe\AppData\Local\Cyberlink O43 - CFD: 16/02/2013 - 08:50:15 - [0,001] ----D C:\Users\Philippe\AppData\Local\DeskShare Data O43 - CFD: 19/01/2012 - 05:03:25 - [5,210] ----D C:\Users\Philippe\AppData\Local\Diagnostics O43 - CFD: 15/02/2013 - 17:59:34 - [114,215] ----D C:\Users\Philippe\AppData\Local\Downloaded Installations O43 - CFD: 19/02/2012 - 11:45:39 - [0,617] ----D C:\Users\Philippe\AppData\Local\ElevatedDiagnostics O43 - CFD: 16/02/2013 - 14:18:50 - [68,858] ----D C:\Users\Philippe\AppData\Local\Google O43 - CFD: 18/01/2012 - 21:34:24 - [0,004] ----D C:\Users\Philippe\AppData\Local\GrantaGateway O43 - CFD: 19/08/2011 - 01:19:46 - [0] ----D C:\Users\Philippe\AppData\Local\Historique O43 - CFD: 27/10/2012 - 15:16:14 - [1551,769] ----D C:\Users\Philippe\AppData\Local\Microsoft O43 - CFD: 05/09/2011 - 14:17:51 - [0,079] ----D C:\Users\Philippe\AppData\Local\Microsoft Games O43 - CFD: 15/09/2011 - 13:01:01 - [1,478] ----D C:\Users\Philippe\AppData\Local\Microsoft Help O43 - CFD: 08/09/2011 - 16:55:41 - [0,187] ----D C:\Users\Philippe\AppData\Local\MigWiz O43 - CFD: 14/09/2011 - 05:26:40 - [0] ----D C:\Users\Philippe\AppData\Local\PackageAware O43 - CFD: 19/08/2011 - 07:15:20 - [0,039] ----D C:\Users\Philippe\AppData\Local\Power2Go O43 - CFD: 17/06/2012 - 18:29:17 - [0,040] ----D C:\Users\Philippe\AppData\Local\Samsung O43 - CFD: 16/02/2013 - 08:39:57 - [0] ----D C:\Users\Philippe\AppData\Local\Spoon O43 - CFD: 16/02/2013 - 19:27:52 - [150,611] ----D C:\Users\Philippe\AppData\Local\Temp O43 - CFD: 19/08/2011 - 01:19:46 - [0] ----D C:\Users\Philippe\AppData\Local\Temporary Internet Files O43 - CFD: 06/01/2012 - 06:11:00 - [1,751] ----D C:\Users\Philippe\AppData\Local\TomTom O43 - CFD: 08/12/2011 - 06:16:32 - [13,348] ----D C:\Users\Philippe\AppData\Local\VirtualStore O43 - CFD: 14/09/2012 - 07:03:05 - [0,070] ----D C:\Users\Philippe\AppData\Local\Windows Live O43 - CFD: 22/06/2012 - 04:55:13 - [0,618] ----D C:\Users\Philippe\AppData\Local\Windows Live Writer O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 20/03/2012 - 10:35:10 - [0,000] R---D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 19/07/2011 - 18:03:37 - [0,013] ----D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite O43 - CFD: 27/01/2013 - 09:16:03 - [0,002] ----D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox O43 - CFD: 10/10/2011 - 11:04:42 - [0,004] ----D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory O43 - CFD: 24/11/2011 - 09:23:04 - [0,003] ----D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hardcopy - Impression d`écran O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 15/02/2013 - 18:47:00 - [0,004] ----D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Samsung O43 - CFD: 27/01/2013 - 09:16:09 - [0,003] R---D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup ~ Scan Program Folder in 00mn 04s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.217DB7113BEF25D033CA244555C924BD] - 16/02/2013 - 19:28:40 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1303770] O44 - LFC:[MD5.C643DE8C80C591A986BEB95BF58AB49C] - 16/02/2013 - 18:49:39 . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [] O44 - LFC:[MD5.C643DE8C80C591A986BEB95BF58AB49C] - 16/02/2013 - 18:49:39 . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [] O44 - LFC:[MD5.C643DE8C80C591A986BEB95BF58AB49C] - 16/02/2013 - 18:49:39 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [18736] O44 - LFC:[MD5.C643DE8C80C591A986BEB95BF58AB49C] - 16/02/2013 - 18:49:39 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [18736] O44 - LFC:[MD5.A5897F47EF2BD9E7EB8790875E6FDB4C] - 16/02/2013 - 18:39:59 ---A- . (...) -- C:\Windows\setupact.log [119159] O44 - LFC:[MD5.8BD8A3F4254D9AF69B92205ADE0A3D2E] - 16/02/2013 - 18:39:57 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.EA4385EC33FF3215F78E179C38BCFC55] - 16/02/2013 - 14:41:18 ---A- . (...) -- C:\Windows\PFRO.log [156928] O44 - LFC:[MD5.023A6EC411EDF4373925080749C29BC4] - 16/02/2013 - 13:34:32 . (...) -- C:\Windows\System32\ServiceFilter.ini [1692470] O44 - LFC:[MD5.023A6EC411EDF4373925080749C29BC4] - 16/02/2013 - 13:34:32 ---A- . (...) -- C:\Windows\SysNative\ServiceFilter.ini [1816] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/02/2013 - 12:48:20 ---A- . (...) -- C:\autoexec.bat [0] O44 - LFC:[MD5.BBE04DE60A6C77B0C12637F5D852DBE9] - 16/02/2013 - 08:11:05 . (...) -- C:\Windows\System32\AutoRunFilter.ini [] O44 - LFC:[MD5.BBE04DE60A6C77B0C12637F5D852DBE9] - 16/02/2013 - 08:11:05 ---A- . (...) -- C:\Windows\SysNative\AutoRunFilter.ini [2421] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/02/2013 - 17:57:44 ---A- . (...) -- C:\extensions.sqlite [0] O44 - LFC:[MD5.BA95DEFA908BF739966CA78EF75AA2C7] - 14/02/2013 - 18:39:50 . (...) -- C:\Windows\System32\perfc009.dat [] O44 - LFC:[MD5.939813B6295EE0C182A4C1EB6E82674A] - 14/02/2013 - 18:39:50 . (...) -- C:\Windows\System32\perfc00C.dat [] O44 - LFC:[MD5.EC276836EFCD12094D2EB17A113B492A] - 14/02/2013 - 18:39:50 . (...) -- C:\Windows\System32\perfh009.dat [] O44 - LFC:[MD5.534B01D7CCF08227A335EE6782EA5344] - 14/02/2013 - 18:39:50 . (...) -- C:\Windows\System32\perfh00C.dat [] O44 - LFC:[MD5.428BE6DE98765991E956AFFEE3658629] - 14/02/2013 - 18:39:50 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1692470] O44 - LFC:[MD5.BA95DEFA908BF739966CA78EF75AA2C7] - 14/02/2013 - 18:39:50 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [124832] O44 - LFC:[MD5.939813B6295EE0C182A4C1EB6E82674A] - 14/02/2013 - 18:39:50 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [152544] O44 - LFC:[MD5.EC276836EFCD12094D2EB17A113B492A] - 14/02/2013 - 18:39:50 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [663560] O44 - LFC:[MD5.534B01D7CCF08227A335EE6782EA5344] - 14/02/2013 - 18:39:50 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [756718] O44 - LFC:[MD5.428BE6DE98765991E956AFFEE3658629] - 14/02/2013 - 18:39:50 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1692470] ~ Scan Files in 00mn 32s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL ~ Scan ShellExecuteHooks in 00mn 00s ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\IEWInternet\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\IEWInternet\Connectivity\ConnectivityManager.exe ~ Scan Keys in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll ~ Scan Keys in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ Scan CSB in 00mn 00s ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{753781db-f6a8-11e1-bbf8-742f68573b71}\AutoRun\command. (...) -- F:\LaunchU3.exe (.not file.) O51 - MPSK:{769c56d0-215a-11e1-9fc3-f46d04a9bfff}\AutoRun\command. (...) -- M:\Setup.exe (.not file.) O51 - MPSK:{c58d7b9b-e399-11e0-bd80-742f68573b71}\AutoRun\command. (...) -- G:\AutoRunCardDetector.exe (.not file.) ~ Scan Keys in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ Scan Keys in 00mn 00s ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe O53 - SMSR:HKLM\...\startupreg\ASUSPRP [Key] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files (x86)\ASUS\APRP\APRP.exe O53 - SMSR:HKLM\...\startupreg\ASUSWebStorage [Key] . (.ecareme - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.110.223\AsusWSPanel.exe O53 - SMSR:HKLM\...\startupreg\ATKMEDIA [Key] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe O53 - SMSR:HKLM\...\startupreg\ATKOSD2 [Key] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe O53 - SMSR:HKLM\...\startupreg\BDRegion [Key] . (.cyberlink - brs.) -- C:\Program Files (x86)\Cyberlink\Shared files\brs.exe O53 - SMSR:HKLM\...\startupreg\BEWINTERNET-FR-DMGP-V2SessionManager [Key] . (.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\IEWInternet\SessionManager\SessionManager.exe O53 - SMSR:HKLM\...\startupreg\CardDetectorHUAWEI1752_1552 [Key] . (...) -- C:\Program Files (x86)\CardDetector\HUAWEI1752_1552\CardDetector.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\CLMLServer [Key] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O53 - SMSR:HKLM\...\startupreg\ETDCtrl [Key] . (...) -- C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\HControlUser [Key] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O53 - SMSR:HKLM\...\startupreg\IAStorIcon [Key] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O53 - SMSR:HKLM\...\startupreg\IntelTBRunOnce [Key] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe O53 - SMSR:HKLM\...\startupreg\ISUSPM [Key] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe O53 - SMSR:HKLM\...\startupreg\Nuance PDF Reader-reminder [Key] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe O53 - SMSR:HKLM\...\startupreg\NUSB3MON [Key] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe O53 - SMSR:HKLM\...\startupreg\OfficeSyncProcess [Key] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.exe O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O53 - SMSR:HKLM\...\startupreg\RemoteControl10 [Key] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe O53 - SMSR:HKLM\...\startupreg\RtHDVBg [Key] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O53 - SMSR:HKLM\...\startupreg\SonicMasterTray [Key] . (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe O53 - SMSR:HKLM\...\startupreg\SuperCopier2.exe [Key] . (...) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Syncables [Key] . (.syncables, LLC - Syncables.) -- C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe O53 - SMSR:HKLM\...\startupreg\TomTomHOME.exe [Key] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe O53 - SMSR:HKLM\...\startupreg\TrayServer [Key] . (.Magix - Trayserver.) -- C:\Program Files (x86)\MAGIX\Video_deluxe_17\Trayserver_FR.exe O53 - SMSR:HKLM\...\startupreg\UpdateLBPShortCut [Key] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe O53 - SMSR:HKLM\...\startupreg\UpdateP2GoShortCut [Key] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe O53 - SMSR:HKLM\...\startupreg\USBChargerPlusTray [Key] . (.ASUSTek Computer Inc. - USB Charger+.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe O53 - SMSR:HKLM\...\startupreg\Wireless Console 3 [Key] . (.ASUS - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe ~ Scan SMSR Keys in 00mn 00s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=0 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=255 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088] O58 - SDL:[MD5.820630334B7866F6F3A5ACDECB02DBEB] - 27/09/2010 - 00:52:12 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athrx.sys [1577984] O58 - SDL:[MD5.B28EDAB0902B6C4AC89C4334186AEB4F] - 04/12/2007 - 14:52:16 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\SysWOW64\drivers\aswMonFlt.sys [45648] ~ Scan Drivers in 00mn 00s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 03/07/2009 - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys (ASMMAP64) .(.ASUS - Memory mapping Driver.) - LEGACY_ASMMAP64 O64 - Services: CurCS - 04/12/2007 - C:\Windows\System32\DRIVERS\aswMonFlt.sys (aswMonFlt) .(.ALWIL Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 04/12/2007 - C:\Windows\System32\Drivers\aswRdr.sys (aswRdr) .(.ALWIL Software - avast! TDI RDR Driver.) - LEGACY_ASWRDR O64 - Services: CurCS - 04/12/2007 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi) .(.ALWIL Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI O64 - Services: CurCS - 26/05/2011 - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys (ATKWMIACPIIO) .(.ASUS - ATK WMIACPI Utility.) - LEGACY_ATKWMIACPIIO O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD O64 - Services: CurCS - 29/11/2010 - C:\Windows\System32\DRIVERS\TurboB.sys (TurboB) .(.Intel(R) Corporation - TurboB Device Driver.) - LEGACY_TURBOB ~ Scan Services in 00mn 00s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Not Key.) ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com ~ Scan Keys in 00mn 00s ---\\ Recherche des services démarrés par Svchost (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [680960] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [849920] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [121856] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ~ Scan Services in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.9BAFEA76034B3E14B95AFBBC6A9DC1EF] [SPRF][03/03/2011] (.Autodesk, Inc. - Autodesk component.) -- C:\Users\Philippe\AppData\Local\Temp\AcDeltree.exe [161704] [MD5.9D10F99A6712E28F8ACD5641E3A7EA6B] [SPRF][29/03/2010] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Philippe\AppData\Local\Temp\ose00000.exe [149352] [MD5.9D10F99A6712E28F8ACD5641E3A7EA6B] [SPRF][29/03/2010] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Philippe\AppData\Local\Temp\ose00001.exe [149352] [MD5.E5B43485D986CFECA401F10E9268C85A] [SPRF][15/02/2013] (...) -- C:\Users\Philippe\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll [515584] [MD5.DCA441DA67F1D3779E1834F2183555A6] [SPRF][09/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropCHS.dll [114768] [MD5.1CBB5398A05D23F6D969AD80B10658C9] [SPRF][15/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropCHT.dll [116304] [MD5.A2C9B7C5D98C7B7DCE8BAC1A9788DEB8] [SPRF][14/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropCSY.dll [116304] [MD5.2783553FB910F6FDEC97622E049C51E4] [SPRF][14/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropDEU.dll [114768] [MD5.8E8CEA4D58BBAA30FDF39EE1936360F2] [SPRF][04/02/2011] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropENU.dll [113888] [MD5.90F7188AFE06B3D16BCF6733A4C17ACE] [SPRF][14/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropESP.dll [114768] [MD5.352035CA37302C43A0B028CFD416C859] [SPRF][16/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropFRA.dll [114768] [MD5.4E31C888269AC0B27DDD11584EF86A38] [SPRF][14/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropHUN.dll [114768] [MD5.E046BBFA5DFCE6CD1A2A302358031484] [SPRF][12/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropITA.dll [114768] [MD5.3BF9FC1355DC01AC9CA407B987578A12] [SPRF][14/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropJPN.dll [114768] [MD5.ED05114F05E1DE36B10CE3801FB5E7EC] [SPRF][16/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropKOR.dll [126032] [MD5.A6B78CBECB2A203AD4A1DD9ACAEDB0B3] [SPRF][12/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropPLK.dll [114768] [MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][12/06/2009] (...) -- C:\Windows\Downloaded Program Files\IDropPTB.dll [0] [MD5.484407027EDBB6DCAD9496038D35F9F2] [SPRF][09/02/2007] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropRUS.dll [116816] ~ Scan Files in 00mn 00s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{6EAA6D7B-436E-42CF-B4EA-4B60639E655C}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O87 - FAEL: "{C5520DDB-FE8A-49F6-B269-C6FBAF27C9BC}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O87 - FAEL: "{01D04177-7E51-4EAE-829C-100F119FE548}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 10 Main Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe O87 - FAEL: "{091C199B-EAF1-472D-A99C-BC22D708247A}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 10.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.exe O87 - FAEL: "TCP Query User{303544A9-8B97-47D0-BA50-A61E7874B265}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files (x86)\syncables\syncables desktop\jre\bin\ O87 - FAEL: "UDP Query User{FF52A56C-0FCE-48B9-8C17-E29BFADD5D79}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files (x86)\syncables\syncables desktop\jre\bin O87 - FAEL: "{4ABA73D6-1501-421F-A767-8DB153E25ECF}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe O87 - FAEL: "{E2E12AB7-CCF0-469C-93F4-C93E05EA98B8}" | In - Private - P6 - TRUE | .(.Adobe Systems Incorporated - Adobe Version Cue CS3.) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O87 - FAEL: "{49BA88A4-484E-4CAB-B41E-BE213156802D}" | In - Private - P17 - TRUE | .(.Adobe Systems Incorporated - Adobe Version Cue CS3.) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O87 - FAEL: "{1AC0D983-E5B9-4D0F-8089-CFC2BBC7EEE1}" | In - Private - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe O87 - FAEL: "{73AD4AA4-681C-401D-BBA3-9494FC6323E2}" | In - Private - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe O87 - FAEL: "{2362D4AE-286C-43A4-963A-4962EE6548EE}" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{BED74083-5926-4C3C-BC31-A2DFD2B08450}" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{C50A8A5A-3051-416E-8ABE-B919EFE1F8DE}" | Out - None - P17 - TRUE | .(.Copyright 2013 SAMSUNG - AllShare Play.) -- C:\Program Files\Samsung\AllShare Play\AllShare Play.exe O87 - FAEL: "{342CE5EA-F9CC-4DC8-A10B-69A92CF37A1E}" | In - None - P17 - TRUE | .(.Copyright 2013 SAMSUNG - AllShare Play.) -- C:\Program Files\Samsung\AllShare Play\AllShare Play.exe O87 - FAEL: "{654AEE84-DB5D-489B-BFF0-1474CB19AECB}" | In - Public - P6 - TRUE | .(.DeskShare - IPCameraViewer.) -- C:\Program Files (x86)\Deskshare\IP Camera Viewer 1.0\IP Camera Viewer.exe O87 - FAEL: "{9C19FCC0-CA15-43E5-8CC8-E26E0AF37178}" | In - Public - P17 - TRUE | .(.DeskShare - IPCameraViewer.) -- C:\Program Files (x86)\Deskshare\IP Camera Viewer 1.0\IP Camera Viewer.exe O87 - FAEL: "TCP Query User{10139930-0F03-43D9-BA72-6084F2B56A9A}C:\program files (x86)\videolan\vlc\vlc.exe" | In - Public - P6 - TRUE | .(.VideoLAN - VLC media player 2.0.5.) -- C:\program files (x86)\videolan\vlc\vlc.exe O87 - FAEL: "UDP Query User{C8CD1C0A-EF1F-4A71-837A-BD70A7C9CEBC}C:\program files (x86)\videolan\vlc\vlc.exe" | In - Public - P17 - TRUE | .(.VideoLAN - VLC media player 2.0.5.) -- C:\program files (x86)\videolan\vlc\vlc.exe ~ Scan Firewall in 00mn 00s ---\\ Scan Additionnel (O88) Database Version : v2.10750 - (16/02/2013) Clés trouvées (Keys found) : 0 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 ~ Scan Additionnel in 00mn 12s ---\\ Product Upgrade Codes (O90) O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\Windows\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe O90 - PUC: "16525446F96163A42AFF5B1E81CE565F" . (.ASUS SmartLogon.) -- C:\Windows\Installer\{64452561-169F-4A36-A2FF-B5E118EC65F5}\_294823.exe O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon O90 - PUC: "21F1DBD139DE0C947ACC65BCED841885" . (.ASUS LifeFrame3.) -- C:\Windows\Installer\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}\_6FEFF9B68218417F98F549.exe O90 - PUC: "227C12A7952F67947BAA66855EDFDEFA" . (.Google Drive.) -- C:\Windows\Installer\{7A21C722-F259-4976-B7AA-6658E5FDEDAF}\DriveIcon O90 - PUC: "38E1FB04BE028D11795C00905C206085" . (.Power2Go.) -- C:\Windows\Installer\{40BF1E83-20EB-11D8-97C5-0009C5020658}\ARPPRODUCTICON.exe O90 - PUC: "3CB432AEEF9343747BF270066888F9D6" . (.Composite 2012 64-bit.) -- C:\Windows\Installer\{EA234BC3-39FE-4734-B72F-076086889F6D}\compositeIcon O90 - PUC: "3F7A4F31CBAE1624FAB6317177F77055" . (.Fast Boot.) -- C:\Windows\Installer\{13F4A7F3-EABC-4261-AF6B-1317777F0755}\_6FEFF9B68218417F98F549.exe O90 - PUC: "46289B33988A31940AAC3C467A05233B" . (.ASUS Power4Gear Hybrid.) -- C:\Windows\Installer\{33B98264-A889-4913-A0CA-C364A75032B3}\_6FEFF9B68218417F98F549.exe O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico O90 - PUC: "479E3CE71B83EAF4B96D47196C9897D3" . (.MAGIX Screenshare.) -- C:\Windows\Installer\{7EC3E974-38B1-4FAE-9BD6-7491C689793D}\ProgramIcon.exe O90 - PUC: "53451EB7E3D285B468F7C957EB0D02C8" . (.QuickTime.) -- C:\Windows\Installer\{7BE15435-2D3E-4B58-867F-9C75BED0208C}\Installer.ico O90 - PUC: "5426BE430D8CA8D48B8DEEFB7F9A4158" . (.Firebird SQL Server - MAGIX Edition.) -- C:\Windows\Installer\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}\ProgramIcon.exe O90 - PUC: "6760F93DE36159549A712EF899BB4D2D" . (.ASUS AI Recovery.) -- C:\Windows\Installer\{D39F0676-163E-4595-A917-E28F99BBD4D2}\_6FEFF9B68218417F98F549.exe O90 - PUC: "68AB67CA3301004F7706000000000030" . (.Adobe Acrobat 8 Professional - English, Français, Deutsch.) -- C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe O90 - PUC: "68AB67CA7DA76301B744000000000010" . (.Adobe Reader 6.0 - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-000000000001}\ARPPRODUCTICON.exe O90 - PUC: "76EA78D0BE4101C4885AADC61318BE81" . (.Windows Live Family Safety.) -- C:\Windows\Installer\{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}\fssicon.ico O90 - PUC: "8BAD244577171E94B822900A94AE9569" . (.Renesas Electronics USB 3.0 Host Controller Driver.) -- C:\Windows\Installer\{5442DAB8-7177-49E1-8B22-09A049EA5996}\ARPPRODUCTICON.exe O90 - PUC: "8D7961433299E5444BA225E9A599BCA7" . (.syncables desktop SE.) -- C:\Windows\Installer\{341697D8-9923-445E-B42A-529E5A99CB7A}\ARPPRODUCTICON.exe O90 - PUC: "B0AFE77B3DB92214F9A9519A365BAE42" . (.Intel(R) Turbo Boost Technology Monitor 2.0.) -- C:\Windows\Installer\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}\ARPPRODUCTICON.exe O90 - PUC: "B27818B2450AAD84EBB3AFC561C403A3" . (.ASUS FancyStart.) -- C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_6FEFF9B68218417F98F549.exe O90 - PUC: "BD224D887C9E61E4D90892994FDFA69D" . (.Adobe Flash Player 9 Plugin.) -- C:\Windows\Installer\{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}\ARPPRODUCTICON.exe O90 - PUC: "C1220518E7F87994DAE4FAED7E4F4B01" . (.Wireless Console 3.) -- C:\Windows\Installer\{8150221C-8F7E-4997-AD4E-AFDEE7F4B410}\_853F67D554F05449430E7E.exe O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe O90 - PUC: "D409084BF37F37640B43A8F594C21948" . (.Nuance PDF Reader.) -- C:\Windows\Installer\{B480904D-F73F-4673-B034-8A5F492C9184}\ARPPRODUCTICON.exe O90 - PUC: "D4B1CBCEA3CF8E74DA196C1F452BA7D2" . (.MAGIX Speed burnR (MSI).) -- C:\Windows\Installer\{ECBC1B4D-FC3A-47E8-AD91-C6F154B27A2D}\ProgramIcon.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe O90 - PUC: "DF97238AB4AC602459530979D47E6645" . (.Apple Application Support.) -- C:\Windows\Installer\{A83279FD-CA4B-4206-9535-90974DE76654}\WinInstall.ico O90 - PUC: "E19212F84440D1B49B9F34077AE343D6" . (.WinFlash.) -- C:\Windows\Installer\{8F21291E-0444-4B1D-B9F9-4370A73E346D}\MyIcon O90 - PUC: "E339C5BAD7C503D43B41C9384AB949EB" . (.ATK Package.) -- C:\Windows\Installer\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}\_294823.exe O90 - PUC: "EC9BCB90B469ADB4EA645B0ABAFED1F3" . (.Sonic Focus.) -- C:\Windows\Installer\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}\ARPPRODUCTICON.exe ~ Scan Files in 00mn 00s ---\\ MyComputer Name Space (O92) O92 - MNS: ASUS WebStorage Drive - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf} ~ Scan MNS in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 20/03/2007 153792 | (Adobe Version Cue CS3) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe SS - | Demand 08/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SR - | Auto 25/01/2011 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe SR - | Auto 24/01/2013 662600 | (AllShare Play Service) . (.Copyright 2013 SAMSUNG.) - C:\Program Files\Samsung\AllShare Play\AllShare Play Service.exe SR - | Auto 16/06/2009 84536 | (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe SR - | Auto 04/12/2007 17272 | (aswUpdSv) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe SR - | Auto 15/12/2009 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe SR - | Auto 04/12/2007 140664 | (avast! Antivirus) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe SR - | Demand 04/12/2007 247160 | (avast! Mail Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe SR - | Demand 04/12/2007 345464 | (avast! Web Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe SR - | Auto 28/02/2006 229376 | (Bonjour Service) . (.Apple Computer, Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SS - | Auto 12/11/2010 241648 | (CLKMSVC10_38F51D56) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe SR - | Auto 27/08/2009 1253376 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe SS - | Demand 07/08/2008 3276800 | (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe SR - | Demand 19/12/2011 654848 | (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SR - | Auto 25/08/2009 77824 | C:\Program Files (x86)\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (FTRTSVC) . (.France Telecom SA.) - C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe SS - | Auto 13/04/2011 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 13/04/2011 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SR - | Auto 13/01/2011 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe SR - | Auto 01/02/2011 326168 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SR - | Auto 28/04/2011 993896 | (NVSvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe SR - | Auto 28/04/2011 2009704 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe SR - | Auto 28/04/2011 378472 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SR - | Auto 23/01/2012 92592 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe SS - | Demand 29/11/2010 149504 | (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe SR - | Auto 01/02/2011 2656280 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SS - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Scan Services in 00mn 01s End of the scan (1332 lines in 01mn 06s)(0)