cjoint

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v2013.4.16.93 par Nicolas Coolman, Update du 16/04/2013
Run by Jennifer at 17/04/2013 01:12:38
State : Version � jour.
WhiteList : Disable
High Elevated Privileges : OK
UAC : Deactivate by user


---\\ Web Browser
MSIE: Internet Explorer v10.0.9200.16540
MFIE: Mozilla Firefox 11.0 v11.0
GCIE: Google Chrome v26.0.1410.64 (Defaut)

---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 4P2KH
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Protection
avast! Free Antivirus v7.0.1474.0
Windows Defender W7

---\\ System Optimizer
CCleaner v3.14

---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 17

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3066 MB (41% free)
System Restore: Activ� (Enable)
System drive C: has 176 GB (59%) free of 298 GB

---\\ Logged in mode
~ Computer Name: JENNIFER-PC
~ User Name: Jennifer
~ All Users Names: Jennifer, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Jennifer\AppData\Roaming\
~ %Desktop% : C:\Users\Jennifer\Desktop\
~ %Favorites% : C:\Users\Jennifer\Favorites\
~ %LocalAppData% : C:\Users\Jennifer\AppData\Local\
~ %StartMenu% : C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 176 Go of 298 Go)
D:\ CD-ROM drive (Free 0 Go of 5 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.CFE0CEE587F9CEA4C29DEEC6D85FC91C] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/02/2013 - 11:30:16.) -- C:\Windows\System32\wininet.dll [1766912]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 22:29:06.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 22:29:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 22:29:03.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 22:29:07.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 22:29:03.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 22:29:08.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.9CDAEBE5160B9AF02AE17C62BDB6C4B5] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.02/03/2013 - 06:07:36.) -- C:\Windows\system32\Drivers\ntfs.sys [1212264]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 22:29:49.) -- C:\Windows\system32\Drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 22:29:07.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 22:29:03.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/1710
~ Mes musiques (My Musics) : 4/875
~ Mes Videos (My Videos) : 2/115
~ Mes Favoris (My Favorites) : 1/45
~ Mes Documents (My Documents) : 1/3332
~ Mon Bureau (My Desktop) : 1/3
~ Menu demarrer (Programs) : 1/37
~ Hidden Files: Scanned in 00mn 15s



---\\ Processus lanc�s
[MD5.804507CF6368F3BDE71A2BB783305B2F] - (.Auslogics - Disk Defrag.) -- C:\Program Files\Auslogics\Auslogics Disk Defrag\DiskDefrag.exe [485080] [PID.1500]
[MD5.E9A60A1CA8850EA5642F7CC673009639] - (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe [480608] [PID.3320]
[MD5.A00FB26A7167E634EDAA1DFF6E04D7BB] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe [521528] [PID.3560]
[MD5.E1B256B757927A1A11FB000B8367BC97] - (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe [484920] [PID.3584]
[MD5.91AA4F4F0FAE0A1F0365B0DBBDF0F592] - (.TOSHIBA Corporation. - HDMICtrlMan.exe.) -- C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe [832856] [PID.3624]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4297136] [PID.3632]
[MD5.E4401CF27225C1D6E664E86195978562] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [152544] [PID.4088]
[MD5.DE18C59221DC6F85A37C80B919389CDE] - (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1093232] [PID.1928]
[MD5.5D4C94D357E8A0E087C12CD52DE4E4B6] - (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1668720] [PID.1380]
[MD5.C861851A0BBD9903E324487011AA3705] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [299008] [PID.1468]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.3176]
[MD5.D7330569674CA0F889887075FB470011] - (.TOSHIBA Corporation. - SoundChanger.exe.) -- C:\Program Files\TOSHIBA\HDMICtrlMan\HCMSoundChanger.exe [705880] [PID.3492]
[MD5.D28C5A1411BB0B47E05E0D6AAF896690] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [299008] [PID.4996]
[MD5.2F0EAAF91FC7A5C70D1F4BE9B18A1CF5] - (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\system32\StikyNot.exe [354304] [PID.3012]
[MD5.4E9592BB2C100E571F82640E59E9ECD5] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1312720] [PID.4540]
[MD5.DC79F4167BF4067CC0F2C72E4E6040B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [6808576] [PID.5732]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\2j18u6yw.default\prefs.js
C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\2j18u6yw.default\user.js
M3 - MFPP: Plugins - [Jennifer] -- C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\2j18u6yw.default\searchplugins\askcom.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\2j18u6yw.default\searchplugins\holasearch.xml =>Hijacker.HolaSearch
M3 - MFPP: Plugins - [Jennifer] -- C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\2j18u6yw.default\searchplugins\Search_Results.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\babylon.xml =>Toolbar.Babylon
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\Search_Results.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Jennifer] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Jennifer - 2j18u6yw.default] http://www.holasearch.com =>Hijacker.HolaSearch
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.17.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.17.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win # 5.2.1.0.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20125.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Firefox Browser: 26 Scanned in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.holasearch.com =>Hijacker.HolaSearch
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 11 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (...) -- C:\PROGRA~1\WIA6EB~1\Datamngr\ToolBar\searchqudtx.dll (.not file.) =>PUP.Datamngr
O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} . (.Iminent - Iminent BHO.) -- C:\Program Files\Iminent\Iminent.WebBooster.InternetExplorer.dll =>Adware.IMBooster
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
~ BHO: 9 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Searchqu Toolbar - [HKLM]{99079a25-328f-4bd4-be04-00955acaa0a7} . (...) -- C:\Program Files\WIA6EB~1\Datamngr\ToolBar\searchqudtx.dll =>PUP.Datamngr
~ Toolbar: Scanned in 00mn 00s



---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [TPwrMain] . (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
O4 - HKLM\..\Run: [HSON] . (.TOSHIBA Corporation - HotStartOn.) -- C:\Program Files\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
O4 - HKLM\..\Run: [HDMICtrlMan] . (.TOSHIBA Corporation. - HDMICtrlMan.exe.) -- C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [IntelliType Pro] . (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [Iminent] . (.Iminent - Iminent.) -- C:\Program Files\Iminent\Iminent.exe =>Adware.IMBooster
O4 - HKLM\..\Run: [IminentMessenger] . (.Iminent - Iminent.) -- C:\Program Files\Iminent\Iminent.Messengers.exe =>Adware.IMBooster
O4 - HKLM\..\RunOnce: [removeSearchqudatamngr] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>PUP.Datamngr
O4 - HKLM\..\RunOnce: [removeSearchqutoolbar] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>PUP.Datamngr
O4 - HKCU\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEGE.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] . (.Apple Inc. - ApplePhotoStreams.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [Bubble Dock] C:\Users\Jennifer\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\system32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1583092741-3410698056-3706623094-1000\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKUS\S-1-5-21-1583092741-3410698056-3706623094-1000\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKUS\S-1-5-21-1583092741-3410698056-3706623094-1000\..\Run: [EPSON Stylus SX400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEGE.exe
O4 - HKUS\S-1-5-21-1583092741-3410698056-3706623094-1000\..\Run: [ApplePhotoStreams] . (.Apple Inc. - ApplePhotoStreams.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKUS\S-1-5-21-1583092741-3410698056-3706623094-1000\..\Run: [Bubble Dock] C:\Users\Jennifer\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
O4 - HKUS\S-1-5-21-1583092741-3410698056-3706623094-1000\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\system32\StikyNot.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: iTunes.lnk . (.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O4 - GS\TaskBar: Sticky Notes.lnk . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\system32\StikyNot.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\wlmail.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Free Video Converter.lnk . (.Koyote Soft - FreeVideoConverter.) -- C:\Program Files\Free Video Converter\FreeVideoConverter.exe
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
~ Global Startup: Scanned in 00mn 00s



---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer � OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~1\Office14\ONBttnIE.dll
O9 - Extra button: Notes &li�es OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~1\Office14\ONBTTN~1.dll
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Winsock: 9 Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] *.clonewarsadventures.com
O15 - Trusted Zone: [HKCU\...\Domains] *.freerealms.com
O15 - Trusted Zone: [HKCU\...\Domains] *.soe.com
O15 - Trusted Zone: [HKCU\...\Domains] *.sony.com
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{982A7990-41BF-406C-AFB1-BD1443736C30}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{982A7990-41BF-406C-AFB1-BD1443736C30}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{982A7990-41BF-406C-AFB1-BD1443736C30}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: O2FLASH (O2FLASH) . (.O2Micro International - O2 Flash Memory Service.) - C:\Windows\System32\DRIVERS\o2flash.exe
O23 - Service: SProtection (SProtection) . (.Iminent - Iminent Protection.) - C:\Program Files\Common Files\Umbrella\umbrella.exe =>Adware.IMBooster
O23 - Service: TOSHIBA Power Saver (TosCoSrv) . (.TOSHIBA Corporation - TOSHIBA Power Saver.) - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: XAudioService (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\System32\DRIVERS\xaudio.exe
~ Services: 11 Scanned in 00mn 05s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 1 Scanned in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job [268]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1056]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1060]
[MD5.EA856F4A46320389D1899B2CAA7BF40F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [253656]
[MD5.43F95CA51643DBF309E84B69DEBE8235] [APT] [Apple Diagnostics] (.Apple Inc..) -- C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [145296]
[MD5.07605ABEB10FC533881C91F19DECF69A] [APT] [AutoKMS] (...) -- C:\Windows\AutoKMS\AutoKMS.exe [1923584]
[MD5.7F19838AC317C34FCED020BE529AF71E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [247224]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176]
[MD5.4E9592BB2C100E571F82640E59E9ECD5] [APT] [{1A133493-C2DC-425E-8615-A10834816BCA}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe [1312720]
[MD5.4E9592BB2C100E571F82640E59E9ECD5] [APT] [{7A4FADB6-9D89-401F-B05E-753861C10A0A}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe [1312720]
[MD5.23E8E641B2942EB9C93CD489BE8F465E] [APT] [{A1FA0F1F-6994-4F0E-BC60-0C81FD63F50D}] (...) -- c:\users\Jennifer\appdata\local\lollipop\lolipop.bat [340] =>Adware.Lollipop
[MD5.4E9592BB2C100E571F82640E59E9ECD5] [APT] [{A87A47B7-0F81-4222-B9D6-B46B4CEA333C}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe [1312720]
[MD5.4E9592BB2C100E571F82640E59E9ECD5] [APT] [{CDD653E6-D852-45A0-A784-A7AEA4719FB2}] (.Google Inc..) -- c:\program files\google\chrome\application\chrome.exe [1312720]
[MD5.00000000000000000000000000000000] [APT] [{E0700B87-2313-4F84-8E6F-E4E87FBF2C34}] (...) -- C:\Program Files\LG Electronics\LG USB Modem Drivers\UninstallShld.exe (.not file.) [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984]
[MD5.804507CF6368F3BDE71A2BB783305B2F] [APT] [Start On Jennifer Logon] (.Auslogics.) -- C:\Program Files\Auslogics\Auslogics Disk Defrag\DiskDefrag.exe [485080]
~ Scheduled Task: 22 Scanned in 00mn 06s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.6 r602.) -- C:\Windows\system32\Macromed\Flash\Flash32_11_6_602_180.ocx
~ Active Setup: 13 Scanned in 00mn 00s



---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 66 Scanned in 00mn 01s



---\\ Logiciels install�s (O42)
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {A25FF1C0-80B6-4B8B-A551-DC525697A408}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM] -- {9D1B275D-C436-E222-4220-B272F59ED78F}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM] -- {560730D4-1E6F-673B-3DC0-BFEAC57F6E92}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.4) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {CCE825DB-347A-4004-A186-5F4A6FDD8547}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {459699C3-9430-4381-964B-4248D87B49F9}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Camera Assistant Software for Toshiba - (.Chicony Electronics Co.,Ltd..) [HKLM] -- {37C866E4-AA67-4725-9E95-A39968DD7960}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM] -- {E19490CD-5380-4F37-B0A7-624D635605DC}
O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM] -- Microsoft Mouse and Keyboard Center
O42 - Logiciel: Conexant Audio Driver For AMD HDMI Codec - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA_HDMI
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: D�sinstaller l'imprimante EPSON Stylus SX400 Series - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Stylus SX400 Series
O42 - Logiciel: Free Video Converter V 3.1 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (...) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5051&SUBSYS_1179
O42 - Logiciel: HDMI Control Manager - (.TOSHIBA.) [HKLM] -- {F81AB80B-5BB7-4E36-8BA5-E07541CE1BFC}
O42 - Logiciel: Iminent - (.Iminent.) [HKLM] -- IMBoosterARP =>Adware.IMBooster
O42 - Logiciel: Iminent - (.Iminent.) [HKLM] -- {89B5DFCA-81E0-4EA4-8A0A-4F4087A1DD00} =>Adware.IMBooster
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM] -- ProInst
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Internet TV pour Windows Media Center - (.Microsoft Corporation.) [HKLM] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424}
O42 - Logiciel: Java 7 Update 17 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF}
O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM] -- {1111706F-666A-4037-7777-211328764D10}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Les Sims� 3 - (.Electronic Arts.) [HKLM] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: Les�Sims��3�Animaux & Cie - (.Electronic Arts.) [HKLM] -- {C12631C6-804D-4B32-B0DD-8A496462F106}
O42 - Logiciel: Lollipop - (...) [HKCU] -- lolipop =>Adware.Lollipop
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {3F27F929-2BA3-4C8E-9C64-A5572BF1E7C8}
O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM] -- Marvell Miniport Driver
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: Mozilla Firefox 11.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 11.0 (x86 fr)
O42 - Logiciel: O2Micro Flash Memory Card Reader Driver - (.O2Micro.) [HKLM] -- {5948FF95-813D-4AFC-B184-1DD11DBB0093}
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM] -- Origin
O42 - Logiciel: Package de pilotes Windows - Chicony (usbvideo) Image (05/12/2009 6.3.251. - (.Chicony.) [HKLM] -- 84BA15BD1DFEAA8A233F801B29BDC48DEE17B71F
O42 - Logiciel: PhotoFiltre 7 - (...) [HKCU] -- PhotoFiltre 7
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: TOSHIBA Hardware Setup - (.TOSHIBA.) [HKLM] -- InstallShield_{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM] -- InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Media Center Add-in for Silverlight - (.Microsoft Corporation.) [HKLM] -- {0EDBEB2B-7C8D-42E6-8312-0F84394A3223}
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {B0261E53-B6F1-474A-864B-E7C3CBF468E0}
O42 - Logiciel: xp-AntiSpy 3.98-1 - (.Christian Taubenheim.) [HKLM] -- xp-AntiSpy
~ Logic: 101 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\9538ddbb33dbe41]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Audacity]
[HKCU\Software\Auslogics]
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKCU\Software\CEC_CM_SW]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conexant]
[HKCU\Software\Datamngr] =>PUP.Datamngr
[HKCU\Software\EPSON]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Garmin]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\InstallCore] =>PUP.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Softonic]
[HKCU\Software\Toshiba]
[HKCU\Software\Trolltech]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\WsAudio_Device]
[HKCU\Software\cybelsoft]
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\xp-AntiSpy]
[HKLM\Software\9538ddbb33dbe41]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\Aimersoft]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Babylon] =>Toolbar.Babylon
[HKLM\Software\CBSTEST]
[HKLM\Software\CDDB]
[HKLM\Software\CXT]
[HKLM\Software\Chicony Electronics Co.,Ltd.]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conexant Systems Inc ]
[HKLM\Software\Conexant]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EPSON]
[HKLM\Software\Electronic Arts]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\IFXApps]
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Loader]
[HKLM\Software\Macromedia]
[HKLM\Software\Marvell]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Oracle]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\Sims]
[HKLM\Software\Skype]
[HKLM\Software\Software]
[HKLM\Software\Sonic]
[HKLM\Software\TOSHIBA]
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKLM\Software\Toshiba Tempro]
[HKLM\Software\Umbrella]
[HKLM\Software\VideoLAN]
[HKLM\Software\WOW6432Node]
[HKLM\Software\WinRAR]
[HKLM\Software\cybelsoft]
[HKLM\Software\dotNetInstaller]
[HKLM\Software\mozilla.org]
~ Key Software: 146 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 02/01/2012 - 14:54:42 - [113,097] ----D C:\Program Files\Adobe
O43 - CFD: 11/04/2013 - 00:20:30 - [0] ----D C:\Program Files\Aimersoft
O43 - CFD: 26/12/2011 - 03:06:13 - [1,863] ----D C:\Program Files\AMD APP
O43 - CFD: 07/06/2012 - 19:23:16 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 26/12/2011 - 01:47:43 - [20,142] ----D C:\Program Files\ATI
O43 - CFD: 26/12/2011 - 03:06:00 - [43,714] ----D C:\Program Files\ATI Technologies
O43 - CFD: 26/12/2011 - 03:13:57 - [8,991] ----D C:\Program Files\Auslogics
O43 - CFD: 26/12/2011 - 02:43:09 - [426,143] ----D C:\Program Files\AVAST Software
O43 - CFD: 07/06/2012 - 19:22:53 - [0,602] ----D C:\Program Files\Bonjour
O43 - CFD: 26/12/2011 - 01:24:51 - [67,118] ----D C:\Program Files\Camera Assistant Software for Toshiba
O43 - CFD: 26/12/2011 - 01:37:09 - [4,137] ----D C:\Program Files\CCleaner
O43 - CFD: 17/04/2013 - 00:59:41 - [462,548] ----D C:\Program Files\Common Files
O43 - CFD: 26/12/2011 - 02:16:01 - [18,650] ----D C:\Program Files\CONEXANT
O43 - CFD: 01/06/2012 - 22:06:42 - [1,049] ----D C:\Program Files\DIFX
O43 - CFD: 21/11/2010 - 02:39:54 - [79,371] ----D C:\Program Files\DVD Maker
O43 - CFD: 07/01/2012 - 19:55:53 - [-2028,227] ----D C:\Program Files\Electronic Arts
O43 - CFD: 26/12/2011 - 01:17:37 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 11/04/2013 - 00:21:37 - [10,901] ----D C:\Program Files\Free Video Converter
O43 - CFD: 12/04/2012 - 18:59:08 - [446,499] ----D C:\Program Files\Google
O43 - CFD: 17/04/2013 - 01:00:15 - [17,555] ----D C:\Program Files\Iminent =>Adware.IMBooster
O43 - CFD: 14/11/2012 - 21:09:15 - [1273,890] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 26/12/2011 - 03:16:55 - [35,199] ----D C:\Program Files\Intel
O43 - CFD: 11/04/2013 - 01:07:18 - [5,407] ----D C:\Program Files\Internet Explorer
O43 - CFD: 18/12/2012 - 16:15:30 - [1,770] ----D C:\Program Files\iPod
O43 - CFD: 18/12/2012 - 16:16:04 - [154,495] ----D C:\Program Files\iTunes
O43 - CFD: 23/01/2013 - 21:47:03 - [206,988] ----D C:\Program Files\Java
O43 - CFD: 14/11/2012 - 21:09:15 - [0] ----D C:\Program Files\LG Electronics
O43 - CFD: 26/12/2011 - 02:58:44 - [6,176] ----D C:\Program Files\ma-config.com
O43 - CFD: 26/12/2011 - 01:42:27 - [2,510] ----D C:\Program Files\Marvell
O43 - CFD: 26/12/2011 - 03:51:08 - [38,002] ----D C:\Program Files\Microsoft Analysis Services
O43 - CFD: 22/12/2012 - 00:36:45 - [75,063] ----D C:\Program Files\Microsoft Mouse and Keyboard Center
O43 - CFD: 26/12/2011 - 03:53:11 - [949,919] ----D C:\Program Files\Microsoft Office
O43 - CFD: 17/03/2013 - 22:22:37 - [40,835] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 26/12/2011 - 03:53:09 - [1,722] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 26/12/2011 - 03:53:09 - [0,757] ----D C:\Program Files\Microsoft Sync Framework
O43 - CFD: 26/12/2011 - 03:53:39 - [0,312] ----D C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 26/12/2011 - 03:52:06 - [1,314] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 07/01/2012 - 19:21:46 - [0,934] ----D C:\Program Files\Microsoft WSE
O43 - CFD: 26/12/2011 - 03:53:09 - [7,789] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 19/04/2012 - 19:57:25 - [8,904] ----D C:\Program Files\Movie Maker 2.6
O43 - CFD: 20/03/2012 - 09:22:58 - [37,267] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 26/12/2011 - 03:54:11 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 27/06/2012 - 18:25:50 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 11/04/2013 - 00:23:45 - [0] ----D C:\Program Files\Nosibay
O43 - CFD: 26/12/2011 - 01:52:38 - [2,317] ----D C:\Program Files\O2Micro Flash Memory Card Driver
O43 - CFD: 26/07/2012 - 23:13:34 - [33,207] ----D C:\Program Files\Oracle
O43 - CFD: 07/01/2012 - 19:56:07 - [107,148] ----D C:\Program Files\Origin
O43 - CFD: 07/01/2012 - 19:56:08 - [0] ----D C:\Program Files\Origin Games
O43 - CFD: 20/06/2012 - 17:52:01 - [7,801] ----D C:\Program Files\PhotoFiltre 7
O43 - CFD: 14/07/2009 - 06:52:30 - [37,357] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 28/07/2012 - 16:11:26 - [0] ----D C:\Program Files\Software
O43 - CFD: 26/12/2011 - 01:49:57 - [171,390] ----D C:\Program Files\TOSHIBA
O43 - CFD: 14/07/2009 - 06:53:23 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 26/07/2012 - 22:15:39 - [94,751] ----D C:\Program Files\VideoLAN
O43 - CFD: 21/11/2010 - 02:30:45 - [2,909] ----D C:\Program Files\Windows Defender
O43 - CFD: 09/05/2012 - 19:40:49 - [6,689] ----D C:\Program Files\Windows Journal
O43 - CFD: 24/05/2012 - 17:45:31 - [94,375] ----D C:\Program Files\Windows Live
O43 - CFD: 21/11/2010 - 02:30:45 - [5,895] ----D C:\Program Files\Windows Mail
O43 - CFD: 21/11/2010 - 02:30:45 - [6,298] ----D C:\Program Files\Windows Media Player
O43 - CFD: 26/12/2011 - 01:17:37 - [11,632] ----D C:\Program Files\Windows NT
O43 - CFD: 21/11/2010 - 02:30:45 - [4,213] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 20/11/2010 - 23:33:48 - [0,181] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 17/04/2013 - 01:05:27 - [0,085] ----D C:\Program Files\Windows Searchqu Toolbar =>PUP.Datamngr
O43 - CFD: 21/11/2010 - 02:30:45 - [6,558] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 06/10/2012 - 13:01:33 - [4,131] ----D C:\Program Files\WinRAR
O43 - CFD: 26/12/2011 - 02:54:50 - [0,664] ----D C:\Program Files\xp-AntiSpy
O43 - CFD: 17/04/2013 - 01:13:10 - [16,223] ----D C:\Program Files\ZHPDiag
O43 - CFD: 02/01/2012 - 14:54:55 - [3,722] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 11/04/2013 - 00:17:46 - [0,180] ----D C:\Program Files\Common Files\Aimersoft
O43 - CFD: 18/12/2012 - 16:15:28 - [160,509] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 26/12/2011 - 03:06:11 - [0,230] ----D C:\Program Files\Common Files\ATI Technologies
O43 - CFD: 26/12/2011 - 03:53:39 - [0,095] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 26/12/2011 - 01:25:44 - [3,137] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 26/12/2011 - 03:18:33 - [0,008] ----D C:\Program Files\Common Files\Intel Corporation
O43 - CFD: 07/09/2012 - 10:08:38 - [1,184] ----D C:\Program Files\Common Files\Java
O43 - CFD: 25/02/2012 - 22:21:19 - [241,027] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 04:37:05 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 14/11/2012 - 16:45:41 - [10,355] ----D C:\Program Files\Common Files\System
O43 - CFD: 26/12/2011 - 01:45:00 - [0,199] ----D C:\Program Files\Common Files\Toshiba Shared
O43 - CFD: 17/04/2013 - 00:59:41 - [2,666] ----D C:\Program Files\Common Files\Umbrella
O43 - CFD: 25/02/2012 - 22:20:30 - [0] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 18/12/2012 - 16:16:05 - [2,446] ----D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 02/01/2012 - 14:56:44 - [188,066] ----D C:\ProgramData\Adobe
O43 - CFD: 11/04/2013 - 00:18:03 - [0,007] ----D C:\ProgramData\Aimersoft Video Converter Ultimate
O43 - CFD: 07/06/2012 - 19:23:14 - [132,621] ----D C:\ProgramData\Apple
O43 - CFD: 07/06/2012 - 19:23:59 - [56,962] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 23/01/2013 - 21:47:17 - [0] ----D C:\ProgramData\Ask
O43 - CFD: 26/12/2011 - 03:06:16 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 26/12/2011 - 02:43:09 - [9,152] ----D C:\ProgramData\AVAST Software
O43 - CFD: 11/04/2013 - 00:21:50 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 11/04/2013 - 08:59:32 - [0,000] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 11/04/2013 - 00:22:25 - [10,950] ----D C:\ProgramData\BrowserProtect =>Toolbar.Babylon
O43 - CFD: 26/12/2011 - 01:17:37 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 02/03/2013 - 21:46:24 - [0] ----D C:\ProgramData\EA Core
O43 - CFD: 07/01/2012 - 19:56:08 - [0,002] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 29/08/2012 - 15:58:05 - [7,945] ----D C:\ProgramData\EPSON
O43 - CFD: 26/12/2011 - 01:17:37 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 11/04/2013 - 00:22:03 - [0,002] ----D C:\ProgramData\IBUpdaterService =>Adware.InstallBrain
O43 - CFD: 17/04/2013 - 00:59:56 - [0,030] ----D C:\ProgramData\Iminent =>Adware.IMBooster
O43 - CFD: 26/12/2011 - 01:51:28 - [0,001] ----D C:\ProgramData\Intel
O43 - CFD: 26/12/2011 - 02:14:25 - [0,005] ----D C:\ProgramData\IsolatedStorage
O43 - CFD: 27/06/2012 - 18:38:05 - [2,486] ----D C:\ProgramData\LGMOBILEAX
O43 - CFD: 26/12/2011 - 02:58:40 - [1,193] ----D C:\ProgramData\ma-config.com
O43 - CFD: 26/12/2011 - 01:17:37 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 09/02/2013 - 00:37:08 - [425,883] -S--D C:\ProgramData\Microsoft
O43 - CFD: 11/04/2013 - 00:50:25 - [0,341] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 26/12/2011 - 01:17:37 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 07/01/2012 - 19:56:15 - [0,472] ----D C:\ProgramData\Origin
O43 - CFD: 09/02/2013 - 01:09:38 - [19,758] ----D C:\ProgramData\Skype
O43 - CFD: 28/07/2012 - 16:11:26 - [0] ----D C:\ProgramData\Software
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 26/07/2012 - 23:14:24 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 12/01/2013 - 19:59:19 - [1,195] ----D C:\ProgramData\Tarma Installer =>Toolbar.Tarma
O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 26/12/2011 - 01:50:16 - [0] ----D C:\ProgramData\Toshiba
O43 - CFD: 26/12/2011 - 02:14:25 - [0,002] ----D C:\ProgramData\TOSHIBA Tempro
O43 - CFD: 11/04/2013 - 00:19:05 - [0] ----D C:\ProgramData\xml_param
O43 - CFD: 07/06/2012 - 19:24:43 - [0,002] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 02/01/2012 - 14:55:54 - [4,185] ----D C:\Users\Jennifer\AppData\Roaming\Adobe
O43 - CFD: 11/04/2013 - 00:18:04 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Aimersoft Video Converter Ultimate
O43 - CFD: 19/01/2013 - 12:28:31 - [25,463] ----D C:\Users\Jennifer\AppData\Roaming\Apple Computer
O43 - CFD: 26/12/2011 - 01:48:25 - [0] ----D C:\Users\Jennifer\AppData\Roaming\ATI
O43 - CFD: 03/04/2013 - 21:28:44 - [0,001] ----D C:\Users\Jennifer\AppData\Roaming\Audacity
O43 - CFD: 26/12/2011 - 03:12:40 - [12,808] ----D C:\Users\Jennifer\AppData\Roaming\Auslogics
O43 - CFD: 11/04/2013 - 00:21:50 - [0,009] ----D C:\Users\Jennifer\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 11/04/2013 - 00:22:02 - [0,308] ----D C:\Users\Jennifer\AppData\Roaming\File Scout
O43 - CFD: 17/04/2013 - 01:05:42 - [0,001] ----D C:\Users\Jennifer\AppData\Roaming\FreeVideoConverter
O43 - CFD: 01/06/2012 - 22:08:28 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Garmin
O43 - CFD: 26/12/2011 - 01:17:59 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Identities
O43 - CFD: 17/04/2013 - 01:00:04 - [0,016] ----D C:\Users\Jennifer\AppData\Roaming\Iminent =>Adware.IMBooster
O43 - CFD: 26/12/2011 - 01:24:35 - [0] ----D C:\Users\Jennifer\AppData\Roaming\InstallShield
O43 - CFD: 26/12/2011 - 01:22:30 - [0,001] ----D C:\Users\Jennifer\AppData\Roaming\Intel
O43 - CFD: 26/12/2011 - 03:18:11 - [0,001] ----D C:\Users\Jennifer\AppData\Roaming\Intel Corporation
O43 - CFD: 27/06/2012 - 18:23:51 - [0,123] ----D C:\Users\Jennifer\AppData\Roaming\LG Electronics
O43 - CFD: 26/12/2011 - 02:52:29 - [0,001] ----D C:\Users\Jennifer\AppData\Roaming\Macromedia
O43 - CFD: 21/11/2010 - 02:39:36 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Media Center Programs
O43 - CFD: 11/04/2013 - 00:22:55 - [17,585] -S--D C:\Users\Jennifer\AppData\Roaming\Microsoft
O43 - CFD: 26/12/2011 - 02:47:54 - [17,797] ----D C:\Users\Jennifer\AppData\Roaming\Mozilla
O43 - CFD: 17/04/2013 - 00:59:08 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Nosibay
O43 - CFD: 07/01/2012 - 19:56:15 - [0,001] ----D C:\Users\Jennifer\AppData\Roaming\Origin
O43 - CFD: 11/04/2013 - 00:26:59 - [0] ----D C:\Users\Jennifer\AppData\Roaming\PerformerSoft
O43 - CFD: 20/06/2012 - 17:55:29 - [0,003] ----D C:\Users\Jennifer\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 26/12/2011 - 01:41:08 - [0,576] ----D C:\Users\Jennifer\AppData\Roaming\Thunderbird
O43 - CFD: 26/12/2011 - 01:24:01 - [0,003] ----D C:\Users\Jennifer\AppData\Roaming\toshiba
O43 - CFD: 07/04/2013 - 17:59:54 - [0,079] ----D C:\Users\Jennifer\AppData\Roaming\vlc
O43 - CFD: 26/12/2011 - 01:20:19 - [0] ----D C:\Users\Jennifer\AppData\Roaming\WinBatch
O43 - CFD: 24/05/2012 - 22:53:51 - [0,000] ----D C:\Users\Jennifer\AppData\Roaming\Windows Live Writer
O43 - CFD: 06/10/2012 - 13:01:36 - [0,000] ----D C:\Users\Jennifer\AppData\Roaming\WinRAR
O43 - CFD: 11/04/2013 - 00:18:03 - [0] ----D C:\Users\Jennifer\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
O43 - CFD: 02/01/2012 - 14:55:54 - [15,039] ----D C:\Users\Jennifer\AppData\Local\Adobe
O43 - CFD: 11/04/2013 - 00:17:50 - [0,000] ----D C:\Users\Jennifer\AppData\Local\Aimersoft
O43 - CFD: 07/06/2012 - 19:23:19 - [25,561] ----D C:\Users\Jennifer\AppData\Local\Apple
O43 - CFD: 16/12/2012 - 13:29:28 - [53,420] ----D C:\Users\Jennifer\AppData\Local\Apple Computer
O43 - CFD: 26/12/2011 - 01:17:45 - [0] ----D C:\Users\Jennifer\AppData\Local\Application Data
O43 - CFD: 26/12/2011 - 01:48:25 - [0,066] ----D C:\Users\Jennifer\AppData\Local\ATI
O43 - CFD: 26/12/2011 - 01:53:29 - [22,949] ----D C:\Users\Jennifer\AppData\Local\Downloaded Installations
O43 - CFD: 12/04/2012 - 19:17:59 - [558,605] ----D C:\Users\Jennifer\AppData\Local\Google
O43 - CFD: 26/12/2011 - 01:17:45 - [0] ----D C:\Users\Jennifer\AppData\Local\Historique
O43 - CFD: 16/09/2012 - 17:20:31 - [0,005] ----D C:\Users\Jennifer\AppData\Local\libimobiledevice
O43 - CFD: 19/01/2013 - 12:30:07 - [0,353] ----D C:\Users\Jennifer\AppData\Local\Lollipop =>Adware.Lollipop
O43 - CFD: 12/01/2013 - 20:00:58 - [0] ----D C:\Users\Jennifer\AppData\Local\Macromedia
O43 - CFD: 09/02/2013 - 00:37:09 - [1381,959] ----D C:\Users\Jennifer\AppData\Local\Microsoft
O43 - CFD: 26/12/2011 - 03:36:34 - [0] ----D C:\Users\Jennifer\AppData\Local\Microsoft Help
O43 - CFD: 26/12/2011 - 02:47:54 - [36,471] ----D C:\Users\Jennifer\AppData\Local\Mozilla
O43 - CFD: 07/01/2012 - 19:56:13 - [0,000] ----D C:\Users\Jennifer\AppData\Local\Origin
O43 - CFD: 03/04/2013 - 21:16:26 - [0] ----D C:\Users\Jennifer\AppData\Local\Programs
O43 - CFD: 15/09/2012 - 15:18:02 - [0] ----D C:\Users\Jennifer\AppData\Local\SCE
O43 - CFD: 28/07/2012 - 16:11:22 - [0] ----D C:\Users\Jennifer\AppData\Local\Software
O43 - CFD: 17/04/2013 - 01:13:19 - [2,410] ----D C:\Users\Jennifer\AppData\Local\Temp
O43 - CFD: 26/12/2011 - 01:17:45 - [0] ----D C:\Users\Jennifer\AppData\Local\Temporary Internet Files
O43 - CFD: 26/12/2011 - 01:41:08 - [0,896] ----D C:\Users\Jennifer\AppData\Local\Thunderbird
O43 - CFD: 26/12/2011 - 02:22:05 - [0] ----D C:\Users\Jennifer\AppData\Local\Toshiba
O43 - CFD: 26/12/2011 - 01:17:48 - [0] ----D C:\Users\Jennifer\AppData\Local\VirtualStore
O43 - CFD: 18/08/2012 - 14:23:16 - [0,047] ----D C:\Users\Jennifer\AppData\Local\Windows Live
O43 - CFD: 25/02/2012 - 23:48:36 - [0,618] ----D C:\Users\Jennifer\AppData\Local\Windows Live Writer
O43 - CFD: 11/04/2013 - 00:29:02 - [0] ----D C:\Users\Jennifer\AppData\Local\WMTools Downloaded Files
O43 - CFD: 26/12/2011 - 03:51:13 - [0,015] R---D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 13/07/2012 - 10:12:34 - [0,000] R---D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 16/09/2012 - 14:00:52 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/07/2009 - 06:37:42 - [0,001] R---D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/06/2012 - 17:52:02 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 19/01/2013 - 12:30:07 - [0,000] R---D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/12/2011 - 01:24:01 - [0,013] ----D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TOSHIBA
O43 - CFD: 06/10/2012 - 13:01:33 - [0,003] ----D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 26/12/2011 - 02:54:50 - [0,004] ----D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\xp-AntiSpy
~ 430 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 620 Scanned in 00mn 22s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.F84AD0BFF9BC94195EA48E024A7C22F7] - 17/04/2013 - 00:09:53 ---A- . (...) -- C:\Windows\WindowsUpdate.log [39247]
O44 - LFC:[MD5.CA08E16BD62627766D879801F27F6472] - 17/04/2013 - 00:05:39 ---A- . (...) -- C:\Windows\win.ini [636]
O44 - LFC:[MD5.1ACE9862301F6807BCE33449D6D461A1] - 17/04/2013 - 00:01:27 --HA- . (...) -- C:\YukonInstall.log [236]
O44 - LFC:[MD5.4CA0EF0E3C5BABD9670E2CF18B29ADE0] - 17/04/2013 - 00:00:00 ---A- . (...) -- C:\Windows\System32\InstallUtil.InstallLog [661]
O44 - LFC:[MD5.87F1828CE26A06A5E164B234176897FA] - 16/04/2013 - 17:52:53 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.E4109194FF76F145D728A5C36A5C85A0] - 16/04/2013 - 17:52:53 ---A- . (...) -- C:\Windows\System32\perfc009.dat [106530]
O44 - LFC:[MD5.1622F1362ED1CD3CB446CE2772E32236] - 16/04/2013 - 17:52:53 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [130896]
O44 - LFC:[MD5.3F6975CC93084A19846FBEA6A2A662FC] - 16/04/2013 - 17:52:53 ---A- . (...) -- C:\Windows\System32\perfh009.dat [616150]
O44 - LFC:[MD5.30B3E349C8DAAB846CE1528699488757] - 16/04/2013 - 17:52:53 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [704622]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 16/04/2013 - 17:47:16 ---A- . (...) -- C:\Windows\setupact.log [56]
O44 - LFC:[MD5.61ACCF01A81A7AA775CBF931140A3BA8] - 16/04/2013 - 17:47:14 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/04/2013 - 16:47:50 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.9D2B250B7BECAB361CCDC7D9A36BB0AB] - 15/04/2013 - 16:18:43 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [413552]
O44 - LFC:[MD5.3275F17533CB1599841AAABA3C8D3E8E] - 10/04/2013 - 23:48:28 ---A- . (.Microsoft Corporation - Microsoft� MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2706432]
O44 - LFC:[MD5.6EF6B6EACCA13DD6131624E0DD5C14A3] - 10/04/2013 - 23:48:26 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [690688]
O44 - LFC:[MD5.9B59687619B27CDA24638CDC3AF079FB] - 10/04/2013 - 23:48:25 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [2877440]
O44 - LFC:[MD5.BFDD0C5F3E435596F197F003609989C4] - 10/04/2013 - 23:48:24 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [61440]
O44 - LFC:[MD5.87B775A458A73BB7381E5B67B5652496] - 10/04/2013 - 23:48:24 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [39424]
O44 - LFC:[MD5.90F785F7594E3AF23D4392677042BE9A] - 10/04/2013 - 23:48:23 ---A- . (.Microsoft Corporation - Moteur de l�interface utilisateur d�Interne.) -- C:\Windows\System32\ieui.dll [391168]
O44 - LFC:[MD5.B5D742C535D37A7DA0649E03B32CAD80] - 10/04/2013 - 23:48:22 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [493056]
O44 - LFC:[MD5.1B6A7D965462BE6220727721A4CDB247] - 10/04/2013 - 23:48:22 ---A- . (.Microsoft Corporation - Registers custom PKEYs for IE.) -- C:\Windows\System32\RegisterIEPKEYs.exe [71680]
O44 - LFC:[MD5.3FA7F736B877B46EDF1EE6BE6051848D] - 10/04/2013 - 23:48:22 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [33280]
O44 - LFC:[MD5.F532B056147F251D480F7E5FF0758947] - 10/04/2013 - 23:48:22 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [42496]
O44 - LFC:[MD5.69CB1A65B835EE6ADF9E16ED6D443072] - 10/04/2013 - 23:48:21 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1129984]
O44 - LFC:[MD5.A7CFDA703AF9AD409DAA521487E0CB53] - 10/04/2013 - 23:48:21 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [109056]
O44 - LFC:[MD5.B5DEC0D4CBBC333CA99FE10B06D4747E] - 10/04/2013 - 23:48:19 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2046464]
O44 - LFC:[MD5.CFE0CEE587F9CEA4C29DEEC6D85FC91C] - 10/04/2013 - 23:48:16 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1766912]
O44 - LFC:[MD5.0B6118058942961D504AAEA04FECB116] - 10/04/2013 - 23:48:13 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [13761024]
O44 - LFC:[MD5.D017BF8D92938EEB9B3A1D1C53FDA152] - 10/04/2013 - 23:48:10 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [14323200]
O44 - LFC:[MD5.6E4916DC5BA0697C28915DA5261FF250] - 10/04/2013 - 23:38:56 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [70490256]
O44 - LFC:[MD5.E306A24D9694C724FA2491278BF50FDB] - 10/04/2013 - 23:36:43 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [196328]
O44 - LFC:[MD5.6FCC2090F055F5C96236DCD057DD705D] - 10/04/2013 - 23:36:33 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2347008]
O44 - LFC:[MD5.2DFAB8C3C394E95D262E1325BDA5DFE4] - 10/04/2013 - 23:36:30 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [3913560]
O44 - LFC:[MD5.DE91DCC7BC55E940979097E98F743205] - 10/04/2013 - 23:36:29 ---A- . (.Microsoft Corporation - Gestionnaire de sessions Windows.) -- C:\Windows\System32\smss.exe [69632]
O44 - LFC:[MD5.88355CFE81D381F93C74716DAA803587] - 10/04/2013 - 23:36:29 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntkrnlpa.exe [3968856]
O44 - LFC:[MD5.23AB7E36551C6BA5370EF7F05142F0EB] - 10/04/2013 - 23:36:29 ---A- . (.Microsoft Corporation - Processus d'ex�cution client-serveur.) -- C:\Windows\System32\csrsrv.dll [38912]
O44 - LFC:[MD5.9CDAEBE5160B9AF02AE17C62BDB6C4B5] - 10/04/2013 - 23:36:20 ---A- . (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1212264]
O44 - LFC:[MD5.5A72817181F065C82B252E5663B73F40] - 10/04/2013 - 23:22:09 ---A- . (.PerformerSoft LLC - PC Performer.) -- C:\Windows\System32\roboot.exe [18096]
O44 - LFC:[MD5.350C713C2D9B9F5549C50A8D3924E789] - 02/04/2013 - 18:31:25 ---A- . (.Oracle Corporation - Pas de description.) -- C:\Windows\System32\WindowsAccessBridge.dll [94112]
O44 - LFC:[MD5.477D36327B9687846BEDCA9D3CC52AC5] - 02/04/2013 - 18:31:23 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\deployJava1.dll [782240]
O44 - LFC:[MD5.04F4D7D7B97C616C33DC3EFFD48875E0] - 02/04/2013 - 18:31:23 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe [174496]
O44 - LFC:[MD5.0B56B878192DBA95D66A3162D38911F2] - 02/04/2013 - 18:31:23 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe [174496]
O44 - LFC:[MD5.A7F317118AFDE7A29D2EF7A722AC13B2] - 02/04/2013 - 18:31:23 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe [262560]
O44 - LFC:[MD5.D4BD9F86123C87ECA570418B69326F99] - 02/04/2013 - 18:31:23 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\System32\npDeployJava1.dll [861088]
~ Files: 44 Scanned in 00mn 13s



---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.F47F376EC6DFEE7DE72618AF189E9796] - 10/04/2013 - 22:21:03 ---A- - C:\Windows\Prefetch\MOVIEMK.EXE-0D41F104.pf
O45 - LFCP:[MD5.C3DA19BEC4823C2B5285B8F23FA9B95C] - 10/04/2013 - 23:03:51 ---A- - C:\Windows\Prefetch\SOFTWAREUPDATE.EXE-631B74E4.pf
O45 - LFCP:[MD5.346DBE62C250348125E75079411F865A] - 10/04/2013 - 23:19:15 ---A- - C:\Windows\Prefetch\MMPDEC.EXE-DFDC99C6.pf
O45 - LFCP:[MD5.47839F0F642B0960D0E75802A9E73038] - 10/04/2013 - 23:26:58 ---A- - C:\Windows\Prefetch\TASKKILL.EXE-8F5B2253.pf
O45 - LFCP:[MD5.C84816647CC86BCD0C2C3D58BEEB8708] - 11/04/2013 - 00:00:51 ---A- - C:\Windows\Prefetch\ITUNES.EXE-2A42B776.pf
O45 - LFCP:[MD5.BE4039C2EF0E3786D91D73453F031958] - 11/04/2013 - 00:01:03 ---A- - C:\Windows\Prefetch\APPLEMOBILEDEVICEHELPER.EXE-96A367D7.pf
O45 - LFCP:[MD5.AC347AE060F9B3094CF2C6DE955891BF] - 11/04/2013 - 00:01:06 ---A- - C:\Windows\Prefetch\ATH.EXE-6D90735E.pf
O45 - LFCP:[MD5.14506B1EB94E410C54529FC609ED4F89] - 11/04/2013 - 00:01:55 ---A- - C:\Windows\Prefetch\MDCRASHREPORTTOOL.EXE-711A29B9.pf
O45 - LFCP:[MD5.980611A74EC6A0132A340825DA320947] - 11/04/2013 - 08:00:20 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.331136E8A8496F3DBD64663402979789] - 11/04/2013 - 11:56:35 ---A- - C:\Windows\Prefetch\SMOOTHVIEW.EXE-0A8316E6.pf
O45 - LFCP:[MD5.27616BCD412F9F4382C3D8956B7489DE] - 11/04/2013 - 11:56:43 ---A- - C:\Windows\Prefetch\APSDAEMON.EXE-6E0EB72B.pf
O45 - LFCP:[MD5.C41617000A7138FAE50BB635D20F0416] - 11/04/2013 - 12:00:29 ---A- - C:\Windows\Prefetch\WSQMCONS.EXE-118B52B7.pf
O45 - LFCP:[MD5.F5DD9786F294CA0BE36E46EECE7D1EE9] - 12/04/2013 - 16:52:31 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-7ED62AA2.pf
O45 - LFCP:[MD5.0CBED250F7DD435C4DA7D22560363310] - 13/04/2013 - 02:18:21 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.147.1392.0.EXE-94B8A4FC.pf
O45 - LFCP:[MD5.4B80C39B259344E4BBC4D50B5C4B4EC9] - 13/04/2013 - 02:18:23 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-05B9B9D5.pf
O45 - LFCP:[MD5.4610FDCAC7B92D6CA5392211E06EABFC] - 13/04/2013 - 12:34:20 ---A- - C:\Windows\Prefetch\PICASAPHOTOVIEWER.EXE-AB016A48.pf
O45 - LFCP:[MD5.B6AD7D11E1BF019E969FBA9C5CCC2324] - 13/04/2013 - 12:34:30 ---A- - C:\Windows\Prefetch\PICASAUPDATER.EXE-B960F285.pf
O45 - LFCP:[MD5.4331912E5DE73AF86AB503A7A19E51B2] - 13/04/2013 - 12:35:01 ---A- - C:\Windows\Prefetch\PICASAUPDATER_6B7C.EXE-8462AAAF.pf
O45 - LFCP:[MD5.D6D34FD45F9719D439AA5B697A4AD4E7] - 13/04/2013 - 12:35:04 ---A- - C:\Windows\Prefetch\SETUP.EXE-9FB9602D.pf
O45 - LFCP:[MD5.7171C570DE45DC113A65EABFA3B5DC22] - 13/04/2013 - 12:35:05 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-09540BCD.pf
O45 - LFCP:[MD5.CC723699991BA13CAF8B3EBCC51894D9] - 13/04/2013 - 12:35:07 ---A- - C:\Windows\Prefetch\PICASAUPDATER_241.EXE-52AEB7A2.pf
O45 - LFCP:[MD5.6D63D1E2E74419B80971F13F97676F2E] - 13/04/2013 - 12:35:16 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-4D89262E.pf
O45 - LFCP:[MD5.DFAD218F42568697DC51789C8D0B72B0] - 13/04/2013 - 12:35:20 ---A- - C:\Windows\Prefetch\GPHOTOS.SCR-12C16302.pf
O45 - LFCP:[MD5.0DCBE1522EDAAADB2F3D19151ACB7BD2] - 13/04/2013 - 12:35:21 ---A- - C:\Windows\Prefetch\PICASA3.EXE-AE331ECB.pf
O45 - LFCP:[MD5.17D724C870F5393305FE3EB53C295183] - 13/04/2013 - 12:50:46 ---A- - C:\Windows\Prefetch\EXCEL.EXE-53A22446.pf
O45 - LFCP:[MD5.33ECD610F6AF463235B1DF9608E7F6FD] - 13/04/2013 - 20:48:31 ---A- - C:\Windows\Prefetch\SNIPPINGTOOL.EXE-EFFDAFDE.pf
O45 - LFCP:[MD5.A436E083F20C616FBE584923FB217DD3] - 13/04/2013 - 20:48:32 ---A- - C:\Windows\Prefetch\WISPTIS.EXE-595A3677.pf
O45 - LFCP:[MD5.D96A01F862AFA334EBFA8036F0CDA6E3] - 13/04/2013 - 23:23:39 ---A- - C:\Windows\Prefetch\MSFEEDSSYNC.EXE-6E6FBDF4.pf
O45 - LFCP:[MD5.F28201DA394A044D806D1CA2BDDFF71C] - 14/04/2013 - 14:33:20 ---A- - C:\Windows\Prefetch\SDIAGNHOST.EXE-8D72177C.pf
O45 - LFCP:[MD5.692E90067F360F78235EC92C23703123] - 14/04/2013 - 14:33:31 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf
O45 - LFCP:[MD5.D3968EF325E2A99D1E905982C79B1973] - 14/04/2013 - 23:23:15 ---A- - C:\Windows\Prefetch\E_FAMTEGE.EXE-DB72EDC6.pf
O45 - LFCP:[MD5.BFDCC42081AA87EBCB1AB146BC3A5630] - 14/04/2013 - 23:25:00 ---A- - C:\Windows\Prefetch\E_FARNEGE.EXE-08A46BB1.pf
O45 - LFCP:[MD5.2F7114BD618D9A947BD68478D8AFC95D] - 14/04/2013 - 23:25:16 ---A- - C:\Windows\Prefetch\EREGISTR.EXE-87B3F8C6.pf
O45 - LFCP:[MD5.8101AF59111D461A28B9FA154FD3279F] - 14/04/2013 - 23:27:39 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf
O45 - LFCP:[MD5.E9B89BBFD267EDDEA63B641D264C8BBC] - 14/04/2013 - 23:37:36 ---A- - C:\Windows\Prefetch\SIDEBAR.EXE-FA75EA61.pf
O45 - LFCP:[MD5.10666B124943D80BA8AEADF5DEFB0630] - 14/04/2013 - 23:39:21 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf
O45 - LFCP:[MD5.84A0E6E29F8FC323897C3FD78DD32F1E] - 15/04/2013 - 00:20:42 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf
O45 - LFCP:[MD5.BE601A6807E4D53D628E694347806850] - 15/04/2013 - 11:10:50 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-BAD6BD53.pf
O45 - LFCP:[MD5.E99AB130E3BC83914C22AFA38A885F81] - 15/04/2013 - 11:14:40 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.198C4A54D893851B3B9E6260EBEE6AA2] - 15/04/2013 - 11:15:40 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.4264403742F172640753EF6B62900B9B] - 15/04/2013 - 11:49:04 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:[MD5.A033EECDE15340D0DC3C9F86DDA64FFF] - 15/04/2013 - 11:49:09 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1583092741-3410698056-3706623094-1000.db
O45 - LFCP:[MD5.8CAE71AE01E870E521FFA87FFC976F72] - 15/04/2013 - 11:49:09 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1583092741-3410698056-3706623094-1000.db
O45 - LFCP:[MD5.07E17C29D7D259DCE43CA5E9413D7E64] - 15/04/2013 - 12:40:49 ---A- - C:\Windows\Prefetch\APPLEMOBILEDEVICESERVICE.EXE-CCCE4FAC.pf
O45 - LFCP:[MD5.01E26C8C4D2FDECE4D570D6AD58BCA85] - 15/04/2013 - 12:40:49 ---A- - C:\Windows\Prefetch\ARMSVC.EXE-E21746FC.pf
O45 - LFCP:[MD5.9BC83D772C9AEE81B6D4B08070BCD940] - 15/04/2013 - 12:40:49 ---A- - C:\Windows\Prefetch\AUTOKMS.EXE-7CC2D49E.pf
O45 - LFCP:[MD5.126F6EB78EB25EA20B8EAE41597CAE0D] - 15/04/2013 - 12:40:49 ---A- - C:\Windows\Prefetch\MDNSRESPONDER.EXE-321C1F3D.pf
O45 - LFCP:[MD5.8B735081C4F761FA03FDFADACA339EB1] - 15/04/2013 - 12:40:49 ---A- - C:\Windows\Prefetch\SPOOLSV.EXE-D1F6B8B6.pf
O45 - LFCP:[MD5.2CB82188532BF5C83BF84C7B17E09D37] - 15/04/2013 - 12:40:49 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-FEDB32D0.pf
O45 - LFCP:[MD5.83FFBA64BEB03941629811FF8233785E] - 15/04/2013 - 13:15:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf
O45 - LFCP:[MD5.7FEC88023BF454E2571CD90600D82CBF] - 15/04/2013 - 14:05:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.0E34CB956AB6DD8C557C5DA74F5E90D3] - 15/04/2013 - 16:18:11 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-B8EBA6E4.pf
O45 - LFCP:[MD5.A703B917203B88725F36D48683D04FDE] - 15/04/2013 - 16:18:11 ---A- - C:\Windows\Prefetch\HSON.EXE-D958FD41.pf
O45 - LFCP:[MD5.6E4D53564FC3131534DF48F303DC9611] - 15/04/2013 - 16:18:11 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.79BC152C54679769D77ED0C1CD61C203] - 15/04/2013 - 16:18:11 ---A- - C:\Windows\Prefetch\OSPPSVC.EXE-E53D3CC0.pf
O45 - LFCP:[MD5.F69CFA34D7E2C5706553E2C678D4005E] - 15/04/2013 - 16:18:11 ---A- - C:\Windows\Prefetch\QTTASK.EXE-A6BC4AB2.pf
O45 - LFCP:[MD5.3DD371226B0918886AA445D65EC724EC] - 15/04/2013 - 16:18:11 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf
O45 - LFCP:[MD5.04EFC66663CEA70D36F92A982CA99F6D] - 15/04/2013 - 16:18:11 ---A- - C:\Windows\Prefetch\TPWRMAIN.EXE-AE6FE534.pf
O45 - LFCP:[MD5.BA8BE4B7431104D85D9ACBB4861A9D4F] - 15/04/2013 - 16:18:18 ---A- - C:\Windows\Prefetch\E_FATIEGE.EXE-863EE15A.pf
O45 - LFCP:[MD5.53B9281BCC721F95781A818BCEEE677E] - 15/04/2013 - 16:18:21 ---A- - C:\Windows\Prefetch\IPODSERVICE.EXE-37C43D64.pf
O45 - LFCP:[MD5.014D8F7BE00DB96A92F2875139D7CBDC] - 15/04/2013 - 16:18:22 ---A- - C:\Windows\Prefetch\APPLEPHOTOSTREAMS.EXE-D60AB1C4.pf
O45 - LFCP:[MD5.24C605A1AC2D24F2A1921B13E1574F34] - 15/04/2013 - 16:18:22 ---A- - C:\Windows\Prefetch\JUSCHED.EXE-D10FBD13.pf
O45 - LFCP:[MD5.1E89FB990F5B933F5143CBED75032F18] - 15/04/2013 - 16:18:26 ---A- - C:\Windows\Prefetch\CCLEANER.EXE-D4D76A60.pf
O45 - LFCP:[MD5.534412EFF61CAE8303C43C4706745205] - 15/04/2013 - 16:18:26 ---A- - C:\Windows\Prefetch\DATAMNGRUI.EXE-6906F0F6.pf =>PUP.Datamngr
O45 - LFCP:[MD5.4C525122E9F0BA3954A5CE8BF4F85CBB] - 15/04/2013 - 16:18:35 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BF41066B.pf
O45 - LFCP:[MD5.2FF6210EA2795FBEF33CCB2C22407623] - 15/04/2013 - 16:18:36 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BF429191.pf
O45 - LFCP:[MD5.89D7C8C5805387EAEBC64D76EC15AC37] - 15/04/2013 - 16:18:58 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf
O45 - LFCP:[MD5.85C915C39B036050D9C38A8A6EBAAD55] - 15/04/2013 - 16:19:11 ---A- - C:\Windows\Prefetch\POWERPNT.EXE-158B76A4.pf
O45 - LFCP:[MD5.B6C48AC35075491C1E57C95B0CE90756] - 15/04/2013 - 16:19:33 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-6EF4B603.pf
O45 - LFCP:[MD5.B181F19B01E069F843754B7F4CCF8050] - 15/04/2013 - 16:19:43 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf
O45 - LFCP:[MD5.A184B1F71BDFC5F917A31B7EF8C6AF15] - 15/04/2013 - 17:01:02 ---A- - C:\Windows\Prefetch\CLI.EXE-B3817BB7.pf
O45 - LFCP:[MD5.BD5CDEC9635D03CB5DA17E0409F25BF2] - 15/04/2013 - 17:01:09 ---A- - C:\Windows\Prefetch\BROWSERPROTECT.EXE-EAF067F3.pf =>Toolbar.Babylon
O45 - LFCP:[MD5.DDB86202C3EC51805AF1CD5BCA6C1162] - 15/04/2013 - 17:01:11 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.80816A08D8ACC17779ECBC802637AEFE] - 16/04/2013 - 17:48:37 ---A- - C:\Windows\Prefetch\LBUBBLE DOCK.EXE-06C661B5.pf
O45 - LFCP:[MD5.35FD61B0B380324C2C32BC676DF61E5A] - 16/04/2013 - 17:48:43 ---A- - C:\Windows\Prefetch\VBC.EXE-7A16F53F.pf
O45 - LFCP:[MD5.0C88F1550CB515D2DF3294FC36DE8550] - 16/04/2013 - 17:48:48 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf
O45 - LFCP:[MD5.1FCA30BD7B7D0DE61C3BBC258DEF83A9] - 16/04/2013 - 17:48:56 ---A- - C:\Windows\Prefetch\CCC.EXE-AE792174.pf
O45 - LFCP:[MD5.1334BF9BA7188A48179AB0A0278694CF] - 16/04/2013 - 17:49:17 ---A- - C:\Windows\Prefetch\MMLOADDRV.EXE-6F39FF7D.pf
O45 - LFCP:[MD5.1009AD5E07DCB1556F210D29F99B62E5] - 16/04/2013 - 17:50:02 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.33DB6B9298CEB7DC26E18D8A6FE5ABB6] - 16/04/2013 - 17:50:10 ---A- - C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf
O45 - LFCP:[MD5.7BA9AC56AACD41F14029EA44F0DC7917] - 16/04/2013 - 17:50:12 ---A- - C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf
O45 - LFCP:[MD5.9750004D7168E15B52F6C36ECB36924E] - 16/04/2013 - 17:50:14 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-67E8628C.pf
O45 - LFCP:[MD5.2D44CCD31AD99DFB437E010C40933B81] - 16/04/2013 - 17:50:16 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf
O45 - LFCP:[MD5.D6F6EF54388B8C573A7A8DC2991E317C] - 16/04/2013 - 17:50:29 ---A- - C:\Windows\Prefetch\PRESENTATIONFONTCACHE.EXE-74B3ADF6.pf
O45 - LFCP:[MD5.001E9753CC6C6842C8E996015458C97B] - 16/04/2013 - 17:52:04 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.9EC70997C5A87F8FC56198D29BAC55AC] - 16/04/2013 - 17:53:18 ---A- - C:\Windows\Prefetch\JAVA.EXE-633ED9BF.pf
O45 - LFCP:[MD5.1C91B5E0B16C58A3AC2F55EC7F9DE4A0] - 16/04/2013 - 18:00:30 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-02CC9EFF.pf
O45 - LFCP:[MD5.7C4AD65C8607DCC2F6AAF6A8DB58AB5F] - 16/04/2013 - 18:00:30 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.2F5B479A72F66A1A4071FA6F5A3BA4BE] - 16/04/2013 - 18:02:34 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-CF2B07FC.pf
O45 - LFCP:[MD5.6182341F782F6BB67BE338FD3B7FCA36] - 16/04/2013 - 18:33:56 ---A- - C:\Windows\Prefetch\BUBBLE DOCK.EXE-7F2F9DD9.pf
O45 - LFCP:[MD5.D07C7AEBEA7E98B697E7CA3F227CE8DC] - 16/04/2013 - 18:45:31 ---A- - C:\Windows\Prefetch\CALC.EXE-77FDF17F.pf
O45 - LFCP:[MD5.CE07D6DE55D982526C101EDDDF8B2943] - 16/04/2013 - 18:50:54 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-719325FF.pf
O45 - LFCP:[MD5.642A57F3922E99B526D2C0FB9CDC3A4C] - 16/04/2013 - 19:40:53 ---A- - C:\Windows\Prefetch\BUBBLE DOCK UPDATE.EXE-43944858.pf
O45 - LFCP:[MD5.4991DA33028C56089C92AA052966083C] - 16/04/2013 - 20:35:02 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.077B80B6B0724933FC5346121768A65C] - 16/04/2013 - 20:54:12 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.1CE0D5168A9DB4BEF76E7EF6A0A7ED99] - 16/04/2013 - 20:54:13 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.147.1685.0.EXE-C74E5ADD.pf
O45 - LFCP:[MD5.29EE16D5C6A2C2D006548B0177141523] - 16/04/2013 - 20:54:15 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-148C5C70.pf
O45 - LFCP:[MD5.562F819D6FD1185F5CD541228D885F48] - 16/04/2013 - 20:54:15 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
O45 - LFCP:[MD5.E80775545385E4E6718285251C3C454C] - 16/04/2013 - 20:54:44 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.5F8B9E43F43F2D8115B94FC7A82F7DAB] - 16/04/2013 - 21:06:33 ---A- - C:\Windows\Prefetch\WLMAIL.EXE-1507296E.pf
O45 - LFCP:[MD5.27852B306D8640CCE6D26A01CDDA0FAB] - 16/04/2013 - 21:06:46 ---A- - C:\Windows\Prefetch\WLCOMM.EXE-272FF9F7.pf
O45 - LFCP:[MD5.693D3355A199CA837BD3A4C004595FFF] - 16/04/2013 - 21:10:40 ---A- - C:\Windows\Prefetch\STIKYNOT.EXE-AD181651.pf
O45 - LFCP:[MD5.9342A5C258EC60DEFA2E29A5EE39EE05] - 16/04/2013 - 21:11:33 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf
O45 - LFCP:[MD5.9557911182DE65C48220225B57D54CAA] - 16/04/2013 - 21:15:11 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-91E1AAD6.pf
O45 - LFCP:[MD5.B92ECE17B88F279ECCEDF7F8935EAE6A] - 16/04/2013 - 21:53:52 ---A- - C:\Windows\Prefetch\AVAST.SETUP-B1D66586.pf
O45 - LFCP:[MD5.01550B230DFE621802B6633E05F43927] - 16/04/2013 - 21:54:02 ---A- - C:\Windows\Prefetch\SC.EXE-945D79AE.pf
O45 - LFCP:[MD5.4B47167961C33D984741F0B56561CB98] - 16/04/2013 - 23:29:14 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.7C9AFBCB1C52236D87DEC125149A340C] - 16/04/2013 - 23:29:15 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.2FC6EF3F98324113BA5ABD52D320D391] - 16/04/2013 - 23:29:15 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.2C9A12AEB9938A6ECA2DC3BAC58DA08F] - 16/04/2013 - 23:29:15 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.77CC05DAD0ABD781180E4972DBD6A12E] - 16/04/2013 - 23:56:58 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
O45 - LFCP:[MD5.583E53602218AD7277990A47976EEADD] - 16/04/2013 - 23:56:59 ---A- - C:\Windows\Prefetch\WINWORD.EXE-778F7C2B.pf
O45 - LFCP:[MD5.3C3297EEB69BB84CE47DC25A8634C8C1] - 16/04/2013 - 23:57:30 ---A- - C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-17410B90.pf
O45 - LFCP:[MD5.E84FFCC8A23E406BC1D9DC627CE5CEC7] - 16/04/2013 - 23:57:51 ---A- - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf
O45 - LFCP:[MD5.F13F2149EF5F218B547A799B91BC10B5] - 16/04/2013 - 23:58:34 ---A- - C:\Windows\Prefetch\UNINSTALL.EXE-CECB9FED.pf
O45 - LFCP:[MD5.47AC549C8F682283A6BC6F741AF07A54] - 16/04/2013 - 23:58:37 ---A- - C:\Windows\Prefetch\A~NSISU_.EXE-0480205E.pf
O45 - LFCP:[MD5.9268F11C3EE8E80046AF84101DD3A002] - 16/04/2013 - 23:58:43 ---A- - C:\Windows\Prefetch\UNINSTALL BUBBLE DOCK.EXE-2280217B.pf
O45 - LFCP:[MD5.9E624A5C87DD375E781EC5FD901AE5BA] - 16/04/2013 - 23:59:23 ---A- - C:\Windows\Prefetch\IMINENTSETUP.EXE-52649BAA.pf =>Adware.IMBooster
O45 - LFCP:[MD5.D3C69A17DAA6D25DA8F98E06512C84CE] - 17/04/2013 - 00:01:51 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:[MD5.397599086A8D37177861B38F672244D7] - 17/04/2013 - 00:02:05 ---A- - C:\Windows\Prefetch\DRVINST.EXE-4CB4314A.pf
O45 - LFCP:[MD5.A6A548C303D52A01D97FB1584E7275D8] - 17/04/2013 - 00:03:25 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:[MD5.81FBDB529FAC853D9B3AF212B7735613] - 17/04/2013 - 00:05:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-ECAD9571.pf
O45 - LFCP:[MD5.44FD6552423AC3951A4AFD43D5BAB079] - 17/04/2013 - 00:05:26 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf
O45 - LFCP:[MD5.4FB62C4DCEC45ED78EA7F9842E7926C7] - 17/04/2013 - 00:06:13 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf
O45 - LFCP:[MD5.679D2250D9A9905A3EBA8E5D4C0EDEC4] - 17/04/2013 - 00:06:32 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:[MD5.682B811A3A4743B44455D0345FB47129] - 17/04/2013 - 00:07:05 ---A- - C:\Windows\Prefetch\AU_.EXE-E8062BC2.pf
O45 - LFCP:[MD5.6E93ACDF1437F333609E06E3501B0C2C] - 17/04/2013 - 00:07:10 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-7FAA2E4C.pf
O45 - LFCP:[MD5.40C1E44348D479D89054C85C98B62025] - 17/04/2013 - 00:07:46 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf
O45 - LFCP:[MD5.6A5BB089E31DD30A18760628BFA5A177] - 17/04/2013 - 00:08:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-FE771DDA.pf
O45 - LFCP:[MD5.501C6B395B0B40375ADAE5DFE4F6A573] - 17/04/2013 - 00:09:06 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.29047806855F98E987CA31804184C376] - 17/04/2013 - 00:09:06 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf
O45 - LFCP:[MD5.1124D01CC78BB6F7BBA965978512FE02] - 17/04/2013 - 00:10:01 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
O45 - LFCP:[MD5.962398C333E27F1FD485916C31CE4AFE] - 17/04/2013 - 00:10:57 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.6355BFA0358DF4DB9A67D300FF1AF536] - 17/04/2013 - 00:11:39 ---A- - C:\Windows\Prefetch\CHROME.EXE-5A1054AF.pf
O45 - LFCP:[MD5.7EE688163A5546D3C689C2E7D1928DDE] - 17/04/2013 - 00:12:10 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A8DE6D5B.pf
O45 - LFCP:[MD5.7358C3F79C3F9C00A704256B50300518] - 17/04/2013 - 00:12:48 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
O45 - LFCP:[MD5.418F7D3C2AB0D5AC7129B29DE5C2C0D0] - 17/04/2013 - 00:12:51 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.119D417F35BC13EEA2EA9A49DCE99D93] - 17/04/2013 - 00:12:51 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.585FD5B53FED05C700D02BEA2318795A] - 17/04/2013 - 00:13:00 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.486B0857C2283C324DD2BA1A0C9696E6] - 17/04/2013 - 00:13:24 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf
~ Prefetcher: 140 Scanned in 00mn 03s



---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{38400b8f-2f50-11e1-86b3-806e6f6e6963}\AutoRun\command. (.Electronic Arts - Autorun Application.) -- D:\Autorun.exe
O51 - MPSK:{a60cb6e4-3202-11e1-b7bf-0022fa3a71de}\AutoRun\command. (...) -- F:\LaunchU3.exe (.not file.)
O51 - MPSK:{caf1eb75-b7aa-11e1-9df2-8295b077ccb7}\AutoRun\command. (...) -- E:\USBAutoRun.exe (.not file.)
~ Keys: Scanned in 00mn 04s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak�.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.VP60"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \Drivers32\"vidc.VP61"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"vp6vfw.dll"="EA VP6 Codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll
~ TDSD: 6 Scanned in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\00TCrdMain [Key] . (.TOSHIBA Corporation - TOSHIBA Flash Cards.) -- C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
O53 - SMSR:HKLM\...\startupreg\Camera Assistant Software [Key] . (.Chicony - traybar.) -- C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
O53 - SMSR:HKLM\...\startupreg\IAStorIcon [Key] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
~ SMSR Keys: 3 Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoInternetOpenWith"=1
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoRecentDocsNetHood"=1
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 14/04/2013 - 12:07:10 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal [3608]
O61 - LFC: 14/04/2013 - 22:26:09 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal [3608]
O61 - LFC: 14/04/2013 - 22:42:55 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Bookmarks [31985]
O61 - LFC: 14/04/2013 - 22:42:55 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak [31985]
O61 - LFC: 14/04/2013 - 23:15:29 ---A- C:\Users\Jennifer\Documents\Master MEF\EPS\Oral EPS.pptx [3731539]
O61 - LFC: 14/04/2013 - 23:22:38 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVRE4A1.tmp.cvr [0]
O61 - LFC: 14/04/2013 - 23:36:09 -SHA- C:\Users\Jennifer\Pictures\2013-02\Thumbs.db [1121280]
O61 - LFC: 14/04/2013 - 23:36:14 -SHA- C:\Users\Jennifer\Pictures\Picasa\Montages\Thumbs.db [49664]
O61 - LFC: 15/04/2013 - 00:03:08 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\PowerPoint\PPT14.pcb [92]
O61 - LFC: 15/04/2013 - 11:49:05 ---A- C:\Users\Jennifer\AppData\Roaming\Auslogics\Disk Defrag\Logs\defraglog201341374714227.html [6789]
O61 - LFC: 15/04/2013 - 11:49:05 ---A- C:\Users\Jennifer\AppData\Roaming\Auslogics\Disk Defrag\Logs\defraglog201341374714227.xml [1392]
O61 - LFC: 15/04/2013 - 12:41:36 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Profile 1\History [86016]
O61 - LFC: 15/04/2013 - 12:41:37 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data [81920]
O61 - LFC: 15/04/2013 - 13:16:20 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Archived History [57344]
O61 - LFC: 15/04/2013 - 13:16:20 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal [512]
O61 - LFC: 15/04/2013 - 13:18:04 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Login Data [12288]
O61 - LFC: 15/04/2013 - 13:18:04 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal [512]
O61 - LFC: 15/04/2013 - 14:03:45 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sudouest.fr_0.localstorage [3072]
O61 - LFC: 15/04/2013 - 14:03:45 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sudouest.fr_0.localstorage-journal [3608]
O61 - LFC: 15/04/2013 - 14:06:00 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Top Sites [20480]
O61 - LFC: 15/04/2013 - 14:06:00 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [12824]
O61 - LFC: 15/04/2013 - 14:24:46 ---A- C:\Users\Jennifer\Documents\Master MEF\EPS\oral.docx [453303]
O61 - LFC: 15/04/2013 - 14:24:48 --HA- C:\Users\Jennifer\AppData\Local\IconCache.db [2549456]
O61 - LFC: 15/04/2013 - 16:19:16 ---A- C:\Users\Jennifer\AppData\Local\GDIPFONTCACHEV1.DAT [110872]
O61 - LFC: 16/04/2013 - 17:48:29 ---A- C:\Users\Jennifer\AppData\Roaming\Apple Computer\MediaStream\local.db [55296]
O61 - LFC: 16/04/2013 - 17:48:53 ---A- C:\Users\Jennifer\AppData\Local\ATI\ACE\Manifest.Bin [30466]
O61 - LFC: 16/04/2013 - 17:48:53 ---A- C:\Users\Jennifer\AppData\Local\ATI\ACE\Manifest.xml [22245]
O61 - LFC: 16/04/2013 - 17:49:43 ---A- C:\Users\Jennifer\AppData\Local\ATI\ACE\Profiles.xml [16416]
O61 - LFC: 16/04/2013 - 17:50:01 ---A- C:\Users\Jennifer\AppData\Local\Windows Live Writer\ResourceCache\live\Writer_Config.cab [26214]
O61 - LFC: 16/04/2013 - 18:23:17 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.cotemaison.fr_0.localstorage [3072]
O61 - LFC: 16/04/2013 - 18:23:17 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.cotemaison.fr_0.localstorage-journal [3608]
O61 - LFC: 16/04/2013 - 18:24:55 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.123rf.com_0.localstorage [3072]
O61 - LFC: 16/04/2013 - 18:24:55 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.123rf.com_0.localstorage-journal [3608]
O61 - LFC: 16/04/2013 - 19:49:22 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVR1EA9.tmp.cvr [0]
O61 - LFC: 16/04/2013 - 20:07:06 ---A- C:\Users\Jennifer\AppData\Roaming\Adobe\Acrobat\10.0\TMDocs.sav [36]
O61 - LFC: 16/04/2013 - 20:07:06 ---A- C:\Users\Jennifer\AppData\Roaming\Adobe\Acrobat\10.0\TMGrpPrm.sav [54]
O61 - LFC: 16/04/2013 - 20:35:49 ---A- C:\Users\Jennifer\AppData\Roaming\Auslogics\Disk Defrag\Logs\defraglog2013416213549525.html [6311]
O61 - LFC: 16/04/2013 - 20:35:49 ---A- C:\Users\Jennifer\AppData\Roaming\Auslogics\Disk Defrag\Logs\defraglog2013416213549525.xml [881]
O61 - LFC: 16/04/2013 - 20:53:29 ---A- C:\Users\Jennifer\AppData\Local\Temp\Bubble Dock.txt [1072]
O61 - LFC: 16/04/2013 - 20:53:29 ---A- C:\Users\Jennifer\AppData\Local\Temp\LBubble Dock.txt [6701]
O61 - LFC: 16/04/2013 - 21:06:31 ---A- C:\Users\Jennifer\AppData\Local\Windows Live\uxcore_wlmail_00.etl [8192]
O61 - LFC: 16/04/2013 - 21:08:26 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVR850A.tmp.cvr [0]
O61 - LFC: 16/04/2013 - 21:08:42 ---A- C:\Users\Jennifer\Documents\Master MEF\Caillier\Dossier Situation probleme.pdf [1071615]
O61 - LFC: 16/04/2013 - 21:08:49 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Office\Recent\Dossier Situation probleme.docx (2).LNK [1385]
O61 - LFC: 16/04/2013 - 21:08:49 ---A- C:\Users\Jennifer\Documents\Master MEF\Caillier\Dossier Situation probleme.docx [2596364]
O61 - LFC: 16/04/2013 - 21:10:26 ---A- C:\Users\Jennifer\AppData\Local\Windows Live\uxcore_wlmail_01.etl [8192]
O61 - LFC: 16/04/2013 - 21:13:01 ---A- C:\Users\Jennifer\Documents\Classe CE2\Mati�res\Lecture r�daction\P�riode 3\SEQUENCE UNE HISTOIRE A QUATRE VOIX.docx [3980879]
O61 - LFC: 16/04/2013 - 21:13:01 ---A- C:\Users\Jennifer\Documents\Master MEF\Litt�rature\SEQUENCE UNE HISTOIRE A QUATRE VOIX.docx [3980879]
O61 - LFC: 16/04/2013 - 21:15:18 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVRCC95.tmp.cvr [0]
O61 - LFC: 16/04/2013 - 21:16:17 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVRB454.tmp.cvr [0]
O61 - LFC: 16/04/2013 - 21:18:05 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old [151]
O61 - LFC: 16/04/2013 - 21:29:50 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVR1C79.tmp.cvr [0]
O61 - LFC: 16/04/2013 - 21:29:51 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Office\Recent\doc histoire des arts.docx.LNK [1655]
O61 - LFC: 16/04/2013 - 21:31:11 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVR565D.tmp.cvr [0]
O61 - LFC: 16/04/2013 - 21:31:12 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Office\Recent\SEQUENCE UNE HISTOIRE A QUATRE VOIX.docx.LNK [1445]
O61 - LFC: 16/04/2013 - 21:41:04 ---A- C:\Users\Jennifer\AppData\Local\Temp\CVR657A.tmp.cvr [0]
O61 - LFC: 16/04/2013 - 22:22:25 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin [1012]
O61 - LFC: 16/04/2013 - 22:41:04 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [138934]
O61 - LFC: 16/04/2013 - 22:41:04 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S6DMDMGG\macromedia.com\support\flashplayer\sys\#web-lire.joueb.com\settings.sol [88]
O61 - LFC: 16/04/2013 - 22:41:04 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S6DMDMGG\macromedia.com\support\flashplayer\sys\settings.sol [430]
O61 - LFC: 16/04/2013 - 22:41:04 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S6DMDMGG\web-lire.joueb.com\files\OriginalMusicPlayer.swf\mediaplayer.sol [43]
O61 - LFC: 16/04/2013 - 22:41:04 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072]
O61 - LFC: 16/04/2013 - 23:25:40 ---A- C:\Users\Jennifer\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml [314]
O61 - LFC: 16/04/2013 - 23:25:40 ---A- C:\Users\Jennifer\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx [3095]
O61 - LFC: 16/04/2013 - 23:31:14 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Word\ListGal.dat [21280]
O61 - LFC: 16/04/2013 - 23:49:38 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Office\Recent\Dossier litt�rature.docx (2).LNK [1365]
O61 - LFC: 16/04/2013 - 23:49:38 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Office\Recent\Dossier litt�rature.docx.LNK [1365]
O61 - LFC: 16/04/2013 - 23:49:39 ---A- C:\Users\Jennifer\Documents\Master MEF\Litt�rature\Dossier litt�rature.docx [5227988]
O61 - LFC: 16/04/2013 - 23:56:55 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Office\Recent\Une_histoire_a_quatre_voix.doc.LNK [1116]
O61 - LFC: 16/04/2013 - 23:56:55 --H-- C:\Users\Jennifer\AppData\Roaming\Microsoft\Office\Recent\index.dat [578]
O61 - LFC: 17/04/2013 - 00:00:04 ---A- C:\Users\Jennifer\AppData\Roaming\Iminent\Mediator\Datas\user.dat [10240] =>Adware.IMBooster
O61 - LFC: 17/04/2013 - 00:00:05 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage [3072]
O61 - LFC: 17/04/2013 - 00:00:05 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage [3072]
O61 - LFC: 17/04/2013 - 00:00:13 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences [9215]
O61 - LFC: 17/04/2013 - 00:00:18 ---A- C:\Users\Jennifer\AppData\Local\Temp\bundle.txt [0]
O61 - LFC: 17/04/2013 - 00:00:18 ---A- C:\Users\Jennifer\AppData\Local\Temp\netlog.txt [7]
O61 - LFC: 17/04/2013 - 00:00:19 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT [16]
O61 - LFC: 17/04/2013 - 00:00:19 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000830 [282]
O61 - LFC: 17/04/2013 - 00:00:20 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG [148]
O61 - LFC: 17/04/2013 - 00:00:20 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [32768]
O61 - LFC: 17/04/2013 - 00:00:20 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal [16384]
O61 - LFC: 17/04/2013 - 00:00:24 ---A- C:\Users\Jennifer\AppData\Roaming\Iminent\Mediator\Datas\globalcache.dat [6144] =>Adware.IMBooster
O61 - LFC: 17/04/2013 - 00:00:34 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000097.sst [253]
O61 - LFC: 17/04/2013 - 00:00:36 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old [264]
O61 - LFC: 17/04/2013 - 00:00:36 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Last Session [217]
O61 - LFC: 17/04/2013 - 00:00:36 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [274]
O61 - LFC: 17/04/2013 - 00:01:22 ---A- C:\Users\Jennifer\AppData\Local\Temp\nsiD6E6.tmp\NSISpcre.dll [167936]
O61 - LFC: 17/04/2013 - 00:01:22 ---A- C:\Users\Jennifer\AppData\Local\Temp\nsiD6E6.tmp\time.dll [10752]
O61 - LFC: 17/04/2013 - 00:04:24 ---A- C:\Users\Jennifer\AppData\Local\Temp\go9876.html [5488]
O61 - LFC: 17/04/2013 - 00:05:25 ---A- C:\Users\Jennifer\AppData\Local\Temp\nsk8C02.tmp\UAC.dll [16896]
O61 - LFC: 17/04/2013 - 00:05:26 ---A- C:\Users\Jennifer\AppData\Local\Temp\nsk8C02.tmp\xml.dll [26624]
O61 - LFC: 17/04/2013 - 00:07:03 ---A- C:\Users\Jennifer\AppData\Local\Temp\nsa98A.tmp\NSIS_Picasa_Unicode.dll [118784]
O61 - LFC: 17/04/2013 - 00:07:14 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16]
O61 - LFC: 17/04/2013 - 00:07:14 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000099 [614]
O61 - LFC: 17/04/2013 - 00:07:15 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG [0]
O61 - LFC: 17/04/2013 - 00:07:15 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [161760]
O61 - LFC: 17/04/2013 - 00:07:15 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Web Data [88064]
O61 - LFC: 17/04/2013 - 00:07:15 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal [10792]
O61 - LFC: 17/04/2013 - 00:07:16 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT [16]
O61 - LFC: 17/04/2013 - 00:07:16 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-002355 [1204]
O61 - LFC: 17/04/2013 - 00:07:17 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG [272]
O61 - LFC: 17/04/2013 - 00:07:17 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_elioihkkcdgakfbahdoddophfngopipi_0.localstorage [3072]
O61 - LFC: 17/04/2013 - 00:07:17 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_elioihkkcdgakfbahdoddophfngopipi_0.localstorage-journal [3608]
O61 - LFC: 17/04/2013 - 00:07:18 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor [123904]
O61 - LFC: 17/04/2013 - 00:07:18 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal [16384]
O61 - LFC: 17/04/2013 - 00:07:18 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Session Storage\002080.sst [2794]
O61 - LFC: 17/04/2013 - 00:07:18 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT [16]
O61 - LFC: 17/04/2013 - 00:07:18 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-002077 [1119]
O61 - LFC: 17/04/2013 - 00:07:18 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [69632]
O61 - LFC: 17/04/2013 - 00:07:18 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal [16384]
O61 - LFC: 17/04/2013 - 00:07:19 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [0]
O61 - LFC: 17/04/2013 - 00:07:24 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings [8]
O61 - LFC: 17/04/2013 - 00:07:59 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dajedkncpodkggklbegccjpmnglmnflm\CURRENT [16]
O61 - LFC: 17/04/2013 - 00:07:59 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dajedkncpodkggklbegccjpmnglmnflm\MANIFEST-000002 [50]
O61 - LFC: 17/04/2013 - 00:08:03 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\dajedkncpodkggklbegccjpmnglmnflm\LOG [0]
O61 - LFC: 17/04/2013 - 00:09:50 ---A- C:\Users\Jennifer\AppData\Roaming\Microsoft\Sticky Notes\StickyNotes.snt [4096]
O61 - LFC: 17/04/2013 - 00:10:02 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_icmlaeflemplmjndnaapfdbbnpncnbda_0.localstorage [5268480]
O61 - LFC: 17/04/2013 - 00:10:02 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_icmlaeflemplmjndnaapfdbbnpncnbda_0.localstorage-journal [16384]
O61 - LFC: 17/04/2013 - 00:10:12 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [958340]
O61 - LFC: 17/04/2013 - 00:10:14 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [8137896]
O61 - LFC: 17/04/2013 - 00:10:14 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1530952]
O61 - LFC: 17/04/2013 - 00:10:14 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [134668]
O61 - LFC: 17/04/2013 - 00:10:14 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19720]
O61 - LFC: 17/04/2013 - 00:10:14 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist [4652]
O61 - LFC: 17/04/2013 - 00:10:41 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144]
O61 - LFC: 17/04/2013 - 00:10:41 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [4640]
O61 - LFC: 17/04/2013 - 00:10:46 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage [1610752]
O61 - LFC: 17/04/2013 - 00:10:46 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal [16384]
O61 - LFC: 17/04/2013 - 00:10:48 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nhahncknpppipmgjchbbhehkfglelepf_0.localstorage [4096]
O61 - LFC: 17/04/2013 - 00:10:48 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nhahncknpppipmgjchbbhehkfglelepf_0.localstorage-journal [3608]
O61 - LFC: 17/04/2013 - 00:10:57 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Favicons [2340864]
O61 - LFC: 17/04/2013 - 00:10:57 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384]
O61 - LFC: 17/04/2013 - 00:10:57 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\History [323584]
O61 - LFC: 17/04/2013 - 00:10:57 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-04 [1019904]
O61 - LFC: 17/04/2013 - 00:10:57 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-04-journal [16384]
O61 - LFC: 17/04/2013 - 00:10:57 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384]
O61 - LFC: 17/04/2013 - 00:11:09 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [557]
O61 - LFC: 17/04/2013 - 00:13:19 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [271865]
O61 - LFC: 17/04/2013 - 00:13:19 ---A- C:\Users\Jennifer\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set [701]
O61 - LFC: 17/04/2013 - 00:13:19 ---A- C:\Users\Jennifer\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json [34]
O61 - LFC: 17/04/2013 - 00:13:39 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Local State [27775]
O61 - LFC: 17/04/2013 - 00:13:58 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Cookies [51200]
O61 - LFC: 17/04/2013 - 00:13:58 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal [16384]
O61 - LFC: 17/04/2013 - 00:13:59 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies [10240]
O61 - LFC: 17/04/2013 - 00:13:59 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies-journal [7736]
O61 - LFC: 17/04/2013 - 00:14:20 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mgijmajocgfcbeboacabfgobmjgjcoja_0.localstorage [3072]
O61 - LFC: 17/04/2013 - 00:14:20 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mgijmajocgfcbeboacabfgobmjgjcoja_0.localstorage-journal [3608]
O61 - LFC: 17/04/2013 - 00:14:26 ---A- C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Preferences [136521]
~ 22 Fichiers temporaires (Temporary files)
~ Files: 148 Scanned in 02mn 22s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 25/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 10/11/2011 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag) .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/10/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 15/10/2012 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr) .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\cscsvc.dll (CSC) .(.Microsoft Corporation - DLL du service CSC.) - LEGACY_CSC
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys (driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\webclnt.dll (MRxDAV) .(.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) - LEGACY_MRXDAV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\rdpdr.sys (RDPDR) .(.Microsoft Corporation - Microsoft RDP Device redirector.) - LEGACY_RDPDR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 28/04/2012 - C:\Windows\System32\Drivers\RDPWD.sys (RDPWD) .(.Microsoft Corporation - Pilote de pile RDP Terminal.) - LEGACY_RDPWD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 17/02/2012 - C:\Windows\System32\drivers\tdtcp.sys (TDTCP) .(.Microsoft Corporation - TCP Transport Driver.) - LEGACY_TDTCP
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\tssecsrv.sys (tssecsrv) .(.Microsoft Corporation - TS Security Filter Driver.) - LEGACY_TSSECSRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
O64 - Services: CurCS - 07/08/2007 - C:\Windows\System32\DRIVERS\xaudio.sys (XAudio) .(.Conexant Systems, Inc. - Modem Audio Device Driver.) - LEGACY_XAUDIO
~ Legacy: 81 Scanned in 00mn 01s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\2j18u6yw.default\searchplugins\askcom.xml
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Hola Search) - http://www.holasearch.com =>Hijacker.HolaSearch
O69 - SBI: SearchScopes [HKCU] {1B28B7F2-B726-40CF-83F8-86CAC664061A} - (Ask Search) - http://websearch.ask.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2414} [DefaultScope] - (Search Results) - http://dts.search-results.com
O69 - SBI: SearchScopes [HKCU] {FED2C699-3E8A-4D08-A8B1-058CC19EEA71} - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [674304]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [473600]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [521216]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [102912]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504]
~ Services: 33 Scanned in 00mn 00s



---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.2A0FF96A255E681B74F0ED9103F201DE] [SPRF][03/04/2013] (...) -- C:\Users\Jennifer\AppData\Local\Temp\A~NSISu_.exe [49438]
[MD5.AA95D698B0589AF875A2F7D6AA4F10B1] [SPRF][25/02/2013] (...) -- C:\Users\Jennifer\AppData\Local\Temp\busunint.exe [11344]
[MD5.36179B382A989075FF5FA282434F6892] [SPRF][21/03/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\Jennifer\AppData\Local\Temp\uninst1.exe [394736] =>Toolbar.Babylon
[MD5.B88FC4BD8674DE4C314844864D0D4166] [SPRF][17/04/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Jennifer\Desktop\ZHPDiag2.exe [5574753]
~ Files: Scanned in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe
O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{FCEF7D20-44C0-408B-91F9-CDFB63A93379}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{DED70306-F43C-4068-A37E-2E29717EBB99}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{76BA1B5D-0878-4353-8C3D-2F400B8CA5A9}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe
O87 - FAEL: "{C4B7130E-DEFB-4741-8020-3F1F5587BE97}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe
O87 - FAEL: "{16579600-9102-4CC5-B4A6-29A4DB5C2734}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "{71F69BB7-C030-44E1-9288-2819552CF513}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "{17061682-3C10-4C00-824E-7C8CB08E60CB}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office\Office14\outlook.exe
O87 - FAEL: "TCP Query User{CB4EE58A-8B94-46E5-81EA-39982877D28B}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
O87 - FAEL: "UDP Query User{6008A8A5-7BD0-4788-A130-823BC0899B09}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
O87 - FAEL: "TCP Query User{AC025DAC-5A18-461F-B9DD-CC22017F5E26}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
O87 - FAEL: "UDP Query User{0733EE1C-2363-4D5E-9597-996E95C63B56}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
O87 - FAEL: "{8CDF0B54-8437-42D1-8024-6C7E958F9587}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{D85C68F8-4F77-49F8-8CA7-D46DBC71A2B0}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{A202B396-ECC2-4F63-A4C7-B666A06F772F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{38DF373F-3D6A-4E99-A32B-E19D764BF583}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{238ECAA6-48C4-4B2C-BB9B-1DA2C7671D77}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0C7D648B-BE28-4FA2-A392-9869B10883E0}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{E1F7D8C2-5A43-4A7A-A4A3-E6C6F38B8FA3}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{8A5897CF-02D1-4C49-AEF6-A9140CA91C99}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4B1C2814-2948-429A-A223-8F05E78DB6C6}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{EE644CD6-F3F9-4B28-B126-724D6A470E61}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{91629E24-E5E1-4162-B344-C6D44D234104}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{0EAA5E64-1D20-4824-B30C-7C4530760AE1}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O87 - FAEL: "{8124A674-8601-4831-97BC-28090F11E5BC}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{9CB4C163-A468-4E99-9291-3B998BCC6A24}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{56442751-1373-4478-978A-431F8F39BB46}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{55AF45EB-2BE8-4C42-A6D2-99F0700D3A8E}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{35116BB9-42F5-4256-8D8B-0B908FB2A848}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{7D8C7ACB-EEAA-4F08-A2B4-3D7E69A7C11A}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{DC408F9E-F0AD-4DD3-B6B2-625CDFD831A1}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{E1D94B8C-3BE9-4AD4-B4F7-4330C665A197}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{205BCA94-23E6-4D26-8DA4-AEAADC3A0FBF}C:\program files\electronic arts\eadm\core.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{B2662776-E717-47B4-BA9C-D4279D643702}C:\program files\electronic arts\eadm\core.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "{5AF60A7B-F843-4BF0-AE70-63D1C72F98B4}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{FC3671CB-4E45-45CD-A424-7866DFB247CD}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{C4E02F3C-1116-4A37-A93C-1189E9A51850}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{A69BD678-D120-4E0B-862F-A7B8E8898486}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{7DD5E7DF-A637-4DF4-9E90-C1DADEDC50FC}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "TCP Query User{5C5E90A5-3C29-4339-BFD3-D829462E0901}C:\program files\java\jre6\bin\java.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe
O87 - FAEL: "UDP Query User{0C4391E6-F6C2-43A1-957B-747AF3907A89}C:\program files\java\jre6\bin\java.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe
O87 - FAEL: "TCP Query User{4FAA40BC-75D1-4CAA-B87F-77EE161C96B3}C:\program files\java\jre7\bin\java.exe" | In - Private - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\java.exe
O87 - FAEL: "UDP Query User{2AD5DF0A-3198-4159-A27C-53D3AE6A9177}C:\program files\java\jre7\bin\java.exe" | In - Private - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\java.exe
O87 - FAEL: "TCP Query User{4DF552BD-FA30-4A3A-AD1E-8CB1EB52317F}C:\users\public\sony online entertainment\installed games\dc universe online live\unreal3\binaries\win32\dcgame.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\public\sony online entertainment\installed games\dc universe online live\unreal3\binaries\win32\dcgame.exe (.not file.)
O87 - FAEL: "UDP Query User{4396B617-FB92-4448-8D22-747547BF27D3}C:\users\public\sony online entertainment\installed games\dc universe online live\unreal3\binaries\win32\dcgame.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\public\sony online entertainment\installed games\dc universe online live\unreal3\binaries\win32\dcgame.exe (.not file.)
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{218B4501-1A40-4DF4-8BA7-92F7CA0846CA}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O87 - FAEL: "TCP Query User{C191530C-30A6-4CAE-981D-D36983DF9CFF}C:\users\jennifer\appdata\roaming\nosibay\bubble dock\bubble dock.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\jennifer\appdata\roaming\nosibay\bubble dock\bubble dock.exe (.not file.)
O87 - FAEL: "UDP Query User{2B29FCFD-6A8E-4ED8-A23C-3D370FD9914F}C:\users\jennifer\appdata\roaming\nosibay\bubble dock\bubble dock.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\jennifer\appdata\roaming\nosibay\bubble dock\bubble dock.exe (.not file.)
O87 - FAEL: "{E2C642D2-AD9C-49BF-8D4C-73F8B19460CF}" | In - None - P17 - TRUE | .(.Iminent - Iminent.) -- C:\Program Files\Iminent\Iminent.exe =>Adware.IMBooster
O87 - FAEL: "{8A0518DA-20A3-46AD-8B1A-A582AE86A644}" | In - None - P17 - TRUE | .(.Iminent - Iminent.) -- C:\Program Files\Iminent\Iminent.Messengers.exe =>Adware.IMBooster
~ Firewall: 222 Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : v2.11560 - (16/04/2013)
Cl�s trouv�es (Keys found) : 179
Valeurs trouv�es (Values found) : 3
Dossiers trouv�s (Folders found) : 16
Fichiers trouv�s (Files found) : 3

[HKLM\Software\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{26C9BBE4-6D45-4AB6-A5B4-E068C9F5EF6D}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}] =>Adware.AskSBAR
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}] =>Toolbar.Wajam
[HKLM\Software\Classes\CLSID\{D8F01233-2DE6-4EE7-8988-37263F00651B}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}] =>Adware.IMBooster
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Tarma Installer] =>Toolbar.Agent
[HKLM\Software\Microsoft\Tracing\Iminent_RASAPI32] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\Iminent_RASMANCS] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Tracing\Setup_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Tracing\Setup_RASMANCS] =>Toolbar.Conduit
[HKLM\Software\Classes\iminent] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.DownloadArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.RawDataArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.TinyUrlArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.ViralLinkArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ClientCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ContractBase] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ServerCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ServerResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.LightContent] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.LightUri] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.MediatorServiceProxy] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ActiveContentHandle.1] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ActiveContentHandler] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.BrowserHelperObject] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.BrowserHelperObject.1] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ScriptExtender] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ScriptExtender.1] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.TinyUrlHandler] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.TinyUrlHandler.1] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL] =>Adware.IMBooster
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{99079A25-328F-4BD4-BE04-00955ACAA0A7} =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:Iminent =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:Bubble Dock =>Adware.SPointer
C:\Program Files\Iminent =>Adware.IMBooster
C:\Program Files\Software =>Adware.Boxore
C:\Program Files\Windows Searchqu Toolbar =>Adware.Bandoo
C:\Program Files\Common Files\Umbrella =>Adware.IMBooster
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\IBUpdaterService =>Adware.IncrediBar
C:\ProgramData\Iminent =>Adware.IMBooster
C:\ProgramData\Software =>Adware.Boxore
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent =>Adware.IMBooster
C:\Users\Jennifer\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Jennifer\AppData\Roaming\Iminent =>Adware.IMBooster
C:\Users\Jennifer\AppData\Local\lollipop =>Adware.Lollipop
C:\Users\Jennifer\AppData\Local\Software =>Adware.Boxore
C:\Users\Jennifer\AppData\Local\Temp\Iminent =>Adware.IMBooster
C:\ProgramData\Aimersoft Video Converter Ultimate =>PUP.Offerware^
C:\Users\Jennifer\AppData\Roaming\Mozilla\Firefox\Profiles\2j18u6yw.default\Extensions\ffxtlbr@babylon.com =>Toolbar.Babylon
C:\Users\Jennifer\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon
C:\Users\Jennifer\AppData\Local\Temp\searchqutoolbar-manifest.xml =>Adware.Bandoo
~ Additionnel: Scanned in 00mn 27s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "0A72DDEF603BFE54FB855B7204B6248C" . (.TOSHIBA Value Added Package.) -- C:\Windows\Installer\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\ARPPRODUCTICON.exe
O90 - PUC: "0C1FF52A6B08B8B45A15CD2565794A80" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{A25FF1C0-80B6-4B8B-A551-DC525697A408}\ARPPRODUCTICON.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "35E1620B1F6BA47468B47E3CBC4F860E" . (.iTunes.) -- C:\Windows\Installer\{B0261E53-B6F1-474A-864B-E7C3CBF468E0}\Installer.ico
O90 - PUC: "3C9969540349183469B424848DB7949F" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{459699C3-9430-4381-964B-4248D87B49F9}\Installer.ico
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "48720015AF819FF8A9A142867ECF0A69" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{51002784-18FA-8FF9-9A1A-2468E7FCA096}\ARPPRODUCTICON.exe
O90 - PUC: "488901ADCDC712F5F5B047A27AF4481E" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{DA109884-7CDC-5F21-5F0B-742AA74F84E1}\ARPPRODUCTICON.exe
O90 - PUC: "4D037065F6E1B376D30CFBAE5CF7E629" . (.AMD Media Foundation Decoders.) -- C:\Windows\Installer\{560730D4-1E6F-673B-3DC0-BFEAC57F6E92}\ARPPRODUCTICON.exe
O90 - PUC: "59FF8495D318CFA41B48D11DD1BB0039" . (.O2Micro Flash Memory Card Reader Driver.) -- C:\Windows\Installer\{5948FF95-813D-4AFC-B184-1DD11DBB0093}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.4) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "74A473485FD13104094D21881889961B" . (.Centre Souris et Claviers Microsoft.) -- C:\Windows\Installer\{84374A47-1DF5-4013-90D4-1288819869B1}\DeviceCenter.ico
O90 - PUC: "80DB32ECDF6F73338DCBB5556E29365A" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{CE23BD08-F6FD-3337-D8BC-5B55E69263A5}\ARPPRODUCTICON.exe
O90 - PUC: "929F72F33AB2E8C4C9465A75B21F7E8C" . (.Ma-Config.com.) -- C:\Windows\Installer\{3F27F929-2BA3-4C8E-9C64-A5572BF1E7C8}\maconfico
O90 - PUC: "A9ADBF52868EB3B49BFF9D321858111A" . (.Logiciel Intel(R) PROSet/Wireless WiFi.) -- C:\Windows\Installer\{25FBDA9A-E868-4B3B-B9FF-D923818511A1}\ARPPRODUCTICON.exe
O90 - PUC: "ACFD5B980E184AE4A8A0F404781ADD00" . (.Iminent.) -- C:\Windows\Installer\{89B5DFCA-81E0-4EA4-8A0A-4F4087A1DD00}\imbooster.ico =>Adware.IMBooster
O90 - PUC: "B2F5519759897D9468219D52080EEDB5" . (.Bonjour.) -- C:\Windows\Installer\{79155F2B-9895-49D7-8612-D92580E0DE5B}\Bonjour.ico
O90 - PUC: "BD528ECCA74340041A68F5A4F6DD5874" . (.Apple Application Support.) -- C:\Windows\Installer\{CCE825DB-347A-4004-A186-5F4A6FDD8547}\WinInstall.ico
O90 - PUC: "D4156895EFE28C1B5AFB750A4817B198" . (.ccc-utility.) -- C:\Windows\Installer\{5986514D-2EFE-B1C8-A5BF-57A084711B89}\ARPPRODUCTICON.exe
O90 - PUC: "D572B1D9634C222E24022B275FE97DF8" . (.AMD Catalyst Install Manager.) -- C:\Windows\Installer\{9D1B275D-C436-E222-4220-B272F59ED78F}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D8F37525990F5BC4E9EDC572CE4B0AB2" . (.TOSHIBA Hardware Setup.) -- C:\Windows\Installer\{52573F8D-F099-4CB5-9EDE-5C27ECB4A02B}\ARPPRODUCTICON.exe
O90 - PUC: "DC09491E083573F40B7A26D4366550CD" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{E19490CD-5380-4F37-B0A7-624D635605DC}\ARPPRODUCTICON.exe
O90 - PUC: "DD7E454CA90A60D6F79F95574357CF90" . (.Catalyst Control Center.) -- C:\Windows\Installer\{C454E7DD-A09A-6D06-7FF9-59753475FC09}\ARPPRODUCTICON.exe
O90 - PUC: "F4113B6DB5490894FBA7FA219E61A1F0" . (.iCloud.) -- C:\Windows\Installer\{D6B3114F-945B-4980-BF7A-AF12E9161A0F}\ARP.ico
O90 - PUC: "F6071111A6667304777712318267D401" . (.JavaFX 2.1.1.) -- C:\Windows\Installer\{1111706F-666A-4037-7777-211328764D10}\javaIcon.ico
~ Update Products: 81 Scanned in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\9538ddbb33dbe41\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\9538ddbb33dbe41\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80"
[HKCU\Software\9538ddbb33dbe41] =>Toolbar.Babylon^
[HKLM\Software\9538ddbb33dbe41] => Cl� orpheline
~ Export Key Software: Scanned in 00mn 00s



---\\ MyComputer Name Space (O92)
O92 - MNS: Flux de photos - {F0D63F85-37EC-4097-B30D-61B4A8917118}
~ MNS: 1 Scanned in 00mn 00s



---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 13/03/2013 253656 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 10/11/2011 176128 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/10/2012 44808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Auto 12/04/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 12/04/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 09/05/2011 136120 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 17/10/2011 13592 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 04/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Demand 12/12/2012 553440 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 14/11/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe
SR - | Auto 12/02/2007 65536 | (O2FLASH) . (.O2Micro International.) - C:\Windows\System32\DRIVERS\o2flash.exe
SR - | Auto 02/04/2013 2795048 | (SProtection) . (.Iminent.) - C:\Program Files\Common Files\Umbrella\umbrella.exe =>Adware.IMBooster
SR - | Auto 05/11/2009 468320 | (TosCoSrv) . (.TOSHIBA Corporation.) - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 07/08/2007 386560 | (XAudioService) . (.Conexant Systems, Inc..) - C:\Windows\System32\DRIVERS\xaudio.exe
~ Services: Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Jennifer at 17/04/2013 01:18:20

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s



End of the scan (1986 lines in 05mn 41s)(0)

Publicité

Soutenons La Quadrature du Net ! Soutenons La Quadrature du Net !

Signaler le contenu de ce document

Publicité

Soutenons La Quadrature du Net !