~ Rapport de ZHPDiag v2014.3.12.13 - Nicolas Coolman (12/03/2014) ~ Lancé par Chuck (12/03/2014 16:04:56) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by user ---\\ Navigateurs Internet MSIE: Internet Explorer v8.0.7600.16385 MFIE: Mozilla Firefox 26.0 (Defaut) OBIE: Safari v5.34.57.2 ---\\ Informations sur les produits Windows ~ Langage: Français Windows 7 Ultimate, 64-bit (Build 7600) Windows Server License Manager Script : Absent (Not found) Windows ID Activation : Inconnue (Unknown) Windows Licence : Inconnue (Unknown) Software Protection Service (Protection logicielle) : KO Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système avast! Pro Antivirus v5.0.677.0 Windows Defender W7 ---\\ Logiciels d'optimisation du système CCleaner v3.17 =>Piriform Ltd ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 12 Plugin Adobe Reader XI ---\\ Informations sur le système ~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 2014 MB (29% free) System Restore: Activé (Enable) System drive C: has 118 GB (25%) free of 466 GB ---\\ Mode de connexion au système ~ Computer Name: CHUCKMOUTH ~ User Name: Chuck ~ All Users Names: UpdatusUser, shirley, HomeGroupUser$, Chuck, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Chuck\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Chuck\AppData\Roaming\ ~ %Desktop% : C:\Users\Chuck\Desktop\ ~ %Favorites% : C:\Users\Chuck\Favorites\ ~ %LocalAppData% : C:\Users\Chuck\AppData\Local\ ~ %StartMenu% : C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 118 Go of 466 Go) D: CD-ROM drive (Not Inserted) E: CD-ROM drive (Not Inserted) G: Floppy drive, Flash card reader, USB Key (Not Inserted) H: Floppy drive, Flash card reader, USB Key (Not Inserted) I: CD-ROM drive (Not Inserted) J: Floppy drive, Flash card reader, USB Key (Not Inserted) K: Floppy drive, Flash card reader, USB Key (Not Inserted) L: CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date ~ Security Center: 46 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 07:23:14.) -- C:\Windows\Explorer.exe [2870272] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024] [MD5.8523338F749AC8C5300C125BC4B08275] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.02/03/2013 - 06:49:19.) -- C:\Windows\System32\wininet.dll [1198080] [MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.28/10/2009 - 07:24:40.) -- C:\Windows\System32\Winlogon.exe [389632] [MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936] [MD5.DB9D6C6B2CD95A9CA414D045B627422E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:11.) -- C:\Windows\system32\Drivers\AFD.sys [499200] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456] [MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224] [MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696] [MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072] [MD5.A7368ED1B924FA49283F1A83776F8A02] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/03/2013 - 06:52:57.) -- C:\Windows\system32\Drivers\ntfs.sys [1652568] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280] [MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048] [MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:18:02.) -- C:\Windows\system32\Drivers\rdpdr.sys [165376] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184] [MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840] [MD5.9E425AC5C9A5A973273D169F43B4F5E1] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 18:38:18.) -- C:\Windows\system32\Drivers\volsnap.sys [295792] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/12 ~ Mes musiques (My Musics) : 1/41 ~ Mes Favoris (My Favorites) : 1/26 ~ Mes Documents (My Documents) : 2/923 ~ Mon Bureau (My Desktop) : 6/2680 ~ Menu demarrer (Programs) : 1/31 ~ Hidden Files: Scanned in 00mn 13s ---\\ Processus lancés [MD5.5574337F2FDCDEF9F32902FEBA1BEDEC] - (.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe [770728] [PID.1948] [MD5.CE4AC8EF66F4622370FB3BE02F5AC2F4] - (...) -- C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe [148280] [PID.1956] [MD5.19FB619F2E59A1D9FC8FF5661A89977F] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3674320] [PID.1976] [MD5.14AFD5FA426F2A609ED60CF69110DE17] - (.Updater - Updater service.) -- C:\ProgramData\Updater\updater.exe [481656] [PID.1984] =>PUP.CrossRider [MD5.08B438A5A06CD877F19B92F6868C031D] - (.NEC Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496] [PID.1836] [MD5.6C1B31F5C16E03153F0037AC6C451FFD] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2838912] [PID.1840] [MD5.84E532F6C250631A4E6673D78A1CFD51] - (.WatchDog - Pas de description.) -- C:\ProgramData\RHelpers\ChromeHelper\ChromeHelper.exe [426872] [PID.4092] =>PUP.SearchDonkey [MD5.84E532F6C250631A4E6673D78A1CFD51] - (.WatchDog - Pas de description.) -- C:\ProgramData\RHelpers\FireFoxHelper\FireFoxHelper.exe [426872] [PID.2724] =>PUP.SearchDonkey [MD5.84E532F6C250631A4E6673D78A1CFD51] - (.WatchDog - Pas de description.) -- C:\ProgramData\RHelpers\IEHelper\IeHelper.exe [426872] [PID.3388] =>PUP.SearchDonkey [MD5.1EEA6C1B35191DC177EA83672B9C3FC0] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.4684] [MD5.9D4A0ECBF734E2EECDD5B473A2D705FE] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016] [PID.6384] [MD5.0DD74786D22EDFF0CE5B8E1B1E398618] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [18544] [PID.12356] [MD5.497E84A1B6767142987A17574C57C04E] - (.Adobe Systems, Inc. - Adobe Flash Player 12.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe [1863560] [PID.17516] [MD5.64A2A75D8F4BD07BD0A0029AA8825BBF] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8353792] [PID.7124] [MD5.5A19667A580B1CE886EAF968B9743F45] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383264] [PID.888] [MD5.ACB544D7254F366DFB48F380BC36CD25] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384] [PID.1388] [MD5.899C7993A7DE3061C74623F5523BC21D] - (.AVAST Software - avast! antivirus Update.) -- C:\Program Files\Alwil Software\Avast5\setup\avast.setup [6533200] [PID.2260] [MD5.30E3850F303EAE5C364782EA78579CC9] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55624] [PID.2364] [MD5.E3EFA45E92B7F0B3DD9DDBB0B11CB24A] - (...) -- C:\ProgramData\InternetUpdater\InternetUpdaterService.exe [40448] [PID.2452] [MD5.D0E7FF91B52FE9FD2F9522B91F27CB09] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2576] [MD5.E1095A89EB4BFCA2AB2F4E1F2BA56612] - (.Logitech Inc. - Logitech LVPrS64H Module..) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe [125464] [PID.2652] [MD5.A7377410BC0D28C5A72135A4BE1A1068] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.328] [MD5.4988C1583CA3DFAC85339057FF550C52] - (...) -- C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe [525312] [PID.5188] ~ Processes Running: Scanned in 00mn 02s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Chuck\AppData\Roaming\Mozilla\Firefox\Profiles\33ikhegx.default-1377637630480\prefs.js M0 - MFSP: prefs.js [Chuck - 33ikhegx.default-1377637630480] http://www.google.fr M2 - MFEP: prefs.js [Chuck - 33ikhegx.default-1377637630480\support@betterxperience.com] [] Better Experience v2.6.61 (..) P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.06.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll ~ Firefox Browser: 9 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://allssearch.com =>Adware.SocialSkinz R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {ef79f67a-6ad7-4715-a0f8-932fca442023} . (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) (No version) -- (.not file.) R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0 ~ IE Browser: 20 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Better Experience [64Bits] - {44ed99e2-16a6-4b89-80d6-5b21cf42e78b} . (.Better Experience - Pas de description.) -- C:\ProgramData\BetterExperience\IE\common.dll O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll O2 - BHO: Lexmark [64Bits] - {D2C5E510-BE6D-42CC-9F61-E4F939078474} . (...) -- C:\Program Files\Lexmark Printable Web\bho.dll ~ BHO: 8 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar\WebBrowser: (no name) - [HKCU]{EF79F67A-6AD7-4715-A0F8-932FCA442023} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) -- C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team O4 - GS\Desktop [Public]: avast! Pro Antivirus.lnk . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd O4 - GS\Desktop [Public]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe O4 - GS\Desktop [Public]: TuneUp Maintenance en 1 clic.lnk . (.TuneUp Software - TuneUp Maintenance en 1 clic.) -- C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe O4 - GS\Program [Public]: Adobe Photoshop CS4.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS3 Portable.) -- C:\Program Files (x86)\Adobe Photoshop CS4\PhotoshopPortable.exe =>.Adobe Systems Incorporated O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc O4 - GS\Program [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) -- C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\Program [Public]: Safari.lnk . (...) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - GS\Program [Public]: TuneUp Utilities.lnk . (.TuneUp Software - TuneUp Utilities - Menu principal.) -- C:\Program Files (x86)\TuneUp Utilities 2010\Integrator.exe O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.) O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Live Messenger.lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\system32\mblctr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\NetProj.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\system32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) -- C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\Accessories [UpdatusUser]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [UpdatusUser]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [UpdatusUser]: Run.lnk - Clé orpheline O4 - GS\Accessories [UpdatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [UpdatusUser]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\TaskBar [shirley]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\TaskBar [shirley]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\TaskBar [shirley]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\TaskBar [shirley]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Program [shirley]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Program [shirley]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Accessories [shirley]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [shirley]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [shirley]: Run.lnk - Clé orpheline O4 - GS\Accessories [shirley]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [shirley]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\SystemTools [shirley]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [Chuck]: Apple Safari.lnk . (...) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe O4 - GS\QuickLaunch [Chuck]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O4 - GS\QuickLaunch [Chuck]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch [Chuck]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\TaskBar [Chuck]: Jouer à League of Legends.lnk . (...) -- C:\Riot Games\League of Legends\lol.launcher.exe O4 - GS\TaskBar [Chuck]: Mozilla Firefox (2).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\TaskBar [Chuck]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\TaskBar [Chuck]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe O4 - GS\Program [Chuck]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Program [Chuck]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Accessories [Chuck]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [Chuck]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Chuck]: Run.lnk - Clé orpheline O4 - GS\Accessories [Chuck]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [Chuck]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\SystemTools [Chuck]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\SendTo [Chuck]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - GS\Desktop [Chuck]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O4 - GS\Desktop [Chuck]: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) -- C:\Users\Chuck\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe O4 - GS\Desktop [Chuck]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Desktop [Chuck]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman ~ Global Startup: 82 Scanned in 00mn 03s ---\\ Applications lancées au démarrage du sytème (O4) O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [lxebmon.exe] . (.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe O4 - HKLM\..\Run: [EzPrint] . (...) -- C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd O4 - HKCU\..\Run: [Updater] . (.Updater - Updater service.) -- C:\ProgramData\Updater\updater.exe =>PUP.CrossRider O4 - HKLM\..\Wow6432Node\Run: [NUSB3MON] . (.NEC Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe O4 - HKLM\..\Wow6432Node\Run: [Updater] . (.Updater - Updater service.) -- C:\ProgramData\Updater\Updater.exe =>PUP.CrossRider O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (.not file.) O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-1379276826-3411338212-1822049289-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd O4 - HKUS\S-1-5-21-1379276826-3411338212-1822049289-1000\..\Run: [Updater] . (.Updater - Updater service.) -- C:\ProgramData\Updater\updater.exe =>PUP.CrossRider ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office14\ONBttnIE.dll (.not file.) O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office14\ONBTTN~1.dll (.not file.) ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation ~ Winsock: 9 Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{66BE8AD4-8A07-424F-8612-CE6D5B689232}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CCS\Services\Tcpip\..\{750D83C1-2665-4189-A80B-FBED45F790BD}: DhcpNameServer = 172.20.10.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{75EFB7C8-2E68-4F4C-8C98-057D4D660840}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CS1\Services\Tcpip\..\{66BE8AD4-8A07-424F-8612-CE6D5B689232}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CS1\Services\Tcpip\..\{750D83C1-2665-4189-A80B-FBED45F790BD}: DhcpNameServer = 172.20.10.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{75EFB7C8-2E68-4F4C-8C98-057D4D660840}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CS2\Services\Tcpip\..\{66BE8AD4-8A07-424F-8612-CE6D5B689232}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CS2\Services\Tcpip\..\{750D83C1-2665-4189-A80B-FBED45F790BD}: DhcpNameServer = 172.20.10.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{75EFB7C8-2E68-4F4C-8C98-057D4D660840}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll (.not file.) =>Toolbar.Conduit ~ AppInit DLL: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (...) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (.not file.) O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Internet Updater (InternetUpdater) . (...) - C:\ProgramData\InternetUpdater\InternetUpdaterService.exe O23 - Service: Kinoni Service (KinoniSvc) . (...) - C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Process Monitor (LVPrcS64) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: lxebCATSCustConnectService (lxebCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\system32\spool\DRIVERS\x64\3\lxebserv.exe O23 - Service: lxeb_device (lxeb_device) . (.Pas de propriétaire - Printer Communication System.) - C:\Windows\system32\lxebcoms.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.0.) - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ~ Services: 15 Scanned in 00mn 05s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (sdnclean64.exe) - File not found ~ BEX: 2 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] [MD5.9D96B0D5855FD1B98023B3EEC9F06786] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928] [MD5.050C1EF7FFC5DAD14B59B806A9B1FFDA] [APT] [Apple Diagnostics] (.Apple Inc..) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [346440] [MD5.3E8626D8FB928F560B5DE8B9A31B6463] [APT] [Recherche de problŠmes automatique] (.TuneUp Software.) -- C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [316232] [MD5.61FF36573FD809FD3555D3F78872666D] [APT] [TuneUpUtilities_Task_BkGndMaintenance] (.TuneUp Software.) -- C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe [649544] [MD5.00000000000000000000000000000000] [APT] [{65FD774F-E179-45F6-9948-34D5FED08D6C}] (...) -- I:\Autorun.exe (.not file.) [0] [MD5.9D4A0ECBF734E2EECDD5B473A2D705FE] [APT] [{DBAA8CBE-0128-4F74-A354-5C13EFF4559C}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] ~ Scheduled Task: 10 Scanned in 00mn 07s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll ~ Active Setup: 11 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vpcnfltr) . (.Microsoft Corporation - Virtual PC Network Filter Driver.) - C:\Windows\System32\DRIVERS\vpcnfltr.sys O41 - Driver: C:\Windows\System32\drivers\vpcvmm.sys (vpcvmm) . (.Microsoft Corporation - Moniteur d'ordinateur virtuel Virtual PC.) - C:\Windows\System32\drivers\vpcvmm.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ~ Drivers: 75 Scanned in 00mn 05s ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0A5B39D2-7ED6-4779-BCC9-37F381139DB3} O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 O42 - Logiciel: Better Experience - (.Better Experience.) [HKLM][64Bits] -- BetterExperience O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>P2P.BitTorrent O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd O42 - Logiciel: Coffret de pilotes Logitech Webcam Software - (.Logitech Inc..) [HKLM][64Bits] -- lvdrivers_12.10 =>.Logitech Inc O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd O42 - Logiciel: Diablo III - (.Blizzard Entertainment.) [HKLM][64Bits] -- Diablo III O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Internet Updater - (.Parallel Lines Development, LLC.) [HKLM][64Bits] -- InternetUpdater O42 - Logiciel: KinoniDrivers 2.8.1 - (.Kinoni.) [HKLM][64Bits] -- KinoniDrivers O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1 O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM][64Bits] -- {174A3B31-4C43-43DD-866F-73C9DB887B48} O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {918A9082-6287-4D25-9002-5E5D5E4971CB} O42 - Logiciel: Lexmark - (...) [HKLM][64Bits] -- {D2C5E510-BE6D-42CC-9F61-E4F939078474} O42 - Logiciel: Lexmark Barre d'outils - (...) [HKLM][64Bits] -- {1017A80C-6F09-4548-A84D-EDD6AC9525F0} O42 - Logiciel: Lexmark Pro200-S500 Series - (.Lexmark International, Inc..) [HKLM][64Bits] -- Lexmark Pro200-S500 Series O42 - Logiciel: Lexmark Tools for Office - (...) [HKLM][64Bits] -- {10812DE7-2E57-4740-B226-6B3BE34AF9D7} O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Logitech High Quality Video - (.Logitech, Inc..) [HKLM][64Bits] -- {281D28EC-1357-4778-B2D7-DEA56D70EF96} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Mises à jour NVIDIA 1.11.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update O42 - Logiciel: Mozilla Firefox 26.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 26.0 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: NEC Electronics USB 3.0 Host Controller Driver - (.NEC Electronics Corporation.) [HKLM][64Bits] -- InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B} O42 - Logiciel: NEC Electronics USB 3.0 Host Controller Driver - (.NEC Electronics Corporation.) [HKLM][64Bits] -- {D7BF9739-8A68-4335-BBEE-37752AD9E86B} O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29} O42 - Logiciel: NVIDIA Pilote 3D Vision 311.06 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision O42 - Logiciel: NVIDIA Pilote graphique 311.06 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo O42 - Logiciel: PAYDAY 2 - (.OVERKILL - a Starbreeze Studio..) [HKLM][64Bits] -- Steam App 218620 O42 - Logiciel: ROCCAT Valo Keyboard Driver - (...) [HKLM][64Bits] -- {D1BA65A8-0F0E-4ACA-9B4D-2A080C561D35} O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Skype™ 6.14 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7} O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3} O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU][64Bits] -- TeamSpeak 3 Client O42 - Logiciel: TuneUp Utilities - (.TuneUp Software.) [HKLM][64Bits] -- TuneUp Utilities O42 - Logiciel: Updater - (.Creative Island Media, LLC.) [HKLM][64Bits] -- {D54E3D9F-FEB8-4D2D-A138-B69A5C80080B} O42 - Logiciel: VLC media player 1.0.1 - (.VideoLAN Team.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: Visual C++ 8.0 Runtime Setup Package (x64) - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D} O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} =>.Microsoft Corporation O42 - Logiciel: avast! Pro Antivirus v5.0.677.0 - (.Alwil Software.) [HKLM][64Bits] -- avast5 O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {F73A118B-8271-47E2-8790-0C636B2539C5} ~ Logic: 32 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\ABBYY] [HKCU\Software\ALWIL Software] [HKCU\Software\ASIO] [HKCU\Software\ASUS] [HKCU\Software\Adobe-BackupByPhotoshopPortable] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Avg] [HKCU\Software\AppDataLow\Software\Adobe] [HKCU\Software\AppDataLow\Software\BittorrentBar_FR] =>P2P.BitTorrent [HKCU\Software\AppDataLow\Software\DynConIE] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Audacity] [HKCU\Software\AutoPrntApp] [HKCU\Software\Avg] [HKCU\Software\Blizzard Entertainment] [HKCU\Software\Bugsplat] [HKCU\Software\ClassesB] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Cyanide] [HKCU\Software\DT Soft] [HKCU\Software\FIXIO PC Utilities] [HKCU\Software\FLT] [HKCU\Software\Google] [HKCU\Software\IGA] [HKCU\Software\IM Providers] [HKCU\Software\IncrediMail] [HKCU\Software\Lavalys] [HKCU\Software\Leadertech] [HKCU\Software\LexmarkInkjet] [HKCU\Software\LexmarkPhoto] [HKCU\Software\Lexmark] [HKCU\Software\LogiShrd] [HKCU\Software\Logitech] [HKCU\Software\MCAFEE] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Megaupload] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NEC Electronics] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\PTP] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\ROCCAT] [HKCU\Software\Razer] [HKCU\Software\Realtek] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Skype] [HKCU\Software\SuperSoftwarePackage] [HKCU\Software\The Creative Assembly] [HKCU\Software\Trolltech] [HKCU\Software\TuneUp] [HKCU\Software\Ubisoft] [HKCU\Software\Valve] [HKCU\Software\Ventrilo] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\Xi] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ASIO] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\BrowserChoice] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\GEAR Software] [HKLM\Software\IM Providers] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\LexmarkInkjet] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\ODBC] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Sonic] [HKLM\Software\TuneUp] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wow6432Node\ABBYY] [HKLM\Software\Wow6432Node\AGEIA Technologies] [HKLM\Software\Wow6432Node\ALWIL Software] [HKLM\Software\Wow6432Node\AVAST Software] [HKLM\Software\Wow6432Node\Adobe-BackupByPhotoshopPortable] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\Apple Computer, Inc.] [HKLM\Software\Wow6432Node\Apple Inc.] [HKLM\Software\Wow6432Node\Avg] [HKLM\Software\Wow6432Node\Bunndle] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\Combined-Community-Codec-Pack] [HKLM\Software\Wow6432Node\DICE] [HKLM\Software\Wow6432Node\DT Soft] [HKLM\Software\Wow6432Node\Electronic Arts] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\IM Providers] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\InterVideo] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\Lame For Audacity] [HKLM\Software\Wow6432Node\LexmarkInkjet] [HKLM\Software\Wow6432Node\Lexmark] [HKLM\Software\Wow6432Node\Licenses] [HKLM\Software\Wow6432Node\Loader] [HKLM\Software\Wow6432Node\LogiShrd] [HKLM\Software\Wow6432Node\Logitech] [HKLM\Software\Wow6432Node\MAGIX] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\McAfee.com] [HKLM\Software\Wow6432Node\MimarSinan] [HKLM\Software\Wow6432Node\Mircrosoft] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\NVIDIA Corporation] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\PKR] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\ROCCAT] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Riot Games] [HKLM\Software\Wow6432Node\Safer Networking Limited] [HKLM\Software\Wow6432Node\Sensible Vision] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\Steinberg] [HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM [HKLM\Software\Wow6432Node\Trion] [HKLM\Software\Wow6432Node\TuneUp] [HKLM\Software\Wow6432Node\Valve] [HKLM\Software\Wow6432Node\VideoLAN] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\Xi] [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node] [HKLM\Software\vLite] ~ Key Software: 250 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 22/04/2013 - 18:05:56 - [121,023] ----D C:\Program Files (x86)\Adobe O43 - CFD: 09/06/2010 - 13:23:54 - [231,422] ----D C:\Program Files (x86)\Adobe Photoshop CS4 =>.Adobe Systems Incorporated O43 - CFD: 21/08/2013 - 17:54:04 - [0] ----D C:\Program Files (x86)\AGEIA Technologies O43 - CFD: 12/07/2011 - 11:23:37 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc O43 - CFD: 15/12/2013 - 13:21:34 - [50,165] ----D C:\Program Files (x86)\Audacity O43 - CFD: 10/06/2010 - 11:41:02 - [0] ----D C:\Program Files (x86)\AVG O43 - CFD: 28/10/2013 - 21:05:59 - [1,073] ----D C:\Program Files (x86)\BitTorrent =>P2P.BitTorrent O43 - CFD: 27/10/2011 - 11:51:22 - [0,586] ----D C:\Program Files (x86)\Bonjour O43 - CFD: 12/03/2014 - 09:49:38 - [453,201] ----D C:\Program Files (x86)\Common Files O43 - CFD: 06/09/2013 - 19:44:13 - [22,488] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 09/03/2013 - 15:58:13 - [-310,914] ----D C:\Program Files (x86)\Diablo III O43 - CFD: 21/08/2013 - 08:18:14 - [0] ----D C:\Program Files (x86)\dumps O43 - CFD: 18/08/2011 - 11:25:01 - [15,900] ----D C:\Program Files (x86)\Help O43 - CFD: 15/03/2013 - 11:07:54 - [32,437] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 10/06/2010 - 11:13:22 - [12,396] ----D C:\Program Files (x86)\Intel O43 - CFD: 11/09/2013 - 16:48:29 - [4,494] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 21/09/2013 - 11:25:21 - [174,623] ----D C:\Program Files (x86)\iTunes O43 - CFD: 12/03/2014 - 09:24:37 - [7,084] ----D C:\Program Files (x86)\Kinoni O43 - CFD: 15/12/2013 - 13:30:36 - [1,540] ----D C:\Program Files (x86)\Lame For Audacity O43 - CFD: 21/10/2011 - 17:09:08 - [37,660] ----D C:\Program Files (x86)\Lexmark Pro200-S500 Series O43 - CFD: 02/12/2010 - 22:41:42 - [0,549] ----D C:\Program Files (x86)\MagicDisc O43 - CFD: 18/08/2011 - 11:36:45 - [0,042] ----D C:\Program Files (x86)\MagicISO O43 - CFD: 09/05/2012 - 22:41:54 - [37,927] ----D C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 28/09/2010 - 10:56:01 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 24/11/2012 - 22:20:15 - [3,469] ----D C:\Program Files (x86)\Microsoft Chart Controls O43 - CFD: 05/05/2012 - 17:56:52 - [36,154] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 12/12/2013 - 16:02:06 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 09/05/2012 - 22:43:09 - [1,314] ----D C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 09/05/2012 - 22:44:38 - [7,774] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 07/03/2014 - 11:44:49 - [51,605] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 15/12/2013 - 13:53:47 - [0,216] ----D C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 09/05/2012 - 22:45:47 - [0,025] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 09/06/2010 - 13:23:09 - [1,458] ----D C:\Program Files (x86)\MSECache O43 - CFD: 10/06/2010 - 11:16:43 - [0,927] ----D C:\Program Files (x86)\NEC Electronics O43 - CFD: 09/06/2010 - 13:23:11 - [201,781] ----D C:\Program Files (x86)\Nero 9.0.9.4 O43 - CFD: 21/08/2013 - 17:54:04 - [99,433] ----D C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 26/09/2011 - 16:27:26 - [0] ----D C:\Program Files (x86)\Pando Networks O43 - CFD: 10/06/2010 - 11:09:59 - [5,253] ----D C:\Program Files (x86)\Realtek O43 - CFD: 14/07/2009 - 06:32:38 - [36,813] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 10/10/2011 - 09:55:10 - [39,689] ----D C:\Program Files (x86)\ROCCAT O43 - CFD: 14/05/2012 - 17:14:22 - [102,605] ----D C:\Program Files (x86)\Safari O43 - CFD: 12/03/2014 - 09:49:38 - [23,259] R---D C:\Program Files (x86)\Skype O43 - CFD: 07/03/2014 - 08:57:38 - [1452,308] ----D C:\Program Files (x86)\Steam O43 - CFD: 21/09/2011 - 14:32:18 - [0,130] ----D C:\Program Files (x86)\TeamViewer O43 - CFD: 10/06/2010 - 11:10:20 - [0] --H-D C:\Program Files (x86)\Temp O43 - CFD: 10/06/2010 - 11:42:24 - [57,663] ----D C:\Program Files (x86)\TuneUp Utilities 2010 O43 - CFD: 13/11/2012 - 17:16:31 - [0,004] ----D C:\Program Files (x86)\Ubisoft O43 - CFD: 11/01/2014 - 01:13:49 - [0] ----D C:\Program Files (x86)\Uniblue O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information O43 - CFD: 09/06/2010 - 13:23:57 - [71,017] ----D C:\Program Files (x86)\VideoLAN O43 - CFD: 14/07/2009 - 16:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 07/07/2012 - 14:49:07 - [59,542] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 13/09/2011 - 07:31:22 - [5,895] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 14/10/2010 - 22:46:53 - [4,791] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 14/07/2009 - 16:24:08 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 14/07/2009 - 06:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 14/07/2009 - 16:24:08 - [5,716] ----D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 20/08/2009 - 12:22:02 - [4,775] ----D C:\Program Files (x86)\Windows Virtual PC O43 - CFD: 21/06/2010 - 10:23:24 - [0] ----D C:\Program Files (x86)\WinRAR O43 - CFD: 12/03/2014 - 16:04:39 - [17,279] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 10/03/2014 - 15:12:59 - [0,005] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 08/09/2013 - 15:13:29 - [45,857] ----D C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 22/04/2013 - 18:06:02 - [6,301] ----D C:\Program Files (x86)\Common Files\Adobe-BackupByPhotoshopPortable O43 - CFD: 21/09/2013 - 11:24:54 - [238,433] ----D C:\Program Files (x86)\Common Files\Apple O43 - CFD: 15/05/2012 - 07:20:53 - [0,374] ----D C:\Program Files (x86)\Common Files\BioWare O43 - CFD: 22/10/2012 - 18:23:40 - [1,819] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment O43 - CFD: 29/06/2010 - 21:00:03 - [1,543] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment.76ae93af.temp O43 - CFD: 29/06/2010 - 17:13:33 - [0] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment.temp O43 - CFD: 10/10/2011 - 09:55:03 - [3,098] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 11/04/2013 - 21:35:23 - [2,023] ----D C:\Program Files (x86)\Common Files\LogiShrd O43 - CFD: 22/10/2012 - 18:13:06 - [0] ----D C:\Program Files (x86)\Common Files\LWS O43 - CFD: 07/07/2012 - 14:46:49 - [130,791] ----D C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 07/12/2013 - 18:02:42 - [4,551] ----D C:\Program Files (x86)\Common Files\Nero O43 - CFD: 10/06/2010 - 11:13:25 - [0,159] ----D C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 12/03/2014 - 09:49:38 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype O43 - CFD: 21/08/2013 - 08:16:20 - [0,388] ----D C:\Program Files (x86)\Common Files\Steam O43 - CFD: 06/09/2013 - 21:42:23 - [0] ----D C:\Program Files (x86)\Common Files\Steinberg O43 - CFD: 13/11/2011 - 12:57:28 - [15,951] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 04/10/2010 - 11:50:47 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 05/01/2014 - 13:33:38 - [2,775] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 O43 - CFD: 10/03/2014 - 15:12:47 - [0] ----D C:\ProgramData\Adobe O43 - CFD: 26/04/2013 - 11:27:41 - [302,217] ----D C:\ProgramData\Adobe-BackupByPhotoshopPortable O43 - CFD: 16/11/2012 - 09:19:31 - [5,669] ----D C:\ProgramData\Alwil Software O43 - CFD: 14/10/2010 - 23:37:49 - [600,906] ----D C:\ProgramData\Apple O43 - CFD: 14/10/2010 - 22:30:27 - [260,518] ----D C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Application Data O43 - CFD: 13/10/2011 - 23:40:22 - [74,087] ----D C:\ProgramData\avg9 O43 - CFD: 22/03/2012 - 14:19:11 - [103,353] ----D C:\ProgramData\Battle.net O43 - CFD: 01/02/2014 - 12:55:37 - [2,272] ----D C:\ProgramData\BetterExperience O43 - CFD: 29/06/2010 - 17:13:03 - [0,003] ----D C:\ProgramData\Blizzard O43 - CFD: 22/10/2012 - 18:15:31 - [340,466] ----D C:\ProgramData\Blizzard Entertainment O43 - CFD: 09/06/2010 - 13:15:53 - [0] -SH-D C:\ProgramData\Bureau O43 - CFD: 05/05/2012 - 17:51:15 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Documents O43 - CFD: 22/10/2012 - 18:15:00 - [0,109] ----D C:\ProgramData\Electronic Arts O43 - CFD: 03/07/2013 - 09:24:56 - [0,002] ----D C:\ProgramData\eLicenser O43 - CFD: 27/10/2011 - 11:40:22 - [0] ----D C:\ProgramData\Ezprint O43 - CFD: 09/06/2010 - 13:15:53 - [0] -SH-D C:\ProgramData\Favoris O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Favorites O43 - CFD: 15/12/2013 - 14:06:49 - [1,424] ----D C:\ProgramData\InternetUpdater O43 - CFD: 05/06/2013 - 18:05:47 - [0,438] ----D C:\ProgramData\Lexmark Pro200-S500 Series O43 - CFD: 11/04/2013 - 21:35:25 - [0] ----D C:\ProgramData\LogiShrd O43 - CFD: 14/10/2010 - 22:54:38 - [5,273] ----D C:\ProgramData\Logitech O43 - CFD: 04/02/2014 - 10:45:54 - [0,020] ----D C:\ProgramData\Lx_cats O43 - CFD: 11/01/2014 - 01:21:50 - [0,229] ----D C:\ProgramData\Malwarebytes O43 - CFD: 06/09/2012 - 23:07:47 - [0] ----D C:\ProgramData\McAfee O43 - CFD: 09/06/2010 - 13:15:53 - [0] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 11/01/2014 - 18:01:16 - [195,256] -S--D C:\ProgramData\Microsoft O43 - CFD: 11/04/2013 - 09:56:47 - [0,405] ----D C:\ProgramData\Microsoft Help O43 - CFD: 09/06/2010 - 13:15:53 - [0] -SH-D C:\ProgramData\Modèles O43 - CFD: 14/05/2012 - 17:00:13 - [0] ----D C:\ProgramData\Mozilla O43 - CFD: 12/03/2014 - 09:00:18 - [2,328] ----D C:\ProgramData\NVIDIA O43 - CFD: 09/06/2010 - 13:33:47 - [2,104] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 22/10/2012 - 18:15:00 - [0] ----D C:\ProgramData\Origin O43 - CFD: 15/12/2013 - 11:10:02 - [1,221] ----D C:\ProgramData\RHelpers =>PUP.SearchDonkey O43 - CFD: 12/03/2014 - 09:49:36 - [149,918] ----D C:\ProgramData\Skype O43 - CFD: 10/01/2014 - 21:25:01 - [28,175] ----D C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Start Menu O43 - CFD: 10/01/2014 - 22:20:09 - [0,004] ----D C:\ProgramData\Steam O43 - CFD: 06/09/2013 - 21:42:23 - [0] ----D C:\ProgramData\Steinberg O43 - CFD: 28/06/2013 - 23:09:43 - [0] ----D C:\ProgramData\Syncrosoft O43 - CFD: 15/12/2013 - 11:10:38 - [0] ----D C:\ProgramData\TEMP O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Templates O43 - CFD: 10/06/2010 - 11:42:05 - [13,174] ----D C:\ProgramData\TuneUp Software O43 - CFD: 13/04/2011 - 10:39:47 - [0] ----D C:\ProgramData\Ubisoft O43 - CFD: 15/12/2013 - 11:10:02 - [1,674] ----D C:\ProgramData\Updater =>PUP.CrossRider O43 - CFD: 15/12/2013 - 13:50:21 - [0,110] ----D C:\ProgramData\Websteroids =>PUP.TubeDimmer O43 - CFD: 14/10/2010 - 22:30:34 - [0,004] ----D C:\ProgramData\{35733029-9859-49C7-8475-1E78E2AAE413} O43 - CFD: 21/09/2011 - 19:59:44 - [0,011] ----D C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42} O43 - CFD: 14/10/2010 - 23:39:30 - [0,002] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} O43 - CFD: 10/06/2010 - 11:41:25 - [17,670] -SH-D C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} O43 - CFD: 30/06/2010 - 10:22:38 - [7,009] ----D C:\Users\Chuck\AppData\Roaming\Acreon O43 - CFD: 10/03/2014 - 22:56:13 - [1,477] ----D C:\Users\Chuck\AppData\Roaming\Adobe O43 - CFD: 23/04/2013 - 10:45:32 - [7,267] ----D C:\Users\Chuck\AppData\Roaming\Adobe-BackupByPhotoshopPortable O43 - CFD: 23/09/2013 - 08:20:56 - [-137,278] ----D C:\Users\Chuck\AppData\Roaming\Apple Computer O43 - CFD: 16/12/2013 - 18:21:35 - [0,002] ----D C:\Users\Chuck\AppData\Roaming\Audacity O43 - CFD: 28/06/2010 - 18:36:39 - [0,018] ----D C:\Users\Chuck\AppData\Roaming\AVG9 O43 - CFD: 12/03/2014 - 14:43:40 - [13,608] ----D C:\Users\Chuck\AppData\Roaming\BitTorrent =>P2P.BitTorrent O43 - CFD: 07/03/2014 - 08:57:39 - [1,841] ----D C:\Users\Chuck\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 12/03/2014 - 13:42:22 - [0,001] ----D C:\Users\Chuck\AppData\Roaming\dvdcss O43 - CFD: 06/01/2013 - 16:05:39 - [0] ----D C:\Users\Chuck\AppData\Roaming\FreeAudioPack O43 - CFD: 09/06/2010 - 13:16:35 - [0] ----D C:\Users\Chuck\AppData\Roaming\Identities O43 - CFD: 28/10/2013 - 21:02:12 - [0,022] ----D C:\Users\Chuck\AppData\Roaming\inkscape O43 - CFD: 10/06/2010 - 11:13:11 - [0] ----D C:\Users\Chuck\AppData\Roaming\InstallShield O43 - CFD: 09/10/2010 - 14:04:32 - [0] ----D C:\Users\Chuck\AppData\Roaming\Leadertech O43 - CFD: 27/09/2011 - 10:53:12 - [0] ----D C:\Users\Chuck\AppData\Roaming\LolClient O43 - CFD: 09/06/2010 - 13:28:53 - [0,066] ----D C:\Users\Chuck\AppData\Roaming\Macromedia O43 - CFD: 11/01/2014 - 01:21:57 - [0] ----D C:\Users\Chuck\AppData\Roaming\Malwarebytes O43 - CFD: 14/07/2009 - 16:35:02 - [0] ----D C:\Users\Chuck\AppData\Roaming\Media Center Programs O43 - CFD: 12/10/2012 - 18:43:39 - [0] ----D C:\Users\Chuck\AppData\Roaming\Media Player Classic O43 - CFD: 03/02/2014 - 11:11:22 - [12,553] -S--D C:\Users\Chuck\AppData\Roaming\Microsoft O43 - CFD: 29/06/2010 - 18:32:06 - [36,023] ----D C:\Users\Chuck\AppData\Roaming\Mozilla O43 - CFD: 13/02/2014 - 11:58:29 - [0,032] ----D C:\Users\Chuck\AppData\Roaming\NVIDIA O43 - CFD: 27/09/2012 - 11:51:27 - [0,035] ----D C:\Users\Chuck\AppData\Roaming\Origin O43 - CFD: 15/03/2011 - 12:40:21 - [0,002] ----D C:\Users\Chuck\AppData\Roaming\RIFT O43 - CFD: 12/03/2014 - 16:04:17 - [9,989] ----D C:\Users\Chuck\AppData\Roaming\Skype O43 - CFD: 15/03/2011 - 08:03:54 - [0,032] ----D C:\Users\Chuck\AppData\Roaming\skypePM O43 - CFD: 06/09/2013 - 21:42:58 - [0,001] ----D C:\Users\Chuck\AppData\Roaming\Steinberg O43 - CFD: 21/09/2010 - 14:36:23 - [0,014] ----D C:\Users\Chuck\AppData\Roaming\teamspeak2 O43 - CFD: 21/09/2011 - 14:32:51 - [0,001] ----D C:\Users\Chuck\AppData\Roaming\TeamViewer O43 - CFD: 11/01/2014 - 16:55:13 - [1,948] ----D C:\Users\Chuck\AppData\Roaming\The Creative Assembly O43 - CFD: 13/01/2014 - 00:58:49 - [5,977] ----D C:\Users\Chuck\AppData\Roaming\TS3Client O43 - CFD: 10/06/2010 - 11:42:12 - [0,078] ----D C:\Users\Chuck\AppData\Roaming\TuneUp Software O43 - CFD: 11/01/2014 - 01:13:50 - [0] ----D C:\Users\Chuck\AppData\Roaming\Uniblue O43 - CFD: 21/09/2010 - 14:36:17 - [0] ----D C:\Users\Chuck\AppData\Roaming\Ventrilo O43 - CFD: 12/03/2014 - 13:51:18 - [2,170] ----D C:\Users\Chuck\AppData\Roaming\vlc O43 - CFD: 12/06/2010 - 17:14:10 - [0] ----D C:\Users\Chuck\AppData\Roaming\WinRAR O43 - CFD: 03/11/2010 - 10:46:19 - [0,001] ----D C:\Users\Chuck\AppData\Roaming\Xi O43 - CFD: 12/03/2014 - 16:05:25 - [0,016] ----D C:\Users\Chuck\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 30/06/2010 - 10:41:37 - [0] ----D C:\Users\Chuck\AppData\Local\._Revolution_ O43 - CFD: 12/06/2010 - 18:53:12 - [0,003] ----D C:\Users\Chuck\AppData\Local\4A Games O43 - CFD: 10/03/2014 - 22:56:13 - [11,944] ----D C:\Users\Chuck\AppData\Local\Adobe O43 - CFD: 22/04/2013 - 18:05:25 - [17,941] ----D C:\Users\Chuck\AppData\Local\Adobe-BackupByPhotoshopPortable O43 - CFD: 14/10/2010 - 22:29:36 - [0] ----D C:\Users\Chuck\AppData\Local\Apple O43 - CFD: 21/09/2013 - 12:30:28 - [21,997] ----D C:\Users\Chuck\AppData\Local\Apple Computer O43 - CFD: 09/06/2010 - 13:16:09 - [0] -SH-D C:\Users\Chuck\AppData\Local\Application Data O43 - CFD: 11/07/2010 - 14:02:17 - [21,468] ----D C:\Users\Chuck\AppData\Local\Apps O43 - CFD: 30/06/2010 - 08:39:32 - [0] ----D C:\Users\Chuck\AppData\Local\Blizzard Entertainment O43 - CFD: 08/12/2010 - 22:51:16 - [0] ----D C:\Users\Chuck\AppData\Local\Deployment O43 - CFD: 10/06/2010 - 11:16:23 - [3,171] ----D C:\Users\Chuck\AppData\Local\Downloaded Installations O43 - CFD: 17/12/2012 - 16:05:34 - [0] ----D C:\Users\Chuck\AppData\Local\ElevatedDiagnostics O43 - CFD: 23/10/2012 - 11:48:09 - [0] ----D C:\Users\Chuck\AppData\Local\FLT O43 - CFD: 11/02/2012 - 20:52:46 - [0,003] ----D C:\Users\Chuck\AppData\Local\FreeMi O43 - CFD: 09/06/2010 - 13:16:09 - [0] -SH-D C:\Users\Chuck\AppData\Local\Historique O43 - CFD: 02/11/2012 - 16:24:01 - [0,915] ----D C:\Users\Chuck\AppData\Local\LogiShrd O43 - CFD: 24/07/2010 - 09:40:46 - [0] ----D C:\Users\Chuck\AppData\Local\Logitech-LS O43 - CFD: 14/06/2012 - 18:14:31 - [0] ----D C:\Users\Chuck\AppData\Local\Macromedia O43 - CFD: 03/10/2012 - 10:07:02 - [407,861] ----D C:\Users\Chuck\AppData\Local\Microsoft O43 - CFD: 01/09/2012 - 13:00:44 - [0,087] ----D C:\Users\Chuck\AppData\Local\Microsoft Games O43 - CFD: 21/06/2010 - 11:46:05 - [0] ----D C:\Users\Chuck\AppData\Local\Microsoft Help O43 - CFD: 07/10/2013 - 21:54:32 - [347,373] ----D C:\Users\Chuck\AppData\Local\Mozilla O43 - CFD: 15/10/2013 - 12:29:05 - [0,351] ----D C:\Users\Chuck\AppData\Local\Overwolf O43 - CFD: 21/08/2013 - 17:55:31 - [0,017] ----D C:\Users\Chuck\AppData\Local\PAYDAY 2 O43 - CFD: 15/12/2013 - 11:10:16 - [0] ----D C:\Users\Chuck\AppData\Local\Programs O43 - CFD: 12/03/2014 - 09:50:09 - [4,549] ----D C:\Users\Chuck\AppData\Local\Skype O43 - CFD: 21/06/2010 - 11:30:11 - [0,010] ----D C:\Users\Chuck\AppData\Local\storage O43 - CFD: 13/09/2013 - 17:48:22 - [75,168] ----D C:\Users\Chuck\AppData\Local\TeamSpeak 3 Client O43 - CFD: 12/03/2014 - 16:04:10 - [34,971] ----D C:\Users\Chuck\AppData\Local\Temp O43 - CFD: 09/06/2010 - 13:16:09 - [0] -SH-D C:\Users\Chuck\AppData\Local\Temporary Internet Files O43 - CFD: 15/05/2012 - 15:00:05 - [0,003] ----D C:\Users\Chuck\AppData\Local\WBFSManager O43 - CFD: 19/10/2012 - 18:14:19 - [0,023] ----D C:\Users\Chuck\AppData\Local\Windows Live O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 13/07/2012 - 23:03:44 - [0] R---D C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 11/09/2013 - 13:22:31 - [0] R---D C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 21/08/2013 - 08:41:23 - [0,001] ----D C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam O43 - CFD: 22/08/2013 - 04:10:17 - [0,002] ----D C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client O43 - CFD: 12/06/2010 - 18:30:27 - [0,003] ----D C:\Users\Chuck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ 112 Dossier CLSID vide (CLSID Empty Folder) ~ Program Folder: 323 Scanned in 01mn 00s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.3F483D2DA011D4C9E989CD7AF99CE505] - 05/03/2014 - 21:52:45 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1532276] O44 - LFC:[MD5.D887487AD473427DC1AD597D108E2191] - 05/03/2014 - 21:52:45 ---A- . (...) -- C:\Windows\System32\perfc009.dat [104752] O44 - LFC:[MD5.31C07B84317E1BBE24F80260357FA383] - 05/03/2014 - 21:52:45 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [128990] O44 - LFC:[MD5.A63E392512B2AA3E589758BC72A4E51C] - 05/03/2014 - 21:52:45 ---A- . (...) -- C:\Windows\System32\perfh009.dat [610434] O44 - LFC:[MD5.D08D0D944B48A7A36A5DD6B3558CA41F] - 05/03/2014 - 21:52:45 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [699368] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/03/2014 - 18:16:41 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.C786F8F982E1509B5A55C1B900D94C09] - 10/03/2014 - 18:57:13 ---A- . (...) -- C:\Windows\MEMORY.DMP [322952639] O44 - LFC:[MD5.B81BDA524A66A33C6C24B9CBA5A762D1] - 12/03/2014 - 09:00:14 ---A- . (...) -- C:\Windows\PFRO.log [3516] O44 - LFC:[MD5.878B3DDD7B176224F57E5F3934864153] - 12/03/2014 - 09:00:18 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.76E5C59F4CCE352CD6164E343C019BFA] - 12/03/2014 - 09:03:56 ---A- . (...) -- C:\Windows\WindowsUpdate.log [35484] O44 - LFC:[MD5.6640D7A264E2542CF4E14E2DDDF9597B] - 12/03/2014 - 09:26:17 ---A- . (...) -- C:\Windows\setupact.log [1024] ~ Files: 11 Scanned in 00mn 54s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.1E13B4604D43680D785B94F2D205D558] - 01/03/2014 - 00:47:56 ---A- - C:\Windows\Prefetch\SETUP{54B171DA-6587-461A-91D2-9148A69A.pf O45 - LFCP:[MD5.832701DF655F1957ED5269633A6AD91D] - 01/03/2014 - 14:13:53 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-61AE5AB6.pf O45 - LFCP:[MD5.5C317574567E54D209E109EBE47A1D9C] - 01/03/2014 - 14:39:47 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf O45 - LFCP:[MD5.15D4A6B88C9A8D498CE1CDD7878AC77E] - 01/03/2014 - 16:22:09 ---A- - C:\Windows\Prefetch\SETUP{B9E7F09A-B3E5-441E-A08F-932D1B47.pf O45 - LFCP:[MD5.4E9309B0CBC43A2D962F70B3923A6626] - 01/03/2014 - 22:57:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-97229F6A.pf O45 - LFCP:[MD5.67B5CD474BF026ABF7B8614CBC7EF51D] - 05/03/2014 - 10:55:24 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:[MD5.538B2B986364A552DF3514341572D53D] - 05/03/2014 - 11:24:44 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf O45 - LFCP:[MD5.32A1050CABA377C09A53DEFB4BAF5E84] - 05/03/2014 - 11:53:34 ---A- - C:\Windows\Prefetch\LOLLAUNCHER.EXE-744084FA.pf O45 - LFCP:[MD5.76F64F692C53F64D11549353153D0AD7] - 05/03/2014 - 11:55:35 ---A- - C:\Windows\Prefetch\LOLCLIENT.EXE-54FD08FD.pf O45 - LFCP:[MD5.837844D4F1C571BC726A640728400C0C] - 05/03/2014 - 14:29:34 ---A- - C:\Windows\Prefetch\MAGICDISC.EXE-B1CC5F31.pf O45 - LFCP:[MD5.186846FB0E3F7DCAF222EFB83CDE0123] - 05/03/2014 - 14:29:43 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf O45 - LFCP:[MD5.7F796038CD463F85B1436E5ECAE3A8AB] - 05/03/2014 - 14:54:37 ---A- - C:\Windows\Prefetch\COLOUR BURN.EXE-71B431AF.pf O45 - LFCP:[MD5.FEB177BE0FBFBE6A49DABA7BF3E7A496] - 05/03/2014 - 15:37:44 ---A- - C:\Windows\Prefetch\DTLITE.EXE-368347E6.pf O45 - LFCP:[MD5.6ADEA322081ED66237BD4A365544141A] - 05/03/2014 - 15:49:43 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-AB64D257.pf O45 - LFCP:[MD5.C96D51BD4DD229A7705715518D60E831] - 05/03/2014 - 16:45:36 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf O45 - LFCP:[MD5.C3DCC51B0B995C827184BFFB19258367] - 05/03/2014 - 20:08:04 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf O45 - LFCP:[MD5.41F85FE4F5EE4EDD8E21FAA36D74D167] - 05/03/2014 - 20:46:39 ---A- - C:\Windows\Prefetch\LEAGUE OF LEGENDS.EXE-58ACA819.pf O45 - LFCP:[MD5.3B5AD20CA0851999B5BEAB656FC5E187] - 05/03/2014 - 21:53:52 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0AD23F23.pf O45 - LFCP:[MD5.84F71947F06AC3B558664008CAF5EF3A] - 07/03/2014 - 08:52:32 ---A- - C:\Windows\Prefetch\SETUP{96410938-F9AA-40A3-A9AD-6940736B.pf O45 - LFCP:[MD5.F425511C2343E18B18B8197531CE3E78] - 07/03/2014 - 08:57:07 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf O45 - LFCP:[MD5.172C656D6B2BFE62B0E2B8987509A588] - 07/03/2014 - 08:58:02 ---A- - C:\Windows\Prefetch\AVAST.SETUP-3DA1C849.pf O45 - LFCP:[MD5.8EF7653428A71077C9B6299C21C02889] - 07/03/2014 - 09:01:32 ---A- - C:\Windows\Prefetch\PLUTIL.EXE-260A5750.pf O45 - LFCP:[MD5.5031001651FF36D2CA901AF4438D67B0] - 07/03/2014 - 09:03:55 ---A- - C:\Windows\Prefetch\ONECLICK.EXE-CAF83031.pf O45 - LFCP:[MD5.319738872817A37B4DDF9E987FA8CF10] - 07/03/2014 - 09:29:33 ---A- - C:\Windows\Prefetch\LOLLAUNCHER.EXE-FB3C34E7.pf O45 - LFCP:[MD5.BF5F65C497A7E1DC064291983DDC406C] - 07/03/2014 - 09:29:53 ---A- - C:\Windows\Prefetch\JPATCH.EXE-0EBD30BC.pf O45 - LFCP:[MD5.A8C6935E63442426510EF1767A2B1214] - 07/03/2014 - 10:00:16 ---A- - C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf O45 - LFCP:[MD5.95554B5A68A717ABE4A15C4A3E989A50] - 07/03/2014 - 18:04:32 ---A- - C:\Windows\Prefetch\WINWORD.EXE-778F7C2B.pf O45 - LFCP:[MD5.BD6E89F164F9F8786255E4C24AD2AD08] - 07/03/2014 - 18:05:06 ---A- - C:\Windows\Prefetch\OSPPSVC.EXE-E53D3CC0.pf O45 - LFCP:[MD5.9A30465DA7462A4E5761C49E3CEC52C0] - 07/03/2014 - 18:33:52 ---A- - C:\Windows\Prefetch\OSE.EXE-533D8AC9.pf O45 - LFCP:[MD5.EB5505B8A66796CFA285A71EEEFB7468] - 07/03/2014 - 19:50:34 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-3CBE0A8E.pf O45 - LFCP:[MD5.2ED0445D31C4EAD82DF8539464C409A1] - 07/03/2014 - 20:00:11 ---A- - C:\Windows\Prefetch\TUNEUPSYSTEMSTATUSCHECK.EXE-68840A41.pf O45 - LFCP:[MD5.E788BD5FC64B8DF881AAF7C60CCCE403] - 07/03/2014 - 20:56:41 ---A- - C:\Windows\Prefetch\SETUP{BE3C3F4C-F0B9-430A-B701-24B043B2.pf O45 - LFCP:[MD5.00E198D590FA843FF416CC7233915EC1] - 09/03/2014 - 14:13:05 ---A- - C:\Windows\Prefetch\Layout.ini O45 - LFCP:[MD5.81199DE6A76AE777C050E9B2C958C32A] - 09/03/2014 - 14:13:15 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf O45 - LFCP:[MD5.AE888ABFE872A8783E694659987855EE] - 09/03/2014 - 14:15:57 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf O45 - LFCP:[MD5.A72D20F29385E2D6636924134AD2464F] - 09/03/2014 - 14:15:58 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf O45 - LFCP:[MD5.DF3D22E6F6F4DE98CA90A6A8B386E05A] - 09/03/2014 - 14:17:57 ---A- - C:\Windows\Prefetch\POWERCFG.EXE-668FA411.pf O45 - LFCP:[MD5.03CA9695C769A32785D94E7276E70684] - 09/03/2014 - 14:23:51 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf O45 - LFCP:[MD5.77B75574F51A0B068088ACC7F6B8ED78] - 09/03/2014 - 14:28:18 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf O45 - LFCP:[MD5.1081053F9DF628540D6A5290F8076A1D] - 09/03/2014 - 14:32:04 ---A- - C:\Windows\Prefetch\READER_SL.EXE-38C1D083.pf O45 - LFCP:[MD5.50F6EAF5FCF4E287D0A23414117C49DC] - 09/03/2014 - 20:05:42 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf O45 - LFCP:[MD5.5E299CD458B46120D501CBBC6A312E71] - 09/03/2014 - 20:05:42 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-0E293DD6.pf O45 - LFCP:[MD5.C543046D502C8B1E0166805218B8BFC8] - 10/03/2014 - 09:48:20 ---A- - C:\Windows\Prefetch\WLIDSVCM.EXE-A6EF5B2F.pf O45 - LFCP:[MD5.8F21A865712365F2B22D7292956EDDAF] - 10/03/2014 - 10:01:50 ---A- - C:\Windows\Prefetch\LXEBLSCN.EXE-B078B833.pf O45 - LFCP:[MD5.7E8FBCBF3E3F8E33F701E786E2E90B06] - 10/03/2014 - 10:01:51 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-254441E9.pf O45 - LFCP:[MD5.AF68DA013BBA923D388FE9F9BEC94B4C] - 10/03/2014 - 10:03:39 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4F28A26F.pf O45 - LFCP:[MD5.954144564E8E1654D6E4BCDE4CB36BCC] - 10/03/2014 - 12:53:24 ---A- - C:\Windows\Prefetch\TUNEUPDEFRAGSERVICE.EXE-9298A0C0.pf O45 - LFCP:[MD5.860163DA6253849B850F5752BA6DE409] - 10/03/2014 - 18:58:52 ---A- - C:\Windows\Prefetch\BCSSYNC.EXE-3F6C64A2.pf O45 - LFCP:[MD5.ABCD676D09EF0F3F33D0A0D2D05D4312] - 10/03/2014 - 19:20:32 ---A- - C:\Windows\Prefetch\UPDATER.EXE-803F018B.pf O45 - LFCP:[MD5.38F68371E4B342598D4FF998C2720950] - 10/03/2014 - 19:20:42 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-6398125B.pf O45 - LFCP:[MD5.841E4E231DAF2D524E4187835E159C95] - 10/03/2014 - 19:20:42 ---A- - C:\Windows\Prefetch\NUSB3MON.EXE-3AA374F0.pf O45 - LFCP:[MD5.CCED644DB9FEE5FB789137ED3E701DF9] - 10/03/2014 - 19:21:01 ---A- - C:\Windows\Prefetch\SETUP{288DA167-673C-4182-BE2B-BEFD079A.pf O45 - LFCP:[MD5.FD413E503E75CBD88C0DC130A41A8826] - 10/03/2014 - 22:36:49 ---A- - C:\Windows\Prefetch\LXEBCOMS.EXE-A6813C61.pf O45 - LFCP:[MD5.1BD4D89285B9C56EB60B4CC245CFBA75] - 10/03/2014 - 22:37:06 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf O45 - LFCP:[MD5.0E39F691D37F20937D841D1CE1019898] - 10/03/2014 - 22:41:16 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf O45 - LFCP:[MD5.D69AFDBAA9AA3E395E5383D02A4B496F] - 10/03/2014 - 22:41:18 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-D0649312.pf O45 - LFCP:[MD5.CEF16F2BE973C4DFA26EF72526078144] - 10/03/2014 - 22:41:21 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf O45 - LFCP:[MD5.4E510991EE6B5509F510EF83C6F77F11] - 10/03/2014 - 22:41:26 ---A- - C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf O45 - LFCP:[MD5.56BAAE0BEFF96785C2C8624ED3211AA9] - 10/03/2014 - 22:41:27 ---A- - C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf O45 - LFCP:[MD5.F948FC2584EDBED59258916886E6501C] - 10/03/2014 - 22:41:28 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf O45 - LFCP:[MD5.C39E41749D30D5D5F16F98790C704345] - 10/03/2014 - 22:41:29 ---A- - C:\Windows\Prefetch\EZPRINT.EXE-9FB71EC8.pf O45 - LFCP:[MD5.C5FAAC4CC64E235752F37F8AC0138351] - 10/03/2014 - 22:41:29 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-D6B4B613.pf O45 - LFCP:[MD5.A262D622810160B23741EB9D9E862414] - 10/03/2014 - 22:56:23 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-D066635E.pf O45 - LFCP:[MD5.E79F7472009386824D6A983486F76A92] - 10/03/2014 - 23:06:13 ---A- - C:\Windows\Prefetch\LOL.LAUNCHER.EXE-4C860503.pf O45 - LFCP:[MD5.9E5208E5A5172D8F2A4E48950AE7BE5A] - 10/03/2014 - 23:06:23 ---A- - C:\Windows\Prefetch\RADS_USER_KERNEL.EXE-9DAAF573.pf O45 - LFCP:[MD5.E8CA5D5E04446BC0F0C28C656DF9C8F2] - 10/03/2014 - 23:07:26 ---A- - C:\Windows\Prefetch\LOLCLIENT.EXE-82D82FBA.pf O45 - LFCP:[MD5.40743D03290FDB63CAC79AADF17EA7B0] - 10/03/2014 - 23:46:14 ---A- - C:\Windows\Prefetch\LEAGUE OF LEGENDS.EXE-45D26196.pf O45 - LFCP:[MD5.068FE086465BFFA5932881E1F6B43FB6] - 11/03/2014 - 00:43:58 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf O45 - LFCP:[MD5.3C17E4B0CED73F8223BF006622A8D40D] - 11/03/2014 - 21:18:30 ---A- - C:\Windows\Prefetch\LXEBMON.EXE-F25FA8ED.pf O45 - LFCP:[MD5.18AC281CCFE747864A55EAAD9950B71C] - 11/03/2014 - 21:18:33 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C775D18D.pf O45 - LFCP:[MD5.B402EFD199894E237996BDDAAC5FFB57] - 11/03/2014 - 21:18:37 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf O45 - LFCP:[MD5.65F5BF8A000C8F835AEAD1D77A3D750B] - 11/03/2014 - 21:18:39 ---A- - C:\Windows\Prefetch\NVTRAY.EXE-DB83881B.pf O45 - LFCP:[MD5.24CB69E00D386C99369904A353FA6736] - 11/03/2014 - 21:18:40 ---A- - C:\Windows\Prefetch\CHROMEHELPER.EXE-548C768A.pf O45 - LFCP:[MD5.CD9992D6D7172CC9B7AFCA356C813717] - 11/03/2014 - 21:18:40 ---A- - C:\Windows\Prefetch\FIREFOXHELPER.EXE-82921DAC.pf O45 - LFCP:[MD5.9619BCA7C91F59A836F50F6A8E873BC6] - 11/03/2014 - 21:18:40 ---A- - C:\Windows\Prefetch\IEHELPER.EXE-3F5FE09A.pf O45 - LFCP:[MD5.92C14BE63B4467DB1F216A0AFF1386F8] - 11/03/2014 - 21:19:32 ---A- - C:\Windows\Prefetch\AgCx_SC4.db O45 - LFCP:[MD5.527A8501B895F56E19A9DE99E73026AA] - 11/03/2014 - 22:05:29 ---A- - C:\Windows\Prefetch\TUNEUPUTILITIESAPP64.EXE-5EA96539.pf O45 - LFCP:[MD5.EF5659D109F82CCDE43120883038F8E4] - 11/03/2014 - 22:05:38 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:[MD5.A0DF934D8C8373DD4791A40C2BB2CA4E] - 12/03/2014 - 09:01:30 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf O45 - LFCP:[MD5.04C5AFCB52F76CFC097505597C928ED2] - 12/03/2014 - 09:01:30 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf O45 - LFCP:[MD5.981A2662B744C4088CB31BCA55296893] - 12/03/2014 - 09:01:30 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf O45 - LFCP:[MD5.3C83DDBB21E418222826B9383104EA31] - 12/03/2014 - 09:01:47 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_12_0_0_70.E-BD0E8952.pf O45 - LFCP:[MD5.F24AEBFFC80FB886C16BD42DB2461080] - 12/03/2014 - 09:03:03 ---A- - C:\Windows\Prefetch\UNS.EXE-E6E49771.pf O45 - LFCP:[MD5.280507A40FFE862DD9F07680D318C24F] - 12/03/2014 - 09:03:04 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf O45 - LFCP:[MD5.B5E57C2CD2AEED4105761B3CE590DC97] - 12/03/2014 - 09:04:47 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf O45 - LFCP:[MD5.EA57DC0934AEB02763B8760B4F38571C] - 12/03/2014 - 09:13:46 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf O45 - LFCP:[MD5.0ABDA64D8EBB398D136EC7A1233AE939] - 12/03/2014 - 09:13:57 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-A3E35360.pf O45 - LFCP:[MD5.F7A21920C5C61B4B12B1572DA2D2C67F] - 12/03/2014 - 09:15:51 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E7777CC4.pf O45 - LFCP:[MD5.4786AE955EFE46CBA89A7FB684DD91AC] - 12/03/2014 - 09:20:41 ---A- - C:\Windows\Prefetch\WPDSHEXTAUTOPLAY.EXE-BD31DDCE.pf O45 - LFCP:[MD5.F96C1732AF52CEE4F05E7037FCEFA3B0] - 12/03/2014 - 09:20:43 ---A- - C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-17410B90.pf O45 - LFCP:[MD5.D1A788C7D83D541AF0B35509CF13FDBE] - 12/03/2014 - 09:20:44 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf O45 - LFCP:[MD5.5BDDA0050AA9AA90DA3AB1F65DF1BD27] - 12/03/2014 - 09:25:03 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf O45 - LFCP:[MD5.22E2B549DA9954F194B6E387B67948DB] - 12/03/2014 - 09:25:03 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf O45 - LFCP:[MD5.F9428D442F59520346C7CCF05BD790D4] - 12/03/2014 - 09:50:08 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-6768A320.pf O45 - LFCP:[MD5.7BCB46D94360C56C0091FC05F9B87A8F] - 12/03/2014 - 10:01:33 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf O45 - LFCP:[MD5.816A08077E4207DA8B45C244935CBAB6] - 12/03/2014 - 10:52:06 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf O45 - LFCP:[MD5.8F8005F6D4765EAC441B1983AABDC3A1] - 12/03/2014 - 12:55:35 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf O45 - LFCP:[MD5.E89710D84471100A3887D5550DCC6DF2] - 12/03/2014 - 12:56:26 ---A- - C:\Windows\Prefetch\BITTORRENT.EXE-5591B645.pf =>P2P.BitTorrent O45 - LFCP:[MD5.72056FB6C49F0B7D688AFC19B52FC5C7] - 12/03/2014 - 13:36:57 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1379276826-3411338212-1822049289-1000.db O45 - LFCP:[MD5.637F7B660CBC0B188EB92611074BD09F] - 12/03/2014 - 13:36:58 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1379276826-3411338212-1822049289-1000.db O45 - LFCP:[MD5.7BE58E303DEA291702552B7447254A91] - 12/03/2014 - 13:51:13 ---A- - C:\Windows\Prefetch\VLC.EXE-CC6F4A79.pf O45 - LFCP:[MD5.C2EB6B58D6A437C86A97EB32B4AFDAFB] - 12/03/2014 - 13:51:47 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-F1B02F03.pf O45 - LFCP:[MD5.8495658B483948BDDB897C8F8B7BF1BE] - 12/03/2014 - 15:32:46 ---A- - C:\Windows\Prefetch\CALC.EXE-77FDF17F.pf O45 - LFCP:[MD5.E3338C872C19C5B2A6F8885DB0E3B9DF] - 12/03/2014 - 15:40:02 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf O45 - LFCP:[MD5.E55F6AE86D3B4863DA41FCFF4717E91F] - 12/03/2014 - 15:40:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf O45 - LFCP:[MD5.476E6CDC7D50C5C08817CF20EFB6811F] - 12/03/2014 - 15:53:52 ---A- - C:\Windows\Prefetch\LVPRCSRV.EXE-A94CF8D0.pf O45 - LFCP:[MD5.569622A7FD994B700AB2C6A67BF2A58D] - 12/03/2014 - 16:00:01 ---A- - C:\Windows\Prefetch\ONECLICKSTARTER.EXE-91F62A2A.pf O45 - LFCP:[MD5.3407266265F8EFBBDCE2196B4ABE053C] - 12/03/2014 - 16:02:05 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:[MD5.D47A0DE17EB9AC10021BB6BD9D603DEB] - 12/03/2014 - 16:02:05 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:[MD5.85E0B0435140F238B314FE2F476D94C9] - 12/03/2014 - 16:02:05 ---A- - C:\Windows\Prefetch\AgRobust.db O45 - LFCP:[MD5.8DBBD7112832B83F94C3BE6DAD444427] - 12/03/2014 - 16:02:06 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:[MD5.E86366C97D1D60873461CC2766BB518D] - 12/03/2014 - 16:04:18 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf O45 - LFCP:[MD5.E92E779C25E6B7C544D12EF5C827A78F] - 12/03/2014 - 16:04:30 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf O45 - LFCP:[MD5.879E305D9DA09461FC219910FC50E6F9] - 12/03/2014 - 16:05:12 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf O45 - LFCP:[MD5.A6C3F02F9368E05540E875051D830DC5] - 12/03/2014 - 16:05:13 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf O45 - LFCP:[MD5.6BF1B41A47F8C24B83C5663DDAB023F4] - 23/02/2014 - 10:04:27 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_12_0_0_44.E-DA0E1FAF.pf O45 - LFCP:[MD5.BA3D2A8088FF278B17ABB13150727D9F] - 23/02/2014 - 21:20:09 ---A- - C:\Windows\Prefetch\CSC.EXE-BE9AC2DF.pf O45 - LFCP:[MD5.6BD666A35C327ED9BA85E815AF0E539F] - 23/02/2014 - 21:20:09 ---A- - C:\Windows\Prefetch\CVTRES.EXE-2B9D810D.pf O45 - LFCP:[MD5.E2E23427D2A7393BC69921FB052B31A9] - 23/02/2014 - 21:20:11 ---A- - C:\Windows\Prefetch\W32TM.EXE-1101AF41.pf O45 - LFCP:[MD5.3025BF4E3C76B867DEAF7827F7CF27F4] - 23/02/2014 - 21:20:20 ---A- - C:\Windows\Prefetch\PING.EXE-7E94E73E.pf O45 - LFCP:[MD5.AF9EFB51A36E1F6975D395B617A45BA7] - 24/02/2014 - 08:34:30 ---A- - C:\Windows\Prefetch\SC.EXE-945D79AE.pf O45 - LFCP:[MD5.42208F199601557EA5A546B2C65E0F31] - 25/02/2014 - 08:35:30 ---A- - C:\Windows\Prefetch\WLIDSVC.EXE-5514E75E.pf O45 - LFCP:[MD5.F3E1CBB6B6A27B7F152164BE0F63AF99] - 25/02/2014 - 09:12:06 ---A- - C:\Windows\Prefetch\LOLLAUNCHER.EXE-09367BBF.pf O45 - LFCP:[MD5.D88196C6336C5209679E44EC03C15C9F] - 25/02/2014 - 09:13:02 ---A- - C:\Windows\Prefetch\LOLCLIENT.EXE-CB6B94C6.pf O45 - LFCP:[MD5.CD0351BA52747994A4FD5517D1515FF8] - 25/02/2014 - 20:35:23 ---A- - C:\Windows\Prefetch\SETUP{786668FD-346E-4E13-9C3C-A3BFE972.pf O45 - LFCP:[MD5.9411B3C9D30745FECCCCBBBE74BE58D6] - 25/02/2014 - 20:50:06 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-4D24238A.pf O45 - LFCP:[MD5.913C94C7EAF8AA6A0887D2D0496F88EE] - 26/02/2014 - 00:09:06 ---A- - C:\Windows\Prefetch\LEAGUE OF LEGENDS.EXE-7E61351F.pf O45 - LFCP:[MD5.1445E1E2DA6CE6D747102CD5F25F5360] - 26/02/2014 - 14:34:45 ---A- - C:\Windows\Prefetch\SETUP{2D0815BB-2C5C-450B-BEA9-69A4C0F3.pf O45 - LFCP:[MD5.BDB918650684AF2D07A986D3D5108CB0] - 26/02/2014 - 14:56:12 ---A- - C:\Windows\Prefetch\LMS.EXE-8C70F87D.pf O45 - LFCP:[MD5.DC19D5FE6F8A3345CED0A5F8E3A624AA] - 26/02/2014 - 14:56:12 ---A- - C:\Windows\Prefetch\LVPRS64H.EXE-146FACA6.pf O45 - LFCP:[MD5.9D2D2E61A72C136EEDFDE9B527CF2AB4] - 26/02/2014 - 14:56:12 ---A- - C:\Windows\Prefetch\LXEBSERV.EXE-D888FDB4.pf O45 - LFCP:[MD5.A0BB678684AE1F98A10C3504BFF60373] - 26/02/2014 - 14:56:12 ---A- - C:\Windows\Prefetch\TUNEUPUTILITIESSERVICE64.EXE-085D2769.pf O45 - LFCP:[MD5.71B7C26EE82F22B628E3221AA2E1B135] - 26/02/2014 - 18:37:51 ---A- - C:\Windows\Prefetch\SETUP{F0D0E542-D971-4C09-8E6F-31585BBC.pf O45 - LFCP:[MD5.9D5D97CF5082CCFFC3EECF8177EF22F5] - 28/02/2014 - 10:44:43 ---A- - C:\Windows\Prefetch\SETUP{B808C3A1-2758-483D-9B17-DAF35476.pf O45 - LFCP:[MD5.B1750744C658A42E48EFB064B74831BD] - 28/02/2014 - 12:16:21 ---A- - C:\Windows\Prefetch\JPATCH.EXE-1AB3CC67.pf O45 - LFCP:[MD5.BA590D031E52895C97EF5052105D7642] - 28/02/2014 - 20:12:36 ---A- - C:\Windows\Prefetch\PLUGIN-HANG-UI.EXE-F3C09761.pf O45 - LFCP:[MD5.7A2B3FDE697476520F074363939E790B] - 28/02/2014 - 20:52:29 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0AC5E206.pf O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 30/09/2167 - 07:28:03 ----D - C:\Windows\Prefetch\ReadyBoot ~ Prefetcher: 138 Scanned in 00mn 04s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL ~ ShellExecuteHooks: Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 13 Scanned in 00mn 00s ---\\ Clé de registre Shell MountPoints2 (MPKS) (O51) O51 - MPSK:{6b031c8f-747d-11df-9b87-e0cb4ebb9dba}\AutoRun\command. (...) -- I:\Autorun.exe (.not file.) ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"vidc.i420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcod64.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 3 Scanned in 00mn 00s ---\\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (...) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\AppleSyncNotifier [Key] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\steam.exe ~ SMSR Keys: 4 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 16 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ~ MWPE Keys: 4 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.64EDD3F59DB321947969FDF1DD747323] - 14/07/2009 - 01:06:38 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys [68096] O58 - SDL:[MD5.1B00662092F9F9568B995902F0CC40D5] - 14/07/2009 - 01:07:13 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys [227840] O58 - SDL:[MD5.6F11E88748CDEFD2F76AA215F97DDFE5] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [334416] O58 - SDL:[MD5.63B05A0420CE4BF0E4AF6DCC7CADA254] - 14/07/2009 - 00:27:17 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys [12288] O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864] O58 - SDL:[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - 28/12/2011 - 04:59:11 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys [499200] O58 - SDL:[MD5.7ECFF9B22276B73F43A99A15A6094E90] - 14/07/2009 - 01:10:24 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys [60416] O58 - SDL:[MD5.608C14DBA7299D8CB6ED035A68A15799] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [61008] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440] O58 - SDL:[MD5.1FF8B4431C353CE385C875F194924C0C] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\Drivers\amdide.sys [15440] O58 - SDL:[MD5.7024F087CFF1833A806193EF9D22CDA9] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [64512] O58 - SDL:[MD5.1E56388B3FE0D031C44144EB8C4D6217] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys [60928] O58 - SDL:[MD5.EC7EBAB00A4D8448BAB68D1E49B4BEB9] - 11/03/2011 - 07:22:41 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128] O58 - SDL:[MD5.DB27766102C7BF7E95140A2AA81D042E] - 11/03/2011 - 07:22:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008] O58 - SDL:[MD5.42FD751B27FA0E9C69BB39F39E409594] - 14/07/2009 - 00:52:39 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [61440] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856] O58 - SDL:[MD5.19B006B181E3875FD254F7B67ACF1E7C] - 16/07/2009 - 04:38:40 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\System32\Drivers\ASACPI.sys [15416] O58 - SDL:[MD5.B76182F203E0BD5EB6A5F6538F0FAEE4] - 07/09/2010 - 16:47:10 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\Drivers\aswFsBlk.sys [20048] O58 - SDL:[MD5.A88E9544EDDA1CE83825DD22D6A8B5F9] - 07/09/2010 - 16:47:33 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [61008] O58 - SDL:[MD5.CFAD2FB33B22E7039C9DC233BAACBF8B] - 07/09/2010 - 16:47:49 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\System32\Drivers\aswRdr.sys [28752] O58 - SDL:[MD5.9638A3064B642410011B43A210276F55] - 07/09/2010 - 16:54:10 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [472656] O58 - SDL:[MD5.594365E887F4A5AD3970870B352EB887] - 07/09/2010 - 16:52:09 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [121936] O58 - SDL:[MD5.4BA0A0E1D36F88F536180FFE5EFD8B7C] - 07/09/2010 - 16:52:29 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\Drivers\aswTdi.sys [51280] O58 - SDL:[MD5.769765CE2CC62867468CEA93969B2242] - 14/07/2009 - 01:10:13 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [23040] O58 - SDL:[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [24128] O58 - SDL:[MD5.AA2186F7944104A16D6ED176ED462CEC] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [155728] O58 - SDL:[MD5.E857EEE6B92AAA473EBB3465ADD8F7E7] - 20/06/2009 - 03:09:57 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrx.sys [1394688] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.F4DE2AE7A9E1BADAC70BC71EA2C17612] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [28240] O58 - SDL:[MD5.16A47CE2DECC9B099349A5F840654746] - 14/07/2009 - 01:00:13 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [6656] O58 - SDL:[MD5.61583EE3C3A17003C4ACD0475646B4D3] - 14/07/2009 - 00:35:59 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys [45056] O58 - SDL:[MD5.19D20159708E152267E53B66677A4995] - 23/02/2011 - 06:15:06 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [90624] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.5C2F352A4E961D72518261257AAE204B] - 14/07/2009 - 02:01:48 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [95232] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.9DA669F11D1F894AB4EB69BF546A42E8] - 14/07/2009 - 01:06:52 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [72192] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480] O58 - SDL:[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - 00:19:47 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [92160] O58 - SDL:[MD5.83D2D75E1EFB81B3450C18131443F7DB] - 14/07/2009 - 00:19:54 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [147456] O58 - SDL:[MD5.D7CD5C4E1B71FA62050515314CFB52CF] - 14/07/2009 - 01:06:34 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [45568] O58 - SDL:[MD5.62F1ED63F0CB0B5A2F65D15A6490C2FD] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [178752] O58 - SDL:[MD5.0840155D0BDDF1190F84A663C284BD33] - 14/07/2009 - 00:31:03 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [17664] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488] O58 - SDL:[MD5.CA7720B73446FDDEC5C69519C1174C98] - 02/06/2012 - 06:37:45 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [459216] O58 - SDL:[MD5.102DE219C3F61415F964C88E9085AD14] - 14/07/2009 - 02:52:31 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys [21584] O58 - SDL:[MD5.F26B3A86F6FA87CA360B879581AB4123] - 14/07/2009 - 01:00:34 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys [38912] O58 - SDL:[MD5.3E588B60EC061686BA05D33574A344C6] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [39504] O58 - SDL:[MD5.1C827878A998C18847245FE1F34EE597] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys [24144] O58 - SDL:[MD5.4A6173C2279B498CD8F57CAE504564CB] - 14/07/2009 - 00:24:27 ---A- . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\System32\Drivers\csc.sys [514048] O58 - SDL:[MD5.9C253CE7311CA60FC11C774692A13208] - 27/04/2011 - 03:57:40 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [102400] O58 - SDL:[MD5.13096B05847EC78F0977F2C0F79E9AB3] - 14/07/2009 - 00:37:18 ---A- . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\Drivers\discache.sys [40448] O58 - SDL:[MD5.9819EEE8B5EA3784EC4AF3B137A5244C] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [73280] O58 - SDL:[MD5.20080512F61D3210E449A1256F66A7FD] - 22/04/2011 - 21:18:47 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [27008] O58 - SDL:[MD5.21D26064AEDB4988F785BB4A3A2C051E] - 14/07/2009 - 02:01:25 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [116224] O58 - SDL:[MD5.9B19F34400D24DF84C858A421C205754] - 14/07/2009 - 01:06:16 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [5632] O58 - SDL:[MD5.46571ED73AE84469DCA53081D33CF3C8] - 14/01/2013 - 13:55:36 ---A- . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\Drivers\dtsoftbus01.sys [283200] O58 - SDL:[MD5.839B5FE3D48E9F35B22C21A3D5103F6C] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [28736] O58 - SDL:[MD5.814DB88F2641691575A455CF25354098] - 14/07/2009 - 02:43:14 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [55128] O58 - SDL:[MD5.BF24D6F2ED97FE830BFD52B246F98E67] - 14/07/2009 - 00:38:28 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys [16896] O58 - SDL:[MD5.FEDE0629ECB23650D48989517D4914DA] - 14/07/2009 - 00:38:28 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys [98816] O58 - SDL:[MD5.1633B9ABF52784A1331476397A48CBEF] - 26/01/2011 - 07:53:10 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [982912] O58 - SDL:[MD5.3238B9078E0766AB5E62DC737A809ADB] - 26/01/2011 - 07:53:10 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [265088] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496] O58 - SDL:[MD5.34A3C54752046E79A126E15C51DB409B] - 14/07/2009 - 00:31:04 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [9728] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016] O58 - SDL:[MD5.A510C654EC00C1E9BDD91EEB3A59823B] - 14/07/2009 - 00:23:29 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [195072] O58 - SDL:[MD5.0ADC83218B66A6DB380C330836F3E36D] - 14/07/2009 - 00:23:29 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [204800] O58 - SDL:[MD5.D765D19CD8EF61F650C384F62FAC00AB] - 14/07/2009 - 01:00:54 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [29696] O58 - SDL:[MD5.655661BE46B5F5F3FD454E2C3095B930] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [70224] O58 - SDL:[MD5.5F671AB5BC87EEA04EC38A6CD5962A47] - 14/07/2009 - 00:25:40 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [34304] O58 - SDL:[MD5.C172A0F53008EAEB8EA33FE10E177AF5] - 14/07/2009 - 01:00:54 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [24576] O58 - SDL:[MD5.F7866AF72ABBAF84B1FA5AA195378C59] - 14/07/2009 - 02:47:47 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [290368] O58 - SDL:[MD5.D43703496149971890703B4B1B723EAC] - 14/07/2009 - 02:47:49 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys [55376] O58 - SDL:[MD5.D3E3F93D67821A2DB2B3D9FAC2DC2064] - 01/03/2012 - 07:54:38 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [22896] O58 - SDL:[MD5.1F44F8559E61A8306ECC67BB1E168B7C] - 24/01/2013 - 06:41:03 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [223752] O58 - SDL:[MD5.2FFDCD3E5ABAC88C3C193F3AC3360ED9] - 04/01/2013 - 06:40:54 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [287576] O58 - SDL:[MD5.8C778D335C9D272CFD3298AB02ABE3B6] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [65088] O58 - SDL:[MD5.8E98D21EE06192492A5671A6144D092F] - 21/08/2012 - 12:01:20 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.0A49913402747A0B67DE940FB42CBDBB] - 14/07/2009 - 01:06:13 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [122368] O58 - SDL:[MD5.6410F6F415B2A5A9037224C41DA8BF12] - 14/07/2009 - 01:07:00 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys [350208] O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 17/09/2009 - 11:54:54 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [56344] O58 - SDL:[MD5.78E86380454A7B10A5EB255DC44A355F] - 14/07/2009 - 00:31:06 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys [26624] O58 - SDL:[MD5.7FD2A313F7AFE5C4DAB14798C48DD104] - 14/07/2009 - 01:06:52 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [100864] O58 - SDL:[MD5.685FEC2407FC121EB937CB658B3C0F35] - 14/07/2009 - 01:06:21 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [76288] O58 - SDL:[MD5.0A77D29F311B88CFAE3B13F9C1A73825] - 14/07/2009 - 01:06:23 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [46592] O58 - SDL:[MD5.49EE2E52E6CD03947DAD72F65367BE06] - 14/07/2009 - 01:06:17 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [32896] O58 - SDL:[MD5.B3BF6B5B50006DEF50B66306D99FCF6F] - 14/07/2009 - 01:06:22 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [30208] O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [77888] O58 - SDL:[MD5.CEE049CAC4EFA7F4E1E4AD014414A5D4] - 14/07/2009 - 00:22:20 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [751616] O58 - SDL:[MD5.F17766A19145F111856378DF337A5D79] - 14/07/2009 - 02:48:04 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys [14416] O58 - SDL:[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - 00:19:57 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [105472] O58 - SDL:[MD5.B75E45C564E944A2657167D197AB29DA] - 11/03/2011 - 07:23:00 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112] O58 - SDL:[MD5.F00F20E70C6EC3AA366910083A0518AA] - 14/07/2009 - 02:48:04 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [16960] O58 - SDL:[MD5.ADA036632C664CAA754079041CF1F8C1] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [62464] O58 - SDL:[MD5.722DD294DF62483CECAAE6E094B4D695] - 14/07/2009 - 01:10:04 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [82944] O58 - SDL:[MD5.E2B4A4494DB7CB9B89B55CA268C337C5] - 14/07/2009 - 00:47:45 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [78848] O58 - SDL:[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - 01:10:03 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [116224] O58 - SDL:[MD5.05360B1EA5A2ABF620D1D96EBD8BD8F1] - 14/07/2009 - 01:09:02 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [120320] O58 - SDL:[MD5.3ABF5E7213EB28966D55D58B515D5CE9] - 14/07/2009 - 01:08:59 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [17920] O58 - SDL:[MD5.2F7B28DC3E1183E5EB418DF55C204F38] - 14/07/2009 - 02:48:04 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [20544] O58 - SDL:[MD5.BC02336F1CBA7DCC7D1213BB588A68A5] - 14/07/2009 - 02:48:04 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [50768] O58 - SDL:[MD5.6DEF98F8541E1B5DCEB2C822A11F7323] - 14/07/2009 - 01:00:20 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [33280] O58 - SDL:[MD5.F40C32737D8BD3B2EBF3E27325520B16] - 26/02/2013 - 16:34:06 ---A- . (.Windows (R) Win 7 DDK provider - Kinoni Virtual Audio Device.) -- C:\Windows\System32\Drivers\kinonivad.sys [23040] O58 - SDL:[MD5.EE78E9D7A71AA3F54619B34120EBEEDE] - 26/02/2013 - 16:34:12 ---A- . (.Windows (R) Win 7 DDK provider - AVStream Simulated Hardware Sample.) -- C:\Windows\System32\Drivers\kinonivd.sys [2782848] O58 - SDL:[MD5.5C7AF4A20F5BF67042B2E613D123D111] - 04/03/2010 - 05:32:27 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [243712] O58 - SDL:[MD5.4F4B5FDE429416877DE7143044582EB5] - 02/06/2012 - 06:38:26 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [95088] O58 - SDL:[MD5.6F40465A44ECDC1731BEFAFEC5BDD03C] - 02/06/2012 - 06:38:24 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys [152432] O58 - SDL:[MD5.6869281E78CB31A43E969F06B57347C4] - 14/07/2009 - 01:00:19 ---A- . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\Drivers\ksthunk.sys [20992] O58 - SDL:[MD5.1538831CF8AD2979A04C423779465827] - 14/07/2009 - 01:08:51 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [60928] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.43D0F98E1D56CCDDB0D5254CFF7B356E] - 14/07/2009 - 00:26:13 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [113152] O58 - SDL:[MD5.B2085E335F2B57077B0CBADB6F1245CD] - 07/10/2009 - 09:45:36 ---A- . (.Logitech Inc. - Logitech AudioProcessing Filter Driver.) -- C:\Windows\System32\Drivers\lvpopf64.sys [271640] O58 - SDL:[MD5.B3944D06EB4B64D57BD7E5FE89415F58] - 07/05/2010 - 17:43:30 ---A- . (...) -- C:\Windows\System32\Drivers\LVPr2M64.sys [30304] O58 - SDL:[MD5.986C1CB787A007BAA5F74E7D316D7246] - 07/10/2009 - 09:47:44 ---A- . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Driver.) -- C:\Windows\System32\Drivers\lvrs64.sys [327704] O58 - SDL:[MD5.5747BC465ABEA2858C5D037252AED84E] - 07/10/2009 - 09:49:26 ---A- . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\System32\Drivers\lvuvc64.sys [6379288] O58 - SDL:[MD5.3C9F072F9DCA856B9FB7A20CBD4281AC] - 14/07/2009 - 01:01:06 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [22016] O58 - SDL:[MD5.79D51E7F5926E8CE1B3EBECEBAE28CFF] - 24/02/2009 - 18:35:44 ---A- . (.MagicISO, Inc. - MagicISO SCSI Host Controller.) -- C:\Windows\System32\Drivers\mcdbus.sys [255552] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736] O58 - SDL:[MD5.800BA92F7010378B09F9ED9270F07137] - 14/07/2009 - 01:10:48 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [40448] O58 - SDL:[MD5.B03D591DC7DA45ECE20B3B467E6AADAA] - 14/07/2009 - 00:38:52 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [30208] O58 - SDL:[MD5.7D27EA49F3C1F687D357E77A470AEA99] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [49216] O58 - SDL:[MD5.D3BF052C40B0C4166D9FD86A4288C1E6] - 14/07/2009 - 01:00:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [31232] O58 - SDL:[MD5.791AF66C4D0E7C90A3646066386FB571] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [94784] O58 - SDL:[MD5.609D1D87649ECC19796F4D76D4C15CEA] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Pilote du bus de prise en charge des chemins d’accès multiples.) -- C:\Windows\System32\Drivers\mpio.sys [155216] O58 - SDL:[MD5.6C38C9E45AE0EA2FA5E551F2ED5E978F] - 14/07/2009 - 01:08:25 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [77312] O58 - SDL:[MD5.30524261BB51D96D6FCBAC20C810183C] - 14/07/2009 - 00:23:57 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [140800] O58 - SDL:[MD5.040D62A9D8AD28922632137ACDD984F2] - 04/05/2011 - 03:51:08 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys [157696] O58 - SDL:[MD5.F0067552F8F9B33D7C59403AB808A3CB] - 09/07/2011 - 03:44:55 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [287744] O58 - SDL:[MD5.3C142D31DE9F2F193218A53FE2632051] - 04/05/2011 - 03:51:05 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [126464] O58 - SDL:[MD5.5C37497276E3B3A5488B23A326A754B7] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys [30272] O58 - SDL:[MD5.8D27B597229AED79430FB9DB3BCBFBD0] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Module spécifique de périphériques Microsoft.) -- C:\Windows\System32\Drivers\msdsm.sys [140352] O58 - SDL:[MD5.AA3FB40E17CE1388FA1BEDAB50EA8F96] - 14/07/2009 - 00:19:47 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [26112] O58 - SDL:[MD5.F9D215A46A8B9753F61767FA72A20326] - 14/07/2009 - 01:06:24 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys [8192] O58 - SDL:[MD5.D916874BBD4F8B07BFB7FA9B3CCAE29D] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [15424] O58 - SDL:[MD5.FA4D2557DE56D45B0A346F93564BE6E1] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [224832] O58 - SDL:[MD5.49CCF2C4FEA34FFAD8B1B59D49439366] - 14/07/2009 - 01:00:18 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [11136] O58 - SDL:[MD5.BDD71ACE35A232104DDD349EE70E1AB3] - 14/07/2009 - 01:00:17 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [7168] O58 - SDL:[MD5.4ED981241DB27C3383D72092B618A1D0] - 14/07/2009 - 01:00:17 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [6784] O58 - SDL:[MD5.89CB141AA8616D8C6A4610FA26C60964] - 14/07/2009 - 02:48:26 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [367168] O58 - SDL:[MD5.0EED230E37515A0EAEE3C2E1BC97B288] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [32320] O58 - SDL:[MD5.2E66F9ECB30B4221A318C92AC2250779] - 14/07/2009 - 01:00:17 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [8064] O58 - SDL:[MD5.7EA404308934E675BFFDE8EDF0757BCD] - 14/07/2009 - 01:02:08 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys [15360] O58 - SDL:[MD5.F9A18612FD3526FE473C1BDA678D61C8] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys [60496] O58 - SDL:[MD5.734492E8BD4008D0EC54F86621A64D09] - 06/08/2009 - 07:34:30 ---A- . (.Marvell Semiconductor, Inc. - Marvell Thor Windows Driver.) -- C:\Windows\System32\Drivers\mv61xx.sys [179752] O58 - SDL:[MD5.467D2C33B82990603E9E90FE96B034C3] - 20/08/2009 - 12:20:53 ---A- . (.Microsoft Corporation - Pilote NDIS 6.20.) -- C:\Windows\System32\Drivers\ndis.sys [947800] O58 - SDL:[MD5.9F9A1F53AAD7DA4D6FEF5BB73AB811AC] - 14/07/2009 - 01:08:13 ---A- . (.Microsoft Corporation - NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [35328] O58 - SDL:[MD5.30639C932D9FEF22B31268FE25A1B6E5] - 14/07/2009 - 01:10:00 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [24064] O58 - SDL:[MD5.F105BA1E22BF1F2EE8F005D4305E4BEC] - 14/07/2009 - 01:09:25 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys [56320] O58 - SDL:[MD5.557DFAB9CA1FCB036AC77564C010DAD3] - 14/07/2009 - 01:10:13 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [164352] O58 - SDL:[MD5.659B74FB74B86228D6338D643CD3E3CF] - 14/07/2009 - 01:10:05 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [57856] O58 - SDL:[MD5.EE00C544C025958AF50C7B199F3C8595] - 25/07/2013 - 15:53:46 ---A- . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\Windows\System32\Drivers\netaapl64.sys [23040] O58 - SDL:[MD5.86743D9F5D2B1048062B14B1D84501C4] - 14/07/2009 - 01:09:26 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [44544] O58 - SDL:[MD5.9162B273A44AB9DCE5B44362731D062A] - 14/07/2009 - 00:21:29 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [259072] O58 - SDL:[MD5.7B8403912673A87EA6622F5CB867A670] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [374864] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264] O58 - SDL:[MD5.1E4C4AB5C9B8DD13179BBDC75A2A01F7] - 14/07/2009 - 00:19:48 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [44032] O58 - SDL:[MD5.E7F5AE18AF4168178A642A9247C63001] - 14/07/2009 - 00:21:02 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [24576] O58 - SDL:[MD5.A7368ED1B924FA49283F1A83776F8A02] - 02/03/2013 - 06:52:57 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1652568] O58 - SDL:[MD5.9899284589F75FA8724FF3D16AED75C1] - 14/07/2009 - 00:19:38 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [6144] O58 - SDL:[MD5.F5BC2345E8C89D4E90FAFD23A2239935] - 26/10/2009 - 22:19:46 ---A- . (.NEC Electronics Corporation - USB 3.0 Hub Driver.) -- C:\Windows\System32\Drivers\nusb3hub.sys [75264] O58 - SDL:[MD5.5D42578241BC2A9B4A64837077436D5F] - 26/10/2009 - 22:19:48 ---A- . (.NEC Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\System32\Drivers\nusb3xhc.sys [176640] O58 - SDL:[MD5.FCBA1C22727939E7CFF9EB08FE9692AB] - 25/02/2013 - 23:32:32 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 311.06.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [11036448] O58 - SDL:[MD5.A4D9C9A608A97F59307C2F2600EDC6A4] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352] O58 - SDL:[MD5.6C1D5F70E7A6A3FD1C90D840EDC048B9] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272] O58 - SDL:[MD5.270D7CD42D6E3979F6DD0146650F0E05] - 14/07/2009 - 02:48:26 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [122960] O58 - SDL:[MD5.1EA3749C4114DB3E3161156FFFFA6B33] - 14/07/2009 - 01:07:23 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [318976] O58 - SDL:[MD5.3589478E4B22CE21B41FA1BFC0B8B8A0] - 14/07/2009 - 01:06:45 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys [72832] O58 - SDL:[MD5.EE992183BD8EAEFD9973F352E587A299] - 14/07/2009 - 01:09:42 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [131584] O58 - SDL:[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - 01:00:41 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [97280] O58 - SDL:[MD5.90061B1ACFE8CCAA5345750FFE08D8B8] - 17/03/2012 - 08:55:58 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [75632] O58 - SDL:[MD5.F36F6504009F2FB0DFD1B17A116AD74B] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [183872] O58 - SDL:[MD5.B5B8B5EF2E5CB34DF8DCF8831E3534FA] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [12352] O58 - SDL:[MD5.144497DAA145BA0F7BE896064146C058] - 14/07/2009 - 02:45:46 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [48720] O58 - SDL:[MD5.B2E81D4E87CE48589F98CB8C05B01F2F] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [220752] O58 - SDL:[MD5.D6B9C2E1A11A3A4B26A182FFEF18F603] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys [50768] O58 - SDL:[MD5.68769C3356B3BE5D1C732C97B9A80D6E] - 14/07/2009 - 02:01:19 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [651264] O58 - SDL:[MD5.32E11315B5126921FFD9074840EF13D3] - 14/07/2009 - 01:06:29 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [230400] O58 - SDL:[MD5.0D922E23C041EFB1C3FAC2A6F943C9BF] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [60416] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592] O58 - SDL:[MD5.76707BB36430888D9CE9D705398ADB6C] - 14/07/2009 - 01:09:48 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [46592] O58 - SDL:[MD5.5A0DA8AD5762FA2D91678A8A01311704] - 14/07/2009 - 01:10:09 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [14848] O58 - SDL:[MD5.87A6E852A22991580D6D39ADC4790463] - 14/07/2009 - 01:10:12 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [130048] O58 - SDL:[MD5.855C9B1CD4756C5E9A2AA58A15F58C25] - 14/07/2009 - 01:10:17 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [92672] O58 - SDL:[MD5.27CC19E81BA5E3403C48302127BDA717] - 14/07/2009 - 01:10:18 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [111616] O58 - SDL:[MD5.E8B1E447B008D07FF47D016C2B0EEECB] - 14/07/2009 - 01:10:25 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [83968] O58 - SDL:[MD5.3BAC8142102C15D59A87757C1D41DCE5] - 14/07/2009 - 00:24:10 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys [309248] O58 - SDL:[MD5.302DA2A0539F2CF54D7C6CC30C1F2D8D] - 14/07/2009 - 01:17:46 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys [24064] O58 - SDL:[MD5.CEA6CC257FC9B7715F1C2B4849286D24] - 14/07/2009 - 01:16:34 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys [7680] O58 - SDL:[MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - 14/07/2009 - 01:18:02 ---A- . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\Drivers\rdpdr.sys [165376] O58 - SDL:[MD5.BB5971A4F00659529A5C44831AF22365] - 14/07/2009 - 01:16:34 ---A- . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys [7680] O58 - SDL:[MD5.216F3FA57533D98E1F74DED70113177A] - 14/07/2009 - 01:16:35 ---A- . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\System32\Drivers\RDPREFMP.sys [8192] O58 - SDL:[MD5.447DE7E3DEA39D422C1504F245B668B1] - 28/04/2012 - 04:50:40 ---A- . (.Microsoft Corporation - RDP Terminal Stack Driver.) -- C:\Windows\System32\Drivers\rdpwd.sys [204800] O58 - SDL:[MD5.634B9A2181D98F15941236886164EC8B] - 14/07/2009 - 02:45:46 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [214096] O58 - SDL:[MD5.77B3B747EB2413072B8E4306018D0C9B] - 14/07/2009 - 01:09:15 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [145920] O58 - SDL:[MD5.FC6D5C50D846B795335DEB3FCE8B33F3] - 14/07/2009 - 01:09:48 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [41472] O58 - SDL:[MD5.388D3DD1A6457280F3BADBA9F3ACD6B1] - 14/07/2009 - 01:10:47 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [11264] O58 - SDL:[MD5.DDC86E4F8E7456261E637E3552E804FF] - 14/07/2009 - 01:08:51 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [76800] O58 - SDL:[MD5.7EA8D2EB9BBFD2AB8A3117A1E96D3B3A] - 09/06/2010 - 13:32:13 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt64win7.sys [346144] O58 - SDL:[MD5.49A81307E807C0EAAD6510589DD92A3D] - 03/11/2009 - 12:39:58 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [2023840] O58 - SDL:[MD5.E3BBB89983DAF5622C1D50CF49F28227] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [104016] O58 - SDL:[MD5.C94DA20C7E3BA1DCA269BC8460D98387] - 14/07/2009 - 00:50:17 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys [29696] O58 - SDL:[MD5.AD3A6838A059D65FB55D2F61CF0A6C1F] - 14/07/2009 - 02:45:46 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [171600] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:[MD5.CB624C0035412AF0DEBEC78C41F5CA1B] - 14/07/2009 - 01:00:33 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [23552] O58 - SDL:[MD5.C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] - 14/07/2009 - 01:00:40 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [94208] O58 - SDL:[MD5.1C545A7D0691CC4A027396535691C3E3] - 14/07/2009 - 01:00:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [26624] O58 - SDL:[MD5.A554811BCD09279536440C964AE35BBF] - 14/07/2009 - 01:01:01 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys [14336] O58 - SDL:[MD5.FF414F0BAEFEBA59BC6C04B3DB0B87BF] - 14/07/2009 - 01:01:03 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys [13824] O58 - SDL:[MD5.5588B8C6193EB1522490C122EB94DFFA] - 14/07/2009 - 01:01:02 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys [14336] O58 - SDL:[MD5.A9D601643A1647211A1EE2EC4E433FF4] - 14/07/2009 - 01:01:02 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [16896] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464] O58 - SDL:[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - 01:09:09 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys [93184] O58 - SDL:[MD5.A80348BA03E96C70852959655CA3E084] - 14/07/2009 - 01:00:35 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [20992] O58 - SDL:[MD5.B9E31E5CACDFE584F34F730A677803F9] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys [19008] O58 - SDL:[MD5.FFF95479C7AB1550F0750A5D01744211] - 10/06/2009 - 21:48:43 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys [426496] O58 - SDL:[MD5.D6AB7C13FCDD2E4CAC35244D2C172D9A] - 11/01/2013 - 13:51:47 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [564824] O58 - SDL:[MD5.2408C0366D96BCDF63E8F1C78E4A29C5] - 29/04/2011 - 04:13:10 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [461312] O58 - SDL:[MD5.76548F7B818881B47D8D1AE1BE9C11F8] - 29/04/2011 - 04:12:54 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys [399872] O58 - SDL:[MD5.0AF6E19D39C70844C5CAA8FB0183C36E] - 29/04/2011 - 04:12:37 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [161792] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656] O58 - SDL:[MD5.CFD8802CAC57D3AFE0C687786E9E55F8] - 11/03/2011 - 07:23:13 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [187264] O58 - SDL:[MD5.8FCCBEFC5C440B3C23454656E551B09A] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys [34896] O58 - SDL:[MD5.001CC10FA5E71AE1119115E126C8750D] - 14/07/2009 - 01:06:18 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [68864] O58 - SDL:[MD5.D01EC09B6711A5F8E7E6564A4D0FBC90] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [12496] O58 - SDL:[MD5.6E316C01CBA8B785FE495F5CC4F48C6F] - 14/07/2009 - 01:01:04 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [29184] O58 - SDL:[MD5.5CFB7AB8F9524D1A1E14369DE63B83CC] - 04/01/2013 - 06:41:01 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [1893224] O58 - SDL:[MD5.76D078AF6F587B162D50210F761EB9ED] - 14/07/2009 - 01:09:49 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [44544] O58 - SDL:[MD5.0CA6FE26ACC7FFEE1BD0463F40835F32] - 14/07/2009 - 00:21:19 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [26624] O58 - SDL:[MD5.3371D21011695B16333A3934340C4E7C] - 14/07/2009 - 01:16:32 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys [15872] O58 - SDL:[MD5.7518F7BCFD4B308ABC9192BACAF6C970] - 15/02/2012 - 05:46:59 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys [23552] O58 - SDL:[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - 14/07/2009 - 00:21:15 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [99840] O58 - SDL:[MD5.C448651339196C0E869A355171875522] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys [62544] O58 - SDL:[MD5.61B96C26131E37B24E93327A0BD1FB95] - 14/07/2009 - 01:16:41 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys [38400] O58 - SDL:[MD5.3836171A2CDF3AF8EF10856DB9835A70] - 14/07/2009 - 01:09:38 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys [125440] O58 - SDL:[MD5.B4DD609BD7E282BFC683CEC7EAAAAD67] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [64080] O58 - SDL:[MD5.D47BAEAD86C65D4F4069D7CE0A4EDCEB] - 14/07/2009 - 00:23:37 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [327168] O58 - SDL:[MD5.4BFE1BC28391222894CBF1E7D0E42320] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [64592] O58 - SDL:[MD5.EAB6C35E62B1B0DB0D1B48B671D3A117] - 14/07/2009 - 01:06:56 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [48640] O58 - SDL:[MD5.B2E8E8CB557B156DA5493BBDDCC1474D] - 14/07/2009 - 01:06:52 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [9728] O58 - SDL:[MD5.EF45DCE7B2BED36C566EAC743EAE66A4] - 12/02/2013 - 15:02:22 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [19968] O58 - SDL:[MD5.C9E9D59C0099A9FF51697E9306A44240] - 13/12/2012 - 12:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784] O58 - SDL:[MD5.77B01BC848298223A95D4EC23E1785A1] - 14/07/2009 - 01:06:32 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys [109568] O58 - SDL:[MD5.FAEC06C1D24E2770ECC4F7C37659824D] - 14/07/2009 - 01:06:34 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [32896] O58 - SDL:[MD5.7B6A127C93EE590E4D79A5F2A76FE46F] - 25/03/2011 - 04:23:03 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [98816] O58 - SDL:[MD5.AF0892A803FDDA7492F595368E3B68E7] - 14/07/2009 - 01:06:37 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [100352] O58 - SDL:[MD5.70B5A5A7E0DDD5EBAF6E35B7257A6B9D] - 25/03/2011 - 04:22:51 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [7936] O58 - SDL:[MD5.92969BA5AC44E229C55A332864F79677] - 25/03/2011 - 04:22:57 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [52224] O58 - SDL:[MD5.E7DF1CFD28CA86B35EF5ADD0735CEEF3] - 25/03/2011 - 04:23:22 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [343040] O58 - SDL:[MD5.F1BB1E55F1E7A65C5839CCC7B36D773E] - 25/03/2011 - 04:22:56 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [25600] O58 - SDL:[MD5.BBF36EB7117F6B976975C9D8D877DF18] - 25/03/2011 - 04:23:03 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [324608] O58 - SDL:[MD5.73188F58FB384E75C4063D29413CEE3D] - 14/07/2009 - 01:38:18 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [25088] O58 - SDL:[MD5.8F0D9D2EA6CFED2730B5BAFB9B5B11C2] - 14/07/2009 - 01:35:14 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys [31744] O58 - SDL:[MD5.AAA2513C8AED8B54B189FD0C6B1634C0] - 14/07/2009 - 01:35:32 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [41984] O58 - SDL:[MD5.F39983647BC1F3E6100778DDFE9DCE29] - 11/03/2011 - 05:31:17 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [91136] O58 - SDL:[MD5.BC3070350A491D84B518D7CCA9ABD36F] - 25/03/2011 - 04:22:55 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [30720] O58 - SDL:[MD5.7CB8C573C6E4A2714402CC0A36EAB4FE] - 04/03/2010 - 05:40:58 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [184832] O58 - SDL:[MD5.A85B07AF8B98E8C5C7711BF37910A88D] - 10/04/2009 - 19:58:52 ---A- . (.ROCCAT Development, Inc. - ROCCAT Valo Driver.) -- C:\Windows\System32\Drivers\ValoFltr.sys [14720] O58 - SDL:[MD5.C5C876CCFC083FF3B128F933823E87BD] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Énumérateur racine de lecteur virtuel.) -- C:\Windows\System32\Drivers\vdrvroot.sys [36432] O58 - SDL:[MD5.53E92A310193CB3C03BEA963DE7D9CFC] - 14/07/2009 - 00:38:47 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys [29184] O58 - SDL:[MD5.DA4DA3F5E02943C2DC8C6ED875DE68DD] - 14/07/2009 - 00:38:47 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys [29184] O58 - SDL:[MD5.C82E748660F62A242B2DFAC1442F22A4] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [217680] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488] O58 - SDL:[MD5.E7353D59C9842BC7299FAEB7E7E09340] - 14/07/2009 - 00:38:51 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [129024] O58 - SDL:[MD5.1501699D7EDA984ABC4155A7DA5738D1] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Virtual Machine Bus.) -- C:\Windows\System32\Drivers\vmbus.sys [200272] O58 - SDL:[MD5.AE10C35761889E65A6F7176937C5592C] - 14/07/2009 - 00:42:44 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys [21760] O58 - SDL:[MD5.88AF6E02AB19DF7FD07ECDF9C91E9AF6] - 14/07/2009 - 00:42:58 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys [6656] O58 - SDL:[MD5.FFD7A6F15B14234B5B0E5D49E7961895] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys [46672] O58 - SDL:[MD5.2B1A3DAE2B4E70DBBA822B7A03FBD4A3] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [71760] O58 - SDL:[MD5.99B0CBB569CA79ACAED8C91461D765FB] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys [363584] O58 - SDL:[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - 06/09/2012 - 18:38:18 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [295792] O58 - SDL:[MD5.F004AEB456CD886DFDB123B6297D89C9] - 20/08/2009 - 12:21:43 ---A- . (.Microsoft Corporation - Pilote de bus hôte Virtual PC.) -- C:\Windows\System32\Drivers\vpchbus.sys [187904] O58 - SDL:[MD5.A7FAE0A70E7A6D7A9469A2BF0A1CAC5F] - 20/08/2009 - 12:21:43 ---A- . (.Microsoft Corporation - Virtual PC Network Filter Driver.) -- C:\Windows\System32\Drivers\vpcnfltr.sys [66304] O58 - SDL:[MD5.4CDF15CEAF71F068BD26B9841D4E3E2B] - 20/08/2009 - 12:21:43 ---A- . (.Microsoft Corporation - Pilote du connecteur USB virtuel.) -- C:\Windows\System32\Drivers\vpcusb.sys [95232] O58 - SDL:[MD5.E7EA9E3FBF1B0F517584E03638511E86] - 20/08/2009 - 12:21:43 ---A- . (.Microsoft Corporation - Moniteur d'ordinateur virtuel Virtual PC.) -- C:\Windows\System32\Drivers\vpcvmm.sys [358144] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872] O58 - SDL:[MD5.36D4720B72B5C5D9CB2B9C29E9DF67A1] - 14/07/2009 - 01:07:21 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys [24576] O58 - SDL:[MD5.6A3D66263414FF0D6FA754C646612F3F] - 14/07/2009 - 01:07:22 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys [59904] O58 - SDL:[MD5.6A638FC4BFDDC4D9B186C28C91BD1A01] - 14/07/2009 - 01:07:28 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys [17920] O58 - SDL:[MD5.4E9440F4F152A7B944CB1663D3935A3E] - 14/07/2009 - 01:02:07 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [27776] O58 - SDL:[MD5.47CA49400643EFFD3F1C9A27E1D69324] - 14/07/2009 - 01:10:22 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [88576] O58 - SDL:[MD5.FC438D1430B28618E2D0C7C332A710AD] - 14/07/2009 - 00:37:35 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [42496] O58 - SDL:[MD5.72889E16FF12BA0F235467D6091B17DC] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys [21056] O58 - SDL:[MD5.442783E2CB0DA19873B7A63833FF4CB4] - 26/07/2012 - 05:55:47 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [785512] O58 - SDL:[MD5.AEA0A67275CFBA0E463E00C6E9A1DDAE] - 26/07/2012 - 05:55:47 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [54376] O58 - SDL:[MD5.611B23304BF067451A9FDEE01FBDD725] - 14/07/2009 - 01:09:26 ---A- . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwf.sys [12800] O58 - SDL:[MD5.05ECAEC3E4529A7153B3136CEB49F0EC] - 14/07/2009 - 02:45:56 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys [22096] O58 - SDL:[MD5.AAEFB9193B31D7EB2425DD3FB6766640] - 14/07/2009 - 02:48:40 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys [52304] O58 - SDL:[MD5.817EAFF5D38674EDD7713B9DFB8E9791] - 14/07/2009 - 01:06:28 ---A- . (.Microsoft Corporation - Windows USB Class Driver BETA.) -- C:\Windows\System32\Drivers\winusb.sys [40448] O58 - SDL:[MD5.F6FF8944478594D0E414D3F048F0D778] - 14/07/2009 - 00:31:02 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [14336] O58 - SDL:[MD5.FC146F46872D4C5B529B89A5131FD1E6] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [16464] O58 - SDL:[MD5.6BCC1D7D2FD2453957C5479A32364E52] - 14/07/2009 - 01:10:33 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [21504] O58 - SDL:[MD5.8D918B1DB190A4D9B1753A66FA8C96E8] - 14/07/2009 - 01:39:20 ---A- . (.Microsoft Corporation - Web Services Print Device Driver.) -- C:\Windows\System32\Drivers\WSDPrint.sys [23040] O58 - SDL:[MD5.AB886378EEB55C6C75B4F2D14B6C869F] - 26/07/2012 - 03:26:45 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [87040] O58 - SDL:[MD5.DDA4CAF29D8C0A297F886BFE561E6659] - 26/07/2012 - 03:26:06 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [198656] O58 - SDL:[MD5.FE1EC06F2253F691FE36217C592A0206] - 14/07/2009 - 02:52:31 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys [367696] O58 - SDL:[MD5.15CFE2E15703D323D2FE2F0CF6F0C99E] - 01/03/2013 - 04:32:29 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3150848] O58 - SDL:[MD5.19166026A93206F9C6A8CD3A1F010AE4] - 02/04/2009 - 13:30:14 ---A- . (...) -- C:\Windows\SysWOW64\drivers\ASUSHWIO.SYS [10296] O58 - SDL:[MD5.5CF95B35E59E2A38023836FFF31BE64C] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\SysWOW64\drivers\wimmount.sys [19008] O58 - SDL:[MD5.A4782D31703738BBFC4592DF9617274C] - 28/06/2013 - 23:09:43 ---A- . (...) -- C:\Windows\SysWOW64\audcon.sys [2892] ~ Drivers: 16 Scanned in 00mn 08s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 10/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\WER-99045-0.sysdata.xml [222572] O61 - LFC: 10/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\grey-s-anatomy-s10e14-vostfr-hdtv.torrent [29339] O61 - LFC: 10/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\nsf2237.tmp\AdvSplash.dll [6144] O61 - LFC: 10/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\nsf2237.tmp\FindProcDLL.dll [3584] O61 - LFC: 10/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\nsf2237.tmp\Registry.dll [16384] O61 - LFC: 10/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\re_37947521.pdf [70329] O61 - LFC: 10/03/2014 - 16:08:04 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdr.dat [10240] O61 - LFC: 10/03/2014 - 16:08:04 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdri.dat [24152] O61 - LFC: 10/03/2014 - 16:08:04 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdrk.dat [264] O61 - LFC: 10/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\dht.dat.old [4144] =>P2P.BitTorrent O61 - LFC: 10/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\rss.dat.old [99] =>P2P.BitTorrent O61 - LFC: 10/03/2014 - 16:10:32 ----- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\[www.Cpasbien.me] Greys.Anatomy.S10E14.FASTSUB.VOSTFR.HDTV.XviD-ADDiCTiON.avi.torrent [29339] =>P2P.BitTorrent O61 - LFC: 10/03/2014 - 16:10:44 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\TuneUp Software\TuneUp Utilities\Program Statistics\2014-03-10.rep [143] O61 - LFC: 10/03/2014 - 16:10:44 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\TuneUp Software\TuneUp Utilities\Program Statistics\Recentdata.rep [2242] O61 - LFC: 10/03/2014 - 16:11:10 R--A- . (...) -- C:\Users\Chuck\Documents\Mes téléchargements\dl torrent\[www.Cpasbien.me] Greys.Anatomy.S10E14.FASTSUB.VOSTFR.HDTV.XviD-ADDiCTiON.avi [371522518] O61 - LFC: 11/03/2014 - 16:07:54 --HA- . (...) -- C:\Users\Chuck\AppData\Local\IconCache.db [2557184] O61 - LFC: 12/03/2014 - 16:07:58 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Skype\Apps\login.md5 [34] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\Skype\DbTemp\temp-JDqlSF0J8jfbhJVph0H4pUR6 [0] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\Skype\DbTemp\temp-bXh73FRX0oY1cQrcv7URB50M [0] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\Skype\DbTemp\temp-hVoWdM09qiSTNee6hHX54a1z [0] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\Skype\DbTemp\temp-qNd5dXb7c8VDdgTEdMKIJhob [0] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\plugtmp-5\plugin-;content_url=__CONTENT_URL__;media_id=__MEDIA_ID__;title=__TITLE__;device=__DEVICE__;model=__MODEL__;os=__OS__;osversion=__OSVERSION__;ua=__UA__;ip=__IP__;uniqueid [0] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\the-walking-dead-s04e13-vostfr-hdtv.torrent [4379] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (...) -- C:\Users\Chuck\AppData\Local\Temp\wbst.txt [381] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (.Skype Technologies S.A..) -- C:\Users\Chuck\AppData\Local\Temp\Skype.msi [25624576] O61 - LFC: 12/03/2014 - 16:08:03 ---A- . (.Skype Technologies S.A..) -- C:\Users\Chuck\AppData\Local\Temp\SkypeToolbars.msi [10588160] O61 - LFC: 12/03/2014 - 16:10:31 ----- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\The.Walking.Dead.S04E13.FASTSUB.VOSTFR.HDTV.XviD-PROTEiGON.avi.torrent [4379] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\dht.dat [4274] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\dht_feed.dat [2] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\dht_feed.dat.old [2] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\dlimagecache\CF4BF2D36ED3070397D7C066408486C45919C862 [1150] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\resume.dat [274199] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\resume.dat.old [279740] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\rss.dat [99] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\settings.dat [164270] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\settings.dat.old [164289] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:31 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\updates.dat [582] =>P2P.BitTorrent O61 - LFC: 12/03/2014 - 16:10:33 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\DAEMON Tools Lite\ImgList.dat [89] =>.DT Soft Ltd O61 - LFC: 12/03/2014 - 16:10:35 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\dvdcss\CACHEDIR.TAG [199] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\dns.ldb [192] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\bistats.db [69632] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\bistats.db-journal [37448] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\0f\0f5499d4460d49ef.dat [1952] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\23\2362b303633f70da.dat [8997] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\2a\2a0cda9acab3b7cd.dat [2920] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\45\45936f6b34eaf6e2.dat [3023] O61 - LFC: 12/03/2014 - 16:10:36 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\85\85760eb05e28163b.dat [4360] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\d9\d988fc1215e5a725.dat [5161] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\d9\d99b076fd4c38af6.dat [1000] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\f6\f6968b0e25e7d611.dat [1538] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\chatsync\fe\fe704e0f27404c16.dat [95604] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\config.xml [14396] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\dc.db [49152] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\eas.db [57344] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\ecache\ecache0 [385] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\keyval.db [65536] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\keyval.db-journal [49760] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\main.db [1314816] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\main.db-journal [275480] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\mmanager\mediacache.ldb [40] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\msn.db [102400] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\msn.db-journal [45656] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\qikdb\qik_main.db [32768] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\statistics.db [167936] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\statistics.db-journal [82592] O61 - LFC: 12/03/2014 - 16:10:37 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\lilparadise\thmanager\thumbcache.ldb [40] O61 - LFC: 12/03/2014 - 16:10:39 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\shared.xml [96170] O61 - LFC: 12/03/2014 - 16:10:39 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\shared_dynco\dc.db [2072576] O61 - LFC: 12/03/2014 - 16:10:39 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\shared_dynco\dc.db-journal [1252232] O61 - LFC: 12/03/2014 - 16:10:39 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\shared_httpfe\queue.db [40960] O61 - LFC: 12/03/2014 - 16:10:39 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\Skype\shared_httpfe\queue.db-journal [8720] O61 - LFC: 12/03/2014 - 16:10:44 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\TuneUp Software\TuneUp Utilities\Dashboard\IntegratorStates_fr-FR.xml [9074] O61 - LFC: 12/03/2014 - 16:10:44 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\TuneUp Software\TuneUp Utilities\Speed Optimizer\SpeedOptimizerStates.xml [798] O61 - LFC: 12/03/2014 - 16:10:44 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\ZHP\Log.txt [17910] =>.Nicolas Coolman O61 - LFC: 12/03/2014 - 16:10:44 ---A- . (...) -- C:\Users\Chuck\AppData\Roaming\ZHP\TestsZHPDiag.txt [2834] =>.Nicolas Coolman O61 - LFC: 12/03/2014 - 16:11:08 R--A- . (...) -- C:\Users\Chuck\Documents\Mes téléchargements\dl torrent\The.Walking.Dead.S04E13.FASTSUB.VOSTFR.HDTV.XviD-PROTEiGON.avi [367377976] O61 - LFC: 12/03/2014 - 16:11:21 ---A- . (.Kinoni.) -- C:\Users\Chuck\Downloads\KinoniWinInstaller281.exe [3572800] O61 - LFC: 12/03/2014 - 16:11:22 ---A- . (.Skype Technologies S.A..) -- C:\Users\Chuck\Downloads\SkypeSetup(1).exe [1678496] O61 - LFC: 12/03/2014 - 16:11:24 ---A- . (.Nicolas Coolman.) -- C:\Users\Chuck\Downloads\zhpdiag2.exe [6866688] =>.Nicolas Coolman ~ 15 Fichiers temporaires (Temporary files) ~ Files: 79 Scanned in 03mn 35s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK O64 - Services: CurCS - 07/09/2010 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\Drivers\aswRdr.sys (aswRdr) .(.AVAST Software - avast! TDI RDR Driver.) - LEGACY_ASWRDR O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP O64 - Services: CurCS - 07/09/2010 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\cscsvc.dll (CSC) .(.Microsoft Corporation - DLL du service CSC.) - LEGACY_CSC O64 - Services: CurCS - 27/04/2011 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE O64 - Services: CurCS - 26/01/2011 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV O64 - Services: CurCS - 07/05/2010 - C:\Windows\System32\DRIVERS\LVPr2M64.sys (LVPr2M64) .(...) - LEGACY_LVPR2M64 O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10 O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP O64 - Services: CurCS - 06/08/2009 - C:\Windows\System32\DRIVERS\mv61xx.sys (mv61xx) .(.Marvell Semiconductor, Inc. - Marvell Thor Windows Driver.) - LEGACY_MV61XX O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP O64 - Services: CurCS - 20/08/2009 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR O64 - Services: CurCS - 11/01/2013 - C:\Windows\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD O64 - Services: CurCS - 27/08/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV O64 - Services: CurCS - 27/08/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2 O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX O64 - Services: CurCS - 14/10/2009 - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys (TuneUpUtilitiesDrv) .(.TuneUp Software - TuneUp Utilities Driver.) - LEGACY_TUNEUPUTILITIESDRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX O64 - Services: CurCS - 06/09/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP O64 - Services: CurCS - 20/08/2009 - C:\Windows\System32\DRIVERS\vpcnfltr.sys (vpcnfltr) .(.Microsoft Corporation - Virtual PC Network Filter Driver.) - LEGACY_VPCNFLTR O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6 O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF ~ Legacy: 82 Scanned in 00mn 03s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ~ FASS Keys: 11 Scanned in 00mn 01s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {4006F92B-7B2C-4471-9A60-625ED586B27F} - (Google) - http://www.google.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) C:\Users\Chuck\AppData\Roaming\TS3Client\cache\remote\www.easi-ie.com\wp-content\uploads\2013\02\Cracked-Facebook-Logo-1500x1500-psd49009.png ~ Files: Scanned in 01mn 19s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [343552] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316416] O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.TuneUp Software - TuneUp Theme Extension.) -- C:\Windows\System32\uxtuneup.dll [36168] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [706560] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [848384] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [565760] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [104960] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1114624] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [208896] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] ~ Services: 34 Scanned in 00mn 01s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.61FB16B6016BCC9AA42E02F787DC87FC] [SPRF][26/01/2010] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1955384] ~ Files: 1 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "VirtualPC-In-UDP-1" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte Virtual PC.) -- C:\Windows\System32\vpc.exe O87 - FAEL: "VirtualPC-In-UDP-2" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte Virtual PC.) -- C:\Windows\System32\vpc.exe O87 - FAEL: "VirtualPC-In-TCP-1" | In - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte Virtual PC.) -- C:\Windows\System32\vpc.exe O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{33827B36-F2D5-43B6-A4B9-FEA8C5EBE85E}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{2B2FA9CA-F929-4E19-918D-5EAFE91EFE38}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{EBB0F5EA-7F19-475D-B73A-B389C5BD34F7}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{1BC10D4F-FA3F-423B-A5B9-C516A484452F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B1230862-6B32-49FA-A28D-218128AD0701}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{66D737DF-46EF-4EA0-9143-B15D388B7BF5}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{FC7B3A0A-FB47-45DC-A0A1-A6785188669C}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{9EEADA19-0D3B-4924-8634-7084BB2127B5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{8DEC9E57-70F9-4082-8F96-4A46F9B1DADE}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{789C83E6-70F3-444A-BF72-571AB033DEB5}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{F55F33BA-98BC-41CE-A0B0-C72888AA19F0}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{82E86E2D-3AC1-4628-A89F-74BF8F9FA36D}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{5F66D276-B89F-487F-9AE9-784774D13A42}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{BDE6A9FD-44F4-4586-ACA3-15BF78A6350F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{FE176D35-E170-48C0-97F2-B869938A1920}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{CDF4811B-19EC-45A1-9999-43649BB12A64}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{72E0B1C1-8F89-4E0D-B91B-B76E9DF40335}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F05C59D8-6E4E-42EE-A8CD-EDF9B0270C00}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{BBFF3B89-6F99-4C6E-B06B-64187DB39987}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{E52FEB53-945F-4223-B748-691E2724DD87}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "{AC50422A-D62B-40E8-97D8-34F396CB88D4}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{9129C1FA-AFB1-4A76-B543-16DC4C9C090A}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{724144F7-1297-4724-82F9-73FF18BABC8E}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{25BC2937-712A-41C5-BC49-FFE0E1306D99}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{9A888640-03E8-40C0-88E0-F684D84086D8}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe O87 - FAEL: "{0ECF088B-6638-4CDF-A1AD-DA14E29F3B1A}" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B80BF598-1C64-4415-8530-0DEE9A067CD9}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\lxebcoms.exe O87 - FAEL: "{078B00A3-D02D-4F41-A108-BB59F52D3EAF}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\LXEBcoms.exe O87 - FAEL: "{5A2DD73E-0A76-4E50-9835-AFCFC532D55C}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\LXEBcoms.exe O87 - FAEL: "{4BFFCDFA-5188-4359-B5B9-6ACCFA86830A}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{8C349D5B-E1AB-40AD-A5F1-4D120DA7DF49}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{41BB3301-0C7B-417D-B25A-B94A18FB740F}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{FA6F0272-00A9-4417-9D6F-645EE0F7E344}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{B6BB0FFF-5DC1-4921-840A-1E40EA27C273}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\LXEBcoms.exe O87 - FAEL: "TCP Query User{B4B79909-407C-4DD6-B0E7-7A8E822CE902}C:\program files\freemi upnp media server\freemi upnp media server.exe" | In - Private - P6 - TRUE | .(.Pas de propriétaire - FreeMi UPnP Media Server.) -- C:\program files\freemi upnp media server\freemi upnp media server.exe O87 - FAEL: "UDP Query User{18FBCC75-D553-4019-89E0-43E0E21641A4}C:\program files\freemi upnp media server\freemi upnp media server.exe" | In - Private - P17 - TRUE | .(.Pas de propriétaire - FreeMi UPnP Media Server.) -- C:\program files\freemi upnp media server\freemi upnp media server.exe O87 - FAEL: "TCP Query User{D24D427E-CE91-435C-8001-8640509CAC58}C:\program files\freemi upnp media server\freemi upnp media server.exe" | In - Public - P6 - TRUE | .(.Pas de propriétaire - FreeMi UPnP Media Server.) -- C:\program files\freemi upnp media server\freemi upnp media server.exe O87 - FAEL: "UDP Query User{AE14D1B6-17A1-4163-B97F-C0CA9A1A4000}C:\program files\freemi upnp media server\freemi upnp media server.exe" | In - Public - P17 - TRUE | .(.Pas de propriétaire - FreeMi UPnP Media Server.) -- C:\program files\freemi upnp media server\freemi upnp media server.exe O87 - FAEL: "TCP Query User{3FE6C69E-9F71-4F3F-9D48-93CD0618619A}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Plugin Container for Firefox.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe O87 - FAEL: "UDP Query User{B1557D6C-C373-4071-914E-6089B522F258}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Plugin Container for Firefox.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe O87 - FAEL: "{4BCF34CE-BFD7-4074-99DA-29BF3A738944}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe O87 - FAEL: "{83C0DD8B-B492-41CE-A1AF-119943B4E22B}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe O87 - FAEL: "{BFA03858-0D58-4E83-9158-B891C7CFD0EE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe =>.Microsoft Corporation O87 - FAEL: "{C48B6ED9-8C95-4F91-8502-D481CE609220}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe =>.Microsoft Corporation O87 - FAEL: "{91C2FB6E-6494-47C1-A6EB-6C18796D5F01}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office\Office14\outlook.exe O87 - FAEL: "{490C9BD1-71BC-419A-B32A-AB1FBC3A3552}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Diablo III Retail.) -- C:\Program Files (x86)\Diablo III\Diablo III.exe O87 - FAEL: "{168A7160-75AC-49F8-84BD-6A47CFC085D7}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Diablo III Retail.) -- C:\Program Files (x86)\Diablo III\Diablo III.exe O87 - FAEL: "{EDB61009-218F-4271-B00D-15EADCBECE96}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe O87 - FAEL: "{27E070F7-8DAE-487E-89AA-FCC91453CF79}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O87 - FAEL: "{B074269C-A664-452D-B5F2-CEC9FA4AFC25}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O87 - FAEL: "{2C1943D2-110F-40F1-BE9C-EE6365A7F8E6}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe O87 - FAEL: "{E454821E-8D13-459D-BCE7-E202D307A1C7}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe O87 - FAEL: "{1767BE51-DF81-4B32-80EB-14D94E4CC96D}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe O87 - FAEL: "{5AC64D31-8780-44E0-A992-CB8064598F7D}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe O87 - FAEL: "{D291C423-CDA2-4F1C-9906-12C22E0C4BA3}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files (x86)\Steam\Steam.exe O87 - FAEL: "{A78F7BF1-36FF-42E5-93B6-A082A2563F76}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files (x86)\Steam\Steam.exe O87 - FAEL: "{08B6093B-CA61-4A97-84E8-2D10503B3028}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Engine.) -- C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe O87 - FAEL: "{D0340972-AF62-4513-BBA3-9DFF3C71CB50}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Engine.) -- C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe O87 - FAEL: "{3EB45EED-69A7-46BD-9570-B8A2019CB3E4}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe O87 - FAEL: "{0A37D09C-AFD1-439D-B16D-58BAE913D2E0}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{6C3DAD3E-DCAD-4DF4-9199-EFEB97619814}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\Chuck\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O87 - FAEL: "TCP Query User{E8EFEE3C-2FD6-4750-90C1-D5E8C3E551E6}C:\program files (x86)\nero 9.0.9.4\app\nero burning rom\nero.exe" | In - Private - P6 - TRUE | .(.Nero AG - Nero Burning ROM.) -- C:\program files (x86)\nero 9.0.9.4\app\nero burning rom\nero.exe O87 - FAEL: "UDP Query User{BC4AFA6E-6252-4C20-AEE1-B49DECB91E6A}C:\program files (x86)\nero 9.0.9.4\app\nero burning rom\nero.exe" | In - Private - P17 - TRUE | .(.Nero AG - Nero Burning ROM.) -- C:\program files (x86)\nero 9.0.9.4\app\nero burning rom\nero.exe O87 - FAEL: "{0D7B1ADB-088C-454E-B4BB-2139F7E59105}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe O87 - FAEL: "{6AA27B06-D0DD-4297-9CBA-72D08E130408}" | Out - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe O87 - FAEL: "{B4471872-7A2A-4D56-A1D1-A37C6FCF170F}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A. ~ Firewall: 238 Scanned in 00mn 02s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "000021092B00C0400000000000F01FEC" . (.Complément Microsoft Enregistrer en tant que PDF ou XPS pour programmes Microsoft Office 2007.) -- C:\Windows\Installer\{90120000-00B2-040C-0000-0000000FF1CE}\expxic.exe O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico O90 - PUC: "3FF10DD6EC36B63469BD1663E3AAE48B" . (.MobileMe Control Panel.) -- C:\Windows\Installer\{6DD01FF3-63CE-436B-96DB-61363EAA4EB8}\Installer.ico O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc O90 - PUC: "50E7C3A773EE6D74991EE20BA5D33A7F" . (.Skype™ 6.14.) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe O90 - PUC: "5A440F64B8EC691489E4B56D25E563D1" . (.Apple Application Support.) -- C:\Windows\Installer\{46F044A5-CE8B-4196-984E-5BD6525E361D}\WinInstall.ico O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.06) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O90 - PUC: "8DA2BFAEB29DC464D8799BBC4907C3A4" . (.iCloud.) -- C:\Windows\Installer\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}\ARP.ico O90 - PUC: "8FC229B8C6A8EC148A851F57D5F7D592" . (.NVIDIA PhysX.) -- C:\Windows\Installer\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}\icon.ico O90 - PUC: "9379FB7D86A85334BBEE7357A29D8EB6" . (.NEC Electronics USB 3.0 Host Controller Driver.) -- C:\Windows\Installer\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}\ARPPRODUCTICON.exe O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico O90 - PUC: "B811A37F17282E747809C036B652935C" . (.iTunes.) -- C:\Windows\Installer\{F73A118B-8271-47E2-8790-0C636B2539C5}\Installer.ico O90 - PUC: "B846977CE014ABB47BB58551CBFE7ED1" . (.Safari.) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\Installer.ico O90 - PUC: "CE82D182753187742B7DED5AD607FE69" . (.Logitech High Quality Video.) -- C:\Windows\Installer\{281D28EC-1357-4778-B2D7-DEA56D70EF96}\ARPPRODUCTICON.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "E78D5FE2DB7BF85448824E0D8B4B6EC5" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}\Installer.ico ~ Update Products: 71 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: Photos iCloud - {F0D63F85-37EC-4097-B30D-61B4A8917118} ~ MNS: 1 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.167744892F37D8E41949060CE2247167] [WIS][10/06/2010] (.TuneUp Software - TuneUp Utilities Language Pack (fr-FR).) -- C:\Windows\Installer\136b6a.msi [2457600] [MD5.FBBAB7E8B16F9474A2AEC9C5D6D4DA56] [WIS][10/06/2010] (.TuneUp Software - TuneUp Utilities.) -- C:\Windows\Installer\136b6e.msi [18528256] [MD5.28E25F4A41FF7F65F57435ABD858C7BA] [WIS][12/03/2014] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\2d4e43.msi [25624576] [MD5.B1A0B8F29B09A6A9D42AF625997481AD] [WIS][10/06/2010] (.NEC Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\Installer\34891.msi [1326080] [MD5.D2F34AF196CCAF29A124324392FC3DFF] [WIS][21/08/2013] (.Valve Corporation - Steam.) -- C:\Windows\Installer\c4a8b.msi [8532992] [MD5.FEEB576634F1F961F5649D4D09F02363] [WIS][24/04/2012] (.Iminent - Iminent.) -- C:\Windows\Installer\e786e.msi [9420800] =>Adware.IMBooster ~ WIS: 76 Scanned in 00mn 41s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Auto 10/07/1658 0 | (AdobeARMservice) . (...) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SS - | Demand 12/03/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 17/09/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SS - | Auto 14/04/2010 45736 | (lxebCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\system32\spool\DRIVERS\x64\3\lxebserv.exe SS - | Demand 15/12/2013 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Auto 25/02/2013 1260320 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Demand 16/03/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe SS - | Demand 10/06/2010 607048 | (TuneUp.Defrag) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe SR - | Auto 07/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 07/09/2010 40384 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SR - | Demand 07/09/2010 40384 | (avast! Mail Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SR - | Demand 07/09/2010 40384 | (avast! Web Scanner) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 06/12/2013 40448 | (InternetUpdater) . (...) - C:\ProgramData\InternetUpdater\InternetUpdaterService.exe SR - | Auto 26/02/2013 525312 | (KinoniSvc) . (...) - C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe SR - | Auto 04/11/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SR - | Auto 07/10/2009 191000 | (LVPrcS64) . (.Logitech Inc..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe SR - | Auto 14/04/2010 1052328 | (lxeb_device) . (...) - C:\Windows\system32\lxebcoms.exe SR - | Auto 18/01/2013 884512 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SR - | Auto 12/11/2009 1353544 | (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe SR - | Auto 04/11/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe SR - | Auto 14/07/2009 27136 | C:\Windows\System32\uxtuneup.dll (UxTuneUp) . (.TuneUp Software.) - C:\Windows\System32\svchost.exe SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 44s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by Chuck at 12/03/2014 16:13:55 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Chuck at 12/03/2014 16:13:57 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Liste des émulateurs de CD/DVD (MBR Hook) O58 - SDL:[MD5.D6AB7C13FCDD2E4CAC35244D2C172D9A] - 11/01/2013 - 13:51:47 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [564824] O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd ~ Emulateurs: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13031 - (12/03/2014) Clés trouvées (Keys found) : 9 Valeurs trouvées (Values found) : 4 Dossiers trouvés (Folders found) : 6 Fichiers trouvés (Files found) : 5 [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrent] =>P2P.BitTorrent^ [HKLM\Software\Classes\Interface\{db885111-f39f-4d88-9ee5-c88460b6df7b}] =>Adware.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\430E8DB44F0E90547A3564A7E858C48D] =>Adware.IMBooster [HKCU\Software\AppDataLow\Software\BittorrentBar_FR] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma [HKCU\AppEvents\Schemes\Apps\Explorer\Navigating\Old_Current] =>PUP.MediaFinder [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A] =>Adware.IMBooster [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Updater =>PUP.CrossRider^ [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Updater =>PUP.CrossRider^ C:\Program Files (x86)\BitTorrent =>P2P.BitTorrent^ C:\ProgramData\RHelpers =>PUP.SearchDonkey^ C:\ProgramData\Updater =>PUP.CrossRider^ C:\ProgramData\Websteroids =>PUP.TubeDimmer^ C:\Users\Chuck\AppData\Roaming\BitTorrent =>P2P.BitTorrent^ C:\Users\Chuck\AppData\LocalLow\BittorrentBar_FR =>Toolbar.Conduit C:\ProgramData\Updater\updater.exe =>PUP.CrossRider^ C:\ProgramData\RHelpers\ChromeHelper\ChromeHelper.exe =>PUP.SearchDonkey^ C:\ProgramData\RHelpers\FireFoxHelper\FireFoxHelper.exe =>PUP.SearchDonkey^ C:\ProgramData\RHelpers\IEHelper\IeHelper.exe =>PUP.SearchDonkey^ C:\Windows\Installer\e786e.msi =>Adware.IMBooster^ ~ Additionnel Scan: 279304 Items scanned in 00mn 32s ---\\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider ~ http://nicolascoolman.webs.com/apps/blog/show/38839825-pup-searchdonkey =>PUP.SearchDonkey ~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz ~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit ~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM ~ http://nicolascoolman.webs.com/apps/blog/show/37242682-pup-tubedimmer =>PUP.TubeDimmer ~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster ~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma ~ http://nicolascoolman.webs.com/apps/blog/show/28445531-pup-mediafinder =>PUP.MediaFinder ~ MSI: 9 link(s) detected in 00mn 32s End of the scan (2155 lines in 09mn 36s)(1)