Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.3.5.49 par Nicolas Coolman, Update du 10/02/2013
Run by Patrick at 10/02/2013 11:37:04
State : Version � jour.
UAC : Deactivate by user
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox v3.6.3 (fr)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Ultimate Edition, 64-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : HYRR2
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4087 MB (70% free)
System Restore: Activ� (Enable)
System drive C: has 38 GB (25%) free of 153 GB
---\\ Logged in mode
~ Computer Name: PRINCIPAL
~ User Name: Patrick
~ All Users Names: UpdatusUser, Patrick, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Patrick\AppData\Roaming\
~ %Desktop% : C:\Users\Patrick\Desktop\
~ %Favorites% : C:\Users\Patrick\Favorites\
~ %LocalAppData% : C:\Users\Patrick\AppData\Local\
~ %StartMenu% : C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
A:\ CD-ROM drive (Not Inserted)
B:\ CD-ROM drive (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 38 Go of 153 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 19 Go of 298 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 203 Go of 932 Go)
F:\ CD-ROM drive (Not Inserted)
G:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 - 07:34:59.) -- C:\Windows\Explorer.exe [2870272]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.5121DB613E10A46A3C5085B479026AA7] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/11/2012 - 07:04:11.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.28/10/2009 - 07:24:40.) -- C:\Windows\System32\Winlogon.exe [389632]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Biblioth�que de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:11.) -- C:\Windows\system32\Drivers\AFD.sys [499200]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072]
[MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.14/07/2009 - 02:48:27.) -- C:\Windows\system32\Drivers\ntfs.sys [1659984]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048]
[MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:18:02.) -- C:\Windows\system32\Drivers\rdpdr.sys [165376]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840]
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.06/09/2012 - 18:38:18.) -- C:\Windows\system32\Drivers\volsnap.sys [295792]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/460
~ Mes musiques (My Musics) : 1/24
~ Mes Favoris (My Favorites) : 1/162
~ Mes Documents (My Documents) : 1/7502
~ Mon Bureau (My Desktop) : 1/460
~ Menu demarrer (Programs) : 1/36
~ Scan Hidden Files in 00mn 08s
---\\ Processus lanc�s
[MD5.0AA080277A2101D70EC87885EC3CEB52] - (.ASUSTeK Computer Inc. - TurboVHelp.) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe [1043968] [PID.1964]
[MD5.C9D4451B13578840134FB9F2A23F0A86] - (.Corel, Inc. - Corel Photo Downloader.) -- C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531272] [PID.3460]
[MD5.C11645E219C8C9113A8D9E0500ED25E5] - (.PacketVideo - TwonkyMedia Tray Application.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverconfig.exe [603736] [PID.3680]
[MD5.BD713579A87D698E1F2158CE10E48130] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe [272248] [PID.3740]
[MD5.89939EC260486D47E734995D14119897] - (...) -- C:\Users\Patrick\AppData\Local\CloudStation\bin\cloud.exe [2712960] [PID.3748]
[MD5.BF91B68606862A32CAB13C24A24DD9A9] - (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.exe [180224] [PID.3796]
[MD5.E809FA23C742AF440DF2635F81492D38] - (.Nullsoft - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe [39424] [PID.3808]
[MD5.0BCE7D50DA6D0E8E558373339C8B7911] - (.ASUSTeK Computer Inc. - TurboV EVO.) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe [7256576] [PID.3980]
[MD5.1E0660C440ABD0BB5DCEF52B58C218F0] - (...) -- C:\Users\Patrick\AppData\Local\CloudStation\bin\client-win.exe [10799696] [PID.3988]
[MD5.6EBF0C03E5F0D65F283128218AEEBFDB] - (...) -- C:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe [601088] [PID.3252]
[MD5.98A078F838A70F84E1BD490D7C7675F4] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.4348]
[MD5.D3AC38E80E928CC61A22650E04423BB8] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328] [PID.4356]
[MD5.0D286C0FE561D1A7EB30E83A0FF305B2] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [757296] [PID.2612]
[MD5.7C5A4D3222DEA5570C8F08EC7FC74199] - (.Sun Microsystems, Inc. - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [508136] [PID.576]
[MD5.6B56772F66301FA4376C4E4319EBC245] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5673984] [PID.4628]
[MD5.F0359F7CE712D69ACEF0886BDB4792ED] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [382824] [PID.984]
[MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.1580]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1684]
[MD5.E781164C7D47950E3D218C84B2901CB2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112] [PID.1620]
[MD5.7D2633295EB6FF2B938185874884059D] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [935208] [PID.2152]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ysWOW64\rundll32.exe [0] [PID.2192]
[MD5.F115AF58ABE5605D7D709CBFBD83F418] - (.Pas de propri�taire - nTitles PSIService.) -- C:\Windows\SysWOW64\PSIService.exe [177704] [PID.2376]
[MD5.3120A421ED14B0186675E295219D441C] - (.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe [501336] [PID.2420]
[MD5.B1691AF4A072CB674D600DB16DD7308E] - (.Rocket Division Software - StarWind iSCSI Target (Alcohol Edition).) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968] [PID.2496]
[MD5.2773500AFE1BB7944C0F1D46C910B7DD] - (...) -- C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248704] [PID.2548]
[MD5.2748912E0E656AE1FB74C4BFDF7BC470] - (...) -- C:\Program Files (x86)\Serveur Media\TwonkyMediaServer.exe [1451608] [PID.2752]
~ Scan Processes Running in 00mn 01s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preference [User Data\Default] http://www.google.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\sis36vyd.default\prefs.js
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\McSiteAdvisor.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.5.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) (3,6,0,126) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 27
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: MSS+ Identifier [64Bits] - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} . (.McAfee, Inc. - Quick Browser Identifier for MSS+ Tool.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Winamp Toolbar Loader [64Bits] - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} . (.AOL LLC. - Winamp IE Toolbar Dynamic Link Library.) -- C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: scriptproxy [64Bits] - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} . (.McAfee, Inc. - VSCore Script Scanner.) -- C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120707130948.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin
O2 - BHO: McAfee SiteAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: McAfee SiteAdvisor Toolbar [64Bits] - [HKLM]{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O3 - Toolbar: (no name) [64Bits] - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} Cl� orpheline
~ Scan Toolbar in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdcBase.exe
O4 - HKLM\..\Run: [Corel Photo Downloader] . (.Corel, Inc. - Corel Photo Downloader.) -- C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [Data Replicator 3] C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O4 - HKCU\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHTE.exe
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.exe
O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe
O4 - HKLM\..\Wow6432Node\Run: [TurboV EVO] . (.ASUSTeK Computer Inc. - TurboV EVO.) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe
O4 - HKLM\..\Wow6432Node\Run: [QFan Help] . (...) -- C:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe
O4 - HKLM\..\Wow6432Node\Run: [Cpu Level Up help] . (...) -- C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [mcui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [Corel Photo Downloader] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel PhotoDownloader.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [Data Replicator 3] C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [EPLTarget\P0000000000000001] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHTE.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 02s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\AI Suite v1.05.33.lnk . (...) -- C:\Program Files (x86)\ASUS\AI Suite\AiSuite.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\DiRT 2.lnk . (.Valve Corporation.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Exact Audio Copy.lnk . (...) -- C:\Program Files (x86)\Exact Audio Copy\EAC.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Films.lnk . (...) -- E:\Films
O4 - Global Startup: C:\Users\Patrick\Desktop\Mes tabs - Raccourci.lnk . (...) -- C:\Users\Patrick\Documents\Patrick\Guitare\Mes tabs
O4 - Global Startup: C:\Users\Patrick\Desktop\monAlbumPhoto.lnk . (.monAlbumPhoto.) -- C:\Program Files (x86)\monAlbumPhoto\monAlbumphoto.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Photos - Raccourci.lnk . (...) -- E:\Photos
O4 - Global Startup: C:\Users\Patrick\Desktop\Subtitle Workshop.lnk . (...) -- C:\Program Files (x86)\URUSoft\Subtitle Workshop\SubtitleWorkshop.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Synology Cloud Station.lnk . (...) -- C:\Users\Patrick\AppData\Local\CloudStation\bin\cloud.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\TwonkyMedia.lnk . (.PacketVideo.) -- C:\Program Files (x86)\TwonkyMedia\twonkymedia.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\VPN Lifeguard.lnk . (.philippe734 - Vous devez ex�cuter le progra.) -- C:\Program Files (x86)\VPN Lifeguard\VpnLifeguard.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\monAlbumPhoto.lnk . (.monAlbumPhoto.) -- C:\Program Files (x86)\monAlbumPhoto\monAlbumphoto.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk . (.Nero AG.) -- C:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk . (.Nullsoft.) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\�Torrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
~ Scan Global Startup in 00mn 36s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{06A14C76-9DA6-4486-B628-A277B1B43B63}: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\..\{70FF6B4C-02A1-4120-B539-37D64A3B15BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{06A14C76-9DA6-4486-B628-A277B1B43B63}: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\..\{70FF6B4C-02A1-4120-B539-37D64A3B15BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{06A14C76-9DA6-4486-B628-A277B1B43B63}: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CS2\Services\Tcpip\..\{70FF6B4C-02A1-4120-B539-37D64A3B15BC}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Se (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc. - SiteAdvisor.) - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Services (mcmscsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) . (.McAfee, Inc. - McAfee On-Access Scanner service.) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Servi (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\Windows\system32\mfevtps.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 306.9.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: ProtexisLicensing (ProtexisLicensing) . (.Pas de propri�taire - nTitles PSIService.) - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: Serveur M�dia (Serveur M�dia) . (.PacketVideo - TwonkyMedia Server watchdog.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) . (.Rocket Division Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: UsbClientService (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 04s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.EC807244904FA170C299AB06D87FBDBE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [{34B42EAB-A6E1-4DC5-AA89-9D40FC408120}] (...) -- C:\Users\Patrick\Desktop\keygen.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4C0D2C8A-AA8B-4E08-A751-5B140DB2CD1D}] (...) -- C:\Users\Patrick\Desktop\squeezeslave.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{602FC569-FA8C-490C-A368-661C13D2125E}] (...) -- C:\Users\Patrick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WHLGF5EY\mp610swin64101ea24[1].exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6A899C0B-28E0-4659-AB98-A3F2C195E185}] (...) -- A:\SETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{83CC99A9-A992-4872-9D9C-1E828D457E2F}] (...) -- C:\Users\Patrick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PFA3ZW5B\Monkey_Audio_Winamp_Plugin[1].exe (.not file.)
[MD5.E7C268C4C8702EAF4057F4D54E00D142] [APT] [{B5A1A39B-8722-4FD5-AEA2-4176CEB18B65}] (.Corel Corporation.) -- E:\Logiciels\Corel PaintShop Pro X2 (V-12)+Keygen-HeartBug\Corel Paintshop pro X2\setup.exe
[MD5.00000000000000000000000000000000] [APT] [{DAF04EEC-026B-4DE0-A347-FA5AC84392AA}] (...) -- C:\Users\Patrick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5OZNQM80\aomwin200ea24[1].exe (.not file.)
[MD5.48C88338B07E2922CFCE54CBFF56666C] [APT] [ASUS RegRun Loader] (...) -- C:\Program Files (x86)\ASUS\AASP\1.00.91\AsLoader.exe
[MD5.AFFF82ADF77CA68FC4CF552B176F3D73] [APT] [Cpu Level Up Hook Lanunch] (...) -- C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHookLaunch.exe
[MD5.0AA080277A2101D70EC87885EC3CEB52] [APT] [TurboVHelp] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
~ Scan Scheduled Task in 00mn 04s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: McAfee Inc. mfewfpk (mfewfpk) . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - C:\Windows\System32\drivers\mfewfpk.sys
O41 - Driver: (MPFP) . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - C:\Windows\System32\Drivers\Mpfp.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - Pilote TCP/IP.) - C:\Windows\System32\drivers\tcpip.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: AC3Filter 2.5b - (.Alexander Vigovsky.) [HKLM][64Bits] -- AC3Filter_is1
O42 - Logiciel: AI Suite - (.Pas de propri�taire.) [HKLM][64Bits] -- {310BC5E2-31AF-49BB-904D-E71EB93645DC}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728}
O42 - Logiciel: Adobe Reader X (10.1.5) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Analyseur et SDK MSXML 4.0 SP2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {553255F3-78FD-40F1-A6F8-6882140265FE}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propri�taire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Corel Paint Shop Pro Photo X2 - (.Corel Corporation.) [HKLM][64Bits] -- {64E72FB1-2343-4977-B4A8-262CD53D0BD3}
O42 - Logiciel: DiRT 2 - (.Codemasters.) [HKLM][64Bits] -- Steam App 12840
O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM][64Bits] -- {B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}
O42 - Logiciel: EPSON SX535WD Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX535WD Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Epson Connect Printer Setup - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}
O42 - Logiciel: Epson Download Navigator - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {10F63395-157F-4B93-AB4D-702A2FF11942}
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {FFF841F3-9A15-4F61-BD16-C19F132E5A27}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION2.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {FA9D303D-0FB2-49C7-9397-8E6B11EA892D}
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: Exact Audio Copy 0.99pb5 - (.Andre Wiethoff.) [HKLM][64Bits] -- Exact Audio Copy
O42 - Logiciel: FLAC 1.2.1b (remove only) - (.Xiph.org.) [HKLM][64Bits] -- FLAC
O42 - Logiciel: Fnac - (.Pas de propri�taire.) [HKLM][64Bits] -- Mes Cr�ations Zen_is1
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {28E82311-8616-11E1-BEB0-B8AC6F97B88E}
O42 - Logiciel: Guide d'utilisation EPSON SX535WD Series - (.Pas de propri�taire.) [HKLM][64Bits] -- EPSON SX535WD Series Useg
O42 - Logiciel: Guide r�seau EPSON SX535WD Series - (.Pas de propri�taire.) [HKLM][64Bits] -- EPSON SX535WD Series Netg
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: MKVtoolnix 4.4.0 - (.Moritz Bunkus.) [HKLM][64Bits] -- MKVtoolnix
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MainConcept DTV Decoder Standard - (.MainConcept GmbH.) [HKLM][64Bits] -- {059A00AC-1205-423C-91C7-7E6168D804DA}
O42 - Logiciel: McAfee AntiVirus Plus - (.McAfee, Inc..) [HKLM][64Bits] -- MSC
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Media Player Classic - Home Cinema v. 1.3.1249.0 - (.Pas de propri�taire.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1
O42 - Logiciel: Menu Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {B78120A0-CF84-4366-A393-4D0A59BC546C}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Flight Simulator X - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{9527A496-5DF9-412A-ADC7-168BA5379CA6}
O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM][64Bits] -- {2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises � jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Monkey's Audio - (.Pas de propri�taire.) [HKLM][64Bits] -- Monkey's Audio_is1
O42 - Logiciel: Movie Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {E498385E-1C51-459A-B45F-1721E37AA1A0}
O42 - Logiciel: Mozilla Firefox (3.6.3) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox (3.6.3)
O42 - Logiciel: Mozilla Thunderbird (3.0.4) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird (3.0.4)
O42 - Logiciel: Mp3tag v2.45a - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag
O42 - Logiciel: My 7 Optimizer - (.Pas de propri�taire.) [HKLM][64Bits] -- My 7 Optimizer
O42 - Logiciel: NVIDIA Logiciel syst�me PhysX 9.12.0213 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}
O42 - Logiciel: NVIDIA Pilote 3D Vision 306.97 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote du contr�leur 3D Vision 301.42 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 306.97 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM][64Bits] -- {f3ea5ec5-8ce7-4bf7-ad6a-10e5cc368327}
O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM][64Bits] -- {7829DB6F-A066-4E40-8912-CB07887C20BB}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {62AC81F6-BDD3-4110-9D36-3E9EAAB40999}
O42 - Logiciel: Nero Disc Copy Gadget - (.Nero AG.) [HKLM][64Bits] -- {F1861F30-3419-44DB-B2A1-C274825698B3}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero PhotoSnap - (.Nero AG.) [HKLM][64Bits] -- {9E82B934-9A25-445B-B8DF-8012808074AC}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {359CFC0A-BEB1-440D-95BA-CF63A86DA34F}
O42 - Logiciel: Nero Rescue Agent - (.Nero AG.) [HKLM][64Bits] -- {368BA326-73AD-4351-84ED-3C0A7A52CC53}
O42 - Logiciel: Nero ShowTime - (.Nero AG.) [HKLM][64Bits] -- {D9DCF92E-72EB-412D-AC71-3B01276E5F8B}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero Vision - (.Nero AG.) [HKLM][64Bits] -- {43E39830-1826-415D-8BAE-86845787B54B}
O42 - Logiciel: Nero WaveEditor - (.Nero AG.) [HKLM][64Bits] -- {A209525B-3377-43F4-B886-32F6B6E7356F}
O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM][64Bits] -- {D025A639-B9C9-417D-8531-208859000AF8}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: OpenAL - (.Pas de propri�taire.) [HKLM][64Bits] -- OpenAL
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}
O42 - Logiciel: PowerISO - (.PowerISO Computing, Inc..) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: PuTTY version 0.60 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}
O42 - Logiciel: Rapture3D 2.3.26 Game - (.Blue Ripple Sound.) [HKLM][64Bits] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1
O42 - Logiciel: Serveur M�dia - (.PacketVideo.) [HKLM][64Bits] -- TwonkyMediaServeur M�dia
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: SoundTrax - (.Nero AG.) [HKLM][64Bits] -- {C5A7CB6C-E76D-408F-BA0E-85605420FE9D}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Subtitle Workshop 2.51 - (.Pas de propri�taire.) [HKLM][64Bits] -- SubtitleWorkshop
O42 - Logiciel: Synology Assistant (remove only) - (.Pas de propri�taire.) [HKLM][64Bits] -- Synology Assistant
O42 - Logiciel: Synology Cloud Station (remove only) - (.Pas de propri�taire.) [HKCU][64Bits] -- Synology CloudStation
O42 - Logiciel: Tiger Woods PGA TOUR 08 - (.Electronic Arts.) [HKLM][64Bits] -- {2FEA102C-F535-4513-009B-57B165013C18}
O42 - Logiciel: TurboV EVO - (.Pas de propri�taire.) [HKLM][64Bits] -- {491D92A9-69CA-4EB4-81D3-0106F9337957}
O42 - Logiciel: TwonkyMedia - (.Twonkyvison.) [HKLM][64Bits] -- TwonkyvisionUPnPTwonkyMedia
O42 - Logiciel: VPN Lifeguard - (.Pas de propri�taire.) [HKLM][64Bits] -- VPN Lifeguard 1.3.17_is1
O42 - Logiciel: WinPcap 4.1.1 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: Winamp Essentials Pack - (.Christoph Grether.) [HKLM][64Bits] -- Winamp Essentials Pack
O42 - Logiciel: Winamp Remote - (.Orb Networks.) [HKLM][64Bits] -- Orb
O42 - Logiciel: Winamp Toolbar - (.Pas de propri�taire.) [HKLM][64Bits] -- Winamp Toolbar
O42 - Logiciel: XBMC - (.Team XBMC.) [HKCU][64Bits] -- XBMC
O42 - Logiciel: monAlbumPhoto - (.monAlbumPhoto.) [HKLM][64Bits] -- monAlbumPhoto_is1
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\AC3Filter]
[HKCU\Software\ASUS]
[HKCU\Software\AWSoftware]
[HKCU\Software\Adobe]
[HKCU\Software\Alcohol Soft]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\BitTorrent]
[HKCU\Software\BlueRippleSound]
[HKCU\Software\CDDB]
[HKCU\Software\CanonBJ]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Corel]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DScaler5]
[HKCU\Software\EA Sports]
[HKCU\Software\EPSON]
[HKCU\Software\Florian Heidenreich]
[HKCU\Software\Fnac_FR]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\HookNetwork]
[HKCU\Software\Illustrate]
[HKCU\Software\JavaSoft]
[HKCU\Software\Logitech]
[HKCU\Software\MAP-DN]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\McAfee]
[HKCU\Software\Monkey's Audio]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\NeroDigital]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Ontrack]
[HKCU\Software\Policies]
[HKCU\Software\PowerISO]
[HKCU\Software\SEIKO EPSON CORPORATION]
[HKCU\Software\SimonTatham]
[HKCU\Software\StarSynergy]
[HKCU\Software\Stardock]
[HKCU\Software\Synology]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp Toolbar]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\ej-technologies]
[HKCU\Software\mkvmergeGUI]
[HKCU\Software\monAlbumPhoto]
[HKCU\Software\mpTrim]
[HKCU\Software\shockwave.com]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Audible]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\EPSON]
[HKLM\Software\EpsonNet]
[HKLM\Software\Gabest]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\PowerISO]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\Sonic]
[HKLM\Software\WebSupergoo]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\Alcohol Soft]
[HKLM\Software\Wow6432Node\America Online]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\BlueRippleSound]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Codemasters]
[HKLM\Software\Wow6432Node\Corel]
[HKLM\Software\Wow6432Node\Cygnus Solutions]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\EA Sports]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\EpsonNet]
[HKLM\Software\Wow6432Node\Florian Heidenreich]
[HKLM\Software\Wow6432Node\Fnac_FR]
[HKLM\Software\Wow6432Node\Fujifilm]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\MAP-DN]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nullsoft]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\On2 Technologies]
[HKLM\Software\Wow6432Node\Ontrack]
[HKLM\Software\Wow6432Node\Orb Networks]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Protexis]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION2]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION]
[HKLM\Software\Wow6432Node\SiteAdvisor]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\TDS]
[HKLM\Software\Wow6432Node\TwonkyMedia]
[HKLM\Software\Wow6432Node\URUSoft]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\WebSupergoo]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\mcafeeupdater]
[HKLM\Software\Wow6432Node\mkvmergeGUI]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\optimidata]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 07/06/2012 - 12:18:53 - [172,785] ----D C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
O43 - CFD: 18/08/2012 - 10:58:15 - [13,300] ----D C:\Program Files (x86)\AC3Filter
O43 - CFD: 13/08/2012 - 20:48:24 - [921,931] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 21/02/2010 - 11:41:45 - [53,076] ----D C:\Program Files (x86)\Alcohol Soft
O43 - CFD: 16/05/2010 - 18:44:35 - [2,118] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 05/02/2010 - 01:01:08 - [77,731] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 19/04/2010 - 19:47:52 - [7,127] ----D C:\Program Files (x86)\BRS
O43 - CFD: 15/04/2012 - 10:34:16 - [13,362] ----D C:\Program Files (x86)\Canon
O43 - CFD: 25/12/2012 - 20:03:19 - [785,427] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 25/12/2012 - 20:03:19 - [418,144] ----D C:\Program Files (x86)\Corel
O43 - CFD: 02/02/2010 - 23:17:46 - [-1517,344] ----D C:\Program Files (x86)\EA Sports
O43 - CFD: 07/06/2012 - 12:11:51 - [7,906] ----D C:\Program Files (x86)\epson
O43 - CFD: 07/06/2012 - 12:21:55 - [114,798] ----D C:\Program Files (x86)\Epson Software
O43 - CFD: 14/03/2010 - 09:58:29 - [8,882] ----D C:\Program Files (x86)\Exact Audio Copy
O43 - CFD: 21/02/2010 - 12:39:23 - [0,944] ----D C:\Program Files (x86)\FLAC
O43 - CFD: 09/04/2011 - 08:17:29 - [19,637] ----D C:\Program Files (x86)\Fnac
O43 - CFD: 15/12/2012 - 20:12:12 - [113,566] ----D C:\Program Files (x86)\Google
O43 - CFD: 07/06/2012 - 12:15:48 - [14,423] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/12/2012 - 13:50:19 - [7,014] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 28/05/2011 - 08:46:33 - [85,895] ----D C:\Program Files (x86)\Java
O43 - CFD: 13/04/2010 - 20:07:33 - [0,004] ----D C:\Program Files (x86)\LEA
O43 - CFD: 31/01/2010 - 22:16:50 - [6,337] ----D C:\Program Files (x86)\MainConcept
O43 - CFD: 02/01/2011 - 21:21:27 - [25,444] ----D C:\Program Files (x86)\McAfee
O43 - CFD: 09/02/2013 - 00:38:26 - [11,341] ----D C:\Program Files (x86)\McAfee Security Scan
O43 - CFD: 03/01/2011 - 11:17:25 - [0,432] ----D C:\Program Files (x86)\McAfee.com
O43 - CFD: 30/01/2010 - 21:29:31 - [0,216] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 30/01/2010 - 16:12:25 - [984,220] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 19/04/2010 - 20:02:52 - [11,240] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 30/01/2010 - 21:18:04 - [232,212] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/05/2012 - 02:31:39 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 30/01/2010 - 21:19:58 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 22/04/2011 - 20:13:24 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 30/12/2012 - 11:28:16 - [28,256] ----D C:\Program Files (x86)\MKVtoolnix
O43 - CFD: 27/01/2013 - 11:21:57 - [88,027] ----D C:\Program Files (x86)\monAlbumPhoto
O43 - CFD: 07/03/2010 - 18:36:41 - [2,392] ----D C:\Program Files (x86)\Monkey's Audio
O43 - CFD: 09/03/2012 - 11:41:58 - [29,364] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 29/02/2012 - 18:25:54 - [32,412] ----D C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 06/03/2010 - 11:40:09 - [6,183] ----D C:\Program Files (x86)\Mp3tag
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 30/01/2010 - 16:24:34 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 29/03/2010 - 07:36:42 - [1068,977] ----D C:\Program Files (x86)\Nero
O43 - CFD: 18/11/2012 - 00:51:15 - [118,992] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 04/11/2011 - 10:46:43 - [0,826] ----D C:\Program Files (x86)\Ontrack
O43 - CFD: 19/04/2010 - 19:46:51 - [0,772] ----D C:\Program Files (x86)\OpenAL
O43 - CFD: 30/01/2010 - 16:05:33 - [3,736] ----D C:\Program Files (x86)\PowerISO
O43 - CFD: 14/04/2010 - 20:56:22 - [3,235] ----D C:\Program Files (x86)\PuTTY
O43 - CFD: 16/05/2010 - 18:45:45 - [72,846] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 14/07/2009 - 06:32:38 - [36,813] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 10/02/2013 - 10:57:48 - [12,183] ----D C:\Program Files (x86)\Serveur Media
O43 - CFD: 15/12/2012 - 20:08:20 - [0] ----D C:\Program Files (x86)\Squeezebox
O43 - CFD: 10/02/2013 - 10:58:12 - [-1137,352] ----D C:\Program Files (x86)\Steam
O43 - CFD: 01/12/2012 - 00:40:20 - [126,390] ----D C:\Program Files (x86)\Synology
O43 - CFD: 27/05/2012 - 23:49:33 - [6,651] ----D C:\Program Files (x86)\TechniSat DVB
O43 - CFD: 06/02/2010 - 10:18:03 - [1,926] ----D C:\Program Files (x86)\TwonkyMedia
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 29/10/2010 - 18:38:36 - [2,002] ----D C:\Program Files (x86)\URUSoft
O43 - CFD: 13/12/2012 - 21:21:56 - [0,924] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 09/09/2010 - 22:22:01 - [1,005] ----D C:\Program Files (x86)\VPN Lifeguard
O43 - CFD: 10/04/2010 - 19:37:48 - [47,525] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 30/01/2010 - 19:35:11 - [32,934] ----D C:\Program Files (x86)\Winamp Remote
O43 - CFD: 30/01/2010 - 19:35:14 - [2,186] ----D C:\Program Files (x86)\Winamp Toolbar
O43 - CFD: 14/07/2009 - 16:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/01/2010 - 21:29:26 - [37,598] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 30/01/2010 - 21:29:16 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 16/12/2010 - 12:19:34 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 14/10/2010 - 18:22:52 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 14/07/2009 - 16:24:08 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 14/07/2009 - 16:24:08 - [24,859] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 13/04/2010 - 20:07:09 - [0,226] ----D C:\Program Files (x86)\WinPcap
O43 - CFD: 30/01/2010 - 14:09:58 - [3,547] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 10/02/2010 - 23:45:20 - [86,188] ----D C:\Program Files (x86)\XBMC
O43 - CFD: 10/02/2013 - 11:37:19 - [11,465] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 15/04/2012 - 11:32:24 - [7,724] ----D C:\Program Files (x86)\Common Files\ABBYY
O43 - CFD: 13/08/2012 - 20:48:30 - [315,809] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 16/06/2010 - 09:56:16 - [30,670] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 16/05/2010 - 18:44:45 - [39,282] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 25/12/2012 - 20:04:04 - [6,003] ----D C:\Program Files (x86)\Common Files\Corel
O43 - CFD: 30/01/2010 - 21:18:02 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 27/05/2012 - 23:32:13 - [0] ----D C:\Program Files (x86)\Common Files\EPSON
O43 - CFD: 05/02/2010 - 00:38:14 - [7,939] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 24/02/2012 - 11:15:09 - [1,201] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 03/01/2011 - 11:17:25 - [4,323] ----D C:\Program Files (x86)\Common Files\McAfee
O43 - CFD: 30/01/2010 - 16:24:28 - [0,043] ----D C:\Program Files (x86)\Common Files\Microsoft Games
O43 - CFD: 30/03/2012 - 02:03:21 - [149,887] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 29/03/2010 - 07:37:06 - [136,905] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 30/01/2010 - 19:34:14 - [3,974] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 18/04/2010 - 21:45:12 - [0,302] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 09/11/2011 - 03:17:59 - [42,073] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 30/01/2010 - 21:26:24 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 15/04/2012 - 11:32:24 - [1,678] ----D C:\ProgramData\ABBYY
O43 - CFD: 15/08/2012 - 14:44:04 - [610,137] ----D C:\ProgramData\Adobe
O43 - CFD: 27/01/2013 - 23:03:12 - [177,319] ----D C:\ProgramData\albumphoto
O43 - CFD: 16/05/2010 - 18:44:34 - [15,502] ----D C:\ProgramData\Apple
O43 - CFD: 16/05/2010 - 18:45:16 - [25,685] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 05/02/2010 - 00:51:18 - [0,000] ----D C:\ProgramData\ASUS OC Profiles
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 30/01/2010 - 18:26:57 - [18,228] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 04/11/2011 - 11:10:12 - [1,603] ----D C:\ProgramData\CMUV
O43 - CFD: 19/04/2010 - 20:03:27 - [1999,974] ----D C:\ProgramData\Codemasters
O43 - CFD: 16/12/2012 - 18:44:17 - [1,878] ----D C:\ProgramData\Corel
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 07/06/2012 - 12:17:00 - [5,552] ----D C:\ProgramData\EPSON
O43 - CFD: 05/02/2010 - 00:43:24 - [0,000] ----D C:\ProgramData\EPU
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 30/03/2010 - 18:20:23 - [100,626] ----D C:\ProgramData\Fnac
O43 - CFD: 26/11/2012 - 23:42:29 - [1687,035] ----D C:\ProgramData\McAfee
O43 - CFD: 13/08/2012 - 20:49:41 - [0,001] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 14/07/2010 - 16:44:40 - [434,047] -S--D C:\ProgramData\Microsoft
O43 - CFD: 09/01/2013 - 23:59:51 - [0,319] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 29/03/2010 - 07:14:53 - [26,056] ----D C:\ProgramData\Nero
O43 - CFD: 10/02/2013 - 10:57:34 - [3,608] ----D C:\ProgramData\NVIDIA
O43 - CFD: 17/08/2012 - 19:52:55 - [3,101] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 30/01/2010 - 19:37:49 - [0,030] ----D C:\ProgramData\OrbNetworks
O43 - CFD: 16/06/2010 - 22:22:55 - [0,003] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 10/02/2013 - 11:30:07 - [8,963] ----D C:\ProgramData\Serveur M�dia
O43 - CFD: 30/01/2010 - 15:51:32 - [0,000] ----D C:\ProgramData\SiteAdvisor
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 20/02/2010 - 16:28:56 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 01/12/2012 - 00:40:32 - [0] ----D C:\ProgramData\Synology
O43 - CFD: 31/01/2010 - 22:17:04 - [0,518] ----D C:\ProgramData\Technisat
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 07/06/2012 - 12:17:00 - [0,004] ----D C:\ProgramData\UDL
O43 - CFD: 30/01/2010 - 19:35:14 - [0,413] ----D C:\ProgramData\Winamp Toolbar
O43 - CFD: 14/03/2010 - 13:45:24 - [0,294] ----D C:\Users\Patrick\AppData\Roaming\AccurateRip
O43 - CFD: 09/02/2013 - 19:33:57 - [22,703] ----D C:\Users\Patrick\AppData\Roaming\Adobe
O43 - CFD: 17/01/2013 - 22:43:28 - [0] ----D C:\Users\Patrick\AppData\Roaming\Apple Computer
O43 - CFD: 15/04/2012 - 10:34:49 - [0] ----D C:\Users\Patrick\AppData\Roaming\Canon
O43 - CFD: 01/01/2011 - 13:13:20 - [0,016] ----D C:\Users\Patrick\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 16/12/2012 - 18:44:57 - [6,769] ----D C:\Users\Patrick\AppData\Roaming\Corel
O43 - CFD: 03/08/2012 - 10:49:50 - [1,034] ----D C:\Users\Patrick\AppData\Roaming\Epson
O43 - CFD: 30/01/2010 - 13:39:58 - [0] ----D C:\Users\Patrick\AppData\Roaming\Identities
O43 - CFD: 07/06/2012 - 12:10:36 - [0] ----D C:\Users\Patrick\AppData\Roaming\InstallShield
O43 - CFD: 13/04/2010 - 20:00:49 - [0] ----D C:\Users\Patrick\AppData\Roaming\LEA
O43 - CFD: 03/09/2011 - 12:05:29 - [0] ----D C:\Users\Patrick\AppData\Roaming\Logitech
O43 - CFD: 30/01/2010 - 14:27:53 - [2,793] ----D C:\Users\Patrick\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - 16:35:02 - [0] ----D C:\Users\Patrick\AppData\Roaming\Media Center Programs
O43 - CFD: 30/01/2010 - 18:12:59 - [0,000] ----D C:\Users\Patrick\AppData\Roaming\Media Player Classic
O43 - CFD: 27/01/2013 - 13:00:00 - [33,619] -S--D C:\Users\Patrick\AppData\Roaming\Microsoft
O43 - CFD: 19/12/2010 - 13:00:06 - [0,016] ----D C:\Users\Patrick\AppData\Roaming\mkvtoolnix
O43 - CFD: 14/04/2010 - 22:56:17 - [0,551] ----D C:\Users\Patrick\AppData\Roaming\Mozilla
O43 - CFD: 06/03/2010 - 11:46:07 - [0,040] ----D C:\Users\Patrick\AppData\Roaming\Mp3tag
O43 - CFD: 01/04/2010 - 20:20:49 - [2,693] ----D C:\Users\Patrick\AppData\Roaming\Nero
O43 - CFD: 20/02/2010 - 11:19:51 - [0] ----D C:\Users\Patrick\AppData\Roaming\NeroDigital(TM)
O43 - CFD: 02/09/2012 - 10:18:29 - [0,069] ----D C:\Users\Patrick\AppData\Roaming\NVIDIA
O43 - CFD: 22/02/2010 - 23:21:25 - [0,001] ----D C:\Users\Patrick\AppData\Roaming\SqueezePlay
O43 - CFD: 31/01/2010 - 20:55:46 - [461,440] ----D C:\Users\Patrick\AppData\Roaming\Thunderbird
O43 - CFD: 20/01/2013 - 17:59:03 - [30,187] ----D C:\Users\Patrick\AppData\Roaming\uTorrent
O43 - CFD: 06/02/2013 - 22:03:54 - [93,410] ----D C:\Users\Patrick\AppData\Roaming\Winamp
O43 - CFD: 15/04/2012 - 11:34:07 - [1,638] ----D C:\Users\Patrick\AppData\Local\ABBYY
O43 - CFD: 16/12/2012 - 18:15:02 - [21,412] ----D C:\Users\Patrick\AppData\Local\Adobe
O43 - CFD: 16/05/2010 - 18:44:36 - [0] ----D C:\Users\Patrick\AppData\Local\Apple
O43 - CFD: 17/01/2013 - 22:46:23 - [0,002] ----D C:\Users\Patrick\AppData\Local\Apple Computer
O43 - CFD: 30/01/2010 - 13:39:47 - [0] ----D C:\Users\Patrick\AppData\Local\Application Data
O43 - CFD: 29/01/2013 - 01:02:12 - [68,976] ----D C:\Users\Patrick\AppData\Local\CloudStation
O43 - CFD: 25/12/2012 - 20:19:33 - [5,123] ----D C:\Users\Patrick\AppData\Local\Corel
O43 - CFD: 02/03/2010 - 18:12:02 - [0] ----D C:\Users\Patrick\AppData\Local\Diagnostics
O43 - CFD: 30/12/2012 - 01:34:09 - [0] ----D C:\Users\Patrick\AppData\Local\ElevatedDiagnostics
O43 - CFD: 10/04/2011 - 16:11:25 - [0,078] ----D C:\Users\Patrick\AppData\Local\Fnac
O43 - CFD: 01/02/2012 - 21:44:15 - [27,136] ----D C:\Users\Patrick\AppData\Local\Google
O43 - CFD: 30/01/2010 - 13:39:47 - [0] ----D C:\Users\Patrick\AppData\Local\Historique
O43 - CFD: 04/11/2012 - 15:12:34 - [1245,588] ----D C:\Users\Patrick\AppData\Local\Microsoft
O43 - CFD: 17/03/2010 - 16:45:12 - [0,673] ----D C:\Users\Patrick\AppData\Local\Microsoft Games
O43 - CFD: 30/01/2010 - 21:16:02 - [0] ----D C:\Users\Patrick\AppData\Local\Microsoft Help
O43 - CFD: 14/04/2010 - 22:56:17 - [62,330] ----D C:\Users\Patrick\AppData\Local\Mozilla
O43 - CFD: 12/06/2011 - 21:18:49 - [0] ----D C:\Users\Patrick\AppData\Local\Nero
O43 - CFD: 10/02/2013 - 11:33:35 - [389,538] ----D C:\Users\Patrick\AppData\Local\Temp
O43 - CFD: 30/01/2010 - 13:39:47 - [0] ----D C:\Users\Patrick\AppData\Local\Temporary Internet Files
O43 - CFD: 31/01/2010 - 20:55:48 - [56,138] ----D C:\Users\Patrick\AppData\Local\Thunderbird
O43 - CFD: 31/01/2010 - 22:18:56 - [0,518] ----D C:\Users\Patrick\AppData\Local\VirtualStore
O43 - CFD: 30/01/2010 - 20:16:22 - [0,017] ----D C:\Users\Patrick\AppData\Local\Winamp Toolbar
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/07/2012 - 19:08:23 - [0,000] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 07/06/2012 - 12:10:30 - [0,001] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
O43 - CFD: 12/03/2010 - 07:42:25 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy
O43 - CFD: 14/01/2013 - 22:11:49 - [0,001] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 31/01/2010 - 22:16:52 - [0,003] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MainConcept
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 29/01/2013 - 01:02:12 - [0,001] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/01/2013 - 23:42:12 - [0,004] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Synology
O43 - CFD: 31/01/2010 - 11:27:18 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TwonkyMedia
O43 - CFD: 29/10/2010 - 18:38:36 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\URUSoft
O43 - CFD: 30/01/2010 - 14:09:09 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 10/02/2010 - 23:29:18 - [0,004] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
~ Scan Program Folder in 01mn 07s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.31FC723F36B39C1BAC2F90C568CCEEDA] - 10/02/2013 - 11:00:59 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1770420]
O44 - LFC:[MD5.0DB7A33625600C63ABB5354ED03D5040] - 10/02/2013 - 10:57:35 ---A- . (...) -- C:\Windows\setupact.log [22401]
O44 - LFC:[MD5.79C0BE0290D4B1F93D7D7EB40B6A348A] - 10/02/2013 - 10:57:33 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.B184704A5FE958CA7DC5ED72304EBCF2] - 10/02/2013 - 10:26:14 ---A- . (...) -- C:\OTL.Txt [232254]
O44 - LFC:[MD5.73404978A5BA512C9DAADB2528D5F167] - 10/02/2013 - 04:45:26 ---A- . (...) -- C:\Windows\ntbtlog.txt [443138]
O44 - LFC:[MD5.70E8C8440B25606A5A2D7266CB32CAA5] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\PerfStringBackup.INI []
O44 - LFC:[MD5.37712855F3CBE0E5E503AA1083B71733] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfc009.dat []
O44 - LFC:[MD5.4597DF255B456AADB35473304385C62A] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfc00C.dat []
O44 - LFC:[MD5.0942DF99604EFA479D980A81F6192206] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfh009.dat []
O44 - LFC:[MD5.231FE0F763D7DA492B2E6F03D5B5CF47] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfh00C.dat []
O44 - LFC:[MD5.70E8C8440B25606A5A2D7266CB32CAA5] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549936]
O44 - LFC:[MD5.37712855F3CBE0E5E503AA1083B71733] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106412]
O44 - LFC:[MD5.4597DF255B456AADB35473304385C62A] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130770]
O44 - LFC:[MD5.0942DF99604EFA479D980A81F6192206] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616032]
O44 - LFC:[MD5.231FE0F763D7DA492B2E6F03D5B5CF47] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704464]
O44 - LFC:[MD5.BD741D6ECD74408220A2A2E3EBB88EA0] - 05/02/2013 - 22:45:23 ---A- . (...) -- C:\Windows\PFRO.log [49452]
O44 - LFC:[MD5.B5BC6E8FCCBE27C0F3480DBFD9623DEB] - 28/01/2013 - 15:59:22 . (...) -- C:\Windows\System32\FNTCACHE.DAT []
O44 - LFC:[MD5.B5BC6E8FCCBE27C0F3480DBFD9623DEB] - 28/01/2013 - 15:59:22 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [4904544]
O44 - LFC:[MD5.69ABF632C151B45B5CE536C9CD023A02] - 27/01/2013 - 11:20:09 ---A- . (...) -- C:\Windows\KB893803v2.log [542]
~ Scan Files in 01mn 26s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfefirek.sys . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\Drivers\mfefirek.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfehidk.sys . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\Drivers\mfehidk.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{c0bfad0d-5803-11e0-b3eb-00d0d701741f}\AutoRun\command. (...) -- H:\MicroLauncher.exe (.not file.)
~ Scan Keys in 00mn 00s
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter64.acm" . (.Pas de propri�taire - ac3filter.) -- C:\Windows\System32\ac3filter64.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 01s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoControlPanel"=0
~ Scan Keys in 00mn 00s
---\\ Recherche de Drivers Rootkit (O57)
O57 - SDR:Search Drivers Rootkit - ( - .) --
~ Scan Keys in 00mn 01s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.ADAA34740E9F6AFF94CC75D5CF8ED7E2] - 04/01/2008 - 13:34:42 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp32.sys [10216]
O58 - SDL:[MD5.9EB6014A6D85DEF1D4B1B23C8F2443CA] - 30/12/1899 - 02:15:04 -SHA- . (...) -- C:\Windows\SysWOW64\KGyGaAvL.sys [3140]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 06/04/2009 - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfeapfk.sys (mfeapfk) .(.McAfee, Inc. - Access Protection Filter Driver.) - LEGACY_MFEAPFK
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfeavfk.sys (mfeavfk) .(.McAfee, Inc. - Anti-Virus File System Filter Driver.) - LEGACY_MFEAVFK
O64 - Services: CurCS - ??\??\???? - McAfee Inc. (mfeavfk01) .(. - .) - LEGACY_MFEAVFK01
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfefirek.sys (mfefirek) .(.McAfee, Inc. - McAfee Core Firewall Engine Driver.) - LEGACY_MFEFIREK
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfehidk.sys (mfehidk) .(.McAfee, Inc. - McAfee Link Driver.) - LEGACY_MFEHIDK
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mferkdet.sys (mferkdet) .(.McAfee, Inc. - McAfee Code Analysis Driver.) - LEGACY_MFERKDET
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfewfpk.sys (mfewfpk) .(.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - LEGACY_MFEWFPK
O64 - Services: CurCS - 15/07/2010 - C:\Windows\System32\Drivers\Mpfp.sys (MPFP) .(.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - LEGACY_MPFP
O64 - Services: CurCS - 20/10/2009 - C:\Windows\System32\drivers\npf.sys (NPF) .(.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {69B30E77-529D-4C27-A899-D734CCFF8498} [DefaultScope] - (Google) - http://www.google.fr
O69 - SBI: SearchScopes [HKCU] {9563E176-0189-4AEB-B59F-B84E3AF16E5F} - (Secure Search) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {BD68DBAC-2990-48BF-A199-3199C35E1FE2} - (Recherche s�curis�e) - http://fr.search.yahoo.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1114624]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [208384]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
~ Scan Services in 00mn 01s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.EE622B2CD2D3C5CD950D49BD1708A9D4] [SPRF][20/02/2012] (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Users\Patrick\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe [909600]
[MD5.B11B629FFA7A5DDB5A38E64795E824B1] [SPRF][05/12/2012] (...) -- C:\Users\Patrick\AppData\Local\Temp\Mapdb-20130127-1121713.dat [37654528]
[MD5.5A4770D0465E9CD55A57F049653E5415] [SPRF][14/12/2010] (...) -- C:\Users\Patrick\AppData\Local\Temp\netchk.exe [108120]
[MD5.FC433AF9562DFCFCA64FFD8BAC635867] [SPRF][10/02/2013] (...) -- C:\Users\Patrick\AppData\Local\Temp\nui0q19iu0h003n5svwbca.exe [75776]
[MD5.5A432A042DAE460ABE7199B758E8606C] [SPRF][28/10/2006] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Patrick\AppData\Local\Temp\ose00000.exe [145184]
[MD5.1FF66CF24239C112543B31554383BFE9] [SPRF][13/12/2012] (...) -- C:\Users\Patrick\AppData\Local\Temp\utt6E4D.tmp.bat [97]
[MD5.B1DC171ACB3911EE01F54C588B777481] [SPRF][08/09/2012] (...) -- C:\Users\Patrick\AppData\Local\Temp\uttFD5D.tmp.bat [73]
[MD5.06CB45D8486A7B37ADC70598E8C86967] [SPRF][09/04/2011] (...) -- C:\Users\Patrick\AppData\Roaming\mdbu.bin [132006]
[MD5.2D7632865C1008FA4D877C158C99EE46] [SPRF][23/05/2007] (...) -- C:\Users\Patrick\Desktop\mpTrim PRO.exe [231424]
[MD5.9149E19DB451DF6C7735942DC71451C8] [SPRF][21/12/2009] (.Pas de propri�taire - asusTek_sys_ctrl Module.) -- C:\Windows\Downloaded Program Files\asusTek_sys_ctrl.dll [139776]
[MD5.EC9027D2484E3062CBE0A048696A66D9] [SPRF][09/02/2010] (.Direction G�n�rale des Imp�ts - Module de d�livrance de certificat MINEFI.) -- C:\Windows\Downloaded Program Files\CERTDGI1.dll [105344]
[MD5.FE9176A1C2B4A81AFDE6EDD74A6A1DEE] [SPRF][27/10/2009] (.Adobe Systems Incorporated - Adobe� Flash� Player ActiveX Installer.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1956816]
~ Scan Files in 00mn 15s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{B452EF93-79A9-42A3-BF1E-B072DCAF4443}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{45284A46-A1C8-481F-BA22-255C1E975BFE}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{CEDEDF4B-BAE3-4614-90DA-CB5C8800D62E}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{601708CC-1AAA-42CE-B057-6A37CE3634C6}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{281428D0-ABC8-49FF-9A9B-8CB106F2B35E}" |In - Domain - P6 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe (.not file.)
O87 - FAEL: "{4E517E20-7A73-4AB3-987B-9D503E2D009F}" | In - Private - P6 - TRUE | .(.Orb Networks, Inc. - Orb Application.) -- C:\Program Files (x86)\Winamp Remote\bin\Orb.exe
O87 - FAEL: "{1AFB6355-4181-4F84-8697-ABF6981B0227}" | In - Private - P17 - TRUE | .(.Orb Networks, Inc. - Orb Application.) -- C:\Program Files (x86)\Winamp Remote\bin\Orb.exe
O87 - FAEL: "{8D91E7C6-CE6B-4AAF-A8C1-C5E1F5D6F699}" | In - Private - P6 - TRUE | .(.Orb Networks - Orb.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbTray.exe
O87 - FAEL: "{088CE840-9E53-4EFC-899D-32117B86154E}" | In - Private - P17 - TRUE | .(.Orb Networks - Orb.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbTray.exe
O87 - FAEL: "{48F805DC-FA4F-42A6-940C-517B5734A353}" | In - Private - P6 - TRUE | .(.Orb Networks - OrbIR.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbIR.exe
O87 - FAEL: "{D0D91689-A8F7-4BC6-9233-0D3C0C81582E}" | In - Private - P17 - TRUE | .(.Orb Networks - OrbIR.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbIR.exe
O87 - FAEL: "{109735EE-554C-4351-B785-C1B08853B320}" | In - Private - P6 - TRUE | .(.Orb Networks - ORB Windows Media stream encoding client.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbStreamerClient.exe
O87 - FAEL: "{9FFA4D18-DC7F-4B15-A536-0DD967F277EF}" | In - Private - P17 - TRUE | .(.Orb Networks - ORB Windows Media stream encoding client.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbStreamerClient.exe
O87 - FAEL: "{84566B87-E6F8-4A70-A7EA-9D04F4409639}" | In - Private - P6 - TRUE | .(.PacketVideo - TwonkyMedia startup application.) -- C:\Program Files (x86)\TwonkyMedia\twonkymedia.exe
O87 - FAEL: "{2B293C0D-C9BA-4A35-98A9-7746F7B40B02}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserver.exe
O87 - FAEL: "{5A63E331-F493-4179-A4CA-453B596F8110}" | In - Private - P17 - TRUE | .(.PacketVideo - TwonkyMedia startup application.) -- C:\Program Files (x86)\TwonkyMedia\twonkymedia.exe
O87 - FAEL: "{BD69BA1B-C63D-497B-9C37-9511961E24A1}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserver.exe
O87 - FAEL: "{3630ABE8-FF30-40CB-A691-A72E26E45C8A}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{0A68979E-703D-414E-84DE-FE15CFF0E217}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{163B230F-584E-45EF-B396-211C861B80B0}C:\program files (x86)\winamp remote\bin\orbtray.exe" | In - Public - P6 - TRUE | .(.Orb Networks - Orb.) -- C:\program files (x86)\winamp remote\bin\orbtray.exe
O87 - FAEL: "UDP Query User{B3B808D8-7411-4BA6-AE11-6CB51664065D}C:\program files (x86)\winamp remote\bin\orbtray.exe" | In - Public - P17 - TRUE | .(.Orb Networks - Orb.) -- C:\program files (x86)\winamp remote\bin\orbtray.exe
O87 - FAEL: "TCP Query User{C832A392-2A6E-4D2C-BD0C-5589AC0C133D}A:\windows\dsassistant\dsassistant.exe" |In - Private - P6 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "UDP Query User{DCCD895B-1EBF-4552-8B89-F9C79070BB15}A:\windows\dsassistant\dsassistant.exe" |In - Private - P17 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "{54815728-C52A-4882-BC71-B93FB8E71F3B}" |In - Public - P17 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "{871D0A20-5E8D-436C-B5A6-44AF52CC769E}" |In - Public - P6 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "TCP Query User{0B9F4AAC-012B-4C29-8D16-E0B1AC5900DE}C:\program files (x86)\synology\assistant\dsassistant.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "UDP Query User{E50F3711-74BD-420F-826B-E174B7319DE9}C:\program files (x86)\synology\assistant\dsassistant.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "{E09F9BEF-5D88-41E3-8007-042A87380015}" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "{19E343EF-1CE7-4262-A12E-9A701D0947D2}" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "TCP Query User{5AE2909F-0828-4913-9FFC-DF0B533C90C3}C:\program files (x86)\xbmc\xbmc.exe" | In - Private - P6 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "UDP Query User{0BD293BE-FB1D-4807-B27E-B171F52F6D68}C:\program files (x86)\xbmc\xbmc.exe" | In - Private - P17 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "{B4CFA8FC-A09B-4001-BAAC-41CA92F62127}" | In - Public - P17 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "{A23A8929-4BB3-4C6B-B28B-3139B6FFB6D9}" | In - Public - P6 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "TCP Query User{87D746E3-3D07-4301-980E-7F4FCE4FC529}C:\program files (x86)\synology download redirector\redirector.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\synology download redirector\redirector.exe (.not file.)
O87 - FAEL: "UDP Query User{6F4A6ABC-D1CF-4362-A56B-692386C85EDE}C:\program files (x86)\synology download redirector\redirector.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\synology download redirector\redirector.exe (.not file.)
O87 - FAEL: "TCP Query User{679DF6AF-1475-4B13-A4A5-1A1427F700B4}C:\program files (x86)\softsqueeze\softsqueeze.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\softsqueeze\softsqueeze.exe (.not file.)
O87 - FAEL: "UDP Query User{1B205934-8572-4A0C-9C67-92A431E965A3}C:\program files (x86)\softsqueeze\softsqueeze.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\softsqueeze\softsqueeze.exe (.not file.)
O87 - FAEL: "TCP Query User{DDBDE8D5-F901-4666-A8E7-F31C3B9B003B}C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "UDP Query User{2FEAC57B-A0F8-4408-B601-12EF615DE3AD}C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "{356B6801-8C28-4F32-9F12-521B762D1B0D}" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "{CD5454BD-D0E9-49D1-BCA3-F9C24880698D}" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "{4E50255A-13FD-4DD3-8CC2-E69980611884}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Squeezebox\server\SqueezeSvr.exe (.not file.)
O87 - FAEL: "{A15D524C-B9C5-4476-A8B2-8D6AC4FD30C8}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Squeezebox\server\SqueezeSvr.exe (.not file.)
O87 - FAEL: "{F21FD3CC-7EFD-47D8-9799-16CDF02AD777}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{B721FE6F-4E63-4EAE-8BC7-ECB1A91CAE41}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{CF74A89B-BF5F-4617-9A97-393C00CC5A2D}" | In - Private - P6 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\steamapps\common\dirt 2\dirt2.exe
O87 - FAEL: "{14BD9CAD-A765-4E4D-AD33-85B5AE3F1C1D}" | In - Private - P17 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\steamapps\common\dirt 2\dirt2.exe
O87 - FAEL: "TCP Query User{39EFAC71-D2F5-4C98-AD91-E8E0DD9CDD8B}C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe" | In - Private - P6 - TRUE | .(.Codemasters.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "UDP Query User{92B2F115-CBB7-43B1-B5AC-DE05CFB2723F}C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe" | In - Private - P17 - TRUE | .(.Codemasters.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "{8F18D4FF-E9BA-4D29-9B35-CDA21FE6FBCE}" | In - Public - P17 - TRUE | .(.Codemasters - DiRT2 Executable.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "{94DB0CE0-6E31-4D63-83CE-088E8273DC7E}" | In - Public - P6 - TRUE | .(.Codemasters - DiRT2 Executable.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "{68A335A3-3EAD-4370-AF11-0A83AB35F47A}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "{731A213D-BE6D-4E1E-9118-6ABB937FD3B4}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "TCP Query User{D0E14F4C-8970-4E7F-8795-9B56F7EB09BE}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "UDP Query User{4A3678DE-B083-4C04-BCDD-AC00673F6CCD}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "{969A5511-C241-455C-9059-A361E99888D3}" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "{8776F164-9991-4F97-9C28-75FFE6C0D320}" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "TCP Query User{BF72AAC3-80AE-4D86-B40C-E7FBBB346955}C:\program files (x86)\google\google earth\plugin\geplugin.exe" | In - Private - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "UDP Query User{6E6F7ED1-A0F9-42F1-BA78-45C3BB26519F}C:\program files (x86)\google\google earth\plugin\geplugin.exe" | In - Private - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "{B348346B-DB99-4E74-B0DC-B0057BAA2205}" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "{81346A56-83AB-4FCE-8F7C-B9AE542BE207}" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "TCP Query User{9A863667-AA83-4394-BD81-4126D38F9BA0}C:\program files (x86)\synology data replicator 3\backup.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\synology data replicator 3\backup.exe (.not file.)
O87 - FAEL: "UDP Query User{36E520E6-136E-4FF1-9333-BA3EB184E37D}C:\program files (x86)\synology data replicator 3\backup.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\synology data replicator 3\backup.exe (.not file.)
O87 - FAEL: "{68A8BE28-0C81-4A42-AB86-8108275B21E7}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O87 - FAEL: "{5BDB4172-05CD-4244-8391-AB6FC84F33C9}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O87 - FAEL: "{36EBEF92-9349-4CB4-ABC6-43627C1F099B}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "{B4994672-D601-40BC-B778-D34C34477BC0}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "{830B3C75-2C9A-4319-9CE4-91C89470A727}" | In - Public - P6 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O87 - FAEL: "{17F53401-6CAD-432B-BCBD-4006F563F32E}" | In - Public - P17 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O87 - FAEL: "{CB28C817-59C3-4D40-BE9A-2F0D168E3557}" |In - Public - P6 - TRUE | .(...) -- A:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "{E4F57B42-6466-40DC-862E-1059784DE473}" |In - Public - P17 - TRUE | .(...) -- A:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "TCP Query User{8CCB236E-5598-4976-9498-7A81D22BA737}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
O87 - FAEL: "UDP Query User{B6B730FC-6B9B-4654-8407-4A78445F8D6C}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeve
O87 - FAEL: "{7D58E3B0-A724-4C3A-B2C8-768BCDD2EE92}" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "{3F0C8773-4B3F-4BD3-BC88-107F715C7B05}" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "{36620405-E55D-4D55-8A97-1E3E63E877C8}" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION - Epson Connect Printer Setup.) -- C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe
O87 - FAEL: "{48549831-C514-4FE5-8309-878AAEEB5258}" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION - Epson Connect Printer Setup.) -- C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe
O87 - FAEL: "{8BBCF026-8A82-4506-8C33-D070FA989FED}" | In - Private - P6 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{E5251313-0868-4227-8D44-0FE2CF0DBCC3}" | In - Private - P17 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{F9043582-1E21-4BAC-8BBE-3A6D8C1DE611}" | In - Public - P6 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{A05FD42F-4AD6-4B81-90C1-2FC856E815A1}" | In - Public - P17 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{6D7C74AA-A130-46B9-B615-B3D3A8468ED5}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{90DA436C-828A-4457-A09C-497459186495}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{3F97BB9D-2CE5-4264-ADBF-02BA8419A2A8}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{5D30C4C4-DB87-4790-BD16-6FD945A6C6D7}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{7C6F96BD-3427-4F0E-A131-89033E90CFDD}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{DF8DF75C-11BE-40F3-8FD1-438C613D907C}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{A09286FD-66FA-485E-8D9B-7FC3EC719A24}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{245A1CEA-A1BC-4CE2-BA7F-E90CFE40222B}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{89DF74E9-43BD-41C6-B1B3-50C83D0237B4}" | In - Private - P6 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O87 - FAEL: "{E75744A5-14D8-45BC-AE52-AFB43DA4B056}" | In - Private - P17 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
~ Scan Firewall in 00mn 03s
---\\ Scan Additionnel (O88)
Database Version : v2.10672 - (10/02/2013)
Cl�s trouv�es (Keys found) : 50
Valeurs trouv�es (Values found) : 2
Dossiers trouv�s (Folders found) : 3
Fichiers trouv�s (Files found) : 0
[HKLM\Software\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}] =>Toolbar.Winamp
[HKLM\Software\Classes\TypeLib\{538CD77C-BFDD-49B0-9562-77419CAB89D1}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}] =>Toolbar.Winamp
[HKLM\Software\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}] =>Toolbar.Winamp
[HKLM\Software\Classes\AppID\winamptbServer.exe] =>Toolbar.Winamp
[HKCU\Software\Winamp Toolbar] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Winamp Toolbar] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]:Shell =>Hijack.Shell.Gen
[HKLM\Software\Classes\WINAMPTB.AOLToolBand.1] =>Toolbar.Agent
[HKLM\Software\Classes\WINAMPTB.AOLTBSearch] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.AOLTBSearch.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.AOLToolBand] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.Downloader] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.Downloader.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarInfo] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarInfo.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarParams] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarParams.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WinampTbServer.AolToolbarHelper] =>Toolbar.Winamp
[HKLM\Software\Classes\WinampTbServer.AolToolbarHelper.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLToolBand.1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLTBSearch] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLTBSearch.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLToolBand] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.Downloader] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.Downloader.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarInfo] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarInfo.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarParams] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarParams.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WinampTbServer.AolToolbarHelper] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WinampTbServer.AolToolbarHelper.1] =>Toolbar.Winamp
[HKLM\Software\Classes\AppID\WinampTbServer.EXE] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} =>Toolbar.Agent
C:\Program Files (x86)\Winamp Toolbar =>Toolbar.Winamp
C:\ProgramData\Winamp Toolbar =>Toolbar.Winamp
C:\Users\Patrick\AppData\Local\Winamp Toolbar =>Toolbar.Winamp
~ Scan Additionnel in 00mn 20s
---\\ Recherche d�tournement de DNS routeur (O89) (None)
---\\ Product Upgrade Codes (O90)
O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
O90 - PUC: "11328E8261681E11EB0B8BCAF6798BE8" . (.Google�Earth.) -- C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "19DA96544F74E9D4F89C17E73CD2A71E" . (.Microsoft_VC80_CRT_x86_x64.) -- C:\Windows\Installer\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}\ARPPRODUCTICON.exe
O90 - PUC: "1BF27E46343277944B8A62C25DD3B03D" . (.Corel Paint Shop Pro Photo X2.) -- C:\Windows\Installer\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}\ARPPRODUCTICON.exe
O90 - PUC: "20B91A1DE71869244AB57058F37DD475" . (.Microsoft_VC80_MFC_x86.) -- C:\Windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
O90 - PUC: "25BBB29DFF28DE24A8C3E460F249A47B" . (.Microsoft_VC80_MFCLOC_x86.) -- C:\Windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
O90 - PUC: "3F552355DF871F046A8F8628412056EF" . (.Apple Application Support.) -- C:\Windows\Installer\{553255F3-78FD-40F1-A6F8-6882140265FE}\WinInstall.ico
O90 - PUC: "41DC8ECD5FBF46449B4A1EE87453647C" . (.Assistant de connexion Windows Live.) -- C:\Windows\Installer\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}\prodicon.ico
O90 - PUC: "4E9B274AFFA0B7F42BD56FF4E829A8BA" . (.Microsoft_VC90_MFC_x86_x64.) -- C:\Windows\Installer\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}\ARPPRODUCTICON.exe
O90 - PUC: "4F4F5C009F267D040800DAA8C90D6C96" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}\GameForWindowsLiveRedist.exe
O90 - PUC: "5DAB1C8C6E456414DA70A3A83D56963C" . (.Microsoft_VC80_MFC_x86_x64.) -- C:\Windows\Installer\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}\ARPPRODUCTICON.exe
O90 - PUC: "68267DD57EB949849A099E509EA18C81" . (.Windows Live Mail.) -- C:\Windows\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe
O90 - PUC: "687EE9C2BDD189C4F84A1B9B5B6AB677" . (.Microsoft Games for Windows - LIVE.) -- C:\Windows\Installer\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}\GameForWindowsLiveDash.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.5) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "694A72599FD5A214DA7C61B85A73C96A" . (.Microsoft Flight Simulator X.) -- C:\Windows\Installer\{9527A496-5DF9-412A-ADC7-168BA5379CA6}\ARPPRODUCTICON.exe
O90 - PUC: "811CF9E1D156439479EB5EC3EAC5D754" . (.Microsoft_VC80_MFCLOC_x86_x64.) -- C:\Windows\Installer\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}\ARPPRODUCTICON.exe
O90 - PUC: "8F7463F0D15ECCF48826A9D8C0A5FC52" . (.Microsoft_VC80_ATL_x86.) -- C:\Windows\Installer\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}\ARPPRODUCTICON.exe
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "B15D1B9D65BED014EA5BC1FCCAB4C6C8" . (.Epson Connect Printer Setup.) -- C:\Windows\Installer\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}\ARPPRODUCTICON.exe
O90 - PUC: "B5DEF536D6C2EB94786EA7F6DC22CBA5" . (.Microsoft_VC90_MFC_x86.) -- C:\Windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
O90 - PUC: "B850D529A465A3444B2BE7096C34E255" . (.Microsoft_VC80_ATL_x86_x64.) -- C:\Windows\Installer\{925D058B-564A-443A-B4B2-7E90C6432E55}\ARPPRODUCTICON.exe
O90 - PUC: "C7937558D24AF684793B2ABC2C735239" . (.Microsoft_VC90_ATL_x86_x64.) -- C:\Windows\Installer\{8557397C-A42D-486F-97B3-A2CBC2372593}\ARPPRODUCTICON.exe
O90 - PUC: "D0AC3A29DC55D5C4AB59C562002CF062" . (.Microsoft_VC90_CRT_x86_x64.) -- C:\Windows\Installer\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}\ARPPRODUCTICON.exe
O90 - PUC: "D303D9AF2BF07C943979E8B611AE98D2" . (.Epson Event Manager.) -- C:\Windows\Installer\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}\icon.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DC276626FCFB9A94EAEFBAF0DEB3CFB5" . (.Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de t�l�chargement Windows Live.) -- C:\Windows\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "E603EB826AD5C9F4DB0BBD3A8C6CFFDF" . (.QuickTime.) -- C:\Windows\Installer\{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}\Installer.ico
O90 - PUC: "E873E3303DA65DA4DBBEBC6DB91340C6" . (.Microsoft_VC90_ATL_x86.) -- C:\Windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
O90 - PUC: "F65865963B6B0EB4ABB0F894B53E0233" . (.Apple Software Update.) -- C:\Windows\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\Installer.ico
~ Scan Files in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 10/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 90112 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
SS - | Auto 14/07/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 14/07/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 04/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 04/12/2012 103472 | (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
SS - | Demand 05/02/2013 235216 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
SR - | Auto 31/08/2012 201304 | (mcmscsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 | (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 | (McNASvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SS - | Demand 16/11/2012 383608 | (McODS) . (.McAfee, Inc..) - C:\Program Files\McAfee\VirusScan\mcods.exe
SR - | Auto 31/08/2012 201304 | (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 26/12/2012 241016 | (McShield) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
SR - | Auto 26/12/2012 218320 | (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
SR - | Auto 26/12/2012 182312 | (mfevtp) . (.McAfee, Inc..) - C:\Windows\system32\mfevtps.exe
SR - | Auto 23/09/2009 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 02/10/2012 891240 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 10/10/2012 1258856 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 177704 | (ProtexisLicensing) . (...) - C:\Windows\SysWOW64\PSIService.exe
SS - | Demand 20/10/2009 117264 | (rpcapd) . (.CACE Technologies, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe
SR - | Auto 14/12/2010 501336 | (Serveur M�dia) . (.PacketVideo.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
SR - | Auto 28/05/2007 275968 | (StarWindServiceAE) . (.Rocket Division Software.) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
SS - | Demand 16/07/2009 316664 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 02/10/2012 382824 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 248704 | (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 05s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ Scan MBR in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Patrick at 10/02/2013 11:41:44
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s
End of the scan (1427 lines in 04mn 39s)(0)
Run by Patrick at 10/02/2013 11:37:04
State : Version � jour.
UAC : Deactivate by user
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox v3.6.3 (fr)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Ultimate Edition, 64-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : HYRR2
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4087 MB (70% free)
System Restore: Activ� (Enable)
System drive C: has 38 GB (25%) free of 153 GB
---\\ Logged in mode
~ Computer Name: PRINCIPAL
~ User Name: Patrick
~ All Users Names: UpdatusUser, Patrick, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Patrick\AppData\Roaming\
~ %Desktop% : C:\Users\Patrick\Desktop\
~ %Favorites% : C:\Users\Patrick\Favorites\
~ %LocalAppData% : C:\Users\Patrick\AppData\Local\
~ %StartMenu% : C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
A:\ CD-ROM drive (Not Inserted)
B:\ CD-ROM drive (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 38 Go of 153 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 19 Go of 298 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 203 Go of 932 Go)
F:\ CD-ROM drive (Not Inserted)
G:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 - 07:34:59.) -- C:\Windows\Explorer.exe [2870272]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.5121DB613E10A46A3C5085B479026AA7] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/11/2012 - 07:04:11.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.28/10/2009 - 07:24:40.) -- C:\Windows\System32\Winlogon.exe [389632]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Biblioth�que de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:11.) -- C:\Windows\system32\Drivers\AFD.sys [499200]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072]
[MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.14/07/2009 - 02:48:27.) -- C:\Windows\system32\Drivers\ntfs.sys [1659984]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048]
[MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:18:02.) -- C:\Windows\system32\Drivers\rdpdr.sys [165376]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840]
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.06/09/2012 - 18:38:18.) -- C:\Windows\system32\Drivers\volsnap.sys [295792]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/460
~ Mes musiques (My Musics) : 1/24
~ Mes Favoris (My Favorites) : 1/162
~ Mes Documents (My Documents) : 1/7502
~ Mon Bureau (My Desktop) : 1/460
~ Menu demarrer (Programs) : 1/36
~ Scan Hidden Files in 00mn 08s
---\\ Processus lanc�s
[MD5.0AA080277A2101D70EC87885EC3CEB52] - (.ASUSTeK Computer Inc. - TurboVHelp.) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe [1043968] [PID.1964]
[MD5.C9D4451B13578840134FB9F2A23F0A86] - (.Corel, Inc. - Corel Photo Downloader.) -- C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531272] [PID.3460]
[MD5.C11645E219C8C9113A8D9E0500ED25E5] - (.PacketVideo - TwonkyMedia Tray Application.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverconfig.exe [603736] [PID.3680]
[MD5.BD713579A87D698E1F2158CE10E48130] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe [272248] [PID.3740]
[MD5.89939EC260486D47E734995D14119897] - (...) -- C:\Users\Patrick\AppData\Local\CloudStation\bin\cloud.exe [2712960] [PID.3748]
[MD5.BF91B68606862A32CAB13C24A24DD9A9] - (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.exe [180224] [PID.3796]
[MD5.E809FA23C742AF440DF2635F81492D38] - (.Nullsoft - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe [39424] [PID.3808]
[MD5.0BCE7D50DA6D0E8E558373339C8B7911] - (.ASUSTeK Computer Inc. - TurboV EVO.) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe [7256576] [PID.3980]
[MD5.1E0660C440ABD0BB5DCEF52B58C218F0] - (...) -- C:\Users\Patrick\AppData\Local\CloudStation\bin\client-win.exe [10799696] [PID.3988]
[MD5.6EBF0C03E5F0D65F283128218AEEBFDB] - (...) -- C:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe [601088] [PID.3252]
[MD5.98A078F838A70F84E1BD490D7C7675F4] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.4348]
[MD5.D3AC38E80E928CC61A22650E04423BB8] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328] [PID.4356]
[MD5.0D286C0FE561D1A7EB30E83A0FF305B2] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [757296] [PID.2612]
[MD5.7C5A4D3222DEA5570C8F08EC7FC74199] - (.Sun Microsystems, Inc. - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [508136] [PID.576]
[MD5.6B56772F66301FA4376C4E4319EBC245] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5673984] [PID.4628]
[MD5.F0359F7CE712D69ACEF0886BDB4792ED] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [382824] [PID.984]
[MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.1580]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1684]
[MD5.E781164C7D47950E3D218C84B2901CB2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112] [PID.1620]
[MD5.7D2633295EB6FF2B938185874884059D] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [935208] [PID.2152]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ysWOW64\rundll32.exe [0] [PID.2192]
[MD5.F115AF58ABE5605D7D709CBFBD83F418] - (.Pas de propri�taire - nTitles PSIService.) -- C:\Windows\SysWOW64\PSIService.exe [177704] [PID.2376]
[MD5.3120A421ED14B0186675E295219D441C] - (.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe [501336] [PID.2420]
[MD5.B1691AF4A072CB674D600DB16DD7308E] - (.Rocket Division Software - StarWind iSCSI Target (Alcohol Edition).) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968] [PID.2496]
[MD5.2773500AFE1BB7944C0F1D46C910B7DD] - (...) -- C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248704] [PID.2548]
[MD5.2748912E0E656AE1FB74C4BFDF7BC470] - (...) -- C:\Program Files (x86)\Serveur Media\TwonkyMediaServer.exe [1451608] [PID.2752]
~ Scan Processes Running in 00mn 01s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preference [User Data\Default] http://www.google.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\sis36vyd.default\prefs.js
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\McSiteAdvisor.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Patrick] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.5.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) (3,6,0,126) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 27
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: MSS+ Identifier [64Bits] - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} . (.McAfee, Inc. - Quick Browser Identifier for MSS+ Tool.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Winamp Toolbar Loader [64Bits] - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} . (.AOL LLC. - Winamp IE Toolbar Dynamic Link Library.) -- C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: scriptproxy [64Bits] - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} . (.McAfee, Inc. - VSCore Script Scanner.) -- C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120707130948.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin
O2 - BHO: McAfee SiteAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: McAfee SiteAdvisor Toolbar [64Bits] - [HKLM]{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O3 - Toolbar: (no name) [64Bits] - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} Cl� orpheline
~ Scan Toolbar in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdcBase.exe
O4 - HKLM\..\Run: [Corel Photo Downloader] . (.Corel, Inc. - Corel Photo Downloader.) -- C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [Data Replicator 3] C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O4 - HKCU\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHTE.exe
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.exe
O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe
O4 - HKLM\..\Wow6432Node\Run: [TurboV EVO] . (.ASUSTeK Computer Inc. - TurboV EVO.) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe
O4 - HKLM\..\Wow6432Node\Run: [QFan Help] . (...) -- C:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe
O4 - HKLM\..\Wow6432Node\Run: [Cpu Level Up help] . (...) -- C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [mcui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [Corel Photo Downloader] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel PhotoDownloader.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [Data Replicator 3] C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [AdobeBridge] Cl� orpheline
O4 - HKUS\S-1-5-21-158618529-4013303845-1831954470-1001\..\Run: [EPLTarget\P0000000000000001] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHTE.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 02s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\AI Suite v1.05.33.lnk . (...) -- C:\Program Files (x86)\ASUS\AI Suite\AiSuite.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\DiRT 2.lnk . (.Valve Corporation.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Exact Audio Copy.lnk . (...) -- C:\Program Files (x86)\Exact Audio Copy\EAC.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Films.lnk . (...) -- E:\Films
O4 - Global Startup: C:\Users\Patrick\Desktop\Mes tabs - Raccourci.lnk . (...) -- C:\Users\Patrick\Documents\Patrick\Guitare\Mes tabs
O4 - Global Startup: C:\Users\Patrick\Desktop\monAlbumPhoto.lnk . (.monAlbumPhoto.) -- C:\Program Files (x86)\monAlbumPhoto\monAlbumphoto.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Photos - Raccourci.lnk . (...) -- E:\Photos
O4 - Global Startup: C:\Users\Patrick\Desktop\Subtitle Workshop.lnk . (...) -- C:\Program Files (x86)\URUSoft\Subtitle Workshop\SubtitleWorkshop.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\Synology Cloud Station.lnk . (...) -- C:\Users\Patrick\AppData\Local\CloudStation\bin\cloud.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\TwonkyMedia.lnk . (.PacketVideo.) -- C:\Program Files (x86)\TwonkyMedia\twonkymedia.exe
O4 - Global Startup: C:\Users\Patrick\Desktop\VPN Lifeguard.lnk . (.philippe734 - Vous devez ex�cuter le progra.) -- C:\Program Files (x86)\VPN Lifeguard\VpnLifeguard.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\monAlbumPhoto.lnk . (.monAlbumPhoto.) -- C:\Program Files (x86)\monAlbumPhoto\monAlbumphoto.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk . (.Nero AG.) -- C:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk . (.Nullsoft.) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - Global Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\�Torrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
~ Scan Global Startup in 00mn 36s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{06A14C76-9DA6-4486-B628-A277B1B43B63}: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\..\{70FF6B4C-02A1-4120-B539-37D64A3B15BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{06A14C76-9DA6-4486-B628-A277B1B43B63}: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\..\{70FF6B4C-02A1-4120-B539-37D64A3B15BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{06A14C76-9DA6-4486-B628-A277B1B43B63}: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CS2\Services\Tcpip\..\{70FF6B4C-02A1-4120-B539-37D64A3B15BC}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Se (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc. - SiteAdvisor.) - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Services (mcmscsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) . (.McAfee, Inc. - McAfee On-Access Scanner service.) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Servi (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\Windows\system32\mfevtps.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 306.9.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: ProtexisLicensing (ProtexisLicensing) . (.Pas de propri�taire - nTitles PSIService.) - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: Serveur M�dia (Serveur M�dia) . (.PacketVideo - TwonkyMedia Server watchdog.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) . (.Rocket Division Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: UsbClientService (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 04s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.EC807244904FA170C299AB06D87FBDBE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [{34B42EAB-A6E1-4DC5-AA89-9D40FC408120}] (...) -- C:\Users\Patrick\Desktop\keygen.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4C0D2C8A-AA8B-4E08-A751-5B140DB2CD1D}] (...) -- C:\Users\Patrick\Desktop\squeezeslave.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{602FC569-FA8C-490C-A368-661C13D2125E}] (...) -- C:\Users\Patrick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WHLGF5EY\mp610swin64101ea24[1].exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6A899C0B-28E0-4659-AB98-A3F2C195E185}] (...) -- A:\SETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{83CC99A9-A992-4872-9D9C-1E828D457E2F}] (...) -- C:\Users\Patrick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PFA3ZW5B\Monkey_Audio_Winamp_Plugin[1].exe (.not file.)
[MD5.E7C268C4C8702EAF4057F4D54E00D142] [APT] [{B5A1A39B-8722-4FD5-AEA2-4176CEB18B65}] (.Corel Corporation.) -- E:\Logiciels\Corel PaintShop Pro X2 (V-12)+Keygen-HeartBug\Corel Paintshop pro X2\setup.exe
[MD5.00000000000000000000000000000000] [APT] [{DAF04EEC-026B-4DE0-A347-FA5AC84392AA}] (...) -- C:\Users\Patrick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5OZNQM80\aomwin200ea24[1].exe (.not file.)
[MD5.48C88338B07E2922CFCE54CBFF56666C] [APT] [ASUS RegRun Loader] (...) -- C:\Program Files (x86)\ASUS\AASP\1.00.91\AsLoader.exe
[MD5.AFFF82ADF77CA68FC4CF552B176F3D73] [APT] [Cpu Level Up Hook Lanunch] (...) -- C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHookLaunch.exe
[MD5.0AA080277A2101D70EC87885EC3CEB52] [APT] [TurboVHelp] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
~ Scan Scheduled Task in 00mn 04s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: McAfee Inc. mfewfpk (mfewfpk) . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - C:\Windows\System32\drivers\mfewfpk.sys
O41 - Driver: (MPFP) . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - C:\Windows\System32\Drivers\Mpfp.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - Pilote TCP/IP.) - C:\Windows\System32\drivers\tcpip.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: AC3Filter 2.5b - (.Alexander Vigovsky.) [HKLM][64Bits] -- AC3Filter_is1
O42 - Logiciel: AI Suite - (.Pas de propri�taire.) [HKLM][64Bits] -- {310BC5E2-31AF-49BB-904D-E71EB93645DC}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728}
O42 - Logiciel: Adobe Reader X (10.1.5) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Analyseur et SDK MSXML 4.0 SP2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {553255F3-78FD-40F1-A6F8-6882140265FE}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propri�taire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Corel Paint Shop Pro Photo X2 - (.Corel Corporation.) [HKLM][64Bits] -- {64E72FB1-2343-4977-B4A8-262CD53D0BD3}
O42 - Logiciel: DiRT 2 - (.Codemasters.) [HKLM][64Bits] -- Steam App 12840
O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM][64Bits] -- {B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}
O42 - Logiciel: EPSON SX535WD Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX535WD Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Epson Connect Printer Setup - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}
O42 - Logiciel: Epson Download Navigator - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {10F63395-157F-4B93-AB4D-702A2FF11942}
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {FFF841F3-9A15-4F61-BD16-C19F132E5A27}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION2.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {FA9D303D-0FB2-49C7-9397-8E6B11EA892D}
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: Exact Audio Copy 0.99pb5 - (.Andre Wiethoff.) [HKLM][64Bits] -- Exact Audio Copy
O42 - Logiciel: FLAC 1.2.1b (remove only) - (.Xiph.org.) [HKLM][64Bits] -- FLAC
O42 - Logiciel: Fnac - (.Pas de propri�taire.) [HKLM][64Bits] -- Mes Cr�ations Zen_is1
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {28E82311-8616-11E1-BEB0-B8AC6F97B88E}
O42 - Logiciel: Guide d'utilisation EPSON SX535WD Series - (.Pas de propri�taire.) [HKLM][64Bits] -- EPSON SX535WD Series Useg
O42 - Logiciel: Guide r�seau EPSON SX535WD Series - (.Pas de propri�taire.) [HKLM][64Bits] -- EPSON SX535WD Series Netg
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: MKVtoolnix 4.4.0 - (.Moritz Bunkus.) [HKLM][64Bits] -- MKVtoolnix
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MainConcept DTV Decoder Standard - (.MainConcept GmbH.) [HKLM][64Bits] -- {059A00AC-1205-423C-91C7-7E6168D804DA}
O42 - Logiciel: McAfee AntiVirus Plus - (.McAfee, Inc..) [HKLM][64Bits] -- MSC
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Media Player Classic - Home Cinema v. 1.3.1249.0 - (.Pas de propri�taire.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1
O42 - Logiciel: Menu Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {B78120A0-CF84-4366-A393-4D0A59BC546C}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Flight Simulator X - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{9527A496-5DF9-412A-ADC7-168BA5379CA6}
O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM][64Bits] -- {2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises � jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Monkey's Audio - (.Pas de propri�taire.) [HKLM][64Bits] -- Monkey's Audio_is1
O42 - Logiciel: Movie Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {E498385E-1C51-459A-B45F-1721E37AA1A0}
O42 - Logiciel: Mozilla Firefox (3.6.3) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox (3.6.3)
O42 - Logiciel: Mozilla Thunderbird (3.0.4) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird (3.0.4)
O42 - Logiciel: Mp3tag v2.45a - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag
O42 - Logiciel: My 7 Optimizer - (.Pas de propri�taire.) [HKLM][64Bits] -- My 7 Optimizer
O42 - Logiciel: NVIDIA Logiciel syst�me PhysX 9.12.0213 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}
O42 - Logiciel: NVIDIA Pilote 3D Vision 306.97 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote du contr�leur 3D Vision 301.42 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 306.97 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM][64Bits] -- {f3ea5ec5-8ce7-4bf7-ad6a-10e5cc368327}
O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM][64Bits] -- {7829DB6F-A066-4E40-8912-CB07887C20BB}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {62AC81F6-BDD3-4110-9D36-3E9EAAB40999}
O42 - Logiciel: Nero Disc Copy Gadget - (.Nero AG.) [HKLM][64Bits] -- {F1861F30-3419-44DB-B2A1-C274825698B3}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero PhotoSnap - (.Nero AG.) [HKLM][64Bits] -- {9E82B934-9A25-445B-B8DF-8012808074AC}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {359CFC0A-BEB1-440D-95BA-CF63A86DA34F}
O42 - Logiciel: Nero Rescue Agent - (.Nero AG.) [HKLM][64Bits] -- {368BA326-73AD-4351-84ED-3C0A7A52CC53}
O42 - Logiciel: Nero ShowTime - (.Nero AG.) [HKLM][64Bits] -- {D9DCF92E-72EB-412D-AC71-3B01276E5F8B}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero Vision - (.Nero AG.) [HKLM][64Bits] -- {43E39830-1826-415D-8BAE-86845787B54B}
O42 - Logiciel: Nero WaveEditor - (.Nero AG.) [HKLM][64Bits] -- {A209525B-3377-43F4-B886-32F6B6E7356F}
O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM][64Bits] -- {D025A639-B9C9-417D-8531-208859000AF8}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: OpenAL - (.Pas de propri�taire.) [HKLM][64Bits] -- OpenAL
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}
O42 - Logiciel: PowerISO - (.PowerISO Computing, Inc..) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: PuTTY version 0.60 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}
O42 - Logiciel: Rapture3D 2.3.26 Game - (.Blue Ripple Sound.) [HKLM][64Bits] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1
O42 - Logiciel: Serveur M�dia - (.PacketVideo.) [HKLM][64Bits] -- TwonkyMediaServeur M�dia
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: SoundTrax - (.Nero AG.) [HKLM][64Bits] -- {C5A7CB6C-E76D-408F-BA0E-85605420FE9D}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Subtitle Workshop 2.51 - (.Pas de propri�taire.) [HKLM][64Bits] -- SubtitleWorkshop
O42 - Logiciel: Synology Assistant (remove only) - (.Pas de propri�taire.) [HKLM][64Bits] -- Synology Assistant
O42 - Logiciel: Synology Cloud Station (remove only) - (.Pas de propri�taire.) [HKCU][64Bits] -- Synology CloudStation
O42 - Logiciel: Tiger Woods PGA TOUR 08 - (.Electronic Arts.) [HKLM][64Bits] -- {2FEA102C-F535-4513-009B-57B165013C18}
O42 - Logiciel: TurboV EVO - (.Pas de propri�taire.) [HKLM][64Bits] -- {491D92A9-69CA-4EB4-81D3-0106F9337957}
O42 - Logiciel: TwonkyMedia - (.Twonkyvison.) [HKLM][64Bits] -- TwonkyvisionUPnPTwonkyMedia
O42 - Logiciel: VPN Lifeguard - (.Pas de propri�taire.) [HKLM][64Bits] -- VPN Lifeguard 1.3.17_is1
O42 - Logiciel: WinPcap 4.1.1 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: Winamp Essentials Pack - (.Christoph Grether.) [HKLM][64Bits] -- Winamp Essentials Pack
O42 - Logiciel: Winamp Remote - (.Orb Networks.) [HKLM][64Bits] -- Orb
O42 - Logiciel: Winamp Toolbar - (.Pas de propri�taire.) [HKLM][64Bits] -- Winamp Toolbar
O42 - Logiciel: XBMC - (.Team XBMC.) [HKCU][64Bits] -- XBMC
O42 - Logiciel: monAlbumPhoto - (.monAlbumPhoto.) [HKLM][64Bits] -- monAlbumPhoto_is1
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\AC3Filter]
[HKCU\Software\ASUS]
[HKCU\Software\AWSoftware]
[HKCU\Software\Adobe]
[HKCU\Software\Alcohol Soft]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\BitTorrent]
[HKCU\Software\BlueRippleSound]
[HKCU\Software\CDDB]
[HKCU\Software\CanonBJ]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Corel]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DScaler5]
[HKCU\Software\EA Sports]
[HKCU\Software\EPSON]
[HKCU\Software\Florian Heidenreich]
[HKCU\Software\Fnac_FR]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\HookNetwork]
[HKCU\Software\Illustrate]
[HKCU\Software\JavaSoft]
[HKCU\Software\Logitech]
[HKCU\Software\MAP-DN]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\McAfee]
[HKCU\Software\Monkey's Audio]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\NeroDigital]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Ontrack]
[HKCU\Software\Policies]
[HKCU\Software\PowerISO]
[HKCU\Software\SEIKO EPSON CORPORATION]
[HKCU\Software\SimonTatham]
[HKCU\Software\StarSynergy]
[HKCU\Software\Stardock]
[HKCU\Software\Synology]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp Toolbar]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\ej-technologies]
[HKCU\Software\mkvmergeGUI]
[HKCU\Software\monAlbumPhoto]
[HKCU\Software\mpTrim]
[HKCU\Software\shockwave.com]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Audible]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\EPSON]
[HKLM\Software\EpsonNet]
[HKLM\Software\Gabest]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\PowerISO]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\Sonic]
[HKLM\Software\WebSupergoo]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\Alcohol Soft]
[HKLM\Software\Wow6432Node\America Online]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\BlueRippleSound]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Codemasters]
[HKLM\Software\Wow6432Node\Corel]
[HKLM\Software\Wow6432Node\Cygnus Solutions]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\EA Sports]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\EpsonNet]
[HKLM\Software\Wow6432Node\Florian Heidenreich]
[HKLM\Software\Wow6432Node\Fnac_FR]
[HKLM\Software\Wow6432Node\Fujifilm]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\MAP-DN]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nullsoft]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\On2 Technologies]
[HKLM\Software\Wow6432Node\Ontrack]
[HKLM\Software\Wow6432Node\Orb Networks]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Protexis]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION2]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION]
[HKLM\Software\Wow6432Node\SiteAdvisor]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\TDS]
[HKLM\Software\Wow6432Node\TwonkyMedia]
[HKLM\Software\Wow6432Node\URUSoft]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\WebSupergoo]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\mcafeeupdater]
[HKLM\Software\Wow6432Node\mkvmergeGUI]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\optimidata]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 07/06/2012 - 12:18:53 - [172,785] ----D C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
O43 - CFD: 18/08/2012 - 10:58:15 - [13,300] ----D C:\Program Files (x86)\AC3Filter
O43 - CFD: 13/08/2012 - 20:48:24 - [921,931] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 21/02/2010 - 11:41:45 - [53,076] ----D C:\Program Files (x86)\Alcohol Soft
O43 - CFD: 16/05/2010 - 18:44:35 - [2,118] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 05/02/2010 - 01:01:08 - [77,731] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 19/04/2010 - 19:47:52 - [7,127] ----D C:\Program Files (x86)\BRS
O43 - CFD: 15/04/2012 - 10:34:16 - [13,362] ----D C:\Program Files (x86)\Canon
O43 - CFD: 25/12/2012 - 20:03:19 - [785,427] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 25/12/2012 - 20:03:19 - [418,144] ----D C:\Program Files (x86)\Corel
O43 - CFD: 02/02/2010 - 23:17:46 - [-1517,344] ----D C:\Program Files (x86)\EA Sports
O43 - CFD: 07/06/2012 - 12:11:51 - [7,906] ----D C:\Program Files (x86)\epson
O43 - CFD: 07/06/2012 - 12:21:55 - [114,798] ----D C:\Program Files (x86)\Epson Software
O43 - CFD: 14/03/2010 - 09:58:29 - [8,882] ----D C:\Program Files (x86)\Exact Audio Copy
O43 - CFD: 21/02/2010 - 12:39:23 - [0,944] ----D C:\Program Files (x86)\FLAC
O43 - CFD: 09/04/2011 - 08:17:29 - [19,637] ----D C:\Program Files (x86)\Fnac
O43 - CFD: 15/12/2012 - 20:12:12 - [113,566] ----D C:\Program Files (x86)\Google
O43 - CFD: 07/06/2012 - 12:15:48 - [14,423] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/12/2012 - 13:50:19 - [7,014] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 28/05/2011 - 08:46:33 - [85,895] ----D C:\Program Files (x86)\Java
O43 - CFD: 13/04/2010 - 20:07:33 - [0,004] ----D C:\Program Files (x86)\LEA
O43 - CFD: 31/01/2010 - 22:16:50 - [6,337] ----D C:\Program Files (x86)\MainConcept
O43 - CFD: 02/01/2011 - 21:21:27 - [25,444] ----D C:\Program Files (x86)\McAfee
O43 - CFD: 09/02/2013 - 00:38:26 - [11,341] ----D C:\Program Files (x86)\McAfee Security Scan
O43 - CFD: 03/01/2011 - 11:17:25 - [0,432] ----D C:\Program Files (x86)\McAfee.com
O43 - CFD: 30/01/2010 - 21:29:31 - [0,216] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 30/01/2010 - 16:12:25 - [984,220] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 19/04/2010 - 20:02:52 - [11,240] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 30/01/2010 - 21:18:04 - [232,212] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/05/2012 - 02:31:39 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 30/01/2010 - 21:19:58 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 22/04/2011 - 20:13:24 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 30/12/2012 - 11:28:16 - [28,256] ----D C:\Program Files (x86)\MKVtoolnix
O43 - CFD: 27/01/2013 - 11:21:57 - [88,027] ----D C:\Program Files (x86)\monAlbumPhoto
O43 - CFD: 07/03/2010 - 18:36:41 - [2,392] ----D C:\Program Files (x86)\Monkey's Audio
O43 - CFD: 09/03/2012 - 11:41:58 - [29,364] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 29/02/2012 - 18:25:54 - [32,412] ----D C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 06/03/2010 - 11:40:09 - [6,183] ----D C:\Program Files (x86)\Mp3tag
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 30/01/2010 - 16:24:34 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 29/03/2010 - 07:36:42 - [1068,977] ----D C:\Program Files (x86)\Nero
O43 - CFD: 18/11/2012 - 00:51:15 - [118,992] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 04/11/2011 - 10:46:43 - [0,826] ----D C:\Program Files (x86)\Ontrack
O43 - CFD: 19/04/2010 - 19:46:51 - [0,772] ----D C:\Program Files (x86)\OpenAL
O43 - CFD: 30/01/2010 - 16:05:33 - [3,736] ----D C:\Program Files (x86)\PowerISO
O43 - CFD: 14/04/2010 - 20:56:22 - [3,235] ----D C:\Program Files (x86)\PuTTY
O43 - CFD: 16/05/2010 - 18:45:45 - [72,846] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 14/07/2009 - 06:32:38 - [36,813] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 10/02/2013 - 10:57:48 - [12,183] ----D C:\Program Files (x86)\Serveur Media
O43 - CFD: 15/12/2012 - 20:08:20 - [0] ----D C:\Program Files (x86)\Squeezebox
O43 - CFD: 10/02/2013 - 10:58:12 - [-1137,352] ----D C:\Program Files (x86)\Steam
O43 - CFD: 01/12/2012 - 00:40:20 - [126,390] ----D C:\Program Files (x86)\Synology
O43 - CFD: 27/05/2012 - 23:49:33 - [6,651] ----D C:\Program Files (x86)\TechniSat DVB
O43 - CFD: 06/02/2010 - 10:18:03 - [1,926] ----D C:\Program Files (x86)\TwonkyMedia
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 29/10/2010 - 18:38:36 - [2,002] ----D C:\Program Files (x86)\URUSoft
O43 - CFD: 13/12/2012 - 21:21:56 - [0,924] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 09/09/2010 - 22:22:01 - [1,005] ----D C:\Program Files (x86)\VPN Lifeguard
O43 - CFD: 10/04/2010 - 19:37:48 - [47,525] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 30/01/2010 - 19:35:11 - [32,934] ----D C:\Program Files (x86)\Winamp Remote
O43 - CFD: 30/01/2010 - 19:35:14 - [2,186] ----D C:\Program Files (x86)\Winamp Toolbar
O43 - CFD: 14/07/2009 - 16:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/01/2010 - 21:29:26 - [37,598] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 30/01/2010 - 21:29:16 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 16/12/2010 - 12:19:34 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 14/10/2010 - 18:22:52 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 14/07/2009 - 16:24:08 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 14/07/2009 - 16:24:08 - [24,859] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 13/04/2010 - 20:07:09 - [0,226] ----D C:\Program Files (x86)\WinPcap
O43 - CFD: 30/01/2010 - 14:09:58 - [3,547] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 10/02/2010 - 23:45:20 - [86,188] ----D C:\Program Files (x86)\XBMC
O43 - CFD: 10/02/2013 - 11:37:19 - [11,465] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 15/04/2012 - 11:32:24 - [7,724] ----D C:\Program Files (x86)\Common Files\ABBYY
O43 - CFD: 13/08/2012 - 20:48:30 - [315,809] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 16/06/2010 - 09:56:16 - [30,670] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 16/05/2010 - 18:44:45 - [39,282] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 25/12/2012 - 20:04:04 - [6,003] ----D C:\Program Files (x86)\Common Files\Corel
O43 - CFD: 30/01/2010 - 21:18:02 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 27/05/2012 - 23:32:13 - [0] ----D C:\Program Files (x86)\Common Files\EPSON
O43 - CFD: 05/02/2010 - 00:38:14 - [7,939] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 24/02/2012 - 11:15:09 - [1,201] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 03/01/2011 - 11:17:25 - [4,323] ----D C:\Program Files (x86)\Common Files\McAfee
O43 - CFD: 30/01/2010 - 16:24:28 - [0,043] ----D C:\Program Files (x86)\Common Files\Microsoft Games
O43 - CFD: 30/03/2012 - 02:03:21 - [149,887] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 29/03/2010 - 07:37:06 - [136,905] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 30/01/2010 - 19:34:14 - [3,974] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 18/04/2010 - 21:45:12 - [0,302] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 09/11/2011 - 03:17:59 - [42,073] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 30/01/2010 - 21:26:24 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 15/04/2012 - 11:32:24 - [1,678] ----D C:\ProgramData\ABBYY
O43 - CFD: 15/08/2012 - 14:44:04 - [610,137] ----D C:\ProgramData\Adobe
O43 - CFD: 27/01/2013 - 23:03:12 - [177,319] ----D C:\ProgramData\albumphoto
O43 - CFD: 16/05/2010 - 18:44:34 - [15,502] ----D C:\ProgramData\Apple
O43 - CFD: 16/05/2010 - 18:45:16 - [25,685] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 05/02/2010 - 00:51:18 - [0,000] ----D C:\ProgramData\ASUS OC Profiles
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 30/01/2010 - 18:26:57 - [18,228] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 04/11/2011 - 11:10:12 - [1,603] ----D C:\ProgramData\CMUV
O43 - CFD: 19/04/2010 - 20:03:27 - [1999,974] ----D C:\ProgramData\Codemasters
O43 - CFD: 16/12/2012 - 18:44:17 - [1,878] ----D C:\ProgramData\Corel
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 07/06/2012 - 12:17:00 - [5,552] ----D C:\ProgramData\EPSON
O43 - CFD: 05/02/2010 - 00:43:24 - [0,000] ----D C:\ProgramData\EPU
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 30/03/2010 - 18:20:23 - [100,626] ----D C:\ProgramData\Fnac
O43 - CFD: 26/11/2012 - 23:42:29 - [1687,035] ----D C:\ProgramData\McAfee
O43 - CFD: 13/08/2012 - 20:49:41 - [0,001] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 14/07/2010 - 16:44:40 - [434,047] -S--D C:\ProgramData\Microsoft
O43 - CFD: 09/01/2013 - 23:59:51 - [0,319] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 30/01/2010 - 13:39:35 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 29/03/2010 - 07:14:53 - [26,056] ----D C:\ProgramData\Nero
O43 - CFD: 10/02/2013 - 10:57:34 - [3,608] ----D C:\ProgramData\NVIDIA
O43 - CFD: 17/08/2012 - 19:52:55 - [3,101] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 30/01/2010 - 19:37:49 - [0,030] ----D C:\ProgramData\OrbNetworks
O43 - CFD: 16/06/2010 - 22:22:55 - [0,003] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 10/02/2013 - 11:30:07 - [8,963] ----D C:\ProgramData\Serveur M�dia
O43 - CFD: 30/01/2010 - 15:51:32 - [0,000] ----D C:\ProgramData\SiteAdvisor
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 20/02/2010 - 16:28:56 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 01/12/2012 - 00:40:32 - [0] ----D C:\ProgramData\Synology
O43 - CFD: 31/01/2010 - 22:17:04 - [0,518] ----D C:\ProgramData\Technisat
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 07/06/2012 - 12:17:00 - [0,004] ----D C:\ProgramData\UDL
O43 - CFD: 30/01/2010 - 19:35:14 - [0,413] ----D C:\ProgramData\Winamp Toolbar
O43 - CFD: 14/03/2010 - 13:45:24 - [0,294] ----D C:\Users\Patrick\AppData\Roaming\AccurateRip
O43 - CFD: 09/02/2013 - 19:33:57 - [22,703] ----D C:\Users\Patrick\AppData\Roaming\Adobe
O43 - CFD: 17/01/2013 - 22:43:28 - [0] ----D C:\Users\Patrick\AppData\Roaming\Apple Computer
O43 - CFD: 15/04/2012 - 10:34:49 - [0] ----D C:\Users\Patrick\AppData\Roaming\Canon
O43 - CFD: 01/01/2011 - 13:13:20 - [0,016] ----D C:\Users\Patrick\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 16/12/2012 - 18:44:57 - [6,769] ----D C:\Users\Patrick\AppData\Roaming\Corel
O43 - CFD: 03/08/2012 - 10:49:50 - [1,034] ----D C:\Users\Patrick\AppData\Roaming\Epson
O43 - CFD: 30/01/2010 - 13:39:58 - [0] ----D C:\Users\Patrick\AppData\Roaming\Identities
O43 - CFD: 07/06/2012 - 12:10:36 - [0] ----D C:\Users\Patrick\AppData\Roaming\InstallShield
O43 - CFD: 13/04/2010 - 20:00:49 - [0] ----D C:\Users\Patrick\AppData\Roaming\LEA
O43 - CFD: 03/09/2011 - 12:05:29 - [0] ----D C:\Users\Patrick\AppData\Roaming\Logitech
O43 - CFD: 30/01/2010 - 14:27:53 - [2,793] ----D C:\Users\Patrick\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - 16:35:02 - [0] ----D C:\Users\Patrick\AppData\Roaming\Media Center Programs
O43 - CFD: 30/01/2010 - 18:12:59 - [0,000] ----D C:\Users\Patrick\AppData\Roaming\Media Player Classic
O43 - CFD: 27/01/2013 - 13:00:00 - [33,619] -S--D C:\Users\Patrick\AppData\Roaming\Microsoft
O43 - CFD: 19/12/2010 - 13:00:06 - [0,016] ----D C:\Users\Patrick\AppData\Roaming\mkvtoolnix
O43 - CFD: 14/04/2010 - 22:56:17 - [0,551] ----D C:\Users\Patrick\AppData\Roaming\Mozilla
O43 - CFD: 06/03/2010 - 11:46:07 - [0,040] ----D C:\Users\Patrick\AppData\Roaming\Mp3tag
O43 - CFD: 01/04/2010 - 20:20:49 - [2,693] ----D C:\Users\Patrick\AppData\Roaming\Nero
O43 - CFD: 20/02/2010 - 11:19:51 - [0] ----D C:\Users\Patrick\AppData\Roaming\NeroDigital(TM)
O43 - CFD: 02/09/2012 - 10:18:29 - [0,069] ----D C:\Users\Patrick\AppData\Roaming\NVIDIA
O43 - CFD: 22/02/2010 - 23:21:25 - [0,001] ----D C:\Users\Patrick\AppData\Roaming\SqueezePlay
O43 - CFD: 31/01/2010 - 20:55:46 - [461,440] ----D C:\Users\Patrick\AppData\Roaming\Thunderbird
O43 - CFD: 20/01/2013 - 17:59:03 - [30,187] ----D C:\Users\Patrick\AppData\Roaming\uTorrent
O43 - CFD: 06/02/2013 - 22:03:54 - [93,410] ----D C:\Users\Patrick\AppData\Roaming\Winamp
O43 - CFD: 15/04/2012 - 11:34:07 - [1,638] ----D C:\Users\Patrick\AppData\Local\ABBYY
O43 - CFD: 16/12/2012 - 18:15:02 - [21,412] ----D C:\Users\Patrick\AppData\Local\Adobe
O43 - CFD: 16/05/2010 - 18:44:36 - [0] ----D C:\Users\Patrick\AppData\Local\Apple
O43 - CFD: 17/01/2013 - 22:46:23 - [0,002] ----D C:\Users\Patrick\AppData\Local\Apple Computer
O43 - CFD: 30/01/2010 - 13:39:47 - [0] ----D C:\Users\Patrick\AppData\Local\Application Data
O43 - CFD: 29/01/2013 - 01:02:12 - [68,976] ----D C:\Users\Patrick\AppData\Local\CloudStation
O43 - CFD: 25/12/2012 - 20:19:33 - [5,123] ----D C:\Users\Patrick\AppData\Local\Corel
O43 - CFD: 02/03/2010 - 18:12:02 - [0] ----D C:\Users\Patrick\AppData\Local\Diagnostics
O43 - CFD: 30/12/2012 - 01:34:09 - [0] ----D C:\Users\Patrick\AppData\Local\ElevatedDiagnostics
O43 - CFD: 10/04/2011 - 16:11:25 - [0,078] ----D C:\Users\Patrick\AppData\Local\Fnac
O43 - CFD: 01/02/2012 - 21:44:15 - [27,136] ----D C:\Users\Patrick\AppData\Local\Google
O43 - CFD: 30/01/2010 - 13:39:47 - [0] ----D C:\Users\Patrick\AppData\Local\Historique
O43 - CFD: 04/11/2012 - 15:12:34 - [1245,588] ----D C:\Users\Patrick\AppData\Local\Microsoft
O43 - CFD: 17/03/2010 - 16:45:12 - [0,673] ----D C:\Users\Patrick\AppData\Local\Microsoft Games
O43 - CFD: 30/01/2010 - 21:16:02 - [0] ----D C:\Users\Patrick\AppData\Local\Microsoft Help
O43 - CFD: 14/04/2010 - 22:56:17 - [62,330] ----D C:\Users\Patrick\AppData\Local\Mozilla
O43 - CFD: 12/06/2011 - 21:18:49 - [0] ----D C:\Users\Patrick\AppData\Local\Nero
O43 - CFD: 10/02/2013 - 11:33:35 - [389,538] ----D C:\Users\Patrick\AppData\Local\Temp
O43 - CFD: 30/01/2010 - 13:39:47 - [0] ----D C:\Users\Patrick\AppData\Local\Temporary Internet Files
O43 - CFD: 31/01/2010 - 20:55:48 - [56,138] ----D C:\Users\Patrick\AppData\Local\Thunderbird
O43 - CFD: 31/01/2010 - 22:18:56 - [0,518] ----D C:\Users\Patrick\AppData\Local\VirtualStore
O43 - CFD: 30/01/2010 - 20:16:22 - [0,017] ----D C:\Users\Patrick\AppData\Local\Winamp Toolbar
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/07/2012 - 19:08:23 - [0,000] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 07/06/2012 - 12:10:30 - [0,001] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
O43 - CFD: 12/03/2010 - 07:42:25 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy
O43 - CFD: 14/01/2013 - 22:11:49 - [0,001] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 31/01/2010 - 22:16:52 - [0,003] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MainConcept
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 29/01/2013 - 01:02:12 - [0,001] R---D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/01/2013 - 23:42:12 - [0,004] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Synology
O43 - CFD: 31/01/2010 - 11:27:18 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TwonkyMedia
O43 - CFD: 29/10/2010 - 18:38:36 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\URUSoft
O43 - CFD: 30/01/2010 - 14:09:09 - [0] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 10/02/2010 - 23:29:18 - [0,004] ----D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
~ Scan Program Folder in 01mn 07s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.31FC723F36B39C1BAC2F90C568CCEEDA] - 10/02/2013 - 11:00:59 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1770420]
O44 - LFC:[MD5.0DB7A33625600C63ABB5354ED03D5040] - 10/02/2013 - 10:57:35 ---A- . (...) -- C:\Windows\setupact.log [22401]
O44 - LFC:[MD5.79C0BE0290D4B1F93D7D7EB40B6A348A] - 10/02/2013 - 10:57:33 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.B184704A5FE958CA7DC5ED72304EBCF2] - 10/02/2013 - 10:26:14 ---A- . (...) -- C:\OTL.Txt [232254]
O44 - LFC:[MD5.73404978A5BA512C9DAADB2528D5F167] - 10/02/2013 - 04:45:26 ---A- . (...) -- C:\Windows\ntbtlog.txt [443138]
O44 - LFC:[MD5.70E8C8440B25606A5A2D7266CB32CAA5] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\PerfStringBackup.INI []
O44 - LFC:[MD5.37712855F3CBE0E5E503AA1083B71733] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfc009.dat []
O44 - LFC:[MD5.4597DF255B456AADB35473304385C62A] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfc00C.dat []
O44 - LFC:[MD5.0942DF99604EFA479D980A81F6192206] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfh009.dat []
O44 - LFC:[MD5.231FE0F763D7DA492B2E6F03D5B5CF47] - 09/02/2013 - 19:35:30 . (...) -- C:\Windows\System32\perfh00C.dat []
O44 - LFC:[MD5.70E8C8440B25606A5A2D7266CB32CAA5] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549936]
O44 - LFC:[MD5.37712855F3CBE0E5E503AA1083B71733] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106412]
O44 - LFC:[MD5.4597DF255B456AADB35473304385C62A] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130770]
O44 - LFC:[MD5.0942DF99604EFA479D980A81F6192206] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616032]
O44 - LFC:[MD5.231FE0F763D7DA492B2E6F03D5B5CF47] - 09/02/2013 - 19:35:30 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704464]
O44 - LFC:[MD5.BD741D6ECD74408220A2A2E3EBB88EA0] - 05/02/2013 - 22:45:23 ---A- . (...) -- C:\Windows\PFRO.log [49452]
O44 - LFC:[MD5.B5BC6E8FCCBE27C0F3480DBFD9623DEB] - 28/01/2013 - 15:59:22 . (...) -- C:\Windows\System32\FNTCACHE.DAT []
O44 - LFC:[MD5.B5BC6E8FCCBE27C0F3480DBFD9623DEB] - 28/01/2013 - 15:59:22 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [4904544]
O44 - LFC:[MD5.69ABF632C151B45B5CE536C9CD023A02] - 27/01/2013 - 11:20:09 ---A- . (...) -- C:\Windows\KB893803v2.log [542]
~ Scan Files in 01mn 26s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfefirek.sys . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\Drivers\mfefirek.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfehidk.sys . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\Drivers\mfehidk.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{c0bfad0d-5803-11e0-b3eb-00d0d701741f}\AutoRun\command. (...) -- H:\MicroLauncher.exe (.not file.)
~ Scan Keys in 00mn 00s
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter64.acm" . (.Pas de propri�taire - ac3filter.) -- C:\Windows\System32\ac3filter64.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 01s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoControlPanel"=0
~ Scan Keys in 00mn 00s
---\\ Recherche de Drivers Rootkit (O57)
O57 - SDR:Search Drivers Rootkit - ( - .) --
~ Scan Keys in 00mn 01s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.ADAA34740E9F6AFF94CC75D5CF8ED7E2] - 04/01/2008 - 13:34:42 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp32.sys [10216]
O58 - SDL:[MD5.9EB6014A6D85DEF1D4B1B23C8F2443CA] - 30/12/1899 - 02:15:04 -SHA- . (...) -- C:\Windows\SysWOW64\KGyGaAvL.sys [3140]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 06/04/2009 - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfeapfk.sys (mfeapfk) .(.McAfee, Inc. - Access Protection Filter Driver.) - LEGACY_MFEAPFK
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfeavfk.sys (mfeavfk) .(.McAfee, Inc. - Anti-Virus File System Filter Driver.) - LEGACY_MFEAVFK
O64 - Services: CurCS - ??\??\???? - McAfee Inc. (mfeavfk01) .(. - .) - LEGACY_MFEAVFK01
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfefirek.sys (mfefirek) .(.McAfee, Inc. - McAfee Core Firewall Engine Driver.) - LEGACY_MFEFIREK
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfehidk.sys (mfehidk) .(.McAfee, Inc. - McAfee Link Driver.) - LEGACY_MFEHIDK
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mferkdet.sys (mferkdet) .(.McAfee, Inc. - McAfee Code Analysis Driver.) - LEGACY_MFERKDET
O64 - Services: CurCS - 26/12/2012 - C:\Windows\System32\drivers\mfewfpk.sys (mfewfpk) .(.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - LEGACY_MFEWFPK
O64 - Services: CurCS - 15/07/2010 - C:\Windows\System32\Drivers\Mpfp.sys (MPFP) .(.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - LEGACY_MPFP
O64 - Services: CurCS - 20/10/2009 - C:\Windows\System32\drivers\npf.sys (NPF) .(.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {69B30E77-529D-4C27-A899-D734CCFF8498} [DefaultScope] - (Google) - http://www.google.fr
O69 - SBI: SearchScopes [HKCU] {9563E176-0189-4AEB-B59F-B84E3AF16E5F} - (Secure Search) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {BD68DBAC-2990-48BF-A199-3199C35E1FE2} - (Recherche s�curis�e) - http://fr.search.yahoo.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1114624]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [208384]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
~ Scan Services in 00mn 01s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.EE622B2CD2D3C5CD950D49BD1708A9D4] [SPRF][20/02/2012] (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Users\Patrick\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe [909600]
[MD5.B11B629FFA7A5DDB5A38E64795E824B1] [SPRF][05/12/2012] (...) -- C:\Users\Patrick\AppData\Local\Temp\Mapdb-20130127-1121713.dat [37654528]
[MD5.5A4770D0465E9CD55A57F049653E5415] [SPRF][14/12/2010] (...) -- C:\Users\Patrick\AppData\Local\Temp\netchk.exe [108120]
[MD5.FC433AF9562DFCFCA64FFD8BAC635867] [SPRF][10/02/2013] (...) -- C:\Users\Patrick\AppData\Local\Temp\nui0q19iu0h003n5svwbca.exe [75776]
[MD5.5A432A042DAE460ABE7199B758E8606C] [SPRF][28/10/2006] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\Patrick\AppData\Local\Temp\ose00000.exe [145184]
[MD5.1FF66CF24239C112543B31554383BFE9] [SPRF][13/12/2012] (...) -- C:\Users\Patrick\AppData\Local\Temp\utt6E4D.tmp.bat [97]
[MD5.B1DC171ACB3911EE01F54C588B777481] [SPRF][08/09/2012] (...) -- C:\Users\Patrick\AppData\Local\Temp\uttFD5D.tmp.bat [73]
[MD5.06CB45D8486A7B37ADC70598E8C86967] [SPRF][09/04/2011] (...) -- C:\Users\Patrick\AppData\Roaming\mdbu.bin [132006]
[MD5.2D7632865C1008FA4D877C158C99EE46] [SPRF][23/05/2007] (...) -- C:\Users\Patrick\Desktop\mpTrim PRO.exe [231424]
[MD5.9149E19DB451DF6C7735942DC71451C8] [SPRF][21/12/2009] (.Pas de propri�taire - asusTek_sys_ctrl Module.) -- C:\Windows\Downloaded Program Files\asusTek_sys_ctrl.dll [139776]
[MD5.EC9027D2484E3062CBE0A048696A66D9] [SPRF][09/02/2010] (.Direction G�n�rale des Imp�ts - Module de d�livrance de certificat MINEFI.) -- C:\Windows\Downloaded Program Files\CERTDGI1.dll [105344]
[MD5.FE9176A1C2B4A81AFDE6EDD74A6A1DEE] [SPRF][27/10/2009] (.Adobe Systems Incorporated - Adobe� Flash� Player ActiveX Installer.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1956816]
~ Scan Files in 00mn 15s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{B452EF93-79A9-42A3-BF1E-B072DCAF4443}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{45284A46-A1C8-481F-BA22-255C1E975BFE}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{CEDEDF4B-BAE3-4614-90DA-CB5C8800D62E}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{601708CC-1AAA-42CE-B057-6A37CE3634C6}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{281428D0-ABC8-49FF-9A9B-8CB106F2B35E}" |In - Domain - P6 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe (.not file.)
O87 - FAEL: "{4E517E20-7A73-4AB3-987B-9D503E2D009F}" | In - Private - P6 - TRUE | .(.Orb Networks, Inc. - Orb Application.) -- C:\Program Files (x86)\Winamp Remote\bin\Orb.exe
O87 - FAEL: "{1AFB6355-4181-4F84-8697-ABF6981B0227}" | In - Private - P17 - TRUE | .(.Orb Networks, Inc. - Orb Application.) -- C:\Program Files (x86)\Winamp Remote\bin\Orb.exe
O87 - FAEL: "{8D91E7C6-CE6B-4AAF-A8C1-C5E1F5D6F699}" | In - Private - P6 - TRUE | .(.Orb Networks - Orb.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbTray.exe
O87 - FAEL: "{088CE840-9E53-4EFC-899D-32117B86154E}" | In - Private - P17 - TRUE | .(.Orb Networks - Orb.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbTray.exe
O87 - FAEL: "{48F805DC-FA4F-42A6-940C-517B5734A353}" | In - Private - P6 - TRUE | .(.Orb Networks - OrbIR.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbIR.exe
O87 - FAEL: "{D0D91689-A8F7-4BC6-9233-0D3C0C81582E}" | In - Private - P17 - TRUE | .(.Orb Networks - OrbIR.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbIR.exe
O87 - FAEL: "{109735EE-554C-4351-B785-C1B08853B320}" | In - Private - P6 - TRUE | .(.Orb Networks - ORB Windows Media stream encoding client.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbStreamerClient.exe
O87 - FAEL: "{9FFA4D18-DC7F-4B15-A536-0DD967F277EF}" | In - Private - P17 - TRUE | .(.Orb Networks - ORB Windows Media stream encoding client.) -- C:\Program Files (x86)\Winamp Remote\bin\OrbStreamerClient.exe
O87 - FAEL: "{84566B87-E6F8-4A70-A7EA-9D04F4409639}" | In - Private - P6 - TRUE | .(.PacketVideo - TwonkyMedia startup application.) -- C:\Program Files (x86)\TwonkyMedia\twonkymedia.exe
O87 - FAEL: "{2B293C0D-C9BA-4A35-98A9-7746F7B40B02}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserver.exe
O87 - FAEL: "{5A63E331-F493-4179-A4CA-453B596F8110}" | In - Private - P17 - TRUE | .(.PacketVideo - TwonkyMedia startup application.) -- C:\Program Files (x86)\TwonkyMedia\twonkymedia.exe
O87 - FAEL: "{BD69BA1B-C63D-497B-9C37-9511961E24A1}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\TwonkyMedia\twonkymediaserver.exe
O87 - FAEL: "{3630ABE8-FF30-40CB-A691-A72E26E45C8A}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{0A68979E-703D-414E-84DE-FE15CFF0E217}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{163B230F-584E-45EF-B396-211C861B80B0}C:\program files (x86)\winamp remote\bin\orbtray.exe" | In - Public - P6 - TRUE | .(.Orb Networks - Orb.) -- C:\program files (x86)\winamp remote\bin\orbtray.exe
O87 - FAEL: "UDP Query User{B3B808D8-7411-4BA6-AE11-6CB51664065D}C:\program files (x86)\winamp remote\bin\orbtray.exe" | In - Public - P17 - TRUE | .(.Orb Networks - Orb.) -- C:\program files (x86)\winamp remote\bin\orbtray.exe
O87 - FAEL: "TCP Query User{C832A392-2A6E-4D2C-BD0C-5589AC0C133D}A:\windows\dsassistant\dsassistant.exe" |In - Private - P6 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "UDP Query User{DCCD895B-1EBF-4552-8B89-F9C79070BB15}A:\windows\dsassistant\dsassistant.exe" |In - Private - P17 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "{54815728-C52A-4882-BC71-B93FB8E71F3B}" |In - Public - P17 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "{871D0A20-5E8D-436C-B5A6-44AF52CC769E}" |In - Public - P6 - TRUE | .(...) -- A:\windows\dsassistant\dsassistant.exe (.not file.)
O87 - FAEL: "TCP Query User{0B9F4AAC-012B-4C29-8D16-E0B1AC5900DE}C:\program files (x86)\synology\assistant\dsassistant.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "UDP Query User{E50F3711-74BD-420F-826B-E174B7319DE9}C:\program files (x86)\synology\assistant\dsassistant.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "{E09F9BEF-5D88-41E3-8007-042A87380015}" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "{19E343EF-1CE7-4262-A12E-9A701D0947D2}" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\synology\assistant\dsassistant.exe
O87 - FAEL: "TCP Query User{5AE2909F-0828-4913-9FFC-DF0B533C90C3}C:\program files (x86)\xbmc\xbmc.exe" | In - Private - P6 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "UDP Query User{0BD293BE-FB1D-4807-B27E-B171F52F6D68}C:\program files (x86)\xbmc\xbmc.exe" | In - Private - P17 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "{B4CFA8FC-A09B-4001-BAAC-41CA92F62127}" | In - Public - P17 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "{A23A8929-4BB3-4C6B-B28B-3139B6FFB6D9}" | In - Public - P6 - TRUE | .(.Team XBMC - XBMC.) -- C:\program files (x86)\xbmc\xbmc.exe
O87 - FAEL: "TCP Query User{87D746E3-3D07-4301-980E-7F4FCE4FC529}C:\program files (x86)\synology download redirector\redirector.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\synology download redirector\redirector.exe (.not file.)
O87 - FAEL: "UDP Query User{6F4A6ABC-D1CF-4362-A56B-692386C85EDE}C:\program files (x86)\synology download redirector\redirector.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\synology download redirector\redirector.exe (.not file.)
O87 - FAEL: "TCP Query User{679DF6AF-1475-4B13-A4A5-1A1427F700B4}C:\program files (x86)\softsqueeze\softsqueeze.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\softsqueeze\softsqueeze.exe (.not file.)
O87 - FAEL: "UDP Query User{1B205934-8572-4A0C-9C67-92A431E965A3}C:\program files (x86)\softsqueeze\softsqueeze.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\softsqueeze\softsqueeze.exe (.not file.)
O87 - FAEL: "TCP Query User{DDBDE8D5-F901-4666-A8E7-F31C3B9B003B}C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "UDP Query User{2FEAC57B-A0F8-4408-B601-12EF615DE3AD}C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "{356B6801-8C28-4F32-9F12-521B762D1B0D}" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "{CD5454BD-D0E9-49D1-BCA3-F9C24880698D}" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\squeezebox\squeezeplay\squeezeplay.exe (.not file.)
O87 - FAEL: "{4E50255A-13FD-4DD3-8CC2-E69980611884}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Squeezebox\server\SqueezeSvr.exe (.not file.)
O87 - FAEL: "{A15D524C-B9C5-4476-A8B2-8D6AC4FD30C8}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Squeezebox\server\SqueezeSvr.exe (.not file.)
O87 - FAEL: "{F21FD3CC-7EFD-47D8-9799-16CDF02AD777}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{B721FE6F-4E63-4EAE-8BC7-ECB1A91CAE41}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{CF74A89B-BF5F-4617-9A97-393C00CC5A2D}" | In - Private - P6 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\steamapps\common\dirt 2\dirt2.exe
O87 - FAEL: "{14BD9CAD-A765-4E4D-AD33-85B5AE3F1C1D}" | In - Private - P17 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\steamapps\common\dirt 2\dirt2.exe
O87 - FAEL: "TCP Query User{39EFAC71-D2F5-4C98-AD91-E8E0DD9CDD8B}C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe" | In - Private - P6 - TRUE | .(.Codemasters.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "UDP Query User{92B2F115-CBB7-43B1-B5AC-DE05CFB2723F}C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe" | In - Private - P17 - TRUE | .(.Codemasters.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "{8F18D4FF-E9BA-4D29-9B35-CDA21FE6FBCE}" | In - Public - P17 - TRUE | .(.Codemasters - DiRT2 Executable.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "{94DB0CE0-6E31-4D63-83CE-088E8273DC7E}" | In - Public - P6 - TRUE | .(.Codemasters - DiRT2 Executable.) -- C:\program files (x86)\steam\steamapps\common\dirt 2\dirt2_game.exe
O87 - FAEL: "{68A335A3-3EAD-4370-AF11-0A83AB35F47A}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "{731A213D-BE6D-4E1E-9118-6ABB937FD3B4}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "TCP Query User{D0E14F4C-8970-4E7F-8795-9B56F7EB09BE}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "UDP Query User{4A3678DE-B083-4C04-BCDD-AC00673F6CCD}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "{969A5511-C241-455C-9059-A361E99888D3}" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "{8776F164-9991-4F97-9C28-75FFE6C0D320}" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "TCP Query User{BF72AAC3-80AE-4D86-B40C-E7FBBB346955}C:\program files (x86)\google\google earth\plugin\geplugin.exe" | In - Private - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "UDP Query User{6E6F7ED1-A0F9-42F1-BA78-45C3BB26519F}C:\program files (x86)\google\google earth\plugin\geplugin.exe" | In - Private - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "{B348346B-DB99-4E74-B0DC-B0057BAA2205}" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "{81346A56-83AB-4FCE-8F7C-B9AE542BE207}" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "TCP Query User{9A863667-AA83-4394-BD81-4126D38F9BA0}C:\program files (x86)\synology data replicator 3\backup.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\synology data replicator 3\backup.exe (.not file.)
O87 - FAEL: "UDP Query User{36E520E6-136E-4FF1-9333-BA3EB184E37D}C:\program files (x86)\synology data replicator 3\backup.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\synology data replicator 3\backup.exe (.not file.)
O87 - FAEL: "{68A8BE28-0C81-4A42-AB86-8108275B21E7}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O87 - FAEL: "{5BDB4172-05CD-4244-8391-AB6FC84F33C9}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Synology Data Replicator 3\Backup.exe (.not file.)
O87 - FAEL: "{36EBEF92-9349-4CB4-ABC6-43627C1F099B}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "{B4994672-D601-40BC-B778-D34C34477BC0}" |In - None - P6 - TRUE | .(...) -- C:\Windows\WindowsMobile\wmdHost.exe (.not file.)
O87 - FAEL: "{830B3C75-2C9A-4319-9CE4-91C89470A727}" | In - Public - P6 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O87 - FAEL: "{17F53401-6CAD-432B-BCBD-4006F563F32E}" | In - Public - P17 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O87 - FAEL: "{CB28C817-59C3-4D40-BE9A-2F0D168E3557}" |In - Public - P6 - TRUE | .(...) -- A:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "{E4F57B42-6466-40DC-862E-1059784DE473}" |In - Public - P17 - TRUE | .(...) -- A:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "TCP Query User{8CCB236E-5598-4976-9498-7A81D22BA737}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
O87 - FAEL: "UDP Query User{B6B730FC-6B9B-4654-8407-4A78445F8D6C}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeve
O87 - FAEL: "{7D58E3B0-A724-4C3A-B2C8-768BCDD2EE92}" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "{3F0C8773-4B3F-4BD3-BC88-107F715C7B05}" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "{36620405-E55D-4D55-8A97-1E3E63E877C8}" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION - Epson Connect Printer Setup.) -- C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe
O87 - FAEL: "{48549831-C514-4FE5-8309-878AAEEB5258}" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION - Epson Connect Printer Setup.) -- C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe
O87 - FAEL: "{8BBCF026-8A82-4506-8C33-D070FA989FED}" | In - Private - P6 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{E5251313-0868-4227-8D44-0FE2CF0DBCC3}" | In - Private - P17 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{F9043582-1E21-4BAC-8BBE-3A6D8C1DE611}" | In - Public - P6 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{A05FD42F-4AD6-4B81-90C1-2FC856E815A1}" | In - Public - P17 - TRUE | .(.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
O87 - FAEL: "{6D7C74AA-A130-46B9-B615-B3D3A8468ED5}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{90DA436C-828A-4457-A09C-497459186495}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{3F97BB9D-2CE5-4264-ADBF-02BA8419A2A8}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{5D30C4C4-DB87-4790-BD16-6FD945A6C6D7}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe
O87 - FAEL: "{7C6F96BD-3427-4F0E-A131-89033E90CFDD}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{DF8DF75C-11BE-40F3-8FD1-438C613D907C}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{A09286FD-66FA-485E-8D9B-7FC3EC719A24}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{245A1CEA-A1BC-4CE2-BA7F-E90CFE40222B}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{89DF74E9-43BD-41C6-B1B3-50C83D0237B4}" | In - Private - P6 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O87 - FAEL: "{E75744A5-14D8-45BC-AE52-AFB43DA4B056}" | In - Private - P17 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
~ Scan Firewall in 00mn 03s
---\\ Scan Additionnel (O88)
Database Version : v2.10672 - (10/02/2013)
Cl�s trouv�es (Keys found) : 50
Valeurs trouv�es (Values found) : 2
Dossiers trouv�s (Folders found) : 3
Fichiers trouv�s (Files found) : 0
[HKLM\Software\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}] =>Toolbar.Winamp
[HKLM\Software\Classes\TypeLib\{538CD77C-BFDD-49B0-9562-77419CAB89D1}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}] =>Toolbar.Winamp
[HKLM\Software\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}] =>Toolbar.Winamp
[HKLM\Software\Classes\AppID\winamptbServer.exe] =>Toolbar.Winamp
[HKCU\Software\Winamp Toolbar] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Winamp Toolbar] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]:Shell =>Hijack.Shell.Gen
[HKLM\Software\Classes\WINAMPTB.AOLToolBand.1] =>Toolbar.Agent
[HKLM\Software\Classes\WINAMPTB.AOLTBSearch] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.AOLTBSearch.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.AOLToolBand] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.Downloader] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.Downloader.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarInfo] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarInfo.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarParams] =>Toolbar.Winamp
[HKLM\Software\Classes\WINAMPTB.ToolbarParams.1] =>Toolbar.Winamp
[HKLM\Software\Classes\WinampTbServer.AolToolbarHelper] =>Toolbar.Winamp
[HKLM\Software\Classes\WinampTbServer.AolToolbarHelper.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLToolBand.1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLTBSearch] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLTBSearch.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.AOLToolBand] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.Downloader] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.Downloader.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarInfo] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarInfo.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarParams] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WINAMPTB.ToolbarParams.1] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WinampTbServer.AolToolbarHelper] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\WinampTbServer.AolToolbarHelper.1] =>Toolbar.Winamp
[HKLM\Software\Classes\AppID\WinampTbServer.EXE] =>Toolbar.Winamp
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} =>Toolbar.Agent
C:\Program Files (x86)\Winamp Toolbar =>Toolbar.Winamp
C:\ProgramData\Winamp Toolbar =>Toolbar.Winamp
C:\Users\Patrick\AppData\Local\Winamp Toolbar =>Toolbar.Winamp
~ Scan Additionnel in 00mn 20s
---\\ Recherche d�tournement de DNS routeur (O89) (None)
---\\ Product Upgrade Codes (O90)
O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
O90 - PUC: "11328E8261681E11EB0B8BCAF6798BE8" . (.Google�Earth.) -- C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "19DA96544F74E9D4F89C17E73CD2A71E" . (.Microsoft_VC80_CRT_x86_x64.) -- C:\Windows\Installer\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}\ARPPRODUCTICON.exe
O90 - PUC: "1BF27E46343277944B8A62C25DD3B03D" . (.Corel Paint Shop Pro Photo X2.) -- C:\Windows\Installer\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}\ARPPRODUCTICON.exe
O90 - PUC: "20B91A1DE71869244AB57058F37DD475" . (.Microsoft_VC80_MFC_x86.) -- C:\Windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
O90 - PUC: "25BBB29DFF28DE24A8C3E460F249A47B" . (.Microsoft_VC80_MFCLOC_x86.) -- C:\Windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
O90 - PUC: "3F552355DF871F046A8F8628412056EF" . (.Apple Application Support.) -- C:\Windows\Installer\{553255F3-78FD-40F1-A6F8-6882140265FE}\WinInstall.ico
O90 - PUC: "41DC8ECD5FBF46449B4A1EE87453647C" . (.Assistant de connexion Windows Live.) -- C:\Windows\Installer\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}\prodicon.ico
O90 - PUC: "4E9B274AFFA0B7F42BD56FF4E829A8BA" . (.Microsoft_VC90_MFC_x86_x64.) -- C:\Windows\Installer\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}\ARPPRODUCTICON.exe
O90 - PUC: "4F4F5C009F267D040800DAA8C90D6C96" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}\GameForWindowsLiveRedist.exe
O90 - PUC: "5DAB1C8C6E456414DA70A3A83D56963C" . (.Microsoft_VC80_MFC_x86_x64.) -- C:\Windows\Installer\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}\ARPPRODUCTICON.exe
O90 - PUC: "68267DD57EB949849A099E509EA18C81" . (.Windows Live Mail.) -- C:\Windows\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe
O90 - PUC: "687EE9C2BDD189C4F84A1B9B5B6AB677" . (.Microsoft Games for Windows - LIVE.) -- C:\Windows\Installer\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}\GameForWindowsLiveDash.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.5) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "694A72599FD5A214DA7C61B85A73C96A" . (.Microsoft Flight Simulator X.) -- C:\Windows\Installer\{9527A496-5DF9-412A-ADC7-168BA5379CA6}\ARPPRODUCTICON.exe
O90 - PUC: "811CF9E1D156439479EB5EC3EAC5D754" . (.Microsoft_VC80_MFCLOC_x86_x64.) -- C:\Windows\Installer\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}\ARPPRODUCTICON.exe
O90 - PUC: "8F7463F0D15ECCF48826A9D8C0A5FC52" . (.Microsoft_VC80_ATL_x86.) -- C:\Windows\Installer\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}\ARPPRODUCTICON.exe
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "B15D1B9D65BED014EA5BC1FCCAB4C6C8" . (.Epson Connect Printer Setup.) -- C:\Windows\Installer\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}\ARPPRODUCTICON.exe
O90 - PUC: "B5DEF536D6C2EB94786EA7F6DC22CBA5" . (.Microsoft_VC90_MFC_x86.) -- C:\Windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
O90 - PUC: "B850D529A465A3444B2BE7096C34E255" . (.Microsoft_VC80_ATL_x86_x64.) -- C:\Windows\Installer\{925D058B-564A-443A-B4B2-7E90C6432E55}\ARPPRODUCTICON.exe
O90 - PUC: "C7937558D24AF684793B2ABC2C735239" . (.Microsoft_VC90_ATL_x86_x64.) -- C:\Windows\Installer\{8557397C-A42D-486F-97B3-A2CBC2372593}\ARPPRODUCTICON.exe
O90 - PUC: "D0AC3A29DC55D5C4AB59C562002CF062" . (.Microsoft_VC90_CRT_x86_x64.) -- C:\Windows\Installer\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}\ARPPRODUCTICON.exe
O90 - PUC: "D303D9AF2BF07C943979E8B611AE98D2" . (.Epson Event Manager.) -- C:\Windows\Installer\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}\icon.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DC276626FCFB9A94EAEFBAF0DEB3CFB5" . (.Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de t�l�chargement Windows Live.) -- C:\Windows\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "E603EB826AD5C9F4DB0BBD3A8C6CFFDF" . (.QuickTime.) -- C:\Windows\Installer\{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}\Installer.ico
O90 - PUC: "E873E3303DA65DA4DBBEBC6DB91340C6" . (.Microsoft_VC90_ATL_x86.) -- C:\Windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
O90 - PUC: "F65865963B6B0EB4ABB0F894B53E0233" . (.Apple Software Update.) -- C:\Windows\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\Installer.ico
~ Scan Files in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 10/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 90112 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
SS - | Auto 14/07/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 14/07/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 04/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 04/12/2012 103472 | (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
SS - | Demand 05/02/2013 235216 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
SR - | Auto 31/08/2012 201304 | (mcmscsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 | (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 | (McNASvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SS - | Demand 16/11/2012 383608 | (McODS) . (.McAfee, Inc..) - C:\Program Files\McAfee\VirusScan\mcods.exe
SR - | Auto 31/08/2012 201304 | (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 26/12/2012 241016 | (McShield) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
SR - | Auto 26/12/2012 218320 | (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
SR - | Auto 26/12/2012 182312 | (mfevtp) . (.McAfee, Inc..) - C:\Windows\system32\mfevtps.exe
SR - | Auto 23/09/2009 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 02/10/2012 891240 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 10/10/2012 1258856 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 177704 | (ProtexisLicensing) . (...) - C:\Windows\SysWOW64\PSIService.exe
SS - | Demand 20/10/2009 117264 | (rpcapd) . (.CACE Technologies, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe
SR - | Auto 14/12/2010 501336 | (Serveur M�dia) . (.PacketVideo.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe
SR - | Auto 28/05/2007 275968 | (StarWindServiceAE) . (.Rocket Division Software.) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
SS - | Demand 16/07/2009 316664 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 02/10/2012 382824 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 248704 | (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 05s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ Scan MBR in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Patrick at 10/02/2013 11:41:44
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s
End of the scan (1427 lines in 04mn 39s)(0)