Rapport de ZHPDiag v1.3.5.92 par Nicolas Coolman, Update du 17/02/2013
Run by nicolas at 19/02/2013 16:42:12
State : Nouvelle version disponible
High Elevated Privileges : OK
UAC : Deactivate by program


---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox 18.0.2 v18.0.2
MFIE: Mozilla Firefox 8.0.1 v8.0.1
GCIE: Google Chrome v24.0.1312.57 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 64-bit  (Build 6000)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : 7H7KQ
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3071 MB (61% free)
System Restore: Activé (Enable)
System drive C: has 32 GB (21%) free of 149 GB

---\\ Logged in mode
~ Computer Name: NICOLAS-PC
~ User Name: nicolas
~ All Users Names: UpdatusUser, nicolas, HomeGroupUser$, ASPNET, Administrateur, 
~ Unselected Option: O45,O61,O62
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\nicolas\AppData\Roaming\
~ %Desktop% : C:\Users\nicolas\Desktop\
~ %Favorites% : C:\Users\nicolas\Favorites\
~ %LocalAppData% : C:\Users\nicolas\AppData\Local\
~ %StartMenu% : C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 32 Go of 149 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
G:\ Hard drive, Flash drive, Thumb drive (Free 102 Go of 466 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  Out Of Date
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 07:23:14.) -- C:\Windows\Explorer.exe [2870272]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.F12CB8EFB15813723575EE94C6A76E8B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/11/2011 - 06:26:29.) -- C:\Windows\System32\wininet.dll [1197568]
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.28/10/2009 - 07:24:40.) -- C:\Windows\System32\Winlogon.exe [389632]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.6EF20DDF3172E97D69F596FB90602F29] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:44:02.) -- C:\Windows\system32\Drivers\AFD.sys [499712]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072]
[MD5.378E0E0DFEA67D98AE6EA53ADBBD76BC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 07:23:06.) -- C:\Windows\system32\Drivers\ntfs.sys [1657216]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840]
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/07/2009 - 02:45:55.) -- C:\Windows\system32\Drivers\volsnap.sys [294992]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/434
~ Mes musiques (My Musics) : 1/2
~ Mes Videos (My Videos) : 2/10
~ Mes Favoris (My Favorites) : 1/167
~ Mes Documents (My Documents) : 1/7355
~ Mon Bureau (My Desktop) : 10/25
~ Menu demarrer (Programs) : 1/54
~ Scan Hidden Files in 00mn 06s



---\\ Processus lancés
[MD5.F34E7705751BB413283434697BF8E55D] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe   [357696] [PID.2972]
[MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe   [495616] [PID.1672]
[MD5.604DDA7A1EAB12421768FFB65540C17D] - (.Synapse Développement - Application MFC IntergrationCordialDsOutloo.) -- C:\Program Files (x86)\Cordial\DLL_32\Integration de Cordial dans Outlook Express.exe   [131072] [PID.1892]
[MD5.09CF67D0E8C7116D74C88B3D8DEA0791] - (.NETGEAR - Netgear MFC Application.) -- C:\Program Files (x86)\NETGEAR\WN111v2\WN111v2.exe   [1728512] [PID.1928]
[MD5.7D58C9BDF9C0A3955BDCDE7387AD12AC] - (.Macrovision Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe   [81920] [PID.968]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe   [421160] [PID.2540]
[MD5.A58E05767687E1E636D160ECEA9BC8ED] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe   [1226608] [PID.2684]
[MD5.57D8C4ED26DFD7EF0E2CB196FB8BFB54] - (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDMService.exe   [63360] [PID.2624]
[MD5.84417D5F72361A8D14E7B0BAAE1F9DCA] - (.Yuna Software - Messenger Plus! 6.) -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe   [802304] [PID.2476]
[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [254696] [PID.2472]
[MD5.7EAB207FB02A850DE14A7563858B23F7] - (.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddamon.exe   [25256] [PID.2764]
[MD5.08E6495D47C6F1E9E73EA389794C6058] - (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe   [943168] [PID.2316]
[MD5.782FEF655DBF8653C9F2722BEBF7A8A6] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe   [4241512] [PID.2560]
[MD5.F7DB6336DEFE82D7EAE25A6B656ED64A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [5685760] [PID.5732]
[MD5.9BF7E58D9113CE15CF4F1E1B18CEFF83] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe   [379496] [PID.832]
[MD5.4041D31508A2A084DFB42C595854090F] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe   [44768] [PID.1320]
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe   [37664] [PID.1904]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe   [345376] [PID.2012]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe   [398184] [PID.2992]
[MD5.831883B107684301F48ACE752C963984] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe   [66872] [PID.3028]
[MD5.E24106A5EAECDDFF00B25497049DD65F] - (...) -- C:\Windows\SysWOW64\PnkBstrB.exe   [107832] [PID.2648]
[MD5.5E53CF8AD0FD33B35000C113656AB37B] - (.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe   [2754984] [PID.876]
[MD5.4E5C5D88EB0A8D21824D5A3EB7327E69] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe   [2255464] [PID.4652]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\nicolas\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\nicolas\AppData\Roaming\Mozilla\Firefox\Profiles\lo0cldih.default\prefs.js
M3 - MFPP: Plugins - [nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [nicolas] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [nicolas - lo0cldih.default\real@debrid] [] Real-Debrid Plugin v1.9e (.idsk.)
M2 - MFEP: prefs.js [nicolas - lo0cldih.default\{1018e4d6-728f-4b20-ad56-37578a4de76b}] [] Flagfox v4.2.6 (.Dave Garrett.)
M2 - MFEP: prefs.js [nicolas - lo0cldih.default\{3e0e7d2a-070f-4a47-b019-91fe5385ba79}] [] AddThis v3.5.9 (.AddThis.)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.3".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_149.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 5.2.1.0.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 2.6.1f3.) -- C:\Users\nicolas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> [64Bits] - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites [64Bits] - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files (x86)\Di
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Programme d’aide de l’Assistant de connexion au compte Microsoft [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows L
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: FDMIECookiesBHO Class [64Bits] - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} . (...) -- C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe 
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe 
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe 
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 
O4 - HKCU\..\Run: [ISUSPM Startup] . (.Macrovision Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe 
O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe 
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe 
O4 - HKLM\..\Wow6432Node\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe 
O4 - HKLM\..\Wow6432Node\Run: [ISUSScheduler] . (.Macrovision Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe 
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe 
O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe 
O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe 
O4 - HKLM\..\Wow6432Node\Run: [DivX Download Manager] . (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe 
O4 - HKLM\..\Wow6432Node\Run: [SynapseUpdate] E:\Synapse Update.exe (.not file.) 
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe 
O4 - HKLM\..\Wow6432Node\Run: [PlusService] . (.Yuna Software - Messenger Plus! 6.) -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe 
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 
O4 - HKLM\..\Wow6432Node\Run: [lxddmon.exe] . (.Pas de propriétaire - Device Monitor.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddmon.exe 
O4 - HKLM\..\Wow6432Node\Run: [lxddamon] . (.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddamon.exe 
O4 - HKLM\..\Wow6432Node\Run: [jswtrayutil] C:\Program Files (x86)\NETGEAR\WN111v2\jswtrayutil.exe (.not file.) 
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 
O4 - HKLM\..\Wow6432Node\Run: [agentantidote.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe 
O4 - HKLM\..\Wow6432Node\Run: [agentantidote64.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe 
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe 
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-21-37400802-728695251-2209311623-1008-37400802-728695251-2209311623-1000\..\Run: [msnmsgr] Clé orpheline 
O4 - HKUS\S-1-5-21-37400802-728695251-2209311623-1008-37400802-728695251-2209311623-1000\..\Run: [DAEMON Tools Lite] Clé orpheline 
O4 - HKUS\S-1-5-21-37400802-728695251-2209311623-1008-37400802-728695251-2209311623-1000\..\Run: [swg] Clé orpheline 
O4 - HKUS\S-1-5-21-37400802-728695251-2209311623-1008-37400802-728695251-2209311623-1000\..\Run: [ISUSPM Startup] Clé orpheline 
O4 - HKUS\S-1-5-21-37400802-728695251-2209311623-1008-37400802-728695251-2209311623-1000\..\Run: [RocketDock] Clé orpheline 
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\Play Texas Hold'em Poker 3D - Deluxe Edition.lnk . (.Zone 2 Media GmbH.)  -- C:\Program Files (x86)\Play+Smile\Texas Hold'em Poker 3D - Deluxe Edition\Poker3d.exe
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\SWAT 4 - The Stetchkov Syndicate.lnk . (.Sierra Entertainment, Inc..)  -- G:\prg442\Swat4\ContentExpansion\System\Swat4X.exe
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\SWAT 4.lnk . (.Sierra Entertainment, Inc..)  -- G:\prg442\Swat4\Content\System\Swat4.exe
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EverestPoker.fr.lnk . (.Playtech.)  -- C:\Poker\EverestPoker.fr\casino.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Turbopoker.fr.lnk . (.Playtech.)  -- C:\Poker\Turbopoker.fr\casino.exe
O4 - Global Startup: C:\Users\nicolas\Desktop\Fish & Shark of Poker V0.4.2.lnk . (...)  -- C:\Program Files (x86)\Fish&SharkOfPoker V0.4\FishAndSharkOfPoker.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ACFPoker.lnk . (...)  -- C:\Programs\ACF\ACF.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Fish & Shark of Poker V0.4.2.lnk . (...)  -- C:\Program Files (x86)\Fish&SharkOfPoker V0.4\FishAndSharkOfPoker.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\LuckyJeux Poker.lnk . (...)  -- C:\Programs\LuckyJeux\LUCKYJEUX.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MyPok.lnk . (.Microgaming.)  -- C:\Microgaming\Poker\mypokfr\MPPoker.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PartyPoker.fr.lnk . (...)  -- C:\Programs\PartyFrance\PartyFrance.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PMU Poker.lnk . (...)  -- C:\Programs\PMU\PMU.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PokerStars.fr.lnk . (.PokerStars.)  -- C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SAjOO Poker.lnk . (...)  -- C:\SAjOO\StartSAjOO.exe
O4 - Global Startup: C:\Users\nicolas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..)  -- C:\Program Files (x86)\uTorrent\uTorrent.exe
~ Scan Global Startup in 00mn 04s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office14\ONBTTN~1.dll (.not file.)
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{983F8BAD-DECB-42A2-839F-AC0B370BE1C1}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{C5A13DD9-1496-4143-A187-DD892DE3B83A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{EC5FCBBA-F59F-427A-924C-24481E87E8A9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{983F8BAD-DECB-42A2-839F-AC0B370BE1C1}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{C5A13DD9-1496-4143-A187-DD892DE3B83A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{EC5FCBBA-F59F-427A-924C-24481E87E8A9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{983F8BAD-DECB-42A2-839F-AC0B370BE1C1}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{C5A13DD9-1496-4143-A187-DD892DE3B83A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{EC5FCBBA-F59F-427A-924C-24481E87E8A9}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) -- 
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service:  (HerculesWiFi) . (.Guillemot Corporation - Hercules WiFi Station Support Service.) - C:\Windows\SysWOW64\HerculesWiFiService.exe
O23 - Service:  (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service:  (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 280.2.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service: PnkBstrB (PnkBstrB) . (...) - C:\Windows\SysWOW64\PnkBstrB.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 7 (TeamViewer7) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
~ Scan Services in 00mn 14s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.EC807244904FA170C299AB06D87FBDBE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-nicolas-PC-nicolas] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.6FBBB73BE9FB38389AB73F38828A9CAC] [APT] [{5D999F7C-EC44-4FAE-8B1B-73971B8780CB}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
[MD5.0B726C96658C3A0AFBEB73EAB35355DE] [APT] [{6A3FE5DC-B039-4839-A4DB-A1ACC3843E85}] (...) -- C:\drivers\printer\2500_series\Setup.exe
[MD5.65820B989DC3C1114B765D82393554E9] [APT] [{B37BD95A-9B1B-4182-8E98-D893B9A2A1F3}] (...) -- G:\Treasure Adventure\setup.exe
[MD5.00000000000000000000000000000000] [APT] [{F717BB13-9AD6-4FC4-9F0E-0AE76B99D716}] (...) -- C:\Program Files (x86)\Microsoft Games\Halo 2\StartUp.exe (.not file.)
[MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 07s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (JSWPSLWF) . (.Atheros Communications, Inc. - Atheros Security NDIS 6.0 Filter Driver.) - C:\Windows\System32\DRIVERS\jswpslwfx.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver:  (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 200% Poker - (.Pas de propriétaire.) [HKLM][64Bits] -- 200pourcentpokerfr (Poker)
O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: ACFPoker - (.ACF.) [HKLM][64Bits] -- ACFPoker
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {77DCDCE3-2DED-62F3-8154-05E745472D07}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5AF4B3C4-C393-48D7-AC7E-8E7615579548}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728}
O42 - Logiciel: Adobe Reader 9.5.3 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-A95000000001}
O42 - Logiciel: Antidote HD - (.bezz.) [HKLM][64Bits] -- Antidote HD_is1
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {963BFE7E-C350-4346-B43C-B02358306A45}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: BarrierePoker.fr - (.LB POKER.) [HKLM][64Bits] -- fr.barrierepoker.air.D043989C8F5E91300BF71855036B28F854BB8613.1
O42 - Logiciel: BarrierePoker.fr - (.LB POKER.) [HKLM][64Bits] -- {DDA5B560-9E94-49FA-D8E6-A4F5A342A19F}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CVitaeV4 - (.Pas de propriétaire.) [HKCU][64Bits] -- CVitaeV4
O42 - Logiciel: Cat Girl Alliance 1.0 - (.G-Collections.com.) [HKLM][64Bits] -- {4DCD596A-3C70-4175-8241-5947E1CCE312}_is1
O42 - Logiciel: Command & Conquer Generals - (.Electronic Arts.) [HKLM][64Bits] -- InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup.divx.com
O42 - Logiciel: Conjugaison - (.homework.) [HKLM][64Bits] -- {057AA4D8-559F-42B1-98A0-508303834B2E}
O42 - Logiciel: Cordial 10, correcteur et analyseur de la langue française - (.Pas de propriétaire.) [HKLM][64Bits] -- Cordial10
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Diagnostic 10 Synapse Développement - (.Pas de propriétaire.) [HKLM][64Bits] -- ST6UNST #1
O42 - Logiciel: Eurosport Poker - (.SPS.) [HKLM][64Bits] -- Eurosport Poker_is1
O42 - Logiciel: Everest Poker.fr (Remove Only) - (.Pas de propriétaire.) [HKLM][64Bits] -- Everest Poker.fr
O42 - Logiciel: EverestPoker.fr - (.Pas de propriétaire.) [HKCU][64Bits] -- EverestPoker.fr
O42 - Logiciel: Fallout New Vegas version 1.2 - (.Ozer1.) [HKLM][64Bits] -- {D89C9418-F38F-4F31-8FC4-D658ADB3D963}_is1
O42 - Logiciel: Fallout New Vegas version 1.3.0.452 - (.Ozer1.) [HKLM][64Bits] -- {6BB06A04-06C2-4C11-B099-F1702DEE72C0}_is1
O42 - Logiciel: Fallout New Vegas version 1.3.0.452 - (.Ozer1.) [HKLM][64Bits] -- {A1FDB071-F067-496E-BA95-176988796014}_is1
O42 - Logiciel: Fallout New Vegas version 1.4.0.525 - (.Ozer1.) [HKLM][64Bits] -- {1A0C2FC4-BC94-4B99-99DD-B0B17AC56E01}_is1
O42 - Logiciel: Fish & Shark of Poker V0.4.2 - (.Pas de propriétaire.) [HKLM][64Bits] -- Fish & Shark of Poker_is1
O42 - Logiciel: FoxTab PDF Converter - (.Pas de propriétaire.) [HKCU][64Bits] -- FoxTab PDF Converter
O42 - Logiciel: Free Download Manager 3.0 - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- Free Download Manager_is1
O42 - Logiciel: Full Tilt Poker - (.Pas de propriétaire.) [HKLM][64Bits] -- {D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}
O42 - Logiciel: Full Tilt Poker.Fr - (.Pas de propriétaire.) [HKLM][64Bits] -- {34785AD0-6276-11DF-A08A-0800200C9A66}
O42 - Logiciel: GinyasBrowserCompanions - (.Ginyas.) [HKLM][64Bits] -- GinyasBrowserCompanions
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Hercules WiFi Station - (.Hercules.) [HKLM][64Bits] -- {63E03919-6657-4C9A-9E37-D54E1A2E3009}
O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM][64Bits] -- ImgBurn
O42 - Logiciel: ImgBurn 2.3.2.0 Fr - (.Pas de propriétaire.) [HKLM][64Bits] -- {75ADEFA2-D4FF-4B37-9E93-4306E6AC176B}_is1
O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM][64Bits] -- 5513-1208-7298-9440
O42 - Logiciel: Java(TM) 6 Update 29 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {400C31E4-796F-4E86-8FDC-C3C4FACC6847}
O42 - Logiciel: Les Sims™ 3 - (.Electronic Arts.) [HKLM][64Bits] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: Lexmark 2500 Series - (.Lexmark International, Inc..) [HKLM][64Bits] -- Lexmark 2500 Series
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: LuckyJeux Poker - (.PartyGaming.) [HKLM][64Bits] -- LuckyJeuxPoker
O42 - Logiciel: Ludi - (.Pas de propriétaire.) [HKLM][64Bits] -- Ludi
O42 - Logiciel: MS Access 97 SP2 - (.Pas de propriétaire.) [HKLM][64Bits] -- MS Access 97 SP2
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {77FF1F55-E7D8-4EC2-A0DB-9DFB0F9B7354}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Media Player Classic - Home Cinema v1.5.2.3456 - (.MPC-HC Team.) [HKLM][64Bits] -- {2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1
O42 - Logiciel: Messenger Plus! 6 - (.Yuna Software.) [HKLM][64Bits] -- Messenger Plus!
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: Microsoft Windows Media Video 9 VCM - (.Pas de propriétaire.) [HKLM][64Bits] -- WMV9_VCM
O42 - Logiciel: Mises à jour NVIDIA 1.4.28 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Help Viewer 1.0 Language Pack - FRA
O42 - Logiciel: Moniteur WiFi OLITEC - (.OLITEC.) [HKLM][64Bits] -- {DE06F9AA-6C9D-4D64-A028-41B6340200AF}
O42 - Logiciel: Mozilla Firefox 18.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 18.0.2 (x86 fr)
O42 - Logiciel: Mozilla Firefox 8.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 8.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyPok - (.Pas de propriétaire.) [HKLM][64Bits] -- mypokfr (Poker)
O42 - Logiciel: NCsoft Launcher - (.NCsoft.) [HKLM][64Bits] -- {5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}
O42 - Logiciel: NCsoft Launcher - (.NCsoft.) [HKLM][64Bits] -- {C9FB868B-2086-4EE2-BD4F-BFBA36B131F4}
O42 - Logiciel: NVIDIA 3D Vision Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA StereoUSB Driver
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.10.0514 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
O42 - Logiciel: NVIDIA Pilote 3D Vision 280.26 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 280.19 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 280.26 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: PCSX2 - Playstation 2 Emulator - (.Pas de propriétaire.) [HKLM][64Bits] -- pcsx2-r4600
O42 - Logiciel: PCSX2 - Playstation 2 Emulator - (.Pas de propriétaire.) [HKLM][64Bits] -- pcsx2-r5350
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}
O42 - Logiciel: PKR - (.PKR Ltd.) [HKLM][64Bits] -- PKR
O42 - Logiciel: PMU Poker - (.PMU.) [HKLM][64Bits] -- PMUPoker
O42 - Logiciel: PVSonyDll - (.NVIDIA Corporation.) [HKLM][64Bits] -- {3D3E663D-4E7E-4577-A560-7ECDDD45548A}
O42 - Logiciel: Partouche Poker.fr - (.Partouche.) [HKLM][64Bits] -- Partouche Poker.fr
O42 - Logiciel: PartyPoker.fr - (.PartyFrance.) [HKLM][64Bits] -- PartyPokerFr
O42 - Logiciel: Poker Xtrem - (.Pas de propriétaire.) [HKLM][64Bits] -- PokerXtremfr (Poker)
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {EB900AF8-CC61-4E15-871B-98D1EA3E8025}
O42 - Logiciel: Ralink Wireless LAN Card - (.RALINK.) [HKLM][64Bits] -- {E91E8912-769D-42F0-8408-0E329443BABC}
O42 - Logiciel: RangeMax Wireless-N USB Adapter WN111v2 - (.NETGEAR.) [HKLM][64Bits] -- InstallShield_{1C0E9C6B-D4D5-4D3C-8A10-F10A3E7BEEA5}
O42 - Logiciel: RapeLay - (.ILLUSION.) [HKLM][64Bits] -- {CA31F991-DBD2-4DE1-B6D2-30105F23CBBC}
O42 - Logiciel: Rayman 3 - (.Pas de propriétaire.) [HKLM][64Bits] -- {15F52B39-04CB-4EDB-9A8C-496C4A5588E2}
O42 - Logiciel: Realtek Ethernet Controller  Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva
O42 - Logiciel: Risk II - (.Pas de propriétaire.) [HKLM][64Bits] -- {0EE11800-A1BD-11D3-BFEB-005004AF2D32}
O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1
O42 - Logiciel: RomStation - (.Pas de propriétaire.) [HKLM][64Bits] -- RomStation
O42 - Logiciel: SAjOO - (.SAjOO.) [HKLM][64Bits] -- SAjOO_is1
O42 - Logiciel: SWAT 4 - (.Sierra Entertainment, Inc..) [HKLM][64Bits] -- InstallShield_{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8}
O42 - Logiciel: SWAT 4 - The Stetchkov Syndicate - (.Sierra Entertainment, Inc..) [HKLM][64Bits] -- InstallShield_{97E12F84-C033-4DA2-97D2-F540C3E292EA}
O42 - Logiciel: SimCity 3000 World Edition - (.Pas de propriétaire.) [HKLM][64Bits] -- SimCity 3000 World Edition
O42 - Logiciel: Skype™ 4.2 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {D103C4BA-F905-437A-8049-DB24763BBE36}
O42 - Logiciel: Synapse Update - (.Pas de propriétaire.) [HKLM][64Bits] -- Synapse Update
O42 - Logiciel: TeLL me More - (.Pas de propriétaire.) [HKLM][64Bits] -- TMM60
O42 - Logiciel: TeamViewer 7 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 7
O42 - Logiciel: Tests de QI et Mémoire - (.Pas de propriétaire.) [HKLM][64Bits] -- {A164036A-722E-41CB-A1C1-3C3825A575D6}
O42 - Logiciel: Texas Hold'em Poker 3D - Deluxe Edition 1.0 - (.Play + Smile Marketing GmbH.) [HKLM][64Bits] -- {E26DEDC7-1A99-4F8C-9615-6DB112E6495B}_is1
O42 - Logiciel: Tom Clancy's Rainbow Six Vegas 2 - (.Ubisoft.) [HKLM][64Bits] -- {FD416706-875C-4B0B-A23A-9E740DAE029E}
O42 - Logiciel: Trickshot - (.Pas de propriétaire.) [HKLM][64Bits] -- {ACC9AC0E-8B6E-4393-AF52-E43CF31BA7AC}
O42 - Logiciel: Turbopoker.fr - (.Pas de propriétaire.) [HKCU][64Bits] -- Turbopoker.fr
O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM][64Bits] -- {888F1505-C2B3-4FDE-835D-36353EBD4754}
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM][64Bits] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}
O42 - Logiciel: VDownloader 2.10.509.2 - (.Vitzo Limited.) [HKLM][64Bits] -- {A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1
O42 - Logiciel: VLC media player 1.0.3 - (.VideoLAN Team.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- {D60023FA-3DF1-4537-93DD-13024CC4E366}
O42 - Logiciel: Winamax Poker - (.Winamax.) [HKLM][64Bits] -- wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O42 - Logiciel: Winamax Poker - (.Winamax.) [HKLM][64Bits] -- {2208ECE7-EB5D-9120-391B-43D105757CB3}
O42 - Logiciel: Winga Poker - (.winga.fr.) [HKLM][64Bits] -- Winga Poker_is1
O42 - Logiciel: avast! Free Antivirus v7.0.1426.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: bwin Poker - (.Bwin.) [HKLM][64Bits] -- bwin Poker_is1
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {B6EFD9A5-2ECE-4C22-BAEC-D16E73EA2013}
O42 - Logiciel: le Parrain® II - (.Electronic Arts.) [HKLM][64Bits] -- {A1416622-0DDE-45B5-B06C-DFC3ED94C53B}
O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ACF]
[HKCU\Software\ACTIVEJP.INI]
[HKCU\Software\AKIBA_K]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ASRock]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Adobe]
[HKCU\Software\Aion]
[HKCU\Software\AppDataLow\Software\DivX]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Auralog]
[HKCU\Software\BitTorrent]
[HKCU\Software\Blabbers       ]
[HKCU\Software\Blabbers toolbar1      ]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\BrowserTemp]
[HKCU\Software\Bugsplat]
[HKCU\Software\ClassesB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DO]
[HKCU\Software\DT Soft]
[HKCU\Software\Digimarc]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\Druide informatique inc.]
[HKCU\Software\EA Games]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Emulators]
[HKCU\Software\FOSTER]
[HKCU\Software\FinalWire]
[HKCU\Software\FreeDownloadManager.ORG]
[HKCU\Software\Full Tilt Poker.fr]
[HKCU\Software\Full Tilt Poker]
[HKCU\Software\GRETECH]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Hercules]
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\ImgBurn]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel\Indeo\4.1]
[HKCU\Software\JaboSoft]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LuckyJeux]
[HKCU\Software\MGS]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Microgaming]
[HKCU\Software\Monolith Productions]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\N64 Emulation]
[HKCU\Software\NCsoft]
[HKCU\Software\NETGEAR]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\PCSX2]
[HKCU\Software\PMU]
[HKCU\Software\PS2Eplugin]
[HKCU\Software\PS]
[HKCU\Software\PTECH]
[HKCU\Software\Pando Networks]
[HKCU\Software\Partouche Technologies]
[HKCU\Software\Partouche]
[HKCU\Software\Patchou]
[HKCU\Software\Piriform]
[HKCU\Software\Poker3d]
[HKCU\Software\Policies]
[HKCU\Software\RALINK]
[HKCU\Software\Razer]
[HKCU\Software\Realtek]
[HKCU\Software\RocketDock]
[HKCU\Software\SEKILALA]
[HKCU\Software\SOCID]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Synapse Développement]
[HKCU\Software\TRABULANCE]
[HKCU\Software\TeamViewer]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\William Hill Poker]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yuna Software]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ZyX]
[HKCU\Software\cybelsoft]
[HKCU\Software\ej-technologies]
[HKCU\Software\epsxe]
[HKCU\Software\homework]
[HKCU\Software\pacificpoker]
[HKCU\Software\perforce]
[HKCU\Software\pokerinstaller]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\DivX]
[HKLM\Software\EA GAMES]
[HKLM\Software\GEAR Software]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ALWIL Software]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\Auralog]
[HKLM\Software\Wow6432Node\Bethesda Softworks]
[HKLM\Software\Wow6432Node\BrowserCompanions]
[HKLM\Software\Wow6432Node\Bulldog]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\C07ft5Y]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\DeepRed]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\Druide informatique inc.]
[HKLM\Software\Wow6432Node\EA Games]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\FreeDownloadManager.ORG]
[HKLM\Software\Wow6432Node\Full Tilt Poker]
[HKLM\Software\Wow6432Node\GRETECH]
[HKLM\Software\Wow6432Node\Gabest]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hercules Technologies]
[HKLM\Software\Wow6432Node\Hercules]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\LexmarkInkjet]
[HKLM\Software\Wow6432Node\Lexmark]
[HKLM\Software\Wow6432Node\MSI]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\Microprose]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NCsoft]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Notepad]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OLITEC]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\Partouche]
[HKLM\Software\Wow6432Node\Phoenix Games]
[HKLM\Software\Wow6432Node\Playlogic]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RALINK]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\RtWlan]
[HKLM\Software\Wow6432Node\Sierra]
[HKLM\Software\Wow6432Node\Sims]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sports Interactive Ltd]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Synapse Développement]
[HKLM\Software\Wow6432Node\Tchibo]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\Trad-FR]
[HKLM\Software\Wow6432Node\Turbine]
[HKLM\Software\Wow6432Node\Ubi Soft]
[HKLM\Software\Wow6432Node\Ubisoft]
[HKLM\Software\Wow6432Node\VDownloader]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Yuna Software]
[HKLM\Software\Wow6432Node\cybelsoft]
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\homework]
[HKLM\Software\Wow6432Node\illusion]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/12/2010 - 01:47:24 - [3,348] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 26/02/2012 - 14:36:51 - [950,017] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/11/2010 - 13:13:44 - [2,200] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 17/12/2011 - 18:07:32 - [0,641] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 09/04/2012 - 00:34:42 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 28/01/2013 - 16:02:45 - [18,641] ----D C:\Program Files (x86)\BarrierePoker.fr
O43 - CFD: 19/11/2010 - 13:13:22 - [0,589] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 03/11/2010 - 23:31:07 - [5,889] ----D C:\Program Files (x86)\CCleaner
O43 - CFD: 16/02/2011 - 16:45:41 - [97,813] ----D C:\Program Files (x86)\Codemasters
O43 - CFD: 03/04/2012 - 17:21:38 - [817,126] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 04/02/2011 - 15:54:21 - [1,987] ----D C:\Program Files (x86)\Conjugaison
O43 - CFD: 04/02/2011 - 20:33:10 - [153,227] ----D C:\Program Files (x86)\Cordial
O43 - CFD: 12/10/2010 - 13:44:39 - [2,218] ----D C:\Program Files (x86)\CVitaeV4
O43 - CFD: 05/06/2010 - 23:27:20 - [9,831] ----D C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 04/02/2011 - 20:33:08 - [1,130] ----D C:\Program Files (x86)\Diagnostic
O43 - CFD: 22/02/2012 - 16:56:51 - [0] ----D C:\Program Files (x86)\directx
O43 - CFD: 28/12/2010 - 19:59:07 - [96,836] ----D C:\Program Files (x86)\DivX
O43 - CFD: 09/12/2012 - 21:04:05 - [411,630] ----D C:\Program Files (x86)\Druide
O43 - CFD: 21/12/2011 - 15:34:36 - [0] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 03/07/2011 - 16:49:59 - [1535,544] ----D C:\Program Files (x86)\Electronic Arts
O43 - CFD: 02/12/2012 - 19:59:19 - [34,473] ----D C:\Program Files (x86)\Everest Poker.fr
O43 - CFD: 27/12/2011 - 14:11:34 - [731,335] ----D C:\Program Files (x86)\Fallout New Vegas
O43 - CFD: 18/02/2013 - 15:52:15 - [3,760] ----D C:\Program Files (x86)\Fish&SharkOfPoker V0.4
O43 - CFD: 27/02/2012 - 02:34:14 - [14,407] ----D C:\Program Files (x86)\FoxTabPDFConverter
O43 - CFD: 05/06/2010 - 21:30:04 - [18,500] ----D C:\Program Files (x86)\Free Download Manager
O43 - CFD: 09/12/2012 - 21:23:04 - [72,890] ----D C:\Program Files (x86)\Full Tilt Poker
O43 - CFD: 09/12/2012 - 21:20:58 - [61,348] ----D C:\Program Files (x86)\Full Tilt Poker.Fr
O43 - CFD: 20/09/2010 - 22:27:30 - [351,211] ----D C:\Program Files (x86)\Google
O43 - CFD: 03/04/2012 - 17:22:29 - [0] ----D C:\Program Files (x86)\GRETECH
O43 - CFD: 04/11/2010 - 21:12:55 - [5,007] ----D C:\Program Files (x86)\Hercules
O43 - CFD: 25/02/2011 - 11:46:39 - [3,762] ----D C:\Program Files (x86)\ImgBurn
O43 - CFD: 19/01/2013 - 21:29:09 - [213,457] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 24/05/2010 - 17:46:10 - [0,092] ----D C:\Program Files (x86)\Intel
O43 - CFD: 18/12/2011 - 00:05:41 - [6,304] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 19/11/2010 - 13:20:55 - [120,805] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 20/11/2011 - 08:47:00 - [85,388] ----D C:\Program Files (x86)\Java
O43 - CFD: 16/08/2012 - 20:03:06 - [54,964] ----D C:\Program Files (x86)\JDownloader
O43 - CFD: 26/11/2010 - 12:10:20 - [31,085] ----D C:\Program Files (x86)\Jpcsp-r1695
O43 - CFD: 07/12/2011 - 14:07:28 - [72,531] ----D C:\Program Files (x86)\Lexmark 2500 Series
O43 - CFD: 07/12/2011 - 13:39:05 - [0,017] ----D C:\Program Files (x86)\Lexmark Toolbar
O43 - CFD: 29/11/2010 - 01:34:23 - [0,728] ----D C:\Program Files (x86)\Ludi
O43 - CFD: 18/02/2013 - 21:03:37 - [12,170] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 22/04/2011 - 10:31:43 - [439,629] ----D C:\Program Files (x86)\Maxis
O43 - CFD: 22/10/2010 - 19:37:17 - [0,061] ----D C:\Program Files (x86)\McAfee
O43 - CFD: 26/12/2011 - 20:43:43 - [19,830] ----D C:\Program Files (x86)\Media Player Classic - Home Cinema
O43 - CFD: 25/09/2010 - 23:13:55 - [12,503] ----D C:\Program Files (x86)\Messenger Plus! Live
O43 - CFD: 17/04/2012 - 19:43:50 - [49,820] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 17/09/2012 - 16:36:46 - [150,444] ----D C:\Program Files (x86)\Microprose
O43 - CFD: 13/08/2010 - 15:00:41 - [38,002] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 21/06/2010 - 08:48:35 - [0] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 07/05/2011 - 02:01:13 - [8,929] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 13/08/2010 - 15:06:38 - [951,261] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/06/2011 - 20:33:54 - [23,064] ----D C:\Program Files (x86)\Microsoft SDKs
O43 - CFD: 29/12/2012 - 14:38:43 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 14/06/2011 - 20:38:11 - [6,831] ----D C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 23/12/2010 - 16:34:29 - [5,695] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 13/08/2010 - 15:06:37 - [0,757] ----D C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 13/08/2010 - 15:07:11 - [0,620] ----D C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 14/06/2011 - 20:38:42 - [223,285] ----D C:\Program Files (x86)\Microsoft Visual Studio 10.0
O43 - CFD: 13/08/2010 - 15:02:49 - [1,314] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 17/12/2010 - 13:31:06 - [0,934] ----D C:\Program Files (x86)\Microsoft WSE
O43 - CFD: 13/08/2010 - 15:06:37 - [7,881] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 13/02/2013 - 17:14:43 - [47,193] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 15/02/2013 - 18:01:27 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 13/08/2010 - 15:08:05 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 17/12/2011 - 18:07:31 - [6,959] ----D C:\Program Files (x86)\NETGEAR
O43 - CFD: 25/09/2011 - 19:15:14 - [104,313] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 05/11/2010 - 13:56:21 - [2,295] ----D C:\Program Files (x86)\OLITEC
O43 - CFD: 08/10/2012 - 15:30:49 - [0] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 13/11/2012 - 04:10:25 - [91,182] ----D C:\Program Files (x86)\Partouche Poker.fr
O43 - CFD: 01/07/2012 - 13:12:54 - [11,173] ----D C:\Program Files (x86)\PCSX2 0.9.8
O43 - CFD: 10/02/2013 - 17:32:54 - [13,975] ----D C:\Program Files (x86)\PCSX2 1.0.0
O43 - CFD: 09/11/2012 - 23:17:59 - [858,255] ----D C:\Program Files (x86)\PKR
O43 - CFD: 06/11/2011 - 19:16:33 - [120,097] ----D C:\Program Files (x86)\Play+Smile
O43 - CFD: 19/12/2012 - 21:48:47 - [118,905] ----D C:\Program Files (x86)\PokerStars.FR
O43 - CFD: 14/06/2010 - 17:45:20 - [0,009] ----D C:\Program Files (x86)\PokerStars.NET
O43 - CFD: 04/03/2011 - 02:44:55 - [72,799] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 05/11/2010 - 13:51:54 - [3,166] ----D C:\Program Files (x86)\RALINK
O43 - CFD: 13/06/2010 - 12:25:24 - [4,399] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [58,062] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 24/12/2010 - 02:11:50 - [11,080] ----D C:\Program Files (x86)\RocketDock
O43 - CFD: 11/02/2013 - 17:28:34 - [1538,787] ----D C:\Program Files (x86)\RomStation
O43 - CFD: 16/09/2010 - 23:20:51 - [24,354] R---D C:\Program Files (x86)\Skype
O43 - CFD: 10/06/2010 - 01:08:17 - [0] ----D C:\Program Files (x86)\Steam
O43 - CFD: 04/02/2011 - 20:32:23 - [0,444] ----D C:\Program Files (x86)\Synapse Développement
O43 - CFD: 13/03/2011 - 13:21:19 - [0,004] ----D C:\Program Files (x86)\Team17 Software Ltd
O43 - CFD: 16/09/2012 - 23:04:17 - [16,124] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 13/06/2010 - 12:26:43 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 10/02/2011 - 18:53:31 - [25,791] ----D C:\Program Files (x86)\Trickshot
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 29/05/2012 - 20:27:24 - [0,924] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 06/10/2010 - 20:54:15 - [11,660] ----D C:\Program Files (x86)\VDownloader
O43 - CFD: 03/06/2010 - 23:52:44 - [74,909] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 15/02/2013 - 18:05:05 - [8,256] ----D C:\Program Files (x86)\Winamax Poker
O43 - CFD: 14/07/2009 - 16:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 21/10/2012 - 12:31:43 - [92,335] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 15/12/2010 - 02:28:59 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 24/01/2011 - 22:56:16 - [4,896] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 14/07/2009 - 16:24:08 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 14/07/2009 - 16:24:08 - [5,716] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 29/05/2010 - 13:09:05 - [3,707] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 10/04/2011 - 07:35:16 - [27,225] ----D C:\Program Files (x86)\Yuna Software
O43 - CFD: 05/06/2010 - 23:37:05 - [0,000] --H-D C:\Program Files (x86)\Zero G Registry
O43 - CFD: 19/02/2013 - 16:42:24 - [15,128] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 26/02/2012 - 14:36:54 - [327,241] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 17/02/2013 - 16:52:09 - [44,229] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 19/11/2010 - 13:20:31 - [96,807] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 03/04/2012 - 17:22:17 - [28,927] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 12/03/2012 - 14:12:40 - [0,374] ----D C:\Program Files (x86)\Common Files\BioWare
O43 - CFD: 25/03/2011 - 13:37:40 - [0,000] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 13/08/2010 - 15:07:10 - [0,095] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 11/06/2010 - 01:33:28 - [22,895] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 10/02/2011 - 18:53:23 - [17,850] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 20/11/2011 - 09:51:57 - [1,201] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 22/10/2010 - 19:37:17 - [0,782] ----D C:\Program Files (x86)\Common Files\McAfee
O43 - CFD: 08/08/2012 - 19:41:07 - [217,377] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 20/09/2010 - 06:24:43 - [4,521] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 09/06/2010 - 23:24:05 - [2,036] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 11/12/2010 - 17:53:37 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 10/11/2011 - 06:42:44 - [13,587] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 24/05/2010 - 21:31:12 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 26/02/2012 - 14:36:54 - [510,289] ----D C:\ProgramData\Adobe
O43 - CFD: 22/10/2010 - 14:22:50 - [59,067] ----D C:\ProgramData\Alwil Software
O43 - CFD: 19/11/2010 - 13:13:13 - [40,638] ----D C:\ProgramData\Apple
O43 - CFD: 19/11/2010 - 13:20:31 - [64,084] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 04/03/2011 - 01:42:25 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 02/06/2010 - 00:35:11 - [0,017] ----D C:\ProgramData\Blizzard
O43 - CFD: 24/03/2011 - 16:00:36 - [109,342] ----D C:\ProgramData\Blizzard Entertainment
O43 - CFD: 24/05/2010 - 17:42:46 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 03/04/2012 - 16:36:42 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 31/05/2010 - 10:16:52 - [0,001] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 26/09/2012 - 16:54:08 - [4,227] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 10/08/2010 - 20:48:18 - [0,000] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 24/05/2010 - 17:42:46 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 05/06/2010 - 21:29:19 - [0,003] ----D C:\ProgramData\FreeDownloadManager.ORG
O43 - CFD: 20/09/2010 - 22:27:38 - [0,514] ----D C:\ProgramData\Google
O43 - CFD: 19/01/2013 - 21:40:54 - [0,001] ----D C:\ProgramData\InstallShield
O43 - CFD: 12/10/2010 - 00:34:01 - [0] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 07/12/2011 - 13:48:54 - [1,204] ----D C:\ProgramData\ma-config.com
O43 - CFD: 18/02/2013 - 21:03:30 - [5,762] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 23/10/2010 - 12:36:59 - [0,006] ----D C:\ProgramData\McAfee
O43 - CFD: 29/12/2010 - 17:35:32 - [0] ----D C:\ProgramData\Media Center Programs
O43 - CFD: 24/05/2010 - 17:42:46 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 26/02/2012 - 21:59:57 - [1,269] ----D C:\ProgramData\Messenger Plus!
O43 - CFD: 25/11/2011 - 11:13:21 - [0] ----D C:\ProgramData\MGS
O43 - CFD: 23/06/2012 - 22:44:01 - [811,044] -S--D C:\ProgramData\Microsoft
O43 - CFD: 21/06/2010 - 08:48:35 - [0] ----D C:\ProgramData\Microsoft Games
O43 - CFD: 17/12/2011 - 23:47:54 - [0,062] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 24/05/2010 - 17:42:46 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 12/05/2012 - 14:32:14 - [0,034] ----D C:\ProgramData\Mozilla
O43 - CFD: 24/05/2010 - 17:58:05 - [0,019] ----D C:\ProgramData\NETGEAR
O43 - CFD: 11/12/2010 - 17:56:20 - [0,015] ----D C:\ProgramData\Norton
O43 - CFD: 10/08/2010 - 12:53:58 - [5,974] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 19/02/2013 - 14:16:27 - [3,006] ----D C:\ProgramData\NVIDIA
O43 - CFD: 22/10/2010 - 15:29:21 - [0,884] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 12/06/2010 - 14:34:42 - [0,002] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 09/06/2010 - 23:24:04 - [23,511] ----D C:\ProgramData\Skype
O43 - CFD: 05/06/2010 - 23:45:28 - [0,006] ----D C:\ProgramData\Sports Interactive
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 20/09/2010 - 22:27:45 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 11/12/2010 - 17:56:18 - [0,000] ----D C:\ProgramData\Symantec
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 22/12/2011 - 23:15:42 - [0,000] ----D C:\ProgramData\Ubisoft
O43 - CFD: 19/11/2010 - 13:20:56 - [0,854] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 08/10/2012 - 12:41:16 - [114,823] ----D C:\Users\nicolas\AppData\Roaming\.minecraft
O43 - CFD: 18/11/2012 - 18:01:30 - [44,851] ----D C:\Users\nicolas\AppData\Roaming\.Temp_Updater_Directory
O43 - CFD: 13/11/2012 - 04:13:31 - [0,001] ----D C:\Users\nicolas\AppData\Roaming\ACF
O43 - CFD: 15/09/2010 - 12:54:05 - [191,511] ----D C:\Users\nicolas\AppData\Roaming\Adobe
O43 - CFD: 12/06/2010 - 21:00:20 - [0,001] ----D C:\Users\nicolas\AppData\Roaming\Adobe Mini Bridge CS5
O43 - CFD: 03/09/2010 - 15:14:50 - [1,628] ----D C:\Users\nicolas\AppData\Roaming\Aegisub
O43 - CFD: 26/12/2010 - 04:19:26 - [0,003] ----D C:\Users\nicolas\AppData\Roaming\Apple Computer
O43 - CFD: 04/03/2011 - 01:42:21 - [0,000] ----D C:\Users\nicolas\AppData\Roaming\AVS4YOU
O43 - CFD: 11/03/2011 - 18:37:24 - [0,459] ----D C:\Users\nicolas\AppData\Roaming\CVitae
O43 - CFD: 05/06/2010 - 23:27:39 - [0,004] ----D C:\Users\nicolas\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 02/05/2011 - 23:02:30 - [0,218] ----D C:\Users\nicolas\AppData\Roaming\DivX
O43 - CFD: 09/12/2012 - 21:06:15 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\Druide
O43 - CFD: 28/11/2012 - 15:38:43 - [0,000] ----D C:\Users\nicolas\AppData\Roaming\dvdcss
O43 - CFD: 13/03/2011 - 12:26:49 - [2,181] ----D C:\Users\nicolas\AppData\Roaming\fr.barrierepoker.air.D043989C8F5E91300BF71855036B28F854BB8613.1
O43 - CFD: 05/01/2013 - 05:05:07 - [0] ----D C:\Users\nicolas\AppData\Roaming\Framasoft
O43 - CFD: 18/09/2011 - 02:04:26 - [0,084] ----D C:\Users\nicolas\AppData\Roaming\Free Download Manager
O43 - CFD: 12/08/2010 - 21:20:19 - [0] ----D C:\Users\nicolas\AppData\Roaming\GetRightToGo
O43 - CFD: 20/09/2010 - 22:31:40 - [0] ----D C:\Users\nicolas\AppData\Roaming\Google
O43 - CFD: 24/05/2010 - 17:43:26 - [0] ----D C:\Users\nicolas\AppData\Roaming\Identities
O43 - CFD: 25/09/2010 - 14:50:49 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\ImgBurn
O43 - CFD: 13/06/2010 - 01:41:16 - [0] RSH-D C:\Users\nicolas\AppData\Roaming\install
O43 - CFD: 12/08/2010 - 21:20:26 - [0] ----D C:\Users\nicolas\AppData\Roaming\InstallShield
O43 - CFD: 07/12/2011 - 14:10:47 - [0,116] ----D C:\Users\nicolas\AppData\Roaming\Lexmark Productivity Studio
O43 - CFD: 28/12/2010 - 19:59:07 - [14,464] ----D C:\Users\nicolas\AppData\Roaming\Local
O43 - CFD: 18/12/2010 - 19:34:51 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\Logishrd
O43 - CFD: 18/12/2010 - 19:34:51 - [0] ----D C:\Users\nicolas\AppData\Roaming\Logitech
O43 - CFD: 24/05/2010 - 17:56:51 - [0,060] ----D C:\Users\nicolas\AppData\Roaming\Macromedia
O43 - CFD: 18/02/2013 - 21:04:12 - [0,263] ----D C:\Users\nicolas\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 16:35:05 - [0] ----D C:\Users\nicolas\AppData\Roaming\Media Center Programs
O43 - CFD: 06/01/2013 - 03:05:04 - [0] ----D C:\Users\nicolas\AppData\Roaming\Media Player Classic
O43 - CFD: 09/11/2012 - 03:57:53 - [3,420] ----D C:\Users\nicolas\AppData\Roaming\Microgaming
O43 - CFD: 06/01/2013 - 03:42:58 - [11,277] -S--D C:\Users\nicolas\AppData\Roaming\Microsoft
O43 - CFD: 21/06/2010 - 22:50:34 - [0,000] ----D C:\Users\nicolas\AppData\Roaming\Microsoft Game Studios
O43 - CFD: 17/02/2011 - 06:28:38 - [20,495] ----D C:\Users\nicolas\AppData\Roaming\Mozilla
O43 - CFD: 13/11/2012 - 04:13:53 - [7,861] ----D C:\Users\nicolas\AppData\Roaming\Mozilla-Cache
O43 - CFD: 30/09/2011 - 18:48:16 - [4,491] ----D C:\Users\nicolas\AppData\Roaming\NVIDIA
O43 - CFD: 19/09/2012 - 15:05:08 - [0,001] ----D C:\Users\nicolas\AppData\Roaming\PartyFrance
O43 - CFD: 11/01/2011 - 17:20:32 - [0,012] ----D C:\Users\nicolas\AppData\Roaming\Red Alert 3
O43 - CFD: 29/05/2010 - 13:36:14 - [0,008] R-H-D C:\Users\nicolas\AppData\Roaming\SecuROM
O43 - CFD: 17/12/2010 - 22:30:55 - [2,923] ----D C:\Users\nicolas\AppData\Roaming\Skype
O43 - CFD: 17/12/2010 - 22:19:23 - [0,012] ----D C:\Users\nicolas\AppData\Roaming\skypePM
O43 - CFD: 05/06/2010 - 23:44:42 - [12,742] ----D C:\Users\nicolas\AppData\Roaming\Sports Interactive
O43 - CFD: 12/06/2010 - 21:00:20 - [0] ----D C:\Users\nicolas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 16/09/2012 - 23:15:16 - [0,000] ----D C:\Users\nicolas\AppData\Roaming\TeamViewer
O43 - CFD: 09/02/2013 - 17:34:03 - [3,438] ----D C:\Users\nicolas\AppData\Roaming\U3
O43 - CFD: 20/12/2011 - 20:48:46 - [5,754] ----D C:\Users\nicolas\AppData\Roaming\Ubisoft
O43 - CFD: 10/02/2013 - 17:41:38 - [12,646] ----D C:\Users\nicolas\AppData\Roaming\uTorrent
O43 - CFD: 06/10/2010 - 20:54:36 - [0] ----D C:\Users\nicolas\AppData\Roaming\VDownloader
O43 - CFD: 19/02/2013 - 15:42:04 - [2,054] ----D C:\Users\nicolas\AppData\Roaming\vlc
O43 - CFD: 11/10/2010 - 19:01:36 - [0,591] ----D C:\Users\nicolas\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O43 - CFD: 29/05/2010 - 13:09:16 - [0,000] ----D C:\Users\nicolas\AppData\Roaming\WinRAR
O43 - CFD: 11/08/2010 - 22:01:57 - [0,032] ----D C:\Users\nicolas\AppData\Roaming\YoudaGames
O43 - CFD: 09/11/2011 - 18:37:24 - [12,810] ----D C:\Users\nicolas\AppData\Local\AChat
O43 - CFD: 09/01/2011 - 16:20:25 - [0,000] ----D C:\Users\nicolas\AppData\Local\Activision
O43 - CFD: 26/02/2012 - 14:36:13 - [165,029] ----D C:\Users\nicolas\AppData\Local\Adobe
O43 - CFD: 14/10/2010 - 21:25:45 - [14,964] ----D C:\Users\nicolas\AppData\Local\adslTV
O43 - CFD: 19/11/2010 - 13:13:46 - [0] ----D C:\Users\nicolas\AppData\Local\Apple
O43 - CFD: 04/03/2011 - 02:25:19 - [0,000] ----D C:\Users\nicolas\AppData\Local\Apple Computer
O43 - CFD: 24/05/2010 - 17:43:00 - [0] ----D C:\Users\nicolas\AppData\Local\Application Data
O43 - CFD: 04/07/2011 - 12:44:48 - [0,007] ----D C:\Users\nicolas\AppData\Local\ApplicationHistory
O43 - CFD: 12/08/2010 - 21:26:05 - [14,383] ----D C:\Users\nicolas\AppData\Local\assembly
O43 - CFD: 16/10/2010 - 17:57:56 - [3,321] ----D C:\Users\nicolas\AppData\Local\cache
O43 - CFD: 27/01/2013 - 23:25:31 - [39,727] ----D C:\Users\nicolas\AppData\Local\CrashDumps
O43 - CFD: 10/11/2010 - 18:07:19 - [0] ----D C:\Users\nicolas\AppData\Local\CrashRpt
O43 - CFD: 29/05/2012 - 20:27:49 - [0,860] ----D C:\Users\nicolas\AppData\Local\CRE
O43 - CFD: 18/02/2013 - 20:08:06 - [0,422] ----D C:\Users\nicolas\AppData\Local\Diagnostics
O43 - CFD: 15/06/2010 - 18:20:07 - [12,927] ----D C:\Users\nicolas\AppData\Local\Downloaded Installations
O43 - CFD: 27/02/2012 - 13:40:21 - [0,001] ----D C:\Users\nicolas\AppData\Local\EA Games
O43 - CFD: 18/01/2012 - 15:33:56 - [0] ----D C:\Users\nicolas\AppData\Local\ElevatedDiagnostics
O43 - CFD: 09/07/2011 - 09:07:25 - [0,000] ----D C:\Users\nicolas\AppData\Local\FalloutNV
O43 - CFD: 05/01/2013 - 05:05:07 - [8,298] ----D C:\Users\nicolas\AppData\Local\Framasoft
O43 - CFD: 09/12/2012 - 21:23:02 - [0,635] ----D C:\Users\nicolas\AppData\Local\FullTiltPoker
O43 - CFD: 14/05/2011 - 14:23:52 - [0,590] ----D C:\Users\nicolas\AppData\Local\FullTiltPoker.fr
O43 - CFD: 11/02/2013 - 14:51:14 - [165,204] ----D C:\Users\nicolas\AppData\Local\Google
O43 - CFD: 24/05/2010 - 17:43:00 - [0] ----D C:\Users\nicolas\AppData\Local\Historique
O43 - CFD: 29/11/2010 - 03:13:45 - [13,694] ----D C:\Users\nicolas\AppData\Local\Ludi
O43 - CFD: 17/06/2012 - 22:25:06 - [0] ----D C:\Users\nicolas\AppData\Local\Macromedia
O43 - CFD: 06/01/2013 - 03:42:35 - [1291,801] ----D C:\Users\nicolas\AppData\Local\Microsoft
O43 - CFD: 21/06/2010 - 08:48:23 - [0,003] ----D C:\Users\nicolas\AppData\Local\Microsoft Game Studios
O43 - CFD: 26/03/2012 - 01:42:14 - [0,344] ----D C:\Users\nicolas\AppData\Local\Microsoft Games
O43 - CFD: 26/10/2011 - 14:24:04 - [0,069] ----D C:\Users\nicolas\AppData\Local\Microsoft Help
O43 - CFD: 24/05/2010 - 20:52:45 - [143,807] ----D C:\Users\nicolas\AppData\Local\Mozilla
O43 - CFD: 08/01/2012 - 01:00:55 - [50,416] ----D C:\Users\nicolas\AppData\Local\Mozilla Firefox
O43 - CFD: 03/02/2011 - 23:35:17 - [0,950] ----D C:\Users\nicolas\AppData\Local\P5
O43 - CFD: 13/11/2012 - 04:07:18 - [0,000] ----D C:\Users\nicolas\AppData\Local\Partouche Technologies
O43 - CFD: 19/02/2013 - 14:32:06 - [3,912] ----D C:\Users\nicolas\AppData\Local\PokerStars.FR
O43 - CFD: 14/06/2010 - 17:42:44 - [0,764] ----D C:\Users\nicolas\AppData\Local\PokerStars.NET
O43 - CFD: 18/02/2013 - 21:03:09 - [0] ----D C:\Users\nicolas\AppData\Local\Programs
O43 - CFD: 13/09/2010 - 16:38:46 - [0,010] ----D C:\Users\nicolas\AppData\Local\storage
O43 - CFD: 19/02/2013 - 16:41:07 - [1,107] ----D C:\Users\nicolas\AppData\Local\Temp
O43 - CFD: 24/05/2010 - 17:43:00 - [0] ----D C:\Users\nicolas\AppData\Local\Temporary Internet Files
O43 - CFD: 17/02/2011 - 05:41:54 - [0,008] ----D C:\Users\nicolas\AppData\Local\The Lord of the Rings Online
O43 - CFD: 04/04/2011 - 21:54:46 - [5,826] ----D C:\Users\nicolas\AppData\Local\Turbine
O43 - CFD: 01/02/2011 - 15:35:19 - [0] ----D C:\Users\nicolas\AppData\Local\Ubisoft
O43 - CFD: 07/10/2010 - 14:13:27 - [0,075] ----D C:\Users\nicolas\AppData\Local\Unity
O43 - CFD: 10/02/2013 - 17:30:49 - [0,197] ----D C:\Users\nicolas\AppData\Local\Updater4352
O43 - CFD: 08/10/2010 - 18:13:38 - [0,001] ----D C:\Users\nicolas\AppData\Local\VDownloader
O43 - CFD: 11/08/2010 - 15:07:51 - [-687,947] ----D C:\Users\nicolas\AppData\Local\VirtualStore
O43 - CFD: 18/02/2013 - 15:00:27 - [0,023] ----D C:\Users\nicolas\AppData\Local\Windows Live
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/08/2010 - 11:27:34 - [0,000] R---D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/06/2010 - 17:51:30 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 12/10/2010 - 13:44:42 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CVitaeV4
O43 - CFD: 22/02/2012 - 18:39:39 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 11/08/2010 - 14:51:34 - [0] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Illusion
O43 - CFD: 03/01/2011 - 01:55:29 - [0] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LuckyJeux Poker
O43 - CFD: 29/11/2010 - 01:34:18 - [0,003] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ludi
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/08/2010 - 12:24:39 - [0] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCsoft
O43 - CFD: 18/12/2011 - 10:29:13 - [0,001] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PKR
O43 - CFD: 21/03/2011 - 21:04:16 - [0] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RomStation
O43 - CFD: 04/12/2011 - 17:52:28 - [0] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sierra
O43 - CFD: 18/02/2013 - 20:50:44 - [0,000] R---D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/10/2010 - 18:53:11 - [0] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TRABULANCE
O43 - CFD: 17/12/2010 - 13:24:56 - [0,003] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 11/02/2011 - 23:51:35 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
O43 - CFD: 28/10/2011 - 17:51:53 - [0,002] ----D C:\Users\nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\??????
~ Scan Program Folder in 00mn 07s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.90D298AC9D1234E1D3A3AB80677F131F] - 19/02/2013 - 15:29:55 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
O44 - LFC:[MD5.0A9EE32A4568C7BC9E48AE4D4FCA797C] - 19/02/2013 - 14:25:44 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1600512]
O44 - LFC:[MD5.FAE02EE751D40FB91FA27033913E6F63] - 19/02/2013 - 14:16:27 ---A- . (...) -- C:\Windows\setupact.log   [16192]
O44 - LFC:[MD5.A2B5B72A8C740C13B1BA69A5614F5173] - 19/02/2013 - 14:16:25 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.6213D9E43838BAB1A8BFE011E01C90C9] - 18/02/2013 - 21:18:26 ---A- . (...) -- C:\Windows\PFRO.log   [5260]
O44 - LFC:[MD5.D79751B8E5E28AE9AFB021A44B57CD8B] - 18/02/2013 - 20:50:55 ---A- . (...) -- C:\AdwCleaner[S1].txt   [19783]
O44 - LFC:[MD5.70EAA2E39DDEEA8956F004B50CDFF5B0] - 09/02/2013 - 17:30:46  . (...) -- C:\Windows\System32\perfc009.dat   []
O44 - LFC:[MD5.F1642493199B704DD15915EF7EB88E94] - 09/02/2013 - 17:30:46  . (...) -- C:\Windows\System32\perfc00C.dat   []
O44 - LFC:[MD5.00573D5D311CAFC8A475FE9AEF0274F2] - 09/02/2013 - 17:30:46  . (...) -- C:\Windows\System32\perfh009.dat   []
O44 - LFC:[MD5.EDC473511C5C6474CD670CAB511B9B35] - 09/02/2013 - 17:30:46  . (...) -- C:\Windows\System32\perfh00C.dat   []
O44 - LFC:[MD5.6B765789FE73437781B2F05BAEF553A2] - 09/02/2013 - 17:30:46 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1698730]
O44 - LFC:[MD5.70EAA2E39DDEEA8956F004B50CDFF5B0] - 09/02/2013 - 17:30:46 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [125990]
O44 - LFC:[MD5.F1642493199B704DD15915EF7EB88E94] - 09/02/2013 - 17:30:46 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [154564]
O44 - LFC:[MD5.00573D5D311CAFC8A475FE9AEF0274F2] - 09/02/2013 - 17:30:46 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [663860]
O44 - LFC:[MD5.EDC473511C5C6474CD670CAB511B9B35] - 09/02/2013 - 17:30:46 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [757914]
O44 - LFC:[MD5.6B765789FE73437781B2F05BAEF553A2] - 09/02/2013 - 17:30:46 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1698730]
O44 - LFC:[MD5.92EB844D90615CB266F84C3202B8786E] - 14/12/2012 - 16:49:28  . (...) -- C:\Windows\System32\Drivers\mbam.sys   []
~ Scan Files in 00mn 07s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL
~ Scan ShellExecuteHooks in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [491088]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys   [33856]
O58 - SDL:[MD5.B4556F3D468C8DCB0B259D9D866CD4C4] - 02/03/2003 - 17:44:26 ---A- . (...) -- C:\Windows\SysWOW64\drivers\enodpl.sys   [7552]
~ Scan Drivers in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 07/03/2012 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 07/03/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 07/03/2012 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 07/03/2012 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 07/03/2012 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 07/03/2012 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64)  .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 01/10/2008 - C:\Windows\System32\DRIVERS\jswpslwfx.sys (JSWPSLWF)  .(.Atheros Communications, Inc. - Atheros Security NDIS 6.0 Filter Driver.) - LEGACY_JSWPSLWF
O64 - Services: CurCS - 14/12/2012 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector)  .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 28/11/2006 - C:\Windows\System32\Drivers\PCASp50a64.sys (PCASp50a64)  .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver (AMD64).) - LEGACY_PCASP50A64
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd)  .(...) - LEGACY_SPTD
~ Scan Services in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: prefs.js [nicolas - lo0cldih.default] user_pref("avg.install.userSPSettings", "Delta Search");
O69 - SBI: prefs.js [nicolas - lo0cldih.default] user_pref("extensions.crossrider.bic", "13cc6a7528ae4572c20afa400ecb5a4d");
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {D39A6A5A-E563-430D-89D9-CBEACF3760AF} - (Secure Search) - http://fr.search.yahoo.com
~ Scan Keys in 00mn 00s



---\\ Crack & Keygen Files (O82)
G:\prg442\sc2cracker.exe
~ Scan Files in 01mn 44s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1114624]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [208384]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.3FEDBEECF37737BB669965B5848E4BBD] [SPRF][09/06/2010] (...) -- C:\ProgramData\ezsidmv.dat   [56]
[MD5.F6AE7F34081B7FD01B08A59728CD0090] [SPRF][14/08/2010] (...) -- C:\ProgramData\nvUnsupRes.dat   [75]
[MD5.799288F0E723D895051A0D057707B71E] [SPRF][16/02/2011] (...) -- C:\Users\nicolas\AppData\Local\fusioncache.dat   [95]
[MD5.FBAB280D0CAC5E21C72F0A1A7B5B9608] [SPRF][24/05/2006] (.Macrovision Corporation - Setup.exe.) -- C:\Users\nicolas\AppData\Local\Temp\_isEB77.exe   [455600]
[MD5.A079519FFD3857560FA11EFBA92C0474] [SPRF][18/02/2013] (...) -- C:\Users\nicolas\Desktop\adwcleaner0.exe   [587671]
[MD5.F7F9E8E7C7A752EAB409F01C483C36DE] [SPRF][10/02/2013] (.Pas de propriétaire - Installs PCSX2, a Playstation 2 Emulator for the PC..) -- C:\Users\nicolas\Desktop\pcsx2-1.0.0-r5350-setup.exe   [8945660]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll   [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe   [196608]
[MD5.61FB16B6016BCC9AA42E02F787DC87FC] [SPRF][26/01/2010] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe   [1955384]
[MD5.80F4A456633F78A26A3C6B16E64EFEC5] [SPRF][28/09/2007] (.Microsoft - Uno Messenger.) -- C:\Windows\Downloaded Program Files\GAME_UNO1.dll   [381960]
[MD5.B8F39C9E0F0B71E454DBA431CF3B99C9] [SPRF][11/08/2005] (.Macrovision Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll   [417792]
[MD5.8945CCA5FC4F25168E8B6F401EFAF51F] [SPRF][22/02/2007] (.Microsoft Corporation - Zone.com Stats Client for MSN Messenger.) -- C:\Windows\Downloaded Program Files\MessengerStatsPAClient.dll   [304544]
~ Scan Files in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "TCP Query User{22441F69-7355-41CE-B285-92F7DBAD1C82}C:\world of warcraft\launcher.exe" |In - Private - P6 - TRUE | .(...) -- C:\world of warcraft\launcher.exe (.not file.)
O87 - FAEL: "UDP Query User{568DD01D-667B-4BAB-8047-5E654CA14ED8}C:\world of warcraft\launcher.exe" |In - Private - P17 - TRUE | .(...) -- C:\world of warcraft\launcher.exe (.not file.)
O87 - FAEL: "{A3403D64-5B55-4C1A-B20A-3C4BA7064417}" |In - Private - P6 - TRUE | .(...) -- C:\World of Warcraft\WoW-3.2.0-frFR-downloader.exe (.not file.)
O87 - FAEL: "{08675A30-C104-4826-AE4A-6F3193490A0E}" |In - Private - P17 - TRUE | .(...) -- C:\World of Warcraft\WoW-3.2.0-frFR-downloader.exe (.not file.)
O87 - FAEL: "TCP Query User{0D77D921-9AF3-4F8A-BC56-B42D46A0A74E}C:\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-frfr-downloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-frfr-downloader.exe (.not 
O87 - FAEL: "UDP Query User{A3DEA1DF-5F0C-4E4F-86E3-08C57D4E4144}C:\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-frfr-downloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-frfr-downloader.exe (.not
O87 - FAEL: "{8690C233-3B9B-4DCC-AE9F-18F3DDDA337C}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe (.not file.)
O87 - FAEL: "{8D236045-BECE-40D8-9D06-2E72F269017D}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe (.not file.)
O87 - FAEL: "TCP Query User{0A9BE8BE-A729-497A-8940-59C24EB7763D}C:\world of warcraft\repair.exe" |In - Private - P6 - TRUE | .(...) -- C:\world of warcraft\repair.exe (.not file.)
O87 - FAEL: "UDP Query User{1462C396-D6F0-4E49-AB52-A0394F83DDBD}C:\world of warcraft\repair.exe" |In - Private - P17 - TRUE | .(...) -- C:\world of warcraft\repair.exe (.not file.)
O87 - FAEL: "TCP Query User{FDA4D55C-5684-4581-9556-7BC84F24A924}C:\world of warcraft\wow-3.3.0.10958-to-3.3.0.11159-frfr-downloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\world of warcraft\wow-3.3.0.10958-to-3.3.0.11159-frfr-downloader.exe (.not 
O87 - FAEL: "UDP Query User{7049BC84-FDAC-4105-A346-08D97351974C}C:\world of warcraft\wow-3.3.0.10958-to-3.3.0.11159-frfr-downloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\world of warcraft\wow-3.3.0.10958-to-3.3.0.11159-frfr-downloader.exe (.not
O87 - FAEL: "{4438A2FB-CA23-437A-9B09-FB025219B3E1}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{B2DC5FCC-E53A-4943-A874-9CB2B8BE3965}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{0DDBAA2A-5FB9-49A2-B6C2-AFC61624CA48}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{F0BEBF1A-3887-444E-8865-27E69EFE1C2D}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{5BC3EBB9-A184-4883-A948-A414689A8796}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "TCP Query User{403624DC-1B4B-4AA1-B5B2-58E487522D08}C:\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-frfr-downloader.exe" |In - Private - P6 - TRUE | .(...) -- C:\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-frfr-downloader.exe (.not 
O87 - FAEL: "UDP Query User{AAF90DFD-5204-4702-B3DA-9FE1D1430982}C:\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-frfr-downloader.exe" |In - Private - P17 - TRUE | .(...) -- C:\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-frfr-downloader.exe (.not
O87 - FAEL: "{6A09C552-1311-4E5D-BB23-0C6150409779}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{4E985B7F-665B-4F64-85C8-20D82BA5EA49}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{8170AD8D-9A92-4CF2-82B3-754B8BD89BE8}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{8E50DB0C-3EFD-45DF-B43B-DCADCA98409A}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{5FE82072-C210-46EB-B901-73CBB1868B4E}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe (.not file.)
O87 - FAEL: "{958DD57C-7A86-4D57-8468-BBDCA9BA8393}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe (.not file.)
O87 - FAEL: "{73FDA069-FEF8-47C1-9D72-F4C835B8AD9F}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (.not file.)
O87 - FAEL: "{0648BF40-DEC8-4953-845E-0B4C212C9320}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{39E1F80B-8B9A-48D8-A680-0288A6C53689}C:\program files (x86)\ubisoft\tom clancy's splinter cell conviction\src\system\conviction_game.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\ubisoft\tom clancy's splinte
O87 - FAEL: "UDP Query User{5B6E7DBF-EB22-4137-9BCD-8FBA2DF8E33E}C:\program files (x86)\ubisoft\tom clancy's splinter cell conviction\src\system\conviction_game.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\ubisoft\tom clancy's splint
O87 - FAEL: "{560C0DDE-1EBA-4870-85C2-A774F41E09D3}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{0D643EEF-F962-4B03-9365-CA3453E6CC32}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{E628D431-8CC9-47F6-B572-D9C007C87E19}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\World of Warcraft\Launcher.exe (.not file.)
O87 - FAEL: "{574BCEE7-CC6B-4BE9-A0CA-6328E10255D9}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\World of Warcraft\Launcher.exe (.not file.)
O87 - FAEL: "{95A9AAF0-A080-46E7-BD9C-6531D54DBCEA}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\World of Warcraft\WoW-3.2.0-frFR-downloader.exe (.not file.)
O87 - FAEL: "{883ADD1D-6B21-4E3C-8296-A49469621798}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\World of Warcraft\WoW-3.2.0-frFR-downloader.exe (.not file.)
O87 - FAEL: "{A41ACAA1-9A10-469A-99C5-54086B8C2282}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe (.not file.)
O87 - FAEL: "{3C0F5AAC-0B39-46A4-A07F-6378E2FBE8CD}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe (.not file.)
O87 - FAEL: "TCP Query User{C506CA6F-1030-43DB-88F3-8C16BF87C8B1}C:\program files (x86)\call of duty modern warfare 2\iw4mp.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\call of duty modern warfare 2\iw4mp.exe (.not file.)
O87 - FAEL: "UDP Query User{19837BFC-9A92-4725-92C9-53508B31CFE3}C:\program files (x86)\call of duty modern warfare 2\iw4mp.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\call of duty modern warfare 2\iw4mp.exe (.not file.)
O87 - FAEL: "TCP Query User{0E2293E6-1F14-4C38-8C5A-7C33397730E2}C:\program files (x86)\call of duty modern warfare 2\iw4mp.dat" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\call of duty modern warfare 2\iw4mp.dat (.not file.)
O87 - FAEL: "UDP Query User{2266D09B-B1D8-4770-824A-6F7C58A3F46A}C:\program files (x86)\call of duty modern warfare 2\iw4mp.dat" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\call of duty modern warfare 2\iw4mp.dat (.not file.)
O87 - FAEL: "TCP Query User{6C0135E0-7E8F-4A9C-87FF-A469ADDED34E}C:\program files (x86)\call of duty modern warfare 2\iw4sp.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\call of duty modern warfare 2\iw4sp.exe (.not file.)
O87 - FAEL: "UDP Query User{CEE00CE7-C92B-49DE-9CD8-C087133AA9C4}C:\program files (x86)\call of duty modern warfare 2\iw4sp.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\call of duty modern warfare 2\iw4sp.exe (.not file.)
O87 - FAEL: "TCP Query User{C02E6501-A6C3-45FE-A9E0-C2F454489BBB}C:\program files (x86)\free download manager\fdm.exe" | In - Public - P6 - TRUE | .(.FreeDownloadManager.ORG.) -- C:\program files (x86)\free download manager\fdm.exe
O87 - FAEL: "UDP Query User{EC7533FB-BC07-4C80-9EFE-71C80DE98EDC}C:\program files (x86)\free download manager\fdm.exe" | In - Public - P17 - TRUE | .(.FreeDownloadManager.ORG.) -- C:\program files (x86)\free download manager\fdm.exe
O87 - FAEL: "{4AA3EC1C-A59A-4FDE-8C26-B82E4A02CA92}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{4F43367A-F917-4964-B525-70F3D84C4B13}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{7B21CDA6-FE74-405C-8501-7C9770925069}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{3E8904E3-40B6-4066-8992-25EEDCC008A9}" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe (.not file.)
O87 - FAEL: "{DE7A9242-E405-4FE0-BB17-C576DD63AE4D}" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Sports Interactive\Football Manager 2010\fm.exe (.not file.)
O87 - FAEL: "TCP Query User{C92E7D22-9E78-4907-ADE8-D41E4647F6A5}C:\programmes\call of\blackops.exe" |In - Public - P6 - TRUE | .(...) -- C:\programmes\call of\blackops.exe (.not file.)
O87 - FAEL: "UDP Query User{DD9FB059-FFC3-43CD-B6C6-F70A57E5BFBB}C:\programmes\call of\blackops.exe" |In - Public - P17 - TRUE | .(...) -- C:\programmes\call of\blackops.exe (.not file.)
O87 - FAEL: "TCP Query User{537CC751-7697-425C-835A-699E49DE2B3E}C:\program files (x86)\electronic arts\alerte rouge 3\data\ra3_1.3.game" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\electronic arts\alerte rouge 3\data\ra3_1.3.game (.not 
O87 - FAEL: "UDP Query User{E0C87DC1-11CB-4C17-8D76-E8621F316480}C:\program files (x86)\electronic arts\alerte rouge 3\data\ra3_1.3.game" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\electronic arts\alerte rouge 3\data\ra3_1.3.game (.not
O87 - FAEL: "{AC0D6E9C-F84A-4786-82CA-82166E8CAE7C}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe (.not file.)
O87 - FAEL: "{F546BA57-6912-4E8E-B244-7636A315B992}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe (.not file.)
O87 - FAEL: "TCP Query User{A526A691-68C8-455F-BB4A-0E044920B078}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe (.not file.)
O87 - FAEL: "UDP Query User{EF91F06D-C1C0-4E43-9A0C-82D0BB7A0A8A}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe (.not file.)
O87 - FAEL: "{D74BDAFA-440A-42ED-9024-83848A218CAA}" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe (.not file.)
O87 - FAEL: "{FAEEC67B-514B-443D-BE52-CEF1DB99DA34}" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe (.not file.)
O87 - FAEL: "TCP Query User{B8983E11-1617-4BBC-94B7-E042429FCAE8}C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\codemasters\le seigneur des anneaux online\lo
O87 - FAEL: "UDP Query User{7C99F39E-3916-4FDA-832B-DD35513305BF}C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\codemasters\le seigneur des anneaux online\l
O87 - FAEL: "{F7E263E0-E6D3-42FD-8290-D75AD515D38D}" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe (.not file.)
O87 - FAEL: "{785BDC82-13BF-40F5-9838-1CABE5ED86F6}" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe (.not file.)
O87 - FAEL: "{BD4C6823-71C2-47A8-B4BB-3C6999377BC6}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.exe (.not file.)
O87 - FAEL: "{894C6B28-6F8F-4ED0-8F75-01053BB3165F}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.exe (.not file.)
O87 - FAEL: "{7C1F5BE6-BD93-4988-950B-F7034348992B}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe (.not file.)
O87 - FAEL: "{EA17E795-A431-47F0-837C-B30B817D94D8}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe (.not file.)
O87 - FAEL: "TCP Query User{E71C4529-D838-44B0-9190-038676C1F936}C:\program files (x86)\team17 software ltd\worms forts under siege\wf.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\team17 software ltd\worms forts under siege\wf.exe (.
O87 - FAEL: "UDP Query User{9866C723-69EC-4547-A49A-63276ACD513A}C:\program files (x86)\team17 software ltd\worms forts under siege\wf.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\team17 software ltd\worms forts under siege\wf.exe (
O87 - FAEL: "{91351496-5C44-48D1-92C4-ACF0BEEFBD75}" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\team17 software ltd\worms forts under siege\wf.exe (.not file.)
O87 - FAEL: "{D391814D-42BC-4099-8A07-6B09911B85A4}" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\team17 software ltd\worms forts under siege\wf.exe (.not file.)
O87 - FAEL: "{BBB18FA7-BA64-457D-BBF3-98BF2674AA5A}" |In - Public - P6 - TRUE | .(...) -- C:\World of Warcraft\Launcher.exe (.not file.)
O87 - FAEL: "{77201EDB-33E1-40E4-9A4B-630D4B92AF23}" |In - Public - P17 - TRUE | .(...) -- C:\World of Warcraft\Launcher.exe (.not file.)
O87 - FAEL: "{71B3E468-491F-461F-B97A-8538BB931A65}" |In - Public - P6 - TRUE | .(...) -- C:\World of Warcraft\Launcher.patch.exe (.not file.)
O87 - FAEL: "{81C2973A-E093-4E94-94A2-76798BC371AD}" |In - Public - P17 - TRUE | .(...) -- C:\World of Warcraft\Launcher.patch.exe (.not file.)
O87 - FAEL: "TCP Query User{9C2EFA4E-9CC8-4B08-BEC9-C31A63550F1F}C:\program files (x86)\java\jre6\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre6\bin\javaw.exe
O87 - FAEL: "UDP Query User{489610B5-9D94-42C9-B9DC-9DC529D0BD09}C:\program files (x86)\java\jre6\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files (x86)\java\jre6\bin\javaw.exe
O87 - FAEL: "{3DE66BD5-EAF7-4B6E-BDBB-6344BE8D68E1}" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre6\bin\javaw.exe
O87 - FAEL: "{6C7025BE-02B0-4FCB-A161-C1984CF21927}" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre6\bin\javaw.exe
O87 - FAEL: "{E5E09B3E-0816-48E9-9B23-F5068009F50A}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O87 - FAEL: "{74A8EBD1-233A-4C24-9B66-A6512FF16659}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O87 - FAEL: "{02056E05-A207-4F67-88E2-1095F195B7C2}" | In - Public - P6 - TRUE | .(.Sierra Entertainment, Inc. - SWAT 4 - The Stetchkov Syndicate.) -- G:\prg442\Swat4\ContentExpansion\System\Swat4X.exe
O87 - FAEL: "{A651217A-A40C-4DB4-8EA0-2AC7046D60D8}" | In - Public - P17 - TRUE | .(.Sierra Entertainment, Inc. - SWAT 4 - The Stetchkov Syndicate.) -- G:\prg442\Swat4\ContentExpansion\System\Swat4X.exe
O87 - FAEL: "{310F3BE3-D446-4F50-A8B6-432F1538E60D}" | In - Public - P6 - TRUE | .(.Sierra Entertainment, Inc. - SWAT 4 - The Stetchkov Syndicate.) -- G:\prg442\Swat4\ContentExpansion\System\Swat4XDedicatedServer.exe
O87 - FAEL: "{87AE0445-30E7-4B07-B884-D379144298E1}" | In - Public - P17 - TRUE | .(.Sierra Entertainment, Inc. - SWAT 4 - The Stetchkov Syndicate.) -- G:\prg442\Swat4\ContentExpansion\System\Swat4XDedicatedServer.exe
O87 - FAEL: "{7242797E-BA31-4650-AA40-78E39ED8DEF7}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\SysWOW64\lxddcoms.exe
O87 - FAEL: "{81CA31F9-2828-42DF-80FE-06F18CEAEB4F}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\SysWOW64\lxddcoms.exe
O87 - FAEL: "{C1207D52-6CEE-4EC2-83E6-742F75402147}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{A2620729-FBDA-4469-832D-E9EA0BBD456B}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "TCP Query User{17696BA8-BFBA-406E-AD8F-178C8CB2A9F0}C:\program files (x86)\lexmark 2500 series\app4r.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\lexmark 2500 series\app4r.exe
O87 - FAEL: "UDP Query User{003E0002-62A4-4888-B98F-5520077D0843}C:\program files (x86)\lexmark 2500 series\app4r.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\lexmark 2500 series\app4r.exe
O87 - FAEL: "TCP Query User{54E6C7F2-02E3-4263-ADD6-AF85D177A65E}C:\program files (x86)\lexmark 2500 series\lxddamon.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\lexmark 2500 series\lxddamon.exe
O87 - FAEL: "UDP Query User{C3217DA4-030D-41F5-B4B5-DCF8FDE47E2D}C:\program files (x86)\lexmark 2500 series\lxddamon.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\lexmark 2500 series\lxddamon.exe
O87 - FAEL: "{88F922C5-6C34-447C-A2AE-362C98FAFD44}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddamon.exe
O87 - FAEL: "{722B947D-40AD-4F25-B22A-298467DF3140}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Device Monitor Application.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddamon.exe
O87 - FAEL: "{1B89912E-8CE9-40FC-9857-FF03413B43C4}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\App4R.exe
O87 - FAEL: "{46B9FFBA-FD73-4136-938B-53C9A155100D}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printing Application.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\App4R.exe
O87 - FAEL: "{A186BE68-03CC-4475-8ECE-6E7D0F64B990}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Device Monitor.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddmon.exe
O87 - FAEL: "{35ECBD15-A9AF-4E13-BB21-C92537D58C46}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Device Monitor.) -- C:\Program Files (x86) (x86)\Lexmark 2500 Series\lxddmon.exe
O87 - FAEL: "{261DFA99-1378-472C-9E3C-F2A59BD502C5}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{78BE7813-3CE9-4E2E-9BF1-A18B6E257150}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{DFD5D756-E81F-4651-BB2A-55CC5FA4592F}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{C00D356D-2A84-4F25-BF7D-69EE9AEFC39C}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{DDA2D0B3-403E-4188-851A-BE5608CC7D6A}" | In - Public - P6 - TRUE | .(...) -- G:\prg442\Rainbow six\Binaries\R6Vegas2_Game.exe
O87 - FAEL: "{88C740CA-09F9-49A2-B8EB-2D0D23789F79}" | In - Public - P17 - TRUE | .(...) -- G:\prg442\Rainbow six\Binaries\R6Vegas2_Game.exe
O87 - FAEL: "{40C53A40-BB28-4882-83AB-DC8DA0EF48D5}" | In - Public - P6 - TRUE | .(.Ubisoft - Autopatch system.) -- G:\prg442\Rainbow six\Binaries\R6Vegas2_Launcher.exe
O87 - FAEL: "{C0396070-29D2-47B1-8DBB-0BBB517BA218}" | In - Public - P17 - TRUE | .(.Ubisoft - Autopatch system.) -- G:\prg442\Rainbow six\Binaries\R6Vegas2_Launcher.exe
O87 - FAEL: "TCP Query User{6CF66C3F-506A-463D-BBB0-609283A65F9E}C:\program files (x86) (x86)\lexmark 2500 series\lxddamon.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86) (x86)\lexmark 2500 series\lxddamon.exe
O87 - FAEL: "UDP Query User{85242DB5-023A-4360-95D6-0C89BCEF2965}C:\program files (x86) (x86)\lexmark 2500 series\lxddamon.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86) (x86)\lexmark 2500 series\lxddamon.exe
O87 - FAEL: "TCP Query User{C9B76716-2D43-40E1-8B6E-0E0167C009CD}G:\call of dutty black ops\blackops.exe" |In - Public - P6 - TRUE | .(...) -- G:\call of dutty black ops\blackops.exe (.not file.)
O87 - FAEL: "UDP Query User{80E58EC7-1654-489D-B6D5-D986F4BD4E54}G:\call of dutty black ops\blackops.exe" |In - Public - P17 - TRUE | .(...) -- G:\call of dutty black ops\blackops.exe (.not file.)
O87 - FAEL: "{887BFC62-15D4-47BD-B60C-FB7D1C7984EF}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
O87 - FAEL: "{89508B0B-EF49-4A59-8379-FE8B7D08AC4B}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
O87 - FAEL: "{1559864E-6354-4C8B-99DC-8D2296A94F79}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O87 - FAEL: "{D34CF049-D194-4A86-B167-907412F5139A}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
~ Scan Firewall in 00mn 01s



---\\ Scan Additionnel (O88)
Database Version : v2.10777 - (17/02/2013)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 0

[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]   =>Toolbar.Agent
~ Scan Additionnel in 00mn 37s



---\\ Recherche détournement de DNS routeur (O89) (None)

---\\ Product Upgrade Codes (O90)
O90 - PUC: "00004159A700C0400000000000F01FEC" . (.Microsoft Office Outlook Connector.) -- C:\Windows\Installer\{95140000-007A-040C-0000-0000000FF1CE}\OLCIcon.exe
O90 - PUC: "00004159D70090400000000000F01FEC" . (.Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit.) -- C:\Windows\Installer\{95140000-007D-0409-0000-0000000FF1CE}\oscwlIcon.exe
O90 - PUC: "02FCC1E821E94284DB95A79D0E84D68D" . (.SWAT 4.) -- C:\Windows\Installer\{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8}\ARPPRODUCTICON.exe
O90 - PUC: "0D9196FA196553F4D956459F18105341" . (.Microsoft SQL Server Compact 3.5 SP2 FRA.) -- C:\Windows\Installer\{AF6919D0-5691-4F35-9D65-54F981013514}\ProductIcon
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "19DA96544F74E9D4F89C17E73CD2A71E" . (.Microsoft_VC80_CRT_x86_x64.) -- C:\Windows\Installer\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}\ARPPRODUCTICON.exe
O90 - PUC: "1B641C2DD849FE743878D5C1B689F0C7" . (.Windows Live Writer.) -- C:\Windows\Installer\{D2C146B1-948D-47EF-8387-5D1C6B980F7C}\ApplicationIcon.ico
O90 - PUC: "20B91A1DE71869244AB57058F37DD475" . (.Microsoft_VC80_MFC_x86.) -- C:\Windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
O90 - PUC: "25BBB29DFF28DE24A8C3E460F249A47B" . (.Microsoft_VC80_MFCLOC_x86.) -- C:\Windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
O90 - PUC: "3128052F989958E40A8727EB849371FE" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{F2508213-9989-4E85-A078-72BE483917EF}\GameForWindowsLiveRedist.exe
O90 - PUC: "48F21E79330C2AD4792D5F043C2E29AE" . (.Installer.) -- C:\Windows\Installer\{97E12F84-C033-4DA2-97D2-F540C3E292EA}\ARPPRODUCTICON.exe
O90 - PUC: "4E9B274AFFA0B7F42BD56FF4E829A8BA" . (.Microsoft_VC90_MFC_x86_x64.) -- C:\Windows\Installer\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}\ARPPRODUCTICON.exe
O90 - PUC: "55F1FF778D7E2CE40ABDD9BFF0B93745" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{77FF1F55-E7D8-4EC2-A0DB-9DFB0F9B7354}\maconfico
O90 - PUC: "5A9DFE6BECE222C4ABCE1DE637AE0231" . (.iTunes.) -- C:\Windows\Installer\{B6EFD9A5-2ECE-4C22-BAEC-D16E73EA2013}\Installer.ico
O90 - PUC: "5DAB1C8C6E456414DA70A3A83D56963C" . (.Microsoft_VC80_MFC_x86_x64.) -- C:\Windows\Installer\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA73301B7449A0500000010" . (.Adobe Reader 9.5.3.) -- C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-A95000000001}\SC_Reader.ico
O90 - PUC: "811CF9E1D156439479EB5EC3EAC5D754" . (.Microsoft_VC80_MFCLOC_x86_x64.) -- C:\Windows\Installer\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}\ARPPRODUCTICON.exe
O90 - PUC: "86662F65AD31A79488F31634A401BCBA" . (.MobileMe Control Panel.) -- C:\Windows\Installer\{56F26668-13DA-497A-883F-61434A10CBAB}\Installer.ico
O90 - PUC: "8F7463F0D15ECCF48826A9D8C0A5FC52" . (.Microsoft_VC80_ATL_x86.) -- C:\Windows\Installer\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}\ARPPRODUCTICON.exe
O90 - PUC: "8FA009BE16CC51E478B1891DAEE30852" . (.QuickTime.) -- C:\Windows\Installer\{EB900AF8-CC61-4E15-871B-98D1EA3E8025}\Installer.ico
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "9B00314CD581E574FBCE93FE37F2911B" . (.Apple Software Update.) -- C:\Windows\Installer\{C41300B9-185D-475E-BFEC-39EF732F19B1}\Installer.ico
O90 - PUC: "AB4C301D509FA7340894BD4267B3EB63" . (.Skype™ 4.2.) -- C:\Windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
O90 - PUC: "AF32006D1FD3735439DD3120C44C3E66" . (.Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA.) -- C:\Windows\Installer\{D60023FA-3DF1-4537-93DD-13024CC4E366}\ProductIcon
O90 - PUC: "B5DEF536D6C2EB94786EA7F6DC22CBA5" . (.Microsoft_VC90_MFC_x86.) -- C:\Windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
O90 - PUC: "B6C9E0C15D4DC3D4A8011FA0E3B7EE5A" . (.WN111v2.) -- C:\Windows\Installer\{1C0E9C6B-D4D5-4D3C-8A10-F10A3E7BEEA5}\ARPPRODUCTICON.exe
O90 - PUC: "B850D529A465A3444B2BE7096C34E255" . (.Microsoft_VC80_ATL_x86_x64.) -- C:\Windows\Installer\{925D058B-564A-443A-B4B2-7E90C6432E55}\ARPPRODUCTICON.exe
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "C7937558D24AF684793B2ABC2C735239" . (.Microsoft_VC90_ATL_x86_x64.) -- C:\Windows\Installer\{8557397C-A42D-486F-97B3-A2CBC2372593}\ARPPRODUCTICON.exe
O90 - PUC: "CFA7A10B6530FA343A336C9521EA8ACD" . (.Objets de gestion Microsoft SQL Server 2008 R2.) -- C:\Windows\Installer\{B01A7AFC-0356-43AF-A333-C65912AEA8DC}\ARPIco
O90 - PUC: "D0AC3A29DC55D5C4AB59C562002CF062" . (.Microsoft_VC90_CRT_x86_x64.) -- C:\Windows\Installer\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}\ARPPRODUCTICON.exe
O90 - PUC: "D366E3D3E7E477545A06E7DCDD5445A8" . (.PVSonyDll.) -- C:\Windows\Installer\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DD7906EE4F50871479913D71B00F898E" . (.Apple Application Support.) -- C:\Windows\Installer\{EE6097DD-05F4-4178-9719-D3170BF098E8}\WinInstall.ico
O90 - PUC: "E50A609283D274B4582A3D84E573C2F8" . (.Microsoft SQL Server Compact 3.5 SP2 x64 FRA.) -- C:\Windows\Installer\{2906A05E-2D38-4B47-85A2-D3485E372C8F}\ProductIcon
O90 - PUC: "E5E5322F18873924B9F6402B06F9FB0F" . (.Windows Live Messenger.) -- C:\Windows\Installer\{F2235E5E-7881-4293-9B6F-04B2609FBFF0}\MsblIco.Exe
O90 - PUC: "E7EFB369053C64344BC30B328503A654" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{963BFE7E-C350-4346-B43C-B02358306A45}\Installer.ico
O90 - PUC: "E84E5F4E55179FC488DCF773E79CCA45" . (.Bonjour.) -- C:\Windows\Installer\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}\Bonjour.ico
O90 - PUC: "E873E3303DA65DA4DBBEBC6DB91340C6" . (.Microsoft_VC90_ATL_x86.) -- C:\Windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
O90 - PUC: "EBCC66208DBBC6144AF8F74CC7D65B66" . (.Microsoft SQL Server System CLR Types.) -- C:\Windows\Installer\{0266CCBE-BBD8-416C-A48F-7FC47C6DB566}\ARPIco
~ Scan Files in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 09/02/2013 251248 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 16/10/2010 37664 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/03/2012 44768 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SR - | Auto 07/10/2010 345376 |  (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SS - | Auto 11/06/2010 135664 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 11/06/2010 135664 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 15/08/2012 194032 |  (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 21/08/2009 72488 |  (HerculesWiFi) . (.Guillemot Corporation.) - C:\Windows\SysWOW64\HerculesWiFiService.exe
SS - | Demand 03/04/2005 69632 |  (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Demand 17/11/2010 932640 |  (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 29/02/2008 942080 |  (jswpsapi) . (.Atheros Communications, Inc..) - C:\Program Files (x86)\NETGEAR\WN111v2\jswpsapi.exe
SS - | Demand 14/11/2011 427640 |  (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\x64\maconfservice.exe
SR - | Auto 14/12/2012 398184 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SS - | Auto 14/12/2012 682344 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 13/02/2013 115608 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 03/08/2011 980072 |  (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 03/08/2011 2255464 |  (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
SR - | Auto  0 |  (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto  0 |  (PnkBstrB) . (...) - C:\Windows\system32\PnkBstrB.exe
SR - | Auto 03/08/2011 379496 |  (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Demand 19/02/2010 517096 |  (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 31/08/2012 2754984 |  (TeamViewer7) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Disabled  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 01s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by nicolas at 19/02/2013 16:45:44

device: opened successfully
user: error reading MBR 

Disk trace:
error: Read  Descripteur non valide
kernel: error reading MBR 
~ Scan MBR in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by nicolas at 19/02/2013 16:45:46

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s



End of the scan (1614 lines in 03mn 34s)(1)