Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.3.5.113 par Nicolas Coolman, Update du 21/02/2013
Run by Michel Renaudin at 22/02/2013 16:05:36
State : Version � jour.
High Elevated Privileges : OK
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox 19.0 v19.0 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3959 MB (55% free)
System Restore: Activ� (Enable)
System drive C: has 177 GB (79%) free of 223 GB
---\\ Logged in mode
~ Computer Name: MICHELRENAUDIN
~ User Name: Michel Renaudin
~ All Users Names: Michel Renaudin, HomeGroupUser$, Anne Marie, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Michel Renaudin\AppData\Roaming\
~ %Desktop% : C:\Users\Michel Renaudin\Desktop\
~ %Favorites% : C:\Users\Michel Renaudin\Favorites\
~ %LocalAppData% : C:\Users\Michel Renaudin\AppData\Local\
~ %StartMenu% : C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 177 Go of 223 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 223 Go of 223 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 07:23:14.) -- C:\Windows\Explorer.exe [2870272]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.7B0C153254450192EAD602B992009F72] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.20/12/2012 - 15:07:05.) -- C:\Windows\System32\wininet.dll [1198080]
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.17/07/2010 - 20:26:04.) -- C:\Windows\System32\Winlogon.exe [389632]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Biblioth�que de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:11.) -- C:\Windows\system32\Drivers\AFD.sys [499200]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072]
[MD5.184C189D4FC416978550FC599BB4EDDA] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:02:20.) -- C:\Windows\system32\Drivers\ntfs.sys [1656688]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840]
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.06/09/2012 - 18:38:18.) -- C:\Windows\system32\Drivers\volsnap.sys [295792]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/98
~ Mes Videos (My Videos) : 1/52
~ Mes Favoris (My Favorites) : 1/30
~ Mes Documents (My Documents) : 1/9
~ Mon Bureau (My Desktop) : 1/15
~ Menu demarrer (Programs) : 1/30
~ Scan Hidden Files in 00mn 00s
---\\ Processus lanc�s
[MD5.2DC64A3446C8C6E020E781456B46573D] - (.Microsoft Corporation - Tablet PC Input Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [10240] [PID.2324]
[MD5.75F829427C19014B930640E99AD5A123] - (.TeamViewer GmbH - TeamViewer 8.) -- c:\program files (x86)\teamviewer\version8\TeamViewer.exe [9876472] [PID.2832]
[MD5.D1930CA970D4250D891F432419E3D6C9] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.2820]
[MD5.0D6972A795995F07B6D78CA7724744FB] - (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552] [PID.2608]
[MD5.326A4422C8421A143C3087F41B7A2EFC] - (.Acer Corp. - Acer Touch Portal Button Monitor.) -- C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [153416] [PID.3340]
[MD5.26C48CCE420DACE0278DFB3CF4EFF60C] - (.Acer Corp. - Acer Touch Portal Launcher.) -- C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe [436256] [PID.724]
[MD5.497F27E279C0F921E2130BB89C1CB5CA] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664] [PID.4120]
[MD5.E47FFCA0909871AC1BFF0D446FF63CA9] - (.Kaspersky Lab ZAO - Kaspersky Security Scan.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202296] [PID.1736]
[MD5.0C331C10AD93232C9C66744191B3CA6C] - (.CyberLink Corp. - clear.fi Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe [120104] [PID.4328]
[MD5.0ADF079D36B2C25E6E9BECE1BD937ACE] - (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920] [PID.4620]
[MD5.5E0DFEE44882EA2AC131B2DCA67B767C] - (.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe [181632] [PID.4756]
[MD5.0540C38069CD5212B241E62AC1990201] - (.Pas de propri�taire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [611872] [PID.4912]
[MD5.8FCAF5D358B25C4196C60198EE5B63CF] - (.CyberLink Corp. - Touch Movie Resident Program.) -- C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe [124136] [PID.5008]
[MD5.494D391D603680F5D3FF966E6859E254] - (.CyberLink Corp. - clear.fi Movie Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448] [PID.5068]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4297136] [PID.5076]
[MD5.BAC0833285EAA99FBB6C1B21AC026D21] - (.Goto.Games - Funbridge Communication Server.) -- C:\Program Files (x86)\Goto.Games\Funbridge2\FbNotificationsComServer.exe [491008] [PID.4160]
[MD5.01D92A226791867F2DED688F25271905] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe [1058400] [PID.4556]
[MD5.F255E48EA981E943A14CF16269F3F3AF] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584] [PID.3388]
[MD5.F18E51E0C244E50B43036012900A3C57] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5693440] [PID.5392]
[MD5.8FA553E9AE69808D99C164733A0F9590] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44808] [PID.1352]
[MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.1556]
[MD5.0191DEE9B9EB7902AF2CF4F67301095D] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [23584] [PID.1704]
[MD5.F12A68ED55053940CADD59CA5E3468DD] - (.Pas de propri�taire - RichVideo Module.) -- C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904] [PID.1956]
[MD5.C3CDDD18F43D44AB713CF8C4916F7696] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [219496] [PID.2080]
[MD5.9F3E7CABE86BBDECA009DE291DB6D9E2] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [3467768] [PID.2408]
[MD5.F9EC9ACD504D823D9B9CA98A4F8D3CA2] - (.Acer Group - Updater Service.) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe [243232] [PID.2452]
[MD5.B5E6C4F280EBF0B16F74A5B415F2E0DF] - (.Pas de propri�taire - USB S3S4 Detection.) -- C:\OEM\USBDECTION\USBS3S4Detection.exe [76320] [PID.2580]
[MD5.660BF3255A1EB18ED803FD2FBA6AE400] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.2860]
[MD5.13693B6354DD6E72DC5131DA7D764B90] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [508776] [PID.2888]
[MD5.72794D112CBAFF3BC0C29BF7350D4741] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.exe [822624] [PID.3044]
[MD5.8327990BBD43F0C21868AE1429144010] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Desktop.exe [4103672] [PID.1328]
[MD5.6D42A2E63AE33844F570F300904EFC4E] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe [190968] [PID.1264]
~ Scan Processes Running in 00mn 01s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Michel Renaudin\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Michel Renaudin\AppData\Roaming\Mozilla\Firefox\Profiles\xzin41kb.default\prefs.js
M3 - MFPP: Plugins - [Michel Renaudin] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Michel Renaudin] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Michel Renaudin] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Michel Renaudin] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Michel Renaudin] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Michel Renaudin] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Michel Renaudin] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@microsoft.com/VirtualEarth3D,version=4.0] - (...) -- (.not file.)
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
O1 - Hosts: Copyright (c) 1993-1999 Microsoft Corp.
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d�aide de l�Assistant de connexion au compte Microsoft [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows L
O2 - BHO: AdblockIE [64Bits] - {90EFF544-3981-4d46-85C9-C0361D0931D6} . (...) -- mscoree.dll (.not file.)
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O3 - Toolbar: (no name) [64Bits] - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} Cl� orpheline
~ Scan Toolbar in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [mwlDaemon] . (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
O4 - HKLM\..\Run: [TouchORB] . (.Acer Corp. - Acer Touch Portal Button Monitor.) -- C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [TouchPortal] . (.Acer Corp. - Acer Touch Portal Launcher.) -- C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [KSS] . (.Kaspersky Lab ZAO - Kaspersky Security Scan.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
O4 - HKLM\..\Wow6432Node\Run: [UCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Acer\Acer Touch Suite\YouCam\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [SuiteTray] . (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
O4 - HKLM\..\Wow6432Node\Run: [EgisUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [EgisTecPMMUpdate] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [Hotkey Utility] . (.Pas de propri�taire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Wow6432Node\Run: [MDS_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Acer\clear.fi\MediaEspresso\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [TouchSuiteMovieService] . (.CyberLink Corp. - Touch Movie Resident Program.) -- C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcadeMovieService] . (.CyberLink Corp. - clear.fi Movie Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [FbNotifications] . (.Goto.Games - Funbridge Communication Server.) -- C:\Program Files (x86)\Goto.Games\Funbridge2\FbNotificationsComServer.exe
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
O4 - HKUS\S-1-5-18\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIME.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2383966607-3444198358-1786184895-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-2383966607-3444198358-1786184895-1000\..\Run: [KSS] . (.Kaspersky Lab ZAO - Kaspersky Security Scan.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk . (.Microsoft Corporation.) -- C:\Users\Michel Renaudin\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\Documents - Raccourci.lnk . (...) -- C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Libraries\Documents.library-ms
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\Downloads.lnk . (...) -- C:\Users\Michel Renaudin\Downloads
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\FreeCell.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\LibreOffice Writer.lnk . (.The Document Foundation.) -- C:\Program Files (x86)\LibreOffice 4.0\program\swriter.exe
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\Solitaire.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\TeamViewer 8.lnk . (.TeamViewer GmbH.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O4 - Global Startup: C:\Users\Michel Renaudin\Desktop\Windows Live Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
O4 - Global Startup: C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Anne Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Anne Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Anne Marie\Desktop\AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe
O4 - Global Startup: C:\Users\Anne Marie\Desktop\Documents - Raccourci.lnk . (...) -- C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Libraries\Documents.library-ms
O4 - Global Startup: C:\Users\Anne Marie\Desktop\FreeCell.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\Anne Marie\Desktop\Funbridge2.lnk . (.Goto Games.) -- C:\Program Files (x86)\Goto.Games\Funbridge2\Funbridge2.exe
O4 - Global Startup: C:\Users\Anne Marie\Desktop\Microsoft Word Starter 2010.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
O4 - Global Startup: C:\Users\Anne Marie\Desktop\Windows Live Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
O4 - Global Startup: C:\Users\Anne Marie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O4 - Global Startup: C:\Users\Anne Marie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Global Startup in 00mn 00s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{4F0A8734-FE8B-4D84-983C-9767D0AEAF5F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DBC820C2-0236-483B-966D-B9BFAD1A9FCD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{4F0A8734-FE8B-4D84-983C-9767D0AEAF5F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DBC820C2-0236-483B-966D-B9BFAD1A9FCD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{4F0A8734-FE8B-4D84-983C-9767D0AEAF5F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DBC820C2-0236-483B-966D-B9BFAD1A9FCD}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Se (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) . (.Seiko Epson Corporation - Epson Scanner Service (64bit).) - C:\Windows\system32\EscSvc64.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.exe
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Kaspersky Security Scan Service (KSS) . (.Kaspersky Lab ZAO - Kaspersky Security Scan.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propri�taire - RichVideo Module.) - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH - TeamViewer 8.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: Updater Service (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: USBS3S4Detection (USBS3S4Detection) . (.Pas de propri�taire - USB S3S4 Detection.) - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 06s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sdnclean64.exe) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
[MD5.563CDCFEEAEF97163E206AF71A61AA6E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.7F19838AC317C34FCED020BE529AF71E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[MD5.9CE3B11704038F711481ACD6BD9A9A5A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.65B477B5AFE192D91A6545D7EEDD0417] [APT] [clear.fi] (.Acer Incorporated.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe
[MD5.0C331C10AD93232C9C66744191B3CA6C] [APT] [clear.fiAgent] (.CyberLink Corp..) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
[MD5.00000000000000000000000000000000] [APT] [DealPly] (...) -- C:\Users\Michel Renaudin\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.exe (.not file.)
[MD5.5E0DFEE44882EA2AC131B2DCA67B767C] [APT] [DMREngine] (.CyberLink.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
[MD5.00000000000000000000000000000000] [APT] [{4C123760-2C7B-42F6-8703-221AE1800D7E}] (...) -- E:\.\Autorun.exe (.not file.)
~ Scan Scheduled Task in 00mn 03s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d�initialisation d�Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d�initialisation d�Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys
O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys
O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: Acer GameZone Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1
O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Registration
O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Screensaver
O42 - Logiciel: Acer TouchCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: Acer TouchPortal - (.Acer Incorporated.) [HKLM][64Bits] -- {C652F86F-348A-4A65-8BE8-A3F7A6370D98}
O42 - Logiciel: Acer TouchPortal - (.CyberLink Corp..) [HKLM][64Bits] -- {01C246F5-D7EE-4C87-AF61-04814C78319C}
O42 - Logiciel: Acer TouchPortal - (.CyberLink Corp..) [HKLM][64Bits] -- {41E0DF1D-F433-41D2-8668-5A20C28385F0}
O42 - Logiciel: Acer Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: AdblockIE - (.af0.net.) [HKLM][64Bits] -- {5508128A-2C7B-46B5-81F9-58E8E8115F0B}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Airport Mania First Flight - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}
O42 - Logiciel: Amazonia - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}
O42 - Logiciel: Bato Treasures of Tibet - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117449150}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Cake Mania - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Download Navigator - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {E728441A-7820-4B1C-87C9-DE7BE37B2953}
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: Dreamsdwell Stories - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116564400}
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: EPSON XP-202 203 206 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON XP-202 203 206 Series
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {30E01116-5666-4807-8EF1-D80E9FF16717}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION2.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.Seiko Epson Corporation.) [HKLM][64Bits] -- {BECE9CCD-83F6-4BAA-9B26-227DF7D2E932}
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}
O42 - Logiciel: Galapago - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {6F545E5E-4595-11E2-93B6-B8AC6F97B88E}
O42 - Logiciel: Granny In Paradise - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}
O42 - Logiciel: Guide d'utilisation EPSON XP-202 203 206 Series - (.Pas de propri�taire.) [HKLM][64Bits] -- EPSON XP-202 203 206 Series Useg
O42 - Logiciel: Guide r�seau EPSON XP-202 203 206 Series - (.Pas de propri�taire.) [HKLM][64Bits] -- EPSON XP-202 203 206 Series Netg
O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}
O42 - Logiciel: Hotkey Utility - (.Acer Incorporated.) [HKLM][64Bits] -- Hotkey Utility
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel� Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {400C31E4-796F-4E86-8FDC-C3C4FACC6847}
O42 - Logiciel: Kaspersky Security Scan - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{56009CA3-423B-41F8-884A-E5B049534F15}
O42 - Logiciel: Kaspersky Security Scan - (.Kaspersky Lab.) [HKLM][64Bits] -- {56009CA3-423B-41F8-884A-E5B049534F15}
O42 - Logiciel: LibreOffice 4.0.0.3 - (.The Document Foundation.) [HKLM][64Bits] -- {8EA569F1-97AF-4C3E-A0CB-4846C2D35A81}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MediaEspresso - (.CyberLink Corp..) [HKLM][64Bits] -- {4968622A-4D3F-489E-9ACE-5FEC4CC0BDE3}
O42 - Logiciel: MediaShow Espresso - (.CyberLink Corp..) [HKLM][64Bits] -- {4A814B53-01A3-49D1-B2B8-06BFEAC792CA}
O42 - Logiciel: Merriam Websters Spell Jam - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe
O42 - Logiciel: Microsoft Touch Pack for Windows 7 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FF90DB8-6DED-44A3-B182-244FEC09012F}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3898934B-05AE-41CD-96BE-70DA9BFBCE1F}
O42 - Logiciel: Mozilla Firefox 19.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 19.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {b1359e78-4ffd-4046-9a58-c239bed63503}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: Poker Pop - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111355427}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Shredder - (.Egis Technology Inc..) [HKLM][64Bits] -- {C2695E83-CF1D-43D1-84FE-B3BEC561012A}
O42 - Logiciel: Skype� 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Slingo - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110160733}
O42 - Logiciel: Spin & Win - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110300453}
O42 - Logiciel: TeamViewer 8 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 8
O42 - Logiciel: TouchSettings - (.Acer Incorporated.) [HKLM][64Bits] -- {75880CD4-9436-4EDD-B7E7-400EBFD60B2C}
O42 - Logiciel: Virtual Earth 3D (Beta) - (.Microsoft Corporation.) [HKLM][64Bits] -- {6ACE7F46-FACE-4125-AE86-672F4F2A6A28}
O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Welcome Center
O42 - Logiciel: World of Goo - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {B906C11A-D193-4143-9FA7-E2EE8A5A8F21}
O42 - Logiciel: clear.fi Client - (.Acer Incorporated.) [HKLM][64Bits] -- {43AAE145-83CF-4C96-9A5E-756CEFCE879F}
O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}
O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6}
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\Acer]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avast Software]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cyberlink]
[HKCU\Software\Epson]
[HKCU\Software\Google]
[HKCU\Software\Goto.Games]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SEIKO EPSON CORPORATION]
[HKCU\Software\SkypeApps]
[HKCU\Software\Skype]
[HKCU\Software\TeamViewer]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Document Foundation]
[HKCU\Software\Trolltech]
[HKCU\Software\WebToGo]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\af0]
[HKCU\Software\mozilla]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AcerUtil]
[HKLM\Software\Acer]
[HKLM\Software\Audible]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\DTS]
[HKLM\Software\EPSON]
[HKLM\Software\EgisTec Shredder]
[HKLM\Software\EgisTec]
[HKLM\Software\EpsonNet]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Acer Incorporated]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\EgisTec IPS]
[HKLM\Software\Wow6432Node\EgisTec Shredder]
[HKLM\Software\Wow6432Node\EpsonNet]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Goto.Games]
[HKLM\Software\Wow6432Node\Goto]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\LibreOffice]
[HKLM\Software\Wow6432Node\Loader]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION2]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Sagem]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\The Document Foundation]
[HKLM\Software\Wow6432Node\dotNetInstaller]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\webtogo]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 13/02/2013 - 15:10:43 - [173,313] ----D C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
O43 - CFD: 13/03/2012 - 22:52:01 - [1202,488] ----D C:\Program Files (x86)\Acer
O43 - CFD: 27/08/2010 - 14:18:48 - [954,981] ----D C:\Program Files (x86)\Acer GameZone
O43 - CFD: 21/02/2013 - 21:21:31 - [128,295] ----D C:\Program Files (x86)\Ad-Remover
O43 - CFD: 22/02/2013 - 11:23:11 - [1,668] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 13/02/2013 - 19:31:37 - [9,472] ----D C:\Program Files (x86)\af0.net
O43 - CFD: 22/02/2013 - 14:09:56 - [293,927] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 27/08/2010 - 14:20:10 - [1,782] ----D C:\Program Files (x86)\Cyberlink
O43 - CFD: 27/08/2010 - 14:24:38 - [3,456] ----D C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 27/08/2010 - 14:24:06 - [47,927] ----D C:\Program Files (x86)\EgisTec MyWinLocker
O43 - CFD: 27/08/2010 - 14:23:49 - [2,139] ----D C:\Program Files (x86)\EgisTec MyWinLockerSuite
O43 - CFD: 27/08/2010 - 14:24:41 - [5,329] ----D C:\Program Files (x86)\EgisTec Shredder
O43 - CFD: 13/02/2013 - 15:05:13 - [8,475] ----D C:\Program Files (x86)\epson
O43 - CFD: 13/02/2013 - 15:07:07 - [107,186] ----D C:\Program Files (x86)\EPSON Software
O43 - CFD: 27/08/2010 - 14:05:51 - [20,905] ----D C:\Program Files (x86)\eSobi
O43 - CFD: 13/02/2013 - 19:59:02 - [173,008] ----D C:\Program Files (x86)\Google
O43 - CFD: 09/01/2013 - 19:13:55 - [72,980] ----D C:\Program Files (x86)\Goto.Games
O43 - CFD: 13/02/2013 - 15:07:02 - [221,509] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/03/2012 - 22:20:28 - [64,356] ----D C:\Program Files (x86)\Intel
O43 - CFD: 21/02/2013 - 13:30:35 - [4,270] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/02/2013 - 15:38:23 - [66,206] ----D C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 21/02/2013 - 22:39:21 - [304,259] ----D C:\Program Files (x86)\LibreOffice 4.0
O43 - CFD: 20/02/2013 - 21:29:52 - [12,170] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 09/01/2013 - 19:07:32 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 11/01/2013 - 11:20:27 - [12,399] ----D C:\Program Files (x86)\Microsoft Application Virtualization Client
O43 - CFD: 20/02/2013 - 20:32:45 - [122,679] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/01/2013 - 11:13:53 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 13/02/2013 - 16:46:54 - [5,397] ----D C:\Program Files (x86)\Microsoft SkyDrive
O43 - CFD: 13/03/2012 - 22:46:47 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 27/08/2010 - 14:04:08 - [322,885] ----D C:\Program Files (x86)\Microsoft Touch Pack for Windows 7
O43 - CFD: 20/02/2013 - 20:34:11 - [0,060] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 27/08/2010 - 14:03:11 - [5,405] ----D C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 13/02/2013 - 21:56:51 - [0,015] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 20/02/2013 - 21:10:48 - [45,056] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 20/02/2013 - 23:19:29 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 13/02/2013 - 19:02:31 - [26,600] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 11/01/2013 - 15:28:26 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 27/08/2010 - 14:26:43 - [365,844] ----D C:\Program Files (x86)\Nero
O43 - CFD: 13/03/2012 - 22:23:46 - [5,258] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [36,813] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 17/01/2013 - 20:07:00 - [36,633] ----D C:\Program Files (x86)\Securitoo
O43 - CFD: 31/01/2013 - 21:54:06 - [18,091] R---D C:\Program Files (x86)\Skype
O43 - CFD: 13/02/2013 - 19:22:48 - [31,791] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 13/03/2012 - 22:24:01 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 27/08/2010 - 14:29:06 - [0,337] ----D C:\Program Files (x86)\TouchSettings
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 27/08/2010 - 14:03:18 - [13,800] ----D C:\Program Files (x86)\Virtual Earth 3D
O43 - CFD: 14/03/2012 - 07:13:37 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/02/2013 - 16:48:54 - [152,386] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 11/01/2013 - 13:09:06 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 11/01/2013 - 13:08:46 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 14/03/2012 - 07:13:37 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 14/03/2012 - 07:13:37 - [5,716] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/02/2013 - 16:05:43 - [15,140] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 13/02/2013 - 15:10:10 - [7,724] ----D C:\Program Files (x86)\Common Files\ABBYY
O43 - CFD: 27/08/2010 - 14:28:29 - [30,315] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 09/01/2013 - 19:26:41 - [0,095] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 13/02/2013 - 15:04:06 - [1,623] ----D C:\Program Files (x86)\Common Files\EPSON
O43 - CFD: 13/03/2012 - 22:23:43 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 13/03/2012 - 22:20:26 - [12,658] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 21/02/2013 - 16:24:03 - [64,116] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 27/08/2010 - 14:27:26 - [117,963] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 27/08/2010 - 14:07:18 - [0,338] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 31/01/2013 - 21:54:06 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 11/01/2013 - 13:09:13 - [15,829] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/03/2012 - 22:45:36 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 13/02/2013 - 15:10:10 - [1,268] ----D C:\ProgramData\ABBYY
O43 - CFD: 27/08/2010 - 14:22:37 - [0,323] ----D C:\ProgramData\Acer
O43 - CFD: 22/02/2013 - 11:22:55 - [0] ----D C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 27/08/2010 - 14:04:03 - [206,563] ----D C:\ProgramData\Applications
O43 - CFD: 09/01/2013 - 18:28:44 - [9,852] ----D C:\ProgramData\AVAST Software
O43 - CFD: 09/01/2013 - 18:09:23 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 22/02/2013 - 15:22:01 - [0,104] ----D C:\ProgramData\clear.fi
O43 - CFD: 09/01/2013 - 19:49:26 - [0,192] ----D C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 13/03/2012 - 22:27:01 - [0,162] ----D C:\ProgramData\EgisTec IPS
O43 - CFD: 13/02/2013 - 15:14:20 - [5,405] ----D C:\ProgramData\EPSON
O43 - CFD: 27/08/2010 - 14:05:55 - [0,000] ----D C:\ProgramData\eSobi
O43 - CFD: 09/01/2013 - 18:09:23 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 21/02/2013 - 15:38:23 - [190,167] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 20/02/2013 - 21:29:50 - [5,783] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 09/01/2013 - 21:07:08 - [0,014] ----D C:\ProgramData\McAfee
O43 - CFD: 09/01/2013 - 18:09:23 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 22/02/2013 - 11:20:46 - [1392,975] -S--D C:\ProgramData\Microsoft
O43 - CFD: 20/02/2013 - 20:34:15 - [0,055] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 13/02/2013 - 16:46:39 - [0] ----D C:\ProgramData\Microsoft SkyDrive
O43 - CFD: 09/01/2013 - 18:09:23 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 13/02/2013 - 17:45:51 - [0,007] ----D C:\ProgramData\Mozilla
O43 - CFD: 27/08/2010 - 14:26:16 - [10,441] ----D C:\ProgramData\Nero
O43 - CFD: 27/08/2010 - 14:14:05 - [23,898] ----D C:\ProgramData\OberonGameConsole
O43 - CFD: 09/01/2013 - 18:11:44 - [0,000] ----D C:\ProgramData\oem
O43 - CFD: 31/01/2013 - 21:54:09 - [56,227] ----D C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 29/01/2013 - 19:09:56 - [0,297] ---AD C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 13/02/2013 - 15:07:48 - [0,004] ----D C:\ProgramData\UDL
O43 - CFD: 21/01/2013 - 12:33:05 - [0] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 09/01/2013 - 19:47:26 - [0,357] ----D C:\Users\Michel Renaudin\AppData\Roaming\Adobe
O43 - CFD: 09/01/2013 - 19:49:20 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\CyberLink
O43 - CFD: 13/02/2013 - 15:37:36 - [0,007] ----D C:\Users\Michel Renaudin\AppData\Roaming\Epson
O43 - CFD: 15/02/2013 - 16:35:28 - [0,002] ----D C:\Users\Michel Renaudin\AppData\Roaming\funkitron
O43 - CFD: 09/01/2013 - 19:14:45 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\Goto.Games
O43 - CFD: 09/01/2013 - 18:11:22 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\Identities
O43 - CFD: 17/01/2013 - 20:07:59 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\InstallShield
O43 - CFD: 21/02/2013 - 22:40:40 - [3,482] ----D C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice
O43 - CFD: 09/01/2013 - 18:11:44 - [0,000] ----D C:\Users\Michel Renaudin\AppData\Roaming\Macromedia
O43 - CFD: 20/02/2013 - 21:30:11 - [0,307] ----D C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 08:44:38 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\Media Center Programs
O43 - CFD: 20/02/2013 - 20:33:08 - [9,919] -S--D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft
O43 - CFD: 13/02/2013 - 17:46:09 - [19,271] ----D C:\Users\Michel Renaudin\AppData\Roaming\Mozilla
O43 - CFD: 09/01/2013 - 18:11:47 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\OEM
O43 - CFD: 20/02/2013 - 20:34:17 - [0,015] ----D C:\Users\Michel Renaudin\AppData\Roaming\PowerCinema
O43 - CFD: 22/02/2013 - 15:14:54 - [4,388] ----D C:\Users\Michel Renaudin\AppData\Roaming\Skype
O43 - CFD: 21/02/2013 - 22:11:52 - [1,014] ----D C:\Users\Michel Renaudin\AppData\Roaming\SoftGrid Client
O43 - CFD: 01/02/2013 - 11:03:25 - [0,003] ----D C:\Users\Michel Renaudin\AppData\Roaming\TouchGadget
O43 - CFD: 20/02/2013 - 20:34:17 - [0,012] ----D C:\Users\Michel Renaudin\AppData\Roaming\TouchSuite
O43 - CFD: 09/01/2013 - 19:27:28 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\TP
O43 - CFD: 09/01/2013 - 21:19:34 - [0,000] ----D C:\Users\Michel Renaudin\AppData\Roaming\Windows Live Writer
O43 - CFD: 13/02/2013 - 15:10:30 - [0] ----D C:\Users\Michel Renaudin\AppData\Local\ABBYY
O43 - CFD: 09/01/2013 - 18:09:55 - [0,011] ----D C:\Users\Michel Renaudin\AppData\Local\Acer
O43 - CFD: 22/02/2013 - 11:22:36 - [22,107] ----D C:\Users\Michel Renaudin\AppData\Local\Adobe
O43 - CFD: 09/01/2013 - 18:09:36 - [0] ----D C:\Users\Michel Renaudin\AppData\Local\Application Data
O43 - CFD: 09/01/2013 - 21:07:24 - [0,015] ----D C:\Users\Michel Renaudin\AppData\Local\Cyberlink
O43 - CFD: 21/02/2013 - 21:41:02 - [0,061] ----D C:\Users\Michel Renaudin\AppData\Local\Diagnostics
O43 - CFD: 09/01/2013 - 18:11:45 - [0,000] ----D C:\Users\Michel Renaudin\AppData\Local\EgisTec IPS
O43 - CFD: 13/02/2013 - 16:08:57 - [271,337] ----D C:\Users\Michel Renaudin\AppData\Local\Google
O43 - CFD: 09/01/2013 - 18:09:36 - [0] ----D C:\Users\Michel Renaudin\AppData\Local\Historique
O43 - CFD: 20/02/2013 - 20:33:06 - [174,682] ----D C:\Users\Michel Renaudin\AppData\Local\Microsoft
O43 - CFD: 20/02/2013 - 20:33:06 - [0,439] ----D C:\Users\Michel Renaudin\AppData\Local\Microsoft Games
O43 - CFD: 13/02/2013 - 16:22:41 - [0] ----D C:\Users\Michel Renaudin\AppData\Local\Microsoft Help
O43 - CFD: 13/02/2013 - 17:45:57 - [5,393] ----D C:\Users\Michel Renaudin\AppData\Local\Mozilla
O43 - CFD: 20/02/2013 - 20:34:17 - [24,292] ----D C:\Users\Michel Renaudin\AppData\Local\PowerCinema
O43 - CFD: 13/02/2013 - 21:17:56 - [0] ----D C:\Users\Michel Renaudin\AppData\Local\Programs
O43 - CFD: 09/01/2013 - 19:27:21 - [0,473] ----D C:\Users\Michel Renaudin\AppData\Local\SoftGrid Client
O43 - CFD: 22/02/2013 - 16:03:52 - [21,375] ----D C:\Users\Michel Renaudin\AppData\Local\Temp
O43 - CFD: 09/01/2013 - 18:09:36 - [0] ----D C:\Users\Michel Renaudin\AppData\Local\Temporary Internet Files
O43 - CFD: 09/01/2013 - 19:49:14 - [4,370] ----D C:\Users\Michel Renaudin\AppData\Local\TouchSuite
O43 - CFD: 09/01/2013 - 18:09:46 - [0] ----D C:\Users\Michel Renaudin\AppData\Local\VirtualStore
O43 - CFD: 21/02/2013 - 17:46:15 - [0,055] ----D C:\Users\Michel Renaudin\AppData\Local\Windows Live
O43 - CFD: 13/02/2013 - 16:10:37 - [0,620] ----D C:\Users\Michel Renaudin\AppData\Local\Windows Live Writer
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/01/2013 - 15:09:58 - [0,000] R---D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 13/02/2013 - 15:04:03 - [0,001] ----D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
O43 - CFD: 09/01/2013 - 19:13:59 - [0] ----D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Goto.Games
O43 - CFD: 21/02/2013 - 15:38:37 - [0,006] ----D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 13/02/2013 - 17:21:56 - [0,000] R---D C:\Users\Michel Renaudin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Scan Program Folder in 00mn 18s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.FCCA9F825D2AD68AA81229AD22EB0DC2] - 22/02/2013 - 15:20:28 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1551212]
O44 - LFC:[MD5.E1726A3448CA53CF5942D5231CF2F0FB] - 22/02/2013 - 15:20:28 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106376]
O44 - LFC:[MD5.ED25766C498A73302693857BCB3D3BFE] - 22/02/2013 - 15:20:28 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130734]
O44 - LFC:[MD5.4529BE5FCF5DFC9F7DC47F08B84E8D94] - 22/02/2013 - 15:20:28 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616254]
O44 - LFC:[MD5.AAF7042DAAAAA84ED5183CC62AB344CF] - 22/02/2013 - 15:20:28 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704686]
O44 - LFC:[MD5.FCCA9F825D2AD68AA81229AD22EB0DC2] - 22/02/2013 - 15:20:28 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1551212]
O44 - LFC:[MD5.B55E5C231700AAEC0EE3862EAD7E50DF] - 22/02/2013 - 15:19:32 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1055820]
O44 - LFC:[MD5.FD7E6F9DCCD7FEEBDD6E8D3F14AD24F8] - 22/02/2013 - 15:15:58 ---A- . (...) -- C:\Windows\setupact.log [392]
O44 - LFC:[MD5.C6E9C9CB284F8D35189976CF5B9A6B04] - 22/02/2013 - 15:15:58 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.FE81A40177F53127D53231260AC396D1] - 22/02/2013 - 15:14:50 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [3405]
O44 - LFC:[MD5.D87BB56A8E8A957DFA1F22B1C8C14674] - 22/02/2013 - 15:01:16 ---A- . (...) -- C:\Windows\PFRO.log [1320]
O44 - LFC:[MD5.34EBDF84EFB949A3F1ABD79DC02A9450] - 22/02/2013 - 14:10:03 ---A- . (...) -- C:\AdwCleaner[S1].txt [27307]
O44 - LFC:[MD5.5F5C028FE9B5962D50AA05F9768A0F27] - 22/02/2013 - 10:55:14 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [359624]
O44 - LFC:[MD5.8EBD4180B14C3B0FF4C749FBAD0FB42E] - 21/02/2013 - 22:14:46 ---A- . (...) -- C:\TDSSKiller.2.8.16.0_21.02.2013_22.14.06_log.txt [131302]
O44 - LFC:[MD5.474C7BCD0BDB86BC6835885FDF633563] - 21/02/2013 - 22:13:05 ---A- . (...) -- C:\TDSSKiller.2.8.14.0_21.02.2013_22.12.53_log.txt [354]
O44 - LFC:[MD5.7944BFADBCEC458C59C7513CC92663F1] - 21/02/2013 - 21:22:35 ---A- . (...) -- C:\Ad-Report-SCAN[1].txt [4076]
O44 - LFC:[MD5.95C6A42DD9B276A7F22C01B6C4FE8C42] - 21/02/2013 - 20:27:09 ---A- . (...) -- C:\TDSSKiller.2.8.14.0_21.02.2013_20.19.12_log.txt [387042]
O44 - LFC:[MD5.84FD79C174D9246BAB01A3165DCF45B0] - 21/02/2013 - 20:17:42 ---A- . (...) -- C:\TDSSKiller.2.8.14.0_21.02.2013_20.17.35_log.txt [354]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/02/2013 - 17:42:30 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.61924B1179E69AB7FB767D671AB409C7] - 21/02/2013 - 13:50:17 ---A- . (...) -- C:\Windows\wininit.ini [534]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/02/2013 - 16:52:28 ---A- . (...) -- C:\Windows\EEventManager.INI [0]
O44 - LFC:[MD5.CB423BB9E0EECC4BD1D8A821A28E0D68] - 13/02/2013 - 15:06:40 ---A- . (...) -- C:\Windows\setup.iss [308]
O44 - LFC:[MD5.D1690C013B8F6B5A7955B589D7644B3E] - 13/02/2013 - 15:04:18 ---A- . (.SEIKO EPSON CORPORATION - EpsonNet Print Port Monitor DLL.) -- C:\Windows\SysNative\ensppmon.dll [558080]
O44 - LFC:[MD5.9AB8B96B7335A4EC626115D527B19804] - 13/02/2013 - 15:04:18 ---A- . (.SEIKO EPSON CORPORATION - EpsonNet Print Port Monitor DLL.) -- C:\Windows\SysNative\ensppui.dll [535040]
O44 - LFC:[MD5.81D38F895C26BD9EE13C230AA67F2F94] - 13/02/2013 - 15:04:18 ---A- . (.SEIKO EPSON CORPORATION - EpsonNet Print Resource DLL.) -- C:\Windows\SysNative\enspres.dll [250880]
O44 - LFC:[MD5.D1690C013B8F6B5A7955B589D7644B3E] - 13/02/2013 - 15:04:17 ---A- . (.SEIKO EPSON CORPORATION - EpsonNet Print Port Monitor DLL.) -- C:\Windows\SysNative\enppmon.dll [558080]
O44 - LFC:[MD5.9AB8B96B7335A4EC626115D527B19804] - 13/02/2013 - 15:04:17 ---A- . (.SEIKO EPSON CORPORATION - EpsonNet Print Port Monitor DLL.) -- C:\Windows\SysNative\enppui.dll [535040]
O44 - LFC:[MD5.81D38F895C26BD9EE13C230AA67F2F94] - 13/02/2013 - 15:04:17 ---A- . (.SEIKO EPSON CORPORATION - EpsonNet Print Resource DLL.) -- C:\Windows\SysNative\enpres.dll [250880]
O44 - LFC:[MD5.20ECD0A490A121CB34F553FAD1DBBD39] - 13/02/2013 - 15:03:47 ---A- . (.Seiko Epson Corporation - Epson Scanner Service (64bit).) -- C:\Windows\SysNative\escsvc64.exe [135824]
O44 - LFC:[MD5.88369A29F105499230C78B162BB04F32] - 13/02/2013 - 15:03:47 ---A- . (.Seiko Epson Corporation - Epson WIA Module.) -- C:\Windows\SysNative\esxw2ud.dll [466432]
O44 - LFC:[MD5.BAC5074667751F72A9CE48CDC31BAC48] - 13/02/2013 - 14:50:23 ---A- . (.SEIKO EPSON CORP. - E_GCINST.) -- C:\Windows\SysNative\E_GCINST.DLL [10752]
O44 - LFC:[MD5.EC03B2D63A9A3AB25A7062CC9036F453] - 13/02/2013 - 14:50:23 ---A- . (.SEIKO EPSON CORPORATION - EPSON Bi-directional Monitor AMD64.) -- C:\Windows\SysNative\E_ILMIME.DLL [120320]
O44 - LFC:[MD5.2A07D47A4E19ABA5857CF159E4B83C1E] - 13/02/2013 - 14:50:22 ---A- . (.SEIKO EPSON CORPORATION - ECBTEGB AMD64.) -- C:\Windows\SysNative\E_IBCBIME.DLL [83968]
~ Scan Files in 00mn 21s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.68F1FA52EAD14BFFF8CFD84E187F89FF] - 21/02/2013 - 13:33:28 ---A- - C:\Windows\Prefetch\IMINENT.MESSENGERS.EXE-1C7E31A8.pf
O45 - LFCP:[MD5.5DB2B80D2F27CC8413D233A888AA04AA] - 22/02/2013 - 12:01:52 ---A- - C:\Windows\Prefetch\AgAppLaunch.db
O45 - LFCP:[MD5.2353B67E5228DBCD8B904786C845D135] - 22/02/2013 - 14:01:43 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.94841218F10117BE3132D053E859FD6D] - 22/02/2013 - 14:01:52 ---A- - C:\Windows\Prefetch\TV_W32.EXE-D19B7436.pf
O45 - LFCP:[MD5.D985ABD8A6963349A2CED1DA0A3E16E0] - 22/02/2013 - 14:01:53 ---A- - C:\Windows\Prefetch\TV_X64.EXE-A99DCC2C.pf
O45 - LFCP:[MD5.999124CBACFFC88D38DA7D97D1383196] - 22/02/2013 - 14:01:55 ---A- - C:\Windows\Prefetch\MUISTARTMENU.EXE-32562087.pf
O45 - LFCP:[MD5.1A333BFF11319BD9D06D3B0EBB6EFBB6] - 22/02/2013 - 14:01:57 ---A- - C:\Windows\Prefetch\IAANOTIF.EXE-349C2DDA.pf
O45 - LFCP:[MD5.FABEA12CBA7BFBF69BF002FEAC35E5C2] - 22/02/2013 - 14:01:58 ---A- - C:\Windows\Prefetch\MWLDAEMON.EXE-59CEEDA4.pf
O45 - LFCP:[MD5.3FB886E975694DED125DAC0C30B684B5] - 22/02/2013 - 14:01:59 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-F30110F3.pf
O45 - LFCP:[MD5.ADF5A9DA032DA538D0F5545B30A31AC3] - 22/02/2013 - 14:01:59 ---A- - C:\Windows\Prefetch\TOUCHPORTALOBR.EXE-07B9F862.pf
O45 - LFCP:[MD5.D5FB815D9C4A023EA0FB865FA2164D2F] - 22/02/2013 - 14:02:05 ---A- - C:\Windows\Prefetch\TOUCHMOVIESERVICE.EXE-BC9CD1EF.pf
O45 - LFCP:[MD5.11B2B0CCE3E1CE658C5878C5A83832EB] - 22/02/2013 - 14:02:09 ---A- - C:\Windows\Prefetch\EEVENTMANAGER.EXE-9D941655.pf
O45 - LFCP:[MD5.48F08E645EF1201CF6BA2F88305A222F] - 22/02/2013 - 14:02:26 ---A- - C:\Windows\Prefetch\TEAMVIEWER.EXE-C4ACC082.pf
O45 - LFCP:[MD5.87A528941DA10971257BEDAE56B3E85A] - 22/02/2013 - 14:03:13 ---A- - C:\Windows\Prefetch\TUTO4PC_FR_23.EXE-59A75F1A.pf
O45 - LFCP:[MD5.7D7D43C641B96ED537BFAC2A91CACAB6] - 22/02/2013 - 14:04:47 ---A- - C:\Windows\Prefetch\UPT4PC_FR_23.EXE-E15BC7CD.pf
O45 - LFCP:[MD5.7F7986C9156C5F0D4C6447D725D6C42A] - 22/02/2013 - 14:06:15 ---A- - C:\Windows\Prefetch\MPAS-FE_BD.EXE-9B1F21DB.pf
O45 - LFCP:[MD5.359A9D27BBB818D5E80C7B6CD35029E7] - 22/02/2013 - 14:06:15 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-5D573F0E.pf
O45 - LFCP:[MD5.6FC7B743CB24616EB0D40DC17E3B28DA] - 22/02/2013 - 14:06:16 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-49549CDC.pf
O45 - LFCP:[MD5.98B1EA23CA6AD4279166A2808181C66C] - 22/02/2013 - 14:07:23 ---A- - C:\Windows\Prefetch\FLASHUTIL32_11_6_602_168_ACTI-86AB10CA.pf
O45 - LFCP:[MD5.4D047879BCCBC56799CB69541C84AB15] - 22/02/2013 - 14:08:30 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-61A17A2A.pf
O45 - LFCP:[MD5.2665045A8C5D600C1F4A731BC2D29809] - 22/02/2013 - 14:08:32 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-A033F7A0.pf
O45 - LFCP:[MD5.E950524AA16540C9966FFABBE1ED66DE] - 22/02/2013 - 14:08:33 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-CF49889F.pf
O45 - LFCP:[MD5.95826F07B8F4390DC8A7F523EDCE720C] - 22/02/2013 - 14:08:37 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-F4536DB2.pf
O45 - LFCP:[MD5.7F1F34A4B772565635D22616E838BDC8] - 22/02/2013 - 14:08:57 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B6001A63.pf
O45 - LFCP:[MD5.481AE57CA609789D10083DBADE133CC7] - 22/02/2013 - 14:09:06 ---A- - C:\Windows\Prefetch\ADWCLEANER0.EXE-127EB4E7.pf
O45 - LFCP:[MD5.702DC77079E09464D183103B4DD9261B] - 22/02/2013 - 14:25:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0D53616E.pf
O45 - LFCP:[MD5.FE8EC562E4EEE922277C6B8760D3F170] - 22/02/2013 - 15:00:39 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.47BE3AB87FC2CEDD98D390A450EE3E58] - 22/02/2013 - 15:00:39 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.11B49FF73B89EAEA95B7BE9248B0F82D] - 22/02/2013 - 15:00:40 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6E1A6101.pf
O45 - LFCP:[MD5.5DE8B69668A7C3F7733BBA8B72B3F8BA] - 22/02/2013 - 15:00:43 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf
O45 - LFCP:[MD5.CD5DF81AEF9B2A7AFEF5CD9505C3880F] - 22/02/2013 - 15:00:45 ---A- - C:\Windows\Prefetch\FIXIT.EXE-A7DB0415.pf
O45 - LFCP:[MD5.F54BEFAC6CD5B213074F1922E9F6E02A] - 22/02/2013 - 15:02:30 ---A- - C:\Windows\Prefetch\RAVBG64.EXE-7CC661DA.pf
O45 - LFCP:[MD5.864B307C0BEFECD9604C432FAA111ABD] - 22/02/2013 - 15:02:30 ---A- - C:\Windows\Prefetch\TOUCHPORTALLAUNCHER.EXE-885D2454.pf
O45 - LFCP:[MD5.832C8D31375B75F6683C0D4E9112D491] - 22/02/2013 - 15:02:30 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-72B9DDB3.pf
O45 - LFCP:[MD5.F08111BD620318412031CBE0435072CD] - 22/02/2013 - 15:05:03 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf
O45 - LFCP:[MD5.32BF73F736C4157768BE69CE1A88E940] - 22/02/2013 - 15:11:48 ---A- - C:\Windows\Prefetch\AD-R.EXE-2F439425.pf
O45 - LFCP:[MD5.624D55E337F24FE26A06266B87AAF754] - 22/02/2013 - 15:13:54 ---A- - C:\Windows\Prefetch\MAIN.EXE-7608DA79.pf
O45 - LFCP:[MD5.9EF13FDCCC4546B0923BFE85A6FED81E] - 22/02/2013 - 15:14:04 ---A- - C:\Windows\Prefetch\ERUNT.EXE-9950EE88.pf
O45 - LFCP:[MD5.26BA6776D9399CBDC436D7ED8B4DECDD] - 22/02/2013 - 15:14:49 ---A- - C:\Windows\Prefetch\SKYPE.EXE-A716A034.pf
O45 - LFCP:[MD5.9FD1BDB69DB6600339BD5CCFCA475CA1] - 22/02/2013 - 15:15:02 ---A- - C:\Windows\Prefetch\IELOWUTIL.EXE-EE8999C6.pf
O45 - LFCP:[MD5.6BB01ABC264EF393A1902B576C68C7BC] - 22/02/2013 - 15:15:25 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.0B9D58BD7AAE43F56F7708112A403EB0] - 22/02/2013 - 15:15:25 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.25F883A77763481BA7F65F6E330469D0] - 22/02/2013 - 15:15:26 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.867A70B16C60959AB6D758D0FF8517FA] - 22/02/2013 - 15:15:26 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.0E42AF474C357DEBABDC434B90B663C8] - 22/02/2013 - 15:15:26 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.B03DDF2772627D64A9BC4DB3DDF67DC0] - 22/02/2013 - 15:18:30 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-16B291C4.pf
O45 - LFCP:[MD5.8AE0E73CDB9B8B99F08FBA90C5772AD9] - 22/02/2013 - 15:18:30 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.79881F225579F757B3B4D66EDDA71A43] - 22/02/2013 - 15:18:41 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-F31BDE28.pf
O45 - LFCP:[MD5.15AE3B87E254EC5A64D5B20DA89D822B] - 22/02/2013 - 15:18:41 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf
O45 - LFCP:[MD5.86AAA71ED0401D6FE35F6B5B3327A90C] - 22/02/2013 - 15:18:46 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.6D80004730925B7436C20C972236A8AF] - 22/02/2013 - 15:19:37 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.40939D9B016E32F23E9C6576C52FFE89] - 22/02/2013 - 15:20:29 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.F8EC17A382190DC83F69E9089AE47AF9] - 22/02/2013 - 15:21:17 ---A- - C:\Windows\Prefetch\TEAMVIEWER_DESKTOP.EXE-45FFCFEF.pf
O45 - LFCP:[MD5.2908071DCCE48BC1157AC27C33779407] - 22/02/2013 - 15:21:28 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf
O45 - LFCP:[MD5.7202FCF5E6F11B40AD553194FA4F8DA1] - 22/02/2013 - 15:21:37 ---A- - C:\Windows\Prefetch\WISPTIS.EXE-467FEFF4.pf
O45 - LFCP:[MD5.2334FF6B70E5B643BF141BB5B78B48EE] - 22/02/2013 - 15:21:38 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf
O45 - LFCP:[MD5.EAA0861F718C871D9BC16229B040B82C] - 22/02/2013 - 15:21:38 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.61E6967ED73202405D46487857BA1A96] - 22/02/2013 - 15:21:38 ---A- - C:\Windows\Prefetch\TABTIP.EXE-9740CA06.pf
O45 - LFCP:[MD5.49D1204B5385B058D702112A94255AA6] - 22/02/2013 - 15:21:38 ---A- - C:\Windows\Prefetch\TABTIP32.EXE-65DCACF2.pf
O45 - LFCP:[MD5.0F0E0752A196DFED6FCD61B9DC2BA92C] - 22/02/2013 - 15:21:38 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf
O45 - LFCP:[MD5.2B74B1C76A001185B53F5EABACFD061D] - 22/02/2013 - 15:21:42 ---A- - C:\Windows\Prefetch\MUISTARTMENU.EXE-68A88B0D.pf
O45 - LFCP:[MD5.3ED08335B9A5151F93FA56C7A57029E2] - 22/02/2013 - 15:21:43 ---A- - C:\Windows\Prefetch\SUITETRAY.EXE-42757614.pf
O45 - LFCP:[MD5.8686B2408D25B45A25D0FE36FC52F1ED] - 22/02/2013 - 15:21:46 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-4BB80510.pf
O45 - LFCP:[MD5.FDE6A2FC3C2B09443019FFFC6DF030AF] - 22/02/2013 - 15:21:49 ---A- - C:\Windows\Prefetch\GFXUI.EXE-7A92D15C.pf
O45 - LFCP:[MD5.A2BC969376DB37990F057B41C880B55A] - 22/02/2013 - 15:21:52 ---A- - C:\Windows\Prefetch\PMMUPDATE.EXE-7508F507.pf
O45 - LFCP:[MD5.C5E947DA849806BC07064797CF2FCDF0] - 22/02/2013 - 15:21:53 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-B597A9D1.pf
O45 - LFCP:[MD5.0BB4DC9CBE5399708C804B8EB8D57BD4] - 22/02/2013 - 15:21:54 ---A- - C:\Windows\Prefetch\UPDATER.EXE-A8C477C0.pf
O45 - LFCP:[MD5.CD4CEB4A364DD4E1DD1BBBBF5CDA6A31] - 22/02/2013 - 15:21:59 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-4ED41433.pf
O45 - LFCP:[MD5.0DA7AF6A40AE57B633F8E20AF403E30B] - 22/02/2013 - 15:22:01 ---A- - C:\Windows\Prefetch\EGISUPDATE.EXE-AB9B9CA5.pf
O45 - LFCP:[MD5.57666663DF616E85122FF1CEC46C9506] - 22/02/2013 - 15:22:19 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-2E02FDCA.pf
O45 - LFCP:[MD5.C9A8698F9B65B53820DE2E1CBED9A0B4] - 22/02/2013 - 15:22:38 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.F6CD416FF942841704C9A30457966AB4] - 22/02/2013 - 15:24:05 ---A- - C:\Windows\Prefetch\INPUTPERSONALIZATION.EXE-A15DF574.pf
O45 - LFCP:[MD5.151963DD477262ADC89AC221D9564FE6] - 22/02/2013 - 15:26:58 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-03D3FB87.pf
O45 - LFCP:[MD5.AD8E72D6594DAC558E6F60CA3A51E892] - 22/02/2013 - 15:27:07 ---A- - C:\Windows\Prefetch\MBAM.EXE-493D9B94.pf
O45 - LFCP:[MD5.76A158D2C7C2B4C803BB6DCABF54BA32] - 22/02/2013 - 15:34:28 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf
O45 - LFCP:[MD5.2E52C743082F165825BAA7325248C487] - 22/02/2013 - 15:34:29 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-31898C74.pf
O45 - LFCP:[MD5.BDE0B6E5D6209B8385EAF0AD10F4263D] - 22/02/2013 - 15:36:33 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D49D3641.pf
O45 - LFCP:[MD5.DF0100E1CCFC95857D8D8BD3E737FA63] - 22/02/2013 - 15:39:10 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-0129C0B2.pf
O45 - LFCP:[MD5.09D05EABA0DC799282943BFC1B4A92F4] - 22/02/2013 - 15:39:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.FEB2B4919469D41C204C73D94DFF9D11] - 22/02/2013 - 15:56:04 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D096D5BE.pf
O45 - LFCP:[MD5.CE5F338F0D1BEBBB019D111B71049C04] - 22/02/2013 - 15:59:55 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-032BB3D8.pf
O45 - LFCP:[MD5.4EE9975E0CE47186CA3A87D676213C1E] - 22/02/2013 - 16:00:34 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-63B92852.pf
O45 - LFCP:[MD5.562231D831EB92FAEFD63A03D39ED49C] - 22/02/2013 - 16:01:43 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-359C61A4.pf
O45 - LFCP:[MD5.1D408C4A171C29CBA51B09FA2F3C4F64] - 22/02/2013 - 16:03:00 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf
O45 - LFCP:[MD5.9355229273F1C1B6BB8629E1E6EDC4BA] - 22/02/2013 - 16:03:14 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-E52E5B58.pf
O45 - LFCP:[MD5.07BA81B09AB6D928104F68724E63EC9C] - 22/02/2013 - 16:03:15 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf
O45 - LFCP:[MD5.74A1726C73A5994884F007EE134E8D6F] - 22/02/2013 - 16:03:20 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-19C7463E.pf
O45 - LFCP:[MD5.1448F8B36364EDD4F012F80F370C24A0] - 22/02/2013 - 16:03:21 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-2A6A40A9.pf
O45 - LFCP:[MD5.FBE7556D9FB1B0F8AE6AAA1FD9EA3748] - 22/02/2013 - 16:03:32 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2383966607-3444198358-1786184895-1000.db
O45 - LFCP:[MD5.10E5A9B5AF5A1861FC6653C94B755284] - 22/02/2013 - 16:03:32 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2383966607-3444198358-1786184895-1000.db
O45 - LFCP:[MD5.8C4670F3CD65F86E57A57075F6ACC2CF] - 22/02/2013 - 16:04:00 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.B57E01506DBAD66257E5B847557966FE] - 22/02/2013 - 16:04:00 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
O45 - LFCP:[MD5.F90B622616D276026697BF5A5661AC86] - 22/02/2013 - 16:04:03 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf
O45 - LFCP:[MD5.58D3C806B4CE44505A32A0468A21BDA9] - 22/02/2013 - 16:04:25 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf
O45 - LFCP:[MD5.EA2335D33ABE90B806C6C21EF0929023] - 22/02/2013 - 16:04:31 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-257D8644.pf
O45 - LFCP:[MD5.EE7200555458A567FBDA63223791475C] - 22/02/2013 - 16:04:41 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-6A1D0894.pf
O45 - LFCP:[MD5.FE6C48840B76E8E505B145A44D3AD9A1] - 22/02/2013 - 16:05:39 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-B08BCE90.pf
O45 - LFCP:[MD5.7873342F709EC88214F9D78637F5EA3F] - 22/02/2013 - 16:05:41 ---A- - C:\Windows\Prefetch\PV.EXE-0748338F.pf
O45 - LFCP:[MD5.F899FC1EE1C472D5482E66B3AA7D14CE] - 22/02/2013 - 16:05:46 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1A3F5552.pf
O45 - LFCP:[MD5.2841F8D0DCB9C2E85EED8FC672030BD1] - 22/02/2013 - 16:05:47 ---A- - C:\Windows\Prefetch\CMD.EXE-6D6290C5.pf
O45 - LFCP:[MD5.714FD56F126AD3450E742352CAD8EF7A] - 22/02/2013 - 16:05:47 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.379B931DEACEDD166BD9D90DE436BAAA] - 22/02/2013 - 16:05:47 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.E4C6D015A261CC8F073E13E2D54366F0] - 22/02/2013 - 16:05:47 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-3DCC0576.pf
O45 - LFCP:[MD5.DD191E1FF65B14D56721B66DC314D4F7] - 22/02/2013 - 16:05:55 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-4C982022.pf
~ Scan Prefetcher in 00mn 01s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.)
~ Scan SMSR Keys in 00mn 00s
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
~ Scan Drivers in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC:Last File Created 20/02/2013 - 21:14:11 ---A- C:\Users\Michel Renaudin\Downloads\mbam-setup-1.70.0.1100.exe [10156344]
O61 - LFC:Last File Created 20/02/2013 - 21:52:35 ---A- C:\Users\Michel Renaudin\Downloads\cc_20130220_215212.reg [63050]
O61 - LFC:Last File Created 20/02/2013 - 22:36:03 ---A- C:\Users\Michel Renaudin\Downloads\MBAM-log-2013-02-20 (22-35-34).txt [2304]
O61 - LFC:Last File Created 20/02/2013 - 23:06:46 ---A- C:\Users\Michel Renaudin\Downloads\MBAM-log-2013-02-20 (23-06-30).txt [2432]
O61 - LFC:Last File Created 20/02/2013 - 23:09:47 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-02-20 (22-36-50).txt [2508]
O61 - LFC:Last File Created 20/02/2013 - 23:09:47 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\2759501599.data [748]
O61 - LFC:Last File Created 20/02/2013 - 23:09:47 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\2759501599.quar [308224]
O61 - LFC:Last File Created 20/02/2013 - 23:09:47 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\3548446327.data [760]
O61 - LFC:Last File Created 20/02/2013 - 23:09:47 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\3548446327.quar [818]
O61 - LFC:Last File Created 21/02/2013 - 14:20:47 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-02-21 (13-51-26).txt [2136]
O61 - LFC:Last File Created 21/02/2013 - 15:36:22 ---A- C:\Users\Michel Renaudin\Downloads\kss12.0.1.117mlg_en-fr_ru-fr_fr-fr_de-fr.exe [179968]
O61 - LFC:Last File Created 21/02/2013 - 16:54:06 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Adobe\Acrobat\9.0\UserCache.bin [49992]
O61 - LFC:Last File Created 21/02/2013 - 16:54:14 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [3072]
O61 - LFC:Last File Created 21/02/2013 - 16:55:56 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-02-21 (16-55-54).txt [2210]
O61 - LFC:Last File Created 21/02/2013 - 17:46:06 ---A- C:\Users\Michel Renaudin\AppData\Local\Windows Live Writer\ResourceCache\live\Writer_Config.cab [26214]
O61 - LFC:Last File Created 21/02/2013 - 17:52:16 ---A- C:\Users\Michel Renaudin\AppData\Local\Windows Live\uxcore_wlmail_00.etl [12288]
O61 - LFC:Last File Created 21/02/2013 - 20:13:58 ---A- C:\Users\Michel Renaudin\Downloads\SoftonicDownloader_pour_kaspersky-tdsskiller.exe [393088]
O61 - LFC:Last File Created 21/02/2013 - 20:31:47 ---A- C:\Users\Michel Renaudin\Downloads\ZHPDiag2.exe [5401301]
O61 - LFC:Last File Created 21/02/2013 - 20:52:30 ---A- C:\Users\Michel Renaudin\Documents\ZHPDiag.txt [149511]
O61 - LFC:Last File Created 21/02/2013 - 21:20:51 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Adobe\Flash Player\AssetCache\AMBSSB5N\7421C71F94DB4F028E7528B2D278F3FE4DC21273.heu [148]
O61 - LFC:Last File Created 21/02/2013 - 21:20:51 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Adobe\Flash Player\AssetCache\AMBSSB5N\7421C71F94DB4F028E7528B2D278F3FE4DC21273.swz [156308]
O61 - LFC:Last File Created 21/02/2013 - 21:20:51 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Adobe\Flash Player\AssetCache\AMBSSB5N\cacheSize.txt [7]
O61 - LFC:Last File Created 21/02/2013 - 21:25:10 ---A- C:\Users\Michel Renaudin\Documents\Ad-Report-SCAN[1].txt [4076]
O61 - LFC:Last File Created 21/02/2013 - 21:30:42 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-02-21 (21-30-40).txt [2228]
O61 - LFC:Last File Created 21/02/2013 - 21:32:51 ---A- C:\Users\Michel Renaudin\Documents\MBRCheck_02.21.13_21.32.51.txt [14545]
O61 - LFC:Last File Created 21/02/2013 - 21:40:05 ---A- C:\Users\Michel Renaudin\AppData\Local\Diagnostics\733862231\2013022120.000\results.xsl [49097]
O61 - LFC:Last File Created 21/02/2013 - 21:41:02 ---A- C:\Users\Michel Renaudin\AppData\Local\Diagnostics\733862231\2013022120.000\PCW.0.debugreport.xml [3983]
O61 - LFC:Last File Created 21/02/2013 - 21:41:02 ---A- C:\Users\Michel Renaudin\AppData\Local\Diagnostics\733862231\2013022120.000\ResultReport.xml [1964]
O61 - LFC:Last File Created 21/02/2013 - 21:41:02 ---A- C:\Users\Michel Renaudin\AppData\Local\Diagnostics\733862231\2013022120.000\results.xml [624]
O61 - LFC:Last File Created 21/02/2013 - 21:41:02 ---A- C:\Users\Michel Renaudin\AppData\Local\Diagnostics\733862231\latest.cab [8755]
O61 - LFC:Last File Created 21/02/2013 - 22:11:52 ---A- C:\Users\Michel Renaudin\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat [1927]
O61 - LFC:Last File Created 21/02/2013 - 22:11:52 ---A- C:\Users\Michel Renaudin\AppData\Roaming\SoftGrid Client\shortcut_ex.dat [17]
O61 - LFC:Last File Created 21/02/2013 - 22:35:28 ---A- C:\Users\Michel Renaudin\Downloads\LibreOffice_4.0.0_Win_x86.msi [192139264]
O61 - LFC:Last File Created 21/02/2013 - 22:40:40 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\buildid [39]
O61 - LFC:Last File Created 21/02/2013 - 22:40:40 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\extensions.pmap [776]
O61 - LFC:Last File Created 21/02/2013 - 22:40:40 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\shared\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\backenddb.xml [135]
O61 - LFC:Last File Created 21/02/2013 - 22:40:40 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\shared\registry\com.sun.star.comp.deployment.help.PackageRegistryBackend\backenddb.xml [117]
O61 - LFC:Last File Created 21/02/2013 - 22:40:40 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\uno_packages\cache\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\backenddb.xml [135]
O61 - LFC:Last File Created 21/02/2013 - 22:40:40 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\uno_packages\cache\registry\com.sun.star.comp.deployment.help.PackageRegistryBackend\backenddb.xml [117]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\lastsynchronized [1]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.bundle.PackageRegistryBackend\backenddb.xml [9396]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\backenddb.xml [507]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\common.rdb [12800]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\common_.rdb [12800]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\backenddb.xml [10602]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q1w.tmp\dictionaries.xcu [4809]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q1x.tmp\OptionsDialog.xcu [21304]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q1z.tmp\dictionaries.xcu [2260]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q20.tmp\dictionaries.xcu [1997]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q21.tmp\SunPresentationMinimizer.xcu [718887]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q22.tmp\Addons.xcu [15116]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q28.tmp\Paths.xcu [638]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q2j.tmp\OptionsDialog.xcu [8944]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q2k.tmp\Filter.xcu [2994]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\lu35q2m.tmp\Paths.xcu [1330]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.help.PackageRegistryBackend\backenddb.xml [487]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.script.PackageRegistryBackend\backenddb.xml [240]
O61 - LFC:Last File Created 21/02/2013 - 22:40:41 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\shared\lastsynchronized [1]
O61 - LFC:Last File Created 21/02/2013 - 22:40:42 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\Windows_x86.rdb [1536]
O61 - LFC:Last File Created 21/02/2013 - 22:40:42 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\Windows_x86_.rdb [1536]
O61 - LFC:Last File Created 21/02/2013 - 22:41:15 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\gallery\Spa-Moods-Along-in-the-night.wav [268258]
O61 - LFC:Last File Created 21/02/2013 - 22:41:20 ---A- C:\Users\Michel Renaudin\AppData\Local\GDIPFONTCACHEV1.DAT [78616]
O61 - LFC:Last File Created 21/02/2013 - 22:43:49 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\gallery\La Moldau Smetena extrait.wav [640082]
O61 - LFC:Last File Created 21/02/2013 - 22:47:49 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\gallery\i am alive.wav [417526]
O61 - LFC:Last File Created 21/02/2013 - 22:47:49 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\gallery\sg30.sdg [625]
O61 - LFC:Last File Created 21/02/2013 - 22:47:49 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\gallery\sg30.sdv [2048]
O61 - LFC:Last File Created 21/02/2013 - 22:47:49 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\gallery\sg30.thm [680]
O61 - LFC:Last File Created 21/02/2013 - 22:49:38 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\Windows_x86rc [142]
O61 - LFC:Last File Created 21/02/2013 - 22:49:38 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\extensions\bundled\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\unorc [386]
O61 - LFC:Last File Created 21/02/2013 - 22:49:44 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\basic\dialog.xlc [406]
O61 - LFC:Last File Created 21/02/2013 - 22:49:44 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\basic\script.xlc [406]
O61 - LFC:Last File Created 21/02/2013 - 22:49:44 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\registrymodifications.xcu [89268]
O61 - LFC:Last File Created 21/02/2013 - 22:49:44 ---A- C:\Users\Michel Renaudin\AppData\Roaming\LibreOffice\4\user\uno_packages\cache\log.txt [356]
O61 - LFC:Last File Created 22/02/2013 - 11:45:23 ---A- C:\Users\Michel Renaudin\Downloads\SpyKiller.exe [427130]
O61 - LFC:Last File Created 22/02/2013 - 14:02:02 ----- C:\Users\Michel Renaudin\AppData\Local\Temp\Twunk002.MTX [0]
O61 - LFC:Last File Created 22/02/2013 - 14:02:14 ----- C:\Users\Michel Renaudin\AppData\Local\Temp\~DF8A5F1D0F69149E83.TMP [312320]
O61 - LFC:Last File Created 22/02/2013 - 14:02:14 ----- C:\Users\Michel Renaudin\AppData\Local\Temp\~DFA6A7B4BA98A47740.TMP [312320]
O61 - LFC:Last File Created 22/02/2013 - 14:07:27 ---A- C:\Users\Michel Renaudin\Downloads\adwcleaner0.exe [587671]
O61 - LFC:Last File Created 22/02/2013 - 14:10:03 ---A- C:\Users\Michel Renaudin\AppData\Local\Google\Chrome\User Data\Default\Preferences [147111]
O61 - LFC:Last File Created 22/02/2013 - 15:02:14 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\eas.db [53248]
O61 - LFC:Last File Created 22/02/2013 - 15:02:14 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\eas.db-journal [41552]
O61 - LFC:Last File Created 22/02/2013 - 15:02:18 ----- C:\Users\Michel Renaudin\AppData\Local\Temp\~DF14BA8D3D753E45F4.TMP [312320]
O61 - LFC:Last File Created 22/02/2013 - 15:02:18 ----- C:\Users\Michel Renaudin\AppData\Local\Temp\~DF657A8B08478473DB.TMP [312320]
O61 - LFC:Last File Created 22/02/2013 - 15:02:18 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\msn.db [53248]
O61 - LFC:Last File Created 22/02/2013 - 15:02:18 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\msn.db-journal [33344]
O61 - LFC:Last File Created 22/02/2013 - 15:13:35 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\dc.db [45056]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\bistats.db [61440]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\bistats.db-journal [33344]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\config.xml [5732]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\httpfe\cookies.dat [12]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\keyval.db [40960]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\keyval.db-journal [33344]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\main.db [360448]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\michel.renaudin33\main.db-journal [119528]
O61 - LFC:Last File Created 22/02/2013 - 15:14:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\shared.xml [69226]
O61 - LFC:Last File Created 22/02/2013 - 15:15:23 --HA- C:\Users\Michel Renaudin\AppData\Local\IconCache.db [7743770]
O61 - LFC:Last File Created 22/02/2013 - 15:21:39 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\shared_dynco\dc.db [1736704]
O61 - LFC:Last File Created 22/02/2013 - 15:21:39 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Skype\shared_dynco\dc.db-journal [1100384]
O61 - LFC:Last File Created 22/02/2013 - 15:21:49 ---A- C:\Users\Michel Renaudin\AppData\Local\Temp\TWAIN.LOG [884]
O61 - LFC:Last File Created 22/02/2013 - 15:21:49 ---A- C:\Users\Michel Renaudin\AppData\Local\Temp\Twain001.Mtx [3]
O61 - LFC:Last File Created 22/02/2013 - 15:21:49 ---A- C:\Users\Michel Renaudin\AppData\Local\Temp\Twunk001.MTX [156]
O61 - LFC:Last File Created 22/02/2013 - 15:55:54 ---A- C:\Users\Michel Renaudin\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-02-22 (15-27-50).txt [2158]
O61 - LFC:Last File Created 22/02/2013 - 16:04:20 ---A- C:\Users\Michel Renaudin\AppData\Local\Temp\MyWinLocker\FileList.txt [84]
~ Scan Files in 00mn 12s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/10/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 15/10/2012 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr) .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 04/02/2010 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 26/09/2009 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 03/06/2009 - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys (mwlPSDFilter) .(.Egis Technology Inc. - PSD Filter Driver.) - LEGACY_MWLPSDFILTER
O64 - Services: CurCS - 03/06/2009 - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys (mwlPSDNServ) .(.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - LEGACY_MWLPSDNSERV
O64 - Services: CurCS - 03/06/2009 - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys (mwlPSDVDisk) .(.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - LEGACY_MWLPSDVDISK
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 01/10/2011 - C:\Windows\System32\DRIVERS\Sftvollh.sys (Sftvol) .(.Microsoft Corporation - Microsoft Application Virtualization Volume.) - LEGACY_SFTVOL
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 06/09/2012 - C:\Windows\System32\DRIVERS\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1114624]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [208896]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Scan Services in 00mn 00s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.0D3B680986310AE5540578C0E481C6A0] [SPRF][21/06/2010] (...) -- C:\ProgramData\FullRemove.exe [131984]
[MD5.70F7403B7E054818440DB9B6FBD07F3A] [SPRF][22/02/2013] (.Pas de propri�taire - Suppression fichiers temporaires.) -- C:\Users\Michel Renaudin\Desktop\SFT.exe [845459]
~ Scan Files in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{A72045D3-9EA6-4657-BEF0-9C6263923937}" | In - None - P6 - TRUE | .(.CyberLink Corp. - Touch Movie Resident Program.) -- C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe
O87 - FAEL: "{6E13CC2D-2517-4BB7-8582-CECA4F0B89C0}" | In - None - P6 - TRUE | .(.Acer Incorporated - clear.fi.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe
O87 - FAEL: "{4634B3CD-BCCB-489A-9148-9CE0FE4930E9}" | In - None - P6 - TRUE | .(.CyberLink Corp. - clear.fi Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
O87 - FAEL: "{872E784B-94AE-434C-ADB7-B6FE8EA69C45}" | In - None - P6 - TRUE | .(.CyberLink Corp. - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\CLML\CLMLSvc.exe
O87 - FAEL: "{427AB539-BFC9-4A45-B521-7B7BFA9393D2}" | In - Domain - P6 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{D11C95EB-41C9-4201-BD8E-DDB20C57D696}" | In - Private - P6 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{6390DF36-27D3-4265-932C-D3CA92F9978F}" | In - Public - P6 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{752A91A6-12CC-40DD-91B3-8146D26863BD}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{8AE04967-5A6B-4368-BB39-8DE44222B000}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{9A4FC846-C916-4056-BBE0-1998AF0F715F}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{2B52889D-105E-4593-A99D-E8A2B972860B}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{272598F6-1FFD-4CF6-AB34-8714CFF79588}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{66434766-5D80-44B9-B33D-362492A5E1C4}" |In - Public - P6 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{3BE25B4A-A5CE-4F24-A24B-8D8E050AA3FD}" |In - Public - P17 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "TCP Query User{F28B793F-5220-4D04-935D-1B83C74D931D}E:\fscommand\rim.exe" |In - Public - P6 - TRUE | .(...) -- E:\fscommand\rim.exe (.not file.)
O87 - FAEL: "UDP Query User{253C03C8-5B33-463D-99AA-D2DBC6A7B8A7}E:\fscommand\rim.exe" |In - Public - P17 - TRUE | .(...) -- E:\fscommand\rim.exe (.not file.)
O87 - FAEL: "TCP Query User{07275B58-36F7-472F-AD91-AF1538993D49}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
O87 - FAEL: "UDP Query User{9CFBC531-A7D7-4685-A902-2C273885AE94}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeve
O87 - FAEL: "{A5739C19-0F71-459E-8CBB-073448068993}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.)
O87 - FAEL: "{FD527C1B-7C1C-498C-A264-33335F82A656}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.)
O87 - FAEL: "{4165A6BF-0836-44C9-9171-C2EB2E8D7033}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{67F507FA-EE5E-4E5D-ABC7-BFA23DE2E89E}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{9BC2F286-C811-4DA7-A539-62B31D9098F8}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{D6466980-3921-4730-B91C-6C09A347102B}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "TCP Query User{A3F05F65-B0EC-4992-A680-00C13D522AB4}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eevent
O87 - FAEL: "UDP Query User{D19A281A-093B-4AB6-A366-F5992445EA22}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
~ Scan Firewall in 00mn 01s
---\\ Scan Additionnel (O88)
Database Version : v2.10828 - (21/02/2013)
Cl�s trouv�es (Keys found) : 6
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 1
Fichiers trouv�s (Files found) : 0
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Iminent] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
C:\Users\Michel Renaudin\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc =>Adware.Yontoo
~ Scan Additionnel in 00mn 13s
---\\ Recherche d�tournement de DNS routeur (O89) (None)
---\\ Product Upgrade Codes (O90)
O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
O90 - PUC: "1B641C2DD849FE743878D5C1B689F0C7" . (.Windows Live Writer.) -- C:\Windows\Installer\{D2C146B1-948D-47EF-8387-5D1C6B980F7C}\ApplicationIcon.ico
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "1F965AE8FA79E3C40ABC84642C3DA518" . (.LibreOffice 4.0.0.3.) -- C:\Windows\Installer\{8EA569F1-97AF-4C3E-A0CB-4846C2D35A81}\soffice.ico
O90 - PUC: "35B418A43A101D942B8B60FBAE7C29AC" . (.MediaShow Espresso.) -- C:\Windows\Installer\{4A814B53-01A3-49D1-B2B8-06BFEAC792CA}\ARPPRODUCTICON.exe
O90 - PUC: "38E5962CD1FC1D3448EF3BEB5C1610A2" . (.Shredder.) -- C:\Windows\Installer\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\ARPPRODUCTICON.exe
O90 - PUC: "3AC90065B3248F1488A45E0B9435F451" . (.Kaspersky Security Scan.) -- C:\Windows\Installer\{56009CA3-423B-41F8-884A-E5B049534F15}\setup2.ico
O90 - PUC: "3C5FB837B7FA0BB47BFE5E50FE7C65EB" . (.MyWinLocker Suite.) -- C:\Windows\Installer\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}\ARPPRODUCTICON.exe
O90 - PUC: "5B769D51EB4AEA24E94846DC60B252AA" . (.eSobi v2.) -- C:\Windows\Installer\{15D967B5-A4BE-42AE-9E84-64CD062B25AA}\ARPPRODUCTICON.exe
O90 - PUC: "5F642C10EE7D78C4FA164018C48713C9" . (.PowerCinema.) -- C:\Windows\Installer\{01C246F5-D7EE-4C87-AF61-04814C78319C}\ARPPRODUCTICON.exe
O90 - PUC: "613755F10CFCDB14FA7FB84CC94E447D" . (.Shredder.) -- C:\Windows\Installer\{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}\ARPPRODUCTICON.exe
O90 - PUC: "64F7ECA6ECAF5214EA6876F2F4A2A682" . (.Virtual Earth 3D (Beta).) -- C:\Windows\Installer\{6ACE7F46-FACE-4125-AE86-672F4F2A6A28}\SpacelandIcon
O90 - PUC: "743C7362DAD96D11E92A0050D5C07A16" . (.PowerCinema.) -- C:\Windows\Installer\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\ARPPRODUCTICON.exe
O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.YouCam.) -- C:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe
O90 - PUC: "8BD09FF8DED63A441B2842F4CE9010F2" . (.Microsoft Touch Pack for Windows 7.) -- C:\Windows\Installer\{8FF90DB8-6DED-44A3-B182-244FEC09012F}\AppSuiteIcon
O90 - PUC: "9D0DC7D088A436A4F819F3E4F8737186" . (.MyWinLocker.) -- C:\Windows\Installer\{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}\ARPPRODUCTICON.exe
O90 - PUC: "9EC6D81181F59F2459A84176A626F9ED" . (.Iminent.) -- C:\Windows\Installer\{118D6CE9-5F18-42F9-958A-14676A629FDE}\imbooster.ico
O90 - PUC: "A11C609B391D3414F97A2EEEA8A5F812" . (.ArcadeMovie.) -- C:\Windows\Installer\{B906C11A-D193-4143-9FA7-E2EE8A5A8F21}\ARPPRODUCTICON.exe
O90 - PUC: "A2268694F3D4E984A9ECF5CEC40CDB3E" . (.MediaEspresso.) -- C:\Windows\Installer\{4968622A-4D3F-489E-9ACE-5FEC4CC0BDE3}\ARPPRODUCTICON.exe
O90 - PUC: "ADA116F5C89BBBD4DAED14F48054E7FC" . (.Windows Live Family Safety.) -- C:\Windows\Installer\{5F611ADA-B98C-4DBB-ADDE-414F08457ECF}\fssicon.ico
O90 - PUC: "B4398983EA50DC1469EB07ADB9BFECF1" . (.Microsoft XNA Framework Redistributable 3.0.) -- C:\Windows\Installer\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}\ProductIcon
O90 - PUC: "D1FD0E14334F2D146886A5022C38580F" . (.TouchMovie.) -- C:\Windows\Installer\{41E0DF1D-F433-41D2-8668-5A20C28385F0}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DCC9ECEB6F38AAB4B96222D77F2D9E23" . (.Epson Event Manager.) -- C:\Windows\Installer\{BECE9CCD-83F6-4BAA-9B26-227DF7D2E932}\icon.exe
O90 - PUC: "E5E5322F18873924B9F6402B06F9FB0F" . (.Windows Live Messenger.) -- C:\Windows\Installer\{F2235E5E-7881-4293-9B6F-04B2609FBFF0}\MsblIco.Exe
O90 - PUC: "E5E545F659542E11396B8BCAF6798BE8" . (.Google�Earth.) -- C:\Windows\Installer\{6F545E5E-4595-11E2-93B6-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Scan Files in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SS - | Demand 13/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 30/10/2012 44808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Auto 12/12/2011 135824 | (EpsonScanSvc) . (.Seiko Epson Corporation.) - C:\Windows\system32\EscSvc64.exe
SR - | Auto 01/11/2011 179296 | (EPSON_EB_RPCV4_04) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.exe
SR - | Auto 01/11/2011 151648 | (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe
SR - | Auto 08/01/2010 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
SR - | Auto 13/10/2009 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
SR - | Auto 25/04/2012 202296 | (KSS) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
SS - | Demand 20/02/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 27/05/2010 305520 | (MWLService) . (.Egis Technology Inc..) - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
SS - | Demand 15/01/2010 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 244904 | (RichVideo) . (...) - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
SS - | Auto 08/01/2013 161536 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 14/12/2012 3467768 | (TeamViewer8) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
SR - | Auto 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
SR - | Auto 76320 | (USBS3S4Detection) . (...) - C:\OEM\USBDECTION\USBS3S4Detection.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 01s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Michel Renaudin at 22/02/2013 16:07:58
device: opened successfully
user: error reading MBR
Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR
~ Scan MBR in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Michel Renaudin at 22/02/2013 16:08:00
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s
End of the scan (1428 lines in 02mn 23s)(0)