Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.3.5.145 par Nicolas Coolman, Update du 28/02/2013
Run by Socko Tikaf at 02/03/2013 14:50:56
State : Version � jour.
High Elevated Privileges : OK
UAC : Activate by user
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
GCIE: Google Chrome v25.0.1364.97
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : DVQJG
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4063 MB (62% free)
System Restore: Activ� (Enable)
System drive C: has 302 GB (81%) free of 373 GB
---\\ Logged in mode
~ Computer Name: SOCKOTIKAF-PC
~ User Name: Socko Tikaf
~ All Users Names: Socko Tikaf, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Socko Tikaf\AppData\Roaming\
~ %Desktop% : C:\Users\Socko Tikaf\Desktop\
~ %Favorites% : C:\Users\Socko Tikaf\Favorites\
~ %LocalAppData% : C:\Users\Socko Tikaf\AppData\Local\
~ %StartMenu% : C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 302 Go of 373 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 180 Go of 536 Go)
E:\ CD-ROM drive (Free 0 Go of 6 Go)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.28/03/2012 - 00:21:06.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.435E9C764E1EF70058580996452BE6A2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/01/2013 - 02:12:03.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/03/2012 - 00:30:31.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.28/03/2012 - 00:22:29.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.28/03/2012 - 00:09:29.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/207
~ Mes musiques (My Musics) : 7/1918
~ Mes Videos (My Videos) : 1/37
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/67
~ Mon Bureau (My Desktop) : 1/3
~ Menu demarrer (Programs) : 1/28
~ Scan Hidden Files in 00mn 01s
---\\ Processus lanc�s
[MD5.576C72830E3FD6ACE2910545B6130803] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328] [PID.3088]
[MD5.35CFDA79479D06FA2154A9E84236E84A] - (.ASUSTeK Computer Inc. - Tool to hook keyboard and handle hybrid-sle.) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe [1088128] [PID.3112]
[MD5.7987DEDC6E73D01BD8FBED2907E0C0B6] - (.ASUSTeK Computer Inc. - EPUHelp.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe [1256576] [PID.3192]
[MD5.BD712BF585CBE46FEC924398E852A29E] - (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe [232064] [PID.3516]
[MD5.E1D0DAC43EFE2BD3877806044E010C5E] - (.ASUSTek Computer Inc. - AiChargerPlus MFC Application.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [465536] [PID.3552]
[MD5.051665E677D3D325A46A156E2DFE6C52] - (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe [188416] [PID.3792]
[MD5.3B01B800A43CF3FAF5AAA78315BC2148] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe [74752] [PID.3416]
[MD5.A2418D3C557C0A0C634DA713A8AC3789] - (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336] [PID.1000]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.1180]
[MD5.84F6D5FE968852C59BCD3E06A36DC356] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1274320] [PID.4572]
[MD5.B57DB3640DF3480E5C001AF15CC42C03] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5715968] [PID.3124]
[MD5.AEBE8F338432F9DE5AE0CAE4D4BAED76] - (.Logitech Inc. - Logitech User mode UMVPF service.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848] [PID.1064]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1828]
[MD5.F7692E60147E56A1CEEE144974F41830] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe [918448] [PID.1928]
[MD5.3B52CA3643113058ED95097CBA4AE469] - (.ASUSTeK Computer Inc. - Pas de description.) -- C:\Program Files (x86)\ASUS\AAHM\1.00.16\aaHMSvc.exe [947328] [PID.2004]
[MD5.5C31DFB196CB3A488A041881634D86D2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880] [PID.2040]
[MD5.6660C136C490DB14086CEA4B92C93050] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.06\AsusFanControlService.exe [1399296] [PID.1256]
[MD5.0A403702CB00432AC818523CD416BF67] - (.ASUSTeK Computer Inc. - Device Handle.) -- C:\Windows\SysWOW64\AsHookDevice.exe [203392] [PID.1432]
[MD5.C44B44E24B929631D9D7368F5B2B40CF] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.1264]
[MD5.B3009DCDBCC5EFA49FA52562E9860E3C] - (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128] [PID.2824]
[MD5.75F29D77B0540FCF47EE3BE000BBABDA] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.3932]
[MD5.193AD338F2A64D17300AD640ADFA5D0A] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.552]
~ Scan Processes Running in 00mn 00s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M0 - MFSP: prefs.js [Socko Tikaf - bc1dak0q.default] http://start.iminent.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\windows\system32\Macromed\Flash\NPSWF64_11_6_602_171.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 1
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKLM\..\Wow6432Node\Run: [RunAIShell] . (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS AiChargerPlus Execute] . (.ASUSTek Computer Inc. - AiChargerPlus MFC Application.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS Easy Update] . (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ecareme - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.104.216\AsusWSPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [LWS] . (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-21-1569062301-1711957216-3303669385-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1569062301-1711957216-3303669385-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar: Internet Explorer (2).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: PhotoFiltre.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe
O4 - GS\TaskBar: Skype.lnk . (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\TaskBar: timidity.lnk . (...) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\TaskBar: Winamp.lnk . (.Nullsoft, Inc..) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - GS\TaskBar: Windows Explorer (2).lnk . (.Microsoft Corporation.) -- C:\windows\explorer.exe
O4 - GS\TaskBar: Windows Explorer (3).lnk . (.Microsoft Corporation.) -- C:\windows\explorer.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation.) -- C:\windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player (2).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Winamp.lnk . (.Nullsoft, Inc..) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation.) -- C:\windows\system32\eudcedit.exe
~ Scan Global Startup in 00mn 04s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{83F2FAB5-12BC-4B4F-A099-694373910AF5}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{D0EAB561-4EA4-4154-ACEB-ACA7BE394808}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS1\Services\Tcpip\..\{83F2FAB5-12BC-4B4F-A099-694373910AF5}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{D0EAB561-4EA4-4154-ACEB-ACA7BE394808}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\..\{83F2FAB5-12BC-4B4F-A099-694373910AF5}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{D0EAB561-4EA4-4154-ACEB-ACA7BE394808}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - Pas de description.) - C:\Program Files (x86)\ASUS\AAHM\1.00.16\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.06\AsusFanControlService.exe
O23 - Service: Device Handle Service (Device Handle Service) . (.ASUSTeK Computer Inc. - Device Handle.) - C:\Windows\SysWOW64\AsHookDevice.exe
O23 - Service: FABS - Helping agent for MAGIX media dat (Fabs) . (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: (UMVPFSrv) . (.Logitech Inc. - Logitech User mode UMVPF service.) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 03s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.9942DC4CC265CDA00486504444EF521D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.74660C1E9139D95F4E006E8E49EA4986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.D241DDF08B6BEB9E5EAF01E2B8829EA8] [APT] [AsBackupWizard_Run] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AsBackupWizard\AsRunBkWizardHelper.exe
[MD5.576C72830E3FD6ACE2910545B6130803] [APT] [ASUS AI Suite II Execute] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
[MD5.35CFDA79479D06FA2154A9E84236E84A] [APT] [Asus HybridSleep Helper] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe
~ Scan Scheduled Task in 00mn 02s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (AsUpIO) . (...) - C:\Windows\Syswow64\drivers\AsUpIO.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\system32\drivers\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {9301985B-D116-4A93-A93D-94580084FF86}
O42 - Logiciel: AI Manager - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {4AF95DE2-B54D-4C3F-9494-FD3B558E2C2D}
O42 - Logiciel: AI Suite II - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {34D3688E-A737-44C5-9E2A-FF73618728E1}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {89EE4A30-080F-2C95-6F78-C98D18FBD74D}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5E03A267-415E-5383-FA8F-3CE4145663B9}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {FA8CED1F-0508-B850-EA15-F011593D90CD}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}
O42 - Logiciel: ASUS Backup Wizard - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {124C9BD0-8C52-40AB-8238-0605703B1C28}
O42 - Logiciel: ASUS Easy Update - (.ASUSTeK Computer Inc.) [HKLM][64Bits] -- {E7AA854E-6756-424E-84C2-4E47D5729AFF}
O42 - Logiciel: ASUS Instant On - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {CCC4652E-F5E0-498A-84F3-5DDBEF84642B}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- {56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.6) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AA1000000001}
O42 - Logiciel: Asmedia ASM104x USB 3.0 Host Controller Driver - (.Asmedia Technology.) [HKLM][64Bits] -- {E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: Audacity 1.2.6 and lame_enc.dll 3.97 - (.--.) [HKLM][64Bits] -- Audacity + Lame_is1
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM][64Bits] -- {15634701-BACE-4449-8B25-1567DA8C9FD3}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}
O42 - Logiciel: D�tection de l'application Winamp - (.Nullsoft, Inc.) [HKCU][64Bits] -- Winamp Detect
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {6C5F8503-55D2-4398-858C-362B7A7AF51C}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel� Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34}
O42 - Logiciel: Java 7 Update 15 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217015FF}
O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM][64Bits] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB}
O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM][64Bits] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}
O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM][64Bits] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9}
O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM][64Bits] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6}
O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM][64Bits] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA}
O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM][64Bits] -- {08610298-29AE-445B-B37D-EFBE05802967}
O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM][64Bits] -- {174A3B31-4C43-43DD-866F-73C9DB887B48}
O42 - Logiciel: LWS Video Mask Maker - (.Logitech.) [HKLM][64Bits] -- {EED027B7-0DB6-404B-8F45-6DFEE34A0441}
O42 - Logiciel: LWS VideoEffects - (.Logitech.) [HKLM][64Bits] -- {138A4072-9E64-46BD-B5F9-DB2BB395391F}
O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM][64Bits] -- {9DAEA76B-E50F-4272-A595-0124E826553D}
O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM][64Bits] -- {8937D274-C281-42E4-8CDB-A0B2DF979189}
O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM][64Bits] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propri�taire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM][64Bits] -- {D40EB009-0499-459c-A8AF-C9C110766215}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D954C6C2-544B-4091-A47F-11E77162883E}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft VC9 runtime libraries - (.AOL Inc..) [HKLM][64Bits] -- {553C904F-57A2-4113-888E-BA0C3D1C69C0}
O42 - Logiciel: MyFreeCodec - (.Pas de propri�taire.) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: PhotoFiltre - (.Pas de propri�taire.) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Ralink RT2860 Wireless LAN Card - (.Ralink.) [HKLM][64Bits] -- {E883ECE4-1189-413A-894D-B7C4B17F0607}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Skype� 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {E5F05232-96B6-4552-A480-785A60A94B21}
O42 - Logiciel: VLC media player 2.0.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: aTube Catcher - (.DsNET Corp.) [HKLM][64Bits] -- aTube Catcher
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AMD]
[HKCU\Software\ASUS]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Audacity]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EA Sports]
[HKCU\Software\ECAREME]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Leadertech]
[HKCU\Software\LogiShrd]
[HKCU\Software\Logitech]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Samsung]
[HKCU\Software\Skype]
[HKCU\Software\Sysinternals]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Wget]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\HitmanPro]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Origin Games]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Ralink]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\Sensible Vision]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\TrendMicro]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Vittalia]
[HKLM\Software\Wow6432Node\logishrd]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\swearware]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 03/01/2013 - 15:28:43 - [110,822] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 22/01/2013 - 00:58:40 - [2,145] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 22/01/2013 - 00:58:46 - [0,397] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 28/03/2012 - 01:14:33 - [2,257] ----D C:\Program Files (x86)\ASM104xUSB3
O43 - CFD: 25/12/2012 - 14:22:50 - [379,218] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 25/12/2012 - 14:44:56 - [60,025] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 27/12/2012 - 18:37:49 - [9,185] ----D C:\Program Files (x86)\Audacity
O43 - CFD: 01/03/2013 - 12:01:51 - [206,483] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 22/01/2013 - 05:30:17 - [38,179] ----D C:\Program Files (x86)\DsNET Corp
O43 - CFD: 25/12/2012 - 15:02:09 - [354,427] ----D C:\Program Files (x86)\Google
O43 - CFD: 11/02/2013 - 04:39:03 - [39,337] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 25/12/2012 - 22:58:45 - [20,811] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/02/2013 - 03:51:06 - [6,031] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/02/2013 - 17:25:48 - [121,966] ----D C:\Program Files (x86)\Java
O43 - CFD: 29/01/2013 - 19:56:36 - [50,705] ----D C:\Program Files (x86)\Logitech
O43 - CFD: 25/12/2012 - 15:28:32 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 31/01/2013 - 00:41:14 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 28/03/2012 - 01:34:08 - [3,469] ----D C:\Program Files (x86)\Microsoft Chart Controls
O43 - CFD: 28/03/2012 - 01:23:58 - [6,126] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 27/02/2013 - 03:00:37 - [1,200] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 28/12/2012 - 15:29:52 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 28/12/2012 - 21:39:35 - [0,015] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 28/03/2012 - 01:32:28 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 05/01/2013 - 00:58:38 - [10,585] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 28/02/2013 - 21:38:39 - [13,587] ----D C:\Program Files (x86)\Origin
O43 - CFD: 27/12/2012 - 18:42:58 - [3,526] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 28/03/2012 - 01:13:16 - [5,858] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 11/02/2013 - 04:39:05 - [33,837] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 23/01/2013 - 17:17:26 - [18,091] R---D C:\Program Files (x86)\Skype
O43 - CFD: 29/12/2012 - 12:27:13 - [0,586] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 28/03/2012 - 01:09:17 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 01/03/2013 - 11:07:27 - [0,763] ----D C:\Program Files (x86)\trend micro
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 11/02/2013 - 04:30:03 - [94,079] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 27/12/2012 - 18:31:25 - [41,238] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 27/12/2012 - 18:29:00 - [0,148] ----D C:\Program Files (x86)\Winamp Detect
O43 - CFD: 27/12/2012 - 19:56:40 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 27/12/2012 - 19:53:08 - [19,147] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 27/12/2012 - 19:56:41 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 27/12/2012 - 19:56:40 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 27/12/2012 - 19:56:40 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 27/12/2012 - 19:56:41 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 28/12/2012 - 16:06:12 - [0,000] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 02/03/2013 - 14:51:10 - [15,172] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 28/01/2013 - 12:53:30 - [3,211] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 25/12/2012 - 14:46:52 - [2,772] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 09/01/2013 - 02:07:43 - [0,005] --H-D C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 28/03/2012 - 01:19:25 - [3,111] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 29/12/2012 - 12:24:41 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 29/01/2013 - 19:57:15 - [101,823] ----D C:\Program Files (x86)\Common Files\logishrd
O43 - CFD: 29/01/2013 - 19:56:12 - [4,999] ----D C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 25/12/2012 - 14:22:49 - [15,002] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 27/12/2012 - 18:52:31 - [18,091] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 28/03/2012 - 01:08:26 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 27/12/2012 - 18:28:52 - [4,559] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 23/01/2013 - 17:17:26 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 25/02/2013 - 21:33:29 - [0,518] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 27/12/2012 - 19:56:40 - [9,767] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/03/2012 - 01:36:06 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 28/01/2013 - 11:21:10 - [132,675] ----D C:\ProgramData\Adobe
O43 - CFD: 22/01/2013 - 00:58:47 - [0,764] ----D C:\ProgramData\AMD
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Application Data
O43 - CFD: 25/12/2012 - 14:22:49 - [68,472] ----D C:\ProgramData\ASUS
O43 - CFD: 28/03/2012 - 01:22:24 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 22/01/2013 - 00:58:47 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Documents
O43 - CFD: 28/02/2013 - 21:38:38 - [0,001] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Favorites
O43 - CFD: 25/12/2012 - 16:21:28 - [0,054] ----D C:\ProgramData\HitmanPro
O43 - CFD: 28/03/2012 - 01:08:51 - [0,136] ----D C:\ProgramData\Intel
O43 - CFD: 29/01/2013 - 19:58:03 - [0,000] ----D C:\ProgramData\LogiShrd
O43 - CFD: 29/01/2013 - 19:56:14 - [20,165] ----D C:\ProgramData\Logitech
O43 - CFD: 25/12/2012 - 14:23:07 - [5,471] ----D C:\ProgramData\MAGIX
O43 - CFD: 25/12/2012 - 17:12:37 - [0,004] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 12/01/2013 - 22:39:15 - [1557,789] -S--D C:\ProgramData\Microsoft
O43 - CFD: 06/02/2013 - 21:55:43 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 28/02/2013 - 21:38:38 - [2,933] ----D C:\ProgramData\Origin
O43 - CFD: 25/12/2012 - 14:21:32 - [4,237] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 11/02/2013 - 04:39:04 - [0,575] ----D C:\ProgramData\Samsung
O43 - CFD: 23/01/2013 - 17:17:29 - [39,862] ----D C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Start Menu
O43 - CFD: 29/12/2012 - 12:24:42 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 11/02/2013 - 04:34:45 - [0] ----D C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Templates
O43 - CFD: 27/12/2012 - 17:34:59 - [1,140] ----D C:\ProgramData\Trend Micro
O43 - CFD: 12/01/2013 - 22:19:19 - [0,002] ----D C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 28/01/2013 - 11:20:32 - [0,217] ----D C:\Users\Socko Tikaf\AppData\Roaming\Adobe
O43 - CFD: 28/03/2012 - 01:22:25 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\ASUS WebStorage
O43 - CFD: 25/12/2012 - 14:54:19 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\ATI
O43 - CFD: 28/12/2011 - 02:20:45 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\Identities
O43 - CFD: 28/03/2012 - 01:08:23 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\InstallShield
O43 - CFD: 29/01/2013 - 19:56:36 - [0,000] ----D C:\Users\Socko Tikaf\AppData\Roaming\Leadertech
O43 - CFD: 25/12/2012 - 15:01:19 - [0,001] ----D C:\Users\Socko Tikaf\AppData\Roaming\Macromedia
O43 - CFD: 25/12/2012 - 14:23:07 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\MAGIX
O43 - CFD: 25/12/2012 - 17:12:38 - [0,673] ----D C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes
O43 - CFD: 12/04/2011 - 09:28:03 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\Media Center Programs
O43 - CFD: 28/02/2013 - 21:42:39 - [3,494] -S--D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft
O43 - CFD: 06/02/2013 - 21:58:44 - [12,548] ----D C:\Users\Socko Tikaf\AppData\Roaming\Mozilla
O43 - CFD: 09/01/2013 - 07:09:00 - [0,054] ----D C:\Users\Socko Tikaf\AppData\Roaming\Origin
O43 - CFD: 27/12/2012 - 18:39:27 - [0,001] ----D C:\Users\Socko Tikaf\AppData\Roaming\PhotoFiltre
O43 - CFD: 11/02/2013 - 04:39:05 - [0,039] ----D C:\Users\Socko Tikaf\AppData\Roaming\Samsung
O43 - CFD: 02/03/2013 - 14:21:41 - [22,199] ----D C:\Users\Socko Tikaf\AppData\Roaming\Skype
O43 - CFD: 29/12/2012 - 12:26:59 - [0,433] ----D C:\Users\Socko Tikaf\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 27/12/2012 - 18:28:54 - [0,144] ----D C:\Users\Socko Tikaf\AppData\Roaming\Todae
O43 - CFD: 16/01/2013 - 01:23:36 - [0,294] ----D C:\Users\Socko Tikaf\AppData\Roaming\TS3Client
O43 - CFD: 27/02/2013 - 01:19:21 - [2,484] ----D C:\Users\Socko Tikaf\AppData\Roaming\uTorrent
O43 - CFD: 11/02/2013 - 04:33:17 - [0,077] ----D C:\Users\Socko Tikaf\AppData\Roaming\vlc
O43 - CFD: 01/03/2013 - 11:41:00 - [7,415] ----D C:\Users\Socko Tikaf\AppData\Roaming\Winamp
O43 - CFD: 28/12/2012 - 16:05:47 - [0,000] ----D C:\Users\Socko Tikaf\AppData\Roaming\WinRAR
O43 - CFD: 28/01/2013 - 11:20:32 - [0,253] ----D C:\Users\Socko Tikaf\AppData\Local\Adobe
O43 - CFD: 25/12/2012 - 14:21:02 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Application Data
O43 - CFD: 25/12/2012 - 15:01:36 - [1,552] ----D C:\Users\Socko Tikaf\AppData\Local\Apps
O43 - CFD: 29/12/2012 - 13:46:33 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Arktos
O43 - CFD: 25/12/2012 - 14:54:19 - [0,061] ----D C:\Users\Socko Tikaf\AppData\Local\ATI
O43 - CFD: 29/12/2012 - 13:46:33 - [0,000] ----D C:\Users\Socko Tikaf\AppData\Local\CrashRpt
O43 - CFD: 25/12/2012 - 15:01:41 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Deployment
O43 - CFD: 27/01/2013 - 12:05:07 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Diagnostics
O43 - CFD: 05/01/2013 - 00:52:17 - [63,965] ----D C:\Users\Socko Tikaf\AppData\Local\Downloaded Installations
O43 - CFD: 25/12/2012 - 15:02:17 - [329,639] ----D C:\Users\Socko Tikaf\AppData\Local\Google
O43 - CFD: 25/12/2012 - 14:21:02 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Historique
O43 - CFD: 29/01/2013 - 20:00:03 - [2,362] ----D C:\Users\Socko Tikaf\AppData\Local\Logitech� Webcam Software
O43 - CFD: 08/02/2013 - 14:17:59 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Macromedia
O43 - CFD: 14/02/2013 - 16:27:46 - [55,552] ----D C:\Users\Socko Tikaf\AppData\Local\Microsoft
O43 - CFD: 06/02/2013 - 21:58:35 - [3,565] ----D C:\Users\Socko Tikaf\AppData\Local\Mozilla
O43 - CFD: 01/03/2013 - 11:08:41 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Programs
O43 - CFD: 05/01/2013 - 00:59:52 - [0,011] ----D C:\Users\Socko Tikaf\AppData\Local\Samsung
O43 - CFD: 02/03/2013 - 14:51:24 - [0,131] ----D C:\Users\Socko Tikaf\AppData\Local\Temp
O43 - CFD: 25/12/2012 - 14:21:02 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Temporary Internet Files
O43 - CFD: 25/12/2012 - 14:24:16 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\VirtualStore
O43 - CFD: 27/12/2012 - 17:33:45 - [0,016] ----D C:\Users\Socko Tikaf\AppData\Local\Windows Live
O43 - CFD: 14/02/2013 - 16:27:50 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\WMTools Downloaded Files
O43 - CFD: 27/12/2012 - 18:51:30 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\{D9B64906-23AB-4D3D-A338-64B74825B122}
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 28/12/2012 - 15:53:54 - [0,000] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27/12/2012 - 18:29:00 - [0,001] ----D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D�tection de l'application Winamp
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27/12/2012 - 18:42:59 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 16/02/2013 - 15:44:59 - [0,001] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/12/2012 - 16:06:40 - [0,003] ----D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 00mn 03s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.A0B08A0DF407A8396720CE779E3FFF71] - 02/03/2013 - 14:46:03 ---A- . (...) -- C:\Windows\setupact.log [840]
O44 - LFC:[MD5.ACCAF2649932EBF9AA05AEDF7398D094] - 02/03/2013 - 14:23:51 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1767574]
O44 - LFC:[MD5.B6AFD006A8C5E3C998A066BD5E353108] - 02/03/2013 - 14:20:34 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0F3B19F68645C8ADEAB417EB9F01FB4E] - 02/03/2013 - 14:19:46 ---A- . (...) -- C:\AdwCleaner[S4].txt [1372]
O44 - LFC:[MD5.05784DC3B7E637A763A806B6E59209BF] - 01/03/2013 - 17:41:59 ---A- . (...) -- C:\Windows\PFRO.log [1910]
O44 - LFC:[MD5.C8F16E586EB497E360F6C8A67C19C967] - 01/03/2013 - 12:42:57 ---A- . (...) -- C:\AdwCleaner[S3].txt [414]
O44 - LFC:[MD5.520386FDAFFCA6B24211A4E0CC45EABE] - 01/03/2013 - 12:04:15 ---A- . (...) -- C:\ComboFix.txt [29761]
O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 01/03/2013 - 12:03:07 ---A- . (...) -- C:\Windows\system.ini [215]
O44 - LFC:[MD5.753BC16326FEE4A421ACB636CCD602F4] - 01/03/2013 - 11:42:05 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [60416]
O44 - LFC:[MD5.A46842C9B0C567A5A9584E83A163560C] - 01/03/2013 - 11:42:05 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [518144]
O44 - LFC:[MD5.0297C72529807322B152F517FDB0A9FC] - 01/03/2013 - 11:42:05 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [406528]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 01/03/2013 - 10:58:56 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.CC667E91195F13B1C4865C0DEC4B1985] - 01/03/2013 - 10:58:01 ---A- . (...) -- C:\AdwCleaner[S2].txt [11989]
O44 - LFC:[MD5.61A1EA884612A012BAFD2D3B2B0A38DA] - 01/03/2013 - 10:57:16 ---A- . (...) -- C:\AdwCleaner[R1].txt [11806]
O44 - LFC:[MD5.9FFBB8A29E2DCC69A6DC5B034C7C7654] - 27/02/2013 - 03:00:49 ---A- . (...) -- C:\Windows\epplauncher.mif [2155]
O44 - LFC:[MD5.B34FBC43067BE729D6893EBE72447DA1] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.41821E8A098EEBD048888B760B732512] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106190]
O44 - LFC:[MD5.21767E020C38DACF40F0754E72C6A085] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130548]
O44 - LFC:[MD5.86BA7075C004B98145705F3054C11C43] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [615810]
O44 - LFC:[MD5.CBD06ACA8D392816E0502BFA338370FA] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704242]
O44 - LFC:[MD5.18C3A639A10E05CF945A27A30EBA2811] - 14/02/2013 - 03:52:21 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [348208]
O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 26/06/2011 - 07:45:56 ---A- . (...) -- C:\Windows\PEV.exe [256000]
O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 07/11/2010 - 18:20:24 ---A- . (...) -- C:\Windows\MBR.exe [208896]
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\grep.exe [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\sed.exe [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\zip.exe [68096]
~ Scan Files in 00mn 06s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.233AC35719D1257AE691C53C9E7CAB1D] - 01/03/2013 - 17:53:40 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-03D3FB87.pf
O45 - LFCP:[MD5.F5F0B087987373BD6A89E27831FC7409] - 01/03/2013 - 18:27:00 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6FE41093.pf
O45 - LFCP:[MD5.2A32BD270F4BC7B76134F9C0894AD1EE] - 01/03/2013 - 18:27:48 ---A- - C:\Windows\Prefetch\CONTROL.EXE-6EA5489A.pf
O45 - LFCP:[MD5.8FE52666848F83E6CFFB095A0E17E742] - 01/03/2013 - 19:58:48 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-4BB80510.pf
O45 - LFCP:[MD5.71DFB5F9898B89166D0B8D20791D1DCF] - 01/03/2013 - 20:05:28 ---A- - C:\Windows\Prefetch\CLI.EXE-7167FFDF.pf
O45 - LFCP:[MD5.2655955858FD530D3F8FC1504817E525] - 02/03/2013 - 12:45:51 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf
O45 - LFCP:[MD5.A990C72066EFCCDD3DC2BD75DC4968B2] - 02/03/2013 - 12:45:53 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.7B8E7310EF9CF4DB0AE71E54A1221323] - 02/03/2013 - 12:52:30 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf
O45 - LFCP:[MD5.D26AAD0B2022FBDFF9C61E232CE772D4] - 02/03/2013 - 12:52:36 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf
O45 - LFCP:[MD5.832948F52EB96E0180A897DF18728376] - 02/03/2013 - 12:52:40 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf
O45 - LFCP:[MD5.B439EEBB3DFB888D22ADB98078D9BFE5] - 02/03/2013 - 12:52:40 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf
O45 - LFCP:[MD5.4B7CF38D990DF71173481EE4C5D0EE02] - 02/03/2013 - 12:53:35 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.DFCEFBB0418921587E668AEF796993ED] - 02/03/2013 - 12:57:31 ---A- - C:\Windows\Prefetch\JAVA.EXE-AB789167.pf
O45 - LFCP:[MD5.F6BF5DDA1560E01D103AB42AD17E7643] - 02/03/2013 - 13:07:00 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.CDC90F2DD4C076DE31E39FFE3513C928] - 02/03/2013 - 13:10:06 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5DA157A2.pf
O45 - LFCP:[MD5.B465782437B1291AA1D3653731173E82] - 02/03/2013 - 13:17:03 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-89FB5927.pf
O45 - LFCP:[MD5.4C11D380EE77461B5CEF2020294F1D17] - 02/03/2013 - 13:17:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7C9048C0.pf
O45 - LFCP:[MD5.C4E0BEE493E9FC9C48C8E4660F80E902] - 02/03/2013 - 13:17:11 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf
O45 - LFCP:[MD5.BA94046BB30628F7DAC3914BCC676F26] - 02/03/2013 - 13:34:30 ---A- - C:\Windows\Prefetch\IELOWUTIL.EXE-EE8999C6.pf
O45 - LFCP:[MD5.8F7189AA2B3357284F502A46EBDAEE2D] - 02/03/2013 - 13:38:22 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1569062301-1711957216-3303669385-1000.db
O45 - LFCP:[MD5.BAD9CD44CA7DF29D19F4BE7918242A0B] - 02/03/2013 - 13:38:22 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1569062301-1711957216-3303669385-1000.db
O45 - LFCP:[MD5.7F73A34BF5A5D6DB51714E6D2009D1B6] - 02/03/2013 - 13:47:29 ---A- - C:\Windows\Prefetch\PHOTOFILTRE.EXE-545D857E.pf
O45 - LFCP:[MD5.871BECD1893E37FC6DBB5D0E63E33139] - 02/03/2013 - 13:55:24 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-EBBA463B.pf
O45 - LFCP:[MD5.8B2D1A5874C9B7DDCBBE17348D4823CF] - 02/03/2013 - 13:55:32 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-155C56CF.pf
O45 - LFCP:[MD5.06B799D44EB4BD731B2F0BF2B1C40243] - 02/03/2013 - 13:55:36 ---A- - C:\Windows\Prefetch\AUDACITY.EXE-F59D2226.pf
O45 - LFCP:[MD5.D23A6B143D6E704A4F893D615F70F814] - 02/03/2013 - 13:55:40 ---A- - C:\Windows\Prefetch\WMPRPH.EXE-92EA34B9.pf
O45 - LFCP:[MD5.16D3AE18F05140902E961394E98D4DC6] - 02/03/2013 - 13:56:15 ---A- - C:\Windows\Prefetch\PREVHOST.EXE-7DD93B84.pf
O45 - LFCP:[MD5.1C97023DA8E6596D0A470BE6220A3BDB] - 02/03/2013 - 13:56:25 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.1015718D56ADF2B5469DD225FAD3E57C] - 02/03/2013 - 14:06:44 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf
O45 - LFCP:[MD5.C4C28A8325ACE47C2BFAB6A8DD5E15B2] - 02/03/2013 - 14:09:24 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.D9281E7956CC03FE20F875166CD48ADF] - 02/03/2013 - 14:09:24 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.A7FF1F1DB9CBAB22486B8F2CC2679890] - 02/03/2013 - 14:09:25 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.216BF8DC77D8FBF658280ED08CB7D077] - 02/03/2013 - 14:09:25 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.E1C2763C00754576508CFF51DABCEB23] - 02/03/2013 - 14:19:29 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE53EAA3.pf
O45 - LFCP:[MD5.133F050F207463DE6F4A5B9960F32AB6] - 02/03/2013 - 14:19:39 ---A- - C:\Windows\Prefetch\ADWCLEANER.EXE-1F5DD6C0.pf
O45 - LFCP:[MD5.E335FABDDD1EA047F40D861FC2DF9FB9] - 02/03/2013 - 14:19:51 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.2D6E95298DFAC0507D90BFD2249D78B9] - 02/03/2013 - 14:21:35 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-1B0E9471.pf
O45 - LFCP:[MD5.1BAC1AEE219B5E266DC006BE0AB70838] - 02/03/2013 - 14:21:40 ---A- - C:\Windows\Prefetch\SKYPE.EXE-A716A034.pf
O45 - LFCP:[MD5.E9009A651A594B0DE2222BCAB628A820] - 02/03/2013 - 14:21:59 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-C40A3D6A.pf
O45 - LFCP:[MD5.8855368FFD7B1339A69FB76B3F174EFE] - 02/03/2013 - 14:22:47 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.28F8BA14A402EF3CEEF9A9B0E593E3CB] - 02/03/2013 - 14:22:48 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-16B291C4.pf
O45 - LFCP:[MD5.125D6488F25A150307D7A2BAFD912F66] - 02/03/2013 - 14:22:49 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-0E1E7B82.pf
O45 - LFCP:[MD5.E344F52EC23009E339C3BE79132CD26B] - 02/03/2013 - 14:22:58 ---A- - C:\Windows\Prefetch\FABS.EXE-55D14A72.pf
O45 - LFCP:[MD5.831EDD13F6D23C98CEA3FA7ADB585A2A] - 02/03/2013 - 14:22:59 ---A- - C:\Windows\Prefetch\LMS.EXE-E687E9C2.pf
O45 - LFCP:[MD5.C934B3625CA0670A5814E1A67562E9CD] - 02/03/2013 - 14:23:02 ---A- - C:\Windows\Prefetch\UNS.EXE-40FB88B6.pf
O45 - LFCP:[MD5.24E807196D97D9783046ADF1B628F152] - 02/03/2013 - 14:23:22 ---A- - C:\Windows\Prefetch\LOGITECHUPDATE.EXE-4459EF7C.pf
O45 - LFCP:[MD5.0D5E425751FA7E311C642694C8D2AF22] - 02/03/2013 - 14:23:22 ---A- - C:\Windows\Prefetch\LULNCHR.EXE-0A06879A.pf
O45 - LFCP:[MD5.9E89CC4D45ECA1B2596357D8AB7AF770] - 02/03/2013 - 14:23:47 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.7CD3EA86464230C9115D001DD68A0F49] - 02/03/2013 - 14:24:46 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.4905604AAD5E646309FCC7A2133039D3] - 02/03/2013 - 14:29:28 ---A- - C:\Windows\Prefetch\LIVEUPDT.EXE-D338BF94.pf
O45 - LFCP:[MD5.63D54214AF0AA81A52771A9F1AC3193F] - 02/03/2013 - 14:34:17 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf
O45 - LFCP:[MD5.DCF89567FF855B4D07B005A828FA0084] - 02/03/2013 - 14:34:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EB9F1AB4.pf
O45 - LFCP:[MD5.2E50A30DC1E23E95C54BBBBC8727A75D] - 02/03/2013 - 14:40:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-38FE020E.pf
O45 - LFCP:[MD5.EB4E41EBD0F9DB61D7746911D1104F32] - 02/03/2013 - 14:42:05 ---A- - C:\Windows\Prefetch\JAVAW.EXE-6340EE82.pf
O45 - LFCP:[MD5.BD1DBAE8EF4D5C6E41FE1E3DC81C25A5] - 02/03/2013 - 14:42:05 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-E463E9D1.pf
O45 - LFCP:[MD5.79B7FF77B8A481D0700F7A6CCAEF87C3] - 02/03/2013 - 14:48:25 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-F9C067F2.pf
O45 - LFCP:[MD5.4288B340890F9781EA2608B9877E1D6D] - 02/03/2013 - 14:48:27 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.8DEB6EFDC8DDB04674EDBA2840FF138C] - 02/03/2013 - 14:48:27 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
O45 - LFCP:[MD5.19D1219940BEA3BB867C436072E5B620] - 02/03/2013 - 14:48:53 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-BA176062.pf
O45 - LFCP:[MD5.B0B98DB3A47EFC6FE7191A903D4E95B7] - 02/03/2013 - 14:49:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-0129C0B2.pf
O45 - LFCP:[MD5.F251A6FB8603D9E76A33942DEAC93BAD] - 02/03/2013 - 14:49:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.873AEA42EA86BB5B218A01CD8444D891] - 02/03/2013 - 14:49:36 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E173F32A.pf
O45 - LFCP:[MD5.AF699755E01EE38F68E1037E55525F48] - 02/03/2013 - 14:49:42 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf
O45 - LFCP:[MD5.60DE64881F4BC555CD40639BA8D85CAD] - 02/03/2013 - 14:49:47 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf
O45 - LFCP:[MD5.82021DD504CE464807DE055450C780CD] - 02/03/2013 - 14:49:52 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-F99091EF.pf
O45 - LFCP:[MD5.7FD6A8AA0DCAC9CF0EE837DAB38CE9EC] - 02/03/2013 - 14:49:55 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-B617F0A6.pf
O45 - LFCP:[MD5.71FEDE5099C083FA00FAAA2C0C78D3FC] - 02/03/2013 - 14:49:57 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-06C511BF.pf
O45 - LFCP:[MD5.5CBA8FC222E78D859DFB4B7DCE13A15C] - 02/03/2013 - 14:49:57 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-8261C81C.pf
O45 - LFCP:[MD5.AB6380246D4F098D8FE7CC16EE9807E1] - 02/03/2013 - 14:50:39 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-257D8644.pf
O45 - LFCP:[MD5.B4517B011DB9E351FF8161267C5F93C8] - 02/03/2013 - 14:50:49 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-6A1D0894.pf
O45 - LFCP:[MD5.600373511B11AB8163D0DB5C9D96A461] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.994D695740C04F06D22B349007E6B991] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-FCD9ABA9.pf
O45 - LFCP:[MD5.1C15744E9FA2311B9CD87CE33B834DB8] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.B3F9D1E9706EA7234506D843C2AB6F57] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-39F97B2D.pf
O45 - LFCP:[MD5.62C6318960DCB9450FB435E8D93B3117] - 02/03/2013 - 14:51:09 ---A- - C:\Windows\Prefetch\PV.EXE-0748338F.pf
O45 - LFCP:[MD5.A842C44ED6D38A80ECC3B199C3767386] - 02/03/2013 - 14:51:11 ---A- - C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
O45 - LFCP:[MD5.477E75788BC39C77E2231F2623086CAF] - 02/03/2013 - 14:51:15 ---A- - C:\Windows\Prefetch\CMD.EXE-6D6290C5.pf
O45 - LFCP:[MD5.2A5854DA739529703918E43756AC3E0E] - 02/03/2013 - 14:51:15 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-3DCC0576.pf
O45 - LFCP:[MD5.50366993D352483838AEF9FB7178A30E] - 02/03/2013 - 14:51:20 ---A- - C:\Windows\Prefetch\DRVINST.EXE-39D9EAC7.pf
O45 - LFCP:[MD5.28DE9B9CE14B0BAC63A3CBE29DAC452F] - 02/03/2013 - 14:51:20 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-DC1676CD.pf
O45 - LFCP:[MD5.13384CC494939740E833F8B16E21E2A7] - 02/03/2013 - 14:51:26 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6D6FB3A1.pf
O45 - LFCP:[MD5.80538F8C2ECF52169DD148D093655DBE] - 02/03/2013 - 14:51:29 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6D47E169.pf
O45 - LFCP:[MD5.E4111C329115E90D214832A0914F20DA] - 02/03/2013 - 14:51:30 ---A- - C:\Windows\Prefetch\DINOTIFY.EXE-6465574B.pf
O45 - LFCP:[MD5.EFE80CEB69392EE4F45EBF2292A39BF5] - 02/03/2013 - 14:51:31 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-7C73F960.pf
O45 - LFCP:[MD5.253ECEC36FFDCC278767483465D90946] - 28/02/2013 - 15:13:49 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.52FDF0A4CBEB2D5D14C6A562C5C1917B] - 28/02/2013 - 18:38:16 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-1569062301-1711957216-3303669385-1000.snp.db
O45 - LFCP:[MD5.E36CA58090D04E67C05E4749C2DF1252] - 28/02/2013 - 20:22:51 ---A- - C:\Windows\Prefetch\AgCx_SC3_4FE05E613C540DBD.db
~ Scan Prefetcher in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"vidc.i420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcod64.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.A41B855EDC1F141851E27F984827942C] - 21/10/2010 - 05:05:18 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\SysWOW64\drivers\AiCharger.sys [14592]
~ Scan Drivers in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\MANIFEST-000002 [32]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\MANIFEST-000002 [32]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\MANIFEST-000002 [32]
O61 - LFC: 01/03/2013 - 10:52:24 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db [7168]
O61 - LFC: 01/03/2013 - 10:52:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Archived History [57344]
O61 - LFC: 01/03/2013 - 10:52:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal [512]
O61 - LFC: 01/03/2013 - 10:53:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\000005.sst [135]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\LOG [259]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\LOG.old [47]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\MANIFEST-000004 [65]
O61 - LFC: 01/03/2013 - 10:53:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage [7168]
O61 - LFC: 01/03/2013 - 10:53:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage-journal [6704]
O61 - LFC: 01/03/2013 - 10:54:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.iminent.com_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 10:54:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.iminent.com_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 10:54:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 10:54:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 10:55:14 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\static.anonymousdmp.com\pus.sol [68]
O61 - LFC: 01/03/2013 - 11:36:21 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7665042892.data [750]
O61 - LFC: 01/03/2013 - 11:36:21 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7665042892.quar [702760]
O61 - LFC: 01/03/2013 - 11:36:30 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-03-01 (11-09-31).txt [2350]
O61 - LFC: 01/03/2013 - 11:40:53 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\winampa.lng [4096]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Todae\LMPwa\LMP_default.rtv [113632]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art.dat [59756]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art.idx [1508]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art_90.dat [6716841]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art_90.idx [1396]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\downloads.xml [504]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\feeds.xml [208]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\main.dat [870658]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\main.idx [18180]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\met7CB1.vmd [1769]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\playlists.xml [154]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\rss.xml [1558]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Winamp.m3u [9]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Winamp.m3u8 [12]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\gen_jumpex.m3u8 [12]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\studio.xnf [10074]
O61 - LFC: 01/03/2013 - 11:49:50 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.commentcamarche.net_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 11:49:50 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.commentcamarche.net_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 12:04:18 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\log.txt [29761]
O61 - LFC: 01/03/2013 - 12:11:58 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [12288]
O61 - LFC: 01/03/2013 - 12:11:58 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal [12824]
O61 - LFC: 01/03/2013 - 12:13:52 ---A- C:\Users\Socko Tikaf\Pictures\Sans titre 1.jpg [10113]
O61 - LFC: 01/03/2013 - 12:15:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor [13312]
O61 - LFC: 01/03/2013 - 12:15:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal [3608]
O61 - LFC: 01/03/2013 - 12:24:10 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\adventori.com\cookie.sol [94]
O61 - LFC: 01/03/2013 - 12:24:10 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#adventori.com\settings.sol [83]
O61 - LFC: 01/03/2013 - 12:24:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\rutube.ru\rutube.cookies.sol [82]
O61 - LFC: 01/03/2013 - 12:41:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\rutube.ru\analytics.sol [451]
O61 - LFC: 01/03/2013 - 12:42:55 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\~DFA4BC7C3161E00B12.TMP [32768]
O61 - LFC: 01/03/2013 - 17:51:14 ---A- C:\Users\Socko Tikaf\Music\refrain feat crazy2.mp3 [9653609]
O61 - LFC: 01/03/2013 - 17:54:59 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\Socko Tikaf.bmp [31832]
O61 - LFC: 01/03/2013 - 18:09:20 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adprudence.rotator.hadj7.adjuggler.net_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 18:09:20 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adprudence.rotator.hadj7.adjuggler.net_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 18:37:10 ---A- C:\Users\Socko Tikaf\Downloads\5___autodestruction_feat_mc_crazy__widow_et_socko.mp3 [4817020]
O61 - LFC: 01/03/2013 - 18:39:36 --HA- C:\Users\Socko Tikaf\AppData\Local\IconCache.db [3274288]
O61 - LFC: 02/03/2013 - 12:52:33 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\eas.db [53248]
O61 - LFC: 02/03/2013 - 12:52:33 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\eas.db-journal [41552]
O61 - LFC: 02/03/2013 - 12:52:52 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\48\4884b857268b577e.dat [1964]
O61 - LFC: 02/03/2013 - 12:53:02 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\8e\8ee42991207963a0.dat [54432]
O61 - LFC: 02/03/2013 - 13:34:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\keyval.db [49152]
O61 - LFC: 02/03/2013 - 13:34:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\keyval.db-journal [41552]
O61 - LFC: 02/03/2013 - 13:41:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [268363]
O61 - LFC: 02/03/2013 - 13:41:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set [1356]
O61 - LFC: 02/03/2013 - 13:41:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json [34]
O61 - LFC: 02/03/2013 - 13:43:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\42\42f2bbe86a070053.dat [3946]
O61 - LFC: 02/03/2013 - 13:45:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Bookmarks [52355]
O61 - LFC: 02/03/2013 - 13:45:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak [52355]
O61 - LFC: 02/03/2013 - 13:45:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 13:45:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 13:47:28 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\dc.db [94208]
O61 - LFC: 02/03/2013 - 13:49:32 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_2 [8192]
O61 - LFC: 02/03/2013 - 13:49:32 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\index [524656]
O61 - LFC: 02/03/2013 - 13:50:58 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\msn.db [77824]
O61 - LFC: 02/03/2013 - 13:50:59 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\msn.db-journal [49760]
O61 - LFC: 02/03/2013 - 13:52:59 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003168.sst [2257]
O61 - LFC: 02/03/2013 - 13:53:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\03\036d0461e98359b0.dat [103143]
O61 - LFC: 02/03/2013 - 13:53:02 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [743]
O61 - LFC: 02/03/2013 - 13:55:52 ---A- C:\Users\Socko Tikaf\Downloads\�a vire au drame.mp3 [721020]
O61 - LFC: 02/03/2013 - 13:56:13 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.laredoute.fr_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 13:56:13 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.laredoute.fr_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\bistats.db [69632]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\bistats.db-journal [33344]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\config.xml [10015]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\httpfe\cookies.dat [12]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\main.db [7569408]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\main.db-journal [456056]
O61 - LFC: 02/03/2013 - 14:09:05 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 14:09:05 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 14:11:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\wmplog00.sqm [1506]
O61 - LFC: 02/03/2013 - 14:12:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.facebook.com_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 14:12:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.facebook.com_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 14:18:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\s.ytimg.com\videostats.sol [275]
O61 - LFC: 02/03/2013 - 14:18:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\s.ytimg.com\soundData.sol [49]
O61 - LFC: 02/03/2013 - 14:18:41 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#player.kpsule.me\settings.sol [86]
O61 - LFC: 02/03/2013 - 14:18:41 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\settings.sol [927]
O61 - LFC: 02/03/2013 - 14:18:41 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\player.kpsule.me\ads\mediumrect.swf\__kta.sol [559]
O61 - LFC: 02/03/2013 - 14:18:53 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [1427195]
O61 - LFC: 02/03/2013 - 14:19:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [556]
O61 - LFC: 02/03/2013 - 14:19:39 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Last Session [164382]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old [151]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0 [45056]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1 [270336]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_3 [4202496]
O61 - LFC: 02/03/2013 - 14:21:18 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Leadertech\PowerRegister\PowerReg.dat [353]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Local\ATI\ACE\Manifest.Bin [27266]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Local\ATI\ACE\Manifest.xml [19630]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\shared_dynco\dc.db [2035712]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\shared_dynco\dc.db-journal [1120904]
O61 - LFC: 02/03/2013 - 14:21:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT [16]
O61 - LFC: 02/03/2013 - 14:21:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-001700 [1272]
O61 - LFC: 02/03/2013 - 14:21:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003170.sst [1133073]
O61 - LFC: 02/03/2013 - 14:21:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT [16]
O61 - LFC: 02/03/2013 - 14:21:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-003169 [166]
O61 - LFC: 02/03/2013 - 14:21:38 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings [8]
O61 - LFC: 02/03/2013 - 14:21:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\shared.xml [67572]
O61 - LFC: 02/03/2013 - 14:21:47 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Login Data [32768]
O61 - LFC: 02/03/2013 - 14:21:47 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal [4624]
O61 - LFC: 02/03/2013 - 14:23:00 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [1733024]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [8693104]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1517670]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [134512]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19852]
O61 - LFC: 02/03/2013 - 14:29:23 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\fbstatic-a.akamaihd.net\www.deezer.com.sol [83]
O61 - LFC: 02/03/2013 - 14:29:53 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies [6144]
O61 - LFC: 02/03/2013 - 14:29:53 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies-journal [4640]
O61 - LFC: 02/03/2013 - 14:44:46 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Top Sites [159744]
O61 - LFC: 02/03/2013 - 14:44:46 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [16384]
O61 - LFC: 02/03/2013 - 14:48:00 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Web Data [385024]
O61 - LFC: 02/03/2013 - 14:48:00 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal [16384]
O61 - LFC: 02/03/2013 - 14:48:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Favicons [466944]
O61 - LFC: 02/03/2013 - 14:48:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384]
O61 - LFC: 02/03/2013 - 14:49:06 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144]
O61 - LFC: 02/03/2013 - 14:49:06 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [2576]
O61 - LFC: 02/03/2013 - 14:49:48 ---A- C:\Users\Socko Tikaf\AppData\Local\ATI\ACE\Profiles.xml [17077]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Current Session [206187]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Current Tabs [350607]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG [151]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History [573440]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03 [2490368]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [81794]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Preferences [91946]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [278]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3 [3829760]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Local State [24167]
O61 - LFC: 02/03/2013 - 14:51:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Cookies [907264]
O61 - LFC: 02/03/2013 - 14:51:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [4]
O61 - LFC: 27/02/2013 - 00:22:34 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\81\811fcdc7896ed2ae.dat [24457]
O61 - LFC: 27/02/2013 - 00:45:20 ---A- C:\Users\Socko Tikaf\Documents\Logiciel\uTorrent.exe [1051984]
O61 - LFC: 27/02/2013 - 00:45:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\utorrent.lng [1136507]
O61 - LFC: 27/02/2013 - 00:45:42 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\C99F589B660CF85C85DD24E3B4D14CC6F1B6609A [47612]
O61 - LFC: 27/02/2013 - 00:46:03 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\toolbar_offer.benc [6694]
O61 - LFC: 27/02/2013 - 00:46:10 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\toolbar.benc [6750]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\3609FC884502A1DF0AA5D9D160C827BB1BD51FC9.btapp [266548]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\featuredContent.btapp [33605]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\player.btapp [3097]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\plus.btapp [52666]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\welcome-upsell.btapp [28315]
O61 - LFC: 27/02/2013 - 00:46:42 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\10E6FBE4D921B475FA5FEC6E9A535A540D6FEED1 [318]
O61 - LFC: 27/02/2013 - 00:46:42 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\32F529521A3DEC709F97F761F192AABF29BDC408 [198222]
O61 - LFC: 27/02/2013 - 00:46:48 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\7C8945DA1B01DEA87CEA3DEAE371D7FEEFE460C0 [3211]
O61 - LFC: 27/02/2013 - 00:46:48 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\C648DD00D0E947C36A1A116F4B2AF54BE52AD59B [19558]
O61 - LFC: 27/02/2013 - 00:46:48 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\EF20FFD1EC7C1A25973839D5133FB199D8A4E7E0 [25479]
O61 - LFC: 27/02/2013 - 00:50:14 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\B2EZGTQA\8F903698240FE799F61EEDA8595181137B996156.heu [152]
O61 - LFC: 27/02/2013 - 00:52:17 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] The.Walking.Dead.S03E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.torrent [29109]
O61 - LFC: 27/02/2013 - 00:53:15 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] Shameless.US.S03E01.FASTSUB.VOSTFR.HDTV.XviD-MiND.torrent [45026]
O61 - LFC: 27/02/2013 - 00:53:24 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] Shameless.US.S03E05.Vostfr.HDTV.XviD-iTOMa.torrent [356087]
O61 - LFC: 27/02/2013 - 00:53:26 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] Shameless.US.S03E06.Vostfr.HDTV.XviD-iTOMa.torrent [45347]
O61 - LFC: 27/02/2013 - 01:07:59 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\96\96da1ad04d4532db.dat [18667]
O61 - LFC: 27/02/2013 - 01:08:03 R--A- C:\Users\Socko Tikaf\Downloads\[www.Cpasbien.me] The.Walking.Dead.S03E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\[www.Cpasbien.me] The.Walking.Dead.S03E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.avi [366091548]
O61 - LFC: 27/02/2013 - 01:16:06 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\B2EZGTQA\7421C71F94DB4F028E7528B2D278F3FE4DC21273.heu [151]
O61 - LFC: 27/02/2013 - 01:17:11 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dht_feed.dat.old [2]
O61 - LFC: 27/02/2013 - 01:18:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\resume.dat.old [103197]
O61 - LFC: 27/02/2013 - 01:19:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dht.dat [4014]
O61 - LFC: 27/02/2013 - 01:19:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dht_feed.dat [2]
O61 - LFC: 27/02/2013 - 01:19:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\rss.dat [99]
O61 - LFC: 27/02/2013 - 01:19:06 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\2278AC1C97963C2A81B5E42DDF2BCA6353BA0B56 [53139]
O61 - LFC: 27/02/2013 - 01:19:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\resume.dat [104052]
O61 - LFC: 27/02/2013 - 01:19:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\settings.dat [18040]
O61 - LFC: 27/02/2013 - 01:19:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\settings.dat.old [18066]
O61 - LFC: 27/02/2013 - 01:22:20 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#fbstatic-a.akamaihd.net\settings.sol [93]
O61 - LFC: 27/02/2013 - 02:47:04 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#s.ytimg.com\settings.sol [81]
O61 - LFC: 27/02/2013 - 12:46:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#rutube.ru\settings.sol [79]
O61 - LFC: 27/02/2013 - 12:55:32 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#static.lequipe.fr\settings.sol [87]
O61 - LFC: 27/02/2013 - 12:55:33 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#static.anonymousdmp.com\settings.sol [93]
O61 - LFC: 27/02/2013 - 12:55:39 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#static1.dmcdn.net\settings.sol [87]
O61 - LFC: 27/02/2013 - 12:55:44 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#secure-uk.imrworldwide.com\settings.sol [96]
O61 - LFC: 27/02/2013 - 12:55:44 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\secure-uk.imrworldwide.com\_ggCvar.sol [74]
O61 - LFC: 27/02/2013 - 12:55:44 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\secure-uk.imrworldwide.com\_ggCvar_temp.sol [79]
O61 - LFC: 27/02/2013 - 12:56:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000111.sst [140]
O61 - LFC: 27/02/2013 - 12:56:02 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#mpsnare.iesnare.com\settings.sol [89]
O61 - LFC: 27/02/2013 - 12:56:02 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\mpsnare.iesnare.com\stm.sol [79]
O61 - LFC: 27/02/2013 - 12:56:05 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\##DBB5F6AF634DC566\00000001.sol [194]
O61 - LFC: 27/02/2013 - 13:35:08 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#www.dailymotion.com\settings.sol [89]
O61 - LFC: 27/02/2013 - 14:24:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\chatango.com\fixed_id.sol [54]
O61 - LFC: 27/02/2013 - 14:24:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#chatango.com\settings.sol [82]
O61 - LFC: 27/02/2013 - 14:44:48 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\static1.dmcdn.net\com.dm.player.sol [101]
O61 - LFC: 27/02/2013 - 14:48:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#mochibot.com\settings.sol [82]
O61 - LFC: 27/02/2013 - 14:48:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\mochibot.com\com.mochibot.sol [105]
O61 - LFC: 27/02/2013 - 14:50:07 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\defjam.fr\com.jeroenwijering.sol [54]
O61 - LFC: 27/02/2013 - 14:50:07 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\defjam.fr\wp-content\themes\defjam\lib\xspf_player.swf\xspf_player_data.sol [50]
O61 - LFC: 27/02/2013 - 14:50:07 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#defjam.fr\settings.sol [79]
O61 - LFC: 27/02/2013 - 16:44:39 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\c0\c0c67380081dbe4b.dat [46488]
O61 - LFC: 27/02/2013 - 17:07:26 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\recent.idx [9124]
O61 - LFC: 27/02/2013 - 17:36:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\cdn1.telemetryverification.net\dbg.sol [53]
O61 - LFC: 27/02/2013 - 17:36:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\##327625DA92F38AE6\00000001.sol [192]
O61 - LFC: 27/02/2013 - 17:39:19 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\cdn1.telemetryverification.net\mb.sol [159]
O61 - LFC: 28/02/2013 - 00:15:58 ---A- C:\Users\Socko Tikaf\Music\espritsombre.mp3 [3670321]
O61 - LFC: 28/02/2013 - 00:17:15 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\##2E225FEE7A9E191B\00000001.sol [198]
O61 - LFC: 28/02/2013 - 00:17:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\cd#\n1.static.keezmovies.phncdn.com\flash\Player2012.swf\km_opts.sol [46]
O61 - LFC: 28/02/2013 - 00:20:25 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\eu-st.xhamster.com\videoplayer3.swf\dat.sol [41]
O61 - LFC: 28/02/2013 - 00:20:25 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#eu-st.xhamster.com\settings.sol [88]
O61 - LFC: 28/02/2013 - 00:20:36 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#www.xxxymovies.com\settings.sol [88]
O61 - LFC: 28/02/2013 - 00:29:59 ---A- C:\Users\Socko Tikaf\Pictures\Sans titr4e 2.jpg [90082]
O61 - LFC: 28/02/2013 - 00:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs [19456]
O61 - LFC: 28/02/2013 - 16:25:37 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\chatango.com\mini_login.sol [48]
O61 - LFC: 28/02/2013 - 16:27:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#www.jeuxvideo.com\settings.sol [87]
O61 - LFC: 28/02/2013 - 16:27:45 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#fr-himedia.cdn.videoplaza.tv\settings.sol [98]
O61 - LFC: 28/02/2013 - 16:27:46 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\fr-himedia.cdn.videoplaza.tv\com.videoplaza.bootloader.sol [103]
O61 - LFC: 28/02/2013 - 16:28:55 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\static1.dmcdn.net\analytics.sol [536]
O61 - LFC: 28/02/2013 - 16:31:10 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\www.dailymotion.com\com.dm.player.sol [281]
O61 - LFC: 28/02/2013 - 16:53:18 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\MSXML2\msxml4a.dll [44544]
O61 - LFC: 28/02/2013 - 16:53:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\MSXML2\msxml4.dll [1275392]
O61 - LFC: 28/02/2013 - 16:53:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\MSXML2\msxml4r.dll [82432]
O61 - LFC: 28/02/2013 - 17:27:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old [148]
O61 - LFC: 28/02/2013 - 18:02:31 ---A- C:\Users\Socko Tikaf\Music\quand_on_devient_grand.wav [8328108]
O61 - LFC: 28/02/2013 - 20:30:26 ---A- C:\Users\Socko Tikaf\Music\seyko-crazy.mp3 [9641290]
O61 - LFC: 28/02/2013 - 20:31:04 ---A- C:\Users\Socko Tikaf\Music\Seyko - 2013.mp3 [9514549]
O61 - LFC: 28/02/2013 - 21:32:52 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#v1fr.sftcdn.net\settings.sol [85]
O61 - LFC: 28/02/2013 - 21:32:52 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\v1fr.sftcdn.net\shared\flash\rs\storage.swf\FlashCookie_EasyRating.sol [62]
O61 - LFC: 28/02/2013 - 21:32:59 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\v1fr.sftcdn.net\shared\flash\rs\storage.swf\flashcookie_sd.sol [137]
O61 - LFC: 28/02/2013 - 22:37:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage [102400]
O61 - LFC: 28/02/2013 - 22:39:15 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT [16]
O61 - LFC: 28/02/2013 - 22:39:15 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000115 [265]
O61 - LFC: 28/02/2013 - 22:39:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG [145]
O61 - LFC: 28/02/2013 - 22:39:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [13312]
O61 - LFC: 28/02/2013 - 23:31:26 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\secure-uk.imrworldwide.com\_ggMCvar_1.sol [182]
O61 - LFC: 28/02/2013 - 23:40:46 ---A- C:\Users\Socko Tikaf\Pictures\Football\Manchester City\Wallpapers Tevez 03.jpg [39291]
~ Scan Files in 01mn 02s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: RSIT - (.random/random.)
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adp94xx.sys (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpahci.sys (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpu320.sys (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\aliide.sys (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 19/12/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag) .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\amdsata.sys (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdsbs.sys (amdsbs) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arc.sys (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arcsas.sys (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - 04/01/2008 - C:\Windows\sysWow64\drivers\AsInsHelp64.sys - ASInsHelp (ASInsHelp) .(...) - LEGACY_ASINSHELP
O64 - Services: CurCS - 24/08/2010 - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 03/08/2010 - C:\Windows\Syswow64\drivers\AsUpIO.sys - AsUpIO (AsUpIO) .(...) - LEGACY_ASUPIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\cmdide.sys (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\elxstor.sys (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\HpSAMD.sys (HpSAMD) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD
O64 - Services: CurCS - 29/11/2011 - C:\Windows\System32\drivers\iaStor.sys (iaStor) .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\iaStorV.sys (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\iirsp.sys (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_fc.sys (LSI_FC) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas.sys (LSI_SAS) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas2.sys (LSI_SAS2) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_scsi.sys (LSI_SCSI) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\megasas.sys (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\MegaSR.sys (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 02/07/2010 - C:\Windows\System32\drivers\mv91xx.sys (mv91xx) .(.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) - LEGACY_MV91XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\nfrd960.sys (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA� nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\nvstor.sys (nvstor) .(.NVIDIA Corporation - NVIDIA� nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql2300.sys (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql40xx.sys (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\SiSRaid2.sys (SiSRaid2) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\sisraid4.sys (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\stexstor.sys (stexstor) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\viaide.sys (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\vsmraid.sys (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Scan Services in 00mn 00s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.6D69000BB6FFD6585C9F49720205EB78] [SPRF][01/03/2013] (...) -- C:\Users\Socko Tikaf\Desktop\adwcleaner.exe [594019]
[MD5.29DD21F21EB9B04FF89CA64916B0BA91] [SPRF][02/03/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Socko Tikaf\Desktop\ZHPDiag2.exe [5395373]
~ Scan Files in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{A09B9C1A-B434-4829-9B28-2FDB5C4FE8B5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{B26BF3D9-8E14-412E-84CE-5FC5C3CDC6EE}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{EEE17501-1D1F-4BFE-A7B1-8B3544FBCEFE}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{A962A160-2412-4C79-BD15-E7CA549BEA2A}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{7091E878-236E-4AE6-87C1-7987A87706DA}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{76F92A70-81D8-4D6F-8909-8F000C48FBE9}" |In - Public - P17 - TRUE | .(...) -- C:\Users\Socko Tikaf\Documents\The War Z\WarZ.exe (.not file.)
O87 - FAEL: "TCP Query User{29CC906C-D3DC-41AC-8A71-520A33A81266}C:\program files (x86)\winamp\winamp.exe" | In - Private - P6 - TRUE | .(.Nullsoft, Inc. - Winamp.) -- C:\program files (x86)\winamp\winamp.exe
O87 - FAEL: "UDP Query User{C0029B59-8B10-46BA-9705-F27ECEE7EB8B}C:\program files (x86)\winamp\winamp.exe" | In - Private - P17 - TRUE | .(.Nullsoft, Inc. - Winamp.) -- C:\program files (x86)\winamp\winamp.exe
O87 - FAEL: "TCP Query User{70F23E04-AC89-4C28-83B5-C2D6146827A3}C:\users\socko tikaf\documents\jeux\the war z\warz.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\socko tikaf\documents\jeux\the war z\warz.exe (.not file.)
O87 - FAEL: "UDP Query User{F734D195-A10A-4AFE-A3D3-939BE05F9010}C:\users\socko tikaf\documents\jeux\the war z\warz.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\socko tikaf\documents\jeux\the war z\warz.exe (.not file.)
O87 - FAEL: "{4F1EFD7A-574F-46D2-97CB-1F220D0ED06A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{4AAC96AF-0FE9-47F4-BFC1-06129421AE66}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{7DCFD012-D48E-4BE5-9BF1-B840C1B138A7}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\muzapp.exe (.not file.)
O87 - FAEL: "{7AB88F8B-EEAC-4BEB-A8DB-DE8F1D4027E0}" |In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\muzapp.exe (.not file.)
O87 - FAEL: "TCP Query User{F1601505-BE74-4EE5-9898-B30D7D2BF643}C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe (.not file.)
O87 - FAEL: "UDP Query User{2C37883E-A048-49F7-BCA5-9B10D5B5DD0E}C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe (.not file.)
~ Scan Firewall in 00mn 00s
---\\ Scan Additionnel (O88)
Database Version : v2.11005 - (28/02/2013)
Cl�s trouv�es (Keys found) : 6
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 0
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
~ Scan Additionnel in 00mn 05s
---\\ Recherche d�tournement de DNS routeur (O89) (None)
---\\ Product Upgrade Codes (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "03A4EE98F08059C2F6879CD881BF7DD4" . (.AMD Accelerated Video Transcoding.) -- C:\windows\Installer\{89EE4A30-080F-2C95-6F78-C98D18FBD74D}\ARPPRODUCTICON.exe
O90 - PUC: "16ED57946FB6CB9BF1ED0CC4E57CE8C4" . (.AMD Media Foundation Decoders.) -- C:\windows\Installer\{4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}\ARPPRODUCTICON.exe
O90 - PUC: "2B754B4DF062165CAC7807B33D7B42AC" . (.Catalyst Control Center Graphics Previews Common.) -- C:\windows\Installer\{D4B457B2-260F-C561-CA87-703BD3B724CA}\ARPPRODUCTICON.exe
O90 - PUC: "3058F5C62D55893458C863B2A7A75FC1" . (.Firebird SQL Server - MAGIX Edition.) -- C:\windows\Installer\{6C5F8503-55D2-4398-858C-362B7A7AF51C}\ProgramIcon.exe
O90 - PUC: "32FA0F2EF2EF2224A934556EC34CE11F" . (.Catalyst Control Center - Branding.) -- C:\windows\Installer\{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}\ARPPRODUCTICON.exe
O90 - PUC: "42962336FAC3858CA3F858898C07917D" . (.Catalyst Control Center.) -- C:\windows\Installer\{63326924-3CAF-C858-3A8F-8598C87019D7}\ARPPRODUCTICON.exe
O90 - PUC: "61D11FC9BECE5A090A82ACE960D848B8" . (.ccc-utility64.) -- C:\windows\Installer\{9CF11D16-ECEB-90A5-A028-CA9E068D848B}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA73301B744AA0100000010" . (.Adobe Reader X (10.1.6).) -- C:\windows\Installer\{AC76BA86-7AD7-1033-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "762A30E5E5143835AFF8C34E4165369B" . (.AMD Catalyst Install Manager.) -- C:\windows\Installer\{5E03A267-415E-5383-FA8F-3CE4145663B9}\ARPPRODUCTICON.exe
O90 - PUC: "93B0BF4E199C7EE459DDA1A187753DD3" . (.Asmedia ASM104x USB 3.0 Host Controller Driver.) -- C:\Windows\Installer\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}\ARPPRODUCTICON.exe
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "B4A2F9673A486849DA2DE9A54B4B1E3E" . (.Catalyst Control Center InstallProxy.) -- C:\windows\Installer\{769F2A4B-84A3-9486-ADD2-9E5AB4B4E1E3}\ARPPRODUCTICON.exe
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.1.) -- C:\windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "E805DFCE2A862B1964DDD1307D389DB4" . (.Catalyst Control Center Localization All.) -- C:\windows\Installer\{ECFD508E-68A2-91B2-46DD-1D03D783D94B}\ARPPRODUCTICON.exe
O90 - PUC: "F1DEC8AF8050058BAE510F1195D309DC" . (.AMD Drag and Drop Transcoding.) -- C:\windows\Installer\{FA8CED1F-0508-B850-EA15-F011593D90CD}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s
---\\ MyComputer Name Space (O92)
O92 - MNS: ASUS WebStorage Drive - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf}
~ Scan MNS in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 27/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 19/12/2012 240640 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 918448 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
SR - | Auto 09/08/2011 947328 | (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.16\aaHMSvc.exe
SR - | Auto 586880 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
SR - | Auto 02/09/2011 1399296 | (AsusFanControlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.06\AsusFanControlService.exe
SR - | Auto 23/12/2009 203392 | (Device Handle Service) . (.ASUSTeK Computer Inc..) - C:\Windows\SysWOW64\AsHookDevice.exe
SR - | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - | Auto 25/12/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 25/12/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 03/02/2012 628448 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 08/02/2012 161560 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 08/02/2012 277784 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SS - | Auto 08/01/2013 161536 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 15/12/2011 450848 | (UMVPFSrv) . (.Logitech Inc..) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
SR - | Auto 08/02/2012 363800 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 00s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ Scan MBR in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Socko Tikaf at 02/03/2013 14:53:07
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s
End of the scan (1464 lines in 02mn 11s)(0)
Run by Socko Tikaf at 02/03/2013 14:50:56
State : Version � jour.
High Elevated Privileges : OK
UAC : Activate by user
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
GCIE: Google Chrome v25.0.1364.97
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : DVQJG
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4063 MB (62% free)
System Restore: Activ� (Enable)
System drive C: has 302 GB (81%) free of 373 GB
---\\ Logged in mode
~ Computer Name: SOCKOTIKAF-PC
~ User Name: Socko Tikaf
~ All Users Names: Socko Tikaf, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Socko Tikaf\AppData\Roaming\
~ %Desktop% : C:\Users\Socko Tikaf\Desktop\
~ %Favorites% : C:\Users\Socko Tikaf\Favorites\
~ %LocalAppData% : C:\Users\Socko Tikaf\AppData\Local\
~ %StartMenu% : C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 302 Go of 373 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 180 Go of 536 Go)
E:\ CD-ROM drive (Free 0 Go of 6 Go)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.28/03/2012 - 00:21:06.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.435E9C764E1EF70058580996452BE6A2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/01/2013 - 02:12:03.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/03/2012 - 00:30:31.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.28/03/2012 - 00:22:29.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.28/03/2012 - 00:09:29.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/207
~ Mes musiques (My Musics) : 7/1918
~ Mes Videos (My Videos) : 1/37
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/67
~ Mon Bureau (My Desktop) : 1/3
~ Menu demarrer (Programs) : 1/28
~ Scan Hidden Files in 00mn 01s
---\\ Processus lanc�s
[MD5.576C72830E3FD6ACE2910545B6130803] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328] [PID.3088]
[MD5.35CFDA79479D06FA2154A9E84236E84A] - (.ASUSTeK Computer Inc. - Tool to hook keyboard and handle hybrid-sle.) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe [1088128] [PID.3112]
[MD5.7987DEDC6E73D01BD8FBED2907E0C0B6] - (.ASUSTeK Computer Inc. - EPUHelp.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe [1256576] [PID.3192]
[MD5.BD712BF585CBE46FEC924398E852A29E] - (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe [232064] [PID.3516]
[MD5.E1D0DAC43EFE2BD3877806044E010C5E] - (.ASUSTek Computer Inc. - AiChargerPlus MFC Application.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [465536] [PID.3552]
[MD5.051665E677D3D325A46A156E2DFE6C52] - (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe [188416] [PID.3792]
[MD5.3B01B800A43CF3FAF5AAA78315BC2148] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe [74752] [PID.3416]
[MD5.A2418D3C557C0A0C634DA713A8AC3789] - (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336] [PID.1000]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.1180]
[MD5.84F6D5FE968852C59BCD3E06A36DC356] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1274320] [PID.4572]
[MD5.B57DB3640DF3480E5C001AF15CC42C03] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5715968] [PID.3124]
[MD5.AEBE8F338432F9DE5AE0CAE4D4BAED76] - (.Logitech Inc. - Logitech User mode UMVPF service.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848] [PID.1064]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1828]
[MD5.F7692E60147E56A1CEEE144974F41830] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe [918448] [PID.1928]
[MD5.3B52CA3643113058ED95097CBA4AE469] - (.ASUSTeK Computer Inc. - Pas de description.) -- C:\Program Files (x86)\ASUS\AAHM\1.00.16\aaHMSvc.exe [947328] [PID.2004]
[MD5.5C31DFB196CB3A488A041881634D86D2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880] [PID.2040]
[MD5.6660C136C490DB14086CEA4B92C93050] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.06\AsusFanControlService.exe [1399296] [PID.1256]
[MD5.0A403702CB00432AC818523CD416BF67] - (.ASUSTeK Computer Inc. - Device Handle.) -- C:\Windows\SysWOW64\AsHookDevice.exe [203392] [PID.1432]
[MD5.C44B44E24B929631D9D7368F5B2B40CF] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.1264]
[MD5.B3009DCDBCC5EFA49FA52562E9860E3C] - (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128] [PID.2824]
[MD5.75F29D77B0540FCF47EE3BE000BBABDA] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.3932]
[MD5.193AD338F2A64D17300AD640ADFA5D0A] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.552]
~ Scan Processes Running in 00mn 00s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M0 - MFSP: prefs.js [Socko Tikaf - bc1dak0q.default] http://start.iminent.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\windows\system32\Macromed\Flash\NPSWF64_11_6_602_171.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 1
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKLM\..\Wow6432Node\Run: [RunAIShell] . (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS AiChargerPlus Execute] . (.ASUSTek Computer Inc. - AiChargerPlus MFC Application.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS Easy Update] . (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ecareme - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.104.216\AsusWSPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [LWS] . (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-21-1569062301-1711957216-3303669385-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1569062301-1711957216-3303669385-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar: Internet Explorer (2).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: PhotoFiltre.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe
O4 - GS\TaskBar: Skype.lnk . (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\TaskBar: timidity.lnk . (...) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\TaskBar: Winamp.lnk . (.Nullsoft, Inc..) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - GS\TaskBar: Windows Explorer (2).lnk . (.Microsoft Corporation.) -- C:\windows\explorer.exe
O4 - GS\TaskBar: Windows Explorer (3).lnk . (.Microsoft Corporation.) -- C:\windows\explorer.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation.) -- C:\windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player (2).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Winamp.lnk . (.Nullsoft, Inc..) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation.) -- C:\windows\system32\eudcedit.exe
~ Scan Global Startup in 00mn 04s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{83F2FAB5-12BC-4B4F-A099-694373910AF5}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{D0EAB561-4EA4-4154-ACEB-ACA7BE394808}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS1\Services\Tcpip\..\{83F2FAB5-12BC-4B4F-A099-694373910AF5}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{D0EAB561-4EA4-4154-ACEB-ACA7BE394808}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\..\{83F2FAB5-12BC-4B4F-A099-694373910AF5}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{D0EAB561-4EA4-4154-ACEB-ACA7BE394808}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - Pas de description.) - C:\Program Files (x86)\ASUS\AAHM\1.00.16\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.06\AsusFanControlService.exe
O23 - Service: Device Handle Service (Device Handle Service) . (.ASUSTeK Computer Inc. - Device Handle.) - C:\Windows\SysWOW64\AsHookDevice.exe
O23 - Service: FABS - Helping agent for MAGIX media dat (Fabs) . (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: (UMVPFSrv) . (.Logitech Inc. - Logitech User mode UMVPF service.) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 03s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.9942DC4CC265CDA00486504444EF521D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.74660C1E9139D95F4E006E8E49EA4986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.D241DDF08B6BEB9E5EAF01E2B8829EA8] [APT] [AsBackupWizard_Run] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AsBackupWizard\AsRunBkWizardHelper.exe
[MD5.576C72830E3FD6ACE2910545B6130803] [APT] [ASUS AI Suite II Execute] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
[MD5.35CFDA79479D06FA2154A9E84236E84A] [APT] [Asus HybridSleep Helper] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe
~ Scan Scheduled Task in 00mn 02s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (AsUpIO) . (...) - C:\Windows\Syswow64\drivers\AsUpIO.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\system32\drivers\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {9301985B-D116-4A93-A93D-94580084FF86}
O42 - Logiciel: AI Manager - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {4AF95DE2-B54D-4C3F-9494-FD3B558E2C2D}
O42 - Logiciel: AI Suite II - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {34D3688E-A737-44C5-9E2A-FF73618728E1}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {89EE4A30-080F-2C95-6F78-C98D18FBD74D}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5E03A267-415E-5383-FA8F-3CE4145663B9}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {FA8CED1F-0508-B850-EA15-F011593D90CD}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}
O42 - Logiciel: ASUS Backup Wizard - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {124C9BD0-8C52-40AB-8238-0605703B1C28}
O42 - Logiciel: ASUS Easy Update - (.ASUSTeK Computer Inc.) [HKLM][64Bits] -- {E7AA854E-6756-424E-84C2-4E47D5729AFF}
O42 - Logiciel: ASUS Instant On - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {CCC4652E-F5E0-498A-84F3-5DDBEF84642B}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- {56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.6) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AA1000000001}
O42 - Logiciel: Asmedia ASM104x USB 3.0 Host Controller Driver - (.Asmedia Technology.) [HKLM][64Bits] -- {E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: Audacity 1.2.6 and lame_enc.dll 3.97 - (.--.) [HKLM][64Bits] -- Audacity + Lame_is1
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM][64Bits] -- {15634701-BACE-4449-8B25-1567DA8C9FD3}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}
O42 - Logiciel: D�tection de l'application Winamp - (.Nullsoft, Inc.) [HKCU][64Bits] -- Winamp Detect
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {6C5F8503-55D2-4398-858C-362B7A7AF51C}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel� Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34}
O42 - Logiciel: Java 7 Update 15 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217015FF}
O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM][64Bits] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB}
O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM][64Bits] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}
O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM][64Bits] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9}
O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM][64Bits] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6}
O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM][64Bits] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA}
O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM][64Bits] -- {08610298-29AE-445B-B37D-EFBE05802967}
O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM][64Bits] -- {174A3B31-4C43-43DD-866F-73C9DB887B48}
O42 - Logiciel: LWS Video Mask Maker - (.Logitech.) [HKLM][64Bits] -- {EED027B7-0DB6-404B-8F45-6DFEE34A0441}
O42 - Logiciel: LWS VideoEffects - (.Logitech.) [HKLM][64Bits] -- {138A4072-9E64-46BD-B5F9-DB2BB395391F}
O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM][64Bits] -- {9DAEA76B-E50F-4272-A595-0124E826553D}
O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM][64Bits] -- {8937D274-C281-42E4-8CDB-A0B2DF979189}
O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM][64Bits] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propri�taire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM][64Bits] -- {D40EB009-0499-459c-A8AF-C9C110766215}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D954C6C2-544B-4091-A47F-11E77162883E}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft VC9 runtime libraries - (.AOL Inc..) [HKLM][64Bits] -- {553C904F-57A2-4113-888E-BA0C3D1C69C0}
O42 - Logiciel: MyFreeCodec - (.Pas de propri�taire.) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: PhotoFiltre - (.Pas de propri�taire.) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Ralink RT2860 Wireless LAN Card - (.Ralink.) [HKLM][64Bits] -- {E883ECE4-1189-413A-894D-B7C4B17F0607}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Skype� 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {E5F05232-96B6-4552-A480-785A60A94B21}
O42 - Logiciel: VLC media player 2.0.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: aTube Catcher - (.DsNET Corp.) [HKLM][64Bits] -- aTube Catcher
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AMD]
[HKCU\Software\ASUS]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Audacity]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EA Sports]
[HKCU\Software\ECAREME]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Leadertech]
[HKCU\Software\LogiShrd]
[HKCU\Software\Logitech]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Samsung]
[HKCU\Software\Skype]
[HKCU\Software\Sysinternals]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Wget]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\HitmanPro]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Origin Games]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Ralink]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\Sensible Vision]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\TrendMicro]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Vittalia]
[HKLM\Software\Wow6432Node\logishrd]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\swearware]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 03/01/2013 - 15:28:43 - [110,822] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 22/01/2013 - 00:58:40 - [2,145] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 22/01/2013 - 00:58:46 - [0,397] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 28/03/2012 - 01:14:33 - [2,257] ----D C:\Program Files (x86)\ASM104xUSB3
O43 - CFD: 25/12/2012 - 14:22:50 - [379,218] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 25/12/2012 - 14:44:56 - [60,025] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 27/12/2012 - 18:37:49 - [9,185] ----D C:\Program Files (x86)\Audacity
O43 - CFD: 01/03/2013 - 12:01:51 - [206,483] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 22/01/2013 - 05:30:17 - [38,179] ----D C:\Program Files (x86)\DsNET Corp
O43 - CFD: 25/12/2012 - 15:02:09 - [354,427] ----D C:\Program Files (x86)\Google
O43 - CFD: 11/02/2013 - 04:39:03 - [39,337] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 25/12/2012 - 22:58:45 - [20,811] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/02/2013 - 03:51:06 - [6,031] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/02/2013 - 17:25:48 - [121,966] ----D C:\Program Files (x86)\Java
O43 - CFD: 29/01/2013 - 19:56:36 - [50,705] ----D C:\Program Files (x86)\Logitech
O43 - CFD: 25/12/2012 - 15:28:32 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 31/01/2013 - 00:41:14 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 28/03/2012 - 01:34:08 - [3,469] ----D C:\Program Files (x86)\Microsoft Chart Controls
O43 - CFD: 28/03/2012 - 01:23:58 - [6,126] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 27/02/2013 - 03:00:37 - [1,200] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 28/12/2012 - 15:29:52 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 28/12/2012 - 21:39:35 - [0,015] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 28/03/2012 - 01:32:28 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 05/01/2013 - 00:58:38 - [10,585] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 28/02/2013 - 21:38:39 - [13,587] ----D C:\Program Files (x86)\Origin
O43 - CFD: 27/12/2012 - 18:42:58 - [3,526] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 28/03/2012 - 01:13:16 - [5,858] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 11/02/2013 - 04:39:05 - [33,837] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 23/01/2013 - 17:17:26 - [18,091] R---D C:\Program Files (x86)\Skype
O43 - CFD: 29/12/2012 - 12:27:13 - [0,586] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 28/03/2012 - 01:09:17 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 01/03/2013 - 11:07:27 - [0,763] ----D C:\Program Files (x86)\trend micro
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 11/02/2013 - 04:30:03 - [94,079] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 27/12/2012 - 18:31:25 - [41,238] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 27/12/2012 - 18:29:00 - [0,148] ----D C:\Program Files (x86)\Winamp Detect
O43 - CFD: 27/12/2012 - 19:56:40 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 27/12/2012 - 19:53:08 - [19,147] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 27/12/2012 - 19:56:41 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 27/12/2012 - 19:56:40 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 27/12/2012 - 19:56:40 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 27/12/2012 - 19:56:41 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 28/12/2012 - 16:06:12 - [0,000] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 02/03/2013 - 14:51:10 - [15,172] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 28/01/2013 - 12:53:30 - [3,211] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 25/12/2012 - 14:46:52 - [2,772] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 09/01/2013 - 02:07:43 - [0,005] --H-D C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 28/03/2012 - 01:19:25 - [3,111] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 29/12/2012 - 12:24:41 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 29/01/2013 - 19:57:15 - [101,823] ----D C:\Program Files (x86)\Common Files\logishrd
O43 - CFD: 29/01/2013 - 19:56:12 - [4,999] ----D C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 25/12/2012 - 14:22:49 - [15,002] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 27/12/2012 - 18:52:31 - [18,091] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 28/03/2012 - 01:08:26 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 27/12/2012 - 18:28:52 - [4,559] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 23/01/2013 - 17:17:26 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 25/02/2013 - 21:33:29 - [0,518] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 27/12/2012 - 19:56:40 - [9,767] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/03/2012 - 01:36:06 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 28/01/2013 - 11:21:10 - [132,675] ----D C:\ProgramData\Adobe
O43 - CFD: 22/01/2013 - 00:58:47 - [0,764] ----D C:\ProgramData\AMD
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Application Data
O43 - CFD: 25/12/2012 - 14:22:49 - [68,472] ----D C:\ProgramData\ASUS
O43 - CFD: 28/03/2012 - 01:22:24 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 22/01/2013 - 00:58:47 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Documents
O43 - CFD: 28/02/2013 - 21:38:38 - [0,001] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Favorites
O43 - CFD: 25/12/2012 - 16:21:28 - [0,054] ----D C:\ProgramData\HitmanPro
O43 - CFD: 28/03/2012 - 01:08:51 - [0,136] ----D C:\ProgramData\Intel
O43 - CFD: 29/01/2013 - 19:58:03 - [0,000] ----D C:\ProgramData\LogiShrd
O43 - CFD: 29/01/2013 - 19:56:14 - [20,165] ----D C:\ProgramData\Logitech
O43 - CFD: 25/12/2012 - 14:23:07 - [5,471] ----D C:\ProgramData\MAGIX
O43 - CFD: 25/12/2012 - 17:12:37 - [0,004] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 12/01/2013 - 22:39:15 - [1557,789] -S--D C:\ProgramData\Microsoft
O43 - CFD: 06/02/2013 - 21:55:43 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 28/02/2013 - 21:38:38 - [2,933] ----D C:\ProgramData\Origin
O43 - CFD: 25/12/2012 - 14:21:32 - [4,237] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 11/02/2013 - 04:39:04 - [0,575] ----D C:\ProgramData\Samsung
O43 - CFD: 23/01/2013 - 17:17:29 - [39,862] ----D C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Start Menu
O43 - CFD: 29/12/2012 - 12:24:42 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 11/02/2013 - 04:34:45 - [0] ----D C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Templates
O43 - CFD: 27/12/2012 - 17:34:59 - [1,140] ----D C:\ProgramData\Trend Micro
O43 - CFD: 12/01/2013 - 22:19:19 - [0,002] ----D C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 28/01/2013 - 11:20:32 - [0,217] ----D C:\Users\Socko Tikaf\AppData\Roaming\Adobe
O43 - CFD: 28/03/2012 - 01:22:25 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\ASUS WebStorage
O43 - CFD: 25/12/2012 - 14:54:19 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\ATI
O43 - CFD: 28/12/2011 - 02:20:45 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\Identities
O43 - CFD: 28/03/2012 - 01:08:23 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\InstallShield
O43 - CFD: 29/01/2013 - 19:56:36 - [0,000] ----D C:\Users\Socko Tikaf\AppData\Roaming\Leadertech
O43 - CFD: 25/12/2012 - 15:01:19 - [0,001] ----D C:\Users\Socko Tikaf\AppData\Roaming\Macromedia
O43 - CFD: 25/12/2012 - 14:23:07 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\MAGIX
O43 - CFD: 25/12/2012 - 17:12:38 - [0,673] ----D C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes
O43 - CFD: 12/04/2011 - 09:28:03 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\Media Center Programs
O43 - CFD: 28/02/2013 - 21:42:39 - [3,494] -S--D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft
O43 - CFD: 06/02/2013 - 21:58:44 - [12,548] ----D C:\Users\Socko Tikaf\AppData\Roaming\Mozilla
O43 - CFD: 09/01/2013 - 07:09:00 - [0,054] ----D C:\Users\Socko Tikaf\AppData\Roaming\Origin
O43 - CFD: 27/12/2012 - 18:39:27 - [0,001] ----D C:\Users\Socko Tikaf\AppData\Roaming\PhotoFiltre
O43 - CFD: 11/02/2013 - 04:39:05 - [0,039] ----D C:\Users\Socko Tikaf\AppData\Roaming\Samsung
O43 - CFD: 02/03/2013 - 14:21:41 - [22,199] ----D C:\Users\Socko Tikaf\AppData\Roaming\Skype
O43 - CFD: 29/12/2012 - 12:26:59 - [0,433] ----D C:\Users\Socko Tikaf\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 27/12/2012 - 18:28:54 - [0,144] ----D C:\Users\Socko Tikaf\AppData\Roaming\Todae
O43 - CFD: 16/01/2013 - 01:23:36 - [0,294] ----D C:\Users\Socko Tikaf\AppData\Roaming\TS3Client
O43 - CFD: 27/02/2013 - 01:19:21 - [2,484] ----D C:\Users\Socko Tikaf\AppData\Roaming\uTorrent
O43 - CFD: 11/02/2013 - 04:33:17 - [0,077] ----D C:\Users\Socko Tikaf\AppData\Roaming\vlc
O43 - CFD: 01/03/2013 - 11:41:00 - [7,415] ----D C:\Users\Socko Tikaf\AppData\Roaming\Winamp
O43 - CFD: 28/12/2012 - 16:05:47 - [0,000] ----D C:\Users\Socko Tikaf\AppData\Roaming\WinRAR
O43 - CFD: 28/01/2013 - 11:20:32 - [0,253] ----D C:\Users\Socko Tikaf\AppData\Local\Adobe
O43 - CFD: 25/12/2012 - 14:21:02 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Application Data
O43 - CFD: 25/12/2012 - 15:01:36 - [1,552] ----D C:\Users\Socko Tikaf\AppData\Local\Apps
O43 - CFD: 29/12/2012 - 13:46:33 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Arktos
O43 - CFD: 25/12/2012 - 14:54:19 - [0,061] ----D C:\Users\Socko Tikaf\AppData\Local\ATI
O43 - CFD: 29/12/2012 - 13:46:33 - [0,000] ----D C:\Users\Socko Tikaf\AppData\Local\CrashRpt
O43 - CFD: 25/12/2012 - 15:01:41 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Deployment
O43 - CFD: 27/01/2013 - 12:05:07 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Diagnostics
O43 - CFD: 05/01/2013 - 00:52:17 - [63,965] ----D C:\Users\Socko Tikaf\AppData\Local\Downloaded Installations
O43 - CFD: 25/12/2012 - 15:02:17 - [329,639] ----D C:\Users\Socko Tikaf\AppData\Local\Google
O43 - CFD: 25/12/2012 - 14:21:02 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Historique
O43 - CFD: 29/01/2013 - 20:00:03 - [2,362] ----D C:\Users\Socko Tikaf\AppData\Local\Logitech� Webcam Software
O43 - CFD: 08/02/2013 - 14:17:59 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Macromedia
O43 - CFD: 14/02/2013 - 16:27:46 - [55,552] ----D C:\Users\Socko Tikaf\AppData\Local\Microsoft
O43 - CFD: 06/02/2013 - 21:58:35 - [3,565] ----D C:\Users\Socko Tikaf\AppData\Local\Mozilla
O43 - CFD: 01/03/2013 - 11:08:41 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Programs
O43 - CFD: 05/01/2013 - 00:59:52 - [0,011] ----D C:\Users\Socko Tikaf\AppData\Local\Samsung
O43 - CFD: 02/03/2013 - 14:51:24 - [0,131] ----D C:\Users\Socko Tikaf\AppData\Local\Temp
O43 - CFD: 25/12/2012 - 14:21:02 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\Temporary Internet Files
O43 - CFD: 25/12/2012 - 14:24:16 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\VirtualStore
O43 - CFD: 27/12/2012 - 17:33:45 - [0,016] ----D C:\Users\Socko Tikaf\AppData\Local\Windows Live
O43 - CFD: 14/02/2013 - 16:27:50 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\WMTools Downloaded Files
O43 - CFD: 27/12/2012 - 18:51:30 - [0] ----D C:\Users\Socko Tikaf\AppData\Local\{D9B64906-23AB-4D3D-A338-64B74825B122}
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 28/12/2012 - 15:53:54 - [0,000] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27/12/2012 - 18:29:00 - [0,001] ----D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D�tection de l'application Winamp
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27/12/2012 - 18:42:59 - [0] ----D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 16/02/2013 - 15:44:59 - [0,001] R---D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/12/2012 - 16:06:40 - [0,003] ----D C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 00mn 03s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.A0B08A0DF407A8396720CE779E3FFF71] - 02/03/2013 - 14:46:03 ---A- . (...) -- C:\Windows\setupact.log [840]
O44 - LFC:[MD5.ACCAF2649932EBF9AA05AEDF7398D094] - 02/03/2013 - 14:23:51 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1767574]
O44 - LFC:[MD5.B6AFD006A8C5E3C998A066BD5E353108] - 02/03/2013 - 14:20:34 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0F3B19F68645C8ADEAB417EB9F01FB4E] - 02/03/2013 - 14:19:46 ---A- . (...) -- C:\AdwCleaner[S4].txt [1372]
O44 - LFC:[MD5.05784DC3B7E637A763A806B6E59209BF] - 01/03/2013 - 17:41:59 ---A- . (...) -- C:\Windows\PFRO.log [1910]
O44 - LFC:[MD5.C8F16E586EB497E360F6C8A67C19C967] - 01/03/2013 - 12:42:57 ---A- . (...) -- C:\AdwCleaner[S3].txt [414]
O44 - LFC:[MD5.520386FDAFFCA6B24211A4E0CC45EABE] - 01/03/2013 - 12:04:15 ---A- . (...) -- C:\ComboFix.txt [29761]
O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 01/03/2013 - 12:03:07 ---A- . (...) -- C:\Windows\system.ini [215]
O44 - LFC:[MD5.753BC16326FEE4A421ACB636CCD602F4] - 01/03/2013 - 11:42:05 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [60416]
O44 - LFC:[MD5.A46842C9B0C567A5A9584E83A163560C] - 01/03/2013 - 11:42:05 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [518144]
O44 - LFC:[MD5.0297C72529807322B152F517FDB0A9FC] - 01/03/2013 - 11:42:05 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [406528]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 01/03/2013 - 10:58:56 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.CC667E91195F13B1C4865C0DEC4B1985] - 01/03/2013 - 10:58:01 ---A- . (...) -- C:\AdwCleaner[S2].txt [11989]
O44 - LFC:[MD5.61A1EA884612A012BAFD2D3B2B0A38DA] - 01/03/2013 - 10:57:16 ---A- . (...) -- C:\AdwCleaner[R1].txt [11806]
O44 - LFC:[MD5.9FFBB8A29E2DCC69A6DC5B034C7C7654] - 27/02/2013 - 03:00:49 ---A- . (...) -- C:\Windows\epplauncher.mif [2155]
O44 - LFC:[MD5.B34FBC43067BE729D6893EBE72447DA1] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.41821E8A098EEBD048888B760B732512] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106190]
O44 - LFC:[MD5.21767E020C38DACF40F0754E72C6A085] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130548]
O44 - LFC:[MD5.86BA7075C004B98145705F3054C11C43] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [615810]
O44 - LFC:[MD5.CBD06ACA8D392816E0502BFA338370FA] - 25/02/2013 - 21:34:40 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704242]
O44 - LFC:[MD5.18C3A639A10E05CF945A27A30EBA2811] - 14/02/2013 - 03:52:21 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [348208]
O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 26/06/2011 - 07:45:56 ---A- . (...) -- C:\Windows\PEV.exe [256000]
O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 07/11/2010 - 18:20:24 ---A- . (...) -- C:\Windows\MBR.exe [208896]
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\grep.exe [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\sed.exe [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\zip.exe [68096]
~ Scan Files in 00mn 06s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.233AC35719D1257AE691C53C9E7CAB1D] - 01/03/2013 - 17:53:40 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-03D3FB87.pf
O45 - LFCP:[MD5.F5F0B087987373BD6A89E27831FC7409] - 01/03/2013 - 18:27:00 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6FE41093.pf
O45 - LFCP:[MD5.2A32BD270F4BC7B76134F9C0894AD1EE] - 01/03/2013 - 18:27:48 ---A- - C:\Windows\Prefetch\CONTROL.EXE-6EA5489A.pf
O45 - LFCP:[MD5.8FE52666848F83E6CFFB095A0E17E742] - 01/03/2013 - 19:58:48 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-4BB80510.pf
O45 - LFCP:[MD5.71DFB5F9898B89166D0B8D20791D1DCF] - 01/03/2013 - 20:05:28 ---A- - C:\Windows\Prefetch\CLI.EXE-7167FFDF.pf
O45 - LFCP:[MD5.2655955858FD530D3F8FC1504817E525] - 02/03/2013 - 12:45:51 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf
O45 - LFCP:[MD5.A990C72066EFCCDD3DC2BD75DC4968B2] - 02/03/2013 - 12:45:53 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.7B8E7310EF9CF4DB0AE71E54A1221323] - 02/03/2013 - 12:52:30 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf
O45 - LFCP:[MD5.D26AAD0B2022FBDFF9C61E232CE772D4] - 02/03/2013 - 12:52:36 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf
O45 - LFCP:[MD5.832948F52EB96E0180A897DF18728376] - 02/03/2013 - 12:52:40 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf
O45 - LFCP:[MD5.B439EEBB3DFB888D22ADB98078D9BFE5] - 02/03/2013 - 12:52:40 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf
O45 - LFCP:[MD5.4B7CF38D990DF71173481EE4C5D0EE02] - 02/03/2013 - 12:53:35 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.DFCEFBB0418921587E668AEF796993ED] - 02/03/2013 - 12:57:31 ---A- - C:\Windows\Prefetch\JAVA.EXE-AB789167.pf
O45 - LFCP:[MD5.F6BF5DDA1560E01D103AB42AD17E7643] - 02/03/2013 - 13:07:00 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.CDC90F2DD4C076DE31E39FFE3513C928] - 02/03/2013 - 13:10:06 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5DA157A2.pf
O45 - LFCP:[MD5.B465782437B1291AA1D3653731173E82] - 02/03/2013 - 13:17:03 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-89FB5927.pf
O45 - LFCP:[MD5.4C11D380EE77461B5CEF2020294F1D17] - 02/03/2013 - 13:17:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7C9048C0.pf
O45 - LFCP:[MD5.C4E0BEE493E9FC9C48C8E4660F80E902] - 02/03/2013 - 13:17:11 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf
O45 - LFCP:[MD5.BA94046BB30628F7DAC3914BCC676F26] - 02/03/2013 - 13:34:30 ---A- - C:\Windows\Prefetch\IELOWUTIL.EXE-EE8999C6.pf
O45 - LFCP:[MD5.8F7189AA2B3357284F502A46EBDAEE2D] - 02/03/2013 - 13:38:22 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1569062301-1711957216-3303669385-1000.db
O45 - LFCP:[MD5.BAD9CD44CA7DF29D19F4BE7918242A0B] - 02/03/2013 - 13:38:22 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1569062301-1711957216-3303669385-1000.db
O45 - LFCP:[MD5.7F73A34BF5A5D6DB51714E6D2009D1B6] - 02/03/2013 - 13:47:29 ---A- - C:\Windows\Prefetch\PHOTOFILTRE.EXE-545D857E.pf
O45 - LFCP:[MD5.871BECD1893E37FC6DBB5D0E63E33139] - 02/03/2013 - 13:55:24 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-EBBA463B.pf
O45 - LFCP:[MD5.8B2D1A5874C9B7DDCBBE17348D4823CF] - 02/03/2013 - 13:55:32 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-155C56CF.pf
O45 - LFCP:[MD5.06B799D44EB4BD731B2F0BF2B1C40243] - 02/03/2013 - 13:55:36 ---A- - C:\Windows\Prefetch\AUDACITY.EXE-F59D2226.pf
O45 - LFCP:[MD5.D23A6B143D6E704A4F893D615F70F814] - 02/03/2013 - 13:55:40 ---A- - C:\Windows\Prefetch\WMPRPH.EXE-92EA34B9.pf
O45 - LFCP:[MD5.16D3AE18F05140902E961394E98D4DC6] - 02/03/2013 - 13:56:15 ---A- - C:\Windows\Prefetch\PREVHOST.EXE-7DD93B84.pf
O45 - LFCP:[MD5.1C97023DA8E6596D0A470BE6220A3BDB] - 02/03/2013 - 13:56:25 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.1015718D56ADF2B5469DD225FAD3E57C] - 02/03/2013 - 14:06:44 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf
O45 - LFCP:[MD5.C4C28A8325ACE47C2BFAB6A8DD5E15B2] - 02/03/2013 - 14:09:24 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.D9281E7956CC03FE20F875166CD48ADF] - 02/03/2013 - 14:09:24 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.A7FF1F1DB9CBAB22486B8F2CC2679890] - 02/03/2013 - 14:09:25 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.216BF8DC77D8FBF658280ED08CB7D077] - 02/03/2013 - 14:09:25 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.E1C2763C00754576508CFF51DABCEB23] - 02/03/2013 - 14:19:29 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE53EAA3.pf
O45 - LFCP:[MD5.133F050F207463DE6F4A5B9960F32AB6] - 02/03/2013 - 14:19:39 ---A- - C:\Windows\Prefetch\ADWCLEANER.EXE-1F5DD6C0.pf
O45 - LFCP:[MD5.E335FABDDD1EA047F40D861FC2DF9FB9] - 02/03/2013 - 14:19:51 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.2D6E95298DFAC0507D90BFD2249D78B9] - 02/03/2013 - 14:21:35 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-1B0E9471.pf
O45 - LFCP:[MD5.1BAC1AEE219B5E266DC006BE0AB70838] - 02/03/2013 - 14:21:40 ---A- - C:\Windows\Prefetch\SKYPE.EXE-A716A034.pf
O45 - LFCP:[MD5.E9009A651A594B0DE2222BCAB628A820] - 02/03/2013 - 14:21:59 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-C40A3D6A.pf
O45 - LFCP:[MD5.8855368FFD7B1339A69FB76B3F174EFE] - 02/03/2013 - 14:22:47 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.28F8BA14A402EF3CEEF9A9B0E593E3CB] - 02/03/2013 - 14:22:48 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-16B291C4.pf
O45 - LFCP:[MD5.125D6488F25A150307D7A2BAFD912F66] - 02/03/2013 - 14:22:49 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-0E1E7B82.pf
O45 - LFCP:[MD5.E344F52EC23009E339C3BE79132CD26B] - 02/03/2013 - 14:22:58 ---A- - C:\Windows\Prefetch\FABS.EXE-55D14A72.pf
O45 - LFCP:[MD5.831EDD13F6D23C98CEA3FA7ADB585A2A] - 02/03/2013 - 14:22:59 ---A- - C:\Windows\Prefetch\LMS.EXE-E687E9C2.pf
O45 - LFCP:[MD5.C934B3625CA0670A5814E1A67562E9CD] - 02/03/2013 - 14:23:02 ---A- - C:\Windows\Prefetch\UNS.EXE-40FB88B6.pf
O45 - LFCP:[MD5.24E807196D97D9783046ADF1B628F152] - 02/03/2013 - 14:23:22 ---A- - C:\Windows\Prefetch\LOGITECHUPDATE.EXE-4459EF7C.pf
O45 - LFCP:[MD5.0D5E425751FA7E311C642694C8D2AF22] - 02/03/2013 - 14:23:22 ---A- - C:\Windows\Prefetch\LULNCHR.EXE-0A06879A.pf
O45 - LFCP:[MD5.9E89CC4D45ECA1B2596357D8AB7AF770] - 02/03/2013 - 14:23:47 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.7CD3EA86464230C9115D001DD68A0F49] - 02/03/2013 - 14:24:46 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.4905604AAD5E646309FCC7A2133039D3] - 02/03/2013 - 14:29:28 ---A- - C:\Windows\Prefetch\LIVEUPDT.EXE-D338BF94.pf
O45 - LFCP:[MD5.63D54214AF0AA81A52771A9F1AC3193F] - 02/03/2013 - 14:34:17 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf
O45 - LFCP:[MD5.DCF89567FF855B4D07B005A828FA0084] - 02/03/2013 - 14:34:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EB9F1AB4.pf
O45 - LFCP:[MD5.2E50A30DC1E23E95C54BBBBC8727A75D] - 02/03/2013 - 14:40:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-38FE020E.pf
O45 - LFCP:[MD5.EB4E41EBD0F9DB61D7746911D1104F32] - 02/03/2013 - 14:42:05 ---A- - C:\Windows\Prefetch\JAVAW.EXE-6340EE82.pf
O45 - LFCP:[MD5.BD1DBAE8EF4D5C6E41FE1E3DC81C25A5] - 02/03/2013 - 14:42:05 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-E463E9D1.pf
O45 - LFCP:[MD5.79B7FF77B8A481D0700F7A6CCAEF87C3] - 02/03/2013 - 14:48:25 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-F9C067F2.pf
O45 - LFCP:[MD5.4288B340890F9781EA2608B9877E1D6D] - 02/03/2013 - 14:48:27 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.8DEB6EFDC8DDB04674EDBA2840FF138C] - 02/03/2013 - 14:48:27 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
O45 - LFCP:[MD5.19D1219940BEA3BB867C436072E5B620] - 02/03/2013 - 14:48:53 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-BA176062.pf
O45 - LFCP:[MD5.B0B98DB3A47EFC6FE7191A903D4E95B7] - 02/03/2013 - 14:49:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-0129C0B2.pf
O45 - LFCP:[MD5.F251A6FB8603D9E76A33942DEAC93BAD] - 02/03/2013 - 14:49:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.873AEA42EA86BB5B218A01CD8444D891] - 02/03/2013 - 14:49:36 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E173F32A.pf
O45 - LFCP:[MD5.AF699755E01EE38F68E1037E55525F48] - 02/03/2013 - 14:49:42 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf
O45 - LFCP:[MD5.60DE64881F4BC555CD40639BA8D85CAD] - 02/03/2013 - 14:49:47 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf
O45 - LFCP:[MD5.82021DD504CE464807DE055450C780CD] - 02/03/2013 - 14:49:52 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-F99091EF.pf
O45 - LFCP:[MD5.7FD6A8AA0DCAC9CF0EE837DAB38CE9EC] - 02/03/2013 - 14:49:55 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-B617F0A6.pf
O45 - LFCP:[MD5.71FEDE5099C083FA00FAAA2C0C78D3FC] - 02/03/2013 - 14:49:57 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-06C511BF.pf
O45 - LFCP:[MD5.5CBA8FC222E78D859DFB4B7DCE13A15C] - 02/03/2013 - 14:49:57 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-8261C81C.pf
O45 - LFCP:[MD5.AB6380246D4F098D8FE7CC16EE9807E1] - 02/03/2013 - 14:50:39 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-257D8644.pf
O45 - LFCP:[MD5.B4517B011DB9E351FF8161267C5F93C8] - 02/03/2013 - 14:50:49 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-6A1D0894.pf
O45 - LFCP:[MD5.600373511B11AB8163D0DB5C9D96A461] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.994D695740C04F06D22B349007E6B991] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-FCD9ABA9.pf
O45 - LFCP:[MD5.1C15744E9FA2311B9CD87CE33B834DB8] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.B3F9D1E9706EA7234506D843C2AB6F57] - 02/03/2013 - 14:51:06 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-39F97B2D.pf
O45 - LFCP:[MD5.62C6318960DCB9450FB435E8D93B3117] - 02/03/2013 - 14:51:09 ---A- - C:\Windows\Prefetch\PV.EXE-0748338F.pf
O45 - LFCP:[MD5.A842C44ED6D38A80ECC3B199C3767386] - 02/03/2013 - 14:51:11 ---A- - C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
O45 - LFCP:[MD5.477E75788BC39C77E2231F2623086CAF] - 02/03/2013 - 14:51:15 ---A- - C:\Windows\Prefetch\CMD.EXE-6D6290C5.pf
O45 - LFCP:[MD5.2A5854DA739529703918E43756AC3E0E] - 02/03/2013 - 14:51:15 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-3DCC0576.pf
O45 - LFCP:[MD5.50366993D352483838AEF9FB7178A30E] - 02/03/2013 - 14:51:20 ---A- - C:\Windows\Prefetch\DRVINST.EXE-39D9EAC7.pf
O45 - LFCP:[MD5.28DE9B9CE14B0BAC63A3CBE29DAC452F] - 02/03/2013 - 14:51:20 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-DC1676CD.pf
O45 - LFCP:[MD5.13384CC494939740E833F8B16E21E2A7] - 02/03/2013 - 14:51:26 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6D6FB3A1.pf
O45 - LFCP:[MD5.80538F8C2ECF52169DD148D093655DBE] - 02/03/2013 - 14:51:29 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6D47E169.pf
O45 - LFCP:[MD5.E4111C329115E90D214832A0914F20DA] - 02/03/2013 - 14:51:30 ---A- - C:\Windows\Prefetch\DINOTIFY.EXE-6465574B.pf
O45 - LFCP:[MD5.EFE80CEB69392EE4F45EBF2292A39BF5] - 02/03/2013 - 14:51:31 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-7C73F960.pf
O45 - LFCP:[MD5.253ECEC36FFDCC278767483465D90946] - 28/02/2013 - 15:13:49 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.52FDF0A4CBEB2D5D14C6A562C5C1917B] - 28/02/2013 - 18:38:16 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-1569062301-1711957216-3303669385-1000.snp.db
O45 - LFCP:[MD5.E36CA58090D04E67C05E4749C2DF1252] - 28/02/2013 - 20:22:51 ---A- - C:\Windows\Prefetch\AgCx_SC3_4FE05E613C540DBD.db
~ Scan Prefetcher in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"vidc.i420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcod64.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.A41B855EDC1F141851E27F984827942C] - 21/10/2010 - 05:05:18 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\SysWOW64\drivers\AiCharger.sys [14592]
~ Scan Drivers in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_chrome_0.indexeddb.leveldb\MANIFEST-000002 [32]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_settings-frame_0.indexeddb.leveldb\MANIFEST-000002 [32]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\LOG [47]
O61 - LFC: 01/03/2013 - 10:43:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\chrome_uber-frame_0.indexeddb.leveldb\MANIFEST-000002 [32]
O61 - LFC: 01/03/2013 - 10:52:24 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db [7168]
O61 - LFC: 01/03/2013 - 10:52:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Archived History [57344]
O61 - LFC: 01/03/2013 - 10:52:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal [512]
O61 - LFC: 01/03/2013 - 10:53:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\LOCK [0]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\000005.sst [135]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\CURRENT [16]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\LOG [259]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\LOG.old [47]
O61 - LFC: 01/03/2013 - 10:53:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\http_www.google.fr_0.indexeddb.leveldb\MANIFEST-000004 [65]
O61 - LFC: 01/03/2013 - 10:53:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage [7168]
O61 - LFC: 01/03/2013 - 10:53:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage-journal [6704]
O61 - LFC: 01/03/2013 - 10:54:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.iminent.com_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 10:54:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.iminent.com_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 10:54:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 10:54:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 10:55:14 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\static.anonymousdmp.com\pus.sol [68]
O61 - LFC: 01/03/2013 - 11:36:21 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7665042892.data [750]
O61 - LFC: 01/03/2013 - 11:36:21 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\7665042892.quar [702760]
O61 - LFC: 01/03/2013 - 11:36:30 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-03-01 (11-09-31).txt [2350]
O61 - LFC: 01/03/2013 - 11:40:53 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\winampa.lng [4096]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Todae\LMPwa\LMP_default.rtv [113632]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art.dat [59756]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art.idx [1508]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art_90.dat [6716841]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\art_90.idx [1396]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\downloads.xml [504]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\feeds.xml [208]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\main.dat [870658]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\main.idx [18180]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\met7CB1.vmd [1769]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\playlists.xml [154]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\rss.xml [1558]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Winamp.m3u [9]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Winamp.m3u8 [12]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\gen_jumpex.m3u8 [12]
O61 - LFC: 01/03/2013 - 11:41:00 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\studio.xnf [10074]
O61 - LFC: 01/03/2013 - 11:49:50 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.commentcamarche.net_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 11:49:50 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.commentcamarche.net_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 12:04:18 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\log.txt [29761]
O61 - LFC: 01/03/2013 - 12:11:58 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [12288]
O61 - LFC: 01/03/2013 - 12:11:58 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal [12824]
O61 - LFC: 01/03/2013 - 12:13:52 ---A- C:\Users\Socko Tikaf\Pictures\Sans titre 1.jpg [10113]
O61 - LFC: 01/03/2013 - 12:15:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor [13312]
O61 - LFC: 01/03/2013 - 12:15:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal [3608]
O61 - LFC: 01/03/2013 - 12:24:10 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\adventori.com\cookie.sol [94]
O61 - LFC: 01/03/2013 - 12:24:10 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#adventori.com\settings.sol [83]
O61 - LFC: 01/03/2013 - 12:24:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\rutube.ru\rutube.cookies.sol [82]
O61 - LFC: 01/03/2013 - 12:41:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\rutube.ru\analytics.sol [451]
O61 - LFC: 01/03/2013 - 12:42:55 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\~DFA4BC7C3161E00B12.TMP [32768]
O61 - LFC: 01/03/2013 - 17:51:14 ---A- C:\Users\Socko Tikaf\Music\refrain feat crazy2.mp3 [9653609]
O61 - LFC: 01/03/2013 - 17:54:59 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\Socko Tikaf.bmp [31832]
O61 - LFC: 01/03/2013 - 18:09:20 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adprudence.rotator.hadj7.adjuggler.net_0.localstorage [3072]
O61 - LFC: 01/03/2013 - 18:09:20 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adprudence.rotator.hadj7.adjuggler.net_0.localstorage-journal [3608]
O61 - LFC: 01/03/2013 - 18:37:10 ---A- C:\Users\Socko Tikaf\Downloads\5___autodestruction_feat_mc_crazy__widow_et_socko.mp3 [4817020]
O61 - LFC: 01/03/2013 - 18:39:36 --HA- C:\Users\Socko Tikaf\AppData\Local\IconCache.db [3274288]
O61 - LFC: 02/03/2013 - 12:52:33 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\eas.db [53248]
O61 - LFC: 02/03/2013 - 12:52:33 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\eas.db-journal [41552]
O61 - LFC: 02/03/2013 - 12:52:52 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\48\4884b857268b577e.dat [1964]
O61 - LFC: 02/03/2013 - 12:53:02 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\8e\8ee42991207963a0.dat [54432]
O61 - LFC: 02/03/2013 - 13:34:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\keyval.db [49152]
O61 - LFC: 02/03/2013 - 13:34:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\keyval.db-journal [41552]
O61 - LFC: 02/03/2013 - 13:41:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [268363]
O61 - LFC: 02/03/2013 - 13:41:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set [1356]
O61 - LFC: 02/03/2013 - 13:41:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json [34]
O61 - LFC: 02/03/2013 - 13:43:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\42\42f2bbe86a070053.dat [3946]
O61 - LFC: 02/03/2013 - 13:45:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Bookmarks [52355]
O61 - LFC: 02/03/2013 - 13:45:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak [52355]
O61 - LFC: 02/03/2013 - 13:45:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 13:45:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 13:47:28 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\dc.db [94208]
O61 - LFC: 02/03/2013 - 13:49:32 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_2 [8192]
O61 - LFC: 02/03/2013 - 13:49:32 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\index [524656]
O61 - LFC: 02/03/2013 - 13:50:58 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\msn.db [77824]
O61 - LFC: 02/03/2013 - 13:50:59 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\msn.db-journal [49760]
O61 - LFC: 02/03/2013 - 13:52:59 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003168.sst [2257]
O61 - LFC: 02/03/2013 - 13:53:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\03\036d0461e98359b0.dat [103143]
O61 - LFC: 02/03/2013 - 13:53:02 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [743]
O61 - LFC: 02/03/2013 - 13:55:52 ---A- C:\Users\Socko Tikaf\Downloads\�a vire au drame.mp3 [721020]
O61 - LFC: 02/03/2013 - 13:56:13 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.laredoute.fr_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 13:56:13 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.laredoute.fr_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\bistats.db [69632]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\bistats.db-journal [33344]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\config.xml [10015]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\httpfe\cookies.dat [12]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\main.db [7569408]
O61 - LFC: 02/03/2013 - 13:56:37 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\main.db-journal [456056]
O61 - LFC: 02/03/2013 - 14:09:05 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 14:09:05 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 14:11:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Temp\wmplog00.sqm [1506]
O61 - LFC: 02/03/2013 - 14:12:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.facebook.com_0.localstorage [3072]
O61 - LFC: 02/03/2013 - 14:12:22 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.facebook.com_0.localstorage-journal [3608]
O61 - LFC: 02/03/2013 - 14:18:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\s.ytimg.com\videostats.sol [275]
O61 - LFC: 02/03/2013 - 14:18:31 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\s.ytimg.com\soundData.sol [49]
O61 - LFC: 02/03/2013 - 14:18:41 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#player.kpsule.me\settings.sol [86]
O61 - LFC: 02/03/2013 - 14:18:41 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\settings.sol [927]
O61 - LFC: 02/03/2013 - 14:18:41 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\player.kpsule.me\ads\mediumrect.swf\__kta.sol [559]
O61 - LFC: 02/03/2013 - 14:18:53 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [1427195]
O61 - LFC: 02/03/2013 - 14:19:27 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [556]
O61 - LFC: 02/03/2013 - 14:19:39 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Last Session [164382]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old [151]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0 [45056]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1 [270336]
O61 - LFC: 02/03/2013 - 14:19:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_3 [4202496]
O61 - LFC: 02/03/2013 - 14:21:18 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Leadertech\PowerRegister\PowerReg.dat [353]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Local\ATI\ACE\Manifest.Bin [27266]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Local\ATI\ACE\Manifest.xml [19630]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\shared_dynco\dc.db [2035712]
O61 - LFC: 02/03/2013 - 14:21:19 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\shared_dynco\dc.db-journal [1120904]
O61 - LFC: 02/03/2013 - 14:21:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT [16]
O61 - LFC: 02/03/2013 - 14:21:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-001700 [1272]
O61 - LFC: 02/03/2013 - 14:21:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003170.sst [1133073]
O61 - LFC: 02/03/2013 - 14:21:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT [16]
O61 - LFC: 02/03/2013 - 14:21:35 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-003169 [166]
O61 - LFC: 02/03/2013 - 14:21:38 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings [8]
O61 - LFC: 02/03/2013 - 14:21:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\shared.xml [67572]
O61 - LFC: 02/03/2013 - 14:21:47 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Login Data [32768]
O61 - LFC: 02/03/2013 - 14:21:47 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal [4624]
O61 - LFC: 02/03/2013 - 14:23:00 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [1733024]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [8693104]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1517670]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [134512]
O61 - LFC: 02/03/2013 - 14:23:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19852]
O61 - LFC: 02/03/2013 - 14:29:23 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\fbstatic-a.akamaihd.net\www.deezer.com.sol [83]
O61 - LFC: 02/03/2013 - 14:29:53 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies [6144]
O61 - LFC: 02/03/2013 - 14:29:53 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies-journal [4640]
O61 - LFC: 02/03/2013 - 14:44:46 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Top Sites [159744]
O61 - LFC: 02/03/2013 - 14:44:46 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [16384]
O61 - LFC: 02/03/2013 - 14:48:00 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Web Data [385024]
O61 - LFC: 02/03/2013 - 14:48:00 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal [16384]
O61 - LFC: 02/03/2013 - 14:48:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Favicons [466944]
O61 - LFC: 02/03/2013 - 14:48:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384]
O61 - LFC: 02/03/2013 - 14:49:06 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144]
O61 - LFC: 02/03/2013 - 14:49:06 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [2576]
O61 - LFC: 02/03/2013 - 14:49:48 ---A- C:\Users\Socko Tikaf\AppData\Local\ATI\ACE\Profiles.xml [17077]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Current Session [206187]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Current Tabs [350607]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG [151]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History [573440]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03 [2490368]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [81794]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Preferences [91946]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [278]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3 [3829760]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072]
O61 - LFC: 02/03/2013 - 14:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Local State [24167]
O61 - LFC: 02/03/2013 - 14:51:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Cookies [907264]
O61 - LFC: 02/03/2013 - 14:51:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal [16384]
O61 - LFC: 02/03/2013 - 14:51:12 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [4]
O61 - LFC: 27/02/2013 - 00:22:34 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\81\811fcdc7896ed2ae.dat [24457]
O61 - LFC: 27/02/2013 - 00:45:20 ---A- C:\Users\Socko Tikaf\Documents\Logiciel\uTorrent.exe [1051984]
O61 - LFC: 27/02/2013 - 00:45:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\utorrent.lng [1136507]
O61 - LFC: 27/02/2013 - 00:45:42 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\C99F589B660CF85C85DD24E3B4D14CC6F1B6609A [47612]
O61 - LFC: 27/02/2013 - 00:46:03 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\toolbar_offer.benc [6694]
O61 - LFC: 27/02/2013 - 00:46:10 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\toolbar.benc [6750]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\3609FC884502A1DF0AA5D9D160C827BB1BD51FC9.btapp [266548]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\featuredContent.btapp [33605]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\player.btapp [3097]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\plus.btapp [52666]
O61 - LFC: 27/02/2013 - 00:46:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\apps\welcome-upsell.btapp [28315]
O61 - LFC: 27/02/2013 - 00:46:42 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\10E6FBE4D921B475FA5FEC6E9A535A540D6FEED1 [318]
O61 - LFC: 27/02/2013 - 00:46:42 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\32F529521A3DEC709F97F761F192AABF29BDC408 [198222]
O61 - LFC: 27/02/2013 - 00:46:48 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\7C8945DA1B01DEA87CEA3DEAE371D7FEEFE460C0 [3211]
O61 - LFC: 27/02/2013 - 00:46:48 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\C648DD00D0E947C36A1A116F4B2AF54BE52AD59B [19558]
O61 - LFC: 27/02/2013 - 00:46:48 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\EF20FFD1EC7C1A25973839D5133FB199D8A4E7E0 [25479]
O61 - LFC: 27/02/2013 - 00:50:14 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\B2EZGTQA\8F903698240FE799F61EEDA8595181137B996156.heu [152]
O61 - LFC: 27/02/2013 - 00:52:17 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] The.Walking.Dead.S03E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.torrent [29109]
O61 - LFC: 27/02/2013 - 00:53:15 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] Shameless.US.S03E01.FASTSUB.VOSTFR.HDTV.XviD-MiND.torrent [45026]
O61 - LFC: 27/02/2013 - 00:53:24 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] Shameless.US.S03E05.Vostfr.HDTV.XviD-iTOMa.torrent [356087]
O61 - LFC: 27/02/2013 - 00:53:26 ----- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\[www.Cpasbien.me] Shameless.US.S03E06.Vostfr.HDTV.XviD-iTOMa.torrent [45347]
O61 - LFC: 27/02/2013 - 01:07:59 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\96\96da1ad04d4532db.dat [18667]
O61 - LFC: 27/02/2013 - 01:08:03 R--A- C:\Users\Socko Tikaf\Downloads\[www.Cpasbien.me] The.Walking.Dead.S03E11.FASTSUB.VOSTFR.HDTV.XviD-MiND\[www.Cpasbien.me] The.Walking.Dead.S03E11.FASTSUB.VOSTFR.HDTV.XviD-MiND.avi [366091548]
O61 - LFC: 27/02/2013 - 01:16:06 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\B2EZGTQA\7421C71F94DB4F028E7528B2D278F3FE4DC21273.heu [151]
O61 - LFC: 27/02/2013 - 01:17:11 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dht_feed.dat.old [2]
O61 - LFC: 27/02/2013 - 01:18:41 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\resume.dat.old [103197]
O61 - LFC: 27/02/2013 - 01:19:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dht.dat [4014]
O61 - LFC: 27/02/2013 - 01:19:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dht_feed.dat [2]
O61 - LFC: 27/02/2013 - 01:19:01 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\rss.dat [99]
O61 - LFC: 27/02/2013 - 01:19:06 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\dlimagecache\2278AC1C97963C2A81B5E42DDF2BCA6353BA0B56 [53139]
O61 - LFC: 27/02/2013 - 01:19:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\resume.dat [104052]
O61 - LFC: 27/02/2013 - 01:19:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\settings.dat [18040]
O61 - LFC: 27/02/2013 - 01:19:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\uTorrent\settings.dat.old [18066]
O61 - LFC: 27/02/2013 - 01:22:20 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#fbstatic-a.akamaihd.net\settings.sol [93]
O61 - LFC: 27/02/2013 - 02:47:04 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#s.ytimg.com\settings.sol [81]
O61 - LFC: 27/02/2013 - 12:46:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#rutube.ru\settings.sol [79]
O61 - LFC: 27/02/2013 - 12:55:32 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#static.lequipe.fr\settings.sol [87]
O61 - LFC: 27/02/2013 - 12:55:33 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#static.anonymousdmp.com\settings.sol [93]
O61 - LFC: 27/02/2013 - 12:55:39 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#static1.dmcdn.net\settings.sol [87]
O61 - LFC: 27/02/2013 - 12:55:44 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#secure-uk.imrworldwide.com\settings.sol [96]
O61 - LFC: 27/02/2013 - 12:55:44 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\secure-uk.imrworldwide.com\_ggCvar.sol [74]
O61 - LFC: 27/02/2013 - 12:55:44 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\secure-uk.imrworldwide.com\_ggCvar_temp.sol [79]
O61 - LFC: 27/02/2013 - 12:56:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000111.sst [140]
O61 - LFC: 27/02/2013 - 12:56:02 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#mpsnare.iesnare.com\settings.sol [89]
O61 - LFC: 27/02/2013 - 12:56:02 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\mpsnare.iesnare.com\stm.sol [79]
O61 - LFC: 27/02/2013 - 12:56:05 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\##DBB5F6AF634DC566\00000001.sol [194]
O61 - LFC: 27/02/2013 - 13:35:08 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#www.dailymotion.com\settings.sol [89]
O61 - LFC: 27/02/2013 - 14:24:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\chatango.com\fixed_id.sol [54]
O61 - LFC: 27/02/2013 - 14:24:34 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#chatango.com\settings.sol [82]
O61 - LFC: 27/02/2013 - 14:44:48 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\static1.dmcdn.net\com.dm.player.sol [101]
O61 - LFC: 27/02/2013 - 14:48:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#mochibot.com\settings.sol [82]
O61 - LFC: 27/02/2013 - 14:48:01 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\mochibot.com\com.mochibot.sol [105]
O61 - LFC: 27/02/2013 - 14:50:07 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\defjam.fr\com.jeroenwijering.sol [54]
O61 - LFC: 27/02/2013 - 14:50:07 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\defjam.fr\wp-content\themes\defjam\lib\xspf_player.swf\xspf_player_data.sol [50]
O61 - LFC: 27/02/2013 - 14:50:07 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#defjam.fr\settings.sol [79]
O61 - LFC: 27/02/2013 - 16:44:39 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Skype\socko_tikaf974\chatsync\c0\c0c67380081dbe4b.dat [46488]
O61 - LFC: 27/02/2013 - 17:07:26 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Winamp\Plugins\ml\recent.idx [9124]
O61 - LFC: 27/02/2013 - 17:36:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\cdn1.telemetryverification.net\dbg.sol [53]
O61 - LFC: 27/02/2013 - 17:36:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\##327625DA92F38AE6\00000001.sol [192]
O61 - LFC: 27/02/2013 - 17:39:19 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\cdn1.telemetryverification.net\mb.sol [159]
O61 - LFC: 28/02/2013 - 00:15:58 ---A- C:\Users\Socko Tikaf\Music\espritsombre.mp3 [3670321]
O61 - LFC: 28/02/2013 - 00:17:15 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\##2E225FEE7A9E191B\00000001.sol [198]
O61 - LFC: 28/02/2013 - 00:17:40 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\cd#\n1.static.keezmovies.phncdn.com\flash\Player2012.swf\km_opts.sol [46]
O61 - LFC: 28/02/2013 - 00:20:25 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\eu-st.xhamster.com\videoplayer3.swf\dat.sol [41]
O61 - LFC: 28/02/2013 - 00:20:25 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#eu-st.xhamster.com\settings.sol [88]
O61 - LFC: 28/02/2013 - 00:20:36 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#www.xxxymovies.com\settings.sol [88]
O61 - LFC: 28/02/2013 - 00:29:59 ---A- C:\Users\Socko Tikaf\Pictures\Sans titr4e 2.jpg [90082]
O61 - LFC: 28/02/2013 - 00:51:11 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs [19456]
O61 - LFC: 28/02/2013 - 16:25:37 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\chatango.com\mini_login.sol [48]
O61 - LFC: 28/02/2013 - 16:27:43 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#www.jeuxvideo.com\settings.sol [87]
O61 - LFC: 28/02/2013 - 16:27:45 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#fr-himedia.cdn.videoplaza.tv\settings.sol [98]
O61 - LFC: 28/02/2013 - 16:27:46 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\fr-himedia.cdn.videoplaza.tv\com.videoplaza.bootloader.sol [103]
O61 - LFC: 28/02/2013 - 16:28:55 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\static1.dmcdn.net\analytics.sol [536]
O61 - LFC: 28/02/2013 - 16:31:10 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\www.dailymotion.com\com.dm.player.sol [281]
O61 - LFC: 28/02/2013 - 16:53:18 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\MSXML2\msxml4a.dll [44544]
O61 - LFC: 28/02/2013 - 16:53:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\MSXML2\msxml4.dll [1275392]
O61 - LFC: 28/02/2013 - 16:53:20 ---A- C:\Users\Socko Tikaf\AppData\Roaming\Microsoft\MSXML2\msxml4r.dll [82432]
O61 - LFC: 28/02/2013 - 17:27:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old [148]
O61 - LFC: 28/02/2013 - 18:02:31 ---A- C:\Users\Socko Tikaf\Music\quand_on_devient_grand.wav [8328108]
O61 - LFC: 28/02/2013 - 20:30:26 ---A- C:\Users\Socko Tikaf\Music\seyko-crazy.mp3 [9641290]
O61 - LFC: 28/02/2013 - 20:31:04 ---A- C:\Users\Socko Tikaf\Music\Seyko - 2013.mp3 [9514549]
O61 - LFC: 28/02/2013 - 21:32:52 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\macromedia.com\support\flashplayer\sys\#v1fr.sftcdn.net\settings.sol [85]
O61 - LFC: 28/02/2013 - 21:32:52 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\v1fr.sftcdn.net\shared\flash\rs\storage.swf\FlashCookie_EasyRating.sol [62]
O61 - LFC: 28/02/2013 - 21:32:59 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\v1fr.sftcdn.net\shared\flash\rs\storage.swf\flashcookie_sd.sol [137]
O61 - LFC: 28/02/2013 - 22:37:29 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage [102400]
O61 - LFC: 28/02/2013 - 22:39:15 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT [16]
O61 - LFC: 28/02/2013 - 22:39:15 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000115 [265]
O61 - LFC: 28/02/2013 - 22:39:16 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG [145]
O61 - LFC: 28/02/2013 - 22:39:17 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [13312]
O61 - LFC: 28/02/2013 - 23:31:26 ---A- C:\Users\Socko Tikaf\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\UY43RMDJ\secure-uk.imrworldwide.com\_ggMCvar_1.sol [182]
O61 - LFC: 28/02/2013 - 23:40:46 ---A- C:\Users\Socko Tikaf\Pictures\Football\Manchester City\Wallpapers Tevez 03.jpg [39291]
~ Scan Files in 01mn 02s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: RSIT - (.random/random.)
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adp94xx.sys (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpahci.sys (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpu320.sys (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\aliide.sys (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 19/12/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag) .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\amdsata.sys (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdsbs.sys (amdsbs) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arc.sys (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arcsas.sys (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - 04/01/2008 - C:\Windows\sysWow64\drivers\AsInsHelp64.sys - ASInsHelp (ASInsHelp) .(...) - LEGACY_ASINSHELP
O64 - Services: CurCS - 24/08/2010 - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 03/08/2010 - C:\Windows\Syswow64\drivers\AsUpIO.sys - AsUpIO (AsUpIO) .(...) - LEGACY_ASUPIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\cmdide.sys (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\elxstor.sys (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\HpSAMD.sys (HpSAMD) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD
O64 - Services: CurCS - 29/11/2011 - C:\Windows\System32\drivers\iaStor.sys (iaStor) .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\iaStorV.sys (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\iirsp.sys (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_fc.sys (LSI_FC) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas.sys (LSI_SAS) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas2.sys (LSI_SAS2) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_scsi.sys (LSI_SCSI) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\megasas.sys (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\MegaSR.sys (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 02/07/2010 - C:\Windows\System32\drivers\mv91xx.sys (mv91xx) .(.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) - LEGACY_MV91XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\nfrd960.sys (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA� nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 28/03/2012 - C:\Windows\System32\drivers\nvstor.sys (nvstor) .(.NVIDIA Corporation - NVIDIA� nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql2300.sys (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql40xx.sys (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\SiSRaid2.sys (SiSRaid2) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\sisraid4.sys (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\stexstor.sys (stexstor) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\viaide.sys (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\vsmraid.sys (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Scan Services in 00mn 00s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.6D69000BB6FFD6585C9F49720205EB78] [SPRF][01/03/2013] (...) -- C:\Users\Socko Tikaf\Desktop\adwcleaner.exe [594019]
[MD5.29DD21F21EB9B04FF89CA64916B0BA91] [SPRF][02/03/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Socko Tikaf\Desktop\ZHPDiag2.exe [5395373]
~ Scan Files in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{A09B9C1A-B434-4829-9B28-2FDB5C4FE8B5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{B26BF3D9-8E14-412E-84CE-5FC5C3CDC6EE}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{EEE17501-1D1F-4BFE-A7B1-8B3544FBCEFE}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{A962A160-2412-4C79-BD15-E7CA549BEA2A}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{7091E878-236E-4AE6-87C1-7987A87706DA}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{76F92A70-81D8-4D6F-8909-8F000C48FBE9}" |In - Public - P17 - TRUE | .(...) -- C:\Users\Socko Tikaf\Documents\The War Z\WarZ.exe (.not file.)
O87 - FAEL: "TCP Query User{29CC906C-D3DC-41AC-8A71-520A33A81266}C:\program files (x86)\winamp\winamp.exe" | In - Private - P6 - TRUE | .(.Nullsoft, Inc. - Winamp.) -- C:\program files (x86)\winamp\winamp.exe
O87 - FAEL: "UDP Query User{C0029B59-8B10-46BA-9705-F27ECEE7EB8B}C:\program files (x86)\winamp\winamp.exe" | In - Private - P17 - TRUE | .(.Nullsoft, Inc. - Winamp.) -- C:\program files (x86)\winamp\winamp.exe
O87 - FAEL: "TCP Query User{70F23E04-AC89-4C28-83B5-C2D6146827A3}C:\users\socko tikaf\documents\jeux\the war z\warz.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\socko tikaf\documents\jeux\the war z\warz.exe (.not file.)
O87 - FAEL: "UDP Query User{F734D195-A10A-4AFE-A3D3-939BE05F9010}C:\users\socko tikaf\documents\jeux\the war z\warz.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\socko tikaf\documents\jeux\the war z\warz.exe (.not file.)
O87 - FAEL: "{4F1EFD7A-574F-46D2-97CB-1F220D0ED06A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{4AAC96AF-0FE9-47F4-BFC1-06129421AE66}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{7DCFD012-D48E-4BE5-9BF1-B840C1B138A7}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\muzapp.exe (.not file.)
O87 - FAEL: "{7AB88F8B-EEAC-4BEB-A8DB-DE8F1D4027E0}" |In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\muzapp.exe (.not file.)
O87 - FAEL: "TCP Query User{F1601505-BE74-4EE5-9898-B30D7D2BF643}C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe (.not file.)
O87 - FAEL: "UDP Query User{2C37883E-A048-49F7-BCA5-9B10D5B5DD0E}C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\socko tikaf\appdata\roaming\utorrent\utorrent.exe (.not file.)
~ Scan Firewall in 00mn 00s
---\\ Scan Additionnel (O88)
Database Version : v2.11005 - (28/02/2013)
Cl�s trouv�es (Keys found) : 6
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 0
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
~ Scan Additionnel in 00mn 05s
---\\ Recherche d�tournement de DNS routeur (O89) (None)
---\\ Product Upgrade Codes (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "03A4EE98F08059C2F6879CD881BF7DD4" . (.AMD Accelerated Video Transcoding.) -- C:\windows\Installer\{89EE4A30-080F-2C95-6F78-C98D18FBD74D}\ARPPRODUCTICON.exe
O90 - PUC: "16ED57946FB6CB9BF1ED0CC4E57CE8C4" . (.AMD Media Foundation Decoders.) -- C:\windows\Installer\{4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}\ARPPRODUCTICON.exe
O90 - PUC: "2B754B4DF062165CAC7807B33D7B42AC" . (.Catalyst Control Center Graphics Previews Common.) -- C:\windows\Installer\{D4B457B2-260F-C561-CA87-703BD3B724CA}\ARPPRODUCTICON.exe
O90 - PUC: "3058F5C62D55893458C863B2A7A75FC1" . (.Firebird SQL Server - MAGIX Edition.) -- C:\windows\Installer\{6C5F8503-55D2-4398-858C-362B7A7AF51C}\ProgramIcon.exe
O90 - PUC: "32FA0F2EF2EF2224A934556EC34CE11F" . (.Catalyst Control Center - Branding.) -- C:\windows\Installer\{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}\ARPPRODUCTICON.exe
O90 - PUC: "42962336FAC3858CA3F858898C07917D" . (.Catalyst Control Center.) -- C:\windows\Installer\{63326924-3CAF-C858-3A8F-8598C87019D7}\ARPPRODUCTICON.exe
O90 - PUC: "61D11FC9BECE5A090A82ACE960D848B8" . (.ccc-utility64.) -- C:\windows\Installer\{9CF11D16-ECEB-90A5-A028-CA9E068D848B}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA73301B744AA0100000010" . (.Adobe Reader X (10.1.6).) -- C:\windows\Installer\{AC76BA86-7AD7-1033-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "762A30E5E5143835AFF8C34E4165369B" . (.AMD Catalyst Install Manager.) -- C:\windows\Installer\{5E03A267-415E-5383-FA8F-3CE4145663B9}\ARPPRODUCTICON.exe
O90 - PUC: "93B0BF4E199C7EE459DDA1A187753DD3" . (.Asmedia ASM104x USB 3.0 Host Controller Driver.) -- C:\Windows\Installer\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}\ARPPRODUCTICON.exe
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "B4A2F9673A486849DA2DE9A54B4B1E3E" . (.Catalyst Control Center InstallProxy.) -- C:\windows\Installer\{769F2A4B-84A3-9486-ADD2-9E5AB4B4E1E3}\ARPPRODUCTICON.exe
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.1.) -- C:\windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "E805DFCE2A862B1964DDD1307D389DB4" . (.Catalyst Control Center Localization All.) -- C:\windows\Installer\{ECFD508E-68A2-91B2-46DD-1D03D783D94B}\ARPPRODUCTICON.exe
O90 - PUC: "F1DEC8AF8050058BAE510F1195D309DC" . (.AMD Drag and Drop Transcoding.) -- C:\windows\Installer\{FA8CED1F-0508-B850-EA15-F011593D90CD}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s
---\\ MyComputer Name Space (O92)
O92 - MNS: ASUS WebStorage Drive - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf}
~ Scan MNS in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 27/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 19/12/2012 240640 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 918448 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
SR - | Auto 09/08/2011 947328 | (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.16\aaHMSvc.exe
SR - | Auto 586880 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
SR - | Auto 02/09/2011 1399296 | (AsusFanControlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.06\AsusFanControlService.exe
SR - | Auto 23/12/2009 203392 | (Device Handle Service) . (.ASUSTeK Computer Inc..) - C:\Windows\SysWOW64\AsHookDevice.exe
SR - | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - | Auto 25/12/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 25/12/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 03/02/2012 628448 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 08/02/2012 161560 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 08/02/2012 277784 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SS - | Auto 08/01/2013 161536 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 15/12/2011 450848 | (UMVPFSrv) . (.Logitech Inc..) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
SR - | Auto 08/02/2012 363800 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 00s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ Scan MBR in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Socko Tikaf at 02/03/2013 14:53:07
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s
End of the scan (1464 lines in 02mn 11s)(0)