cjoint

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v1.3.5.60 par Nicolas Coolman, Update du 2013-02-12
Run by Normand at 2013-02-12 14:35:04
State : Version � jour.
UAC : Deactivate by program


---\\ Web Browser
MSIE: Internet Explorer v9.10.9200.16453
MFIE: Mozilla Firefox 18.0.2 v18.0.2 (Defaut)

---\\ Windows Product Information
~ Langage: Fran�ais
Windows 8 Business Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8HRFQ
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3835 MB (62% free)
System Restore: Activ� (Enable)
System drive C: has 337 GB (72%) free of 466 GB

---\\ Logged in mode
~ Computer Name: NORMAND-PC
~ User Name: Normand
~ All Users Names: Normand, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Normand\AppData\Roaming\
~ %Desktop% : C:\Users\Normand\Desktop\
~ %Favorites% : C:\Users\Normand\Favorites\
~ %LocalAppData% : C:\Users\Normand\AppData\Local\
~ %StartMenu% : C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 337 Go of 466 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Hard drive, Flash drive, Thumb drive (Free 190 Go of 465 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 371 Go of 465 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.E13A31D5254C25406A7946BDD9B06364] - (.Microsoft Corporation - Explorateur Windows.) (.2012-10-11 - 02:35:16.) -- C:\Windows\Explorer.exe [2380944]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.2012-07-25 - 22:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.AAEF73606F58ADE710208F4B1B988FBF] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.2012-11-07 - 23:22:19.) -- C:\Windows\System32\wininet.dll [2246656]
[MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.2012-10-11 - 00:46:58.) -- C:\Windows\System32\Winlogon.exe [517120]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Biblioth�que de licences.) (.2012-07-25 - 22:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.36D6A3201721558A8AFBCC09C2DA4C2C] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.2012-11-05 - 22:53:44.) -- C:\Windows\system32\Drivers\AFD.sys [560640]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.2012-07-26 - 00:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2012-07-25 - 21:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2012-07-25 - 21:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.2012-07-25 - 21:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.2012-09-20 - 01:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.2012-07-25 - 21:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.2012-07-25 - 21:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.877D60D6E4156EC4A2E0B6871D41BED9] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.2012-11-05 - 22:52:49.) -- C:\Windows\system32\Drivers\MRxSmb.sys [366080]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.2012-07-25 - 21:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.4A7EEA9C4AD5CBFDA3C0E5B821C99CAD] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.2012-07-26 - 00:26:46.) -- C:\Windows\system32\Drivers\ntfs.sys [1934064]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parall�le.) (.2012-07-25 - 21:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2012-07-25 - 21:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de p�riph�rique de Microsoft RDP.) (.2012-07-25 - 21:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.2012-07-26 - 00:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.2012-07-25 - 23:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 3/1276
~ Mes musiques (My Musics) : 1/3977
~ Mes Videos (My Videos) : 2/4
~ Mes Favoris (My Favorites) : 1/22
~ Mes Documents (My Documents) : 3/694
~ Mon Bureau (My Desktop) : 1/79
~ Menu demarrer (Programs) : 1/33
~ Scan Hidden Files in 00mn 02s



---\\ Processus lanc�s
[MD5.01B64830DE6341004AC00EB8CC302DA0] - (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [403816] [PID.4312]
[MD5.BAF49F90F6F5C212F16A3953335ED8A6] - (...) -- C:\Program Files (x86)\Le Robert\Le Petit Robert\PRHYPER.exe [22560] [PID.4452]
[MD5.08E6495D47C6F1E9E73EA389794C6058] - (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe [943168] [PID.4896]
[MD5.A387D093B66727BF3EDF517E2F4D87C5] - (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe [1466760] [PID.4968]
[MD5.A742C935B7411B5CA568484D25BB855D] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6048408] [PID.5116]
[MD5.85A1CBD87834A43F9E4A48E9F922B61E] - (.Acronis - Acronis TIB Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [943560] [PID.3744]
[MD5.C25EC8FFD59E83D6FCF8E2EBE352C2F9] - (.Emsisoft GmbH - Background Guard.) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [3363752] [PID.4704]
[MD5.C32E458C8DDB46220C2D9C7807EC1A3F] - (.Schneider Electric - PowerChute System Tray Power Icon.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe [673144] [PID.4396]
[MD5.8906FFADDF99ACCB5C751E75E879481F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5676032] [PID.3652]
[MD5.311A0D6F7477051A153479C090B4386D] - (.Emsisoft GmbH - Emsisoft Anti-Malware Service.) -- C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [3089320] [PID.816]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1848]
[MD5.6342D0CE8D68D93C37F8D79A2D5539AD] - (.Acronis - File Level CDP Manager Service.) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [3717112] [PID.1872]
[MD5.C7F8C8080B055B3DE9A8141DFD8E308A] - (.Schneider Electric - Battery Backup Management Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [705912] [PID.1900]
[MD5.AD4FAADE819E0DA9933BEA7C01D2C763] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [913144] [PID.1568]
[MD5.4C279F23F88E0854CE94731E55BF6E77] - (.iolo technologies, LLC - iolo System component.) -- C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [1053184] [PID.1504]
[MD5.E38775922D4A4C05B5D96733AB4CE169] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2232]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184] [PID.2320]
[MD5.87D4BC51A2E4C5696250BF45DB31CBEF] - (.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7026408] [PID.2656]
[MD5.107AB19CC1D40B9D04537F6EEAAC34C9] - (.Schneider Electric - PowerChute Data Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [21880] [PID.2784]
[MD5.20F89E232173985A455BC9A5F70D1166] - (.Canon Inc. - Canon Camera Access Library 8.) -- C:\Program Files (x86)\Canon\CAL\CALMAIN.exe [96341] [PID.2848]
[MD5.02C298382359653BEC4C737C2AB7F9C5] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.5396]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Normand\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://sites.google.com
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\snlm08pb.default\prefs.js
C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\v8i3kvtq.default\prefs.js
M3 - MFPP: Plugins - [Normand] -- C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\snlm08pb.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [Normand] -- C:\Users\Normand\AppData\Roaming\Mozilla\Firefox\Profiles\v8i3kvtq.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\McSiteAdvisor.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Normand] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Normand - snlm08pb.default] http://tvunderground.org.ru
M0 - MFSP: prefs.js [Normand - v8i3kvtq.default] http://tvunderground.org.ru
M2 - MFEP: prefs.js [Normand - snlm08pb.default\fr@dictionaries.addons.mozilla.org] [] Dictionnaire français «Réforme 1990» v3.5 (.Olivier R..)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}] [] Garmin Communicator v4.0.4 (.Garmin International.)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{2f17f610-5e97-4fed-828f-9940b7b577a4}] [] TV-Fox v18.0.0 (.tv-fox Inc..)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20110512W (.Google Inc..)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{40a1f5d7-afc2-498f-b264-02668d616ff6}] [] Mega Manager Integration v1.1 (.Megaupload Limited.)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.5.1.20121011034613 (.Yahoo!.)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{95f24680-9e31-11da-a746-0800200c9a66}] [] Update Notifier v0.1.5.5 (.Todd Long <longfocus@gmail.com>.)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{9814c216-0476-4bcc-8f17-53978e414586}] [] Cookie Button in the status bar v0.1.5.5 (.basic (Pang Lih Wuei).)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{bb628310-0ab7-11db-9cd8-0800200c9a66}(159)] [] Ma-config.com v2.0.4.2 (.charon@ma-config.com.)
M2 - MFEP: prefs.js [Normand - snlm08pb.default\{DB01DE64-5ECB-4043-A2AF-216932D03DC2}] [] Net Usage ISP Definitions Canada v1.2.222.1 (.^critter.)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\fr@dictionaries.addons.mozilla.org] [] Dictionnaire français «Réforme 1990» v3.5 (.Olivier R..)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}] [] Garmin Communicator v4.0.4 (.Garmin International.)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{2f17f610-5e97-4fed-828f-9940b7b577a4}] [] TV-Fox v17.0.0 (.tv-fox Inc..)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20110512W (.Google Inc..)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{40a1f5d7-afc2-498f-b264-02668d616ff6}] [] Mega Manager Integration v1.1 (.Megaupload Limited.)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.5.1.20121011034613 (.Yahoo!.)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{95f24680-9e31-11da-a746-0800200c9a66}] [] Update Notifier v0.1.5.5 (.Todd Long <longfocus@gmail.com>.)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{9814c216-0476-4bcc-8f17-53978e414586}] [] Cookie Button in the status bar v0.1.5.5 (.basic (Pang Lih Wuei).)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{bb628310-0ab7-11db-9cd8-0800200c9a66}(159)] [] Ma-config.com v2.0.4.2 (.charon@ma-config.com.)
M2 - MFEP: prefs.js [Normand - v8i3kvtq.default\{DB01DE64-5ECB-4043-A2AF-216932D03DC2}] [] Net Usage ISP Definitions Canada v1.2.222.1 (.^critter.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.5.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_5_502_149.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) [64Bits] - {bb45ef8e-1e36-4535-a017-ec908fb1e335} . (. Microsoft Corporation - 5.1.10411.0.) (No version) -- (.not file.)
R3 - URLSearchHook: SearchHook Class [64Bits] - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} . (.DeviceVM, Inc. - Browser Configuration Utility Address Bar S.) (1.1.11.0) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
~ Scan BHO in 00mn 00s



---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [EKIJ5000StatusMonitor] . (.Eastman Kodak Company - Status Monitor for KODAK AiO Printer (64-Bi.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe
O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [IntelliType Pro] . (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
O4 - HKCU\..\Run: [Le Petit Robert Hyperappel] . (...) -- C:\Program Files (x86)\Le Robert\Le Petit Robert\prhyper.exe
O4 - HKLM\..\Wow6432Node\Run: [4623FW Scan2PC] . (.Pas de propri�taire - ScanToPc MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Scan2Pc.exe
O4 - HKLM\..\Wow6432Node\Run: [agentantidote.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe
O4 - HKLM\..\Wow6432Node\Run: [Garmin Lifetime Updater] . (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [AcronisTibMounterMonitor] . (.Acronis - Acronis TIB Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [emsisoft anti-malware] . (.Emsisoft GmbH - Background Guard.) -- c:\program files (x86)\emsisoft anti-malware\a2guard.exe
O4 - HKUS\S-1-5-21-3870268597-1266574348-704908771-1000\..\Run: [Le Petit Robert Hyperappel] . (...) -- C:\Program Files (x86)\Le Robert\Le Petit Robert\prhyper.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\ConvertXtoDVD 5.lnk . (.VSO Software SARL.) -- C:\Program Files (x86)\VSO\ConvertX\5\ConvertXtoDvd.exe
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\Downloads.lnk . (...) -- C:\Users\Normand\Downloads
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\MyBookWorld (192.168.0.195).lnk - Cl� orpheline
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\System Mechanic.lnk . (.iolo technologies, LLC.) -- C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\WD (E) - Raccourci.lnk - Cl� orpheline
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\WD Discovery.lnk . (...) -- C:\Program Files (x86)\Western Digital\WD Discovery Software\WD Discovery.exe
O4 - Global Startup: C:\Documents And Settings\Normand\Desktop\WD2 (F) - Raccourci.lnk - Cl� orpheline
~ Scan Global Startup in 00mn 00s



---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3B53EE31-F4F9-428D-A05B-DF2A5C9D4325}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{73599DA2-B571-4403-9D8F-F8DADF8B828F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3B53EE31-F4F9-428D-A05B-DF2A5C9D4325}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{73599DA2-B571-4403-9D8F-F8DADF8B828F}: DhcpNameServer = 192.168.0.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
~ Scan Winlogon in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Emsisoft Anti-Malware 7.0 - Service (a2AntiMalware) . (.Emsisoft GmbH - Emsisoft Anti-Malware Service.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: APC Data Service (APC Data Service) . (.Schneider Electric - PowerChute Data Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
O23 - Service: APC UPS Service (APC UPS Service) . (.Schneider Electric - Battery Backup Management Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) . (.Canon Inc. - Canon Camera Access Library 8.) - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
O23 - Service: Diskeeper (Diskeeper) . (.Condusiv Technologies - Diskeeper Disk Optimization Service.) - C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: iolo System Service (ioloSystemService) . (.iolo technologies, LLC - iolo System component.) - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) . (.Acronis - TrueImage Sync Agent Service.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: Intel(R) Management & Security Applicati (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 05s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (autocheck auto_reactivate \\?\Volume{2a03ca1d-0390-11e0-8c47-806e6f6e6963}\bootwiz\asrm.bin) - File not found
O34 - HKLM BootExecute: (autocheck AT) - File not found
~ Scan Keys in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
[MD5.EC807244904FA170C299AB06D87FBDBE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.9CE3B11704038F711481ACD6BD9A9A5A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.00000000000000000000000000000000] [APT] [Microsoft_Hardware_Launch_devicecenter_exe] (...) -- C:\Program Files\Microsoft Device Center\devicecenter.exe (.not file.)
[MD5.19C2F2BE3C606B8E649935A2B5682C62] [APT] [Microsoft_Hardware_Launch_mousekeyboardcenter_exe] (.Microsoft.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
[MD5.00000000000000000000000000000000] [APT] [{025A900B-AC69-41AE-B945-AD09BE404F99}] (...) -- C:\Users\Normand\Downloads\setup_x64(3).exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{1E863416-DC3D-493C-BE16-D15A936252C2}] (...) -- C:\Users\Normand\Downloads\lide20lide30n670un676un1240uvst7031a_xpen\SetupSG.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{293B3A47-7FFF-4E7E-9CA3-BD31B0AF03CA}] (...) -- C:\Program Files (x86)\Skype\Phone\Skype.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4509CE95-EDB4-483A-975B-00E099409386}] (...) -- C:\Program Files (x86)\Skype\Phone\Skype.exe (.not file.)
[MD5.D90F403153EA3EF43A95F15C2DAC298A] [APT] [{49914EAD-DB7E-43D6-8D11-625A869E1E94}] (.Condusiv Technologies.) -- C:\Users\Normand\Diskeeper\Diskeeper Home Edition\Autorun.exe
[MD5.46167154C2A8CA85FA68FB8292FF1948] [APT] [{68AEC0B6-B293-4767-9C2B-DB901D63E64F}] (.Diskeeper Corporation.) -- C:\Users\Normand\Diskeeper\Diskeeper Home Edition\Diskeeper2010_Home.exe
[MD5.36F90215D68FB29F247B2A76E1D651A5] [APT] [{6F5C69AE-6DCC-4517-B820-4858EB1D1B15}] (.Schneider Electric.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\PowerChute.exe
[MD5.4A40A2E3DDB42643FCFA6186FE7AB196] [APT] [{71FECE59-D302-40EA-99CE-7943D8F26B48}] (.Schneider Electric.) -- C:\Users\Normand\Downloads\PCPEInstaller.exe
[MD5.36F90215D68FB29F247B2A76E1D651A5] [APT] [{795DC5B8-4D99-44E8-8D21-7115AF5951DA}] (.Schneider Electric.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\PowerChute.exe
[MD5.7F93F0BA9D47F0E6C725601AF288E18A] [APT] [{9EC37C8E-7705-4BF1-A8E5-844FE0BFCD26}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Thunderbird\uninstall\helper.exe
[MD5.00000000000000000000000000000000] [APT] [{9EE16F57-7FE0-4788-8DA3-ADB0A8C78B75}] (...) -- D:\WD_Windows_Tools\WDsetup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{C7B9D11D-7E55-45F1-8020-80460745F4A6}] (...) -- C:\Users\Normand\AppData\Local\M�t�oM�dia\M�t�o�clair\WeatherEye.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{F09054DD-060E-418D-B84E-F79ABFBDCF45}] (...) -- C:\Users\Normand\AppData\Local\Temp\Temp1_Visuel_integre_Windows.zip\Visuel_integre_Windows\Installe Visuel int�gr�.exe (.not file.)
[MD5.CE1684B99FBC3F322EEE8CBD2465FADA] [APT] [{FF9F357D-63DA-4898-ADBA-A666CDC8BE16}] (.VSO Software SARL.) -- C:\Program Files (x86)\VSO\ConvertX\3\ConvertXtoDvd.exe
~ Scan Scheduled Task in 00mn 05s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: (A2DDA) . (.Emsi Software GmbH - Emsisoft Direct Disk Access Support Driver.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys
O41 - Driver: (a2injectiondriver) . (.Emsisoft GmbH - Emsisoft Anti-Malware Behavior Blocker.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys
O41 - Driver: (a2util) . (.Emsi Software GmbH - a-squared Malware-IDS utility driver.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AppleCharger) . (...) - C:\Windows\System32\DRIVERS\AppleCharger.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (eamonm) . (.ESET - Amon monitor.) - C:\Windows\System32\DRIVERS\eamonm.sys
O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys
O41 - Driver: (ElRawDisk) . (.EldoS Corporation - RawDisk Driver. Allows write access to file.) - C:\Windows\system32\drivers\ElRawDsk.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels install�s (O42)
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.5) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Antidote HD - (.Druide informatique inc..) [HKLM][64Bits] -- {56CDB4FE-895F-4E0D-8BB4-9A8D4310898D}
O42 - Logiciel: Browser Configuration Utility - (.DeviceVM.) [HKLM][64Bits] -- {5B363E1D-8C36-4458-BAE4-D5081999E094}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CPUID CPU-Z 1.56 - (.Pas de propri�taire.) [HKLM][64Bits] -- CPUID CPU-Z_is1
O42 - Logiciel: Canon Camera Access Library - (.Pas de propri�taire.) [HKLM][64Bits] -- CAL
O42 - Logiciel: Canon Camera Window DC_DV 6 for ZoomBrowser EX - (.Pas de propri�taire.) [HKLM][64Bits] -- CameraWindowDVC6
O42 - Logiciel: Canon Camera Window MC 6 for ZoomBrowser EX - (.Pas de propri�taire.) [HKLM][64Bits] -- CameraWindowMC
O42 - Logiciel: Canon G.726 WMP-Decoder - (.Pas de propri�taire.) [HKLM][64Bits] -- Canon G.726 WMP-Decoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Pas de propri�taire.) [HKLM][64Bits] -- MovieEditTask
O42 - Logiciel: Canon RAW Image Task for ZoomBrowser EX - (.Pas de propri�taire.) [HKLM][64Bits] -- RAW Image Task
O42 - Logiciel: Canon RemoteCapture Task for ZoomBrowser EX - (.Pas de propri�taire.) [HKLM][64Bits] -- RemoteCaptureTask
O42 - Logiciel: Canon Utilities EOS Utility - (.Pas de propri�taire.) [HKLM][64Bits] -- EOS Utility
O42 - Logiciel: Canon Utilities PhotoStitch - (.Pas de propri�taire.) [HKLM][64Bits] -- PhotoStitch
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Pas de propri�taire.) [HKLM][64Bits] -- ZoomBrowser EX
O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center
O42 - Logiciel: Consommation Internet Vid�otron - (.CodexMundus.com.) [HKLM][64Bits] -- {923DAA43-CC71-403E-B04E-97FE561C8C93}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Diskeeper 12 - (.Condusiv Technologies.) [HKLM][64Bits] -- {1A6D6767-B771-4752-81C2-1CC30BE941BA}
O42 - Logiciel: D�sinstaller Le Petit Robert de la langue fran�aise - (.Pas de propri�taire.) [HKLM][64Bits] -- Le Petit Robert
O42 - Logiciel: Emsisoft Anti-Malware - (.Emsisoft GmbH.) [HKLM][64Bits] -- {BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1
O42 - Logiciel: Garmin City Navigator North America NT 2012.10 Update - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {48D66137-C7A6-4890-8316-534CFF3688EA}
O42 - Logiciel: Garmin Communicator Plugin x64 - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {550331CC-C34B-494F-BCDA-37CE4EF6E924}
O42 - Logiciel: Garmin Lifetime Updater - (.Garmin.) [HKLM][64Bits] -- {9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}
O42 - Logiciel: Garmin MapInstall - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {6C650BDC-DB9A-4D7C-9AAF-FFF94C336C0B}
O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {510D2239-6C2E-457B-9590-485EC552D94D}
O42 - Logiciel: Imp�tRapide 2010 - (.Intuit Canada.) [HKLM][64Bits] -- {4D6B46F2-A261-44CA-A7F5-1FEA4EFBEB59}
O42 - Logiciel: Imp�tRapide 2011 - (.Intuit Canada.) [HKLM][64Bits] -- {4FEE3953-CE3D-4D46-8835-2FF0D5F64098}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LockHunter version 1.0 beta 3, 64 bit edition - (.Crystal Rich, Ltd.) [HKLM][64Bits] -- LockHunter_is1
O42 - Logiciel: Logiciel Home Center pour imprimante multifonction KODAK - (.Eastman Kodak Company.) [HKLM][64Bits] -- {E0F274B7-592B-4669-8FB8-8D9825A09858}
O42 - Logiciel: Logitech SetPoint 6.20 - (.Logitech.) [HKLM][64Bits] -- sp6
O42 - Logiciel: MSVC80_x64_v2 - (.Nokia.) [HKLM][64Bits] -- {4D668D4F-FAA2-4726-834C-31F4614F312E}
O42 - Logiciel: MSVC80_x86_v2 - (.Nokia.) [HKLM][64Bits] -- {6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
O42 - Logiciel: MSVC90_x64 - (.Nokia.) [HKLM][64Bits] -- {AB071C8B-873C-459F-ACA9-9EBE03C3E89B}
O42 - Logiciel: MSVC90_x86 - (.Nokia.) [HKLM][64Bits] -- {AF111648-99A1-453E-81DD-80DBBF6DAD0D}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Maintenance de Samsung SCX-4623FW Series - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- Samsung SCX-4623FW Series
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MesNews - (.Arnaud (MesNews).) [HKLM][64Bits] -- MesNews_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 18.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 18.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mozilla Thunderbird 17.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 17.0.2 (x86 fr)
O42 - Logiciel: ON_OFF Charge B10.0301.1 - (.GIGABYTE.) [HKLM][64Bits] -- {3DECD372-76A1-4483-BF10-B547790A3261}
O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM][64Bits] -- {7390478C-8581-415E-92E9-2997D9306B81}
O42 - Logiciel: PDF Creator - (.Pas de propri�taire.) [HKLM][64Bits] -- PDF Creator
O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2 - (.Nokia.) [HKLM][64Bits] -- 62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F
O42 - Logiciel: PlayStation(R)Network Downloader - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}
O42 - Logiciel: PlayStation(R)Store - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
O42 - Logiciel: PowerChute Personal Edition 3.0.2 - (.Schneider Electric.) [HKLM][64Bits] -- {8ED262EE-FC73-47A9-BB86-D92223246881}
O42 - Logiciel: PreReq - (.Eastman Kodak Company.) [HKLM][64Bits] -- {DA5BDB2A-12F0-4343-8351-21AAEB293990}
O42 - Logiciel: PrintKey 2000 Fr - (.Pas de propri�taire.) [HKLM][64Bits] -- PrintKey 2000 Fr
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: True Image 2013 - (.Acronis.) [HKLM][64Bits] -- {500FD1D4-D3FC-44A0-8187-66B6BD167B48}
O42 - Logiciel: True Image 2013 - (.Acronis.) [HKLM][64Bits] -- {500FD1D4-D3FC-44A0-8187-66B6BD167B48}Visible
O42 - Logiciel: VSO ConvertXToDVD - (.VSO-Software SARL.) [HKLM][64Bits] -- {CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1
O42 - Logiciel: VSO Downloader 2.9.11.8 - (.VSO Software.) [HKLM][64Bits] -- {DB70FB55-1515-4C75-95C8-FFBD5FE041F8}_is1
O42 - Logiciel: ViewSonic Monitor Drivers - (.Pas de propri�taire.) [HKLM][64Bits] -- {B4FEA924-630D-11D4-B78E-005004566E4D}
O42 - Logiciel: Visuel int�gr� - (.Druide informatique inc..) [HKLM][64Bits] -- {D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF}
O42 - Logiciel: WinRAR 4.01 (32 bits) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0 - (.Garmin.) [HKLM][64Bits] -- 49CF605F02C7954F4E139D18828DE298CD59217C
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: aiofw - (.Eastman Kodak Company.) [HKLM][64Bits] -- {DE6B7599-D3EF-4436-8836-BAA0B0D7768D}
O42 - Logiciel: aioprnt - (.Eastman Kodak Company.) [HKLM][64Bits] -- {0645A454-AD44-4F0D-99CF-6B762735AD1F}
O42 - Logiciel: aioscnnr - (.Your Company Name.) [HKLM][64Bits] -- {FE24086F-3B0C-4C47-A874-97A7B8E2FBBE}
O42 - Logiciel: center - (.Eastman Kodak Company.) [HKLM][64Bits] -- {56BA241F-580C-43D2-8403-947241AAE633}
O42 - Logiciel: eMule - (.Pas de propri�taire.) [HKLM][64Bits] -- eMule
O42 - Logiciel: iolo technologies' System Mechanic - (.iolo technologies, LLC.) [HKLM][64Bits] -- {55FD1D5A-7AEF-4DA3-8FAF-A71B2A52FFC7}_is1

---\\ HKCU & HKLM Software Keys
[HKCU\Software\3rd Eye Solutions]
[HKCU\Software\APC]
[HKCU\Software\Acronis]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\CDDB]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeGear]
[HKCU\Software\Convar]
[HKCU\Software\DeviceVM]
[HKCU\Software\Digital River]
[HKCU\Software\DownloadCenter]
[HKCU\Software\Druide informatique inc.]
[HKCU\Software\ESET]
[HKCU\Software\EasyBits]
[HKCU\Software\Garmin]
[HKCU\Software\Google]
[HKCU\Software\IdeoSi]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lavalys]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LockHunter]
[HKCU\Software\LogiShrd]
[HKCU\Software\Logitech]
[HKCU\Software\MCAFEE]
[HKCU\Software\MMTWN]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Nokia]
[HKCU\Software\ODBC]
[HKCU\Software\Panda Security]
[HKCU\Software\Panda Software]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PrintKey2000]
[HKCU\Software\Pure Networks]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SSPrint]
[HKCU\Software\SSScan]
[HKCU\Software\Samsung]
[HKCU\Software\SkypeApps]
[HKCU\Software\Skype]
[HKCU\Software\TeamViewer]
[HKCU\Software\Trolltech]
[HKCU\Software\VSO]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\eMule]
[HKCU\Software\iolo]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Acronis]
[HKLM\Software\Alienware]
[HKLM\Software\CUSTPDF Writer]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Diskeeper Corporation]
[HKLM\Software\ESET]
[HKLM\Software\Intel]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\PC Connectivity Solution]
[HKLM\Software\Panda Software]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SSPrint]
[HKLM\Software\Samsung]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\781]
[HKLM\Software\Wow6432Node\APC]
[HKLM\Software\Wow6432Node\AceBIT]
[HKLM\Software\Wow6432Node\Acronis]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Data Fellows]
[HKLM\Software\Wow6432Node\DeviceVM]
[HKLM\Software\Wow6432Node\Druide informatique inc.]
[HKLM\Software\Wow6432Node\ESET]
[HKLM\Software\Wow6432Node\Eastman Kodak Company]
[HKLM\Software\Wow6432Node\Eastman Kodak]
[HKLM\Software\Wow6432Node\GIGABYTE]
[HKLM\Software\Wow6432Node\GPL Ghostscript]
[HKLM\Software\Wow6432Node\Garmin]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Kodak]
[HKLM\Software\Wow6432Node\Le Robert]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nokia]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\PC Connectivity Solution]
[HKLM\Software\Wow6432Node\Panda Software]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SOFTWARE]
[HKLM\Software\Wow6432Node\SSScan]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\Sensible Vision]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SoftVTU]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Sony]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\VSO]
[HKLM\Software\Wow6432Node\ViewSonic Corporation]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\iolo]
[HKLM\Software\Wow6432Node\logishrd]
[HKLM\Software\Wow6432Node\midicairus]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 2012-11-03 - 19:10:22 - [141,745] ----D C:\Program Files (x86)\Acronis
O43 - CFD: 2011-08-11 - 10:24:37 - [113,547] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 2012-06-07 - 19:09:23 - [19,264] ----D C:\Program Files (x86)\APC
O43 - CFD: 2011-08-24 - 11:47:42 - [0] ----D C:\Program Files (x86)\ArcSoft
O43 - CFD: 2011-08-24 - 11:46:33 - [112,993] ----D C:\Program Files (x86)\Canon
O43 - CFD: 2011-05-26 - 16:19:45 - [6,614] ----D C:\Program Files (x86)\CodexMundus.com
O43 - CFD: 2013-02-12 - 13:38:25 - [468,917] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 2010-12-13 - 18:20:30 - [6,869] ----D C:\Program Files (x86)\Convar
O43 - CFD: 2010-12-08 - 18:43:30 - [1,163] --H-D C:\Program Files (x86)\DeviceVM
O43 - CFD: 2012-03-21 - 10:20:42 - [820,013] ----D C:\Program Files (x86)\Druide
O43 - CFD: 2013-02-12 - 14:34:44 - [271,128] ----D C:\Program Files (x86)\Emsisoft Anti-Malware
O43 - CFD: 2013-01-15 - 17:03:21 - [10,401] ----D C:\Program Files (x86)\eMule
O43 - CFD: 2012-09-10 - 17:01:42 - [158,767] ----D C:\Program Files (x86)\Garmin
O43 - CFD: 2010-12-08 - 18:46:41 - [0,045] ----D C:\Program Files (x86)\GIGABYTE
O43 - CFD: 2012-10-14 - 13:19:12 - [7,701] ----D C:\Program Files (x86)\GPLGS
O43 - CFD: 2011-04-16 - 06:53:23 - [15,900] ----D C:\Program Files (x86)\Help
O43 - CFD: 2011-03-22 - 12:45:08 - [83,500] ----D C:\Program Files (x86)\ImpotRapide 2010
O43 - CFD: 2012-03-19 - 09:03:39 - [75,401] ----D C:\Program Files (x86)\ImpotRapide 2011
O43 - CFD: 2013-01-18 - 23:20:51 - [14,390] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2011-10-03 - 07:53:33 - [14,281] ----D C:\Program Files (x86)\Intel
O43 - CFD: 2012-12-12 - 09:14:46 - [4,620] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2011-12-22 - 18:16:30 - [33,258] ----D C:\Program Files (x86)\iolo
O43 - CFD: 2010-12-16 - 14:15:10 - [158,577] ----D C:\Program Files (x86)\Kodak
O43 - CFD: 2010-12-10 - 12:17:57 - [551,170] ----D C:\Program Files (x86)\Le Robert
O43 - CFD: 2011-10-03 - 07:59:30 - [2,779] ----D C:\Program Files (x86)\LogiShrd
O43 - CFD: 2013-01-17 - 09:01:35 - [0] ----D C:\Program Files (x86)\Logitech
O43 - CFD: 2013-02-12 - 08:44:49 - [12,242] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 2013-01-18 - 22:36:56 - [6,067] ----D C:\Program Files (x86)\MesNews
O43 - CFD: 2010-12-11 - 00:11:15 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 2011-06-29 - 06:59:07 - [359,620] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2012-05-08 - 18:39:41 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2011-10-18 - 17:17:08 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2012-10-27 - 13:01:25 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2012-03-23 - 20:38:27 - [0] ----D C:\Program Files (x86)\midicairus
O43 - CFD: 2013-02-05 - 22:12:48 - [45,624] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2013-02-06 - 18:04:57 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2013-01-22 - 22:01:03 - [43,368] ----D C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2012-10-27 - 12:43:29 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 2011-08-09 - 06:58:01 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2013-01-18 - 23:19:40 - [0] ----D C:\Program Files (x86)\Nokia
O43 - CFD: 2013-01-18 - 22:37:06 - [19,356] ----D C:\Program Files (x86)\PC Connectivity Solution
O43 - CFD: 2013-01-26 - 07:34:05 - [11,038] ----D C:\Program Files (x86)\PDFCreator
O43 - CFD: 2011-01-18 - 15:32:40 - [0,870] ----D C:\Program Files (x86)\PrintKey 2000 Fr
O43 - CFD: 2010-12-08 - 18:45:28 - [5,138] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 2012-10-27 - 12:43:29 - [36,536] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2011-08-08 - 13:28:59 - [82,699] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 2011-08-08 - 13:26:54 - [10,012] ----D C:\Program Files (x86)\SamsungPrinterLiveUpdate
O43 - CFD: 2013-01-18 - 23:17:47 - [219,193] ----D C:\Program Files (x86)\Sony
O43 - CFD: 2012-10-28 - 13:52:38 - [144,632] ----D C:\Program Files (x86)\Sony Media Go Install
O43 - CFD: 2013-01-18 - 22:33:33 - [1,912] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 2010-12-08 - 18:45:40 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 2009-07-13 - 23:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2011-12-09 - 14:05:32 - [0,558] ----D C:\Program Files (x86)\viewsonic
O43 - CFD: 2013-01-20 - 19:02:26 - [82,802] ----D C:\Program Files (x86)\VSO
O43 - CFD: 2011-03-25 - 17:16:45 - [5,589] ----D C:\Program Files (x86)\Western Digital
O43 - CFD: 2012-07-26 - 05:08:59 - [0,870] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 2012-05-01 - 09:49:01 - [63,541] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 2012-07-26 - 05:08:59 - [5,466] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 2012-10-27 - 18:12:37 - [3,494] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2012-07-26 - 03:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2012-07-26 - 03:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 2012-07-26 - 05:08:59 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2012-07-26 - 03:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2012-10-27 - 13:01:27 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2012-07-13 - 07:22:10 - [3,865] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 2013-02-12 - 14:35:10 - [11,466] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 2012-11-03 - 19:10:46 - [175,891] ----D C:\Program Files (x86)\Common Files\Acronis
O43 - CFD: 2011-08-11 - 10:24:39 - [3,797] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2010-12-19 - 12:42:00 - [0,734] ----D C:\Program Files (x86)\Common Files\Canon
O43 - CFD: 2010-12-10 - 16:06:51 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2011-01-28 - 15:32:00 - [7,095] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2011-01-28 - 17:19:20 - [3,095] ----D C:\Program Files (x86)\Common Files\Intuit
O43 - CFD: 2013-01-17 - 09:02:34 - [1,514] ----D C:\Program Files (x86)\Common Files\logishrd
O43 - CFD: 2013-01-17 - 09:01:30 - [0] ----D C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 2012-10-27 - 18:12:52 - [234,148] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2010-12-08 - 18:44:31 - [0,159] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2012-07-26 - 03:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2013-01-18 - 23:17:57 - [0,326] ----D C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 2012-10-27 - 13:01:23 - [0,223] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2012-07-26 - 05:08:59 - [41,845] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 2010-12-17 - 12:36:10 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2012-11-18 - 20:10:02 - [166,869] ----D C:\ProgramData\Acronis
O43 - CFD: 2012-11-07 - 15:29:24 - [152,795] ----D C:\ProgramData\Adobe
O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 2011-05-26 - 16:19:51 - [0,149] ----D C:\ProgramData\CIV
O43 - CFD: 2012-10-28 - 11:49:39 - [0,000] ----D C:\ProgramData\Condusiv Technologies
O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 2013-01-15 - 17:03:46 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 2012-09-05 - 14:23:57 - [194,666] ----D C:\ProgramData\ESET
O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 2011-03-11 - 19:09:59 - [1849,122] ----D C:\ProgramData\Garmin
O43 - CFD: 2010-12-11 - 13:20:55 - [0] ----D C:\ProgramData\Google
O43 - CFD: 2010-12-08 - 18:46:43 - [0,000] ----D C:\ProgramData\InstallShield
O43 - CFD: 2012-01-27 - 20:01:58 - [0,011] ----D C:\ProgramData\Intuit Canada
O43 - CFD: 2012-12-16 - 15:33:30 - [113,085] ----D C:\ProgramData\iolo
O43 - CFD: 2012-03-24 - 04:27:09 - [14,676] ----D C:\ProgramData\Kodak
O43 - CFD: 2011-03-01 - 11:45:46 - [3,692] ----D C:\ProgramData\LogiShrd
O43 - CFD: 2010-12-10 - 15:53:14 - [5,273] ----D C:\ProgramData\Logitech
O43 - CFD: 2013-02-12 - 08:44:46 - [6,725] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 2012-11-14 - 08:30:11 - [277,085] -S--D C:\ProgramData\Microsoft
O43 - CFD: 2013-01-08 - 18:32:59 - [0,249] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 2010-12-08 - 18:40:20 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 2012-04-25 - 06:35:42 - [0,034] ----D C:\ProgramData\Mozilla
O43 - CFD: 2013-01-18 - 23:19:40 - [0] ----D C:\ProgramData\Nokia
O43 - CFD: 2012-09-06 - 09:30:59 - [214,078] ----D C:\ProgramData\NokiaInstallerCache
O43 - CFD: 2012-09-06 - 09:33:15 - [0,099] ----D C:\ProgramData\PC Suite
O43 - CFD: 2012-10-27 - 13:38:36 - [0,023] ----D C:\ProgramData\PRICache
O43 - CFD: 2012-10-29 - 14:08:31 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2013-01-18 - 23:21:21 - [128,365] ----D C:\ProgramData\Skype
O43 - CFD: 2011-06-15 - 15:50:25 - [4,874] ----D C:\ProgramData\Skype Extras
O43 - CFD: 2012-03-12 - 15:46:45 - [0,003] ----D C:\ProgramData\Sony Corporation
O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 2011-09-23 - 18:18:27 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 2012-07-26 - 02:22:08 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 2013-01-17 - 14:26:47 - [49,855] ----D C:\ProgramData\VSO
O43 - CFD: 2013-01-23 - 19:22:31 - [0,000] ----D C:\ProgramData\vsosdk
O43 - CFD: 2010-12-12 - 10:49:24 - [0,002] ----D C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 2012-11-27 - 08:38:54 - [0] ----D C:\ProgramData\ZoomBrowser
O43 - CFD: 2012-10-27 - 10:18:43 - [0] ----D C:\Users\Normand\AppData\Roaming\0D94BBF7-7D0F-4A51-B410-24CBDC128A7D
O43 - CFD: 2012-10-27 - 09:25:37 - [0] ----D C:\Users\Normand\AppData\Roaming\1AC6B46F-B5AB-401C-B5C1-E54309930D34
O43 - CFD: 2011-12-10 - 11:45:54 - [0] ----D C:\Users\Normand\AppData\Roaming\47040EF8-481E-4CE8-BE9A-82D4BB058B11
O43 - CFD: 2011-12-22 - 10:46:09 - [0] ----D C:\Users\Normand\AppData\Roaming\4F4EBA5C-80DE-40F6-8CCE-96C185A6E4C3
O43 - CFD: 2012-11-03 - 19:53:44 - [0] ----D C:\Users\Normand\AppData\Roaming\Acronis
O43 - CFD: 2011-08-11 - 10:29:12 - [14,665] ----D C:\Users\Normand\AppData\Roaming\Adobe
O43 - CFD: 2011-08-22 - 12:56:36 - [0,002] ----D C:\Users\Normand\AppData\Roaming\Arcsoft
O43 - CFD: 2012-10-27 - 09:31:48 - [0] ----D C:\Users\Normand\AppData\Roaming\C3635772-3685-4173-AD5B-2DD34A6E7220
O43 - CFD: 2012-06-04 - 21:53:16 - [0,001] ----D C:\Users\Normand\AppData\Roaming\Condusiv_Technologies
O43 - CFD: 2010-12-12 - 13:11:26 - [0,025] ----D C:\Users\Normand\AppData\Roaming\Druide
O43 - CFD: 2012-10-26 - 12:39:36 - [0] ----D C:\Users\Normand\AppData\Roaming\F0E77BCE-9321-4F0B-A40F-9755EE971BCA
O43 - CFD: 2012-05-12 - 09:49:50 - [0] ----D C:\Users\Normand\AppData\Roaming\F71E2C6A-279C-4D80-9C04-E9F731BC2B67
O43 - CFD: 2012-09-10 - 16:59:40 - [9,705] ----D C:\Users\Normand\AppData\Roaming\GARMIN
O43 - CFD: 2010-12-08 - 18:40:45 - [0] ----D C:\Users\Normand\AppData\Roaming\Identities
O43 - CFD: 2012-01-27 - 20:02:33 - [0,067] ----D C:\Users\Normand\AppData\Roaming\Intuit Canada
O43 - CFD: 2011-12-09 - 19:02:31 - [0,001] ----D C:\Users\Normand\AppData\Roaming\iolo
O43 - CFD: 2010-12-10 - 15:53:34 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Leadertech
O43 - CFD: 2011-10-12 - 09:54:15 - [0,004] ----D C:\Users\Normand\AppData\Roaming\LockHunter
O43 - CFD: 2010-12-21 - 21:48:00 - [0,299] ----D C:\Users\Normand\AppData\Roaming\Logishrd
O43 - CFD: 2010-12-21 - 21:49:01 - [0,038] ----D C:\Users\Normand\AppData\Roaming\Logitech
O43 - CFD: 2010-12-11 - 13:22:47 - [0,001] ----D C:\Users\Normand\AppData\Roaming\Macromedia
O43 - CFD: 2013-02-12 - 08:44:53 - [0,003] ----D C:\Users\Normand\AppData\Roaming\Malwarebytes
O43 - CFD: 2012-08-25 - 20:42:40 - [0,011] ----D C:\Users\Normand\AppData\Roaming\McAfee
O43 - CFD: 2009-07-14 - 10:35:05 - [0] ----D C:\Users\Normand\AppData\Roaming\Media Center Programs
O43 - CFD: 2013-01-18 - 22:34:00 - [1,855] -S--D C:\Users\Normand\AppData\Roaming\Microsoft
O43 - CFD: 2010-12-11 - 13:02:43 - [229,423] ----D C:\Users\Normand\AppData\Roaming\Mozilla
O43 - CFD: 2012-09-06 - 10:17:51 - [0,904] ----D C:\Users\Normand\AppData\Roaming\PC Suite
O43 - CFD: 2010-12-15 - 09:30:25 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Redemption
O43 - CFD: 2013-01-18 - 23:21:13 - [4,358] ----D C:\Users\Normand\AppData\Roaming\Skype
O43 - CFD: 2011-06-19 - 16:45:52 - [0,021] ----D C:\Users\Normand\AppData\Roaming\skypePM
O43 - CFD: 2012-03-12 - 15:40:55 - [107,702] ----D C:\Users\Normand\AppData\Roaming\Sony
O43 - CFD: 2012-03-12 - 15:45:13 - [0,011] ----D C:\Users\Normand\AppData\Roaming\Sony Corporation
O43 - CFD: 2011-01-23 - 18:11:33 - [0,000] ----D C:\Users\Normand\AppData\Roaming\TeamViewer
O43 - CFD: 2010-12-16 - 14:14:27 - [0] ----D C:\Users\Normand\AppData\Roaming\Temp
O43 - CFD: 2010-12-15 - 09:30:24 - [930,573] ----D C:\Users\Normand\AppData\Roaming\Thunderbird
O43 - CFD: 2011-01-07 - 13:34:08 - [0] ----D C:\Users\Normand\AppData\Roaming\U3
O43 - CFD: 2013-02-06 - 10:23:26 - [0,017] ----D C:\Users\Normand\AppData\Roaming\Vso
O43 - CFD: 2011-01-15 - 19:04:33 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Windows Live Writer
O43 - CFD: 2012-04-22 - 09:33:26 - [0,000] ----D C:\Users\Normand\AppData\Roaming\WinRAR
O43 - CFD: 2012-11-27 - 08:43:48 - [0,002] ----D C:\Users\Normand\AppData\Roaming\ZoomBrowser EX
O43 - CFD: 2011-08-11 - 10:24:25 - [138,596] ----D C:\Users\Normand\AppData\Local\Adobe
O43 - CFD: 2012-08-13 - 09:14:54 - [0,002] ----D C:\Users\Normand\AppData\Local\Adobe Systems, Inc
O43 - CFD: 2012-10-27 - 12:56:37 - [0] ----D C:\Users\Normand\AppData\Local\Application Data
O43 - CFD: 2012-10-28 - 11:49:26 - [0,015] ----D C:\Users\Normand\AppData\Local\Condusiv_Technologies
O43 - CFD: 2013-01-25 - 22:25:11 - [0] ----D C:\Users\Normand\AppData\Local\CrashDumps
O43 - CFD: 2013-01-13 - 08:21:17 - [0] ----D C:\Users\Normand\AppData\Local\Diagnostics
O43 - CFD: 2012-10-28 - 13:52:28 - [48,754] ----D C:\Users\Normand\AppData\Local\Downloaded Installations
O43 - CFD: 2011-01-24 - 13:33:02 - [1,419] ----D C:\Users\Normand\AppData\Local\Eastman Kodak Company
O43 - CFD: 2010-12-16 - 14:16:06 - [0,004] ----D C:\Users\Normand\AppData\Local\Eastman_Kodak_Company
O43 - CFD: 2012-11-18 - 08:11:58 - [0] ----D C:\Users\Normand\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2013-01-15 - 18:46:31 - [7,311] ----D C:\Users\Normand\AppData\Local\eMule
O43 - CFD: 2012-09-06 - 07:19:10 - [9,595] ----D C:\Users\Normand\AppData\Local\ESET
O43 - CFD: 2011-02-07 - 09:07:00 - [29,800] ----D C:\Users\Normand\AppData\Local\Google
O43 - CFD: 2012-10-27 - 12:56:37 - [0] ----D C:\Users\Normand\AppData\Local\Historique
O43 - CFD: 2012-06-30 - 11:54:21 - [0,001] ----D C:\Users\Normand\AppData\Local\IdeoSi
O43 - CFD: 2011-03-02 - 08:28:34 - [0] ----D C:\Users\Normand\AppData\Local\LogiShrd
O43 - CFD: 2011-10-03 - 08:39:44 - [2,779] ----D C:\Users\Normand\AppData\Local\Logitech� Webcam Software
O43 - CFD: 2012-06-13 - 06:50:29 - [0] ----D C:\Users\Normand\AppData\Local\Macromedia
O43 - CFD: 2010-12-15 - 09:30:27 - [14,523] ----D C:\Users\Normand\AppData\Local\MesNews
O43 - CFD: 2012-11-06 - 14:43:00 - [721,622] ----D C:\Users\Normand\AppData\Local\Microsoft
O43 - CFD: 2010-12-22 - 10:18:31 - [0,006] ----D C:\Users\Normand\AppData\Local\Microsoft Corporation
O43 - CFD: 2010-12-11 - 14:21:57 - [0,078] ----D C:\Users\Normand\AppData\Local\Microsoft Games
O43 - CFD: 2010-12-10 - 16:04:45 - [0] ----D C:\Users\Normand\AppData\Local\Microsoft Help
O43 - CFD: 2010-12-10 - 11:36:39 - [153,869] ----D C:\Users\Normand\AppData\Local\Mozilla
O43 - CFD: 2011-12-21 - 17:31:29 - [0,002] ----D C:\Users\Normand\AppData\Local\Mozilla Messaging
O43 - CFD: 2013-01-18 - 22:33:53 - [10,006] ----D C:\Users\Normand\AppData\Local\M�t�oM�dia
O43 - CFD: 2012-09-06 - 09:33:39 - [1,142] ----D C:\Users\Normand\AppData\Local\Nokia
O43 - CFD: 2012-09-06 - 10:17:47 - [0,001] ----D C:\Users\Normand\AppData\Local\NokiaAccount
O43 - CFD: 2013-01-09 - 08:19:33 - [294,729] ----D C:\Users\Normand\AppData\Local\Packages
O43 - CFD: 2013-01-17 - 14:26:08 - [0] ----D C:\Users\Normand\AppData\Local\Programs
O43 - CFD: 2011-08-08 - 13:28:01 - [0,002] ----D C:\Users\Normand\AppData\Local\S2PC
O43 - CFD: 2012-11-28 - 08:14:48 - [0,023] ----D C:\Users\Normand\AppData\Local\Solitaire_Forever
O43 - CFD: 2012-03-14 - 12:46:49 - [0,378] ----D C:\Users\Normand\AppData\Local\Sony
O43 - CFD: 2013-02-12 - 14:34:40 - [1,931] ----D C:\Users\Normand\AppData\Local\Temp
O43 - CFD: 2012-10-27 - 12:56:37 - [0] ----D C:\Users\Normand\AppData\Local\Temporary Internet Files
O43 - CFD: 2012-03-24 - 15:35:32 - [6,413] ----D C:\Users\Normand\AppData\Local\Thunderbird
O43 - CFD: 2013-01-18 - 23:18:29 - [0,000] ----D C:\Users\Normand\AppData\Local\VirtualStore
O43 - CFD: 2012-11-16 - 08:21:55 - [0,035] ----D C:\Users\Normand\AppData\Local\Windows Live
O43 - CFD: 2010-12-19 - 10:33:15 - [0,618] ----D C:\Users\Normand\AppData\Local\Windows Live Writer
O43 - CFD: 2011-12-27 - 13:41:26 - [0] ----D C:\Users\Normand\AppData\Local\{0641AD2A-93DA-42F6-8B24-13F50A9ACAF0}
O43 - CFD: 2010-12-23 - 10:55:05 - [0] ----D C:\Users\Normand\AppData\Local\{0BD6AE1F-E5CF-4DEA-B7DC-665CDECF1C0D}
O43 - CFD: 2012-05-20 - 13:34:50 - [0] ----D C:\Users\Normand\AppData\Local\{0CC07EE8-A645-47AE-92E6-4858552FFE87}
O43 - CFD: 2011-12-28 - 08:04:45 - [0] ----D C:\Users\Normand\AppData\Local\{10A1E38F-113D-4F99-889A-A69E624871EA}
O43 - CFD: 2012-05-01 - 09:47:18 - [0] ----D C:\Users\Normand\AppData\Local\{16713C5B-1868-4751-A6D8-4A6794DAFBDB}
O43 - CFD: 2011-12-28 - 20:05:21 - [0] ----D C:\Users\Normand\AppData\Local\{22283D14-9B8C-49B5-BFF6-42C1E40CB553}
O43 - CFD: 2010-12-19 - 10:33:31 - [0] ----D C:\Users\Normand\AppData\Local\{2A230C5D-21D4-4427-9646-E9FCE195C2EB}
O43 - CFD: 2011-01-15 - 19:03:28 - [0] ----D C:\Users\Normand\AppData\Local\{2A95BF09-6986-4DBC-BC3F-3C6C6A4357D6}
O43 - CFD: 2010-12-23 - 09:09:26 - [0] ----D C:\Users\Normand\AppData\Local\{35926129-E611-4FFD-B7DB-4C09A5A6C7E3}
O43 - CFD: 2012-11-16 - 08:21:55 - [0] ----D C:\Users\Normand\AppData\Local\{425F0D55-F990-4A44-9E1F-901F230CE75A}
O43 - CFD: 2012-05-01 - 09:47:29 - [0] ----D C:\Users\Normand\AppData\Local\{4571D0AA-BD20-497F-9ACD-7E244C3E6989}
O43 - CFD: 2011-02-22 - 09:37:45 - [0] ----D C:\Users\Normand\AppData\Local\{546DCB1F-9AC2-4998-B4D9-97ECA6B12F32}
O43 - CFD: 2012-04-30 - 19:27:34 - [0] ----D C:\Users\Normand\AppData\Local\{57581735-7293-442D-96E5-23AFA1309917}
O43 - CFD: 2012-05-14 - 07:41:57 - [0] ----D C:\Users\Normand\AppData\Local\{58AC0763-3BAF-46E4-B6DA-98C8839F3AD8}
O43 - CFD: 2012-04-30 - 19:27:33 - [0] ----D C:\Users\Normand\AppData\Local\{5E39C027-70FD-4D86-94D8-3297FBDB77C5}
O43 - CFD: 2012-05-20 - 13:34:39 - [0] ----D C:\Users\Normand\AppData\Local\{6267BC83-D057-4E56-9C89-02335B53D74D}
O43 - CFD: 2012-05-14 - 07:42:08 - [0] ----D C:\Users\Normand\AppData\Local\{6412620B-E000-4DA7-B816-F47764CD2640}
O43 - CFD: 2012-06-30 - 11:42:47 - [0] ----D C:\Users\Normand\AppData\Local\{652F521F-D21B-419F-9825-A500856F9F3B}
O43 - CFD: 2011-12-28 - 08:04:56 - [0] ----D C:\Users\Normand\AppData\Local\{667DCE34-42F9-4FC9-B579-382E1BF99BF7}
O43 - CFD: 2011-12-29 - 20:40:21 - [0] ----D C:\Users\Normand\AppData\Local\{692C0BBA-2148-45CD-8119-F98D0A68ADBA}
O43 - CFD: 2012-05-02 - 07:21:43 - [0] ----D C:\Users\Normand\AppData\Local\{6BEB09B9-C6FF-4EF4-8C13-B6988873371A}
O43 - CFD: 2012-05-01 - 09:50:51 - [0] ----D C:\Users\Normand\AppData\Local\{6C77BC18-D273-4E74-8048-A8E46FA0404A}
O43 - CFD: 2012-04-30 - 15:31:12 - [0] ----D C:\Users\Normand\AppData\Local\{85804958-69C6-428F-A2A0-464FCB1E8367}
O43 - CFD: 2012-05-01 - 09:50:40 - [0] ----D C:\Users\Normand\AppData\Local\{87118890-B714-4F6B-BC63-1B616F66F085}
O43 - CFD: 2011-01-17 - 17:11:52 - [0] ----D C:\Users\Normand\AppData\Local\{9D87FAD5-9ED0-4A2E-BA0E-00DA5AA2ADC4}
O43 - CFD: 2012-05-02 - 07:21:54 - [0] ----D C:\Users\Normand\AppData\Local\{9E46CB98-3DA4-4DC4-94D0-715FF480F457}
O43 - CFD: 2011-12-27 - 13:58:33 - [0] ----D C:\Users\Normand\AppData\Local\{A82F4916-73A3-42A2-BAC5-8396550A79CE}
O43 - CFD: 2011-12-29 - 20:40:32 - [0] ----D C:\Users\Normand\AppData\Local\{B149ED83-5A81-429A-8301-0C79D6A9C84C}
O43 - CFD: 2011-12-27 - 13:58:44 - [0] ----D C:\Users\Normand\AppData\Local\{C0235CAC-333B-4645-B6BC-C85323477753}
O43 - CFD: 2011-12-27 - 13:41:15 - [0] ----D C:\Users\Normand\AppData\Local\{E7F616E0-F771-4966-AAAD-B9F3080D9159}
O43 - CFD: 2012-11-06 - 14:31:49 - [0] ----D C:\Users\Normand\AppData\Local\{E976D6FB-C3D6-43FD-AF36-3297C21F1C25}
O43 - CFD: 2011-12-28 - 20:05:10 - [0] ----D C:\Users\Normand\AppData\Local\{EFEBB7AB-21EC-4E1F-9F75-17307F1FB4FB}
O43 - CFD: 2011-12-29 - 08:39:57 - [0] ----D C:\Users\Normand\AppData\Local\{F445EA26-EF4C-482C-8761-FF625CD06F76}
O43 - CFD: 2012-06-30 - 11:43:04 - [0] ----D C:\Users\Normand\AppData\Local\{F8FC50F3-691D-451B-9648-D9BCD6547E5C}
O43 - CFD: 2011-01-21 - 11:54:48 - [0] ----D C:\Users\Normand\AppData\Local\{FD35E433-2DBC-46EA-93CA-D104C7EF8677}
O43 - CFD: 2011-12-29 - 08:40:08 - [0] ----D C:\Users\Normand\AppData\Local\{FDB726F0-98F8-4648-9336-C77385A9A547}
O43 - CFD: 2011-11-23 - 18:12:39 - [0] ----D C:\Users\Normand\AppData\Local\{FF7A13F1-5A08-47E6-9F35-07EA08F6421A}
O43 - CFD: 2012-07-26 - 03:13:00 - [0,004] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2012-10-27 - 12:59:22 - [0,003] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2012-12-12 - 10:43:28 - [0,000] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2012-10-27 - 12:59:22 - [0,004] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
O43 - CFD: 2012-10-27 - 12:59:22 - [0,001] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D�marrage
O43 - CFD: 2012-10-27 - 15:59:10 - [0] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2012-10-27 - 13:15:24 - [0,000] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2012-10-27 - 13:06:00 - [0,003] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrintKey 2000 Fr
O43 - CFD: 2012-12-12 - 10:43:28 - [0,000] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2012-07-26 - 03:13:00 - [0,005] R---D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2012-10-27 - 13:06:00 - [0,003] ----D C:\Users\Normand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 00mn 00s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.92EB844D90615CB266F84C3202B8786E] - 2012-12-14 - 16:49:28 . (...) -- C:\Windows\System32\Drivers\mbam.sys []
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2013-01-15 - 07:41:02 . (...) -- C:\Windows\System32\Drivers\lvuvc.hs []
O44 - LFC:[MD5.64AEB5790901EA8854884981F104CAA6] - 2013-01-15 - 15:41:01 . (...) -- C:\Windows\System32\Drivers\LNonPnP.sys []
O44 - LFC:[MD5.E037AF714935FA78F9B011C31056AD55] - 2013-01-17 - 09:02:32 . (...) -- C:\Windows\System32\lvcoinst.log []
O44 - LFC:[MD5.E037AF714935FA78F9B011C31056AD55] - 2013-01-17 - 09:02:32 ---A- . (...) -- C:\Windows\SysNative\lvcoinst.log [10038]
O44 - LFC:[MD5.8C474F253EBDBF7EF1F6CBB7834C45A1] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfc009.dat []
O44 - LFC:[MD5.815913BCE5939D9636114DC66EE623D0] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfc00C.dat []
O44 - LFC:[MD5.FBF8E02DDAC37A2E73C2E405EA9D63EB] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfh009.dat []
O44 - LFC:[MD5.71A65C4DC5FBE880243743D90A37FDD7] - 2013-01-25 - 08:00:15 . (...) -- C:\Windows\System32\perfh00C.dat []
O44 - LFC:[MD5.055250A1D9772B3392FAF90B0BFCE7AD] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [2076734]
O44 - LFC:[MD5.8C474F253EBDBF7EF1F6CBB7834C45A1] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [165738]
O44 - LFC:[MD5.815913BCE5939D9636114DC66EE623D0] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [198078]
O44 - LFC:[MD5.FBF8E02DDAC37A2E73C2E405EA9D63EB] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [803480]
O44 - LFC:[MD5.71A65C4DC5FBE880243743D90A37FDD7] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [907774]
O44 - LFC:[MD5.055250A1D9772B3392FAF90B0BFCE7AD] - 2013-01-25 - 08:00:15 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [2076734]
O44 - LFC:[MD5.3C2B2836259405116C16D7FE33BBFC37] - 2013-01-26 - 07:34:27 . (...) -- C:\Windows\System32\FNTCACHE.DAT []
O44 - LFC:[MD5.3C2B2836259405116C16D7FE33BBFC37] - 2013-01-26 - 07:34:27 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [328312]
O44 - LFC:[MD5.F59F2C574AA5D84477EB89F87C938F16] - 2013-02-03 - 10:30:29 . (...) -- C:\Windows\System32\Drivers\fsbts.sys []
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2013-02-04 - 08:18:01 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.2F305B67B670BDF232EB06751FC647FC] - 2013-02-12 - 09:18:29 ---A- . (...) -- C:\TDSSKiller.2.8.16.0_12.02.2013_09.05.30_log.txt [153496]
O44 - LFC:[MD5.B3F638214D2CE620322C74C64CF0F1A4] - 2013-02-12 - 13:52:54 ---A- . (...) -- C:\AdwCleaner[R1].txt [3746]
O44 - LFC:[MD5.2B77460D97726EB3046A39A917C31806] - 2013-02-12 - 13:54:48 ---A- . (...) -- C:\AdwCleaner[S1].txt [4078]
O44 - LFC:[MD5.4E8AF6B11277AC4D565C3C6A2E0EEB7A] - 2013-02-12 - 13:56:50 ---A- . (...) -- C:\Windows\setupact.log [707760]
O44 - LFC:[MD5.F6103291A247BA2CCD62CFED9D52927B] - 2013-02-12 - 13:58:34 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.1F6027004A7ECA5C9F270606F8EC77EB] - 2013-02-12 - 14:31:46 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1066371]
~ Scan Files in 00mn 08s



---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de s�curit� TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.i420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcod64.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 2012-07-26 - 00:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736]
O58 - SDL:[MD5.0211AB46B73A2623B86C1CFCB30579AB] - 2009-10-22 - 00:28:12 ---A- . (.Samsung Electronics - Port Contention Driver.) -- C:\Windows\SysWOW64\drivers\SSPORT.SYS [11576]
~ Scan Drivers in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\NOTEPAD.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\NOTEPAD.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {134B70E3-201C-43D7-9770-D312AC78F27D} - (Somoto Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {19F7D875-947B-45ab-95D3-E603813C051E} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {73FD1A91-ECCE-4e62-82E3-4924FA583DAF} - (Yahoo) - http://qc.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {DD5A7BBA-80D3-492B-95DA-3C7F750BA04E} - (Recherche s�curis�e) - http://ca.search.yahoo.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s



---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1071104]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d�acc�s � distance.) -- C:\Windows\System32\rasmans.dll [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3345920]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [69632]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1282560]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [80896]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [190976]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft�.) -- C:\Windows\System32\wlidsvc.dll [1968128]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d�installation de p�riph�rique.) -- C:\Windows\System32\DeviceSetupManager.dll [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivit� r�seau Microsoft.) -- C:\Windows\System32\ncasvc.dll [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les �v�nements syst�me.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [178176]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187392]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.16E53BFC96CE14021C0E07EB1C198478] [SPRF][2013-01-20] (...) -- C:\Users\Normand\AppData\Roaming\inst.exe [99384]
[MD5.AF7CE12C4F3DC8CB2B07685C916BBCFE] [SPRF][2013-01-20] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Users\Normand\AppData\Roaming\pcouffin.sys [82816]
~ Scan Files in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{F7A2F7EA-213A-40BB-BD8F-5144D4C86C71}" | In - Private - P17 - TRUE | .(.VSO Software - VSO Downloader.) -- C:\Program Files (x86)\VSO\VSO Downloader\2\VsoDownloader.exe
O87 - FAEL: "{AFBCE2F1-DE05-4ADE-A932-3979F67AAFAD}" | In - Private - P6 - TRUE | .(.VSO Software - VSO Downloader.) -- C:\Program Files (x86)\VSO\VSO Downloader\2\VsoDownloader.exe
O87 - FAEL: "{FB7B5B1D-BC91-4172-AF04-18A79B5835EC}" | In - Domain - P17 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{6957EF12-E244-4156-8D54-66F8989AB6AE}" | In - Domain - P6 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{965F357F-9B60-4B93-9CF6-BAAC0EC84780}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{491644EE-6682-4A33-B715-1612AE6165B7}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{167CA3DA-274E-4F4E-A75B-7B3B156C698E}" | In - Domain - P17 - FALSE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe
O87 - FAEL: "{0057C5C4-7EED-43F0-87D3-90B9BB384928}" | In - Domain - P6 - FALSE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe
O87 - FAEL: "{4F4C6EF1-57D6-4481-BE77-237F7E4147CD}" | In - Private - P17 - TRUE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe
O87 - FAEL: "{BD725EB1-6A3A-4076-BD57-B01C9A0522C4}" | In - Private - P6 - TRUE | .(.ESET - ESET SysRescue Wizard.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysRescue.exe
O87 - FAEL: "{0BBEE398-09F8-4AAE-99C7-ED5AFEA69949}" | In - Domain - P17 - FALSE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe
O87 - FAEL: "{95621F26-1882-4405-9689-E4A006934FB2}" | In - Domain - P6 - FALSE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe
O87 - FAEL: "{440BFB39-AEFC-4216-80B1-9B3ED3211B7F}" | In - Private - P17 - TRUE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe
O87 - FAEL: "{19C0E1DC-B652-44CD-A56F-3F222508AD27}" | In - Private - P6 - TRUE | .(.ESET - System Analyzer Tool.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\SysInspector.exe
O87 - FAEL: "{CA96B87A-783B-4C70-AB2B-81A09C7C818C}" | In - Domain - P17 - FALSE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O87 - FAEL: "{E68F0597-0D75-4383-B5C6-539DA8C180BA}" | In - Domain - P6 - FALSE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O87 - FAEL: "{75D2C3FC-9779-4FF2-9C80-362688493CD0}" | In - Private - P17 - TRUE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O87 - FAEL: "{3BA1F631-5439-475B-8A67-1535EFCEC8C3}" | In - Private - P6 - TRUE | .(.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O87 - FAEL: "{D9C2D065-D8F8-49DB-84C7-69A1D76E1BD9}" | In - Domain - P17 - FALSE | .(.Condusiv Technologies - Diskeeper� User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe
O87 - FAEL: "{9410BD38-FE6C-42B1-BD8A-CA51DABB39DF}" | In - Domain - P6 - FALSE | .(.Condusiv Technologies - Diskeeper� User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe
O87 - FAEL: "{0B54F309-FF0B-40BB-9836-1AA80CDB485E}" | In - Private - P17 - TRUE | .(.Condusiv Technologies - Diskeeper� User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe
O87 - FAEL: "{8B59AFC2-912E-4135-ADE0-C12FE9A53287}" | In - Private - P6 - TRUE | .(.Condusiv Technologies - Diskeeper� User Interface.) -- C:\Program Files\Condusiv Technologies\Diskeeper\Diskeeper12.exe
O87 - FAEL: "{12A8077D-7C7B-49B1-BFDE-9DF079F85EFE}" | In - Domain - P17 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe
O87 - FAEL: "{E74B6435-7A55-437A-AA4D-01B326A92DBF}" | In - Domain - P6 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe
O87 - FAEL: "{3614FE82-5693-4209-B66D-2303AA471BFD}" | In - Private - P17 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe
O87 - FAEL: "{48A220D8-0B27-4524-8A41-0BD82D9AF3FE}" | In - Private - P6 - TRUE | .(.Acronis - Acronis True Image.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe
O87 - FAEL: "{8D332F20-1223-45CE-B0DB-08A6079271D4}" | In - Private - P17 - TRUE | .(.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O87 - FAEL: "{6E9FAEE0-8479-4879-99A3-E50FB2CAE64A}" | In - Private - P6 - TRUE | .(.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O87 - FAEL: "{081D100D-A1A2-4DD8-8954-F15BB66F173E}" | In - Private - P17 - TRUE | .(.Pas de propri�taire - Net_ScanToPC MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Sscan2io.exe
O87 - FAEL: "{6A253DA2-F5EB-4DCF-A585-2D999BAA7BAB}" | In - Private - P6 - TRUE | .(.Pas de propri�taire - Net_ScanToPC MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Sscan2io.exe
O87 - FAEL: "{D607E099-9C1F-4448-BFBE-71FFD90AFB1F}" | In - Private - P17 - TRUE | .(.Pas de propri�taire - ScanToPc MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Scan2Pc.exe
O87 - FAEL: "{AE84F39C-7EFD-4E39-B9DA-5C42E8F0112D}" | In - Private - P6 - TRUE | .(.Pas de propri�taire - ScanToPc MFC Application.) -- C:\Windows\twain_32\Samsung\SCX4623W\Scan2Pc.exe
O87 - FAEL: "{8DF1007D-7120-48D7-B8BC-AE50C06CE0C1}" | In - Private - P17 - TRUE | .(.Samsung Electronics - Samsung Scan & Fax Manager.) -- C:\Windows\twain_32\Samsung\ScanMgr.exe
O87 - FAEL: "{8567D40E-0905-441E-A90C-00CA09CA8E1A}" | In - Private - P6 - TRUE | .(.Samsung Electronics - Samsung Scan & Fax Manager.) -- C:\Windows\twain_32\Samsung\ScanMgr.exe
O87 - FAEL: "UDP Query User{9F121CE4-5BE5-412B-B2DC-A03059FF0F38}C:\program files (x86)\western digital\wd discovery software\wd discovery.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\western digital\wd discovery software\wd discov
O87 - FAEL: "TCP Query User{F24CEC56-8732-44CF-A4FE-06AC4CB2F79C}C:\program files (x86)\western digital\wd discovery software\wd discovery.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\western digital\wd discovery software\wd discove
O87 - FAEL: "UDP Query User{55B9AA50-9793-4146-88B8-FDE22EFD6AE7}D:\wd discovery software\wd discovery.exe" |In - Private - P17 - TRUE | .(...) -- D:\wd discovery software\wd discovery.exe (.not file.)
O87 - FAEL: "TCP Query User{F421677F-BB30-4550-8263-08F59495EB62}D:\wd discovery software\wd discovery.exe" |In - Private - P6 - TRUE | .(...) -- D:\wd discovery software\wd discovery.exe (.not file.)
O87 - FAEL: "TCP Query User{07D68061-9C40-43CA-905A-FA4E3CEA82B8}C:\program files (x86)\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "UDP Query User{386F29A1-24C2-42BF-A4D6-4D93153EAC64}C:\program files (x86)\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "{D0B9060D-9DB8-42A2-8EB7-C4C7B5612657}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{D7115DE1-0924-44DE-BADF-D2880CCC5675}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{75A16179-B6BC-48D7-A8B5-39BAC89D7CE3}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{1BB9847D-EB93-4D37-AB43-5D310AC78B8E}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Firewall in 00mn 01s



---\\ Scan Additionnel (O88)
Database Version : v2.10682 - (2013-02-12)
Cl�s trouv�es (Keys found) : 0
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 1
Fichiers trouv�s (Files found) : 0

C:\Program Files (x86)\midicairus =>Toolbar.Agent
~ Scan Additionnel in 00mn 05s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "2F64B6D4162AAC447A5FF1AEE4BFBE95" . (.Imp�tRapide 2010.) -- C:\Windows\Installer\{4D6B46F2-A261-44CA-A7F5-1FEA4EFBEB59}\ARPPRODUCTICON.exe
O90 - PUC: "34AAD32917CCE3040BE479EF65C1C839" . (.Consommation Internet Vid�otron.) -- C:\Windows\Installer\{923DAA43-CC71-403E-B04E-97FE561C8C93}\_853F67D554F05449430E7E.exe
O90 - PUC: "3593EEF4D3EC64D48853F20F5D6F0489" . (.Imp�tRapide 2011.) -- C:\Windows\Installer\{4FEE3953-CE3D-4D46-8835-2FF0D5F64098}\ARPPRODUCTICON.exe
O90 - PUC: "40B9DDAB378124146959C6864406F6E2" . (.ESET NOD32 Antivirus.) -- C:\Windows\Installer\{BADD9B04-1873-4142-9695-6C6844606F2E}\egui.exe
O90 - PUC: "454A546044DAD0F499FCB6677253DAF1" . (.aioprnt.) -- C:\Windows\Installer\{0645A454-AD44-4F0D-99CF-6B762735AD1F}\ARPPRODUCTICON.exe
O90 - PUC: "48C235E057243B14D9184D1A2AD0E87E" . (.PlayStation(R)Store.) -- C:\Windows\Installer\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}\ARPPRODUCTICON.exe
O90 - PUC: "4D1DF005CF3D0A441878666BDB61B784" . (.True Image 2013.) -- C:\WINDOWS\Installer\{500FD1D4-D3FC-44A0-8187-66B6BD167B48}\product.ico
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.5) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "73166D846A7C0984386135C4FF6388AE" . (.Garmin City Navigator North America NT 2012.10 Update.) -- C:\Windows\Installer\{48D66137-C7A6-4890-8316-534CFF3688EA}\GarminSetup.ico
O90 - PUC: "7676D6A1177B2574182CC13CB09E14AB" . (.Diskeeper 12 .) -- C:\WINDOWS\Installer\{1A6D6767-B771-4752-81C2-1CC30BE941BA}\ARPPRODUCTICON.exe
O90 - PUC: "7D8F6BA740872664EBC8A1CFDC06D2F9" . (.Centre Souris et Claviers Microsoft.) -- C:\WINDOWS\Installer\{7AB6F8D7-7804-4662-BE8C-1AFCCD602D9F}\DeviceCenter.ico
O90 - PUC: "8DD9566B7A0042A4BBBF1C6F89E2D566" . (.PlayStation(R)Network Downloader.) -- C:\Windows\Installer\{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}\ARPPRODUCTICON.exe
O90 - PUC: "8E30DAA956F42ED4F8C6B170C9C05812" . (.Garmin Lifetime Updater.) -- C:\Windows\Installer\{9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}\Garmin.ico
O90 - PUC: "9322D015E2C6B754590984E55C259DD4" . (.Garmin USB Drivers.) -- C:\Windows\Installer\{510D2239-6C2E-457B-9590-485EC552D94D}\GarminSetup.ico
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "C87409371858E514299E92799D03B618" . (.PC Connectivity Solution.) -- C:\Windows\Installer\{7390478C-8581-415E-92E9-2997D9306B81}\ARPPRODUCTICON.exe
O90 - PUC: "CC133055B43CF494CBAD73ECE46F9E42" . (.Garmin Communicator Plugin x64.) -- C:\Windows\Installer\{550331CC-C34B-494F-BCDA-37CE4EF6E924}\GarminSetup.ico
O90 - PUC: "CDB056C6A9BDC7D4A9FAFF9FC433C6B0" . (.Garmin MapInstall.) -- C:\Windows\Installer\{6C650BDC-DB9A-4D7C-9AAF-FFF94C336C0B}\GarminSetup.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "EE262DE837CF9A74BB689D2232428618" . (.PowerChute Personal Edition 3.0.2.) -- C:\Windows\Installer\{8ED262EE-FC73-47A9-BB86-D92223246881}\ProductIcon_ico
O90 - PUC: "F142AB65C0852D344830492714AA6E33" . (.center.) -- C:\Windows\Installer\{56BA241F-580C-43D2-8403-947241AAE633}\ARPPRODUCTICON.exe
O90 - PUC: "F68042EFC0B374C48A47797A8B2EBFEB" . (.aioscnnr.) -- C:\Windows\Installer\{FE24086F-3B0C-4C47-A874-97A7B8E2FBBE}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s



---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 2013-02-04 3089320 | (a2AntiMalware) . (.Emsisoft GmbH.) - C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
SR - | Auto 2012-08-23 1127392 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
SR - | Auto 2012-12-18 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 2013-02-07 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 2012-11-03 3717112 | (afcdpsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
SR - | Auto 2012-01-24 21880 | (APC Data Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
SR - | Auto 2012-01-24 705912 | (APC UPS Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
SS - | Disabled 2009-08-04 219360 | (BCUService) . (.DeviceVM, Inc..) - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
SR - | Auto 2006-03-30 96341 | (CCALib8) . (.Canon Inc..) - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
SR - | Auto 2012-07-27 2721656 | (Diskeeper) . (.Condusiv Technologies.) - C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe
SR - | Auto 2012-03-07 913144 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
SR - | Auto 2012-12-06 1053184 | (ioloSystemService) . (.iolo technologies, LLC.) - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
SS - | Disabled 2010-09-13 308656 | (Kodak AiO Network Discovery Service) . (.Eastman Kodak Company.) - C:\Program Files (x86)\Kodak\AiO\Center\ekdiscovery.exe
SS - | Demand 2010-10-28 357456 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
SR - | Auto 2009-09-30 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 2012-12-14 398184 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SS - | Auto 2012-12-14 682344 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 2013-02-05 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Disabled 2012-08-01 724888 | (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
SR - | Auto 2012-08-18 7026408 | (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
SR - | Auto 2009-09-30 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 2012-09-20 29696 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 01s



End of the scan (1254 lines in 00mn 44s)(0)

Publicité

Soutenons La Quadrature du Net ! Soutenons La Quadrature du Net !

Signaler le contenu de ce document

Publicité

Soutenons La Quadrature du Net !