~ Rapport de ZHPDiag v2014.3.26.33 - Nicolas Coolman (26/03/2014) ~ Lancé par soulas (27/03/2014 13:10:13) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Activate by user ---\\ Navigateurs Internet MSIE: Internet Explorer v10.0.9200.16844 GCIE: Google Chrome Frame v32.0.1700.107 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows 7 Home Premium, 32-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ~ Windows(R) 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : 8TFF7 Windows License : OK ~ Windows Remaining Initializations Number : 4 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Malwarebytes Anti-Malware version 1.75.0.1300 Microsoft Security Client v4.4.0304.0 Windows Defender W7 ---\\ Logiciels d'optimisation du système CCleaner v4.11 =>.Piriform Ltd ---\\ Logiciels de partage PeerToPeer eMule ---\\ Surveillance de Logiciels Adobe Flash Player 12 ActiveX Adobe Reader 8.1.2 - Français ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 37 Stepping 2, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3063 MB (61% free) System Restore: Activé (Enable) System drive C: has 826 GB (90%) free of 910 GB ---\\ Mode de connexion au système ~ Computer Name: SOULAS-PC ~ User Name: soulas ~ All Users Names: UpdatusUser, soulas, HomeGroupUser$, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\soulas\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\soulas\AppData\Roaming\ ~ %Desktop% : C:\Users\soulas\Desktop\ ~ %Favorites% : F:\Favorites\ ~ %LocalAppData% : C:\Users\soulas\AppData\Local\ ~ %StartMenu% : C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 826 Go of 910 Go) D: Hard drive, Flash drive, Thumb drive (Free 11 Go of 20 Go) E: CD-ROM drive (Not Inserted) F: Hard drive, Flash drive, Thumb drive (Free 135 Go of 201 Go) G: Hard drive, Flash drive, Thumb drive (Free 39 Go of 265 Go) I: Floppy drive, Flash card reader, USB Key (Not Inserted) J: Floppy drive, Flash card reader, USB Key (Not Inserted) K: CD-ROM drive (Not Inserted) L: CD-ROM drive (Not Inserted) M: Floppy drive, Flash card reader, USB Key (Not Inserted) N: Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowPrinters: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowNetConn: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 50 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256] [MD5.9284BA6C27D360D71A5C0ECC8456E78E] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/02/2014 - 07:54:46.) -- C:\Windows\System32\wininet.dll [1767936] [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720] [MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536] [MD5.F81BB7E487EDCEAB630A7EE66CF23913] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/09/2013 - 01:48:58.) -- C:\Windows\system32\Drivers\AFD.sys [338944] [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584] [MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656] [MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544] [MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336] [MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544] [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896] [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888] [MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904] [MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904] [MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 14:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752] [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360] [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848] [MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168] [MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752] [MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/6059 ~ Mes musiques (My Musics) : 2/525 ~ Mes Videos (My Videos) : 2/71 ~ Mes Favoris (My Favorites) : 1/888 ~ Mes Documents (My Documents) : 2/9632 ~ Mon Bureau (My Desktop) : 2/24 ~ Menu demarrer (Programs) : 1/191 ~ Hidden Files: Scanned in 00mn 12s ---\\ Processus lancés [MD5.852F12CA7C4FC7E3D77B606492435556] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696] [PID.3920] [MD5.87A5E321CE993925F79AC86DECE0A828] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464] [PID.3952] [MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408] [PID.1732] =>Toolbar.Google [MD5.771A5E7CF4C19F3DE5D36B19284F1FC6] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe [367168] [PID.2112] [MD5.5320ED932BE874C0B566E915FDE41007] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1819936] [PID.4064] [MD5.F6573840989C4E8ED2EBF8B0644CF500] - (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe [959880] [PID.1160] [MD5.C98ACDE22458C8F46FD0503CB9E2D01F] - (.Google Inc. - Google Crash Handler.) -- C:\Users\soulas\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe [223112] [PID.2228] [MD5.C156DE6EB37B6C5D6498DD87C23F3FA4] - (.SFR - Mediacenter Evolution.) -- C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe [2688368] [PID.4124] [MD5.C8F7391B3FB83532AD598F48D8C75B91] - (.IObit - Advanced SystemCare Ultimate Tray.) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe [2562368] [PID.4132] [MD5.82713AE7E1B97D56F2C43960142F5658] - (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\soulas\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224] [PID.4152] [MD5.5C543230B376A57A8690C7119423F146] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe [264768] [PID.4160] [MD5.922830BD305359EA299C1DA40D4AF48D] - (.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark S410 Series\LMADGmon.exe [952496] [PID.4900] [MD5.9252ABB792E89C8E0CFC5C3E92AB7F50] - (...) -- C:\Program Files\Lexmark\ErrorApp\LMab1err.exe [645296] [PID.5748] [MD5.5A97E4A0DCC88067C7C0BAEFE49A2632] - (.Pas de propriétaire - Real-time Protector.) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\RealTimeProtector.exe [1120064] [PID.6688] [MD5.F71D97B6B631D565AF7C6E0BDF9D49F4] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [770736] [PID.6240] [MD5.1ACCA74287FE5D7449FBB2B9F0C83341] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe [309328] [PID.6404] =>Toolbar.Google [MD5.8DB4898E61E0BB251CC0F0D1CA749C09] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe [841096] [PID.4788] [MD5.51B4461F32E67D4F5C57B0C89E4BCA48] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8177664] [PID.7488] ~ Processes Running: Scanned in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] None G0 - GCSP: Preference [User Data\Default][HomePage] http://chrome//apps/ G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Store v.0.2 (Activé) G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00 v.6.3 (Activé) G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé) G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Managerr v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé) G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [ejjicmeblgpmajnghnpcppodonldlgfn] Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00 v.4.5.3 (Activé) G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [glmfgahfleepmdfffonfckpmkondpdkg] AccelerateTab v.1.3.1, (Activé) =>PUP.SpeedDial G2 - GCE: Preference [User Data\Default] [lneaknkopdijkpnocmklfnjbeapigfbh] Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00 v.5.2.7 (Activé) G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nfengeggddojhakldhlpjdlddgkkjkdd] Advanced SystemCare Surfing Protection v.1.0.0, (Désactivé) G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00 v.0.0.6.1 (Activé) G2 - GCE: Preference [User Data\Default] [ojkdcodhlkmiakbangobnmdhieapagic] AD Block v.1.0.0, (Activé) G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé) G2 - GCE: Preference [User Data\Default] [pkndmigholgfjlniaohblojbhgjbkakn] Lightning speedDial v.1.1.9, (Désactivé) ---\\ Liste des dossiers d'extension Google Chrome G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\glmfgahfleepmdfffonfckpmkondpdkg [AccelerateTab] =>PUP.SpeedDial G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [Advanced SystemCare Surfing Protection] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u00A2\u00E2\u201A\u00AC\u00C2 \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u00A2\u00E2\u20AC\u017E\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u20AC\u0161\u00C2\u00AC\u00C3\u201A\u00C2 \u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00BE\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u2020\u00E2\u20AC \u00C3\u0192\u00E2\u20AC \u00C3\u00A2\u00E2\u201A\u00AC\u00E2\u201E\u00A2\u00C3\u0192\u00C6\u2019\u00C3\u201A\u00C2\u00A2\u00C3\u0192\u00C2\u00A2\u00C3\u00A2\u00E2\u201A\u00AC\u00C5\u00A1\u00C3\u201A\u00C2\u00AC\u00C3\u0192\u00E2\u20AC\u0161\u00C3\u201A\u00] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojkdcodhlkmiakbangobnmdhieapagic [AD Block] G2 - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail] ~ Google Lines Browser: 32 Scanned in 45mn 53s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@canalplus.fr/Assistants VOD,version=1.0.0.0] - (.Canal+ Active - npCpVod.) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\npcpvod.dll P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player.) -- C:\Program Files\DivX\DivX Web Player\npdivx32.dll P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=16.4.3505.0912] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\soulas\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\soulas\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll ~ Firefox Browser: 10 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com R3 - URLSearchHook: (no name) - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Google Inc. - Google Update.) (No version) -- (.not file.) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.) R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ IE Browser: 19 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} . (.Adblock - Helps you remove browser ads!.) -- C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - Advanced SystemCare 7 ASCPlugin_Protection.) -- C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll O2 - BHO: NitroPDFBHO Class - {CF070CB8-F02F-4af4-A7B7-8D45CAD4BB54} Clé orpheline O2 - BHO: ChromeFrame BHO - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} . (.Google Inc. - Chrome Frame renders the Web of the future.) -- C:\Program Files\Google\Chrome Frame\Application\32.0.1700.107\npchrome_frame.dll ~ BHO: 16 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google O3 - Toolbar\WebBrowser: (no name) - [HKCU]{EE5D279F-081B-4404-994D-C6B60AAEBA6D} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D7F26D0E-9801-45C3-A091-8A65E4ED73B5} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Accueil de l'imprimante Lexmark.LNK . (...) -- C:\Program Files\Lexmark\Dashboard\lx__Dashboard.exe O4 - GS\Desktop [Public]: Advanced SystemCare Ultimate 7.lnk . (.IObit - Advanced SystemCare Ultimate Tray.) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe O4 - GS\Desktop [Public]: Alcatel onetouch Manager.lnk . (.Mobile Action Tech. Inc. - onetouch Manager - Panel EXE.) -- C:\Program Files\Mobile Action\Alcatel onetouch Manager\Panelexe.exe O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd O4 - GS\Desktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files\CDBurnerXP\cdbxpp.exe O4 - GS\Desktop [Public]: Driver Booster.lnk . (.IObit - Driver Booster.) -- C:\Program Files\IObit\Driver Booster\SkipUacexec.exe O4 - GS\Desktop [Public]: eMule.lnk . (.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe O4 - GS\Desktop [Public]: IObit Malware Fighter.lnk . (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe O4 - GS\Desktop [Public]: OpenCPN 3.0.0.lnk . (...) -- C:\Program Files\OpenCPN\opencpn.exe O4 - GS\Desktop [Public]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe O4 - GS\Desktop [Public]: Smart Defrag 3.lnk . (.IObit - Smart Defrag v3.) -- C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe O4 - GS\Accessories [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe (.not file.) =>.Apple Inc O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Default Programs.lnk . (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\system32\control.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) -- C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\system32\mblctr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\system32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) -- C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [soulas]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\soulas\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O4 - GS\QuickLaunch [soulas]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\TaskBar [soulas]: ABBYY FineReader 9.0 Sprint.lnk . (...) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ICON_Sprint.exe O4 - GS\TaskBar [soulas]: ABBYY Screenshot Reader.lnk . (...) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ICON_Bonus.ScreenshotReader.exe O4 - GS\TaskBar [soulas]: Auto Shutdown.lnk . (.Ali Keshavarz - Pas de description.) -- C:\Program Files\Auto Shutdown\AutoShutdown.exe O4 - GS\TaskBar [soulas]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Users\soulas\AppData\Local\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar [soulas]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\TaskBar [soulas]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\TaskBar [soulas]: OpenOffice.org 3.4.lnk . (.OpenOffice.org - OpenOffice.org 3.4.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe O4 - GS\TaskBar [soulas]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\TaskBar [soulas]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\TaskBar [soulas]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation O4 - GS\TaskBar [soulas]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Accessories [soulas]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [soulas]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [soulas]: Run.lnk - Clé orpheline O4 - GS\Accessories [soulas]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [soulas]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\SystemTools [soulas]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\SendTo [soulas]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) -- C:\Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe O4 - GS\SendTo [soulas]: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) -- C:\Program Files\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe O4 - GS\SendTo [soulas]: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) -- C:\Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe O4 - GS\SendTo [soulas]: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe O4 - GS\SendTo [soulas]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - GS\SendTo [soulas]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\fsquirt.exe O4 - GS\SendTo [soulas]: Visage eXPert PDF.lnk - Clé orpheline O4 - GS\Desktop [soulas]: adwcleaner - Raccourci.lnk . (...) -- C:\Users\soulas\Downloads\sécurité anti malware\adwcleaner.exe O4 - GS\Desktop [soulas]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\soulas\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O4 - GS\Desktop [soulas]: budget - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\BUDGET\budget.ods O4 - GS\Desktop [soulas]: budget annuel - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\BUDGET\budget annuel.ods O4 - GS\Desktop [soulas]: budget_-_depenses - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\barak\budget_-_depenses.ods O4 - GS\Desktop [soulas]: CLEFS - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\DIVERS\CLEFS.ods O4 - GS\Desktop [soulas]: courses bateau - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\NAVIGATION\BATEAU\courses bateau.odt O4 - GS\Desktop [soulas]: DIVERS - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\DIVERS\DIVERS.odt O4 - GS\Desktop [soulas]: entete lettre - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\PAPIERS ETAT CIVIL\papiers divers\entete lettre.odt O4 - GS\Desktop [soulas]: entête lettre - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\TRADUCTION\entête lettre.odt O4 - GS\Desktop [soulas]: FileZilla.lnk . (.FileZilla Project - FileZilla FTP Client.) -- C:\Program Files\FileZilla FTP Client\filezilla.exe O4 - GS\Desktop [soulas]: films & séries - Raccourci.lnk . (...) -- F:\Download\films & séries O4 - GS\Desktop [soulas]: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe O4 - GS\Desktop [soulas]: Glary Utilities.lnk . (.Glarysoft Ltd - Glary Utilities.) -- C:\Program Files\Glary Utilities\Integrator.exe O4 - GS\Desktop [soulas]: Microsoft Security Essentials.lnk . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe O4 - GS\Desktop [soulas]: planing USA 2014 - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\VOYAGE\2014\planing USA 2014.ods O4 - GS\Desktop [soulas]: prises en charge - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\DIVERS\prises en charge.ods O4 - GS\Desktop [soulas]: recettes trad. - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\TRADUCTION\recettes trad..ods O4 - GS\Desktop [soulas]: SECU - Raccourci.lnk . (...) -- C:\Users\soulas\Documents\DIVERS\SECU.ods O4 - GS\Desktop [soulas]: Transmission Remote.lnk . (...) -- C:\Program Files\Transmission Remote\Transmission Remote.exe O4 - GS\Desktop [soulas]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman ~ Global Startup: 83 Scanned in 00mn 01s ---\\ Applications lancées au démarrage du sytème (O4) O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- c:\program files\common files\apple\apple application support\apsdaemon.exe O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\soulas\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc O4 - HKCU\..\Run: [SFR Mediacenter] . (.SFR - Mediacenter Evolution.) -- C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe O4 - HKCU\..\Run: [Advanced SystemCare Ultimate] . (.IObit - Advanced SystemCare Ultimate Tray.) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe O4 - HKCU\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- c:\users\soulas\appdata\local\microsoft\skydrive\skydrive.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google O4 - HKCU\..\policies\Explorer\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\soulas\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [SFR Mediacenter] . (.SFR - Mediacenter Evolution.) -- C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [Advanced SystemCare Ultimate] . (.IObit - Advanced SystemCare Ultimate Tray.) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- c:\users\soulas\appdata\local\microsoft\skydrive\skydrive.exe O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd O4 - HKUS\S-1-5-21-4110217011-1542088162-2463617183-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} . (.Microsoft Corporation - Synchronisation des favoris ActiveSync.) -- C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} -- Clé orpheline ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll ~ Winsock: 9 Scanned in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} ((no name)) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab ~ Objets ActiveX: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{760EE7F4-189F-42D1-AC17-815E484891FE}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{AF6200AA-01A0-44F7-9CC0-1A5796F05451}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{760EE7F4-189F-42D1-AC17-815E484891FE}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{AF6200AA-01A0-44F7-9CC0-1A5796F05451}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{760EE7F4-189F-42D1-AC17-815E484891FE}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{AF6200AA-01A0-44F7-9CC0-1A5796F05451}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe O23 - Service: AdvancedSystemCareAntivirus (ASCAntivirusSrv) . (.IOBit - Advanced SystemCare Ultimate Service.) - C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 334.8.) - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: StarWind AE Service (StarWindServiceAE) . (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe ~ Services: 14 Scanned in 00mn 02s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (SmartDefragBootTime.exe) - File not found ~ BEX: 2 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job [314] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4110217011-1542088162-2463617183-1000Core.job [1030] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4110217011-1542088162-2463617183-1000UA.job [1082] [MD5.9D96B0D5855FD1B98023B3EEC9F06786] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [257928] [MD5.CDAA52F49D4073E347BCF3C4F46CC12E] [APT] [ASC7U_SkipUac_soulas] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASC.exe [4746048] [MD5.04505C46F9CB7D8F8769B566EDC42282] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4505368] =>.Piriform Ltd [MD5.7AA0257F4F614D91B3E65C8B0009B3C0] [APT] [Driver Booster Scan] (.IObit.) -- C:\Program Files\IObit\Driver Booster\Scheduler.exe [55104] [MD5.A20EECED6328A2AF43BF1F53B84F868D] [APT] [Driver Booster SkipUAC (soulas)] (.IObit.) -- C:\Program Files\IObit\Driver Booster\DriverBooster.exe [3775808] [MD5.0AE8C40EE2381390BE8A28036F9C152B] [APT] [Driver Booster Update] (.IObit.) -- C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [1034048] [MD5.8E9371203664927C54BFB3DBC0A712A3] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\initialize.exe [90936] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-4110217011-1542088162-2463617183-1000Core] (.Google Inc..) -- C:\Users\soulas\AppData\Local\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-4110217011-1542088162-2463617183-1000UA] (.Google Inc..) -- C:\Users\soulas\AppData\Local\Google\Update\GoogleUpdate.exe [116648] [MD5.A5DC9AFF60B3E7500902267DCFA0C746] [APT] [SmartDefrag3_Update] (.IObit.) -- C:\Program Files\IObit\Smart Defrag 3\AutoUpdate.exe [2312480] [MD5.A9E39A061CF55238D9BBD8113EDA929D] [APT] [Uninstaller_SkipUac_Administrator] (.IObit.) -- C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [7560992] [MD5.00000000000000000000000000000000] [APT] [{3DC8B167-351F-4764-BB5F-00EB63CA6CA6}] (...) -- C:\Users\soulas\Documents\T‚l‚chargements\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\dr-divx_dr_divx_oss_2.0_rc2_francais_anglais_18153.exe (.not file.) [0] [MD5.F3F709C2D49DD6636F4EDE5C2CAE5448] [APT] [{67225BE6-90C2-4D84-B90F-EE80D3C53B81}] (.http://www.emule-project.net.) -- C:\Program Files\eMule\emule.exe [5758976] [MD5.00000000000000000000000000000000] [APT] [{8E92F173-5925-401F-9133-95EEB64E8F9D}] (...) -- E:\EPSON\profils ICC 1.3.0\setup.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{A4BB033C-200E-42AD-B410-BF8A82AA3F36}] (...) -- C:\Users\soulas\Downloads\s‚curit‚ anti malware\adwcleaner.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{BA461F61-FD86-4E8B-AFD8-DB0F097805F4}] (...) -- E:\EPSON\easyprint module 3.0a\setup.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{E9FE5A2F-8AA7-46AB-926C-375ECAECAA03}] (...) -- C:\Users\soulas\Documents\T‚l‚chargements\im_dict_fr.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{FEE6B0EB-05E4-49CE-B3D2-B87D3CBB55CE}] (...) -- C:\Users\soulas\Documents\T‚l‚chargements\pagedfrg.exe (.not file.) [0] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984] ~ Scheduled Task: 28 Scanned in 00mn 05s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Internet Explorer - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll O40 - ASIC: Macromedia Flash Player 8 - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 12.0 r0.) -- C:\Windows\system32\Macromed\Flash\Flash32_12_0_0_77.ocx ~ Active Setup: 11 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys O41 - Driver: (MpKsl20fdc9ed) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D83B86A2-A286-42B2-A16D-FE1B0E4AFFDF}\MpKsl20fdc9ed.sys O41 - Driver: (MpKsl7e42c40c) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D83B86A2-A286-42B2-A16D-FE1B0E4AFFDF}\MpKsl7e42c40c.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ~ Drivers: 69 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- ABBYY FineReader 9.0 Sprint O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- {F9000000-0018-0000-0000-074957833700} O42 - Logiciel: AVIcodec (remove only) - (...) [HKLM] -- AVIcodec O42 - Logiciel: AVS Image Converter 2.3.2.248 - (.Online Media Technologies Ltd..) [HKLM] -- AVS Image Converter_is1 O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM] -- AVS Update Manager_is1 O42 - Logiciel: AVS Video Converter 7 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Video Converter 7_is1 O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Software Navigator_is1 O42 - Logiciel: AbiWord 2.8.1 - (.AbiSource Developers.) [HKLM] -- AbiWord2 O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {14DC0059-00F1-4F62-BD1A-AB23CD51A95E} O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Reader 8.1.2 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A81200000003} O42 - Logiciel: Adobe SVG Viewer 3.0 - (...) [HKLM] -- Adobe SVG Viewer O42 - Logiciel: Advanced SystemCare Ultimate 7 - (.IObit.) [HKLM] -- Advanced SystemCare Ultimate_is1 O42 - Logiciel: Alcatel onetouch Manager - (.Mobile Action.) [HKLM] -- {D0DC8B2A-CD72-0200-0000-000000000000} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {F5266D28-E0B2-4130-BFC5-EE155AD514DC} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc O42 - Logiciel: Archiveur WinRAR - (...) [HKLM] -- WinRAR archiver O42 - Logiciel: Ashampoo Photo Commander 7.21 - (.ashampoo GmbH & Co. KG.) [HKLM] -- Ashampoo Photo Commander 7_is1 O42 - Logiciel: Auto Shutdown - (.Ali Keshavarz.) [HKLM] -- {220688FD-4E64-4810-B31A-32C3895DFDFA}_is1 O42 - Logiciel: AxCrypt 1.7.2931.0 - (.Axantum Software AB.) [HKLM] -- {19ABDEEB-3B53-4C40-B00C-7C2994393F19} O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU] -- BitTorrent =>P2P.BitTorrent O42 - Logiciel: CANAL+ CANALSAT A LA DEMANDE - (.CanalPlus.) [HKLM] -- {04DA096D-6236-4A5D-8FB6-3081E67009BA} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>.Piriform Ltd O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 O42 - Logiciel: ConvertMovie 4.1 - (.MOVAVI.) [HKLM] -- ConvertMovie 4.1 O42 - Logiciel: Convertisseur La Poste - (...) [HKLM] -- Convertisseur La Poste O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink PowerDVD Copy - (.CyberLink Corp..) [HKLM] -- {E3D04529-6EDB-11D8-A372-0050BAE317E1} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite =>.DT Soft Ltd O42 - Logiciel: DivX - (.DivX, Inc..) [HKLM] -- {7B63B2922B174135AFC0E1377DD81EC2} O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM] -- {B13A7C41581B411290FBC0395694E2A9} O42 - Logiciel: DivX Player - (.DivXNetworks, Inc..) [HKLM] -- {8ADFC4160D694100B5B8A22DE9DCABD9} O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM] -- {B7050CBDB2504B34BC2A9CA0A692CC29} O42 - Logiciel: Dr. DivX 2.0 OSS - (...) [HKCU] -- Dr. DivX 2.0 OSS O42 - Logiciel: Driver Booster - (.IObit.) [HKLM] -- Driver Booster_is1 O42 - Logiciel: Fax-Internet 3.1 - (.Axmapresse.) [HKLM] -- Fax-Internet_is1 O42 - Logiciel: FileZilla Client 3.7.3 - (.Tim Kosse.) [HKLM] -- FileZilla Client O42 - Logiciel: FormatFactory 3.3.1.0 - (.Format Factory.) [HKLM] -- FormatFactory O42 - Logiciel: FreeOCR v4.2 - (...) [HKLM] -- freeocr_is1 O42 - Logiciel: GIMPshop 2.2.8 - (.The GIMP team (hack by Scott Moschella).) [HKLM] -- GIMPshop O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090} O42 - Logiciel: Game Booster 3 - (.IObit.) [HKLM] -- Game Booster_is1 O42 - Logiciel: Gestionnaire pour appareils Windows Mobile - (.Microsoft Corporation.) [HKLM] -- {904CCF62-818D-4675-BC76-D37EB399F917} O42 - Logiciel: Glary Utilities Pro 2.23.0.923 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {1C3DA126-D523-4089-BCCA-FA46FE34D6F8} O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB} O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {1D14373E-7970-4F2F-A467-ACA4F0EA21E3} =>.Google Inc O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Google+ Auto Backup - (.Google, Inc..) [HKCU] -- Google+ Auto Backup O42 - Logiciel: Google+ Auto Backup - (.Google.) [HKLM] -- {A50DE037-B5C0-4C8A-8049-B0C576B313D1} O42 - Logiciel: Google Chrome Frame - (.Google Inc..) [HKLM] -- Google Chrome Frame O42 - Logiciel: Horloge La Poste - (...) [HKLM] -- Horloge La Poste O42 - Logiciel: IObit Malware Fighter - (.IObit.) [HKLM] -- IObit Malware Fighter_is1 O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall O42 - Logiciel: ITN Converter 1.83 - (.Benichou Software.) [HKLM] -- ITN Converter_is1 O42 - Logiciel: ImgBurn 2.3.2.0 Fr - (...) [HKLM] -- {75ADEFA2-D4FF-4B37-9E93-4306E6AC176B}_is1 O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508} O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} O42 - Logiciel: Internet Explorer (Enable DEP) - (...) [HKLM] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {400C31E4-796F-4E86-8FDC-C3C4FACC6847} O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} O42 - Logiciel: Lexmark S410 Series Programme de désinstallation - (.Lexmark International, Inc..) [HKLM] -- Lexmark S410 Series O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Micro Application - 3D Architecte Avancé - (.Micro Application.) [HKLM] -- {BA5A59D1-A8D7-47A7-A304-0A716F43835E} O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU] -- OneDriveSetup.exe O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {0CD47142-BA4F-46B0-AA92-2675864928B8} O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: MiniTool Partition Wizard Home Edition 5.2 - (.MiniTool Solution Ltd..) [HKLM] -- {12FEC00C-027C-4A34-9AAB-562EDA43DC18}_is1 O42 - Logiciel: Mises à jour NVIDIA 1.15.2 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update O42 - Logiciel: MyDriveConnect 3.3.0.1342 - (.TomTom.) [HKLM] -- MyDriveConnect O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B} O42 - Logiciel: ONE TOUCH Upgrade S 2.8.0 - (.TCL Communication Technology Holdings Limited.) [HKLM] -- {C9A7E6A6-110D-4DBC-A8E2-F634613B5A8C}_is1 O42 - Logiciel: OpenCPN 3.0.0 - (.opencpn.org.) [HKLM] -- OpenCPN 3.0.0 O42 - Logiciel: OpenOffice.org 3.4 - (.OpenOffice.org.) [HKLM] -- {2F90A789-DD1E-41CE-BFCA-BD78213BABC7} O42 - Logiciel: PDF Download for Internet Explorer - (.Nitro PDF Software.) [HKLM] -- {B43A3C5D-7F74-4493-840E-D7B74520BC19} O42 - Logiciel: PDF to JPG Converter 1.0 - (...) [HKLM] -- PDF to JPG Converter O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: Photo Notifier and Animation Creator - (.Nom de votre société.) [HKLM] -- {6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7} O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3 O42 - Logiciel: Quick PDF Tools 2.1.6.1 - (.Debenu.) [HKLM] -- Quick PDF Tools O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A} O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM] -- {111EE7DF-FC45-40C7-98A7-753AC46B12FB} O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva O42 - Logiciel: SDL Trados 2011 SP2 - Remove suite of products - (.SDL.) [HKLM] -- TranslationStudio2011 O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit O42 - Logiciel: SFR - Mediacenter Evolution - (.SFR.) [HKLM] -- SFR_Mediacenter Evolution O42 - Logiciel: Scribus 1.3.3.14 - (.The Scribus Team.) [HKLM] -- Scribus 1.3.3.14 O42 - Logiciel: Serif DrawPlus X2 - (.Serif (Europe) Ltd.) [HKLM] -- {4D9DD45B-E79A-4F04-898E-B2C3769AB729} O42 - Logiciel: Skype™ 6.3 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} O42 - Logiciel: Smart Defrag 3 - (.IObit.) [HKLM] -- Smart Defrag 3_is1 O42 - Logiciel: Squid from Great Circle - (...) [HKLM] -- Squid O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM] -- IObit Surfing Protection_is1 O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM] -- {99072AB4-D795-44D5-9D65-E3C9F8322C97} O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} O42 - Logiciel: Transmission Remote - (.Alan F.) [HKLM] -- Transmission Remote O42 - Logiciel: TurboSFX 3.1 - (...) [HKLM] -- TurboSFX 3.0 O42 - Logiciel: Ugrib RC1 - (.GRIB.US.) [HKLM] -- Ugrib_is1 O42 - Logiciel: VSO Image Resizer 2.1.8.2 - (.VSO-Software.) [HKLM] -- {3EE51BAD-9916-49C7-90BA-3D500B031E0C}_is1 O42 - Logiciel: VideoLAN VLC media player 0.8.6f - (.VideoLAN Team.) [HKLM] -- VLC media player =>.VideoLAN O42 - Logiciel: Visionneuse Microsoft PowerPoint - (.Microsoft Corporation.) [HKLM] -- {95140000-00AF-040C-0000-0000000FF1CE} O42 - Logiciel: Visual Passage Planner 2 - (.Digital Wave.) [HKLM] -- Visual Passage Planner_is1 O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM] -- {4412F224-3849-4461-A3E9-DEEF8D252790} O42 - Logiciel: Windows 7 Codec Pack 3.0.0 - (.Windows 7 Codec Pack.) [HKLM] -- Windows 7 - Codec Pack O42 - Logiciel: Windows Mobile Device Center Driver Update - (.Microsoft Corporation.) [HKLM] -- {E7044E25-3038-4A76-9064-344AC038043E} O42 - Logiciel: eMule - (...) [HKLM] -- eMule O42 - Logiciel: eXPert PDF 4 - (.Visage Software.) [HKLM] -- {A6E92CAB-9E63-46DC-8ABF-0CAFF7B7CD02} O42 - Logiciel: pdfforge Toolbar v7.6 - (.Spigot, Inc..) [HKLM] -- {199624B4-6BC0-48C2-AB7E-9AB90B249CD7} =>PUP.Dealio ~ Logic: 64 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\3SOFT] [HKCU\Software\ABBYY] [HKCU\Software\AC3Filter] [HKCU\Software\AVS4YOU] [HKCU\Software\Adobe] [HKCU\Software\Alcohol Soft] [HKCU\Software\AppDataLow\ISWVolatile] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Ashampoo] [HKCU\Software\Axantum] [HKCU\Software\Axmapresse] [HKCU\Software\Blizzard Entertainment] [HKCU\Software\BugSplat] [HKCU\Software\Canneverbe Limited] [HKCU\Software\CheckPoint] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Crystal Dynamics] [HKCU\Software\CyberLink] [HKCU\Software\DSP-worx] [HKCU\Software\DT Soft] [HKCU\Software\Digital Wave] [HKCU\Software\DivXNetworks] [HKCU\Software\EPSON] [HKCU\Software\FreeTime] [HKCU\Software\FxPhoneBook] [HKCU\Software\GNU] [HKCU\Software\GSpot Appliance Corp] [HKCU\Software\Gabest] [HKCU\Software\GlarySoft] [HKCU\Software\GoPal Assistant] [HKCU\Software\Google] [HKCU\Software\Haali] [HKCU\Software\HookNetwork] [HKCU\Software\IM Providers] [HKCU\Software\IM] [HKCU\Software\ITNConv] [HKCU\Software\ImInstaller] [HKCU\Software\ImgBurn] [HKCU\Software\IncrediMail] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Lexmark] [HKCU\Software\Licenses] [HKCU\Software\MOVAVI] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Micro Application] [HKCU\Software\MiniTool Solution Ltd.] [HKCU\Software\Mobile Action] [HKCU\Software\MozillaPlugins] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\Neuf] [HKCU\Software\Nitro] [HKCU\Software\OpenOffice.org] [HKCU\Software\PDFCreator] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\PrinterSetupUtility] [HKCU\Software\Realtek] [HKCU\Software\Serif] [HKCU\Software\Serious Games Interactive] [HKCU\Software\Skype] [HKCU\Software\THQ] [HKCU\Software\TeleCharger] [HKCU\Software\TomTom] [HKCU\Software\TransmissionRemote] [HKCU\Software\Trolltech] [HKCU\Software\VSO] [HKCU\Software\Valve] [HKCU\Software\Visage Software] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Windows 7 - Codec Pack] [HKCU\Software\Wow6432Node] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\eMule] [HKCU\Software\ej-technologies] [HKCU\Software\mb Software AG] [HKCU\Software\mioreader] [HKCU\Software\sYk0] [HKLM\Software\ABBYY] [HKLM\Software\ADSRemoval] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ATI Technologies] [HKLM\Software\AVS4YOU] [HKLM\Software\AbiWord] [HKLM\Software\Adobe] [HKLM\Software\AdwCleaner] [HKLM\Software\Alcohol Soft] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Ashampoo] [HKLM\Software\AviSynth] [HKLM\Software\Axantum] [HKLM\Software\Bethesda Softworks] [HKLM\Software\Bunndle] [HKLM\Software\Canneverbe Limited] [HKLM\Software\CheckPoint] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\DT Soft] [HKLM\Software\DTS] [HKLM\Software\Danger Close Games] [HKLM\Software\DivXNetworks] [HKLM\Software\Dolby] [HKLM\Software\EPSON] [HKLM\Software\FileZilla 3] [HKLM\Software\FlexCell Studio] [HKLM\Software\GIMPBackground] [HKLM\Software\GNU] [HKLM\Software\Google] [HKLM\Software\HaaliMkx] [HKLM\Software\IM Providers] [HKLM\Software\IObit] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\Knowles] [HKLM\Software\LexmarkInkjet] [HKLM\Software\LexmarkLaser] [HKLM\Software\Lexmark] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Mio] [HKLM\Software\Mobile Action] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nahimic] [HKLM\Software\Neuf] [HKLM\Software\Nuance] [HKLM\Software\ODBC] [HKLM\Software\OpenCPN] [HKLM\Software\OpenOffice.org] [HKLM\Software\PDFCreator] [HKLM\Software\Photo Notifier and Animation Creator] [HKLM\Software\Piriform] [HKLM\Software\PocketSoft] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Riot Games] [HKLM\Software\SRS Labs] [HKLM\Software\Secure] [HKLM\Software\Serif] [HKLM\Software\Skype] [HKLM\Software\SonicFocus] [HKLM\Software\Sonic] [HKLM\Software\TomTom] [HKLM\Software\Trad-FR] [HKLM\Software\TransmissionRemote] [HKLM\Software\VideoLAN] [HKLM\Software\Visage Software] [HKLM\Software\Volatile] [HKLM\Software\Waves Audio] [HKLM\Software\Wow6432Node] [HKLM\Software\supTab] =>PUP.SupTab [HKLM\Software\supWPM] =>PUP.WpManager [HKLM\Software\tpfmon] [HKLM\Software\vso] ~ Key Software: 362 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 16/01/2013 - 17:37:48 - [164,716] ----D C:\Program Files\ABBYY FineReader 9.0 Sprint O43 - CFD: 31/08/2012 - 14:46:18 - [20,205] ----D C:\Program Files\AbiWord O43 - CFD: 20/09/2012 - 14:11:56 - [191,354] ----D C:\Program Files\Adobe O43 - CFD: 31/08/2012 - 13:14:12 - [117,667] ----D C:\Program Files\AGEIA Technologies O43 - CFD: 19/12/2012 - 14:06:23 - [10,210] ----D C:\Program Files\Alcohol Soft O43 - CFD: 17/10/2012 - 09:43:10 - [2,316] ----D C:\Program Files\Apple Software Update =>.Apple Inc O43 - CFD: 14/09/2012 - 14:06:05 - [67,051] ----D C:\Program Files\Ashampoo O43 - CFD: 31/08/2012 - 14:06:56 - [1,567] ----D C:\Program Files\Auto Shutdown O43 - CFD: 31/08/2012 - 14:14:35 - [0,397] ----D C:\Program Files\AVIcodec O43 - CFD: 01/05/2013 - 13:29:54 - [83,062] ----D C:\Program Files\AVS4YOU O43 - CFD: 26/04/2013 - 13:24:47 - [2,430] ----D C:\Program Files\Axantum O43 - CFD: 31/08/2012 - 14:52:14 - [11,445] ----D C:\Program Files\Axmapresse O43 - CFD: 20/09/2012 - 14:12:41 - [2,551] ----D C:\Program Files\Canal+ O43 - CFD: 28/02/2014 - 12:05:04 - [6,801] ----D C:\Program Files\CCleaner =>.Piriform Ltd O43 - CFD: 31/08/2012 - 14:50:09 - [12,000] ----D C:\Program Files\CDBurnerXP O43 - CFD: 13/02/2014 - 19:45:56 - [472,549] ----D C:\Program Files\Common Files O43 - CFD: 16/09/2012 - 15:29:20 - [3,252] ----D C:\Program Files\ConvertMovie 4.1 O43 - CFD: 31/08/2012 - 14:37:31 - [162,537] ----D C:\Program Files\CyberLink O43 - CFD: 10/12/2012 - 14:21:43 - [26,561] ----D C:\Program Files\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 31/08/2012 - 14:11:32 - [61,586] ----D C:\Program Files\DivX O43 - CFD: 02/09/2012 - 18:40:27 - [79,371] ----D C:\Program Files\DVD Maker O43 - CFD: 01/09/2012 - 14:46:53 - [10,402] ----D C:\Program Files\eMule O43 - CFD: 16/01/2013 - 16:50:19 - [0] ----D C:\Program Files\EPSON O43 - CFD: 30/08/2012 - 16:14:47 - [0] -SH-D C:\Program Files\Fichiers communs O43 - CFD: 25/08/2013 - 11:49:55 - [17,329] ----D C:\Program Files\FileZilla FTP Client O43 - CFD: 03/02/2014 - 12:57:49 - [154,250] ----D C:\Program Files\FreeTime O43 - CFD: 30/08/2012 - 17:06:35 - [29,638] ----D C:\Program Files\GIMPshop O43 - CFD: 17/01/2014 - 06:24:59 - [17,969] ----D C:\Program Files\Glary Utilities O43 - CFD: 22/06/2013 - 08:27:58 - [654,285] ----D C:\Program Files\Google O43 - CFD: 27/10/2013 - 12:21:06 - [9,105] ----D C:\Program Files\GRIB.US O43 - CFD: 31/08/2012 - 14:35:20 - [2,163] ----D C:\Program Files\ImgBurn O43 - CFD: 23/01/2013 - 15:48:27 - [26,489] ----D C:\Program Files\IncrediMail O43 - CFD: 11/02/2014 - 14:11:15 - [44,110] --H-D C:\Program Files\InstallShield Installation Information O43 - CFD: 31/08/2012 - 13:12:15 - [19,319] ----D C:\Program Files\Intel O43 - CFD: 13/03/2014 - 08:19:00 - [5,288] ----D C:\Program Files\Internet Explorer O43 - CFD: 14/03/2014 - 08:40:32 - [1391,346] ----D C:\Program Files\IObit O43 - CFD: 19/02/2014 - 18:01:52 - [1,909] ----D C:\Program Files\ITN Converter O43 - CFD: 15/10/2012 - 17:20:15 - [0,002] ----D C:\Program Files\jv16 PowerTools 2008 O43 - CFD: 31/08/2012 - 14:15:51 - [4,633] ----D C:\Program Files\La Poste O43 - CFD: 16/01/2013 - 17:54:33 - [61,378] ----D C:\Program Files\Lexmark O43 - CFD: 20/01/2013 - 01:04:16 - [264,695] ----D C:\Program Files\Lexmark S410 Series O43 - CFD: 22/05/2013 - 14:09:25 - [13,251] ----D C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 12/10/2013 - 15:38:32 - [108,169] ----D C:\Program Files\MEDION GoPal Assistant O43 - CFD: 13/02/2014 - 19:43:28 - [1781,174] ----D C:\Program Files\Micro Application O43 - CFD: 14/12/2012 - 18:15:45 - [140,966] ----D C:\Program Files\Microsoft Games O43 - CFD: 31/08/2012 - 15:10:19 - [32,729] ----D C:\Program Files\Microsoft Office O43 - CFD: 20/11/2013 - 00:16:51 - [22,337] ----D C:\Program Files\Microsoft Security Client O43 - CFD: 13/03/2014 - 08:18:55 - [40,879] ----D C:\Program Files\Microsoft Silverlight O43 - CFD: 02/09/2012 - 22:29:40 - [5,306] ----D C:\Program Files\Microsoft SkyDrive =>.Microsoft Corporation O43 - CFD: 02/09/2012 - 22:35:21 - [1,745] ----D C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 31/08/2012 - 17:37:55 - [0,023] ----D C:\Program Files\Microsoft.NET O43 - CFD: 29/09/2012 - 13:14:44 - [18,372] ----D C:\Program Files\MiniTool Partition Wizard Home Edition 5.2 O43 - CFD: 14/06/2013 - 13:18:46 - [531,901] ----D C:\Program Files\Mobile Action O43 - CFD: 16/09/2012 - 15:29:20 - [24,211] ----D C:\Program Files\MOVAVI O43 - CFD: 31/08/2012 - 13:47:42 - [0] ----D C:\Program Files\Mozilla Firefox O43 - CFD: 14/07/2009 - 05:52:30 - [0,025] ----D C:\Program Files\MSBuild O43 - CFD: 31/08/2012 - 15:10:03 - [63,464] ----D C:\Program Files\MSECache O43 - CFD: 09/10/2012 - 00:33:23 - [0] ----D C:\Program Files\MSXML 4.0 O43 - CFD: 31/01/2014 - 13:52:45 - [17,606] ----D C:\Program Files\MyDrive Connect O43 - CFD: 30/08/2012 - 16:32:32 - [17,874] ----D C:\Program Files\Neuf O43 - CFD: 31/08/2012 - 14:29:47 - [0,431] ----D C:\Program Files\Nitro PDF O43 - CFD: 15/12/2013 - 15:58:38 - [469,329] ----D C:\Program Files\NVIDIA Corporation O43 - CFD: 22/09/2012 - 23:58:32 - [1654,939] ----D C:\Program Files\OpenCPN O43 - CFD: 31/08/2012 - 13:38:58 - [285,319] ----D C:\Program Files\OpenOffice.org 3 O43 - CFD: 31/08/2012 - 14:27:17 - [0,338] ----D C:\Program Files\PDF to JPG Converter O43 - CFD: 09/10/2013 - 14:34:05 - [20,620] ----D C:\Program Files\PDFCreator O43 - CFD: 23/01/2013 - 15:49:17 - [2,630] ----D C:\Program Files\Photo Notifier and Animation Creator O43 - CFD: 18/12/2012 - 16:20:10 - [5,896] ----D C:\Program Files\Playlogic O43 - CFD: 31/08/2012 - 14:26:40 - [8,830] ----D C:\Program Files\Quick PDF Tools O43 - CFD: 04/03/2014 - 14:28:37 - [74,519] ----D C:\Program Files\QuickTime O43 - CFD: 31/08/2012 - 13:18:24 - [41,743] ----D C:\Program Files\Realtek O43 - CFD: 17/01/2014 - 07:51:03 - [5,014] ----D C:\Program Files\Recuva O43 - CFD: 14/07/2009 - 05:52:30 - [37,357] ----D C:\Program Files\Reference Assemblies O43 - CFD: 31/08/2012 - 15:15:05 - [64,483] ----D C:\Program Files\Scribus 1.3.3.14 O43 - CFD: 07/10/2012 - 22:59:01 - [0] ----D C:\Program Files\SEGA O43 - CFD: 13/02/2014 - 19:44:34 - [351,528] ----D C:\Program Files\Serif O43 - CFD: 26/10/2012 - 15:06:47 - [56,201] ----D C:\Program Files\SFR O43 - CFD: 28/05/2013 - 07:15:07 - [18,068] R---D C:\Program Files\Skype O43 - CFD: 27/10/2013 - 11:13:54 - [142,482] ----D C:\Program Files\Squid O43 - CFD: 31/08/2012 - 13:17:48 - [0] --H-D C:\Program Files\Temp O43 - CFD: 08/11/2013 - 10:44:03 - [49,509] ----D C:\Program Files\TomTom HOME 2 O43 - CFD: 31/01/2014 - 13:52:47 - [0,043] ----D C:\Program Files\TomTom International B.V O43 - CFD: 31/08/2012 - 14:33:45 - [2,762] ----D C:\Program Files\Transmission Remote O43 - CFD: 31/08/2012 - 15:17:40 - [2,895] ----D C:\Program Files\TurboSFX 3.1 O43 - CFD: 14/07/2009 - 05:53:23 - [0] --H-D C:\Program Files\Uninstall Information O43 - CFD: 09/10/2012 - 22:13:18 - [0] ----D C:\Program Files\Video Convert Master O43 - CFD: 30/08/2012 - 17:05:45 - [31,794] ----D C:\Program Files\VideoLAN O43 - CFD: 20/09/2012 - 14:32:15 - [33,047] ----D C:\Program Files\Visagesoft O43 - CFD: 27/10/2013 - 12:14:43 - [102,693] ----D C:\Program Files\Visual Passage Planner 2 O43 - CFD: 31/08/2012 - 15:17:58 - [25,062] ----D C:\Program Files\VSO O43 - CFD: 25/08/2013 - 10:07:43 - [2,909] ----D C:\Program Files\Windows Defender O43 - CFD: 25/08/2013 - 10:07:47 - [6,688] ----D C:\Program Files\Windows Journal O43 - CFD: 06/05/2013 - 08:06:55 - [117,145] ----D C:\Program Files\Windows Live O43 - CFD: 02/09/2012 - 18:40:27 - [5,895] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 11/12/2013 - 06:19:30 - [6,298] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 30/08/2012 - 16:14:47 - [11,632] ----D C:\Program Files\Windows NT O43 - CFD: 02/09/2012 - 18:40:27 - [4,213] ----D C:\Program Files\Windows Photo Viewer O43 - CFD: 02/09/2012 - 18:40:27 - [0,181] ----D C:\Program Files\Windows Portable Devices O43 - CFD: 02/09/2012 - 18:40:27 - [10,503] ----D C:\Program Files\Windows Sidebar O43 - CFD: 30/08/2012 - 17:07:15 - [3,292] ----D C:\Program Files\WinRAR O43 - CFD: 27/03/2014 - 13:09:31 - [17,112] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman O43 - CFD: 16/01/2013 - 17:37:32 - [7,720] ----D C:\Program Files\Common Files\ABBYY O43 - CFD: 31/08/2012 - 15:15:30 - [15,146] ----D C:\Program Files\Common Files\Adobe O43 - CFD: 20/09/2012 - 14:11:56 - [39,997] ----D C:\Program Files\Common Files\Adobe AIR O43 - CFD: 17/10/2012 - 09:46:03 - [63,235] ----D C:\Program Files\Common Files\Apple O43 - CFD: 09/10/2012 - 22:15:15 - [91,650] ----D C:\Program Files\Common Files\AVSMedia O43 - CFD: 31/03/2013 - 14:08:52 - [0] ----D C:\Program Files\Common Files\Blizzard Entertainment O43 - CFD: 30/08/2012 - 22:11:34 - [11,907] ----D C:\Program Files\Common Files\InstallShield O43 - CFD: 14/12/2012 - 18:14:55 - [0,001] ----D C:\Program Files\Common Files\Microsoft Games O43 - CFD: 28/11/2013 - 19:36:15 - [158,805] ----D C:\Program Files\Common Files\microsoft shared O43 - CFD: 13/02/2014 - 19:45:56 - [0,622] ----D C:\Program Files\Common Files\MSSoap O43 - CFD: 14/07/2009 - 03:37:05 - [0,003] ----D C:\Program Files\Common Files\Services O43 - CFD: 06/05/2013 - 08:06:39 - [1,904] ----D C:\Program Files\Common Files\Skype O43 - CFD: 14/07/2009 - 03:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines O43 - CFD: 02/09/2012 - 18:40:27 - [9,767] ----D C:\Program Files\Common Files\System O43 - CFD: 02/09/2012 - 22:19:29 - [0] ----D C:\Program Files\Common Files\Windows Live O43 - CFD: 31/08/2012 - 13:13:59 - [32,593] ----D C:\Program Files\Common Files\Wise Installation Wizard O43 - CFD: 18/01/2013 - 16:26:47 - [1,368] ----D C:\ProgramData\ABBYY O43 - CFD: 16/01/2013 - 16:51:41 - [0,001] ----D C:\ProgramData\ADG O43 - CFD: 16/11/2012 - 13:49:19 - [0,001] ----D C:\ProgramData\Adobe O43 - CFD: 08/10/2012 - 13:32:35 - [0] ----D C:\ProgramData\Age of Empires 3 O43 - CFD: 31/08/2012 - 15:11:26 - [62,543] ----D C:\ProgramData\Apple O43 - CFD: 13/11/2012 - 14:29:23 - [78,916] ----D C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Application Data O43 - CFD: 14/09/2012 - 14:06:16 - [0,314] ----D C:\ProgramData\ashampoo O43 - CFD: 09/10/2012 - 22:16:17 - [0] ----D C:\ProgramData\AVS4YOU O43 - CFD: 30/03/2013 - 18:16:17 - [97,978] ----D C:\ProgramData\Battle.net O43 - CFD: 30/03/2013 - 18:16:55 - [0,001] ----D C:\ProgramData\Blizzard Entertainment O43 - CFD: 30/08/2012 - 16:14:47 - [0] -SH-D C:\ProgramData\Bureau O43 - CFD: 01/09/2012 - 16:34:11 - [0] ----D C:\ProgramData\Canneverbe Limited O43 - CFD: 30/08/2012 - 17:40:05 - [0,004] ----D C:\ProgramData\CheckPoint O43 - CFD: 31/08/2012 - 14:37:31 - [0] ----D C:\ProgramData\CyberLink O43 - CFD: 10/12/2012 - 18:47:33 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Desktop O43 - CFD: 27/10/2013 - 12:14:41 - [1,938] ----D C:\ProgramData\Digital Wave O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Documents O43 - CFD: 01/09/2012 - 14:43:59 - [0] ----D C:\ProgramData\eMule O43 - CFD: 16/01/2013 - 16:50:19 - [0] ----D C:\ProgramData\EPSON O43 - CFD: 20/09/2012 - 14:32:15 - [0] ----D C:\ProgramData\eXPert PDF O43 - CFD: 21/09/2012 - 05:20:27 - [0,001] ----D C:\ProgramData\eXPert PDF 4 O43 - CFD: 20/09/2012 - 14:32:15 - [0] ----D C:\ProgramData\eXPert PDF Jobs O43 - CFD: 30/08/2012 - 16:14:47 - [0] -SH-D C:\ProgramData\Favoris O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Favorites O43 - CFD: 31/08/2012 - 14:59:56 - [0,090] ----D C:\ProgramData\FreeApp O43 - CFD: 17/01/2013 - 16:37:53 - [0,836] ----D C:\ProgramData\gn_Logs O43 - CFD: 16/12/2013 - 20:30:04 - [0,012] ----D C:\ProgramData\Google O43 - CFD: 30/08/2012 - 22:17:35 - [0] ----D C:\ProgramData\IM O43 - CFD: 30/08/2012 - 22:16:37 - [6,708] ----D C:\ProgramData\IncrediMail O43 - CFD: 31/08/2012 - 14:52:14 - [0] ----D C:\ProgramData\InternetFax O43 - CFD: 02/03/2014 - 17:56:41 - [43,400] ----D C:\ProgramData\IObit O43 - CFD: 15/12/2013 - 16:00:08 - [0,489] ----D C:\ProgramData\Lexmark Universal v2 PS3 O43 - CFD: 19/01/2013 - 14:13:33 - [135,055] ----D C:\ProgramData\LexmarkUpdate O43 - CFD: 16/01/2013 - 18:18:02 - [0,002] ----D C:\ProgramData\lx_CATS O43 - CFD: 22/05/2013 - 14:09:17 - [7,505] ----D C:\ProgramData\Malwarebytes O43 - CFD: 30/08/2012 - 16:14:47 - [0] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 13/02/2014 - 19:43:20 - [0] ----D C:\ProgramData\Micro Application O43 - CFD: 28/11/2013 - 19:32:59 - [989,694] -S--D C:\ProgramData\Microsoft O43 - CFD: 20/02/2014 - 10:31:50 - [0] ----D C:\ProgramData\Microsoft OneDrive O43 - CFD: 02/09/2012 - 22:29:22 - [0] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation O43 - CFD: 30/08/2012 - 16:14:47 - [0] -SH-D C:\ProgramData\Modèles O43 - CFD: 20/03/2014 - 11:39:05 - [3,664] ----D C:\ProgramData\NVIDIA O43 - CFD: 28/11/2013 - 16:33:47 - [3,345] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 13/03/2014 - 15:51:04 - [1,803] ----D C:\ProgramData\opencpn O43 - CFD: 28/11/2013 - 16:09:00 - [372,396] ----D C:\ProgramData\Package Cache O43 - CFD: 23/01/2013 - 15:49:17 - [0,982] ----D C:\ProgramData\Photo Notifier and Animation Creator O43 - CFD: 27/03/2014 - 12:00:44 - [0] ----D C:\ProgramData\ProductData O43 - CFD: 16/01/2013 - 20:52:51 - [0,001] ----D C:\ProgramData\PSU O43 - CFD: 04/02/2014 - 17:39:45 - [586,369] ----D C:\ProgramData\QuestForOil O43 - CFD: 28/11/2013 - 16:09:14 - [0,016] ----D C:\ProgramData\SDL O43 - CFD: 28/05/2013 - 07:15:10 - [20,571] ----D C:\ProgramData\Skype O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Start Menu O43 - CFD: 31/08/2012 - 13:06:45 - [0,137] ----D C:\ProgramData\Temp O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Templates O43 - CFD: 03/09/2013 - 12:12:56 - [0,254] ----D C:\ProgramData\TomTom O43 - CFD: 31/08/2012 - 14:52:34 - [0] ----D C:\ProgramData\tpfmon O43 - CFD: 30/08/2012 - 22:01:53 - [0,003] ----D C:\ProgramData\UDL O43 - CFD: 28/01/2014 - 16:06:10 - [0] ----D C:\ProgramData\WPM =>PUP.WpManager O43 - CFD: 12/12/2013 - 20:01:57 - [0] ----D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} O43 - CFD: 28/04/2013 - 09:38:26 - [0] ----D C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} O43 - CFD: 14/03/2014 - 08:40:51 - [0] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} O43 - CFD: 14/03/2014 - 08:40:50 - [0] ----D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424} O43 - CFD: 20/09/2012 - 14:12:01 - [24,639] ----D C:\Users\soulas\AppData\Roaming\Adobe O43 - CFD: 28/04/2013 - 09:38:24 - [0,090] ----D C:\Users\soulas\AppData\Roaming\Apple Computer O43 - CFD: 14/09/2012 - 14:06:40 - [31,822] ----D C:\Users\soulas\AppData\Roaming\Ashampoo O43 - CFD: 01/05/2013 - 13:29:59 - [0] ----D C:\Users\soulas\AppData\Roaming\AVS4YOU O43 - CFD: 26/03/2014 - 07:23:39 - [11,694] ----D C:\Users\soulas\AppData\Roaming\BitTorrent =>P2P.BitTorrent O43 - CFD: 01/09/2012 - 16:34:11 - [0,002] ----D C:\Users\soulas\AppData\Roaming\Canneverbe Limited O43 - CFD: 31/08/2012 - 13:53:04 - [0,019] ----D C:\Users\soulas\AppData\Roaming\CheckPoint O43 - CFD: 17/02/2014 - 17:27:56 - [1,991] ----D C:\Users\soulas\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 31/08/2012 - 14:15:55 - [0] ----D C:\Users\soulas\AppData\Roaming\Desktop Apps O43 - CFD: 07/09/2012 - 23:25:17 - [0] ----D C:\Users\soulas\AppData\Roaming\DivX O43 - CFD: 12/10/2012 - 05:48:49 - [0,001] ----D C:\Users\soulas\AppData\Roaming\EPSON O43 - CFD: 20/09/2012 - 14:35:51 - [0,002] ----D C:\Users\soulas\AppData\Roaming\eXPert PDF Editor O43 - CFD: 09/10/2013 - 14:34:05 - [0,024] ----D C:\Users\soulas\AppData\Roaming\FileZilla O43 - CFD: 14/12/2012 - 18:15:50 - [0,007] ----D C:\Users\soulas\AppData\Roaming\GlarySoft O43 - CFD: 16/12/2013 - 20:30:04 - [0,032] ----D C:\Users\soulas\AppData\Roaming\Google O43 - CFD: 27/10/2013 - 11:14:06 - [0] ----D C:\Users\soulas\AppData\Roaming\GreatCircle O43 - CFD: 30/08/2012 - 16:15:33 - [0] ----D C:\Users\soulas\AppData\Roaming\Identities O43 - CFD: 24/09/2012 - 15:34:55 - [0] ----D C:\Users\soulas\AppData\Roaming\ImgBurn O43 - CFD: 31/08/2012 - 13:11:47 - [0] ----D C:\Users\soulas\AppData\Roaming\InstallShield O43 - CFD: 31/08/2012 - 13:22:29 - [0] ----D C:\Users\soulas\AppData\Roaming\Intel Corporation O43 - CFD: 17/01/2014 - 07:20:43 - [317,593] ----D C:\Users\soulas\AppData\Roaming\IObit O43 - CFD: 30/03/2013 - 15:59:27 - [0] ----D C:\Users\soulas\AppData\Roaming\LolClient O43 - CFD: 30/08/2012 - 22:17:59 - [0,059] ----D C:\Users\soulas\AppData\Roaming\Macromedia O43 - CFD: 22/05/2013 - 14:09:33 - [172,745] ----D C:\Users\soulas\AppData\Roaming\Malwarebytes O43 - CFD: 14/07/2009 - 10:00:22 - [0] ----D C:\Users\soulas\AppData\Roaming\Media Center Programs O43 - CFD: 15/01/2014 - 16:32:38 - [4,651] -S--D C:\Users\soulas\AppData\Roaming\Microsoft O43 - CFD: 14/06/2013 - 13:21:11 - [1,580] ----D C:\Users\soulas\AppData\Roaming\Mobile Action O43 - CFD: 03/09/2013 - 12:12:28 - [0] ----D C:\Users\soulas\AppData\Roaming\Mozilla O43 - CFD: 12/10/2013 - 15:39:44 - [0,014] ----D C:\Users\soulas\AppData\Roaming\NVIDIA O43 - CFD: 31/08/2012 - 13:39:47 - [21,723] ----D C:\Users\soulas\AppData\Roaming\OpenOffice.org O43 - CFD: 13/02/2014 - 19:46:51 - [4,522] ----D C:\Users\soulas\AppData\Roaming\Serif O43 - CFD: 26/10/2012 - 15:09:31 - [0] ----D C:\Users\soulas\AppData\Roaming\SFR O43 - CFD: 28/05/2013 - 07:39:45 - [5,636] ----D C:\Users\soulas\AppData\Roaming\Skype O43 - CFD: 03/09/2013 - 12:12:25 - [26,068] ----D C:\Users\soulas\AppData\Roaming\TomTom O43 - CFD: 01/09/2012 - 12:44:52 - [0,354] ----D C:\Users\soulas\AppData\Roaming\vlc O43 - CFD: 19/02/2014 - 17:30:10 - [0,288] ----D C:\Users\soulas\AppData\Roaming\VSO O43 - CFD: 04/11/2012 - 12:50:10 - [0] ----D C:\Users\soulas\AppData\Roaming\Windows Live Writer O43 - CFD: 31/08/2012 - 14:05:32 - [0] ----D C:\Users\soulas\AppData\Roaming\WinRAR O43 - CFD: 27/03/2014 - 14:56:39 - [0,020] ----D C:\Users\soulas\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 18/01/2013 - 16:49:54 - [1,934] ----D C:\Users\soulas\AppData\Local\ABBYY O43 - CFD: 15/02/2014 - 15:51:16 - [0,216] ----D C:\Users\soulas\AppData\Local\Adobe O43 - CFD: 31/08/2012 - 15:11:28 - [0] ----D C:\Users\soulas\AppData\Local\Apple O43 - CFD: 04/06/2013 - 13:37:53 - [0] ----D C:\Users\soulas\AppData\Local\Apple Computer O43 - CFD: 30/08/2012 - 16:15:03 - [0] -SH-D C:\Users\soulas\AppData\Local\Application Data O43 - CFD: 21/09/2013 - 14:09:04 - [0] ----D C:\Users\soulas\AppData\Local\Apps O43 - CFD: 14/09/2012 - 14:06:16 - [0,314] ----D C:\Users\soulas\AppData\Local\ashampoo O43 - CFD: 01/09/2012 - 22:40:41 - [0] ----D C:\Users\soulas\AppData\Local\AutoShutdown O43 - CFD: 13/03/2014 - 16:10:53 - [0,114] ----D C:\Users\soulas\AppData\Local\Diagnostics O43 - CFD: 08/11/2013 - 10:43:40 - [54,908] ----D C:\Users\soulas\AppData\Local\Downloaded Installations O43 - CFD: 21/03/2014 - 08:05:39 - [0,193] ----D C:\Users\soulas\AppData\Local\ElevatedDiagnostics O43 - CFD: 01/09/2012 - 14:58:24 - [3,732] ----D C:\Users\soulas\AppData\Local\eMule O43 - CFD: 25/10/2013 - 15:25:30 - [0] ----D C:\Users\soulas\AppData\Local\FreeOCR O43 - CFD: 14/03/2014 - 08:32:58 - [1080,328] ----D C:\Users\soulas\AppData\Local\Google O43 - CFD: 27/10/2013 - 11:14:06 - [0,001] ----D C:\Users\soulas\AppData\Local\GreatCircle O43 - CFD: 30/08/2012 - 16:15:03 - [0] -SH-D C:\Users\soulas\AppData\Local\Historique O43 - CFD: 27/11/2013 - 17:40:40 - [-407,332] ----D C:\Users\soulas\AppData\Local\IM O43 - CFD: 31/08/2012 - 22:37:43 - [0,003] ----D C:\Users\soulas\AppData\Local\IsolatedStorage O43 - CFD: 18/02/2013 - 15:08:20 - [0,002] ----D C:\Users\soulas\AppData\Local\MEDION O43 - CFD: 28/11/2013 - 19:33:03 - [1426,801] ----D C:\Users\soulas\AppData\Local\Microsoft O43 - CFD: 12/11/2013 - 13:25:49 - [0,317] ----D C:\Users\soulas\AppData\Local\Microsoft Games O43 - CFD: 31/08/2012 - 14:25:52 - [0,004] ----D C:\Users\soulas\AppData\Local\Neuf O43 - CFD: 31/08/2012 - 13:20:42 - [0,039] ----D C:\Users\soulas\AppData\Local\Power2Go O43 - CFD: 15/01/2014 - 16:32:38 - [7,103] ----D C:\Users\soulas\AppData\Local\Programs O43 - CFD: 07/10/2013 - 16:09:35 - [0,174] ----D C:\Users\soulas\AppData\Local\SKIDROW O43 - CFD: 21/09/2013 - 14:26:35 - [0] ----D C:\Users\soulas\AppData\Local\Skyrim O43 - CFD: 27/03/2014 - 13:12:09 - [14,404] ----D C:\Users\soulas\AppData\Local\Temp O43 - CFD: 30/08/2012 - 16:15:03 - [0] -SH-D C:\Users\soulas\AppData\Local\Temporary Internet Files O43 - CFD: 31/01/2014 - 13:52:49 - [1879,134] ----D C:\Users\soulas\AppData\Local\TomTom O43 - CFD: 27/09/2012 - 12:47:42 - [14,570] ----D C:\Users\soulas\AppData\Local\VirtualStore O43 - CFD: 03/09/2012 - 11:57:56 - [0] ----D C:\Users\soulas\AppData\Local\VSO O43 - CFD: 21/05/2013 - 11:09:04 - [0,176] ----D C:\Users\soulas\AppData\Local\Windows Live O43 - CFD: 05/10/2012 - 16:51:09 - [0,620] ----D C:\Users\soulas\AppData\Local\Windows Live Writer O43 - CFD: 08/04/2013 - 16:06:01 - [0,016] R---D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 12/09/2013 - 05:58:16 - [0] R---D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 14/06/2013 - 13:20:52 - [0,032] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BOITE A OUTILS O43 - CFD: 14/02/2014 - 16:50:38 - [0,014] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BUREAUTIQUE O43 - CFD: 25/10/2013 - 15:35:47 - [0] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 29/10/2013 - 16:30:43 - [0,014] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GPS O43 - CFD: 25/02/2014 - 07:50:01 - [0,035] R---D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\INTERNET O43 - CFD: 14/03/2014 - 08:52:41 - [0,018] R---D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 17/01/2014 - 06:25:32 - [0,008] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PHOTO O43 - CFD: 27/03/2014 - 10:59:22 - [0,011] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SECURITE O43 - CFD: 24/10/2013 - 10:55:46 - [0,007] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SERVEURS O43 - CFD: 26/02/2014 - 17:50:22 - [0] R---D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 18/10/2012 - 16:51:50 - [0,002] --H-D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup-Disabled O43 - CFD: 08/04/2013 - 16:06:12 - [0,024] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UTILITAIRES O43 - CFD: 11/02/2014 - 14:07:47 - [0,037] ----D C:\Users\soulas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VIDEO ~ 1 Dossier CLSID vide (CLSID Empty Folder) ~ Program Folder: 269 Scanned in 00mn 33s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.9F378D86F983E84A0212678C1D18D7FC] - 13/03/2014 - 01:33:52 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [14358016] O44 - LFC:[MD5.9284BA6C27D360D71A5C0ECC8456E78E] - 13/03/2014 - 01:33:54 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1767936] O44 - LFC:[MD5.67B5955F5F2F36D58993EB87101B3D2B] - 13/03/2014 - 01:33:54 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [13761024] O44 - LFC:[MD5.D7B1721B587698D495079B28758F13B3] - 13/03/2014 - 01:33:56 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1140736] O44 - LFC:[MD5.BE2E9A1E68FB4EC3603037DEFEE54ACE] - 13/03/2014 - 01:33:56 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [109056] O44 - LFC:[MD5.31AA1C6779231BFC6F5D498363DA25F1] - 13/03/2014 - 01:33:56 ---A- . (.Microsoft Corporation - Registers custom PKEYs for IE.) -- C:\Windows\System32\RegisterIEPKEYs.exe [71680] O44 - LFC:[MD5.24E07A483C6FA35F91E9D2F84495819E] - 13/03/2014 - 01:33:56 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2049024] O44 - LFC:[MD5.006345E0F3F4C34CFFDA6CE0DB59E2F6] - 13/03/2014 - 01:33:56 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [33280] O44 - LFC:[MD5.9C53C4CD0E1B065B1BB646833F875E43] - 13/03/2014 - 01:33:56 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [42496] O44 - LFC:[MD5.803063FFA8F118D8F4CB9161F02B7B84] - 13/03/2014 - 01:33:57 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [493056] O44 - LFC:[MD5.0CAB066DB859BC54551E94453B963359] - 13/03/2014 - 01:33:57 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [391168] O44 - LFC:[MD5.ABB14EEA787B326975C53E7ED05B91F6] - 13/03/2014 - 01:33:58 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [61440] O44 - LFC:[MD5.CA0398A7BEB5DB12594EF4ABDB078A5D] - 13/03/2014 - 01:33:58 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [39936] O44 - LFC:[MD5.CAF4F8373A49BF979F2F296966E7E2A0] - 13/03/2014 - 01:33:59 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [690688] O44 - LFC:[MD5.3F2FD720B6C4EF55B25B330808121069] - 13/03/2014 - 01:33:59 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [2877952] O44 - LFC:[MD5.0F3B6590824D9C61B107A4134BB13A2F] - 13/03/2014 - 01:34:00 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [163840] O44 - LFC:[MD5.03430E5004CFEBAE4BC8C47A366F869A] - 13/03/2014 - 01:34:00 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2706432] O44 - LFC:[MD5.2BB8CF31D686AE5CA9A861ABFD04DE63] - 13/03/2014 - 08:20:07 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [400616] O44 - LFC:[MD5.9960143FF7DFE7C3A4A100EF05E5545E] - 13/03/2014 - 08:34:25 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\Drivers\Rt86win7.sys [683736] O44 - LFC:[MD5.C39C216B3E68AB28174D7362B4B70D65] - 13/03/2014 - 08:34:25 ---A- . (.Realtek Semiconductor Corporation - About Page.) -- C:\Windows\System32\RtNicProp32.dll [76872] O44 - LFC:[MD5.65A5BD4A43ED3C029A514E7502CD804F] - 13/03/2014 - 08:34:25 ---A- . (.Realtek Semiconductor Corporation - RTNUninst.) -- C:\Windows\System32\RTNUninst32.dll [100896] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/03/2014 - 08:24:48 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.CF13E92D2DBA966F6B32AE130F0956EA] - 17/03/2014 - 23:41:59 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [87350280] O44 - LFC:[MD5.9A6B360DA14574C721391745116BF6A7] - 20/03/2014 - 11:34:35 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\System32\FMAPO.dll [2421792] O44 - LFC:[MD5.851F46E6FF5C8AD0C2D118A62F9FCEA6] - 20/03/2014 - 11:34:36 ---A- . (.Waves Audio Ltd. - MaxxAudio APO Shell.) -- C:\Windows\System32\MaxxAudioAPOShell.dll [859736] O44 - LFC:[MD5.06F60AC23D14F231EFCAD54327BC0C45] - 20/03/2014 - 11:34:36 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO40.dll [1143384] O44 - LFC:[MD5.89FD91F1394F7216EDF1D946FFCAA2A6] - 20/03/2014 - 11:34:36 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO50.dll [1143384] O44 - LFC:[MD5.ADC7C0F9080D856D256F53E1B34946FC] - 20/03/2014 - 11:34:36 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioEQ.dll [1936472] O44 - LFC:[MD5.2AC901860BFD462D02776E4FF6B344D8] - 20/03/2014 - 11:34:37 ---A- . (.Waves Audio Ltd. - MaxxSpeech APO.) -- C:\Windows\System32\MaxxSpeechAPO.dll [947800] O44 - LFC:[MD5.02E5D85B6C47EA61E4D0162431F0379B] - 20/03/2014 - 11:34:37 ---A- . (.Waves Audio Ltd. - MaxxVoice APO.) -- C:\Windows\System32\MaxxVoiceAPO20.dll [785496] O44 - LFC:[MD5.7C431D2855646A9FD787FFCEB2DB9D48] - 20/03/2014 - 11:34:37 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioRealtek.dll [14444120] O44 - LFC:[MD5.C172D4F14A41BADECCD18EE655324727] - 20/03/2014 - 11:34:37 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioVnA.dll [28013656] O44 - LFC:[MD5.D177E3745C97F3F9124D548E1A4CD8AB] - 20/03/2014 - 11:34:37 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioVnN.dll [3632216] O44 - LFC:[MD5.B30FCEEE2694D388F39EC6AACB28EABE] - 20/03/2014 - 11:34:37 ---A- . (.Waves Audio Ltd. - Waves Realtek App.) -- C:\Windows\System32\MaxxAudioRealtek2.dll [1674840] O44 - LFC:[MD5.E319C2F3274C411740E36A0D9323D2B0] - 20/03/2014 - 11:34:38 ---A- . (.Nahimic Inc - Nahimic APO Settings Communication Dll.) -- C:\Windows\System32\NAHIMICAPOSettingsIPC.dll [890160] O44 - LFC:[MD5.1672FA5C2D85794A7C6495847BAC4FB3] - 20/03/2014 - 11:34:38 ---A- . (.Nahimic Inc - Nahimic APO lfx dll.) -- C:\Windows\System32\NAHIMICAPOlfx.dll [5088008] O44 - LFC:[MD5.50C82330BFE93395C8FD73DDFFD9D505] - 20/03/2014 - 11:34:39 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [732833] O44 - LFC:[MD5.029B74DD137072E0EB7D1738AF8A5418] - 20/03/2014 - 11:34:39 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes.dat [48656896] O44 - LFC:[MD5.AA09E6D6C8C0EE5E9B561081A73441EC] - 20/03/2014 - 11:34:40 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\System32\RtkApoApi.dll [782040] O44 - LFC:[MD5.0A8AEB9AAD95582695B44298FAC1C81A] - 20/03/2014 - 11:34:40 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RtkCoInstII.dll [126680] O44 - LFC:[MD5.A60ED395131D104382D8092322AEA01A] - 20/03/2014 - 11:34:40 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\System32\RtkPgExt.dll [2559192] O44 - LFC:[MD5.BA4BF94E5EC8E76C12ABDEE006816BEE] - 20/03/2014 - 11:34:40 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\System32\RtkAPO.dll [2464472] O44 - LFC:[MD5.072413353DBD94C37F23CD85E0F2DF05] - 20/03/2014 - 11:34:41 ---A- . (...) -- C:\Windows\System32\Drivers\rtvienna.dat [5804772] O44 - LFC:[MD5.F540BD2DB864551684E548233F0F297E] - 20/03/2014 - 11:34:41 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [3001048] O44 - LFC:[MD5.6E7E423CA4998DD39F2F70CE240F191B] - 20/03/2014 - 11:34:42 ---A- . (.DTS, Inc. - DTS Studio Sound.) -- C:\Windows\System32\sl3apo32.dll [827128] O44 - LFC:[MD5.2C8EC1512EFC1DC5E84E950ACAB42873] - 20/03/2014 - 11:34:42 ---A- . (.SRS Labs, Inc. - SRS Labs.) -- C:\Windows\System32\slcnt32.dll [964856] O44 - LFC:[MD5.888CE14A719A15961E40C7F1F0126DBA] - 20/03/2014 - 11:34:42 ---A- . (.TODO: - TODO: .) -- C:\Windows\System32\slprp32.dll [219896] O44 - LFC:[MD5.921A06AB1CAF273DB5DC82E5981A7C29] - 20/03/2014 - 11:34:43 ---A- . (.DTS, Inc. - DTS Studio Sound.) -- C:\Windows\System32\sltech32.dll [606968] O44 - LFC:[MD5.296242EC9D57F87C7E2D9FF9166CE1EF] - 20/03/2014 - 11:34:43 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesGUILib.dll [1821272] O44 - LFC:[MD5.602530A568C4728A9490D30E29A3D80F] - 20/03/2014 - 11:36:28 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 334.89.) -- C:\Windows\System32\nvapi.dll [2713728] O44 - LFC:[MD5.9E67C7D0D4994B7D8294E1458AC1CF19] - 20/03/2014 - 11:36:29 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 334.89.) -- C:\Windows\System32\nvcompiler.dll [17560352] O44 - LFC:[MD5.FDBA6CB3264652AC64B6AF6FAD5B53C1] - 20/03/2014 - 11:36:31 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 334.89.) -- C:\Windows\System32\nvcuda.dll [9728064] O44 - LFC:[MD5.781A544E075DC2AC18E431719ABB24F6] - 20/03/2014 - 11:36:31 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 334.8.) -- C:\Windows\System32\nvcuvid.dll [2956576] O44 - LFC:[MD5.7120FA8EA602E1C51B6E1DF2B066D04F] - 20/03/2014 - 11:36:31 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 334.89.) -- C:\Windows\System32\nvcuvenc.dll [2410784] O44 - LFC:[MD5.B4F9128210C3C4ED9F491019AC577143] - 20/03/2014 - 11:36:32 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [19204] O44 - LFC:[MD5.1DBE95BE5EA9E8CD73B909638718C536] - 20/03/2014 - 11:36:32 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco3233489.dll [1049888] O44 - LFC:[MD5.90769E066D067FE3E45A0F02FE648A13] - 20/03/2014 - 11:36:32 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco3233489.dll [895264] O44 - LFC:[MD5.2FA3E5E6BD9B77A4B2B88DC0DCBBBE2A] - 20/03/2014 - 11:36:32 ---A- . (.NVIDIA Corporation - NVIDIA Front Buffer Capture Library, Versio.) -- C:\Windows\System32\NvFBC.dll [844576] O44 - LFC:[MD5.46C8EDC1BC13FC41D5680F190DB70236] - 20/03/2014 - 11:36:32 ---A- . (.NVIDIA Corporation - NVIDIA In-band Frame Rendering Library, Ver.) -- C:\Windows\System32\NvIFR.dll [863520] O44 - LFC:[MD5.E02065816DA621E3EADBA3F456723B9B] - 20/03/2014 - 11:36:32 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 334.89.) -- C:\Windows\System32\nvd3dum.dll [14669032] O44 - LFC:[MD5.054559C7155EAE6F4D8063174D3066B7] - 20/03/2014 - 11:36:33 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10180896] O44 - LFC:[MD5.F7E68E46C1B0500982E0539C5DAFBED2] - 20/03/2014 - 11:36:34 ---A- . (.NVIDIA Corporation - NVIDIA CUDA 6.0.1 OpenCL 1.1 Driver, Versio.) -- C:\Windows\System32\nvopencl.dll [9690424] O44 - LFC:[MD5.7494788A446D231D90861134A31B49FF] - 20/03/2014 - 11:36:34 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv32.dll [23683360] O44 - LFC:[MD5.4C677EE208F7A30EE5EF9FE867CC6CD5] - 20/03/2014 - 11:36:36 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 334.89.) -- C:\Windows\System32\nvwgf2um.dll [15740232] O44 - LFC:[MD5.62939067C716439B4DA7D32ACB8ECBD9] - 20/03/2014 - 11:39:24 ---A- . (...) -- C:\log.txt [20096] O44 - LFC:[MD5.5447BC4A465F6400320D7855AFF013BF] - 24/03/2014 - 02:23:29 ---A- . (...) -- C:\Windows\MEMORY.DMP [439811737] O44 - LFC:[MD5.CA2EED764EE91BFFA8BB0640FED20CA6] - 26/03/2014 - 15:47:37 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1669522] O44 - LFC:[MD5.AF432E537E871417D90C8672F10E1ABD] - 26/03/2014 - 15:47:37 ---A- . (...) -- C:\Windows\System32\perfc009.dat [122126] O44 - LFC:[MD5.45E44E91CD6657EC443ABE88075746FF] - 26/03/2014 - 15:47:37 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [150106] O44 - LFC:[MD5.C84A921CDDAC4376740F71907F4124F9] - 26/03/2014 - 15:47:37 ---A- . (...) -- C:\Windows\System32\perfh009.dat [654254] O44 - LFC:[MD5.2DA94BC38E226CB02BABAAA8F8184E0E] - 26/03/2014 - 15:47:37 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [747644] O44 - LFC:[MD5.B23A233BE475376E5C9E92500158CF9B] - 27/03/2014 - 10:35:49 ---A- . (...) -- C:\Windows\PFRO.log [1692] O44 - LFC:[MD5.CD464ED277B55037F92B87796E56C0E3] - 27/03/2014 - 10:55:05 ---A- . (...) -- C:\TDSSKiller.2.7.17.0_27.03.2014_10.55.03_log.txt [348] O44 - LFC:[MD5.790F884A099A8E6CCFF743C6B8A220EE] - 27/03/2014 - 11:00:39 ---A- . (...) -- C:\TDSSKiller.3.0.0.26_27.03.2014_10.59.42_log.txt [202772] O44 - LFC:[MD5.708E42F847D886FE08E3E3272971046D] - 27/03/2014 - 12:18:44 ---A- . (...) -- C:\Windows\ntbtlog.txt [176424] O44 - LFC:[MD5.D0B644331D387F0A4DE707D35BA4B0E1] - 27/03/2014 - 12:21:10 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.B3EA76EAEEC436B685F2E89E69E371D2] - 27/03/2014 - 12:21:13 ---A- . (...) -- C:\Windows\setupact.log [2231] O44 - LFC:[MD5.180A2CA616B8B4C5BC6598659A9C1651] - 27/03/2014 - 13:15:19 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [18736] O44 - LFC:[MD5.180A2CA616B8B4C5BC6598659A9C1651] - 27/03/2014 - 13:15:19 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [18736] O44 - LFC:[MD5.2817D297C839C7801F0CAD85452FF8EA] - 27/03/2014 - 14:25:59 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1906650] ~ Files: 80 Scanned in 00mn 31s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.9F1669B6CA655F2869B2CEA092988C74] - 24/03/2014 - 14:18:17 ---A- - C:\Windows\Prefetch\EMULE.EXE-188E10F6.pf O45 - LFCP:[MD5.0EB733BF3FFE1D69A3FDAB4887B79ED1] - 25/03/2014 - 13:29:05 ---A- - C:\Windows\Prefetch\BITTORRENT.EXE-D396840A.pf =>P2P.BitTorrent O45 - LFCP:[MD5.D2841B850DF46B520F7E454BC88BCE02] - 26/03/2014 - 07:18:45 ---A- - C:\Windows\Prefetch\IMAPP.EXE-005076D7.pf O45 - LFCP:[MD5.35320CC52B7D8EAF3D2616E8F710B554] - 26/03/2014 - 08:38:40 ---A- - C:\Windows\Prefetch\LMADGLSCN.EXE-D2A08472.pf O45 - LFCP:[MD5.66D3B019A640FB7881BD2BE5F82D25A8] - 26/03/2014 - 19:22:20 ---A- - C:\Windows\Prefetch\INCMAIL.EXE-8674A44D.pf O45 - LFCP:[MD5.43269F55686DA86F4CD56EB57D03F51A] - 26/03/2014 - 23:38:00 ---A- - C:\Windows\Prefetch\QUARANTINE.EXE-05B196FC.pf O45 - LFCP:[MD5.7FC670811568D73C20CA97F2FDADDD2C] - 27/03/2014 - 12:00:53 ---A- - C:\Windows\Prefetch\AUTOSWEEP.EXE-6F22F808.pf O45 - LFCP:[MD5.F2B37653BCB79643C8000F70F0B0E009] - 27/03/2014 - 12:13:41 ---A- - C:\Windows\Prefetch\IMBPP.EXE-8150060C.pf O45 - LFCP:[MD5.AEAE39414BE0BB7D31C047EA69DC36E2] - 27/03/2014 - 12:22:22 ---A- - C:\Windows\Prefetch\AUTOCARE.EXE-46289E73.pf O45 - LFCP:[MD5.701B2B6D236E4BA82212B3727D3F73B4] - 27/03/2014 - 12:23:18 ---A- - C:\Windows\Prefetch\LMAB1ERR.EXE-6D39AFBB.pf O45 - LFCP:[MD5.B46BC469CA116B9B94F52F26C7EB7276] - 27/03/2014 - 12:23:49 ---A- - C:\Windows\Prefetch\ASCANTIVIRUSFIX.EXE-FC54E586.pf O45 - LFCP:[MD5.E28E4E2741543BD8FBE3E731C9C53517] - 27/03/2014 - 12:23:49 ---A- - C:\Windows\Prefetch\LMADGMON.EXE-65371C44.pf O45 - LFCP:[MD5.65E322ED9DF14F5D6ED294F3591018AC] - 27/03/2014 - 12:23:49 ---A- - C:\Windows\Prefetch\PROMOTE-UPX.EXE-6476A23C.pf O45 - LFCP:[MD5.A13B68142686BAD858712BC0D5D60014] - 27/03/2014 - 12:23:56 ---A- - C:\Windows\Prefetch\REALTIMEPROTECTOR.EXE-46BC8A38.pf O45 - LFCP:[MD5.A72267858AC72DFE34934C21E35F2884] - 27/03/2014 - 12:23:58 ---A- - C:\Windows\Prefetch\DISPLAY.EXE-BA7BFC15.pf O45 - LFCP:[MD5.FE517F97D3661907F1F233B635C1CDA6] - 27/03/2014 - 12:24:23 ---A- - C:\Windows\Prefetch\MONITORDISK.EXE-40B5FCD6.pf O45 - LFCP:[MD5.90E509E1F871D688CFEF087679B4FC91] - 27/03/2014 - 12:57:31 ---A- - C:\Windows\Prefetch\ADBLOCK.EXE-D8E71F7E.pf O45 - LFCP:[MD5.AF9A7B93806CF9AF883D5BD0D436BD27] - 27/03/2014 - 14:19:57 ---A- - C:\Windows\Prefetch\IMNOTFY.EXE-E138605A.pf O45 - LFCP:[MD5.CC77B2D63C339009A69E8AF402372AD2] - 27/03/2014 - 14:26:46 ---A- - C:\Windows\Prefetch\IMLPP.EXE-8B4B9E1E.pf ~ Prefetcher: 19 Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 13 Scanned in 00mn 00s ---\\ Clé de registre Shell MountPoints2 (MPKS) (O51) O51 - MPSK:{6c19256c-4289-11e2-9eec-40618665c7e7}\AutoRun\command. (...) -- K:\Start.exe (.not file.) O51 - MPSK:{890560c0-49dc-11e2-be37-806e6f6e6963}\AutoRun\command. (...) -- L:\steambackup.exe (.not file.) O51 - MPSK:{9a1059c9-51bc-11e2-b233-40618665c7e7}\AutoRun\command. (...) -- O:\Android_Edition_USB_DriverV5.2066.1.8.exe (.not file.) ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll O52 - TDSD: \Drivers32\"vidc.yv12"="divx.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\divx.dll O52 - TDSD: \Drivers32\"vidc.ffds"="ff_vfw.dll" . (...) -- C:\Windows\System32\ff_vfw.dll O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter.acm" . (...) -- C:\Windows\System32\ac3filter.acm O52 - TDSD: \Drivers32\"msacm.divxa32"="DivXa32.acm" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\Windows\System32\DivXa32.acm O52 - TDSD: \Drivers32\"msacm.lameacm"="LameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow Video Codec" . (...) -- C:\Windows\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"ac3filter.acm"="AC3Filter ACM codec" . (...) -- C:\Windows\System32\ac3filter.acm O52 - TDSD: \drivers.desc\"DivXa32.acm"="DivX Audio Codec" . (.Packed With Joy ! - DivX;-) Audio Codec.) -- C:\Windows\System32\DivXa32.acm O52 - TDSD: \drivers.desc\"LameACM.acm"="Lame ACM MP3 Codec" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm ~ TDSD: 13 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 16 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.FBCE2F43185104AE8BF4D32571B19203] - 14/07/2009 - 00:51:21 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys [54784] O58 - SDL:[MD5.1B133875B8AA8AC48969BD3458AFE9F5] - 20/11/2010 - 11:01:12 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys [164864] O58 - SDL:[MD5.CEA80C80BED809AA0DA6FEBC04733349] - 20/11/2010 - 13:29:15 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [274304] O58 - SDL:[MD5.1EFBC664ABFF416D1D07DB115DCB264F] - 20/11/2010 - 09:47:55 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys [10240] O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976] O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [297552] O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys [146512] O58 - SDL:[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - 14/09/2013 - 01:48:58 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys [338944] O58 - SDL:[MD5.57EC4AEF73660166074D8F7F31C0D4FD] - 14/07/2009 - 00:55:00 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys [49152] O58 - SDL:[MD5.507812C3054C21CEF746B6EE3D04DD6E] - 14/07/2009 - 02:26:15 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [53312] O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [14400] O58 - SDL:[MD5.3C6600A0696E90A463771C7422E23AB5] - 14/07/2009 - 02:26:15 ---A- . (.Microsoft Corporation - Filtre AGP AMD NT.) -- C:\Windows\System32\Drivers\AMDAGP.SYS [53312] O58 - SDL:[MD5.CD5914170297126B6266860198D1D4F0] - 14/07/2009 - 02:26:15 ---A- . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\Drivers\amdide.sys [14912] O58 - SDL:[MD5.00DDA200D71BAC534BF56A9DB5DFD666] - 14/07/2009 - 00:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [55296] O58 - SDL:[MD5.3CBF30F5370FDA40DD3E87DF38EA53B6] - 14/07/2009 - 00:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys [52736] O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 11/03/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [80256] O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 14/07/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys [159312] O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 11/03/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [22400] O58 - SDL:[MD5.AEA177F783E20150ACE5383EE368DA19] - 20/11/2010 - 10:29:49 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [50176] O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [76368] O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [86608] O58 - SDL:[MD5.ADD2ADE1C2B285AB8378D2DAAF991481] - 14/07/2009 - 00:54:46 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [17920] O58 - SDL:[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - 02:26:15 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [21584] O58 - SDL:[MD5.DDCE686D76C2B4DB435A3AF5BD0E691D] - 05/08/2013 - 02:56:47 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [133056] O58 - SDL:[MD5.547F07839F71A4357A5E503646CAC2B0] - 24/09/2012 - 15:43:10 ---A- . (...) -- C:\Windows\System32\Drivers\atksgt.sys [83872] O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\System32\Drivers\b57nd60x.sys [229888] O58 - SDL:[MD5.2B8EE031FD700AB942EBE60665440E83] - 14/07/2009 - 02:26:15 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [25168] O58 - SDL:[MD5.505506526A9D467307B3C393DEDAF858] - 14/07/2009 - 00:45:01 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [6144] O58 - SDL:[MD5.2287078ED48FCFC477B05B20CF38F36F] - 14/07/2009 - 00:23:04 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys [35328] O58 - SDL:[MD5.8F2DA3028D5FCBD1A060A3DE64CD6506] - 23/02/2011 - 05:47:33 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [69632] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [13568] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [5248] O58 - SDL:[MD5.77361D72A04F18809D0EFB6CCEB74D4B] - 14/07/2009 - 01:41:26 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [78336] O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [272128] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 13/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [62336] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [12160] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [11904] O58 - SDL:[MD5.2865A5C8E98C70C605F417908CEBB3A4] - 14/07/2009 - 00:51:36 ---A- . (.Microsoft Corporation - Extension de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthenum.sys [34816] O58 - SDL:[MD5.ED3DF7C56CE0084EB2034432FC56565A] - 14/07/2009 - 00:51:34 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [56320] O58 - SDL:[MD5.AD1872E5829E8A2C3B5B4B641C3EAB0E] - 14/07/2009 - 00:51:43 ---A- . (.Microsoft Corporation - Bluetooth Personal Area Networking.) -- C:\Windows\System32\Drivers\bthpan.sys [93696] O58 - SDL:[MD5.1153DE2E4F5941E10C399CB5592F78A1] - 06/07/2012 - 20:23:23 ---A- . (.Microsoft Corporation - Pilote de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthport.sys [393728] O58 - SDL:[MD5.C81E9413A25A439F436B1D4B6A0CF9E9] - 28/04/2011 - 04:15:03 ---A- . (.Microsoft Corporation - Pilote de Miniport Bluetooth.) -- C:\Windows\System32\Drivers\BTHUSB.SYS [60416] O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbdx.sys [430080] O58 - SDL:[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - 00:11:15 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [70656] O58 - SDL:[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - 09:38:10 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [108544] O58 - SDL:[MD5.3FE3FE94A34DF6FB06E6418D0F6A0060] - 14/07/2009 - 00:51:17 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [37888] O58 - SDL:[MD5.A6388A5ABF92C7927C085DB0A958125F] - 14/07/2009 - 02:26:15 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [140864] O58 - SDL:[MD5.DEA805815E587DAD1DD2C502220B5616] - 14/07/2009 - 00:19:18 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [14080] O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [15952] O58 - SDL:[MD5.85449EEBE8F8EBD6481EFBF0F352B4EB] - 04/07/2013 - 13:16:47 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [369848] O58 - SDL:[MD5.A6023D3823C37043986713F118A89BEE] - 14/07/2009 - 02:26:21 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys [19024] O58 - SDL:[MD5.CBE8C58A8579CFE5FCCF809E6F114E89] - 20/11/2010 - 10:50:21 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys [31232] O58 - SDL:[MD5.B7EFEF22FF426EC4158A177CB3B558D3] - 14/07/2009 - 02:20:28 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [35408] O58 - SDL:[MD5.2C4EBCFC84A9B44F209DFF6C6E6C61D1] - 14/07/2009 - 02:20:28 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys [22096] O58 - SDL:[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - 09:42:32 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [78336] O58 - SDL:[MD5.1A050B0274BFB3890703D490F330C0DA] - 14/07/2009 - 00:24:05 ---A- . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\Drivers\discache.sys [32256] O58 - SDL:[MD5.565003F326F99802E68CA78F2A68E9FF] - 14/07/2009 - 02:20:27 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [57424] O58 - SDL:[MD5.D0F0D7A97C90FE72A79732812E65F822] - 22/04/2011 - 20:14:16 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [27008] O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 14/07/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys [70720] O58 - SDL:[MD5.9842041E2F5ACE1E2F5FB4EF02053DC8] - 04/10/2013 - 02:49:41 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [81408] O58 - SDL:[MD5.B918E7C5F9BF77202F89E1A9539F2EB4] - 14/07/2009 - 00:50:57 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [5120] O58 - SDL:[MD5.687AF6BB383885FF6A64071B189A7F3E] - 10/12/2012 - 14:21:43 ---A- . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\Drivers\dtsoftbus01.sys [242240] O58 - SDL:[MD5.5428227D4730EBDFC842E9FB593F8C8A] - 14/07/2009 - 02:20:28 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [26704] O58 - SDL:[MD5.62A63EF2F3053B461CB327E4D69AAA74] - 14/07/2009 - 02:17:54 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [55584] O58 - SDL:[MD5.5FCD3320AAE71506B43F9E12E4E72172] - 14/07/2009 - 00:25:26 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys [13312] O58 - SDL:[MD5.1B6242B20CB56F85A158E67F09EE84FE] - 14/07/2009 - 00:25:25 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys [76288] O58 - SDL:[MD5.71BC35067CABC02C9453AEAA42B2E43E] - 01/08/2013 - 12:03:36 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [729024] O58 - SDL:[MD5.E405328A0E38BF823E2361C413283F6D] - 10/04/2013 - 06:18:40 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [218984] O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 14/07/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [453712] O58 - SDL:[MD5.8FC3208352DD3912C94367A206AB3F11] - 14/07/2009 - 00:19:19 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [7168] O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbdx.sys [3100160] O58 - SDL:[MD5.2DC9108D74081149CC8B651D3A26207F] - 14/07/2009 - 00:14:03 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [142336] O58 - SDL:[MD5.7E0AB74553476622FB6AE36F73D97D35] - 14/07/2009 - 00:14:02 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [148480] O58 - SDL:[MD5.E817A017F82DF2A1F8CFDBDA29388B29] - 14/07/2009 - 00:45:45 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [25088] O58 - SDL:[MD5.6CF00369C97F3CF563BE99BE983D13D8] - 14/07/2009 - 02:20:28 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [58448] O58 - SDL:[MD5.42C51DC94C91DA21CB9196EB64C45DB9] - 14/07/2009 - 00:15:29 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [28160] O58 - SDL:[MD5.87907AA70CB3C56600F1C2FB8841579B] - 14/07/2009 - 00:45:45 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [19968] O58 - SDL:[MD5.7520EC808E0C35E0EE6F841294316653] - 14/07/2009 - 02:20:28 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [198208] O58 - SDL:[MD5.1A16B57943853E598CFF37FE2B8CBF1D] - 14/07/2009 - 02:20:28 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys [46160] O58 - SDL:[MD5.7DAE5EBCC80E45D3253F4923DC424D05] - 01/03/2012 - 06:46:57 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [19824] O58 - SDL:[MD5.E306A24D9694C724FA2491278BF50FDB] - 24/01/2013 - 05:47:07 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [196328] O58 - SDL:[MD5.AAB149EE616952BB84308C28E75ED20D] - 03/01/2013 - 06:04:43 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [187752] O58 - SDL:[MD5.65EE0C7A58B65E74AE05637418153938] - 14/07/2009 - 02:20:28 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [57936] O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [26624] O58 - SDL:[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - 10:59:29 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [108544] O58 - SDL:[MD5.A5EF29D5315111C80A5C1ABAD14C8972] - 20/11/2010 - 11:00:21 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys [304128] O58 - SDL:[MD5.1D58A7F3E11A9731D0EAAAA8405ACC36] - 14/07/2009 - 00:19:21 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys [21504] O58 - SDL:[MD5.89448F40E6DF260C206A193A4683BA78] - 14/07/2009 - 00:51:33 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [91136] O58 - SDL:[MD5.50ABE682EBE752EAF62B18790D6D491C] - 03/07/2013 - 04:36:24 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [55808] O58 - SDL:[MD5.CF50B4CF4A4F229B9F3C08351F99CA5E] - 14/07/2009 - 00:51:05 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [37888] O58 - SDL:[MD5.F1B27299F547D452EDAEF01FC187CB91] - 03/07/2013 - 04:36:22 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [25728] O58 - SDL:[MD5.10C19F8290891AF023EAEC0832E1EB4D] - 20/11/2010 - 10:59:38 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [24064] O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [67152] O58 - SDL:[MD5.871917B07A141BFF43D76D8844D48106] - 20/11/2010 - 09:40:21 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [513536] O58 - SDL:[MD5.0C4E035C7F105F1299258C90886C64C5] - 20/11/2010 - 13:29:53 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys [14208] O58 - SDL:[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - 00:11:24 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [80896] O58 - SDL:[MD5.D5EDB998656E6ECF1A17C78DAB019A3C] - 02/10/2009 - 11:40:50 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x86.) -- C:\Windows\System32\Drivers\iaStor.sys [432664] O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 11/03/2011 - 06:38:51 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys [332160] O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [41040] O58 - SDL:[MD5.D6782400E92C62ED2BF3AF8ED4753738] - 18/06/2010 - 23:30:12 ---A- . (.Siliten - Flex Define Keyboard Driver.) -- C:\Windows\System32\Drivers\InputFilter_FlexDef2b.sys [14848] O58 - SDL:[MD5.A0F12F2C9BA6C72F3987CE780E77C130] - 14/07/2009 - 02:20:36 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [15424] O58 - SDL:[MD5.3B514D27BFC4ACCB4037BC6685F766E0] - 14/07/2009 - 00:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [53760] O58 - SDL:[MD5.709D1761D3B19A932FF0238EA6D50200] - 14/07/2009 - 00:54:29 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [58880] O58 - SDL:[MD5.4BD7134618C1D2A27466A099062547BF] - 20/11/2010 - 10:19:15 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [65536] O58 - SDL:[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - 00:54:29 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [101888] O58 - SDL:[MD5.9F7E491FB0BA0F9E370163834FC1FE31] - 14/07/2009 - 00:53:32 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [96768] O58 - SDL:[MD5.42996CFF20A3084A56017B7902307E9F] - 14/07/2009 - 00:53:27 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [13824] O58 - SDL:[MD5.1F32BB6B38F62F7DF1A7AB7292638A35] - 14/07/2009 - 02:20:36 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [46656] O58 - SDL:[MD5.ADEF52CA1AEAE82B50DF86B56413107E] - 14/07/2009 - 02:20:36 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [42576] O58 - SDL:[MD5.9E3CED91863E6EE98C24794D05E27A71] - 20/11/2010 - 10:50:10 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [28160] O58 - SDL:[MD5.5DCEF0C32BE0F33277326586FA503689] - 20/11/2010 - 10:50:19 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [190976] O58 - SDL:[MD5.F286830298323272260332D6ABC905C1] - 25/09/2013 - 03:01:06 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [67520] O58 - SDL:[MD5.D7C760D57B1656DD748B9E4AB6CB5A51] - 25/09/2013 - 03:01:08 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys [136640] O58 - SDL:[MD5.F8A7212D0864EF5E9185FB95E6623F4D] - 24/09/2012 - 15:43:10 ---A- . (...) -- C:\Windows\System32\Drivers\lirsgt.sys [25888] O58 - SDL:[MD5.F7611EC07349979DA9B0AE1F18CCC7A6] - 14/07/2009 - 00:53:19 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [48128] O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [95824] O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [89168] O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [54864] O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [96848] O58 - SDL:[MD5.6703E366CC18D3B6E534F5CF7DF39CEE] - 14/07/2009 - 00:15:45 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [86528] O58 - SDL:[MD5.4470E3C1E0C3378E4CAB137893C12C3A] - 04/04/2013 - 13:50:32 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [22856] O58 - SDL:[MD5.EF08D2EBE3EABBA43CC57EEE001027B6] - 14/07/2009 - 00:45:57 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [18432] O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\System32\Drivers\megasas.sys [30800] O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [235584] O58 - SDL:[MD5.F001861E5700EE84E2D4E52C712F4964] - 14/07/2009 - 00:55:24 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [31744] O58 - SDL:[MD5.79D10964DE86B292320E9DFE02282A23] - 14/07/2009 - 00:25:59 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [23552] O58 - SDL:[MD5.FB18CC1D4C2E716B6B903B0AC0CC0609] - 14/07/2009 - 02:20:44 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [41552] O58 - SDL:[MD5.2C388D2CD01C9042596CF3C8F3C7B24D] - 14/07/2009 - 00:45:08 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [26112] O58 - SDL:[MD5.FC8771F45ECCCFD89684E38842539B9B] - 20/11/2010 - 13:30:00 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [78208] O58 - SDL:[MD5.E77DC03DD3C8E5A388BF9EED2A28F3D1] - 27/09/2013 - 09:53:06 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter driver.) -- C:\Windows\System32\Drivers\MpFilter.sys [214696] O58 - SDL:[MD5.2D699FB6E89CE0D8DA14ECC03B3EDFE0] - 20/11/2010 - 13:30:01 ---A- . (.Microsoft Corporation - Pilote du bus de prise en charge des chemins d’accès multiples.) -- C:\Windows\System32\Drivers\mpio.sys [130432] O58 - SDL:[MD5.AD2723A7B53DD1AACAE6AD8C0BFBF4D0] - 14/07/2009 - 00:52:53 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [60416] O58 - SDL:[MD5.21F4B24ACFC79A483515BD986DD9043F] - 04/07/2013 - 10:48:52 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [115712] O58 - SDL:[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - 27/04/2011 - 03:17:22 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys [123904] O58 - SDL:[MD5.6D17A4791ACA19328C685D256349FEFC] - 09/07/2011 - 03:30:00 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [223744] O58 - SDL:[MD5.B81F204D146000BE76651A50670A5E9E] - 27/04/2011 - 03:17:28 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [96768] O58 - SDL:[MD5.012C5F4E9349E711E11E0F19A8589F0A] - 20/11/2010 - 13:30:01 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys [28032] O58 - SDL:[MD5.55055F8AD8BE27A64C831322A780A228] - 20/11/2010 - 13:30:04 ---A- . (.Microsoft Corporation - Module spécifique de périphériques Microsoft.) -- C:\Windows\System32\Drivers\msdsm.sys [116096] O58 - SDL:[MD5.DAEFB28E3AF5A76ABCC2C3078C07327F] - 14/07/2009 - 00:11:26 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [22528] O58 - SDL:[MD5.3E1E5767043C5AF9367F0056295E9F84] - 14/07/2009 - 00:51:08 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys [4096] O58 - SDL:[MD5.0A4E5757AE09FA9622E3158CC1AEF114] - 14/07/2009 - 02:20:43 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [13888] O58 - SDL:[MD5.CB7A9ABB12B8415BCE5D74994C7BA3AE] - 20/11/2010 - 13:30:05 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [233344] O58 - SDL:[MD5.8C0860D6366AAFFB6C5BB9DF9448E631] - 14/07/2009 - 00:45:08 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [8320] O58 - SDL:[MD5.3EA8B949F963562CEDBB549EAC0C11CE] - 14/07/2009 - 00:45:08 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [5888] O58 - SDL:[MD5.F456E973590D663B1073E9C463B40932] - 14/07/2009 - 00:45:07 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [5504] O58 - SDL:[MD5.0E008FC4819D238C51D7C93E7B41E560] - 14/07/2009 - 02:20:44 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [162896] O58 - SDL:[MD5.FC6B9FF600CC585EA38B12589BD4E246] - 14/07/2009 - 02:20:44 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [28240] O58 - SDL:[MD5.B42C6B921F61A6E55159B8BE6CD54A36] - 14/07/2009 - 00:45:08 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [6144] O58 - SDL:[MD5.33599130F44E1F34631CEA241DE8AC84] - 14/07/2009 - 00:46:55 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys [12288] O58 - SDL:[MD5.159FAD02F64E6381758C990F753BCC80] - 14/07/2009 - 02:20:44 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys [49728] O58 - SDL:[MD5.8C9C922D71F1CD4DEF73F186416B7896] - 22/08/2012 - 18:16:46 ---A- . (.Microsoft Corporation - Pilote NDIS 6.20.) -- C:\Windows\System32\Drivers\ndis.sys [712048] O58 - SDL:[MD5.0E1787AA6C9191D3D319E8BAFE86F80C] - 14/07/2009 - 00:52:44 ---A- . (.Microsoft Corporation - NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [27136] O58 - SDL:[MD5.E4A8AEC125A2E43A9E32AFEEA7C9C888] - 14/07/2009 - 00:54:24 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [20992] O58 - SDL:[MD5.D8A65DAFB3EB41CBB622745676FCD072] - 20/11/2010 - 11:06:36 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys [46080] O58 - SDL:[MD5.38FBE267E7E6983311179230FACB1017] - 20/11/2010 - 11:07:50 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [118784] O58 - SDL:[MD5.A4BDC541E69674FBFF1A8FF00BE913F2] - 20/11/2010 - 11:07:39 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [48640] O58 - SDL:[MD5.80B275B1CE3B0E79909DB7B39AF74D51] - 14/07/2009 - 00:53:54 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [36352] O58 - SDL:[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - 09:39:44 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [187904] O58 - SDL:[MD5.5DBD4F73E2A52FEED61DBAB3752E329C] - 26/11/2013 - 12:11:29 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [240576] O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [44624] O58 - SDL:[MD5.32FF06EC6D946EF791D98D6C838A3090] - 27/09/2013 - 09:53:06 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Driver.) -- C:\Windows\System32\Drivers\NisDrvWFP.sys [104768] O58 - SDL:[MD5.1DB262A9F8C087E8153D89BEF3D2235F] - 14/07/2009 - 00:11:32 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [35328] O58 - SDL:[MD5.E9A0A4D07E53D8FEA2BB8387A3293C58] - 14/07/2009 - 00:12:08 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [16896] O58 - SDL:[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 12/04/2013 - 14:45:29 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1211752] O58 - SDL:[MD5.F9756A98D69098DCA8945D62858A812C] - 14/07/2009 - 00:11:12 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [4608] O58 - SDL:[MD5.054559C7155EAE6F4D8063174D3066B7] - 20/03/2014 - 11:36:33 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 334.89.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10180896] O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 11/03/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [117120] O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 11/03/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [143744] O58 - SDL:[MD5.5A0983915F02BAE73267CC2A041F717D] - 14/07/2009 - 02:20:44 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [105024] O58 - SDL:[MD5.26384429FCD85D83746F63E798AB1480] - 14/07/2009 - 00:52:03 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [267264] O58 - SDL:[MD5.08A70A1F2CDDE9BB49B885CB817A66EB] - 14/07/2009 - 00:51:29 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys [62464] O58 - SDL:[MD5.6270CCAE2A86DE6D146529FE55B3246A] - 14/07/2009 - 00:53:58 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [104448] O58 - SDL:[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - 00:45:35 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [79360] O58 - SDL:[MD5.3F34A1B4C5F6475F320C275E63AFCE9B] - 17/03/2012 - 08:27:18 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [56176] O58 - SDL:[MD5.EB0A59F29C19B86479D36B35983DAADC] - 14/07/2009 - 00:45:29 ---A- . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\System32\Drivers\parvdm.sys [8704] O58 - SDL:[MD5.673E55C3498EB970088E812EA820AA8F] - 20/11/2010 - 13:30:06 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [153984] O58 - SDL:[MD5.AFE86F419014DB4E5593F69FFE26CE0A] - 14/07/2009 - 02:20:45 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [12368] O58 - SDL:[MD5.EDE040D666FF81BF1978D0F19F799E7A] - 14/07/2009 - 02:19:03 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [42560] O58 - SDL:[MD5.F396431B31693E71E8A80687EF523506] - 14/07/2009 - 02:19:03 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [180288] O58 - SDL:[MD5.250F6B43D2B613172035C6747AEEB19F] - 14/07/2009 - 02:19:04 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys [43088] O58 - SDL:[MD5.9E0104BA49F4E6973749A02BF41344ED] - 14/07/2009 - 01:41:15 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [586752] O58 - SDL:[MD5.EB6137D696A9B4E9718AC6F8641CB4C9] - 04/10/2013 - 02:17:08 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [177152] O58 - SDL:[MD5.85B1E3A0C7585BC4AAE6899EC6FCF011] - 14/07/2009 - 00:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [52224] O58 - SDL:[MD5.86724469CD077901706854974CD13C3E] - 27/07/2006 - 03:05:53 ----- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\Drivers\PxHelp20.sys [20640] O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1383488] O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [106064] O58 - SDL:[MD5.584078CA1B95CA72DF2A27C336F9719D] - 14/07/2009 - 00:54:13 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [31744] O58 - SDL:[MD5.30A81B53C766D0133BB86D234E5556AB] - 14/07/2009 - 00:54:40 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [11776] O58 - SDL:[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - 00:54:34 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [78848] O58 - SDL:[MD5.0FE8B15916307A6AC12BFB6A63E45507] - 14/07/2009 - 00:54:53 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [77824] O58 - SDL:[MD5.631E3E205AD6D86F2AED6A4A8E69F2DB] - 14/07/2009 - 00:54:48 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [73728] O58 - SDL:[MD5.44101F495A83EA6401D886E7FD70096B] - 14/07/2009 - 00:54:58 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [75264] O58 - SDL:[MD5.D528BC58A489409BA40334EBF96A311B] - 20/11/2010 - 09:44:05 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys [242688] O58 - SDL:[MD5.0D8F05481CB76E70E1DA06EE9F0DA9DF] - 14/07/2009 - 01:02:41 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys [18944] O58 - SDL:[MD5.23DAE03F29D253AE74C44F99E515F9A1] - 20/11/2010 - 11:22:19 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys [6656] O58 - SDL:[MD5.5A53CA1598DD4156D44196D200C94B8A] - 14/07/2009 - 01:01:39 ---A- . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys [6656] O58 - SDL:[MD5.44B0A53CD4F27D50ED461DAE0C0B4E1F] - 14/07/2009 - 01:01:41 ---A- . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\System32\Drivers\RDPREFMP.sys [7168] O58 - SDL:[MD5.65375DF758CA1872AB7EBBBA457FD5E6] - 23/08/2012 - 15:44:32 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [14848] O58 - SDL:[MD5.F031683E6D1FEA157ABB2FF260B51E61] - 28/04/2012 - 04:17:07 ---A- . (.Microsoft Corporation - Pilote de pile RDP Terminal.) -- C:\Windows\System32\Drivers\rdpwd.sys [183808] O58 - SDL:[MD5.518395321DC96FE2C9F0E96AC743B656] - 20/11/2010 - 13:30:10 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [173440] O58 - SDL:[MD5.CB928D9E6DAF51879DD6BA8D02F01321] - 14/07/2009 - 00:51:41 ---A- . (.Microsoft Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\System32\Drivers\rfcomm.sys [129536] O58 - SDL:[MD5.906DCFC5EBF4EC0433F8D4FFFB0BA334] - 20/11/2010 - 11:06:36 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [117760] O58 - SDL:[MD5.ED80D303102A746D30C1684B387BCBF1] - 04/07/2012 - 20:45:31 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [33280] O58 - SDL:[MD5.94617EC3A62336151C039E15A2945042] - 04/07/2012 - 20:45:30 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\rndismpx.sys [33280] O58 - SDL:[MD5.564297827D213F52C7A3A2FF749568CA] - 14/07/2009 - 00:55:21 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [8192] O58 - SDL:[MD5.032B0D36AD92B582D869879F5AF5B928] - 14/07/2009 - 00:53:20 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [60928] O58 - SDL:[MD5.9960143FF7DFE7C3A4A100EF05E5545E] - 13/03/2014 - 08:34:25 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver.) -- C:\Windows\System32\Drivers\Rt86win7.sys [683736] O58 - SDL:[MD5.F540BD2DB864551684E548233F0F297E] - 20/03/2014 - 11:34:41 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [3001048] O58 - SDL:[MD5.031C4928ABA3E209CD6F96B7F4B085ED] - 10/10/2013 - 11:07:02 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8192S USB NDIS Driver.) -- C:\Windows\System32\Drivers\RTL8192su.sys [602216] O58 - SDL:[MD5.05D860DA1040F111503AC416CCEF2BCA] - 20/11/2010 - 13:30:10 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [85376] O58 - SDL:[MD5.0693B5EC673E34DC147E195779A4DCF6] - 20/11/2010 - 10:24:56 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys [26624] O58 - SDL:[MD5.099972E1FAF4950D3994FBAB9DD21253] - 20/11/2010 - 13:30:10 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [140160] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480] O58 - SDL:[MD5.9AD8B8B515E3DF6ACD4212EF465DE2D1] - 14/07/2009 - 00:45:28 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [17920] O58 - SDL:[MD5.5FB7FCEA0490D821F26F39CC5EA3D1E2] - 14/07/2009 - 00:45:33 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456] O58 - SDL:[MD5.79BFFB520327FF916A582DFEA17AA813] - 14/07/2009 - 00:45:08 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [19968] O58 - SDL:[MD5.9F976E1EB233DF46FCE808D9DEA3EB9C] - 14/07/2009 - 00:45:52 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys [11264] O58 - SDL:[MD5.932A68EE27833CFD57C1639D375F2731] - 14/07/2009 - 00:45:52 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys [12288] O58 - SDL:[MD5.6D4CCAEDC018F1CF52866BBBAA235982] - 20/11/2010 - 10:50:49 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys [12800] O58 - SDL:[MD5.DB96666CC8312EBC45032F30B007A547] - 14/07/2009 - 00:45:52 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [13824] O58 - SDL:[MD5.2565CAC0DC9FE0371BDCE60832582B2E] - 14/07/2009 - 02:19:03 ---A- . (.Microsoft Corporation - Filtre SIS NT AGP.) -- C:\Windows\System32\Drivers\SISAGP.SYS [52304] O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [40016] O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [77888] O58 - SDL:[MD5.01411333E125717D9D0C1193FC08EDD5] - 24/12/2013 - 10:40:32 ---A- . (.IObit - SmartDefrag Driver.) -- C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624] O58 - SDL:[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - 00:53:41 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys [71168] O58 - SDL:[MD5.2E467E6CA8E0A140C08011844C0D3936] - 14/07/2009 - 00:45:28 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [17408] O58 - SDL:[MD5.95CF1AE7527FB70F7816563CBC09D942] - 14/07/2009 - 02:19:03 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys [17472] O58 - SDL:[MD5.D16D818E9930A6E5B4F6476DD0998D1A] - 13/07/2009 - 21:34:43 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys [405504] O58 - SDL:[MD5.68103A2B441BBF3908EBB587F0704D6C] - 19/12/2012 - 14:02:22 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [466008] O58 - SDL:[MD5.E4C2764065D66EA1D2D3EBC28FE99C46] - 29/04/2011 - 03:46:33 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [311808] O58 - SDL:[MD5.03F0545BD8D4C77FA0AE1CEEDFCC71AB] - 29/04/2011 - 03:46:15 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys [310272] O58 - SDL:[MD5.BE6BD660CAA6F291AE06A718A4FA8ABC] - 29/04/2011 - 03:46:10 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [114688] O58 - SDL:[MD5.3F0164FBC0BD1ADBD02DF9759181451A] - 19/09/2009 - 05:30:10 ---A- . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\Windows\System32\Drivers\ss_bbus.sys [98432] O58 - SDL:[MD5.2DD4E8844F8F094659DD695A80FED36E] - 19/09/2009 - 05:30:10 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ss_bcm.sys [12416] O58 - SDL:[MD5.2DD4E8844F8F094659DD695A80FED36E] - 19/09/2009 - 05:30:10 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ss_bcmnt.sys [12416] O58 - SDL:[MD5.B89D62206034E5FE573C80A24DD55675] - 19/09/2009 - 05:30:10 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem Filter.) -- C:\Windows\System32\Drivers\ss_bmdfl.sys [14848] O58 - SDL:[MD5.1ED0FCEA586FE2A416EE15196E5631DD] - 19/09/2009 - 05:30:10 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem.) -- C:\Windows\System32\Drivers\ss_bmdm.sys [123648] O58 - SDL:[MD5.994D2E5378CC337EC7DD73C1E04FCAA4] - 19/09/2009 - 05:30:10 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Logging Device Driver.) -- C:\Windows\System32\Drivers\ss_bserd.sys [100224] O58 - SDL:[MD5.F9F4BC8A7EC80F39DE8323D0D1BC85FE] - 19/09/2009 - 05:30:10 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwh.sys [12288] O58 - SDL:[MD5.F9F4BC8A7EC80F39DE8323D0D1BC85FE] - 19/09/2009 - 05:30:10 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwhnt.sys [12288] O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [21072] O58 - SDL:[MD5.EF3D32464EBBB10449465C8CAB57CA19] - 11/03/2011 - 06:39:05 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [148864] O58 - SDL:[MD5.45B44FC9E5AC0DB02B19D515EE809DE5] - 14/07/2009 - 00:50:57 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [53632] O58 - SDL:[MD5.E58C78A848ADD9610A4DB6D214AF5224] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [12240] O58 - SDL:[MD5.949C35BF4AE6C110A924AB5E2175DDA7] - 14/07/2009 - 00:45:53 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [24576] O58 - SDL:[MD5.CA59F7C570AF70BC174F477CFE2D9EE3] - 08/09/2013 - 03:07:12 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [1294272] O58 - SDL:[MD5.3EEBD3BD93DA46A26E89893C7AB2FF3B] - 03/10/2012 - 16:21:38 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [35328] O58 - SDL:[MD5.2F885864D5BC8A16C86BEE595969A48A] - 20/11/2010 - 09:39:18 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [21504] O58 - SDL:[MD5.1CB91B2BD8F6DD367DFC2EF26FD751B2] - 20/11/2010 - 11:21:10 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys [18432] O58 - SDL:[MD5.2C2C5AFE7EE4F620D69C23C0617651A8] - 17/02/2012 - 05:13:22 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys [24576] O58 - SDL:[MD5.B459575348C20E8121D6039DA063C704] - 20/11/2010 - 09:39:17 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [74752] O58 - SDL:[MD5.04DBF4B01EA4BF25A9A3E84AFFAC9B20] - 20/11/2010 - 13:30:12 ---A- . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys [53120] O58 - SDL:[MD5.B37B08F2E5EEB1A37E448E09BACE1101] - 15/06/2013 - 04:38:43 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys [31232] O58 - SDL:[MD5.9CE253214ACAA5A7D323327D2055EFAA] - 23/08/2012 - 15:40:25 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys [49664] O58 - SDL:[MD5.B2FA25D9B17A68BB93D58B0556E8C90D] - 20/11/2010 - 11:06:41 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys [108544] O58 - SDL:[MD5.750FBCB269F4D7DD2E420C56B795DB6D] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [55888] O58 - SDL:[MD5.EE43346C7E4B5E63E54F927BABBB32FF] - 20/11/2010 - 09:42:28 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [246784] O58 - SDL:[MD5.44E8048ACE47BEFBFDC2E9BE4CBC8880] - 14/07/2009 - 02:19:11 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [57424] O58 - SDL:[MD5.D295BED4B898F0FD999FCFA9B32B071B] - 20/11/2010 - 11:00:24 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [39936] O58 - SDL:[MD5.7550AD0C6998BA1CB4843E920EE0FEAC] - 14/07/2009 - 00:51:35 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [8192] O58 - SDL:[MD5.FE8A57C8E04EDD3AA8ADD8F3C8F65297] - 12/02/2013 - 04:32:45 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [15872] O58 - SDL:[MD5.AF77716205C97E902E6C5B78DECE2CCA] - 12/02/2013 - 04:32:46 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023x.sys [15872] O58 - SDL:[MD5.A1977C315BF5691DA99235AA4A6907AF] - 12/07/2013 - 11:07:52 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys [80896] O58 - SDL:[MD5.FD82D2B38C465A55C527E339BA1201B1] - 20/11/2010 - 11:00:05 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD.sys [25856] O58 - SDL:[MD5.E071E5BE621FEC4590117C488A78AE32] - 20/11/2010 - 11:00:05 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [25856] O58 - SDL:[MD5.0803FBA9FE829D61AE26EC0BCC910C46] - 27/11/2013 - 02:13:44 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [76288] O58 - SDL:[MD5.2352AB5F9F8F097BF9D41D5A4718A041] - 12/07/2013 - 11:07:54 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [86016] O58 - SDL:[MD5.74F805AB12EB0E3E49E469F19FF02640] - 27/11/2013 - 02:13:33 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [6016] O58 - SDL:[MD5.D40855F89B69305140BBD7E9A3BA2DA6] - 27/11/2013 - 02:13:41 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [43520] O58 - SDL:[MD5.EDF2DF71C4F1E13A6AC75F5224DE655A] - 27/11/2013 - 02:14:25 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [258560] O58 - SDL:[MD5.9828C8D14CC2676421778F0DE638CF97] - 27/11/2013 - 02:13:38 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [20480] O58 - SDL:[MD5.EC2C5AF37B76D7B58C642CB74423DB7A] - 27/11/2013 - 02:13:46 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [284672] O58 - SDL:[MD5.797D862FE0875E75C7CC4C1AD7B30252] - 14/07/2009 - 01:17:06 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [19968] O58 - SDL:[MD5.1A078C3FE1C1F9C8561CD600C69AD300] - 20/11/2010 - 11:52:01 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys [26112] O58 - SDL:[MD5.FC6B21DB4B5B398AB93DBE59CBF11036] - 03/07/2013 - 05:02:48 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [36352] O58 - SDL:[MD5.007C0C8D5B01D82ACEB70431D15083F6] - 29/08/2013 - 02:12:06 ---A- . (.Microsoft Corporation - USB Modem Driver.) -- C:\Windows\System32\Drivers\usbser.sys [28160] O58 - SDL:[MD5.F991AB9CC6B908DB552166768176896A] - 11/03/2011 - 05:01:12 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [76288] O58 - SDL:[MD5.800AABFD625EEFF899F7E5496BDE37AB] - 27/11/2013 - 02:13:36 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [24064] O58 - SDL:[MD5.A059C4C3EDB09E07D21A8E5C0AABD3CB] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - Énumérateur racine de lecteur virtuel.) -- C:\Windows\System32\Drivers\vdrvroot.sys [32832] O58 - SDL:[MD5.8E38096AD5C8570A6F1570A61E251561] - 14/07/2009 - 00:25:51 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys [25088] O58 - SDL:[MD5.17C408214EA61696CEC9C66E388B14F3] - 14/07/2009 - 00:25:49 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys [26112] O58 - SDL:[MD5.5461686CCA2FDA57B024547733AB42E3] - 20/11/2010 - 13:30:14 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [160128] O58 - SDL:[MD5.C829317A37B4BEA8F39735D4B076E923] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - Filtre VIA NT AGP.) -- C:\Windows\System32\Drivers\VIAAGP.SYS [53328] O58 - SDL:[MD5.E02F079A6AA107F06B16549C6E5C7B74] - 14/07/2009 - 00:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\viac7.sys [52736] O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [16976] O58 - SDL:[MD5.15C126D1B55814B9E5CAB10A9C1F4C67] - 14/07/2009 - 00:25:51 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [111616] O58 - SDL:[MD5.4C63E00F2F4B5F86AB48A58CD990F212] - 20/11/2010 - 13:30:16 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [53120] O58 - SDL:[MD5.B5BB72067DDDDBBFB04B2F89FF8C3C87] - 14/07/2009 - 02:19:11 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys [297040] O58 - SDL:[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - 13:30:16 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [245632] O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 14/07/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [141904] O58 - SDL:[MD5.90567B1E658001E79D7C8BBD3DDE5AA6] - 14/07/2009 - 00:52:02 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys [19968] O58 - SDL:[MD5.7090D3436EEB4E7DA3373090A23448F7] - 14/07/2009 - 00:52:04 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys [48128] O58 - SDL:[MD5.A3F04CBEA6C2A10E6CB01F8B47611882] - 14/07/2009 - 00:52:10 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys [14336] O58 - SDL:[MD5.DE3721E89C653AA281428C8A69745D90] - 14/07/2009 - 00:46:53 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [21632] O58 - SDL:[MD5.3C3C78515F5AB448B022BDF5B8FFDD2E] - 20/11/2010 - 11:07:45 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [63488] O58 - SDL:[MD5.CB45A417C8EF7BA6BAC67EDCDDED8700] - 14/07/2009 - 00:24:11 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [35328] O58 - SDL:[MD5.1112A9BADACB47B7C0BB0392E3158DFF] - 14/07/2009 - 02:19:11 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys [19024] O58 - SDL:[MD5.25944D2CC49E0A6C581D02A74B7D6645] - 25/06/2013 - 23:56:40 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [527064] O58 - SDL:[MD5.48704647CD2E9DAA2EB81BDE6D029EDB] - 26/07/2012 - 04:39:21 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [47720] O58 - SDL:[MD5.8B9A943F3B53861F2BFAF6C186168F79] - 14/07/2009 - 00:53:51 ---A- . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwf.sys [9728] O58 - SDL:[MD5.5CF95B35E59E2A38023836FFF31BE64C] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys [19008] O58 - SDL:[MD5.A67E5F9A400F3BD1BE3D80613B45F708] - 20/11/2010 - 10:59:44 ---A- . (.Microsoft Corporation - Windows USB Class Driver BETA.) -- C:\Windows\System32\Drivers\winusb.sys [35968] O58 - SDL:[MD5.0217679B8FCA58714C3BF2726D2CA84E] - 14/07/2009 - 00:19:17 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [11264] O58 - SDL:[MD5.9A5B1059FE015DB5269FBB25ACBF841D] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [14912] O58 - SDL:[MD5.6DB3276587B853BF886B69528FDB048C] - 14/07/2009 - 00:55:02 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [16384] O58 - SDL:[MD5.06E6F32C8D0A3F66D956F57B43A2E070] - 26/07/2012 - 03:33:43 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [66560] O58 - SDL:[MD5.867C301E8B790040AE9CF6486E8041DF] - 26/07/2012 - 03:32:51 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [155136] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] O58 - SDL:[MD5.635181E0E9BBF16871BF5380D71DB02D] - 14/07/2009 - 02:26:21 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys [249408] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (...) -- C:\Windows\System32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768] O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952] O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672] O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776] O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536] O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672] O58 - SDL:[MD5.C50DE6D0C04B230F185A13FDE0F047FA] - 16/08/2010 - 14:31:08 ----- . (...) -- C:\Windows\System32\pwdrvio.sys [16472] O58 - SDL:[MD5.CDC5704308222400AD606BCF87B006A5] - 16/08/2010 - 14:31:06 ----- . (...) -- C:\Windows\System32\pwdspio.sys [11104] O58 - SDL:[MD5.204689EC38738BE7C07F79B745733747] - 07/02/2014 - 02:07:56 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2349056] ~ Drivers: 16 Scanned in 00mn 09s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 24/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\databases\https_signin.ebay.fr_0\17 [7168] =>Toolbar.eBay O61 - LFC: 24/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.aol.fr_0.localstorage [3072] O61 - LFC: 24/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.cdiscount.com_0.localstorage [17408] O61 - LFC: 24/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage [3072] O61 - LFC: 24/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_signin.ebay.fr_0.localstorage [3072] =>Toolbar.eBay O61 - LFC: 24/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.laredoute.fr_0.localstorage [3072] O61 - LFC: 24/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\macromedia.com\support\flashplayer\sys\#secureinclude.ebaystatic.com\settings.sol [98] =>Toolbar.eBay O61 - LFC: 24/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\secureinclude.ebaystatic.com\ebayLSO.sol [131] =>Toolbar.eBay O61 - LFC: 24/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\secureinclude.ebaystatic.com\ebayT.sol [39] =>Toolbar.eBay O61 - LFC: 24/03/2014 - 14:58:24 R--A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Attachments\ATTEBB3.txt [215] O61 - LFC: 24/03/2014 - 14:58:27 R--A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Attachments\controle histoire.PDF [836417] O61 - LFC: 24/03/2014 - 14:58:31 R--A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Attachments\histoire.PDF [2423574] O61 - LFC: 24/03/2014 - 15:00:55 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\CB890833-0FD7-4DA1-9160-0E6F07732AF7.htm [46724] O61 - LFC: 24/03/2014 - 15:01:01 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\E93BA8F6-BD0E-4A85-9BD2-A8A73958B011.htm [46724] O61 - LFC: 24/03/2014 - 15:01:02 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\F3A13D83-8EB2-45DF-84EB-D01B41836811.htm [46724] O61 - LFC: 24/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\10004_10572\crl-set [949] O61 - LFC: 24/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\10004_10572\manifest.fingerprint [12] O61 - LFC: 24/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\10004_10572\manifest.json [34] O61 - LFC: 24/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\7676_12979\crl-set [323] O61 - LFC: 24/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\7676_12979\manifest.fingerprint [12] O61 - LFC: 24/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\7676_12979\manifest.json [34] O61 - LFC: 24/03/2014 - 15:01:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\wmplog01.sqm [2916] O61 - LFC: 24/03/2014 - 15:01:19 ---A- . (...) -- C:\Users\soulas\AppData\Local\Windows Live Writer\ResourceCache\live\Writer_Config.cab [26214] O61 - LFC: 24/03/2014 - 15:01:24 ----- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\The.Walking.Dead.S04E15.FASTSUB.VOSTFR.HDTV.XviD-F4ST.avi.torrent [14363] =>P2P.BitTorrent O61 - LFC: 24/03/2014 - 15:01:58 ---A- . (...) -- C:\Users\soulas\Documents\DIVERS\SECU.ods [20659] O61 - LFC: 24/03/2014 - 15:01:58 ---A- . (...) -- C:\Users\soulas\Documents\FACTURES\carte kdo decathlon mars 2014.PDF [167513] O61 - LFC: 24/03/2014 - 15:01:59 -SHA- . (...) -- C:\Users\soulas\Documents\FACTURES\Thumbs.db [338432] O61 - LFC: 24/03/2014 - 15:03:04 -SHA- . (...) -- C:\Users\soulas\Documents\Thumbs.db [492544] O61 - LFC: 24/03/2014 - 15:04:41 ---A- . (...) -- C:\Users\soulas\Documents\VOYAGE\2014\budget 2014.ods [23912] O61 - LFC: 24/03/2014 - 15:04:42 ---A- . (...) -- C:\Users\soulas\Documents\VOYAGE\2014\NY.ods [17579] O61 - LFC: 24/03/2014 - 15:04:42 ---A- . (...) -- C:\Users\soulas\Documents\VOYAGE\2014\places à voir NEW YORK.ods [18685] O61 - LFC: 24/03/2014 - 15:04:47 ---A- . (...) -- C:\Users\soulas\Documents\VOYAGE\2014\Reservations hotels & Tours.ods [27785] O61 - LFC: 24/03/2014 - 15:04:48 -SHA- . (...) -- C:\Users\soulas\Documents\VOYAGE\2014\Thumbs.db [679424] O61 - LFC: 24/03/2014 - 15:07:11 ---A- . (.Kaspersky Lab ZAO.) -- C:\Users\soulas\Downloads\sécurité anti malware\TDSSKiller.exe [4134240] O61 - LFC: 25/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2 [1056768] O61 - LFC: 25/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.bonprix.fr_0.localstorage [3072] O61 - LFC: 25/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.laredoute.fr_0.localstorage [8192] O61 - LFC: 25/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.navistore.fr_0.localstorage [3072] O61 - LFC: 25/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\macromedia.com\##7A3B8B96F6DB3CFE\00000001.sol [220] O61 - LFC: 25/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\macromedia.com\support\flashplayer\sys\#static1.dmcdn.net\settings.sol [87] O61 - LFC: 25/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\macromedia.com\support\flashplayer\sys\#www.futuroscope.com\settings.sol [89] O61 - LFC: 25/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\preparer-assr#\.education-securite-routiere.fr\com.jeroenwijering.sol [54] O61 - LFC: 25/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\static1.dmcdn.net\com.dm.player.sol [59] O61 - LFC: 25/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\www.dailymotion.com\com.dm.player.sol [244] O61 - LFC: 25/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\www.futuroscope.com\com.jeroenwijering.sol [54] O61 - LFC: 25/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\82CAABC7-B44F-4D55-A4BA-369D45BCCF15_data.bak [56] O61 - LFC: 25/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\82CAABC7-B44F-4D55-A4BA-369D45BCCF15_data.msg [56] O61 - LFC: 25/03/2014 - 15:00:41 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\7F7C81D7-3554-4A9B-8374-BCB4D326C0AF.htm [46724] O61 - LFC: 25/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\10800_3846\crl-set [703] O61 - LFC: 25/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\10800_3846\manifest.fingerprint [12] O61 - LFC: 25/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\10800_3846\manifest.json [34] O61 - LFC: 25/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\8024_27120\crl-set [1031] O61 - LFC: 25/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\8024_27120\manifest.fingerprint [12] O61 - LFC: 25/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\8024_27120\manifest.json [34] O61 - LFC: 25/03/2014 - 15:01:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\wmplog02.sqm [2860] O61 - LFC: 25/03/2014 - 15:01:21 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\dht.dat [4222] =>P2P.BitTorrent O61 - LFC: 25/03/2014 - 15:01:21 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\dht_feed.dat [2] =>P2P.BitTorrent O61 - LFC: 25/03/2014 - 15:01:23 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\dlimagecache\CF4BF2D36ED3070397D7C066408486C45919C862 [1150] =>P2P.BitTorrent O61 - LFC: 25/03/2014 - 15:01:24 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\resume.dat [2272] =>P2P.BitTorrent O61 - LFC: 25/03/2014 - 15:01:24 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\rss.dat [248] =>P2P.BitTorrent O61 - LFC: 25/03/2014 - 15:01:24 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\settings.dat [230930] =>P2P.BitTorrent O61 - LFC: 25/03/2014 - 15:01:25 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\BitTorrent\updates.dat [432] =>P2P.BitTorrent O61 - LFC: 25/03/2014 - 15:02:05 -SHA- . (...) -- C:\Users\soulas\Documents\NAVIGATION\BATEAU\GREEMENT\Thumbs.db [69632] O61 - LFC: 25/03/2014 - 15:02:05 -SHA- . (...) -- C:\Users\soulas\Documents\NAVIGATION\BATEAU\GREEMENT\Voilure\Thumbs.db [14848] O61 - LFC: 25/03/2014 - 15:02:05 -SHA- . (...) -- C:\Users\soulas\Documents\NAVIGATION\BATEAU\GREEMENT\Voilure\Voilure\Thumbs.db [60416] O61 - LFC: 25/03/2014 - 15:02:06 -SHA- . (...) -- C:\Users\soulas\Documents\NAVIGATION\BATEAU\réparation pont résine\Thumbs.db [479232] O61 - LFC: 25/03/2014 - 15:02:07 -SHA- . (...) -- C:\Users\soulas\Documents\NAVIGATION\BATEAU\tempete decembre 2013\Thumbs.db [363520] O61 - LFC: 25/03/2014 - 15:02:34 ---A- . (...) -- C:\Users\soulas\Documents\NAVIGATION\crewlist avec René.odt [16038] O61 - LFC: 25/03/2014 - 15:02:49 -SHA- . (...) -- C:\Users\soulas\Documents\NAVIGATION\Thumbs.db [145920] O61 - LFC: 25/03/2014 - 15:04:42 ---A- . (...) -- C:\Users\soulas\Documents\VOYAGE\2014\planing USA 2014.ods [28873] O61 - LFC: 25/03/2014 - 15:08:01 -SHA- . (...) -- C:\Users\soulas\Pictures\Photos\2013\Thumbs.db [236032] O61 - LFC: 25/03/2014 - 15:08:06 -SHA- . (...) -- C:\Users\soulas\Pictures\Photos\2014\Thumbs.db [52224] O61 - LFC: 25/03/2014 - 15:08:06 -SHA- . (...) -- C:\Users\soulas\Pictures\Photos\Nouveau dossier\Thumbs.db [35840] O61 - LFC: 26/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [272940] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\CURRENT [16] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\LOCK [0] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\LOG [47] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\MANIFEST-000002 [32] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_3276817.fls.doubleclick.net_0.localstorage [3072] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_3276817.fls.doubleclick.net_0.localstorage-journal [3608] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_etablissements.fhf.fr_0.localstorage [3072] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_etablissements.fhf.fr_0.localstorage-journal [3608] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.01net.com_0.localstorage [3072] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.01net.com_0.localstorage-journal [3608] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.pagesjaunes.fr_0.localstorage [5120] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.pagesjaunes.fr_0.localstorage-journal [5672] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_btnme.zegive.com_0.localstorage [3072] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_btnme.zegive.com_0.localstorage-journal [3608] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_halc.iadvize.com_0.localstorage [3072] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_halc.iadvize.com_0.localstorage-journal [3608] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage [3072] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal [3608] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.monabanq.com_0.localstorage [3072] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.monabanq.com_0.localstorage-journal [3608] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor [141312] O61 - LFC: 26/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal [16384] O61 - LFC: 26/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\macromedia.com\support\flashplayer\sys\settings.sol [782] O61 - LFC: 26/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [20480] O61 - LFC: 26/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal [12824] O61 - LFC: 26/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Top Sites [229376] O61 - LFC: 26/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [16384] O61 - LFC: 26/03/2014 - 14:58:09 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\CrashReports\checkpoint [19] O61 - LFC: 26/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\CrashReports\Chrome-last.dmp [122481] O61 - LFC: 26/03/2014 - 14:58:24 R--A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Attachments\ATTC11E.txt [215] O61 - LFC: 26/03/2014 - 14:58:33 R--A- . (.Egbert en Sjoukje.) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Attachments\invoice 2014.doc [170496] O61 - LFC: 26/03/2014 - 15:00:05 ----- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\NEKRETINE.imm [8592332] O61 - LFC: 26/03/2014 - 15:00:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\07FCE2AB-7FD3-4033-96AE-020143DAD63C.htm [49748] O61 - LFC: 26/03/2014 - 15:00:28 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\40721AFB-AFE1-48DB-A29D-31557C08486F.htm [46724] O61 - LFC: 26/03/2014 - 15:00:38 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\73B243F4-4F7D-4BD5-9FDF-B8BA54BC5539.htm [46724] O61 - LFC: 26/03/2014 - 15:00:52 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\B75A22CD-A075-4A63-A776-BE1131E20915.htm [46724] O61 - LFC: 26/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{96851D09-1FDD-48BA-BAC9-2B9B0E912A60}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [5996] O61 - LFC: 26/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{96851D09-1FDD-48BA-BAC9-2B9B0E912A60}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890] O61 - LFC: 26/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\4376_7122\crl-set [1029] O61 - LFC: 26/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\4376_7122\manifest.fingerprint [12] O61 - LFC: 26/03/2014 - 15:01:11 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\4376_7122\manifest.json [34] O61 - LFC: 26/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\6812_29061\crl-set [830] O61 - LFC: 26/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\6812_29061\manifest.fingerprint [12] O61 - LFC: 26/03/2014 - 15:01:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\6812_29061\manifest.json [34] O61 - LFC: 26/03/2014 - 15:01:14 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\IM\imv893F.htm [78] O61 - LFC: 26/03/2014 - 15:01:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\Twain001.Mtx [4] O61 - LFC: 26/03/2014 - 15:01:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\Twunk001.MTX [156] O61 - LFC: 26/03/2014 - 15:01:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\Windows Live\uxcore_wlmail_00.etl [8192] O61 - LFC: 26/03/2014 - 15:01:19 ---A- . (...) -- C:\Users\soulas\AppData\Local\Windows Live\uxcore_WLXPhotoGallery_00.etl [12288] O61 - LFC: 26/03/2014 - 15:01:19 ---A- . (...) -- C:\Users\soulas\AppData\Local\Windows Live\uxcore_WLXPhotoGallery_01.etl [12288] O61 - LFC: 26/03/2014 - 15:01:20 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\Adobe\Acrobat\8.0\JavaScripts\glob.js [0] O61 - LFC: 26/03/2014 - 15:01:20 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\Adobe\Acrobat\8.0\JavaScripts\glob.settings.js [10] O61 - LFC: 26/03/2014 - 15:01:32 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\IObit\Advanced SystemCare V7\Log\ASCULog-2014-03-26(07-23-39).txt [297718] O61 - LFC: 26/03/2014 - 15:01:32 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\IObit\Advanced SystemCare V7\PFilterkey.dbd [44] O61 - LFC: 26/03/2014 - 15:01:32 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\Microsoft\Spelling\fr-FR\default.acl [2] O61 - LFC: 26/03/2014 - 15:01:33 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\Microsoft\Spelling\fr-FR\default.dic [2] O61 - LFC: 26/03/2014 - 15:01:33 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\Microsoft\Spelling\fr-FR\default.exc [2] O61 - LFC: 26/03/2014 - 15:01:36 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu [218837] O61 - LFC: 26/03/2014 - 15:01:36 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\OpenOffice.org\3\user\temp\document_io_logring.txt [2934] O61 - LFC: 26/03/2014 - 15:01:48 ---A- . (...) -- C:\Users\soulas\Documents\BUDGET\budget.ods [17621] O61 - LFC: 26/03/2014 - 15:01:58 ---A- . (...) -- C:\Users\soulas\Documents\DIVERS\prises en charge.ods [15169] O61 - LFC: 26/03/2014 - 15:02:01 ---A- . (...) -- C:\Users\soulas\Documents\MONABANQ\ASSURANCES VIE\annexe_page_1.pdf [93483] O61 - LFC: 26/03/2014 - 15:02:01 ---A- . (...) -- C:\Users\soulas\Documents\MONABANQ\ASSURANCES VIE\annexe_page_2.pdf [96950] O61 - LFC: 26/03/2014 - 15:02:01 -SHA- . (...) -- C:\Users\soulas\Documents\MONABANQ\ASSURANCES VIE\Thumbs.db [94208] O61 - LFC: 26/03/2014 - 15:02:02 -SHA- . (...) -- C:\Users\soulas\Documents\MONABANQ\Thumbs.db [83456] O61 - LFC: 26/03/2014 - 15:02:04 -SHA- . (...) -- C:\Users\soulas\Documents\NAVIGATION\BATEAU\echelle\Thumbs.db [22016] O61 - LFC: 26/03/2014 - 15:03:21 ---A- . (...) -- C:\Users\soulas\Documents\TI\bulletins et évaluations\5eme\2eme trimestre.PDF [941899] O61 - LFC: 26/03/2014 - 15:03:22 -SHA- . (...) -- C:\Users\soulas\Documents\TI\bulletins et évaluations\5eme\Thumbs.db [38912] O61 - LFC: 26/03/2014 - 15:07:06 ---A- . (...) -- C:\Users\soulas\Downloads\sécurité anti malware\adwcleaner.exe [1950720] O61 - LFC: 26/03/2014 - 15:07:12 -SHA- . (...) -- C:\Users\soulas\Downloads\Thumbs.db [343552] O61 - LFC: 26/03/2014 - 15:07:52 ---A- . (.Nicolas Coolman.) -- C:\Users\soulas\Downloads\ZHPDiag2.exe [6859397] =>.Nicolas Coolman O61 - LFC: 26/03/2014 - 15:08:06 -SHA- . (...) -- C:\Users\soulas\Pictures\Photos\assurancebateau\Thumbs.db [336384] O61 - LFC: 26/03/2014 - 15:08:11 -SHA- . (...) -- C:\Users\soulas\Pictures\Thumbs.db [2662912] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Bookmarks [373801] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak [373801] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Cookies [1278976] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Current Session [355100] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Current Tabs [46796] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG [151] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old [151] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-006987 [712] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension State\007692.ldb [153] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT [16] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG [738] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old [274] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-007689 [1270] =>.Google Inc O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Favicons [8861696] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\.usage [24] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\CURRENT [16] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\LOG [148] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\LOG.old [148] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\MANIFEST-000183 [88] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT [16] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG [148] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old [148] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db [7168] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db-journal [5672] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\databases\http_download.cnet.com_0\18 [4096] O61 - LFC: 27/03/2014 - 14:58:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [5] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000778 [197] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0 [45056] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1 [270336] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Google Profile.ico [181623] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\History [868352] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [316088] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Last Session [54569] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [29904] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\glmfgahfleepmdfffonfckpmkondpdkg\CURRENT [16] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\glmfgahfleepmdfffonfckpmkondpdkg\LOG [151] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\glmfgahfleepmdfffonfckpmkondpdkg\LOG.old [151] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\glmfgahfleepmdfffonfckpmkondpdkg\MANIFEST-004943 [244] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.dailymotion.com_0.localstorage [3072] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.dailymotion.com_0.localstorage-journal [3608] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.footmercato.net_0.localstorage [3072] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.footmercato.net_0.localstorage-journal [3608] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage [3072] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal [3608] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage [63488] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage-journal [16384] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Login Data [38912] O61 - LFC: 27/03/2014 - 14:58:06 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal [4624] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\KSEU2EVP\secure-uk.imrworldwide.com\_ggMCvar_1.sol [182] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Preferences [164036388] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [19456] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal [6704] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\011952.ldb [147] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\011954.ldb [350] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\011957.ldb [409] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\011960.ldb [51037] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT [16] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [281] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [279] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-011959 [402] =>.Google Inc O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3 [9203712] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3-journal [16384] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [2880] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Web Data [210944] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal [10792] O61 - LFC: 27/03/2014 - 14:58:07 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Local State [118912] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [5196996] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1292144] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [4640] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [135548] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [725260] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19428] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist [33188] O61 - LFC: 27/03/2014 - 14:58:08 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Safe Browsing IP Blacklist [1456] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\th.soulas@gmail.com\devices.dat [45] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\th.soulas@gmail.com\files.dat [186768] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\th.soulas@gmail.com\import_jobs.dat [61250] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\th.soulas@gmail.com\preferences.dat [430] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\th.soulas@gmail.com\scanlist.txt [106] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\th.soulas@gmail.com\thumbindex.db [488472] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\th.soulas@gmail.com\watchedfolders.txt [148] O61 - LFC: 27/03/2014 - 14:58:10 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Google+ Auto Backup\db\usernames.dat [8] O61 - LFC: 27/03/2014 - 14:58:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Toolbar Cache\7.5.4805.320\fr\translate_element.js.content [2385] O61 - LFC: 27/03/2014 - 14:58:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\Google\Toolbar Cache\7.5.4805.320\profile_picture_4QQXCJ76QIXRJRJMDL4W.png.content [1862] O61 - LFC: 27/03/2014 - 14:58:12 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\content.xml [82367] O61 - LFC: 27/03/2014 - 14:58:17 ----- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\imsl.dat [8302] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\5AFA338E-A8E4-4747-A259-A0AF5CE9B8EE_data.bak [322] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\5AFA338E-A8E4-4747-A259-A0AF5CE9B8EE_data.msg [322] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\702618EF-B4C9-42B1-A577-526FE67BB9F5_data.bak [14516] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\702618EF-B4C9-42B1-A577-526FE67BB9F5_data.msg [14516] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\AccountsOrder.dat [200] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\AddressBook\AddrBook.db3 [595968] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\AddressBook\AddrBook.db3.bak [595968] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\E7754B35-C7C9-4C0E-B3DF-8EE734E181F2_data.bak [0] O61 - LFC: 27/03/2014 - 14:58:17 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\E7754B35-C7C9-4C0E-B3DF-8EE734E181F2_data.msg [0] O61 - LFC: 27/03/2014 - 15:00:03 ----- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\CANARD.imm [6223879] O61 - LFC: 27/03/2014 - 15:00:03 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Containers.db [72586240] O61 - LFC: 27/03/2014 - 15:00:03 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Drafts.imm [70793136] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Inbox.imm [50193106] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\history.ix [1013793] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\imit.dat [422912] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_d_1.ix [7995392] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_di_1.ix [262144] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_i_15522.ix [62806] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_k_15522.ix [196608] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_kl_1.ix [27607040] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_klh_15522.ix [8938] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_r_1.ix [63802370] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\index_v.ix [307] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexB\indexlog.dat [2762] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\history.ix [1007743] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\imit.dat [325632] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_d_1.ix [9175040] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_di_1.ix [327680] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_i_48882.ix [196267] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_k_48882.ix [131072] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_kl_1.ix [15056896] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_klh_48882.ix [2098] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_r_1.ix [20390646] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\index_v.ix [308] O61 - LFC: 27/03/2014 - 15:00:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\IndexH\indexlog.dat [2730] O61 - LFC: 27/03/2014 - 15:00:06 ----- . (...) -- C:\Users\soulas\AppData\Local\IM\Identities\{5FC0C4F6-A1A4-4CD8-96CC-24144F32F2BD}\Message Store\Sent Items.imm [232857418] O61 - LFC: 27/03/2014 - 15:00:52 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\B6D785C8-6C84-43BA-82EF-CC73F9C75B5C.htm [46724] O61 - LFC: 27/03/2014 - 15:01:04 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{42A02C40-D99A-45DB-B420-EDDF55907210}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [18676] O61 - LFC: 27/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{894E32E3-BABB-44F9-86B4-9108CCDEA4B9}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [19594] O61 - LFC: 27/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{99554817-2312-4158-8E10-701E1DA48674}\Show\textPartPrev.html [2236] O61 - LFC: 27/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{F81C6A7F-52B9-43FE-819B-1D4C0FF4E5F6}\New\noScriptHtmlStrWithoutSource_8.htm [41810] O61 - LFC: 27/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{FAB193F0-4358-4123-B46E-0B401E43FA45}\Show\textPartPrev.html [702] O61 - LFC: 27/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{FCB603B4-D49F-4812-AD04-9E13D2C7587D}\Show\noScriptHtmlStrWithoutSource_7.htm [11226] O61 - LFC: 27/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{FCB603B4-D49F-4812-AD04-9E13D2C7587D}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [4612] O61 - LFC: 27/03/2014 - 15:01:05 ---A- . (...) -- C:\Users\soulas\AppData\Local\IM\Runtime\Message\{FCB603B4-D49F-4812-AD04-9E13D2C7587D}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890] O61 - LFC: 27/03/2014 - 15:01:14 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\IM\imv937.htm [78] O61 - LFC: 27/03/2014 - 15:01:14 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\IM\imv965.htm [78] O61 - LFC: 27/03/2014 - 15:01:14 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\IM\imvBB5.htm [78] O61 - LFC: 27/03/2014 - 15:01:14 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\IM\imvEC04.htm [78] O61 - LFC: 27/03/2014 - 15:01:14 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\IM\imvF1C3.htm [78] O61 - LFC: 27/03/2014 - 15:01:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\preferences [0] O61 - LFC: 27/03/2014 - 15:01:18 ---A- . (...) -- C:\Users\soulas\AppData\Local\Temp\~gu-ver.dat [492] O61 - LFC: 27/03/2014 - 15:01:29 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\GlarySoft\Glary Utilities\Backups\41725,5048904514 [1705] O61 - LFC: 27/03/2014 - 15:01:29 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\Google\Local Search History\google%2Eweb.w [82] O61 - LFC: 27/03/2014 - 15:01:32 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\IObit\IObit Uninstaller\MenuRight.dat [72] O61 - LFC: 27/03/2014 - 15:01:32 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2014-03-27 (08-26-49).txt [2378] O61 - LFC: 27/03/2014 - 15:01:40 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\ZHP\Log.txt [21218] =>.Nicolas Coolman O61 - LFC: 27/03/2014 - 15:01:40 ---A- . (...) -- C:\Users\soulas\AppData\Roaming\ZHP\TestsZHPDiag.txt [2823] =>.Nicolas Coolman O61 - LFC: 27/03/2014 - 15:01:53 -SHA- . (...) -- C:\Users\soulas\Documents\CANARD\ACCIDENT\Thumbs.db [144384] O61 - LFC: 27/03/2014 - 15:07:10 ---A- . (.IObit.) -- C:\Users\soulas\Downloads\sécurité anti malware\iobit-malware-fighter-setup.exe [27264776] ~ 30 Fichiers temporaires (Temporary files) ~ Files: 298 Scanned in 10mn 30s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 14/09/2013 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI O64 - Services: CurCS - 24/09/2012 - C:\Windows\System32\DRIVERS\atksgt.sys (atksgt) .(...) - LEGACY_ATKSGT O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS O64 - Services: CurCS - 04/07/2013 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE O64 - Services: CurCS - 01/08/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ipnat.sys (IPNAT) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT O64 - Services: CurCS - 25/09/2013 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD O64 - Services: CurCS - 25/09/2013 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG O64 - Services: CurCS - 24/09/2012 - C:\Windows\System32\DRIVERS\lirsgt.sys (lirsgt) .(...) - LEGACY_LIRSGT O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV O64 - Services: CurCS - 04/04/2013 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR O64 - Services: CurCS - 27/09/2013 - C:\Windows\System32\DRIVERS\MpFilter.sys (MpFilter) .(.Microsoft Corporation - Microsoft antimalware file system filter dr.) - LEGACY_MPFILTER O64 - Services: CurCS - 27/03/2014 - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D83B86A2-A286-42B2-A16D-FE1B0E4AFFDF}\MpKsl20fdc9ed.sys (MpKsl20fdc9ed) .(.Microsoft Corporation - KSLDriver.) - LEGACY_MPKSL20FDC9ED O64 - Services: CurCS - 27/03/2014 - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D83B86A2-A286-42B2-A16D-FE1B0E4AFFDF}\MpKsl7e42c40c.sys (MpKsl7e42c40c) .(.Microsoft Corporation - KSLDriver.) - LEGACY_MPKSL7E42C40C O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10 O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20 O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - 27/09/2013 - C:\Windows\System32\DRIVERS\NisDrvWFP.sys (NisDrv) .(.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) - LEGACY_NISDRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 24/12/2013 - C:\Windows\System32\Drivers\SmartDefragDriver.sys (SmartDefragDriver) .(.IObit - SmartDefrag Driver.) - LEGACY_SMARTDEFRAGDRIVER O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR O64 - Services: CurCS - 19/12/2012 - C:\Windows\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2 O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6 O64 - Services: CurCS - 25/06/2013 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF ~ Legacy: 174 Scanned in 00mn 01s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\soulas\AppData\Local\Google\Chrome\Application\chrome.exe ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\soulas\AppData\Local\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {3332D268-177F-042B-FF98-0F5F456E183A} [DefaultScope] - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKUS\.DEFAULT] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKUS\S-1-5-18] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\Antidote.2004.Prisme.exe =>.Crack,Keygen C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\AntidotePrismev1_v5.exe =>.Crack,Keygen C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\KeygenAntidotePrismeV6.exe =>.Crack,Keygen C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\Maj_AntidotePrismev5_v6.exe =>.Crack,Keygen C:\Users\soulas\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\DivX6.3.exe =>.Crack,Keygen C:\Users\soulas\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\dr-divx_dr_divx_oss_2.0_rc2_francais_anglais_18153.exe =>.Crack,Keygen C:\Users\soulas\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\DrDivx_v105.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Glary.Utilities.PRO.v2.23.0.923.Multilangages.Incl-Keygen.[emule-island.com]\gupsetup.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Glary.Utilities.PRO.v2.23.0.923.Multilangages.Incl-Keygen.[emule-island.com]\Keygen\Glary.Utilities.Pro.Keygen-TWK.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Instalador\setup.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\KeyGen\key.reg =>.Crack,Keygen C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\Antidote.2004.Prisme.exe =>.Crack,Keygen C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\AntidotePrismev1_v5.exe =>.Crack,Keygen C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\KeygenAntidotePrismeV6.exe =>.Crack,Keygen C:\Users\soulas\Downloads\antidote 6 + le dictionnaire visuel +keygen\Maj_AntidotePrismev5_v6.exe =>.Crack,Keygen C:\Users\soulas\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\DivX6.3.exe =>.Crack,Keygen C:\Users\soulas\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\dr-divx_dr_divx_oss_2.0_rc2_francais_anglais_18153.exe =>.Crack,Keygen C:\Users\soulas\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\DrDivx_v105.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Glary.Utilities.PRO.v2.23.0.923.Multilangages.Incl-Keygen.[emule-island.com]\gupsetup.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Glary.Utilities.PRO.v2.23.0.923.Multilangages.Incl-Keygen.[emule-island.com]\Keygen\Glary.Utilities.Pro.Keygen-TWK.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Instalador\setup.exe =>.Crack,Keygen C:\Users\soulas\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\KeyGen\key.reg =>.Crack,Keygen F:\Downloads\antidote 6 + le dictionnaire visuel +keygen\Antidote.2004.Prisme.exe =>.Crack,Keygen F:\Downloads\antidote 6 + le dictionnaire visuel +keygen\AntidotePrismev1_v5.exe =>.Crack,Keygen F:\Downloads\antidote 6 + le dictionnaire visuel +keygen\KeygenAntidotePrismeV6.exe =>.Crack,Keygen F:\Downloads\antidote 6 + le dictionnaire visuel +keygen\Maj_AntidotePrismev5_v6.exe =>.Crack,Keygen F:\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\DivX6.3.exe =>.Crack,Keygen F:\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\dr-divx_dr_divx_oss_2.0_rc2_francais_anglais_18153.exe =>.Crack,Keygen F:\Downloads\DIVX\DivX Player 6.3+DivX Codec 6.2.5+DivX Converter 6.2+KeyGen\DrDivx_v105.exe =>.Crack,Keygen F:\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Glary.Utilities.PRO.v2.23.0.923.Multilangages.Incl-Keygen.[emule-island.com]\gupsetup.exe =>.Crack,Keygen F:\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Glary.Utilities.PRO.v2.23.0.923.Multilangages.Incl-Keygen.[emule-island.com]\Keygen\Glary.Utilities.Pro.Keygen-TWK.exe =>.Crack,Keygen F:\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\Instalador\setup.exe =>.Crack,Keygen F:\Downloads\Glary Utilities Pro v.2.29.0.1032 Multilenguaje + KeyGen_DnGnMsTr\KeyGen\key.reg =>.Crack,Keygen F:\JEUX\[PC Game] Anno 2070 [Multi6] + crack + updates\Anno 2070 [THETA]\Anno 2070 [multi6 cracked] [THETA].rar =>.Crack,Keygen ~ Files: Scanned in 00mn 46s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [679424] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [473600] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [49664] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [300544] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [242176] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [521216] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [1933848] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [585728] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [499712] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [21504] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [49664] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [71168] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [113664] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] ~ Services: 32 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576] [MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608] [MD5.0C78701C6F42345DFF2B2B6C3C3D01EF] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [172032] [MD5.7B0C2FBC82CFD78C90B7279F623F0495] [SPRF][14/12/2010] (.Microsoft Corp - Microsoft Support Diagnostic Tool Control.) -- C:\Windows\Downloaded Program Files\MSDcode.dll [562512] ~ Files: 4 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{C4C032EB-BAF7-48BA-83C7-13A6A45BAAAA}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{F9FEA319-CE5A-4791-9D67-F9EC027A7C07}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{29F9E5B4-17F2-4BD8-BDEB-60B9FE931860}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{BCEEE3AC-26F8-40B5-A681-AA0738A331DA}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{C49E9B28-A796-46A3-87DF-4162A7B383CD}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{4FCE35AA-CE8F-4EE1-BD71-D411EDF1C91E}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{006160F0-0CFA-426C-B720-657B933A8C8D}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{0F71DCEE-8507-47CD-93EA-F3EF5B6C6AB6}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{053F2D5F-93BF-4EBF-ADCB-673DDCBBFEFB}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{A8F85BEB-2AE8-493E-B9C7-AB6E7243400F}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{5268B455-54AF-4ABB-BB28-4C3EA603EC08}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{2EBED66A-C6D5-4E66-8944-5190651835DC}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{6F0FF342-A75D-498C-B2A7-8867E5BF1CE4}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{572BD93E-1BF6-4A26-956A-BD0240232CB0}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{7CD55970-6602-4A6F-B88B-0DF6DA0087A2}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F8C41766-4CC2-4A1F-B9E6-2E0581CFE359}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B6B1A9F0-DE2B-4DA1-9D99-BE05CDE26D11}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{95E17141-5C17-42FB-854B-A0C27F79321D}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{80F37164-037A-4567-9199-1537B4EC8384}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{29AA584E-CF07-4129-B8F6-D256924A1198}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "{6E655AF1-829C-4DC7-A116-9B252D72E89D}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{757E9A8F-1694-4B3F-B931-ECBCE45875C4}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{92D67001-3DFB-4DE9-A318-01E9C95656A4}" | In - Private - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe O87 - FAEL: "{338F383F-9132-4599-B370-6CD13B7A1DE8}" | In - Private - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe O87 - FAEL: "{4E2204CD-A40A-4EF2-9C1D-0B332495C2F3}" | In - Private - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe O87 - FAEL: "{CA8E7901-F018-4B16-A7CC-8674B814EFC6}" | In - Private - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe O87 - FAEL: "{FDF21760-29C1-4C7E-91F0-3070C29B8FFB}" | In - Private - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe O87 - FAEL: "{5FBA38FC-3F10-4368-A736-0536B91545F3}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe O87 - FAEL: "{E8B01DE3-FE08-4A3D-B73F-A199D2448B1B}" | In - Private - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe O87 - FAEL: "{BDD7F54A-B564-4E8E-BDE8-4C187F3D54C2}" | In - Private - P6 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe O87 - FAEL: "{72569AC2-9F85-46E4-9A4E-C0B18AE5C9C1}" | In - Private - P17 - TRUE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe O87 - FAEL: "{402C7CD5-3277-4EFC-A9F0-9755F143BD6A}" | In - Private - P6 - TRUE | .(.FileZilla Project - FileZilla FTP Client.) -- C:\Program Files\FileZilla FTP Client\filezilla.exe O87 - FAEL: "{CDFF8908-B4EF-4772-B6D3-B0461B6DA81A}" | In - Private - P17 - TRUE | .(.FileZilla Project - FileZilla FTP Client.) -- C:\Program Files\FileZilla FTP Client\filezilla.exe O87 - FAEL: "{90381958-C06E-43CC-8D2B-8F06207B8666}" | In - Domain - P6 - FALSE | .(.FileZilla Project - FileZilla FTP Client.) -- C:\Program Files\FileZilla FTP Client\filezilla.exe O87 - FAEL: "{7F79DE7C-FD9C-4692-AF16-DB594C1986FB}" | In - Domain - P17 - FALSE | .(.FileZilla Project - FileZilla FTP Client.) -- C:\Program Files\FileZilla FTP Client\filezilla.exe O87 - FAEL: "{07E7C72F-E1C1-4B19-AD0B-F35D3ED09F4F}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Transmission Remote.) -- C:\Program Files\Transmission Remote\Transmission Remote.exe O87 - FAEL: "{963DB91D-D460-44B2-AE65-277576117BFD}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Transmission Remote.) -- C:\Program Files\Transmission Remote\Transmission Remote.exe O87 - FAEL: "{857E77E1-0C03-471E-BCA8-0E0954433759}" | In - Domain - P6 - FALSE | .(.Pas de propriétaire - Transmission Remote.) -- C:\Program Files\Transmission Remote\Transmission Remote.exe O87 - FAEL: "{4B129C84-DEB1-4983-930C-1DAA6A880957}" | In - Domain - P17 - FALSE | .(.Pas de propriétaire - Transmission Remote.) -- C:\Program Files\Transmission Remote\Transmission Remote.exe O87 - FAEL: "{D91152DE-1149-417E-90EE-04EA30608DBF}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{638313BB-8EBF-4C2D-9E14-51674D17E3C1}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{A8CCF3FA-CE2E-452A-A7A5-E19D8E648D25}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{58BEA3F3-E370-430A-B89E-BE7F70ACAC51}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{84AEA1DE-8A78-4C39-A2D5-6C7BEB59F8E2}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "TCP Query User{0CD8B859-B059-477A-8968-DCF663BFB416}C:\program files\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe O87 - FAEL: "UDP Query User{A2A01724-EA1B-41F8-ACBB-F5E1E95CFF85}C:\program files\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe O87 - FAEL: "{0F5D108B-B885-4E24-8DB4-BF52A2FD850F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\soulas\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe O87 - FAEL: "{0E47DFD5-7676-49A7-9BAE-2F3F3BA80223}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{8CAEB4A4-FC39-4388-B416-DD803CF6C0E5}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F24BBF5E-2277-4064-BEDC-9979F549165E}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{E08ED656-D4C1-44F8-8734-330774AF3F69}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{36D7D8B4-F4B1-44BE-A583-7534E2DD5DD5}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B484B3AA-06DC-483E-8A1E-E93FFF2F927C}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe O87 - FAEL: "{90252AD0-096B-4A43-8F1A-2463F1DCCD54}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe O87 - FAEL: "TCP Query User{72685D0B-05CE-4B0F-80B2-55F518D34CA0}C:\program files\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{D47E08D4-2208-4221-8718-EDC40E4A6803}C:\program files\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe O87 - FAEL: "TCP Query User{B8ACA891-98AC-4F3E-939E-DCAF6333F2A6}C:\windows\explorer.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Explorateur Windows.) -- C:\windows\explorer.exe =>.Microsoft Corporation O87 - FAEL: "UDP Query User{A654F411-B849-4C0A-8713-DEE90EFA36F0}C:\windows\explorer.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Explorateur Windows.) -- C:\windows\explorer.exe =>.Microsoft Corporation O87 - FAEL: "TCP Query User{D009C690-37E4-459B-AE1B-394C2F374F01}C:\program files\lexmark s410 series\lmadgmon.exe" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\program files\lexmark s410 series\lmadgmon.exe O87 - FAEL: "UDP Query User{77D243D0-EE6D-4E93-BCA4-DABBEC8F32B0}C:\program files\lexmark s410 series\lmadgmon.exe" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\program files\lexmark s410 series\lmadgmon.exe O87 - FAEL: "TCP Query User{CF807324-6653-4028-8069-EA85CDB12BD7}C:\program files\abbyy finereader 9.0 sprint\scantwain.exe" | In - Private - P6 - TRUE | .(.ABBYY - ScanTwain.) -- C:\program files\abbyy finereader 9.0 sprint\scantwain.exe O87 - FAEL: "UDP Query User{0636F9CB-7D22-433D-A457-4162C9E8B3F4}C:\program files\abbyy finereader 9.0 sprint\scantwain.exe" | In - Private - P17 - TRUE | .(.ABBYY - ScanTwain.) -- C:\program files\abbyy finereader 9.0 sprint\scantwain.exe O87 - FAEL: "{77729919-2A70-43E5-AFA8-225CA0306D5D}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Status Monitor Center.) -- C:\Program Files\Lexmark\Status Center\lmsmc.exe O87 - FAEL: "{7FF0240B-DEE6-4BC4-BD1C-6D941595FACB}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Status Monitor Center.) -- C:\Program Files\Lexmark\Status Center\lmsmc.exe O87 - FAEL: "{3819A65B-8792-49FC-A634-5A196461FB5E}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - PSU Software.) -- C:\Program Files\Lexmark\PSU\lmpsu.exe O87 - FAEL: "{004636DA-706A-49C0-B279-7C6C598D134D}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - PSU Software.) -- C:\Program Files\Lexmark\PSU\lmpsu.exe O87 - FAEL: "{299EEBE7-D9C7-4748-8BC5-29BCB933705E}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Wireless Utility.) -- C:\Program Files\Lexmark\WirelessSetup\LMwpss.exe O87 - FAEL: "{9E8D902A-249F-4638-AE64-8C80A6D7EE49}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Wireless Utility.) -- C:\Program Files\Lexmark\WirelessSetup\LMwpss.exe O87 - FAEL: "{0C6CC0C6-5BE4-4EA8-B015-6E09E5020CAE}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark S410 Series\LMADGmon.exe O87 - FAEL: "{628FFB36-6B6E-4AF0-93FF-36D9FA6D3831}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark S410 Series\LMADGmon.exe O87 - FAEL: "{2F96A16D-8E50-4E54-BA9A-6CCA55E550F3}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Lexmark S410 Series\LMADGlscn.exe O87 - FAEL: "{53414922-BB46-4987-A441-A46DCD6B007C}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Lexmark S410 Series\LMADGlscn.exe O87 - FAEL: "{166B4A16-91C1-4B1F-961D-28C03FC75F13}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Lexmark S410 Series\LMabscw.dll O87 - FAEL: "{A9C29C9A-10BA-47F9-9AC2-B42061FD2235}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Lexmark S410 Series\LMabscw.dll O87 - FAEL: "{BE4B0480-6E1A-4219-923A-EDC3D006F641}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Program Files\Lexmark\NetworkTwain\LMZZZ_32__bc.dll O87 - FAEL: "{31A66B92-96EE-4882-A525-A12F82017B7F}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Program Files\Lexmark\NetworkTwain\LMZZZ_32__bc.dll O87 - FAEL: "{A4857A05-A4B5-4B42-B873-44A985C2BA91}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Program Files\Lexmark\NetworkTwain\LMzzz_32serv.dll O87 - FAEL: "{C42C26C8-5D6B-4D18-9A38-C33A28C3B0F6}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Program Files\Lexmark\NetworkTwain\LMzzz_32serv.dll O87 - FAEL: "{22B64881-B8A2-4C6B-A7C9-87890FE01445}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Network Twain Protocol.) -- C:\Program Files\Lexmark\NetworkTwain\lextwprotocol.dll O87 - FAEL: "{E487209B-F1AA-4A32-A417-A567C10475DD}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Network Twain Protocol.) -- C:\Program Files\Lexmark\NetworkTwain\lextwprotocol.dll O87 - FAEL: "{AE8CEEDA-B896-46B3-8D74-CC7A0B8F20B5}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Network Twain DataSource.) -- C:\Windows\twain_32\Lexmark\NetworkTwain\lexnetworkds.ds O87 - FAEL: "{FA4B9C98-621A-4B77-A163-85B04F097A12}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Network Twain DataSource.) -- C:\Windows\twain_32\Lexmark\NetworkTwain\lexnetworkds.ds O87 - FAEL: "{BA93A42C-131E-4E1F-818E-7CFB3B03A449}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe O87 - FAEL: "{26532B33-34C3-4D89-B3E1-365EFE7EBD66}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe O87 - FAEL: "{0DC38313-F0F0-4D01-AE15-157CD9D947BC}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe O87 - FAEL: "{8BB61449-FD69-40D7-8453-BD2240495E6A}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe O87 - FAEL: "{195C26F9-938E-4F51-AA0C-FCC11C0FE605}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe O87 - FAEL: "{E734D358-B05E-4770-9D58-8FA146A6BD76}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{5D504872-9821-4B3C-9736-9C9EB6324453}" | In - Private - P6 - TRUE | .(.SFR - Mediacenter Evolution.) -- C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe O87 - FAEL: "{80FCB25F-A1ED-4349-89B6-4FDCDADBF08F}" | In - Private - P17 - TRUE | .(.SFR - Mediacenter Evolution.) -- C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe O87 - FAEL: "TCP Query User{DE52EDDB-FAB5-4946-AAA8-FB158AF9D19F}C:\program files\itn converter\itnconv.exe" | In - Private - P6 - TRUE | .(.Benichou Software - Itinerary Converter & Planner.) -- C:\program files\itn converter\itnconv.exe O87 - FAEL: "UDP Query User{14B80864-E4F5-4324-9213-AF00AC501C03}C:\program files\itn converter\itnconv.exe" | In - Private - P17 - TRUE | .(.Benichou Software - Itinerary Converter & Planner.) -- C:\program files\itn converter\itnconv.exe O87 - FAEL: "{28BD3E9D-C366-4C0D-9742-B4368179CA84}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\soulas\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{3A358D3D-8607-4DEF-8AEF-5BE4129EC53F}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\soulas\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{A1B99BF0-FCB1-43B3-87B0-E5A82B026CB2}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O87 - FAEL: "{77F21E39-182F-4903-A8C6-6367FE485170}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O87 - FAEL: "{F11AD70F-2AB1-4302-BF01-7F36C50C6578}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{E1AA6C57-8A52-47CE-A73B-7704765AEE4F}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{33210826-CB2C-4898-8D75-F333E66C9738}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{CC4C06CA-C0C8-4BC6-9E16-75AAA4C9406E}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F09BCF24-14D8-47F8-A6EC-B6FFBED276E0}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{BF7D96F2-1F0F-41B5-BE9F-A147D3BE6F0F}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{07774D08-C69C-4D96-8BDF-F1170B2EFF9F}" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{82D7058C-05D4-404B-A247-0349A4A4C222}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{17105B94-4413-4E9E-A5E4-7CB37BEAD2F8}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{4224489F-2016-4B5B-A403-DA58BF704FE1}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{4AD4396E-E1CC-4E4F-9B82-E37DCF1DEEA2}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{2FE41F96-EA34-4A39-BF26-AD58A584C1E6}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{FBF48CF6-08AC-419A-A70A-D75DEA2C39AC}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F1188CB5-73D9-4BC7-A97E-85B2A8663B18}" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{1263F89D-8262-423F-B48E-C283AB22C519}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{D59EAE79-CEA5-431F-B7AA-74F576F23870}" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B175E09C-9978-4B90-A4C6-553AC3427CD9}" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TCP Query User{82230F44-D370-453C-A51C-69B7F20885FE}C:\programdata\questforoil\questforoil\questforoil\questforoil.exe" | In - Private - P6 - TRUE | .(...) -- C:\programdata\questforoil\questforoil\questforoil\questforoil.exe O87 - FAEL: "UDP Query User{61A02D59-2C45-4459-B781-B4BBBFA2ACA9}C:\programdata\questforoil\questforoil\questforoil\questforoil.exe" | In - Private - P17 - TRUE | .(...) -- C:\programdata\questforoil\questforoil\questforoil\questforoil.exe O87 - FAEL: "{27C0182E-A2DE-4E1B-AAC3-995C49E31A5D}" | In - Public - P17 - TRUE | .(...) -- C:\programdata\questforoil\questforoil\questforoil\questforoil.exe O87 - FAEL: "{AEBF1E5D-CC7E-48D9-84D5-3A677BAE9935}" | In - Public - P6 - TRUE | .(...) -- C:\programdata\questforoil\questforoil\questforoil\questforoil.exe O87 - FAEL: "{6CA6819C-9716-4E0C-9B93-EAD0FA10AB56}" | In - Private - P6 - FALSE | .(.Pas de propriétaire - IncrediMail Installer.) -- C:\Users\soulas\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GUF9H23M\incredimail_install.exe O87 - FAEL: "{36B7F9DB-CD11-4B8E-A37C-B61C0D734495}" | In - Private - P17 - FALSE | .(.Pas de propriétaire - IncrediMail Installer.) -- C:\Users\soulas\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GUF9H23M\incredimail_install.exe O87 - FAEL: "{370FDB86-8785-4C08-9615-CF789D7A54F5}" | In - Private - P6 - FALSE | .(.Pas de propriétaire - IncrediMail Installer.) -- C:\Users\soulas\Downloads\incredimail_install.exe O87 - FAEL: "{E533275D-FF54-42F5-A9CE-18D70D5893E5}" | In - Private - P17 - FALSE | .(.Pas de propriétaire - IncrediMail Installer.) -- C:\Users\soulas\Downloads\incredimail_install.exe ~ Firewall: 283 Scanned in 00mn 03s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe O90 - PUC: "0C7EC0FA4E3A37D489B82B1978CEE6A9" . (.QuickTime.) -- C:\Windows\Installer\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}\Installer.ico O90 - PUC: "1B641C2DD849FE743878D5C1B689F0C7" . (.Windows Live Writer.) -- C:\Windows\Installer\{D2C146B1-948D-47EF-8387-5D1C6B980F7C}\ApplicationIcon.ico O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon O90 - PUC: "26FCC409D8185764CB673DE73B999F71" . (.Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe O90 - PUC: "3D22078E9C8C67C4E872CBF7819F8BBF" . (.Google Drive.) -- C:\Windows\Installer\{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}\DriveIcon O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\Windows\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe O90 - PUC: "4B4269910CB62C84BAE7A99BB042C97D" . (.pdfforge Toolbar v7.6.) -- C:\Windows\Installer\{199624B4-6BC0-48C2-AB7E-9AB90B249CD7}\ARPPRODUCTICON.exe =>PUP.Dealio O90 - PUC: "4BA27099597D5D44D9563E9C8F23C279" . (.TomTom HOME.) -- C:\Windows\Installer\{99072AB4-D795-44D5-9D65-E3C9F8322C97}\ARPPRODUCTICON.exe O90 - PUC: "4D82F7B6E0616C047B8CE56C9B37D47A" . (.Photo Notifier and Animation Creator.) -- C:\Windows\Installer\{6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}\ARPPRODUCTICON.exe O90 - PUC: "52E4407E830367A4094643A40C8340E3" . (.Windows Mobile Device Center Driver Update.) -- C:\Windows\Installer\{E7044E25-3038-4A76-9064-344AC038043E}\WindowsMobileDeviceCenter.ico O90 - PUC: "5A440F64B8EC691489E4B56D25E563D1" . (.Apple Application Support.) -- C:\Windows\Installer\{46F044A5-CE8B-4196-984E-5BD6525E361D}\WinInstall.ico O90 - PUC: "621AD3C1325D9804CBACAF64EF436D8F" . (.Google Drive.) -- C:\Windows\Installer\{1C3DA126-D523-4089-BCCA-FA46FE34D6F8}\DriveIcon O90 - PUC: "68AB67CA7DA76301B7448A2100000030" . (.Adobe Reader 8.1.2 - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-A81200000003}\SC_Reader.exe O90 - PUC: "6D5877EBF540BF441A4EF35A55784451" . (.pdfforge Toolbar v7.0.) -- C:\Windows\Installer\{BE7785D6-045F-44FB-A1E4-3FA555874415}\ARPPRODUCTICON.exe =>PUP.Dealio O90 - PUC: "82D6625F2B0E0314FB5CEE51A55D41CD" . (.Apple Application Support.) -- C:\Windows\Installer\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}\WinInstall.ico O90 - PUC: "987A09F2E1DDEC14FBACDB8712B3BA7C" . (.OpenOffice.org 3.4.) -- C:\Windows\Installer\{2F90A789-DD1E-41CE-BFCA-BD78213BABC7}\soffice.ico O90 - PUC: "B54DD9D4A97E40F498E82B3C67A97B92" . (.Serif DrawPlus X2.) -- C:\Windows\Installer\{4D9DD45B-E79A-4F04-898E-B2C3769AB729}\DrawPlus.ico O90 - PUC: "BEEDBA9135B304C40BC0C7924993F391" . (.AxCrypt 1.7.2931.0.) -- C:\Windows\Installer\{19ABDEEB-3B53-4C40-B00C-7C2994393F19}\axcrypt.ico O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe O90 - PUC: "D690AD406326D5A4F86B03186E0790AB" . (.CANAL+ CANALSAT A LA DEMANDE.) -- C:\Windows\Installer\{04DA096D-6236-4A5D-8FB6-3081E67009BA}\ARPPRODUCTICON.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "E37341D10797F2F44A76CA4A0FAE123E" . (.Google Earth.) -- C:\Windows\Installer\{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}\ARPPRODUCTICON.exe =>.Google Inc O90 - PUC: "E5E5322F18873924B9F6402B06F9FB0F" . (.Windows Live Messenger.) -- C:\Windows\Installer\{F2235E5E-7881-4293-9B6F-04B2609FBFF0}\MsblIco.Exe O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.3.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe O90 - PUC: "FD7EE11154CF7C04897A57A34CB621BF" . (.QuickTime 7.) -- C:\Windows\Installer\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}\Installer.ico ~ Update Products: 77 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.96D72AF7E5A9B6FCBF9F74DA0107A2B7] [WIS][13/03/2013] (.Spigot, Inc. - Widgi Toolbar.) -- C:\Windows\Installer\169d9.msi [4469248] =>PUP.Dealio [MD5.1BBF94B81009EC8C68A5A21706DEEAEF] [WIS][24/04/2013] (.Mobile Action Techology, Inc. - Android Manager Installation.) -- C:\Windows\Installer\1aca30e.msi [1997312] [MD5.B68CAEF665C1D18279630722BA4B6D8E] [WIS][20/09/2012] (.CanalPlus - Installation du logiciel [ProductName] de Canal+.) -- C:\Windows\Installer\1e87c64.msi [2596352] [MD5.4138B1C52B24AC4204A3975F3386CB04] [WIS][20/09/2012] (.Visage Software - Printer Driver.) -- C:\Windows\Installer\1fb14c6.msi [972288] [MD5.39988793C0BE26963F7C8228E7F04E23] [WIS][06/01/2014] (.Google - Google+ Auto Backup.) -- C:\Windows\Installer\2045ea4.msi [3088384] [MD5.E4998D930DCD77ACEB8690DEBE386D0B] [WIS][23/01/2013] (.IncrediMail - IncrediMail.) -- C:\Windows\Installer\205281e.msi [2837504] [MD5.19DC7F8A3078711805394592A9F16BF1] [WIS][23/01/2013] (.Nom de votre société - Photo Notifier and Animation Creator.) -- C:\Windows\Installer\2052826.msi [2850816] [MD5.618CEBFF80E24CFE87ABA87BA0FC5644] [WIS][24/12/2008] (.Nitro PDF Software - PDF Download for Internet Explorer by Nitro PDF Software.) -- C:\Windows\Installer\23923d.msi [416768] [MD5.8C062F4F8973ABAB0F9B6AFA0080C592] [WIS][31/08/2012] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\2395bf.msi [28160] =>Toolbar.Google [MD5.085637CCB5EFD06B323BF7C3D9024C6C] [WIS][31/01/2014] (.Google, Inc. - Google Drive.) -- C:\Windows\Installer\269a28.msi [34143232] [MD5.6AB691CA3DEB6C244DF3757ABEBFB98A] [WIS][13/02/2014] (.Micro Application - LauncherMA.) -- C:\Windows\Installer\2ac3e3c.msi [623616] [MD5.FF18A8C1E1287D093D5ADC8FB6EFD267] [WIS][17/04/2013] (.Google, Inc. - Google Drive.) -- C:\Windows\Installer\34751a3.msi [31125504] [MD5.4BB1EF3F3358FEE140010F305BB915FB] [WIS][28/05/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\67d1a7.msi [20627456] ~ WIS: 81 Scanned in 00mn 16s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 11/03/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Auto 05/01/2012 75624 | (AxAutoMntSrv) . (.Alcohol Soft Development Team.) - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe SS - | Demand 06/07/2010 188416 | (CanalPlus.VOD) . (.Canal+ Active.) - C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe SS - | Auto 31/08/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 31/08/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 31/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe SS - | Auto 03/12/2013 2151200 | (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe SS - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe SS - | Demand 13/08/2010 1918464 | (QuickPDFTCPService0721) . (.Debenu Pty Ltd.) - C:\Program Files\Quick PDF Tools\QuickPDFTCP0721.exe SS - | Auto 01/03/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe SS - | Demand 27/08/2013 93072 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe SS - | Demand 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe SR - | Auto 15/11/2013 886592 | (AdvancedSystemCareService7) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe SR - | Auto 28/11/2013 646976 | (ASCAntivirusSrv) . (.IOBit.) - C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe SR - | Auto 02/10/2009 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe SR - | Auto 24/01/2014 342336 | (IMFservice) . (.IObit.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe SR - | Auto 23/10/2013 22208 | (MsMpSvc) . (.Microsoft Corporation.) - c:\Program Files\Microsoft Security Client\MsMpEng.exe SR - | Auto 08/02/2014 664864 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 27/10/2013 1364256 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe SR - | Auto 23/12/2009 370688 | (StarWindServiceAE) . (.StarWind Software.) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 20s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net ~ MBR: 1 Scanned in 00mn 02s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by soulas at 27/03/2014 15:09:49 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s ---\\ Liste des émulateurs de CD/DVD (MBR Hook) O58 - SDL:[MD5.68103A2B441BBF3908EBB587F0704D6C] - 19/12/2012 - 14:02:22 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [466008] O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite =>.DT Soft Ltd ~ Emulateurs: Scanned in 00mn 04s ---\\ Scan Additionnel (O88) Database Version : 13031 - (26/03/2014) Clés trouvées (Keys found) : 14 Valeurs trouvées (Values found) : 2 Dossiers trouvés (Folders found) : 3 Fichiers trouvés (Files found) : 8 [HKLM\Software\Google\Chrome\Extensions\glmfgahfleepmdfffonfckpmkondpdkg] =>PUP.SpeedDial^ [HKLM\Software\Google\Chrome\Extensions\ - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\glmfgahfleepmdfffonfckpmkondpdkg [AccelerateTab] =>PUP.SpeedDial^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^ [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrent] =>P2P.BitTorrent^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{199624B4-6BC0-48C2-AB7E-9AB90B249CD7}] =>PUP.Dealio^ [HKLM\Software\Classes\CLSID\{6BC38BF4-E84D-46E1-920B-42D31AEA617E}] =>Toolbar.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044] =>PUP.Dealio [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9] =>PUP.Dealio [HKLM\Software\Classes\Installer\Features\6D5877EBF540BF441A4EF35A55784451] =>PUP.Dealio [HKLM\Software\Classes\Installer\Products\6D5877EBF540BF441A4EF35A55784451] =>PUP.Dealio [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6D5877EBF540BF441A4EF35A55784451] =>PUP.Dealio [HKLM\Software\Classes\SpeedDial.TSpeedDial] =>PUP.SpeedDial [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^ [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^ C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\glmfgahfleepmdfffonfckpmkondpdkg =>PUP.SpeedDial^ C:\ProgramData\WPM =>PUP.WpManager^ C:\Users\soulas\AppData\Roaming\BitTorrent =>P2P.BitTorrent^ [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application^ C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google^ C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe =>Toolbar.Google^ C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ - EXT: C:\Users\soulas\AppData\Local\Google\Chrome\User Data\Default\Extensions\glmfgahfleepmdfffonfckpmkondpdkg [AccelerateTab =>PUP.SpeedDial^ [HKLM\Software\supTab] =>PUP.SupTab^ [HKLM\Software\supWPM] =>PUP.WpManager^ C:\Windows\Installer\169d9.msi =>PUP.Dealio^ C:\Windows\Installer\2395bf.msi =>Toolbar.Google^ ~ Additionnel Scan: 304447 Items scanned in 00mn 47s ---\\ Récapitulatif des détections trouvées sur votre station http://nicolascoolman.webs.com/apps/blog/show/32720552-pup-speeddial =>PUP.SpeedDial http://nicolascoolman.webs.com/apps/blog/show/27443462-pup-dealio =>PUP.Dealio http://nicolascoolman.webs.com/apps/blog/show/41133513-pup-suptab =>PUP.SupTab http://nicolascoolman.webs.com/apps/blog/show/38737316-pup-wpmanager =>PUP.WpManager ~ MSI: 4 link(s) detected in 00mn 00s End of the scan (2621 lines in 00mn 28s)(34)