Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ Rapport de ZHPDiag v2013.9.10.191 - Nicolas Coolman (10/09/2013)
~ Lanc� par Beardy (11/09/2013 01:51:51)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : D�sactiv�e par l'utilisateur
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 18.0 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : DVQJG
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du syst�me
AVG 2013 v13.0.3222
Spybot - Search & Destroy v2.0.12
ZoneAlarm Firewall v11.0.000.057
ZoneAlarm Free Firewall v11.0.000.057
ZoneAlarm Security v11.0.000.020
Windows Defender W7
---\\ Logiciels d'optimisation du syst�me
CCleaner v4.03 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 25
---\\ Informations sur le syst�me
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6099 MB (74% free)
System Restore: Activ� (Enable)
System drive C: has 23 GB (39%) free of 59 GB
---\\ Mode de connexion au syst�me
~ Computer Name: FAMILY-PC
~ User Name: Beardy
~ All Users Names: UpdatusUser, Marie, Beardy, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : D:\Users\Beardy\AppData\Roaming\
~ %Desktop% : D:\Users\Beardy\Desktop\
~ %Favorites% : D:\Users\Beardy\Favorites\
~ %LocalAppData% : D:\Users\Beardy\AppData\Local\
~ %StartMenu% : D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enum�ration des unit�s disques
C:\ Hard drive, Flash drive, Thumb drive (Free 23 Go of 59 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 607 Go of 932 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 20 Go)
G:\ CD-ROM drive (Free 0 Go of 3 Go)
H:\ CD-ROM drive (Free 0 Go of 0 Go)
I:\ CD-ROM drive (Not Inserted)
J:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 129 Go)
---\\ Etat du Centre de S�curit� Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 34 Scanned in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.26/03/2012 - 23:39:21.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.5121DB613E10A46A3C5085B479026AA7] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/11/2012 - 07:04:11.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.26/03/2012 - 23:46:03.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.26/03/2012 - 23:40:38.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.26/03/2012 - 23:30:12.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/4
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/2603
~ Mon Bureau (My Desktop) : 1/41
~ Menu demarrer (Programs) : 1/53
~ Hidden Files: Scanned in 00mn 02s
---\\ Processus lanc�s
[MD5.35CFDA79479D06FA2154A9E84236E84A] - (.ASUSTeK Computer Inc. - Tool to hook keyboard and handle hybrid-sle.) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe [1088128] [PID.4128]
[MD5.576C72830E3FD6ACE2910545B6130803] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328] [PID.6872]
[MD5.4624731A850366C5E049C93BCB5D41FD] - (.ASUSTeK Computer Inc. - EPUHelp.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe [1256576] [PID.5384]
[MD5.6364FA7D825B600251A4D1DE7D6FF695] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.5600]
[MD5.BD712BF585CBE46FEC924398E852A29E] - (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe [232064] [PID.5620]
[MD5.D783DC9A00B768503D6CAE2F5F8A8200] - (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe [195200] [PID.7256]
[MD5.7B9F57F46E0C33D4D4C81969DC08F759] - (.ASUSTek Computer Inc. - AiChargerAP MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [465536] [PID.5284]
[MD5.4F1F35044428CD8981BEA81432E9E51D] - (.Check Point Software Technologies LTD - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832] [PID.4532]
[MD5.288D8A54FE326AE26AD43F348E646147] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440] [PID.5164]
[MD5.B5A4EBA9487F08BECC843A87422B8052] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [3825176] [PID.5332]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816] [PID.4176]
[MD5.D14D646DFE602AFBB9461899C2F26301] - (.VideoLAN - VLC media player 2.0.8.) -- D:\Mes Programmes\adslTV\VLC\vlc.exe [124416] [PID.7108]
[MD5.ACE8F6D86D13654C5E9A4746BDF253CC] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7931904] [PID.5656]
[MD5.00FCEC4DA4198F5F2B9BBD9225842568] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383416] [PID.1268]
[MD5.7F15A353AF9B367F4D4CD52CB0533F2F] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447888] [PID.1856]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640] [PID.2536]
[MD5.F7692E60147E56A1CEEE144974F41830] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe [918448] [PID.2560]
[MD5.F709A4D50B19A84A8D06579C193CCA5E] - (.ASUSTeK Computer Inc. - Pas de description.) -- C:\Program Files (x86)\ASUS\AAHM\1.00.18\aaHMSvc.exe [950912] [PID.2672]
[MD5.5C31DFB196CB3A488A041881634D86D2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880] [PID.2712]
[MD5.4DB93F4DB7077801D2D82013506AC1D0] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312] [PID.2740]
[MD5.48939D9F350AEF9370F03A1E49A49BE2] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136] [PID.2796]
[MD5.65608C44E71D7BA056C9EFCD8A00A7FE] - (.Microsoft Corp. - Bing Desktop updating service.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192] [PID.2868]
[MD5.0A403702CB00432AC818523CD416BF67] - (.ASUSTeK Computer Inc. - Device Handle.) -- C:\Windows\SysWOW64\AsHookDevice.exe [203392] [PID.2920]
[MD5.C44B44E24B929631D9D7368F5B2B40CF] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.1992]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872] [PID.1960]
[MD5.A1688A4FB2EC49D040C027EF6DC7A87B] - (.pdfforge GbR - PDF Architect Helper Service.) -- C:\Program Files (x86)\PDF Architect\HelperService.exe [1324104] [PID.2596]
[MD5.E23FF9B2F8EEAB2BDDA681C21C48E843] - (.pdfforge GbR - PDF Architect Conversion Service.) -- C:\Program Files (x86)\PDF Architect\ConversionService.exe [795208] [PID.1984]
[MD5.206387AB881E93A1A6EB89966C8651F1] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392] [PID.3264]
[MD5.A529CFE32565C0B145578FFB2B32C9A5] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624] [PID.3744]
[MD5.CB63BDB77BB86549FC3303C2F11EDC18] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384] [PID.3992]
[MD5.B3009DCDBCC5EFA49FA52562E9860E3C] - (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128] [PID.5040]
[MD5.75F29D77B0540FCF47EE3BE000BBABDA] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.5100]
[MD5.FB660F80BDC4F13D594996976AFAECD9] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1260472] [PID.4404]
[MD5.193AD338F2A64D17300AD640ADFA5D0A] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.2000]
[MD5.452DB84283EB2F043827AC95D62CE19C] - (.Safer-Networking Ltd. - Update.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3487240] [PID.6720]
~ Processes Running: Scanned in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\prefs.js
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\user.js
M3 - MFPP: Plugins - [Beardy] -- D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\searchplugins\duckduckgo.xml
M3 - MFPP: Plugins - [Beardy] -- D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\searchplugins\WebSearch.xml
M3 - MFPP: Plugins - [Beardy] -- D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\searchplugins\zonealarm.xml
M0 - MFSP: prefs.js [Beardy - 4uld153n.default] http://www.google.fr
M2 - MFEP: prefs.js [Beardy - 4uld153n.default\ffxtlbr@zonealarm.com] [] zonealarm.com v1.6.0 (..)
M2 - MFEP: prefs.js [Beardy - 4uld153n.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.21 (..)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 6.5.0.3.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
~ Firefox Browser: 9 Scanned in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ IE Browser: 15 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 02s
~ Nombre de lignes (Lines number): 15331
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Speed Analysis 2 [64Bits] - {18DBB6CE-3148-4FEC-B481-103CB3290427} . (.SpeedAnalysis.com - ScriptHost.) -- C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll =>PUP.SpeedAnalysis
O2 - BHO: PDF Architect Helper [64Bits] - {3A2D5EBA-F86D-4BD3-A177-019765996711} . (.pdfforge GbR - PDF Architect Helper.) -- C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Smiley Bar for Facebook [64Bits] - {4723AAA8-B2F9-4CC1-9E60-190976DB1FA4} . (.Plus Winks - ScriptHost.) -- C:\Program Files (x86)\Smiley Bar for Facebook\ScriptHost.dll =>Adware.SmileyBar
O2 - BHO: Spybot-S&D IE Protection [64Bits] - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer-Networking Ltd. - Blocks URLs that could install spyware, mal.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- D:\Mes Programmes\Java\jre7\bin\ssv.dll
O2 - BHO: ZoneAlarm Security Engine Registrar [64Bits] - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation. - Extensions du client Bing.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll =>Toolbar.Bing
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- D:\Mes Programmes\Java\jre7\bin\jp2ssv.dll
~ BHO: 11 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: ZoneAlarm Security Engine [64Bits] - [HKLM]{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Dr. HOUSE.lnk . (.Legacy Interactive - Pas de description.) -- D:\Mes Programmes\Dr. HOUSE\house.exe
O4 - GS\Desktop [Public]: D�marrer la d�tection.lnk . (...) -- C:\Program Files (x86)\ma-config.com\x64\MCDetection.exe (.not file.)
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Desktop [Public]: Streaming Audio Recorder.lnk . (.Apowersoft - Streaming Audio Recorder.) -- D:\Mes Programmes\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
O4 - GS\Desktop [Public]: Titan Quest.lnk . (...) -- D:\Mes Programmes\THQ\Titan Quest\Titan Quest.exe
O4 - GS\Desktop [Public]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
O4 - GS\Desktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
O4 - GS\Program [Public]: Adobe Reader X.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- D:\Mes Programmes\GIMP 2\bin\gimp-2.8.exe
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O4 - GS\Program [Public]: Microsoft Office 2010.lnk . (...) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O4 - GS\Program [Public]: Microsoft Picture It! Photo 2001.lnk . (.Microsoft Corporation - Picture It! 2001.) -- D:\Mes Programmes\Microsoft Picture It! PhotoPub\pip.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - GS\Program [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise � niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
O4 - GS\Program [Public]: Windows Live Messenger.lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - GS\Program [Public]: Windows Live Movie Maker.lnk . (.Microsoft Corporation - Windows Live Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
O4 - GS\Program [Public]: Windows Live Photo Gallery.lnk . (.Microsoft Corporation - Windows Live Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe
O4 - GS\TaskBar [UpdatusUser]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [UpdatusUser]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Explorer (2).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Media Player (2).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [UpdatusUser]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [UpdatusUser]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [UpdatusUser]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [UpdatusUser]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [UpdatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [UpdatusUser]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [UpdatusUser]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\Desktop [UpdatusUser]: Francais CP.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Nathan\Francais CP\FranCP.exe
O4 - GS\Desktop [UpdatusUser]: Frontline - Fields of Thunder.lnk . (.N-Game Studios - Game.) -- D:\Mes Programmes\Frontline - Fields of Thunder\bin\Game.exe
O4 - GS\Desktop [UpdatusUser]: Trend Micro Titanium Internet Security 2012.lnk . (...) -- C:\Program Files (x86)\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (.not file.)
O4 - GS\Desktop [UpdatusUser]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
O4 - GS\QuickLaunch [Marie]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Marie]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Marie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Marie]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Marie]: Windows Explorer (2).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Marie]: Windows Explorer (3).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Marie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Marie]: Windows Media Player (2).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Marie]: Windows Media Player (3).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Marie]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [Marie]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Marie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [Marie]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [Marie]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [Marie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [Marie]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Marie]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\Desktop [Marie]: Documents de Marie.lnk . (...) -- D:\Documents de Marie
O4 - GS\Desktop [Marie]: Francais CP.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Nathan\Francais CP\FranCP.exe
O4 - GS\Desktop [Marie]: Frontline - Fields of Thunder.lnk . (.N-Game Studios - Game.) -- D:\Mes Programmes\Frontline - Fields of Thunder\bin\Game.exe
O4 - GS\Desktop [Marie]: Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\Desktop [Marie]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\Desktop [Marie]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
O4 - GS\QuickLaunch [Beardy]: adsl TV.lnk . (.adsl TV / FM - adsl TV.) -- D:\Mes Programmes\adslTV\adsltv.exe
O4 - GS\QuickLaunch [Beardy]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Beardy]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
O4 - GS\TaskBar [Administrateur]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Administrateur]: Internet Explorer (3).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Administrateur]: Windows Explorer (2).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Administrateur]: Windows Explorer (3).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Administrateur]: Windows Live Photo Gallery.lnk . (.Microsoft Corporation - Windows Live Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
O4 - GS\TaskBar [Administrateur]: Windows Media Player (2).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Administrateur]: Windows Media Player (3).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Administrateur]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [Administrateur]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [Administrateur]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [Administrateur]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [Administrateur]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Administrateur]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\Desktop [Administrateur]: Francais CP.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Nathan\Francais CP\FranCP.exe
O4 - GS\Desktop [Administrateur]: Frontline - Fields of Thunder.lnk . (.N-Game Studios - Game.) -- D:\Mes Programmes\Frontline - Fields of Thunder\bin\Game.exe
O4 - GS\Desktop [Administrateur]: Trend Micro Titanium Internet Security 2012.lnk . (...) -- C:\Program Files (x86)\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (.not file.)
O4 - GS\Desktop [Administrateur]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
~ Global Startup: 91 Scanned in 00mn 01s
---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - HKLM\..\Run: [ISW] . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- D:\Mes Programmes\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [RunAIShell] . (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS Easy Update] . (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS Ai Charger] . (.ASUSTek Computer Inc. - AiChargerAP MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
O4 - HKLM\..\Wow6432Node\Run: [ZoneAlarm] . (.Check Point Software Technologies LTD - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- D:\Mes Programmes\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [BingDesktop] . (.Microsoft Corp. - Bing Desktop Application.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Application: Scanned in 00mn 00s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Winsock: 8 Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://active.macromedia.com/flash2/cabs/swflash.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Domain: Scanned in 00mn 00s
---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - Pas de description.) - C:\Program Files (x86)\ASUS\AAHM\1.00.18\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Device Handle Service (Device Handle Service) . (.ASUSTeK Computer Inc. - Device Handle.) - C:\Windows\SysWOW64\AsHookDevice.exe
O23 - Service: FABS - Helping agent for MAGIX media dat (Fabs) . (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: ZoneAlarm LTD Toolbar IswSvc (IswSvc) . (.Check Point Software Technologies - ZoneAlarm Browser Security.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 310.9.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GbR - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GbR - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: TrueVector Internet Monitor (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
~ Services: 24 Scanned in 00mn 05s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sdnclean64.exe) - File not found
~ BEX: 2 Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\ROC_REG_JAN_DELETE.job [300]
[MD5.476BB014F3F68C0C15EDDD5B444DA8FF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.4999625054FFA2AFFCAFD085C1218307] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- D:\Mes Programmes\CCleaner\CCleaner.exe [3611416] =>Piriform Ltd
[MD5.00000000000000000000000000000000] [APT] [Go for FilesUpdate] (...) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe (.not file.) [0] =>P2P.GoforFiles
[MD5.C78234DCAFDA1C5D4440977DF9A39F51] [APT] [ROC_REG_JAN_DELETE] (...) -- C:\ProgramData\AVG January 2013 Campaign\ROC.exe [1234000]
[MD5.00000000000000000000000000000000] [APT] [{E213F7D9-73A3-48A4-B752-7B7FFABA91F8}] (...) -- D:\Mes Programmes\ZHPDiag\ZHPFix\ZHPhep.exe (.not file.) [0]
[MD5.D241DDF08B6BEB9E5EAF01E2B8829EA8] [APT] [AsBackupWizard_Run] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AsBackupWizard\AsRunBkWizardHelper.exe [563840]
[MD5.576C72830E3FD6ACE2910545B6130803] [APT] [ASUS AI Suite II Execute] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328]
[MD5.35CFDA79479D06FA2154A9E84236E84A] [APT] [Asus HybridSleep Helper] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe [1088128]
[MD5.452DB84283EB2F043827AC95D62CE19C] [APT] [Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3487240]
[MD5.36A82C214B46787385F3B0CD02ECAA88] [APT] [Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [3653656]
[MD5.E4A0900CF535888DDD85B10040CA3E34] [APT] [Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [3906584]
~ Scheduled Task: 13 Scanned in 00mn 01s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (AsUpIO) . (...) - C:\Windows\Syswow64\drivers\AsUpIO.sys
O41 - Driver: (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - C:\Windows\System32\DRIVERS\avgidsdrivera.sys
O41 - Driver: (Avgldx64) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx64.sys
O41 - Driver: (Avgtdia) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdia.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\system32\drivers\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Vsdatant) . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\DRIVERS\vsdatant.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 111 Scanned in 00mn 01s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {9301985B-D116-4A93-A93D-94580084FF86}
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000}
O42 - Logiciel: AI Manager - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {4AF95DE2-B54D-4C3F-9494-FD3B558E2C2D}
O42 - Logiciel: AI Suite II - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {34D3688E-A737-44C5-9E2A-FF73618728E1}
O42 - Logiciel: ASUS Ai Charger - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {7FB64E72-9B0E-4460-A821-040C341E414A}
O42 - Logiciel: ASUS Backup Wizard - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {124C9BD0-8C52-40AB-8238-0605703B1C28}
O42 - Logiciel: ASUS Easy Update - (.ASUSTeK Computer Inc.) [HKLM][64Bits] -- {E7AA854E-6756-424E-84C2-4E47D5729AFF}
O42 - Logiciel: ASUS Instant On - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {CCC4652E-F5E0-498A-84F3-5DDBEF84642B}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- {56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS WebStorage - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- AVG
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {4FF9E8AA-D554-4CE7-89F9-B69DAA5A1E98}
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {6B02D047-A56D-4994-B1F1-53DA6B9885AB}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.7) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {F5266D28-E0B2-4130-BFC5-EE155AD514DC}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF} =>Toolbar.Bing
O42 - Logiciel: Bing Bureau - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D095455-D971-4D4C-9EFD-9AF6A6584F3A}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd
O42 - Logiciel: CVitaeV4 - (...) [HKCU][64Bits] -- CVitaeV4
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: DVDFab 8.2.2.6 (25/12/2012) Qt - (.Fengtao Software Inc..) [HKLM][64Bits] -- DVDFab 8 Qt_is1
O42 - Logiciel: Dr. HOUSE - (.Mindscape.) [HKLM][64Bits] -- {1219E222-3627-4167-AE77-B0DBEECD9848}
O42 - Logiciel: EPSON Scan - (...) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: EPSON Smart Panel - (...) [HKLM][64Bits] -- {6C11D561-620B-47DA-A693-4C597F3CDF40}
O42 - Logiciel: Epson Copy Utility 3.5 - (...) [HKLM][64Bits] -- {AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}
O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {6C5F8503-55D2-4398-858C-362B7A7AF51C}
O42 - Logiciel: FirstRowSportApp - (.FirstRowSportApp.com.) [HKLM][64Bits] -- 1ClickDownload =>PUP.1ClickDownloader
O42 - Logiciel: Frontline: Fields of Thunder - (..) [HKLM][64Bits] -- {6CD4D98C-5D8D-4A9A-8843-6647B3AF11B5}
O42 - Logiciel: GIMP 2.8.2 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1
O42 - Logiciel: Heroes of Might and Magic V - Tribes of the East - (...) [HKLM][64Bits] -- {66FF4C48-0083-4E60-8556-B883AB200092}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel� Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34}
O42 - Logiciel: Internet Explorer Toolbar 4.6 by SweetPacks - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {C3E85EE9-5892-4142-B537-BCEB3DAC4C3D} =>PUP.SweetIM
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {602C9E30-F838-4AD2-8DC2-265C192D4AAC}
O42 - Logiciel: Magic: The Gathering - Duels of the Planeswalkers 2013 - (...) [HKLM][64Bits] -- Steam App 97330
O42 - Logiciel: Max Payne - (...) [HKLM][64Bits] -- {39930321-4C58-4B8B-BCBF-342698C9801D}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Picture It! Photo 2001 - (.Microsoft.) [HKLM][64Bits] -- {D28FDA7D-15C6-48A2-9868-6BCB28BE6254}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises � jour NVIDIA 1.11.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Mozilla Firefox 18.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 18.0 (x86 fr)
O42 - Logiciel: Mozilla Firefox 23.0.1 (x86 fr) - (.Mozilla.) [HKCU][64Bits] -- Mozilla Firefox 23.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA Logiciel syst�me PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29}
O42 - Logiciel: NVIDIA Pilote 3D Vision 310.90 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote du contr�leur 3D Vision 310.90 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 310.90 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Nathan Francais CP - (...) [HKLM][64Bits] -- Nathan Francais CP
O42 - Logiciel: PDF Architect - (.pdfforge.) [HKLM][64Bits] -- {80A07844-CA64-4DE4-AB61-D37DDBE8074F}
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Presto! BizCard 4.1 Fre - (...) [HKLM][64Bits] -- Uninstall Presto! BizCard 4.1 Fre
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}
O42 - Logiciel: Race On - (.SimBin.) [HKLM][64Bits] -- Race On_is1
O42 - Logiciel: Ralink RT2860 Wireless LAN Card - (.Ralink.) [HKLM][64Bits] -- {E883ECE4-1189-413A-894D-B7C4B17F0607}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: RootsMagic 6.0.0.5 - (.RootsMagic, Inc..) [HKLM][64Bits] -- {94433E0D-764C-4964-AD0B-EC46BCA7E68E}_is1
O42 - Logiciel: R�ussir ses CV et Lettres de Motivation - (...) [HKLM][64Bits] -- {64914710-F0F3-4E51-BFF7-145075A7F204}
O42 - Logiciel: ScanToWeb - (...) [HKLM][64Bits] -- {EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Shockwave - (...) [HKLM][64Bits] -- Shockwave
O42 - Logiciel: Skype� 6.7 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Smiley Bar for Facebook - (.Plus Winks.) [HKLM][64Bits] -- Smiley Bar for Facebook =>Adware.SmileyBar
O42 - Logiciel: Speed Analysis 2 - (.SpeedAnalysis.com.) [HKLM][64Bits] -- Speed Analysis 2 =>PUP.SpeedAnalysis
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Streaming Audio Recorder V2.5.2 - (.Apowersoft.) [HKLM][64Bits] -- {B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1
O42 - Logiciel: SweetIM for Messenger 3.7 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {A0C9DF2B-89B5-4483-8983-18A68200F1B4} =>PUP.SweetIM
O42 - Logiciel: SweetPacks bundle uninstaller - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {0C43FE6B-E881-4AFC-B384-4AEBC90047E8} =>PUP.SweetIM
O42 - Logiciel: Tarot et belote - (...) [HKLM][64Bits] -- {2633B581-9709-11D9-B7E0-00C04F4351FF}
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: Titan Quest - (.Iron Lore.) [HKLM][64Bits] -- {412B69AF-C352-4F6F-A318-B92B3CB9ACC6}
O42 - Logiciel: Titan Quest Immortal Throne - (.Iron Lore.) [HKLM][64Bits] -- {B5C5C17E-FEF6-4062-8151-A427AE8AF9D7}
O42 - Logiciel: Titan Quest Immortal Throne - (.THQ.) [HKLM][64Bits] -- Titan Quest Immortal Throne
O42 - Logiciel: UEFA EURO 2012 - (...) [HKLM][64Bits] -- UEFA EURO 2012_is1
O42 - Logiciel: Update Manager for SweetPacks 1.1 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {EA8FA6BE-29BE-4AF2-9352-841F83215EB0} =>PUP.SweetIM
O42 - Logiciel: VLC media player 2.0.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Visual Studio 2010 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {21B133D6-5979-47F0-BE1C-F6A6B304693F}
O42 - Logiciel: Volvo - The Game - (.SimBin.) [HKLM][64Bits] -- Volvo - The Game_is1
O42 - Logiciel: Votre sant� au quotidien - (...) [HKLM][64Bits] -- Votre sant� au quotidien
O42 - Logiciel: WebPlayerV2 - (.Kreapixel.) [HKLM][64Bits] -- {F21ABA47-CE22-4B3D-8F47-8BF08C21C094} =>Adware.SocialSkinz
O42 - Logiciel: Yontoo 1.12.02 - (.Yontoo LLC.) [HKLM][64Bits] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B} =>Adware.Yontoo
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {10D4BC5F-F73E-4CD1-A7C2-DF215307A811}
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {737B13C5-990B-4339-8A4D-0FFEBBC3DB17}
O42 - Logiciel: ZoneAlarm Free Firewall - (.Check Point.) [HKLM][64Bits] -- ZoneAlarm Free Firewall
O42 - Logiciel: ZoneAlarm Security - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {16456401-9621-4F3D-836A-59EA425C471D}
O42 - Logiciel: ZoneAlarm Security - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {2756F572-C383-4A2E-B1F6-7315E6DA308A}
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM][64Bits] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 173 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\7-Zip]
[HKCU\Software\ASProtect]
[HKCU\Software\ASUS]
[HKCU\Software\ATI]
[HKCU\Software\AVS]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow\SProtector] =>PUP.Mocaflix
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\SmartBar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Avg]
[HKCU\Software\Check Point Software Technologies LTD]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DT Soft]
[HKCU\Software\DVDFab]
[HKCU\Software\Digital Reality]
[HKCU\Software\DivXNetworks]
[HKCU\Software\ECAREME]
[HKCU\Software\EMME]
[HKCU\Software\EPSON]
[HKCU\Software\ESET]
[HKCU\Software\FileScout]
[HKCU\Software\Freeware]
[HKCU\Software\GoforFiles] =>P2P.GoforFiles
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\JavaSoft]
[HKCU\Software\Legacy Interactive]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\PDF Architect]
[HKCU\Software\PDFCreator]
[HKCU\Software\PerformerSoft LLC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Remedy Entertainment]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Smart Panel]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Streaming Audio Recorder]
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Video Works]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zone Labs]
[HKCU\Software\cybelsoft]
[HKLM\Software\7-Zip]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CBSTEST]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\ESET]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKLM\Software\TuneUp]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\AVG Secure Search] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\AVS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Avg]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\CheckPoint]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\DirectDownloader] =>PUP.DirectDownloader
[HKLM\Software\Wow6432Node\EA Sports]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\ESET]
[HKLM\Software\Wow6432Node\FUJIFILM]
[HKLM\Software\Wow6432Node\GYOZA]
[HKLM\Software\Wow6432Node\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Iron Lore]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\Mindscape]
[HKLM\Software\Wow6432Node\Monte Cristo]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\NewSoft]
[HKLM\Software\Wow6432Node\Nival Interactive]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\PDFCreator]
[HKLM\Software\Wow6432Node\PocketSoft]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Ralink]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Remedy Entertainment]
[HKLM\Software\Wow6432Node\RootsMagic Shared]
[HKLM\Software\Wow6432Node\SBDT AB]
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.Mocaflix
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Smart Panel]
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Ubisoft]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Wizards of the Coast]
[HKLM\Software\Wow6432Node\Zone Labs]
[HKLM\Software\Wow6432Node\cybelsoft]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 244 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 18/01/2013 - 02:47:25 - [456,713] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 17/01/2013 - 18:22:39 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 22/01/2013 - 15:28:06 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 18/01/2013 - 02:47:26 - [417,741] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 18/01/2013 - 02:47:26 - [124,137] ----D C:\Program Files (x86)\AVG
O43 - CFD: 18/01/2013 - 02:47:26 - [29,392] ----D C:\Program Files (x86)\CheckPoint
O43 - CFD: 23/08/2013 - 10:45:27 - [676,336] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 24/01/2013 - 12:30:24 - [6,400] ----D C:\Program Files (x86)\epson
O43 - CFD: 24/01/2013 - 12:35:23 - [8,251] ----D C:\Program Files (x86)\Epson Software
O43 - CFD: 03/02/2013 - 16:37:28 - [1,086] ----D C:\Program Files (x86)\FirstRowSportApp.com
O43 - CFD: 27/01/2013 - 22:16:14 - [4,444] ----D C:\Program Files (x86)\GoforFiles =>P2P.GoforFiles
O43 - CFD: 03/02/2013 - 16:37:34 - [0,055] ----D C:\Program Files (x86)\Gophoto.it =>Spyware.GophotoIt
O43 - CFD: 07/08/2013 - 14:14:29 - [113,864] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 18/01/2013 - 02:47:27 - [24,800] ----D C:\Program Files (x86)\Intel
O43 - CFD: 22/01/2013 - 15:28:29 - [7,303] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 07/08/2013 - 14:14:31 - [0] ----D C:\Program Files (x86)\Larousse
O43 - CFD: 27/01/2013 - 09:23:57 - [51,458] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 23/01/2013 - 13:01:31 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 18/01/2013 - 02:47:27 - [3,469] ----D C:\Program Files (x86)\Microsoft Chart Controls
O43 - CFD: 18/01/2013 - 02:47:27 - [6,126] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 22/01/2013 - 14:21:50 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/01/2013 - 02:47:27 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 18/01/2013 - 15:53:24 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 18/01/2013 - 15:51:40 - [56,656] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 23/01/2013 - 13:00:35 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 18/01/2013 - 15:53:19 - [7,774] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 15/01/2013 - 13:15:27 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 18/01/2013 - 15:53:26 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 27/03/2012 - 01:25:36 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 24/01/2013 - 11:18:55 - [32,666] ----D C:\Program Files (x86)\NewSoft
O43 - CFD: 17/01/2013 - 18:22:49 - [99,899] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 30/03/2013 - 09:43:01 - [90,585] ----D C:\Program Files (x86)\PDF Architect
O43 - CFD: 18/01/2013 - 02:47:31 - [5,937] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 18/01/2013 - 02:47:31 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 28/01/2013 - 19:18:40 - [0] ----D C:\Program Files (x86)\SimBin
O43 - CFD: 23/08/2013 - 10:45:27 - [20,004] R---D C:\Program Files (x86)\Skype
O43 - CFD: 24/01/2013 - 11:16:58 - [87,055] ----D C:\Program Files (x86)\Smart Panel
O43 - CFD: 06/06/2013 - 22:44:21 - [1,793] ----D C:\Program Files (x86)\Smiley Bar for Facebook =>Adware.SmileyBar
O43 - CFD: 06/06/2013 - 22:44:28 - [1,593] ----D C:\Program Files (x86)\Speed Analysis 2 =>PUP.SpeedAnalysis
O43 - CFD: 18/01/2013 - 02:48:48 - [163,040] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 27/03/2012 - 01:09:36 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 18/01/2013 - 02:47:31 - [94,079] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 23/01/2013 - 21:56:33 - [18,740] ----D C:\Program Files (x86)\WebPlayer
O43 - CFD: 18/01/2013 - 02:47:31 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 18/01/2013 - 02:47:31 - [256,796] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 18/01/2013 - 02:47:31 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 18/01/2013 - 02:47:31 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 18/01/2013 - 02:47:31 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/01/2013 - 02:47:31 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 18/01/2013 - 02:47:31 - [6,039] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 11/09/2013 - 01:52:03 - [17,261] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 11/02/2013 - 21:56:23 - [18,571] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 22/01/2013 - 15:28:08 - [64,235] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 16/01/2013 - 14:13:39 - [0] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 18/01/2013 - 15:53:24 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 18/01/2013 - 02:47:26 - [8,018] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 09/08/2013 - 20:50:00 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 18/01/2013 - 02:47:26 - [15,002] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 23/01/2013 - 13:00:45 - [348,280] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 18/01/2013 - 02:47:26 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 03/03/2013 - 21:57:38 - [136,875] ----D C:\Program Files (x86)\Common Files\RootsMagic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 23/08/2013 - 10:45:27 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 18/01/2013 - 02:47:26 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 10/07/2013 - 12:53:37 - [0,533] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 24/01/2013 - 11:53:12 - [42,254] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 18/01/2013 - 02:47:26 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 18/01/2013 - 09:18:13 - [21,923] ----D C:\ProgramData\Adobe
O43 - CFD: 22/01/2013 - 15:28:06 - [22,681] ----D C:\ProgramData\Apple
O43 - CFD: 22/01/2013 - 15:28:24 - [25,485] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 18/01/2013 - 02:47:32 - [71,939] ----D C:\ProgramData\ASUS
O43 - CFD: 27/03/2012 - 01:19:05 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 22/01/2013 - 12:44:00 - [8,430] ----D C:\ProgramData\AVG January 2013 Campaign
O43 - CFD: 18/01/2013 - 02:47:32 - [270,564] ----D C:\ProgramData\AVG2013
O43 - CFD: 15/01/2013 - 11:31:09 - [89,549] ----D C:\ProgramData\CheckPoint
O43 - CFD: 15/01/2013 - 12:09:41 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 23/01/2013 - 16:41:18 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 25/01/2013 - 12:43:18 - [0] ----D C:\ProgramData\dvdfab
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 01/06/2013 - 08:52:16 - [1,772] ----D C:\ProgramData\InstallMate
O43 - CFD: 27/03/2012 - 01:15:28 - [0,501] ----D C:\ProgramData\Intel
O43 - CFD: 15/01/2013 - 21:14:24 - [1,284] ----D C:\ProgramData\ma-config.com
O43 - CFD: 18/01/2013 - 02:47:32 - [5,477] ----D C:\ProgramData\MAGIX
O43 - CFD: 19/07/2013 - 10:12:29 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 10/09/2013 - 17:06:22 - [222,548] ----D C:\ProgramData\MFAData
O43 - CFD: 01/02/2013 - 13:03:16 - [1466,854] -S--D C:\ProgramData\Microsoft
O43 - CFD: 27/01/2013 - 09:22:15 - [0,066] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 15/01/2013 - 13:15:27 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 10/09/2013 - 08:08:04 - [2,326] ----D C:\ProgramData\NVIDIA
O43 - CFD: 17/01/2013 - 18:22:05 - [2,102] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 30/03/2013 - 09:37:08 - [0] ----D C:\ProgramData\PDF Architect
O43 - CFD: 18/01/2013 - 02:47:32 - [4,237] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 16/01/2013 - 01:20:13 - [0,000] ----D C:\ProgramData\Real
O43 - CFD: 03/03/2013 - 21:57:31 - [0,002] ----D C:\ProgramData\RootsMagic
O43 - CFD: 03/03/2013 - 21:57:31 - [3,157] ----D C:\ProgramData\RootsMagic Shared
O43 - CFD: 23/08/2013 - 10:45:29 - [22,466] ----D C:\ProgramData\Skype
O43 - CFD: 12/04/2013 - 00:17:39 - [0] ----D C:\ProgramData\SoftSafe
O43 - CFD: 01/02/2013 - 10:14:39 - [21,070] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 09/08/2013 - 20:50:01 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 07/08/2013 - 14:15:08 - [2,571] ----D C:\ProgramData\Tarma Installer =>Toolbar.Tarma
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 15/01/2013 - 01:02:43 - [0,983] ----D C:\ProgramData\Trend Micro
O43 - CFD: 15/01/2013 - 17:54:08 - [0,290] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 15/01/2013 - 17:54:04 - [23,027] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 29/01/2013 - 21:48:11 - [4,189] ----D D:\Users\Beardy\AppData\Roaming\Adobe
O43 - CFD: 09/02/2013 - 11:37:06 - [0,092] ----D D:\Users\Beardy\AppData\Roaming\Apowersoft
O43 - CFD: 29/01/2013 - 21:48:11 - [0,024] ----D D:\Users\Beardy\AppData\Roaming\Apple Computer
O43 - CFD: 29/01/2013 - 21:48:11 - [0,481] ----D D:\Users\Beardy\AppData\Roaming\APP_NAME_NON_STRING
O43 - CFD: 11/04/2013 - 10:00:06 - [15,577] ----D D:\Users\Beardy\AppData\Roaming\ASUS WebStorage
O43 - CFD: 29/01/2013 - 21:48:11 - [0,208] ----D D:\Users\Beardy\AppData\Roaming\AVG2013
O43 - CFD: 19/05/2013 - 18:14:09 - [0,259] ----D D:\Users\Beardy\AppData\Roaming\Check Point Software Technologies LTD
O43 - CFD: 29/01/2013 - 21:48:11 - [0,018] ----D D:\Users\Beardy\AppData\Roaming\CheckPoint
O43 - CFD: 08/07/2013 - 13:03:26 - [0,775] ----D D:\Users\Beardy\AppData\Roaming\CVitae
O43 - CFD: 01/04/2013 - 13:52:17 - [1,038] ----D D:\Users\Beardy\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 26/07/2013 - 23:33:11 - [0,004] ----D D:\Users\Beardy\AppData\Roaming\dvdcss
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\DVDFab
O43 - CFD: 06/06/2013 - 22:43:52 - [0,308] ----D D:\Users\Beardy\AppData\Roaming\File Scout
O43 - CFD: 29/01/2013 - 21:48:12 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\GoforFiles =>P2P.GoforFiles
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Identities
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\InstallShield
O43 - CFD: 29/01/2013 - 21:48:11 - [0,077] ----D D:\Users\Beardy\AppData\Roaming\Macromedia
O43 - CFD: 29/01/2013 - 21:48:11 - [0,013] ----D D:\Users\Beardy\AppData\Roaming\MAGIX
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Media Center Programs
O43 - CFD: 10/02/2013 - 00:03:42 - [4,688] -S--D D:\Users\Beardy\AppData\Roaming\Microsoft
O43 - CFD: 29/01/2013 - 21:48:11 - [173,176] ----D D:\Users\Beardy\AppData\Roaming\Mozilla
O43 - CFD: 29/01/2013 - 21:48:11 - [0,008] ----D D:\Users\Beardy\AppData\Roaming\NVIDIA
O43 - CFD: 29/01/2013 - 21:48:11 - [27,244] ----D D:\Users\Beardy\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 29/01/2013 - 21:48:11 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\PDF Architect
O43 - CFD: 29/01/2013 - 21:48:11 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\pdfforge
O43 - CFD: 29/01/2013 - 21:48:12 - [0,005] ----D D:\Users\Beardy\AppData\Roaming\PeaZip
O43 - CFD: 07/06/2013 - 08:15:08 - [0] ----D D:\Users\Beardy\AppData\Roaming\PerformerSoft
O43 - CFD: 06/06/2013 - 22:43:57 - [0,056] ----D D:\Users\Beardy\AppData\Roaming\PlusWinks
O43 - CFD: 03/03/2013 - 21:57:31 - [0,033] ----D D:\Users\Beardy\AppData\Roaming\RootsMagic
O43 - CFD: 11/05/2013 - 23:33:27 - [0,010] R-H-D D:\Users\Beardy\AppData\Roaming\SecuROM
O43 - CFD: 08/09/2013 - 09:03:48 - [4,614] ----D D:\Users\Beardy\AppData\Roaming\Skype
O43 - CFD: 29/01/2013 - 21:48:12 - [0,119] ----D D:\Users\Beardy\AppData\Roaming\Smart Panel
O43 - CFD: 06/06/2013 - 22:44:08 - [0,079] ----D D:\Users\Beardy\AppData\Roaming\SpeedAnalysis2 =>PUP.SpeedAnalysis
O43 - CFD: 12/04/2013 - 00:19:16 - [0] ----D D:\Users\Beardy\AppData\Roaming\Systweak
O43 - CFD: 10/09/2013 - 20:59:18 - [0,262] ----D D:\Users\Beardy\AppData\Roaming\TS3Client
O43 - CFD: 29/01/2013 - 21:48:11 - [0,009] ----D D:\Users\Beardy\AppData\Roaming\TuneUp Software
O43 - CFD: 11/09/2013 - 01:19:47 - [0,682] ----D D:\Users\Beardy\AppData\Roaming\vlc
O43 - CFD: 29/01/2013 - 21:48:12 - [0,039] ----D D:\Users\Beardy\AppData\Roaming\WebPlayerBdd =>Adware.SocialSkinz
O43 - CFD: 29/01/2013 - 21:48:11 - [0,000] ----D D:\Users\Beardy\AppData\Roaming\Windows Live Writer
O43 - CFD: 09/08/2013 - 12:18:17 - [15,272] ----D D:\Users\Beardy\AppData\Local\Adobe
O43 - CFD: 12/07/2013 - 20:57:34 - [13,716] ----D D:\Users\Beardy\AppData\Local\adslTV
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Apple
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Apple Computer
O43 - CFD: 29/01/2013 - 21:53:23 - [12,766] ----D D:\Users\Beardy\AppData\Local\Avg2013
O43 - CFD: 29/01/2013 - 21:53:23 - [1,711] ----D D:\Users\Beardy\AppData\Local\fontconfig
O43 - CFD: 29/01/2013 - 21:53:23 - [0,001] ----D D:\Users\Beardy\AppData\Local\gegl-0.2
O43 - CFD: 12/04/2013 - 00:04:14 - [0,295] ----D D:\Users\Beardy\AppData\Local\Google
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Macromedia
O43 - CFD: 07/08/2013 - 14:13:50 - [0,000] ----D D:\Users\Beardy\AppData\Local\messengerdusexe
O43 - CFD: 29/01/2013 - 21:53:23 - [25,757] ----D D:\Users\Beardy\AppData\Local\MFAData
O43 - CFD: 01/02/2013 - 14:49:27 - [1263,680] ----D D:\Users\Beardy\AppData\Local\Microsoft
O43 - CFD: 30/07/2013 - 05:57:42 - [0,223] ----D D:\Users\Beardy\AppData\Local\Microsoft Games
O43 - CFD: 30/03/2013 - 21:37:16 - [0,296] ----D D:\Users\Beardy\AppData\Local\Microsoft Help
O43 - CFD: 29/01/2013 - 21:53:23 - [22,999] ----D D:\Users\Beardy\AppData\Local\Mozilla
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Programs
O43 - CFD: 01/09/2013 - 23:32:19 - [72,730] ----D D:\Users\Beardy\AppData\Local\TeamSpeak 3 Client
O43 - CFD: 29/01/2013 - 21:53:25 - [11,838] ----D D:\Users\Beardy\AppData\Local\Temp
O43 - CFD: 29/01/2013 - 21:53:23 - [4,120] ----D D:\Users\Beardy\AppData\Local\VirtualStore
O43 - CFD: 27/06/2013 - 02:16:46 - [0,082] ----D D:\Users\Beardy\AppData\Local\Windows Live
O43 - CFD: 29/01/2013 - 21:53:23 - [0,618] ----D D:\Users\Beardy\AppData\Local\Windows Live Writer
O43 - CFD: 29/01/2013 - 21:48:15 - [0,013] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/01/2013 - 21:48:15 - [0,000] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 03/04/2013 - 09:53:23 - [0,005] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
O43 - CFD: 08/07/2013 - 12:38:45 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CVitaeV4
O43 - CFD: 03/02/2013 - 16:36:59 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FirstRowSportApp.com
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Frontline - Fields of Thunder
O43 - CFD: 23/07/2013 - 17:00:59 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 11/02/2013 - 21:59:23 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Larousse
O43 - CFD: 29/01/2013 - 21:48:15 - [0,001] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monte Cristo
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nathan
O43 - CFD: 07/08/2013 - 14:13:50 - [0,000] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 29/01/2013 - 21:48:15 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 01/09/2013 - 23:32:19 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 11/05/2013 - 23:31:48 - [0,009] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Titan Quest Immortal Throne
~ 143 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 328 Scanned in 00mn 07s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.066F13E5AAECDD18727718867FE5347F] - 10/09/2013 - 23:39:43 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1126139]
O44 - LFC:[MD5.C8F8304C840FF24767E719D0CFD6F077] - 10/09/2013 - 20:02:17 ---A- . (...) -- C:\Windows\setupact.log [2856]
O44 - LFC:[MD5.4DE67443CF2E3BB40C3FDC763A245861] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1555322]
O44 - LFC:[MD5.E6C93F6DD6E077B7F72E8A0F6D436E20] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [107122]
O44 - LFC:[MD5.ACA9E4414BC543A3CCDA50ED4F862C6A] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [131230]
O44 - LFC:[MD5.57282AA4467A4F3034E80A0D98CC7684] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [618404]
O44 - LFC:[MD5.BD46CBBA44EC1F5F4243F98B289C2E30] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [706178]
O44 - LFC:[MD5.4DE67443CF2E3BB40C3FDC763A245861] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\PerfStringBackup.INI [1555322]
O44 - LFC:[MD5.E6C93F6DD6E077B7F72E8A0F6D436E20] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfc009.dat [107122]
O44 - LFC:[MD5.ACA9E4414BC543A3CCDA50ED4F862C6A] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat [131230]
O44 - LFC:[MD5.57282AA4467A4F3034E80A0D98CC7684] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfh009.dat [618404]
O44 - LFC:[MD5.BD46CBBA44EC1F5F4243F98B289C2E30] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat [706178]
O44 - LFC:[MD5.280E1C3AF22FEA772AEA2C1F4DA5AC83] - 10/09/2013 - 13:26:45 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.96BDE90B92867C595AC4A9661A842BB4] - 01/09/2013 - 06:36:21 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [515168]
O44 - LFC:[MD5.96BDE90B92867C595AC4A9661A842BB4] - 01/09/2013 - 06:36:21 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT [515168]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 31/08/2013 - 04:45:42 ---A- . (...) -- C:\Windows\setuperr.log [0]
~ Files: 16 Scanned in 00mn 02s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/09/2200 - 00:50:19 - C:\Windows\Prefetch\ReadyBoot
~ Prefetcher: 1 Scanned in 00mn 00s
---\\ Export de cl� d'application autoris�e (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
~ Keys Export: 4 Scanned in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s
---\\ Cl� de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{02a76299-74f1-11e2-bb94-10bf484d8da6}\AutoRun\command. (...) -- H:\Autorun.exe
O51 - MPSK:{04bab9ea-7288-11e2-a5f2-10bf484d8da6}\AutoRun\command. (...) -- E:\WD SmartWare.exe (.not file.)
O51 - MPSK:{91196a89-6565-11e2-864f-446d57711253}\AutoRun\command. (.Macrovision Corporation - DemoShield Multi-CD Launch.) -- G:\Launch.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\ASUSWebStorage [Key] . (.ASUS Cloud Corporation - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.143.296\AsusWSPanel.exe
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- D:\Mes Programmes\Steam\steam.exe
~ SMSR Keys: 4 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 4 Scanned in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.A41B855EDC1F141851E27F984827942C] - 21/10/2010 - 05:05:18 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\SysWOW64\drivers\AiCharger.sys [14592]
~ Drivers: 16 Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 10/09/2013 - 20:04:24 ---A- . (...) -- C:\Users\Beardy\.thumbnails\normal\a2177e7327191ce921fbe713841539b3.png [15454]
O61 - LFC: 10/09/2013 - 20:09:34 ---A- . (...) -- C:\Users\Beardy\.thumbnails\normal\7545998c1f9f5b28efe3d5676a7cb79b.png [5769]
O61 - LFC: 10/09/2013 - 21:21:03 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\themerc [360]
O61 - LFC: 10/09/2013 - 21:21:05 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\pluginrc [277962]
O61 - LFC: 10/09/2013 - 21:21:06 ---A- . (...) -- C:\Users\Beardy\.thumbnails\normal\bf6891384269fecdb75366bb00255855.png [5438]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\colorrc [739]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\controllerrc [1863]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\dockrc [1123]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\menurc [77569]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\parasiterc [102]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\sessionrc [2081]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\tags.xml [34341]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\templaterc [4817]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\tool-presets\Texte.gtp [341]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\toolrc [3996]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\unitrc [1178]
~ Files: 16 Scanned in 00mn 01s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adp94xx.sys (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpahci.sys (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpu320.sys (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320
O64 - Services: CurCS - 26/03/2012 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\aliide.sys (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdide.sys (amdide) .(.Microsoft Corporation - Pilote IDE AMD.) - LEGACY_AMDIDE
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\amdsata.sys (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdsbs.sys (amdsbs) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arc.sys (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arcsas.sys (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - 04/01/2008 - Pas de propri�taire (ASInsHelp) .(...) - LEGACY_ASINSHELP
O64 - Services: CurCS - 24/08/2010 - Pas de propri�taire (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 03/08/2010 - Pas de propri�taire (AsUpIO) .(...) - LEGACY_ASUPIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgidsdrivera.sys (AVGIDSDriver) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgidsha.sys (AVGIDSHA) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSHA
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgldx64.sys (Avgldx64) .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX64
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgloga.sys (Avgloga) .(.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) - LEGACY_AVGLOGA
O64 - Services: CurCS - 01/07/2013 - C:\Windows\System32\DRIVERS\avgmfx64.sys (Avgmfx64) .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX64
O64 - Services: CurCS - 10/07/2013 - C:\Windows\System32\DRIVERS\avgrkx64.sys (Avgrkx64) .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX64
O64 - Services: CurCS - 21/03/2013 - C:\Windows\System32\DRIVERS\avgtdia.sys (Avgtdia) .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\cmdide.sys (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\compbatt.sys (Compbatt) .(.Microsoft Corporation - Composite Battery Driver.) - LEGACY_COMPBATT
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 02/01/1601 - Pas de propri�taire (eamonm) .(...) - LEGACY_EAMONM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\elxstor.sys (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\HpSAMD.sys (HpSAMD) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 29/11/2011 - C:\Windows\System32\drivers\iaStor.sys (iaStor) .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\iaStorV.sys (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\iirsp.sys (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\intelide.sys (intelide) .(.Microsoft Corporation - Intel PCI IDE Driver.) - LEGACY_INTELIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\isapnp.sys (isapnp) .(.Microsoft Corporation - Pilote de bus PNP ISA.) - LEGACY_ISAPNP
O64 - Services: CurCS - 22/11/2012 - C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys (ISWKL) .(.Check Point Software Technologies - ZoneAlarm Browser Security.) - LEGACY_ISWKL
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_fc.sys (LSI_FC) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas.sys (LSI_SAS) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas2.sys (LSI_SAS2) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_scsi.sys (LSI_SCSI) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\megasas.sys (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\MegaSR.sys (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\webclnt.dll (MRxDAV) .(.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) - LEGACY_MRXDAV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\msdsm.sys (msdsm) .(.Microsoft Corporation - Module sp�cifique de p�riph�riques Microsof.) - LEGACY_MSDSM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 02/07/2010 - C:\Windows\System32\drivers\mv91xx.sys (mv91xx) .(.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) - LEGACY_MV91XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\nfrd960.sys (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA� nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\nvstor.sys (nvstor) .(.NVIDIA Corporation - NVIDIA� nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pciide.sys (pciide) .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_PCIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql2300.sys (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql40xx.sys (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\sbp2port.sys (sbp2port) .(.Microsoft Corporation - SBP-2 Protocol Driver.) - LEGACY_SBP2PORT
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\SiSRaid2.sys (SiSRaid2) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\sisraid4.sys (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 23/01/2013 - C:\Windows\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\stexstor.sys (stexstor) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\viaide.sys (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 13/12/2012 - C:\Windows\System32\DRIVERS\vsdatant.sys (Vsdatant) .(.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - LEGACY_VSDATANT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\vsmraid.sys (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\wd.sys (Wd) .(.Microsoft Corporation - Microsoft Watchdog Timer Driver.) - LEGACY_WD
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 122 Scanned in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3240727&SearchSource=13&CUI=UN89362323271951849"); =>Hijacker.SmartBar
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("Smartbar.ConduitSearchEngineList", "findr Customized Web Search"); =>Hijacker.SmartBar
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("Smartbar.ConduitSearchUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3240727&SearchSource=2&CUI=UN89362323[...] =>Hijacker.SmartBar
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("aol_toolbar.default.homepage.check", false);
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("aol_toolbar.default.search.check", false);
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("browser.search.defaultthis.engineName", "findr Customized Web Search");
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("extensions.5167333498382.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,se[...] =>Toolbar.Babylon
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("extensions.BabylonToolbar.prtkDS", 0); =>Toolbar.Babylon
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("extensions.BabylonToolbar.prtkHmpg", 0); =>Toolbar.Babylon
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.RevertDialog.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "1360337648291"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.Visibility.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.Visibility.intervaldays", "7"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.HideOveride.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.returnValue", "disable"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.height", "335"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.url", "http://www.sweetim.com/simffbar/options_remote_ff.asp?lang=$locale_id;&toolbar_version[...] =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.width", "761"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.height", "300"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.width", "500"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handler.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.height", "150"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.url", "http://www.sweetim.com/simffbar/simcdadialog.asp"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.width", "530"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.google.com/.*|.*.google.co.in/.*|.[...] =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.mode.debug", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.newtab.created", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.newtab.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.browser.startup.homepage", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.keyword.URL", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.rc.url", "http://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_VERSION;&crg=$cargo;"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.callback", "simVerification"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.domain-blacklist", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "http://(www.|apps.)?facebook\\.com.*"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.url", "http://sc.sweetim.com/apps/in/fb/infb.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.callback", "simVerification"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "https://(www.|apps.)?facebook\\.com.*"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.elementid", "id_script_sim_fb"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.id", "id_script_fb_httpS"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.url", "https://sc.sweetim.com/apps/in/fb/infb.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.callback", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..*|.*.yahoo..*|.*.youtube.com.*[...] =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.domain-whitelist", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.elementid", "id_predict_include_script"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.id", "id_script_prad"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.url", "http://cdn1.certified-apps.com/scripts/shared/enable.js?si=3104&tid=chff1"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.search.external", "PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.search.history.capacity", "10"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.simapp_id", "{FFDF4690-6596-11E2-864F-446D57711253}"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.version", "1.9.0.0"); =>PUP.SweetIM
O69 - SBI: SearchScopes [HKCU] {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} [DefaultScope] - (WebSearch) - http://websearch.helpmefindyour.info
~ Keys: Scanned in 00mn 00s
---\\ Enum�re les fichiers Crack & Keygen (CKF) (O82)
---\\ Enum�re les service demarr�s par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Services: 32 Scanned in 00mn 00s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.AD678375C17DA1EE5DC6514C0DB8B644] [SPRF][28/01/2013] (.Sony DADC Austria AG - SecuROM dynamic-data module.) -- C:\Users\Beardy\AppData\Local\Temp\drm_dyndata_7400006.dll [204800]
~ Files: 1 Scanned in 00mn 00s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{6C441092-61E9-497C-9577-9374CD99BF65}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{9B18A4B4-5FCC-41CE-B222-A243F118D8AA}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{CD7F1A45-A51D-4BAB-914A-C20BEF63B299}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
O87 - FAEL: "{C4C41E45-94EA-43C1-A733-2D3B82E459D7}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{50BF792E-5824-476A-8D90-DF1966ED1029}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{ACB7FAF2-455D-403B-9E62-2C2FDBB077C4}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{B963E1A7-1F46-435C-82C4-54553962F09E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{F74C7F1F-DAB1-4546-A4AB-242E7C72CA2B}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{BB7323EE-0AD5-4B96-9A7C-FB7E310B10EE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{57E07F92-A57D-467A-9651-FC11B668936F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DB4A8561-D579-45EB-B246-CC344932AE7D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{7619C735-4056-4ED0-BE27-25B7EA164DC2}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{B95FF5C8-E01E-4C3F-9030-7DFFCCE1DEDE}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{9150EE0E-2F97-409A-80C8-D41DF621812D}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{9C3D99DE-5B7F-46A2-BCBD-ACAF8F0AD49F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{80BF583F-4C63-454F-A869-B4D2ED26189A}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{256CE850-0758-4E35-846E-6EFA6E1796CB}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{D346DDEA-2FC6-4832-8B76-D7F55E7676B5}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{9AB85B1D-A115-4FB6-86E3-FA60F0A2AEDF}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{76047035-D6B0-4C67-B5E3-9CC9C8FEDFB3}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{83203FDE-B178-40B6-A341-03DE4F74702D}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{8946D57B-6B67-49A3-BD0F-1E20B1823C89}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{299BDE36-A313-401C-AAF0-DBFD384B6845}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{988F92E9-CCD8-4AB7-ABC7-E6BC5D3C2DA2}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- D:\Mes Programmes\Steam\Steam.exe
O87 - FAEL: "{EA674962-466E-45AA-8466-17ACAE00C20C}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- D:\Mes Programmes\Steam\Steam.exe
O87 - FAEL: "{37312643-84CA-492A-8CCD-0C331B8520CD}" | In - Private - P6 - TRUE | .(...) -- D:\Mes Programmes\Steam\SteamApps\common\Magic 2013\DotP_D13.exe
O87 - FAEL: "{8A90ADB5-D9E3-4C76-B912-ADA55990CBB4}" | In - Private - P17 - TRUE | .(...) -- D:\Mes Programmes\Steam\SteamApps\common\Magic 2013\DotP_D13.exe
O87 - FAEL: "{9DE165C1-C0CC-45D9-A951-91869F9DFE2E}" | In - Private - P6 - TRUE | .(.adsl TV / FM - adsl TV.) -- D:\Mes Programmes\adslTV\adsltv.exe
O87 - FAEL: "{E2D98044-7BE2-4371-ADF8-50DF0314A92A}" | In - Private - P17 - TRUE | .(.adsl TV / FM - adsl TV.) -- D:\Mes Programmes\adslTV\adsltv.exe
O87 - FAEL: "{CDC7AC62-890E-4578-8F91-19BD0D609F64}" | In - Private - P6 - TRUE | .(.VideoLAN - VLC media player 2.0.8.) -- D:\Mes Programmes\adslTV\VLC\vlc.exe
O87 - FAEL: "{789433DA-CF4E-41DA-85B9-85EC145F058F}" | In - Private - P17 - TRUE | .(.VideoLAN - VLC media player 2.0.8.) -- D:\Mes Programmes\adslTV\VLC\vlc.exe
O87 - FAEL: "{3541D243-D6D8-45E9-851C-0491C6F634E2}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{FC9BCBD0-5E87-441E-84B8-6BA4C90042E8}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{CA9FB789-6157-4408-864C-1D173DD8BDBE}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{59DCBFE6-A175-4B09-8E48-5F9D1E963AFB}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{A660760A-E789-415B-B627-CF1FC196DC10}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- D:\Mes Programmes\Microsoft Office\Office12\outlook.exe
O87 - FAEL: "{E98CE2ED-BDFF-4CD7-A0B9-81D50D95BB90}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{E4634935-E448-4975-9F96-B7242ACE22FE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Installateur Windows�.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{CB213E51-73F6-49C5-BF96-E8D5B3F3A872}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Installateur Windows�.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{EE0CD588-23DC-49F6-9197-3F6AC7EA1EF1}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "{A16A0E3C-00D0-4ACA-ABD6-A00066756FDC}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4DBCDF3D-2721-40C8-AA12-E3624F1ED302}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{CB6E44C0-E974-4AC1-A860-514093523404}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{4638A643-A181-4A3F-A2C4-513D13741BDB}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{EF358F3A-D753-46D5-9A63-51DEEA26CF90}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{E14A3F75-C17A-459D-A7F5-F8B90B84C62A}" |In - Private - P6 - TRUE | .(...) -- C:\Users\Beardy\AppData\Local\DirectDownloader\DirectDownloader.exe (.not file.) =>PUP.DirectDownloader
O87 - FAEL: "{7D3B112C-A974-45C0-BC4E-ABB75DD695D6}" |In - Private - P17 - TRUE | .(...) -- C:\Users\Beardy\AppData\Local\DirectDownloader\DirectDownloader.exe (.not file.) =>PUP.DirectDownloader
O87 - FAEL: "{41BD8FB7-7884-4DB9-9DC3-58C4E68405CE}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
O87 - FAEL: "{AD358EAD-9720-4E96-99FF-DAC6C9318EFE}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
O87 - FAEL: "{09C8A9BD-BCD7-4603-A12E-C51FD5F37BE1}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
O87 - FAEL: "{C7E13227-23CB-4875-B5E9-BE728C1AE766}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
O87 - FAEL: "{A132F862-EF17-4080-9FB5-F814C48D65F3}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
O87 - FAEL: "{1A58BC6F-3952-4F71-A2B7-099131B0566E}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
O87 - FAEL: "{3FF94D9B-22FD-45AC-8515-13AFFACBDE92}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
O87 - FAEL: "{67454923-8733-422D-9BA6-03D968273E81}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
O87 - FAEL: "{DC711F39-2382-403F-AD66-FA5B193B4D6E}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
~ Firewall: 224 Scanned in 00mn 00s
---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "02F12AEC4FBDC464B818828B05A8DFDD" . (.Windows Live Family Safety.) -- C:\Windows\Installer\{CEA21F20-DBF4-464C-8B81-28B8508AFDDD}\fssicon.ico
O90 - PUC: "03E9C206838F2DA4D82C62C591D2A4CA" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{602C9E30-F838-4AD2-8DC2-265C192D4AAC}\maconfico
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "0C7EC0FA4E3A37D489B82B1978CEE6A9" . (.QuickTime.) -- C:\Windows\Installer\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}\Installer.ico
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "3058F5C62D55893458C863B2A7A75FC1" . (.Firebird SQL Server - MAGIX Edition.) -- C:\Windows\Installer\{6C5F8503-55D2-4398-858C-362B7A7AF51C}\ProgramIcon.exe
O90 - PUC: "3F7A4F31CBAE1624FAB6317177F77055" . (.Fast Boot.) -- C:\Windows\Installer\{13F4A7F3-EABC-4261-AF6B-1317777F0755}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "44870A0846AC4ED4BA163DD7BD8E70F4" . (.PDF Architect.) -- C:\Windows\Installer\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}\main_icon
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "554590D7179DC4D4E9DFA96F6A85F4A3" . (.Bing Bureau.) -- C:\Windows\Installer\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}\icon.ico
O90 - PUC: "68AB67CA7DA7FFFFB744AA0000000010" . (.Adobe Reader X (10.1.7) MUI.) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "82D6625F2B0E0314FB5CEE51A55D41CD" . (.Apple Application Support.) -- C:\Windows\Installer\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}\WinInstall.ico
O90 - PUC: "8FC229B8C6A8EC148A851F57D5F7D592" . (.NVIDIA PhysX.) -- C:\Windows\Installer\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}\icon.ico
O90 - PUC: "90C64EA18BA25EE488BF80DCF07F2FFD" . (.Bing Bar.) -- C:\Windows\Installer\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}\icon_installer_ico =>Toolbar.Bing
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D7ADF82D6C512A848986B6BC82EB2645" . (.Microsoft Picture It! Photo 2001.) -- C:\Windows\Installer\{D28FDA7D-15C6-48A2-9868-6BCB28BE6254}\pi.ico
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.7.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 187 Scanned in 00mn 00s
---\\ Enum�re les donn�es de la cl� NameSpace (MNS) (O92)
O92 - MNS: ASUS WebStorage Drive - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf}
~ MNS: 1 Scanned in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.C1CF2F238023ABC668B2A5AC48E44DA6] [WIS][30/03/2013] (.pdfforge - PDF Architect Installer.) -- C:\Windows\Installer\135866.msi [49815552]
[MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\143e527.msi [3760128] =>PUP.SweetIM
[MD5.EDD21B7C504C7E3F36DE766B31BD3178] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\143e52f.msi [3304960] =>PUP.SweetIM
[MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\143e537.msi [2997248] =>PUP.SweetIM
[MD5.BBF4134424D0556F36DC086028750937] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - SweetPacks bundle uninstaller.) -- C:\Windows\Installer\143e53f.msi [2579456] =>PUP.SweetIM
[MD5.CAC92727C33BEC0A79965C61BBB1C82F] [WIS][19/01/2013] (.Igor Pavlov - 7-Zip (x64 edition) Package.) -- C:\Windows\Installer\14cfcbf.msi [1376768]
[MD5.B1C861317B5A5D0755FBC53352C4B0A3] [WIS][23/08/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\7669a4.msi [22614016]
[MD5.D2F34AF196CCAF29A124324392FC3DFF] [WIS][04/01/2013] (.Valve Corporation - Steam.) -- C:\Windows\Installer\9f90d1.msi [8532992]
~ WIS: 188 Scanned in 00mn 06s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 09/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 20/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 14/07/2011 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe
SR - | Auto 29/10/2011 918448 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
SR - | Auto 29/12/2011 950912 | (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.18\aaHMSvc.exe
SR - | Auto 21/10/2010 586880 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
SR - | Auto 04/07/2013 4939312 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
SR - | Auto 23/07/2013 283136 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
SS - | Auto 11/06/2012 193616 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
SR - | Demand 11/06/2012 240208 | (BBUpdate) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
SR - | Auto 23/12/2009 203392 | (Device Handle Service) . (.ASUSTeK Computer Inc..) - C:\Windows\SysWOW64\AsHookDevice.exe
SR - | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SR - | Auto 03/02/2012 628448 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 22/11/2012 828072 | (IswSvc) . (.Check Point Software Technologies.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
SR - | Auto 08/02/2012 161560 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 08/02/2012 277784 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Demand 28/10/2012 427976 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\x64\maconfservice.exe
SS - | Demand 05/01/2013 115760 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 29/12/2012 884152 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 29/12/2012 1260472 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 09/01/2013 1324104 | (PDF Architect Helper Service) . (.pdfforge GbR.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
SR - | Auto 09/01/2013 795208 | (PDF Architect Service) . (.pdfforge GbR.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 13/11/2012 1103392 | (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - | Auto 13/11/2012 1369624 | (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - | Auto 13/11/2012 168384 | (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SS - | Auto 25/07/2013 162672 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 10/07/2013 559016 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 29/12/2012 383416 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 08/02/2012 363800 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 29/01/2013 2447888 | (vsmon) . (.Check Point Software Technologies LTD.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 06s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Beardy at 11/09/2013 01:53:22
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Beardy at 11/09/2013 01:53:24
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s
---\\ Liste des �mulateurs de CD/DVD (MBR Hook)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
~ Emulateurs: Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : 12899 - (10/09/2013)
Cl�s trouv�es (Keys found) : 205
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 9
Fichiers trouv�s (Files found) : 13
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427}] =>PUP.SpeedAnalysis^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4723AAA8-B2F9-4CC1-9E60-190976DB1FA4}] =>Adware.SmileyBar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}] =>Toolbar.Bing^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}] =>Toolbar.Bing^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload] =>PUP.1ClickDownloader^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Smiley Bar for Facebook] =>Adware.SmileyBar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 2] =>PUP.SpeedAnalysis^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F21ABA47-CE22-4B3D-8F47-8BF08C21C094}] =>Adware.SocialSkinz^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>PUP.SweetIM
[HKLM\Software\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
[HKLM\Software\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}] =>Adware.Adkubru
[HKLM\Software\Wow6432Node\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}] =>Adware.Adkubru
[HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKCU\Software\AppDataLow\SProtector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.AdvancedSystemProtector
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}] =>PUP.SweetIM
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload] =>PUP.1ClickDownloader
[HKLM\Software\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Smiley Bar for Facebook] =>Adware.SmileyBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils.1] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator.1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}] =>Adware.MagniPic
[HKLM\Software\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}] =>Adware.MagniPic
[HKLM\Software\Classes\ScriptHost.Tool.1] =>Toolbar.Agent
[HKLM\Software\Classes\ScriptHost.Tool] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\AddonsFramework.DLL] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\ButtonSite.DLL] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\PropertySync.EXE] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\ScriptHost.DLL] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{93CF54F5-CFAA-4440-B588-8ED0DFAD5C21}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{93CF54F5-CFAA-4440-B588-8ED0DFAD5C21}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{D3BC53E7-0437-4C97-90EE-2CD6FF47FB14}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{D3BC53E7-0437-4C97-90EE-2CD6FF47FB14}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Protection_ZoneAlarm Toolbar] =>Toolbar.ZoneAlarm
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASMANCS] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk] =>Spyware.GophotoIt
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\bgnnidmnbdkmhfkjgdnngciimpdgohok] =>Hijacker.FreehdsportTV
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog] =>Adware.SmileyBar
[HKLM\Software\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^
C:\Program Files (x86)\Gophoto.it =>Spyware.GophotoIt^
C:\Program Files (x86)\Smiley Bar for Facebook =>Adware.SmileyBar^
C:\Program Files (x86)\Speed Analysis 2 =>PUP.SpeedAnalysis^
C:\ProgramData\Tarma Installer =>Toolbar.Tarma^
D:\Users\Beardy\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
D:\Users\Beardy\AppData\Roaming\SpeedAnalysis2 =>PUP.SpeedAnalysis^
D:\Users\Beardy\AppData\Roaming\WebPlayerBdd =>Adware.SocialSkinz^
C:\ProgramData\InstallMate =>Toolbar.Tarma
C:\ProgramData\AVG January 2013 Campaign =>Toolbar.AVGSearch
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\SearchPlugins\zonealarm.xml =>Toolbar.ZoneAlarm
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\Extensions\gophoto@gophoto.it.xpi =>Spyware.GophotoIt
C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll =>PUP.SpeedAnalysis^
C:\Program Files (x86)\Smiley Bar for Facebook\ScriptHost.dll =>Adware.SmileyBar^
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll =>Toolbar.Bing^
[HKCU\Software\AppDataLow\Software\SmartBar] =>Hijacker.SmartBar^
[HKLM\Software\Wow6432Node\AVG Secure Search] =>Toolbar.AVGSearch^
[HKLM\Software\Wow6432Node\DirectDownloader] =>PUP.DirectDownloader^
C:\Windows\Installer\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}\icon_installer_ico =>Toolbar.Bing^
C:\Windows\Installer\143e527.msi =>PUP.SweetIM^
C:\Windows\Installer\143e52f.msi =>PUP.SweetIM^
C:\Windows\Installer\143e537.msi =>PUP.SweetIM^
C:\Windows\Installer\143e53f.msi =>PUP.SweetIM^
~ Additionnel Scan: 246893 Items scanned in 00mn 11s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/28153012-pup-speedanalysis =>PUP.SpeedAnalysis
~ http://nicolascoolman.webs.com/apps/blog/show/27530912-adware-smileybar =>Adware.SmileyBar
~ http://nicolascoolman.webs.com/apps/blog/show/31536787-toolbar-bing =>Toolbar.Bing
~ http://nicolascoolman.webs.com/apps/blog/show/26607014-pup-1clickdownloader =>PUP.1ClickDownloader
~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz
~ http://nicolascoolman.webs.com/apps/blog/show/26811836-adware-yontoo =>Adware.Yontoo
~ http://nicolascoolman.webs.com/apps/blog/show/28486577-pup-mocaflix =>PUP.MocaFlix
~ http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar =>Hijacker.SmartBar
~ http://nicolascoolman.webs.com/apps/blog/show/29790567-adware-installcore =>Adware.InstallCore
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>Toolbar.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/28061330-pup-directdownloader =>PUP.DirectDownloader
~ http://nicolascoolman.webs.com/apps/blog/show/26630283-pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27793524-spyware-gophotoit =>Spyware.GophotoIt
~ http://nicolascoolman.webs.com/apps/blog/show/26770694-adware-opencandy =>Adware.OpenCandy
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blog/show/26632189-adware-magnipic =>Adware.MagniPic
~ http://nicolascoolman.webs.com/apps/blog/show/30583270-hijacker-freehdsporttv =>Hijacker.FreeHDSportTV
~ MSI: 20 link(s) detected in 00mn 11s
End of the scan (2080 lines in 01mn 44s)(2)
~ Lanc� par Beardy (11/09/2013 01:51:51)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : D�sactiv�e par l'utilisateur
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 18.0 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : DVQJG
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du syst�me
AVG 2013 v13.0.3222
Spybot - Search & Destroy v2.0.12
ZoneAlarm Firewall v11.0.000.057
ZoneAlarm Free Firewall v11.0.000.057
ZoneAlarm Security v11.0.000.020
Windows Defender W7
---\\ Logiciels d'optimisation du syst�me
CCleaner v4.03 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 25
---\\ Informations sur le syst�me
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6099 MB (74% free)
System Restore: Activ� (Enable)
System drive C: has 23 GB (39%) free of 59 GB
---\\ Mode de connexion au syst�me
~ Computer Name: FAMILY-PC
~ User Name: Beardy
~ All Users Names: UpdatusUser, Marie, Beardy, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : D:\Users\Beardy\AppData\Roaming\
~ %Desktop% : D:\Users\Beardy\Desktop\
~ %Favorites% : D:\Users\Beardy\Favorites\
~ %LocalAppData% : D:\Users\Beardy\AppData\Local\
~ %StartMenu% : D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enum�ration des unit�s disques
C:\ Hard drive, Flash drive, Thumb drive (Free 23 Go of 59 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 607 Go of 932 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 20 Go)
G:\ CD-ROM drive (Free 0 Go of 3 Go)
H:\ CD-ROM drive (Free 0 Go of 0 Go)
I:\ CD-ROM drive (Not Inserted)
J:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 129 Go)
---\\ Etat du Centre de S�curit� Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 34 Scanned in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.26/03/2012 - 23:39:21.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.5121DB613E10A46A3C5085B479026AA7] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/11/2012 - 07:04:11.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.26/03/2012 - 23:46:03.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.26/03/2012 - 23:40:38.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.26/03/2012 - 23:30:12.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/4
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/2603
~ Mon Bureau (My Desktop) : 1/41
~ Menu demarrer (Programs) : 1/53
~ Hidden Files: Scanned in 00mn 02s
---\\ Processus lanc�s
[MD5.35CFDA79479D06FA2154A9E84236E84A] - (.ASUSTeK Computer Inc. - Tool to hook keyboard and handle hybrid-sle.) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe [1088128] [PID.4128]
[MD5.576C72830E3FD6ACE2910545B6130803] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328] [PID.6872]
[MD5.4624731A850366C5E049C93BCB5D41FD] - (.ASUSTeK Computer Inc. - EPUHelp.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe [1256576] [PID.5384]
[MD5.6364FA7D825B600251A4D1DE7D6FF695] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.5600]
[MD5.BD712BF585CBE46FEC924398E852A29E] - (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe [232064] [PID.5620]
[MD5.D783DC9A00B768503D6CAE2F5F8A8200] - (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe [195200] [PID.7256]
[MD5.7B9F57F46E0C33D4D4C81969DC08F759] - (.ASUSTek Computer Inc. - AiChargerAP MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [465536] [PID.5284]
[MD5.4F1F35044428CD8981BEA81432E9E51D] - (.Check Point Software Technologies LTD - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832] [PID.4532]
[MD5.288D8A54FE326AE26AD43F348E646147] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440] [PID.5164]
[MD5.B5A4EBA9487F08BECC843A87422B8052] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [3825176] [PID.5332]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816] [PID.4176]
[MD5.D14D646DFE602AFBB9461899C2F26301] - (.VideoLAN - VLC media player 2.0.8.) -- D:\Mes Programmes\adslTV\VLC\vlc.exe [124416] [PID.7108]
[MD5.ACE8F6D86D13654C5E9A4746BDF253CC] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7931904] [PID.5656]
[MD5.00FCEC4DA4198F5F2B9BBD9225842568] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383416] [PID.1268]
[MD5.7F15A353AF9B367F4D4CD52CB0533F2F] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447888] [PID.1856]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640] [PID.2536]
[MD5.F7692E60147E56A1CEEE144974F41830] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe [918448] [PID.2560]
[MD5.F709A4D50B19A84A8D06579C193CCA5E] - (.ASUSTeK Computer Inc. - Pas de description.) -- C:\Program Files (x86)\ASUS\AAHM\1.00.18\aaHMSvc.exe [950912] [PID.2672]
[MD5.5C31DFB196CB3A488A041881634D86D2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880] [PID.2712]
[MD5.4DB93F4DB7077801D2D82013506AC1D0] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312] [PID.2740]
[MD5.48939D9F350AEF9370F03A1E49A49BE2] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136] [PID.2796]
[MD5.65608C44E71D7BA056C9EFCD8A00A7FE] - (.Microsoft Corp. - Bing Desktop updating service.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192] [PID.2868]
[MD5.0A403702CB00432AC818523CD416BF67] - (.ASUSTeK Computer Inc. - Device Handle.) -- C:\Windows\SysWOW64\AsHookDevice.exe [203392] [PID.2920]
[MD5.C44B44E24B929631D9D7368F5B2B40CF] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.1992]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872] [PID.1960]
[MD5.A1688A4FB2EC49D040C027EF6DC7A87B] - (.pdfforge GbR - PDF Architect Helper Service.) -- C:\Program Files (x86)\PDF Architect\HelperService.exe [1324104] [PID.2596]
[MD5.E23FF9B2F8EEAB2BDDA681C21C48E843] - (.pdfforge GbR - PDF Architect Conversion Service.) -- C:\Program Files (x86)\PDF Architect\ConversionService.exe [795208] [PID.1984]
[MD5.206387AB881E93A1A6EB89966C8651F1] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392] [PID.3264]
[MD5.A529CFE32565C0B145578FFB2B32C9A5] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624] [PID.3744]
[MD5.CB63BDB77BB86549FC3303C2F11EDC18] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384] [PID.3992]
[MD5.B3009DCDBCC5EFA49FA52562E9860E3C] - (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128] [PID.5040]
[MD5.75F29D77B0540FCF47EE3BE000BBABDA] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.5100]
[MD5.FB660F80BDC4F13D594996976AFAECD9] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1260472] [PID.4404]
[MD5.193AD338F2A64D17300AD640ADFA5D0A] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.2000]
[MD5.452DB84283EB2F043827AC95D62CE19C] - (.Safer-Networking Ltd. - Update.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3487240] [PID.6720]
~ Processes Running: Scanned in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\prefs.js
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\user.js
M3 - MFPP: Plugins - [Beardy] -- D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\searchplugins\duckduckgo.xml
M3 - MFPP: Plugins - [Beardy] -- D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\searchplugins\WebSearch.xml
M3 - MFPP: Plugins - [Beardy] -- D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\searchplugins\zonealarm.xml
M0 - MFSP: prefs.js [Beardy - 4uld153n.default] http://www.google.fr
M2 - MFEP: prefs.js [Beardy - 4uld153n.default\ffxtlbr@zonealarm.com] [] zonealarm.com v1.6.0 (..)
M2 - MFEP: prefs.js [Beardy - 4uld153n.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.21 (..)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 6.5.0.3.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
~ Firefox Browser: 9 Scanned in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ IE Browser: 15 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 02s
~ Nombre de lignes (Lines number): 15331
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Speed Analysis 2 [64Bits] - {18DBB6CE-3148-4FEC-B481-103CB3290427} . (.SpeedAnalysis.com - ScriptHost.) -- C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll =>PUP.SpeedAnalysis
O2 - BHO: PDF Architect Helper [64Bits] - {3A2D5EBA-F86D-4BD3-A177-019765996711} . (.pdfforge GbR - PDF Architect Helper.) -- C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Smiley Bar for Facebook [64Bits] - {4723AAA8-B2F9-4CC1-9E60-190976DB1FA4} . (.Plus Winks - ScriptHost.) -- C:\Program Files (x86)\Smiley Bar for Facebook\ScriptHost.dll =>Adware.SmileyBar
O2 - BHO: Spybot-S&D IE Protection [64Bits] - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer-Networking Ltd. - Blocks URLs that could install spyware, mal.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- D:\Mes Programmes\Java\jre7\bin\ssv.dll
O2 - BHO: ZoneAlarm Security Engine Registrar [64Bits] - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation. - Extensions du client Bing.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll =>Toolbar.Bing
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- D:\Mes Programmes\Java\jre7\bin\jp2ssv.dll
~ BHO: 11 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: ZoneAlarm Security Engine [64Bits] - [HKLM]{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Dr. HOUSE.lnk . (.Legacy Interactive - Pas de description.) -- D:\Mes Programmes\Dr. HOUSE\house.exe
O4 - GS\Desktop [Public]: D�marrer la d�tection.lnk . (...) -- C:\Program Files (x86)\ma-config.com\x64\MCDetection.exe (.not file.)
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Desktop [Public]: Streaming Audio Recorder.lnk . (.Apowersoft - Streaming Audio Recorder.) -- D:\Mes Programmes\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
O4 - GS\Desktop [Public]: Titan Quest.lnk . (...) -- D:\Mes Programmes\THQ\Titan Quest\Titan Quest.exe
O4 - GS\Desktop [Public]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
O4 - GS\Desktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
O4 - GS\Program [Public]: Adobe Reader X.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- D:\Mes Programmes\GIMP 2\bin\gimp-2.8.exe
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O4 - GS\Program [Public]: Microsoft Office 2010.lnk . (...) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O4 - GS\Program [Public]: Microsoft Picture It! Photo 2001.lnk . (.Microsoft Corporation - Picture It! 2001.) -- D:\Mes Programmes\Microsoft Picture It! PhotoPub\pip.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - GS\Program [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise � niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
O4 - GS\Program [Public]: Windows Live Messenger.lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - GS\Program [Public]: Windows Live Movie Maker.lnk . (.Microsoft Corporation - Windows Live Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
O4 - GS\Program [Public]: Windows Live Photo Gallery.lnk . (.Microsoft Corporation - Windows Live Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe
O4 - GS\TaskBar [UpdatusUser]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [UpdatusUser]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Explorer (2).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Media Player (2).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [UpdatusUser]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [UpdatusUser]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [UpdatusUser]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [UpdatusUser]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [UpdatusUser]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [UpdatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [UpdatusUser]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [UpdatusUser]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\Desktop [UpdatusUser]: Francais CP.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Nathan\Francais CP\FranCP.exe
O4 - GS\Desktop [UpdatusUser]: Frontline - Fields of Thunder.lnk . (.N-Game Studios - Game.) -- D:\Mes Programmes\Frontline - Fields of Thunder\bin\Game.exe
O4 - GS\Desktop [UpdatusUser]: Trend Micro Titanium Internet Security 2012.lnk . (...) -- C:\Program Files (x86)\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (.not file.)
O4 - GS\Desktop [UpdatusUser]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
O4 - GS\QuickLaunch [Marie]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Marie]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Marie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Marie]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Marie]: Windows Explorer (2).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Marie]: Windows Explorer (3).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Marie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Marie]: Windows Media Player (2).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Marie]: Windows Media Player (3).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Marie]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [Marie]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Marie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [Marie]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [Marie]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [Marie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [Marie]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Marie]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\Desktop [Marie]: Documents de Marie.lnk . (...) -- D:\Documents de Marie
O4 - GS\Desktop [Marie]: Francais CP.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Nathan\Francais CP\FranCP.exe
O4 - GS\Desktop [Marie]: Frontline - Fields of Thunder.lnk . (.N-Game Studios - Game.) -- D:\Mes Programmes\Frontline - Fields of Thunder\bin\Game.exe
O4 - GS\Desktop [Marie]: Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\Desktop [Marie]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\Desktop [Marie]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
O4 - GS\QuickLaunch [Beardy]: adsl TV.lnk . (.adsl TV / FM - adsl TV.) -- D:\Mes Programmes\adslTV\adsltv.exe
O4 - GS\QuickLaunch [Beardy]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Beardy]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
O4 - GS\TaskBar [Administrateur]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Administrateur]: Internet Explorer (3).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- D:\Mes Programmes\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Administrateur]: Windows Explorer (2).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Administrateur]: Windows Explorer (3).lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Administrateur]: Windows Live Photo Gallery.lnk . (.Microsoft Corporation - Windows Live Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
O4 - GS\TaskBar [Administrateur]: Windows Media Player (2).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Administrateur]: Windows Media Player (3).lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\TaskBar [Administrateur]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Program [Administrateur]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [Administrateur]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [Administrateur]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [Administrateur]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Administrateur]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\Desktop [Administrateur]: Francais CP.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Nathan\Francais CP\FranCP.exe
O4 - GS\Desktop [Administrateur]: Frontline - Fields of Thunder.lnk . (.N-Game Studios - Game.) -- D:\Mes Programmes\Frontline - Fields of Thunder\bin\Game.exe
O4 - GS\Desktop [Administrateur]: Trend Micro Titanium Internet Security 2012.lnk . (...) -- C:\Program Files (x86)\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (.not file.)
O4 - GS\Desktop [Administrateur]: Votre sant� au quotidien.lnk . (.Macromedia, Inc. - Macromedia Projector.) -- D:\Mes Programmes\Laroussemed\Votre sant� au quotidien\Votre sant� au quotidien.exe
~ Global Startup: 91 Scanned in 00mn 01s
---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - HKLM\..\Run: [ISW] . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- D:\Mes Programmes\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [RunAIShell] . (.ASUSTeK Computer Inc. - Helper AP for Windows ShellExec for NT.) -- C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS Easy Update] . (.ASUSTeK Computer Inc. - ALU MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS Ai Charger] . (.ASUSTek Computer Inc. - AiChargerAP MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
O4 - HKLM\..\Wow6432Node\Run: [ZoneAlarm] . (.Check Point Software Technologies LTD - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- D:\Mes Programmes\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [BingDesktop] . (.Microsoft Corp. - Bing Desktop Application.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Application: Scanned in 00mn 00s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Winsock: 8 Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://active.macromedia.com/flash2/cabs/swflash.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{58AB0371-B461-4A86-B4C4-011BA41CAF25}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Domain: Scanned in 00mn 00s
---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - Pas de description.) - C:\Program Files (x86)\ASUS\AAHM\1.00.18\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Device Handle Service (Device Handle Service) . (.ASUSTeK Computer Inc. - Device Handle.) - C:\Windows\SysWOW64\AsHookDevice.exe
O23 - Service: FABS - Helping agent for MAGIX media dat (Fabs) . (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: ZoneAlarm LTD Toolbar IswSvc (IswSvc) . (.Check Point Software Technologies - ZoneAlarm Browser Security.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 310.9.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GbR - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GbR - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: TrueVector Internet Monitor (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
~ Services: 24 Scanned in 00mn 05s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sdnclean64.exe) - File not found
~ BEX: 2 Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\ROC_REG_JAN_DELETE.job [300]
[MD5.476BB014F3F68C0C15EDDD5B444DA8FF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.4999625054FFA2AFFCAFD085C1218307] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- D:\Mes Programmes\CCleaner\CCleaner.exe [3611416] =>Piriform Ltd
[MD5.00000000000000000000000000000000] [APT] [Go for FilesUpdate] (...) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe (.not file.) [0] =>P2P.GoforFiles
[MD5.C78234DCAFDA1C5D4440977DF9A39F51] [APT] [ROC_REG_JAN_DELETE] (...) -- C:\ProgramData\AVG January 2013 Campaign\ROC.exe [1234000]
[MD5.00000000000000000000000000000000] [APT] [{E213F7D9-73A3-48A4-B752-7B7FFABA91F8}] (...) -- D:\Mes Programmes\ZHPDiag\ZHPFix\ZHPhep.exe (.not file.) [0]
[MD5.D241DDF08B6BEB9E5EAF01E2B8829EA8] [APT] [AsBackupWizard_Run] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AsBackupWizard\AsRunBkWizardHelper.exe [563840]
[MD5.576C72830E3FD6ACE2910545B6130803] [APT] [ASUS AI Suite II Execute] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328]
[MD5.35CFDA79479D06FA2154A9E84236E84A] [APT] [Asus HybridSleep Helper] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Instant On\AsInstantOn.exe [1088128]
[MD5.452DB84283EB2F043827AC95D62CE19C] [APT] [Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3487240]
[MD5.36A82C214B46787385F3B0CD02ECAA88] [APT] [Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [3653656]
[MD5.E4A0900CF535888DDD85B10040CA3E34] [APT] [Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [3906584]
~ Scheduled Task: 13 Scanned in 00mn 01s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (AsUpIO) . (...) - C:\Windows\Syswow64\drivers\AsUpIO.sys
O41 - Driver: (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - C:\Windows\System32\DRIVERS\avgidsdrivera.sys
O41 - Driver: (Avgldx64) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx64.sys
O41 - Driver: (Avgtdia) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdia.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\system32\drivers\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Vsdatant) . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\DRIVERS\vsdatant.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 111 Scanned in 00mn 01s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {9301985B-D116-4A93-A93D-94580084FF86}
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000}
O42 - Logiciel: AI Manager - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {4AF95DE2-B54D-4C3F-9494-FD3B558E2C2D}
O42 - Logiciel: AI Suite II - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {34D3688E-A737-44C5-9E2A-FF73618728E1}
O42 - Logiciel: ASUS Ai Charger - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {7FB64E72-9B0E-4460-A821-040C341E414A}
O42 - Logiciel: ASUS Backup Wizard - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {124C9BD0-8C52-40AB-8238-0605703B1C28}
O42 - Logiciel: ASUS Easy Update - (.ASUSTeK Computer Inc.) [HKLM][64Bits] -- {E7AA854E-6756-424E-84C2-4E47D5729AFF}
O42 - Logiciel: ASUS Instant On - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {CCC4652E-F5E0-498A-84F3-5DDBEF84642B}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- {56E670F3-592B-47B8-9159-265E5CF3F753}
O42 - Logiciel: ASUS WebStorage - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- AVG
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {4FF9E8AA-D554-4CE7-89F9-B69DAA5A1E98}
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {6B02D047-A56D-4994-B1F1-53DA6B9885AB}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.7) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {F5266D28-E0B2-4130-BFC5-EE155AD514DC}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF} =>Toolbar.Bing
O42 - Logiciel: Bing Bureau - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D095455-D971-4D4C-9EFD-9AF6A6584F3A}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd
O42 - Logiciel: CVitaeV4 - (...) [HKCU][64Bits] -- CVitaeV4
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: DVDFab 8.2.2.6 (25/12/2012) Qt - (.Fengtao Software Inc..) [HKLM][64Bits] -- DVDFab 8 Qt_is1
O42 - Logiciel: Dr. HOUSE - (.Mindscape.) [HKLM][64Bits] -- {1219E222-3627-4167-AE77-B0DBEECD9848}
O42 - Logiciel: EPSON Scan - (...) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: EPSON Smart Panel - (...) [HKLM][64Bits] -- {6C11D561-620B-47DA-A693-4C597F3CDF40}
O42 - Logiciel: Epson Copy Utility 3.5 - (...) [HKLM][64Bits] -- {AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}
O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {6C5F8503-55D2-4398-858C-362B7A7AF51C}
O42 - Logiciel: FirstRowSportApp - (.FirstRowSportApp.com.) [HKLM][64Bits] -- 1ClickDownload =>PUP.1ClickDownloader
O42 - Logiciel: Frontline: Fields of Thunder - (.
O42 - Logiciel: GIMP 2.8.2 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1
O42 - Logiciel: Heroes of Might and Magic V - Tribes of the East - (...) [HKLM][64Bits] -- {66FF4C48-0083-4E60-8556-B883AB200092}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel� Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34}
O42 - Logiciel: Internet Explorer Toolbar 4.6 by SweetPacks - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {C3E85EE9-5892-4142-B537-BCEB3DAC4C3D} =>PUP.SweetIM
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {602C9E30-F838-4AD2-8DC2-265C192D4AAC}
O42 - Logiciel: Magic: The Gathering - Duels of the Planeswalkers 2013 - (...) [HKLM][64Bits] -- Steam App 97330
O42 - Logiciel: Max Payne - (...) [HKLM][64Bits] -- {39930321-4C58-4B8B-BCBF-342698C9801D}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Picture It! Photo 2001 - (.Microsoft.) [HKLM][64Bits] -- {D28FDA7D-15C6-48A2-9868-6BCB28BE6254}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises � jour NVIDIA 1.11.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Mozilla Firefox 18.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 18.0 (x86 fr)
O42 - Logiciel: Mozilla Firefox 23.0.1 (x86 fr) - (.Mozilla.) [HKCU][64Bits] -- Mozilla Firefox 23.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA Logiciel syst�me PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29}
O42 - Logiciel: NVIDIA Pilote 3D Vision 310.90 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote du contr�leur 3D Vision 310.90 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 310.90 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Nathan Francais CP - (...) [HKLM][64Bits] -- Nathan Francais CP
O42 - Logiciel: PDF Architect - (.pdfforge.) [HKLM][64Bits] -- {80A07844-CA64-4DE4-AB61-D37DDBE8074F}
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Presto! BizCard 4.1 Fre - (...) [HKLM][64Bits] -- Uninstall Presto! BizCard 4.1 Fre
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}
O42 - Logiciel: Race On - (.SimBin.) [HKLM][64Bits] -- Race On_is1
O42 - Logiciel: Ralink RT2860 Wireless LAN Card - (.Ralink.) [HKLM][64Bits] -- {E883ECE4-1189-413A-894D-B7C4B17F0607}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: RootsMagic 6.0.0.5 - (.RootsMagic, Inc..) [HKLM][64Bits] -- {94433E0D-764C-4964-AD0B-EC46BCA7E68E}_is1
O42 - Logiciel: R�ussir ses CV et Lettres de Motivation - (...) [HKLM][64Bits] -- {64914710-F0F3-4E51-BFF7-145075A7F204}
O42 - Logiciel: ScanToWeb - (...) [HKLM][64Bits] -- {EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Shockwave - (...) [HKLM][64Bits] -- Shockwave
O42 - Logiciel: Skype� 6.7 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Smiley Bar for Facebook - (.Plus Winks.) [HKLM][64Bits] -- Smiley Bar for Facebook =>Adware.SmileyBar
O42 - Logiciel: Speed Analysis 2 - (.SpeedAnalysis.com.) [HKLM][64Bits] -- Speed Analysis 2 =>PUP.SpeedAnalysis
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Streaming Audio Recorder V2.5.2 - (.Apowersoft.) [HKLM][64Bits] -- {B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1
O42 - Logiciel: SweetIM for Messenger 3.7 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {A0C9DF2B-89B5-4483-8983-18A68200F1B4} =>PUP.SweetIM
O42 - Logiciel: SweetPacks bundle uninstaller - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {0C43FE6B-E881-4AFC-B384-4AEBC90047E8} =>PUP.SweetIM
O42 - Logiciel: Tarot et belote - (...) [HKLM][64Bits] -- {2633B581-9709-11D9-B7E0-00C04F4351FF}
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: Titan Quest - (.Iron Lore.) [HKLM][64Bits] -- {412B69AF-C352-4F6F-A318-B92B3CB9ACC6}
O42 - Logiciel: Titan Quest Immortal Throne - (.Iron Lore.) [HKLM][64Bits] -- {B5C5C17E-FEF6-4062-8151-A427AE8AF9D7}
O42 - Logiciel: Titan Quest Immortal Throne - (.THQ.) [HKLM][64Bits] -- Titan Quest Immortal Throne
O42 - Logiciel: UEFA EURO 2012 - (...) [HKLM][64Bits] -- UEFA EURO 2012_is1
O42 - Logiciel: Update Manager for SweetPacks 1.1 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {EA8FA6BE-29BE-4AF2-9352-841F83215EB0} =>PUP.SweetIM
O42 - Logiciel: VLC media player 2.0.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Visual Studio 2010 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {21B133D6-5979-47F0-BE1C-F6A6B304693F}
O42 - Logiciel: Volvo - The Game - (.SimBin.) [HKLM][64Bits] -- Volvo - The Game_is1
O42 - Logiciel: Votre sant� au quotidien - (...) [HKLM][64Bits] -- Votre sant� au quotidien
O42 - Logiciel: WebPlayerV2 - (.Kreapixel.) [HKLM][64Bits] -- {F21ABA47-CE22-4B3D-8F47-8BF08C21C094} =>Adware.SocialSkinz
O42 - Logiciel: Yontoo 1.12.02 - (.Yontoo LLC.) [HKLM][64Bits] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B} =>Adware.Yontoo
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {10D4BC5F-F73E-4CD1-A7C2-DF215307A811}
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {737B13C5-990B-4339-8A4D-0FFEBBC3DB17}
O42 - Logiciel: ZoneAlarm Free Firewall - (.Check Point.) [HKLM][64Bits] -- ZoneAlarm Free Firewall
O42 - Logiciel: ZoneAlarm Security - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {16456401-9621-4F3D-836A-59EA425C471D}
O42 - Logiciel: ZoneAlarm Security - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {2756F572-C383-4A2E-B1F6-7315E6DA308A}
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM][64Bits] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 173 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\7-Zip]
[HKCU\Software\ASProtect]
[HKCU\Software\ASUS]
[HKCU\Software\ATI]
[HKCU\Software\AVS]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow\SProtector] =>PUP.Mocaflix
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\SmartBar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Avg]
[HKCU\Software\Check Point Software Technologies LTD]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\DT Soft]
[HKCU\Software\DVDFab]
[HKCU\Software\Digital Reality]
[HKCU\Software\DivXNetworks]
[HKCU\Software\ECAREME]
[HKCU\Software\EMME]
[HKCU\Software\EPSON]
[HKCU\Software\ESET]
[HKCU\Software\FileScout]
[HKCU\Software\Freeware]
[HKCU\Software\GoforFiles] =>P2P.GoforFiles
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\JavaSoft]
[HKCU\Software\Legacy Interactive]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\PDF Architect]
[HKCU\Software\PDFCreator]
[HKCU\Software\PerformerSoft LLC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Remedy Entertainment]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Smart Panel]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Streaming Audio Recorder]
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Video Works]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zone Labs]
[HKCU\Software\cybelsoft]
[HKLM\Software\7-Zip]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CBSTEST]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\ESET]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKLM\Software\TuneUp]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\AVG Secure Search] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\AVS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Avg]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\CheckPoint]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\DirectDownloader] =>PUP.DirectDownloader
[HKLM\Software\Wow6432Node\EA Sports]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\ESET]
[HKLM\Software\Wow6432Node\FUJIFILM]
[HKLM\Software\Wow6432Node\GYOZA]
[HKLM\Software\Wow6432Node\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Iron Lore]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\Mindscape]
[HKLM\Software\Wow6432Node\Monte Cristo]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\NewSoft]
[HKLM\Software\Wow6432Node\Nival Interactive]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\PDFCreator]
[HKLM\Software\Wow6432Node\PocketSoft]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Ralink]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Remedy Entertainment]
[HKLM\Software\Wow6432Node\RootsMagic Shared]
[HKLM\Software\Wow6432Node\SBDT AB]
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.Mocaflix
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Smart Panel]
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Ubisoft]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Wizards of the Coast]
[HKLM\Software\Wow6432Node\Zone Labs]
[HKLM\Software\Wow6432Node\cybelsoft]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 244 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 18/01/2013 - 02:47:25 - [456,713] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 17/01/2013 - 18:22:39 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 22/01/2013 - 15:28:06 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 18/01/2013 - 02:47:26 - [417,741] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 18/01/2013 - 02:47:26 - [124,137] ----D C:\Program Files (x86)\AVG
O43 - CFD: 18/01/2013 - 02:47:26 - [29,392] ----D C:\Program Files (x86)\CheckPoint
O43 - CFD: 23/08/2013 - 10:45:27 - [676,336] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 24/01/2013 - 12:30:24 - [6,400] ----D C:\Program Files (x86)\epson
O43 - CFD: 24/01/2013 - 12:35:23 - [8,251] ----D C:\Program Files (x86)\Epson Software
O43 - CFD: 03/02/2013 - 16:37:28 - [1,086] ----D C:\Program Files (x86)\FirstRowSportApp.com
O43 - CFD: 27/01/2013 - 22:16:14 - [4,444] ----D C:\Program Files (x86)\GoforFiles =>P2P.GoforFiles
O43 - CFD: 03/02/2013 - 16:37:34 - [0,055] ----D C:\Program Files (x86)\Gophoto.it =>Spyware.GophotoIt
O43 - CFD: 07/08/2013 - 14:14:29 - [113,864] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 18/01/2013 - 02:47:27 - [24,800] ----D C:\Program Files (x86)\Intel
O43 - CFD: 22/01/2013 - 15:28:29 - [7,303] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 07/08/2013 - 14:14:31 - [0] ----D C:\Program Files (x86)\Larousse
O43 - CFD: 27/01/2013 - 09:23:57 - [51,458] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 23/01/2013 - 13:01:31 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 18/01/2013 - 02:47:27 - [3,469] ----D C:\Program Files (x86)\Microsoft Chart Controls
O43 - CFD: 18/01/2013 - 02:47:27 - [6,126] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 22/01/2013 - 14:21:50 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/01/2013 - 02:47:27 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 18/01/2013 - 15:53:24 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 18/01/2013 - 15:51:40 - [56,656] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 23/01/2013 - 13:00:35 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 18/01/2013 - 15:53:19 - [7,774] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 15/01/2013 - 13:15:27 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 18/01/2013 - 15:53:26 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 27/03/2012 - 01:25:36 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 24/01/2013 - 11:18:55 - [32,666] ----D C:\Program Files (x86)\NewSoft
O43 - CFD: 17/01/2013 - 18:22:49 - [99,899] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 30/03/2013 - 09:43:01 - [90,585] ----D C:\Program Files (x86)\PDF Architect
O43 - CFD: 18/01/2013 - 02:47:31 - [5,937] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 18/01/2013 - 02:47:31 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 28/01/2013 - 19:18:40 - [0] ----D C:\Program Files (x86)\SimBin
O43 - CFD: 23/08/2013 - 10:45:27 - [20,004] R---D C:\Program Files (x86)\Skype
O43 - CFD: 24/01/2013 - 11:16:58 - [87,055] ----D C:\Program Files (x86)\Smart Panel
O43 - CFD: 06/06/2013 - 22:44:21 - [1,793] ----D C:\Program Files (x86)\Smiley Bar for Facebook =>Adware.SmileyBar
O43 - CFD: 06/06/2013 - 22:44:28 - [1,593] ----D C:\Program Files (x86)\Speed Analysis 2 =>PUP.SpeedAnalysis
O43 - CFD: 18/01/2013 - 02:48:48 - [163,040] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 27/03/2012 - 01:09:36 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 18/01/2013 - 02:47:31 - [94,079] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 23/01/2013 - 21:56:33 - [18,740] ----D C:\Program Files (x86)\WebPlayer
O43 - CFD: 18/01/2013 - 02:47:31 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 18/01/2013 - 02:47:31 - [256,796] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 18/01/2013 - 02:47:31 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 18/01/2013 - 02:47:31 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 18/01/2013 - 02:47:31 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/01/2013 - 02:47:31 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 18/01/2013 - 02:47:31 - [6,039] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 11/09/2013 - 01:52:03 - [17,261] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 11/02/2013 - 21:56:23 - [18,571] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 22/01/2013 - 15:28:08 - [64,235] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 16/01/2013 - 14:13:39 - [0] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 18/01/2013 - 15:53:24 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 18/01/2013 - 02:47:26 - [8,018] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 09/08/2013 - 20:50:00 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 18/01/2013 - 02:47:26 - [15,002] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 23/01/2013 - 13:00:45 - [348,280] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 18/01/2013 - 02:47:26 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 03/03/2013 - 21:57:38 - [136,875] ----D C:\Program Files (x86)\Common Files\RootsMagic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 23/08/2013 - 10:45:27 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 18/01/2013 - 02:47:26 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 10/07/2013 - 12:53:37 - [0,533] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 24/01/2013 - 11:53:12 - [42,254] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 18/01/2013 - 02:47:26 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 18/01/2013 - 09:18:13 - [21,923] ----D C:\ProgramData\Adobe
O43 - CFD: 22/01/2013 - 15:28:06 - [22,681] ----D C:\ProgramData\Apple
O43 - CFD: 22/01/2013 - 15:28:24 - [25,485] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 18/01/2013 - 02:47:32 - [71,939] ----D C:\ProgramData\ASUS
O43 - CFD: 27/03/2012 - 01:19:05 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 22/01/2013 - 12:44:00 - [8,430] ----D C:\ProgramData\AVG January 2013 Campaign
O43 - CFD: 18/01/2013 - 02:47:32 - [270,564] ----D C:\ProgramData\AVG2013
O43 - CFD: 15/01/2013 - 11:31:09 - [89,549] ----D C:\ProgramData\CheckPoint
O43 - CFD: 15/01/2013 - 12:09:41 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 23/01/2013 - 16:41:18 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 25/01/2013 - 12:43:18 - [0] ----D C:\ProgramData\dvdfab
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 01/06/2013 - 08:52:16 - [1,772] ----D C:\ProgramData\InstallMate
O43 - CFD: 27/03/2012 - 01:15:28 - [0,501] ----D C:\ProgramData\Intel
O43 - CFD: 15/01/2013 - 21:14:24 - [1,284] ----D C:\ProgramData\ma-config.com
O43 - CFD: 18/01/2013 - 02:47:32 - [5,477] ----D C:\ProgramData\MAGIX
O43 - CFD: 19/07/2013 - 10:12:29 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 10/09/2013 - 17:06:22 - [222,548] ----D C:\ProgramData\MFAData
O43 - CFD: 01/02/2013 - 13:03:16 - [1466,854] -S--D C:\ProgramData\Microsoft
O43 - CFD: 27/01/2013 - 09:22:15 - [0,066] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 15/01/2013 - 13:15:27 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 10/09/2013 - 08:08:04 - [2,326] ----D C:\ProgramData\NVIDIA
O43 - CFD: 17/01/2013 - 18:22:05 - [2,102] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 30/03/2013 - 09:37:08 - [0] ----D C:\ProgramData\PDF Architect
O43 - CFD: 18/01/2013 - 02:47:32 - [4,237] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 16/01/2013 - 01:20:13 - [0,000] ----D C:\ProgramData\Real
O43 - CFD: 03/03/2013 - 21:57:31 - [0,002] ----D C:\ProgramData\RootsMagic
O43 - CFD: 03/03/2013 - 21:57:31 - [3,157] ----D C:\ProgramData\RootsMagic Shared
O43 - CFD: 23/08/2013 - 10:45:29 - [22,466] ----D C:\ProgramData\Skype
O43 - CFD: 12/04/2013 - 00:17:39 - [0] ----D C:\ProgramData\SoftSafe
O43 - CFD: 01/02/2013 - 10:14:39 - [21,070] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 09/08/2013 - 20:50:01 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 07/08/2013 - 14:15:08 - [2,571] ----D C:\ProgramData\Tarma Installer =>Toolbar.Tarma
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 15/01/2013 - 01:02:43 - [0,983] ----D C:\ProgramData\Trend Micro
O43 - CFD: 15/01/2013 - 17:54:08 - [0,290] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 15/01/2013 - 17:54:04 - [23,027] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 29/01/2013 - 21:48:11 - [4,189] ----D D:\Users\Beardy\AppData\Roaming\Adobe
O43 - CFD: 09/02/2013 - 11:37:06 - [0,092] ----D D:\Users\Beardy\AppData\Roaming\Apowersoft
O43 - CFD: 29/01/2013 - 21:48:11 - [0,024] ----D D:\Users\Beardy\AppData\Roaming\Apple Computer
O43 - CFD: 29/01/2013 - 21:48:11 - [0,481] ----D D:\Users\Beardy\AppData\Roaming\APP_NAME_NON_STRING
O43 - CFD: 11/04/2013 - 10:00:06 - [15,577] ----D D:\Users\Beardy\AppData\Roaming\ASUS WebStorage
O43 - CFD: 29/01/2013 - 21:48:11 - [0,208] ----D D:\Users\Beardy\AppData\Roaming\AVG2013
O43 - CFD: 19/05/2013 - 18:14:09 - [0,259] ----D D:\Users\Beardy\AppData\Roaming\Check Point Software Technologies LTD
O43 - CFD: 29/01/2013 - 21:48:11 - [0,018] ----D D:\Users\Beardy\AppData\Roaming\CheckPoint
O43 - CFD: 08/07/2013 - 13:03:26 - [0,775] ----D D:\Users\Beardy\AppData\Roaming\CVitae
O43 - CFD: 01/04/2013 - 13:52:17 - [1,038] ----D D:\Users\Beardy\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 26/07/2013 - 23:33:11 - [0,004] ----D D:\Users\Beardy\AppData\Roaming\dvdcss
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\DVDFab
O43 - CFD: 06/06/2013 - 22:43:52 - [0,308] ----D D:\Users\Beardy\AppData\Roaming\File Scout
O43 - CFD: 29/01/2013 - 21:48:12 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\GoforFiles =>P2P.GoforFiles
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Identities
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\InstallShield
O43 - CFD: 29/01/2013 - 21:48:11 - [0,077] ----D D:\Users\Beardy\AppData\Roaming\Macromedia
O43 - CFD: 29/01/2013 - 21:48:11 - [0,013] ----D D:\Users\Beardy\AppData\Roaming\MAGIX
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Media Center Programs
O43 - CFD: 10/02/2013 - 00:03:42 - [4,688] -S--D D:\Users\Beardy\AppData\Roaming\Microsoft
O43 - CFD: 29/01/2013 - 21:48:11 - [173,176] ----D D:\Users\Beardy\AppData\Roaming\Mozilla
O43 - CFD: 29/01/2013 - 21:48:11 - [0,008] ----D D:\Users\Beardy\AppData\Roaming\NVIDIA
O43 - CFD: 29/01/2013 - 21:48:11 - [27,244] ----D D:\Users\Beardy\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 29/01/2013 - 21:48:11 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\PDF Architect
O43 - CFD: 29/01/2013 - 21:48:11 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\pdfforge
O43 - CFD: 29/01/2013 - 21:48:12 - [0,005] ----D D:\Users\Beardy\AppData\Roaming\PeaZip
O43 - CFD: 07/06/2013 - 08:15:08 - [0] ----D D:\Users\Beardy\AppData\Roaming\PerformerSoft
O43 - CFD: 06/06/2013 - 22:43:57 - [0,056] ----D D:\Users\Beardy\AppData\Roaming\PlusWinks
O43 - CFD: 03/03/2013 - 21:57:31 - [0,033] ----D D:\Users\Beardy\AppData\Roaming\RootsMagic
O43 - CFD: 11/05/2013 - 23:33:27 - [0,010] R-H-D D:\Users\Beardy\AppData\Roaming\SecuROM
O43 - CFD: 08/09/2013 - 09:03:48 - [4,614] ----D D:\Users\Beardy\AppData\Roaming\Skype
O43 - CFD: 29/01/2013 - 21:48:12 - [0,119] ----D D:\Users\Beardy\AppData\Roaming\Smart Panel
O43 - CFD: 06/06/2013 - 22:44:08 - [0,079] ----D D:\Users\Beardy\AppData\Roaming\SpeedAnalysis2 =>PUP.SpeedAnalysis
O43 - CFD: 12/04/2013 - 00:19:16 - [0] ----D D:\Users\Beardy\AppData\Roaming\Systweak
O43 - CFD: 10/09/2013 - 20:59:18 - [0,262] ----D D:\Users\Beardy\AppData\Roaming\TS3Client
O43 - CFD: 29/01/2013 - 21:48:11 - [0,009] ----D D:\Users\Beardy\AppData\Roaming\TuneUp Software
O43 - CFD: 11/09/2013 - 01:19:47 - [0,682] ----D D:\Users\Beardy\AppData\Roaming\vlc
O43 - CFD: 29/01/2013 - 21:48:12 - [0,039] ----D D:\Users\Beardy\AppData\Roaming\WebPlayerBdd =>Adware.SocialSkinz
O43 - CFD: 29/01/2013 - 21:48:11 - [0,000] ----D D:\Users\Beardy\AppData\Roaming\Windows Live Writer
O43 - CFD: 09/08/2013 - 12:18:17 - [15,272] ----D D:\Users\Beardy\AppData\Local\Adobe
O43 - CFD: 12/07/2013 - 20:57:34 - [13,716] ----D D:\Users\Beardy\AppData\Local\adslTV
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Apple
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Apple Computer
O43 - CFD: 29/01/2013 - 21:53:23 - [12,766] ----D D:\Users\Beardy\AppData\Local\Avg2013
O43 - CFD: 29/01/2013 - 21:53:23 - [1,711] ----D D:\Users\Beardy\AppData\Local\fontconfig
O43 - CFD: 29/01/2013 - 21:53:23 - [0,001] ----D D:\Users\Beardy\AppData\Local\gegl-0.2
O43 - CFD: 12/04/2013 - 00:04:14 - [0,295] ----D D:\Users\Beardy\AppData\Local\Google
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Macromedia
O43 - CFD: 07/08/2013 - 14:13:50 - [0,000] ----D D:\Users\Beardy\AppData\Local\messengerdusexe
O43 - CFD: 29/01/2013 - 21:53:23 - [25,757] ----D D:\Users\Beardy\AppData\Local\MFAData
O43 - CFD: 01/02/2013 - 14:49:27 - [1263,680] ----D D:\Users\Beardy\AppData\Local\Microsoft
O43 - CFD: 30/07/2013 - 05:57:42 - [0,223] ----D D:\Users\Beardy\AppData\Local\Microsoft Games
O43 - CFD: 30/03/2013 - 21:37:16 - [0,296] ----D D:\Users\Beardy\AppData\Local\Microsoft Help
O43 - CFD: 29/01/2013 - 21:53:23 - [22,999] ----D D:\Users\Beardy\AppData\Local\Mozilla
O43 - CFD: 29/01/2013 - 21:53:23 - [0] ----D D:\Users\Beardy\AppData\Local\Programs
O43 - CFD: 01/09/2013 - 23:32:19 - [72,730] ----D D:\Users\Beardy\AppData\Local\TeamSpeak 3 Client
O43 - CFD: 29/01/2013 - 21:53:25 - [11,838] ----D D:\Users\Beardy\AppData\Local\Temp
O43 - CFD: 29/01/2013 - 21:53:23 - [4,120] ----D D:\Users\Beardy\AppData\Local\VirtualStore
O43 - CFD: 27/06/2013 - 02:16:46 - [0,082] ----D D:\Users\Beardy\AppData\Local\Windows Live
O43 - CFD: 29/01/2013 - 21:53:23 - [0,618] ----D D:\Users\Beardy\AppData\Local\Windows Live Writer
O43 - CFD: 29/01/2013 - 21:48:15 - [0,013] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/01/2013 - 21:48:15 - [0,000] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 03/04/2013 - 09:53:23 - [0,005] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
O43 - CFD: 08/07/2013 - 12:38:45 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CVitaeV4
O43 - CFD: 03/02/2013 - 16:36:59 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FirstRowSportApp.com
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Frontline - Fields of Thunder
O43 - CFD: 23/07/2013 - 17:00:59 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 11/02/2013 - 21:59:23 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Larousse
O43 - CFD: 29/01/2013 - 21:48:15 - [0,001] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monte Cristo
O43 - CFD: 29/01/2013 - 21:48:11 - [0] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nathan
O43 - CFD: 07/08/2013 - 14:13:50 - [0,000] R---D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 29/01/2013 - 21:48:15 - [0,001] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 01/09/2013 - 23:32:19 - [0,002] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 11/05/2013 - 23:31:48 - [0,009] ----D D:\Users\Beardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Titan Quest Immortal Throne
~ 143 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 328 Scanned in 00mn 07s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.066F13E5AAECDD18727718867FE5347F] - 10/09/2013 - 23:39:43 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1126139]
O44 - LFC:[MD5.C8F8304C840FF24767E719D0CFD6F077] - 10/09/2013 - 20:02:17 ---A- . (...) -- C:\Windows\setupact.log [2856]
O44 - LFC:[MD5.4DE67443CF2E3BB40C3FDC763A245861] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1555322]
O44 - LFC:[MD5.E6C93F6DD6E077B7F72E8A0F6D436E20] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [107122]
O44 - LFC:[MD5.ACA9E4414BC543A3CCDA50ED4F862C6A] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [131230]
O44 - LFC:[MD5.57282AA4467A4F3034E80A0D98CC7684] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [618404]
O44 - LFC:[MD5.BD46CBBA44EC1F5F4243F98B289C2E30] - 10/09/2013 - 14:29:10 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [706178]
O44 - LFC:[MD5.4DE67443CF2E3BB40C3FDC763A245861] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\PerfStringBackup.INI [1555322]
O44 - LFC:[MD5.E6C93F6DD6E077B7F72E8A0F6D436E20] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfc009.dat [107122]
O44 - LFC:[MD5.ACA9E4414BC543A3CCDA50ED4F862C6A] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat [131230]
O44 - LFC:[MD5.57282AA4467A4F3034E80A0D98CC7684] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfh009.dat [618404]
O44 - LFC:[MD5.BD46CBBA44EC1F5F4243F98B289C2E30] - 10/09/2013 - 14:29:10 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat [706178]
O44 - LFC:[MD5.280E1C3AF22FEA772AEA2C1F4DA5AC83] - 10/09/2013 - 13:26:45 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.96BDE90B92867C595AC4A9661A842BB4] - 01/09/2013 - 06:36:21 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [515168]
O44 - LFC:[MD5.96BDE90B92867C595AC4A9661A842BB4] - 01/09/2013 - 06:36:21 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT [515168]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 31/08/2013 - 04:45:42 ---A- . (...) -- C:\Windows\setuperr.log [0]
~ Files: 16 Scanned in 00mn 02s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/09/2200 - 00:50:19 - C:\Windows\Prefetch\ReadyBoot
~ Prefetcher: 1 Scanned in 00mn 00s
---\\ Export de cl� d'application autoris�e (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" [Enabled] .(.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
~ Keys Export: 4 Scanned in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s
---\\ Cl� de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{02a76299-74f1-11e2-bb94-10bf484d8da6}\AutoRun\command. (...) -- H:\Autorun.exe
O51 - MPSK:{04bab9ea-7288-11e2-a5f2-10bf484d8da6}\AutoRun\command. (...) -- E:\WD SmartWare.exe (.not file.)
O51 - MPSK:{91196a89-6565-11e2-864f-446d57711253}\AutoRun\command. (.Macrovision Corporation - DemoShield Multi-CD Launch.) -- G:\Launch.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\ASUSWebStorage [Key] . (.ASUS Cloud Corporation - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.143.296\AsusWSPanel.exe
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- D:\Mes Programmes\Steam\steam.exe
~ SMSR Keys: 4 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 4 Scanned in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.A41B855EDC1F141851E27F984827942C] - 21/10/2010 - 05:05:18 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\SysWOW64\drivers\AiCharger.sys [14592]
~ Drivers: 16 Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 10/09/2013 - 20:04:24 ---A- . (...) -- C:\Users\Beardy\.thumbnails\normal\a2177e7327191ce921fbe713841539b3.png [15454]
O61 - LFC: 10/09/2013 - 20:09:34 ---A- . (...) -- C:\Users\Beardy\.thumbnails\normal\7545998c1f9f5b28efe3d5676a7cb79b.png [5769]
O61 - LFC: 10/09/2013 - 21:21:03 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\themerc [360]
O61 - LFC: 10/09/2013 - 21:21:05 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\pluginrc [277962]
O61 - LFC: 10/09/2013 - 21:21:06 ---A- . (...) -- C:\Users\Beardy\.thumbnails\normal\bf6891384269fecdb75366bb00255855.png [5438]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\colorrc [739]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\controllerrc [1863]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\dockrc [1123]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\menurc [77569]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\parasiterc [102]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\sessionrc [2081]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\tags.xml [34341]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\templaterc [4817]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\tool-presets\Texte.gtp [341]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\toolrc [3996]
O61 - LFC: 10/09/2013 - 21:22:26 ---A- . (...) -- C:\Users\Beardy\.gimp-2.8\unitrc [1178]
~ Files: 16 Scanned in 00mn 01s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adp94xx.sys (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpahci.sys (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\adpu320.sys (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320
O64 - Services: CurCS - 26/03/2012 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\aliide.sys (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdide.sys (amdide) .(.Microsoft Corporation - Pilote IDE AMD.) - LEGACY_AMDIDE
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\amdsata.sys (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdsbs.sys (amdsbs) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arc.sys (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\arcsas.sys (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - 04/01/2008 - Pas de propri�taire (ASInsHelp) .(...) - LEGACY_ASINSHELP
O64 - Services: CurCS - 24/08/2010 - Pas de propri�taire (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 03/08/2010 - Pas de propri�taire (AsUpIO) .(...) - LEGACY_ASUPIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgidsdrivera.sys (AVGIDSDriver) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgidsha.sys (AVGIDSHA) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSHA
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgldx64.sys (Avgldx64) .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX64
O64 - Services: CurCS - 20/07/2013 - C:\Windows\System32\DRIVERS\avgloga.sys (Avgloga) .(.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) - LEGACY_AVGLOGA
O64 - Services: CurCS - 01/07/2013 - C:\Windows\System32\DRIVERS\avgmfx64.sys (Avgmfx64) .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX64
O64 - Services: CurCS - 10/07/2013 - C:\Windows\System32\DRIVERS\avgrkx64.sys (Avgrkx64) .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX64
O64 - Services: CurCS - 21/03/2013 - C:\Windows\System32\DRIVERS\avgtdia.sys (Avgtdia) .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\cmdide.sys (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\compbatt.sys (Compbatt) .(.Microsoft Corporation - Composite Battery Driver.) - LEGACY_COMPBATT
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 02/01/1601 - Pas de propri�taire (eamonm) .(...) - LEGACY_EAMONM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\elxstor.sys (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\HpSAMD.sys (HpSAMD) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 29/11/2011 - C:\Windows\System32\drivers\iaStor.sys (iaStor) .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\iaStorV.sys (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\iirsp.sys (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\intelide.sys (intelide) .(.Microsoft Corporation - Intel PCI IDE Driver.) - LEGACY_INTELIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\isapnp.sys (isapnp) .(.Microsoft Corporation - Pilote de bus PNP ISA.) - LEGACY_ISAPNP
O64 - Services: CurCS - 22/11/2012 - C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys (ISWKL) .(.Check Point Software Technologies - ZoneAlarm Browser Security.) - LEGACY_ISWKL
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_fc.sys (LSI_FC) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas.sys (LSI_SAS) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_sas2.sys (LSI_SAS2) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\lsi_scsi.sys (LSI_SCSI) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\megasas.sys (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\MegaSR.sys (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\webclnt.dll (MRxDAV) .(.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) - LEGACY_MRXDAV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\msdsm.sys (msdsm) .(.Microsoft Corporation - Module sp�cifique de p�riph�riques Microsof.) - LEGACY_MSDSM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 02/07/2010 - C:\Windows\System32\drivers\mv91xx.sys (mv91xx) .(.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) - LEGACY_MV91XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\nfrd960.sys (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA� nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\nvstor.sys (nvstor) .(.NVIDIA Corporation - NVIDIA� nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pciide.sys (pciide) .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_PCIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql2300.sys (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ql40xx.sys (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\sbp2port.sys (sbp2port) .(.Microsoft Corporation - SBP-2 Protocol Driver.) - LEGACY_SBP2PORT
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\SiSRaid2.sys (SiSRaid2) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\sisraid4.sys (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 23/01/2013 - C:\Windows\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\stexstor.sys (stexstor) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\viaide.sys (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 26/03/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 13/12/2012 - C:\Windows\System32\DRIVERS\vsdatant.sys (Vsdatant) .(.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - LEGACY_VSDATANT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\vsmraid.sys (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\wd.sys (Wd) .(.Microsoft Corporation - Microsoft Watchdog Timer Driver.) - LEGACY_WD
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 122 Scanned in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ FASS Keys: 19 Scanned in 00mn 00s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3240727&SearchSource=13&CUI=UN89362323271951849"); =>Hijacker.SmartBar
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("Smartbar.ConduitSearchEngineList", "findr Customized Web Search"); =>Hijacker.SmartBar
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("Smartbar.ConduitSearchUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3240727&SearchSource=2&CUI=UN89362323[...] =>Hijacker.SmartBar
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("aol_toolbar.default.homepage.check", false);
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("aol_toolbar.default.search.check", false);
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("browser.search.defaultthis.engineName", "findr Customized Web Search");
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("extensions.5167333498382.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,se[...] =>Toolbar.Babylon
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("extensions.BabylonToolbar.prtkDS", 0); =>Toolbar.Babylon
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("extensions.BabylonToolbar.prtkHmpg", 0); =>Toolbar.Babylon
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.RevertDialog.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "1360337648291"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.Visibility.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.Visibility.intervaldays", "7"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.HideOveride.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.cda.returnValue", "disable"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.height", "335"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.url", "http://www.sweetim.com/simffbar/options_remote_ff.asp?lang=$locale_id;&toolbar_version[...] =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.0.width", "761"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.height", "300"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.1.width", "500"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handler.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.height", "150"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.url", "http://www.sweetim.com/simffbar/simcdadialog.asp"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dialogs.2.width", "530"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.google.com/.*|.*.google.co.in/.*|.[...] =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.mode.debug", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.newtab.created", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.newtab.enable", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.browser.startup.homepage", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.previous.keyword.URL", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.rc.url", "http://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_VERSION;&crg=$cargo;"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.callback", "simVerification"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.domain-blacklist", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "http://(www.|apps.)?facebook\\.com.*"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.0.url", "http://sc.sweetim.com/apps/in/fb/infb.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.callback", "simVerification"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "https://(www.|apps.)?facebook\\.com.*"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.elementid", "id_script_sim_fb"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.id", "id_script_fb_httpS"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.1.url", "https://sc.sweetim.com/apps/in/fb/infb.js"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.callback", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..*|.*.yahoo..*|.*.youtube.com.*[...] =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.domain-whitelist", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.elementid", "id_predict_include_script"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.id", "id_script_prad"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.scripts.2.url", "http://cdn1.certified-apps.com/scripts/shared/enable.js?si=3104&tid=chff1"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.search.external", "
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.search.history.capacity", "10"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", ""); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.enable", "false"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.simapp_id", "{FFDF4690-6596-11E2-864F-446D57711253}"); =>PUP.SweetIM
O69 - SBI: prefs.js [Beardy - 4uld153n.default] user_pref("sweetim.toolbar.version", "1.9.0.0"); =>PUP.SweetIM
O69 - SBI: SearchScopes [HKCU] {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} [DefaultScope] - (WebSearch) - http://websearch.helpmefindyour.info
~ Keys: Scanned in 00mn 00s
---\\ Enum�re les fichiers Crack & Keygen (CKF) (O82)
---\\ Enum�re les service demarr�s par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Services: 32 Scanned in 00mn 00s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.AD678375C17DA1EE5DC6514C0DB8B644] [SPRF][28/01/2013] (.Sony DADC Austria AG - SecuROM dynamic-data module.) -- C:\Users\Beardy\AppData\Local\Temp\drm_dyndata_7400006.dll [204800]
~ Files: 1 Scanned in 00mn 00s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{6C441092-61E9-497C-9577-9374CD99BF65}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{9B18A4B4-5FCC-41CE-B222-A243F118D8AA}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{CD7F1A45-A51D-4BAB-914A-C20BEF63B299}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
O87 - FAEL: "{C4C41E45-94EA-43C1-A733-2D3B82E459D7}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{50BF792E-5824-476A-8D90-DF1966ED1029}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{ACB7FAF2-455D-403B-9E62-2C2FDBB077C4}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{B963E1A7-1F46-435C-82C4-54553962F09E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{F74C7F1F-DAB1-4546-A4AB-242E7C72CA2B}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{BB7323EE-0AD5-4B96-9A7C-FB7E310B10EE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{57E07F92-A57D-467A-9651-FC11B668936F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DB4A8561-D579-45EB-B246-CC344932AE7D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{7619C735-4056-4ED0-BE27-25B7EA164DC2}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{B95FF5C8-E01E-4C3F-9030-7DFFCCE1DEDE}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{9150EE0E-2F97-409A-80C8-D41DF621812D}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{9C3D99DE-5B7F-46A2-BCBD-ACAF8F0AD49F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{80BF583F-4C63-454F-A869-B4D2ED26189A}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{256CE850-0758-4E35-846E-6EFA6E1796CB}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{D346DDEA-2FC6-4832-8B76-D7F55E7676B5}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{9AB85B1D-A115-4FB6-86E3-FA60F0A2AEDF}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{76047035-D6B0-4C67-B5E3-9CC9C8FEDFB3}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{83203FDE-B178-40B6-A341-03DE4F74702D}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{8946D57B-6B67-49A3-BD0F-1E20B1823C89}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{299BDE36-A313-401C-AAF0-DBFD384B6845}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{988F92E9-CCD8-4AB7-ABC7-E6BC5D3C2DA2}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- D:\Mes Programmes\Steam\Steam.exe
O87 - FAEL: "{EA674962-466E-45AA-8466-17ACAE00C20C}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- D:\Mes Programmes\Steam\Steam.exe
O87 - FAEL: "{37312643-84CA-492A-8CCD-0C331B8520CD}" | In - Private - P6 - TRUE | .(...) -- D:\Mes Programmes\Steam\SteamApps\common\Magic 2013\DotP_D13.exe
O87 - FAEL: "{8A90ADB5-D9E3-4C76-B912-ADA55990CBB4}" | In - Private - P17 - TRUE | .(...) -- D:\Mes Programmes\Steam\SteamApps\common\Magic 2013\DotP_D13.exe
O87 - FAEL: "{9DE165C1-C0CC-45D9-A951-91869F9DFE2E}" | In - Private - P6 - TRUE | .(.adsl TV / FM - adsl TV.) -- D:\Mes Programmes\adslTV\adsltv.exe
O87 - FAEL: "{E2D98044-7BE2-4371-ADF8-50DF0314A92A}" | In - Private - P17 - TRUE | .(.adsl TV / FM - adsl TV.) -- D:\Mes Programmes\adslTV\adsltv.exe
O87 - FAEL: "{CDC7AC62-890E-4578-8F91-19BD0D609F64}" | In - Private - P6 - TRUE | .(.VideoLAN - VLC media player 2.0.8.) -- D:\Mes Programmes\adslTV\VLC\vlc.exe
O87 - FAEL: "{789433DA-CF4E-41DA-85B9-85EC145F058F}" | In - Private - P17 - TRUE | .(.VideoLAN - VLC media player 2.0.8.) -- D:\Mes Programmes\adslTV\VLC\vlc.exe
O87 - FAEL: "{3541D243-D6D8-45E9-851C-0491C6F634E2}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{FC9BCBD0-5E87-441E-84B8-6BA4C90042E8}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{CA9FB789-6157-4408-864C-1D173DD8BDBE}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{59DCBFE6-A175-4B09-8E48-5F9D1E963AFB}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{A660760A-E789-415B-B627-CF1FC196DC10}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- D:\Mes Programmes\Microsoft Office\Office12\outlook.exe
O87 - FAEL: "{E98CE2ED-BDFF-4CD7-A0B9-81D50D95BB90}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{E4634935-E448-4975-9F96-B7242ACE22FE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Installateur Windows�.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{CB213E51-73F6-49C5-BF96-E8D5B3F3A872}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Installateur Windows�.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{EE0CD588-23DC-49F6-9197-3F6AC7EA1EF1}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "{A16A0E3C-00D0-4ACA-ABD6-A00066756FDC}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4DBCDF3D-2721-40C8-AA12-E3624F1ED302}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{CB6E44C0-E974-4AC1-A860-514093523404}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{4638A643-A181-4A3F-A2C4-513D13741BDB}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{EF358F3A-D753-46D5-9A63-51DEEA26CF90}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O87 - FAEL: "{E14A3F75-C17A-459D-A7F5-F8B90B84C62A}" |In - Private - P6 - TRUE | .(...) -- C:\Users\Beardy\AppData\Local\DirectDownloader\DirectDownloader.exe (.not file.) =>PUP.DirectDownloader
O87 - FAEL: "{7D3B112C-A974-45C0-BC4E-ABB75DD695D6}" |In - Private - P17 - TRUE | .(...) -- C:\Users\Beardy\AppData\Local\DirectDownloader\DirectDownloader.exe (.not file.) =>PUP.DirectDownloader
O87 - FAEL: "{41BD8FB7-7884-4DB9-9DC3-58C4E68405CE}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
O87 - FAEL: "{AD358EAD-9720-4E96-99FF-DAC6C9318EFE}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
O87 - FAEL: "{09C8A9BD-BCD7-4603-A12E-C51FD5F37BE1}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
O87 - FAEL: "{C7E13227-23CB-4875-B5E9-BE728C1AE766}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
O87 - FAEL: "{A132F862-EF17-4080-9FB5-F814C48D65F3}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
O87 - FAEL: "{1A58BC6F-3952-4F71-A2B7-099131B0566E}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
O87 - FAEL: "{3FF94D9B-22FD-45AC-8515-13AFFACBDE92}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
O87 - FAEL: "{67454923-8733-422D-9BA6-03D968273E81}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
O87 - FAEL: "{DC711F39-2382-403F-AD66-FA5B193B4D6E}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
~ Firewall: 224 Scanned in 00mn 00s
---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "02F12AEC4FBDC464B818828B05A8DFDD" . (.Windows Live Family Safety.) -- C:\Windows\Installer\{CEA21F20-DBF4-464C-8B81-28B8508AFDDD}\fssicon.ico
O90 - PUC: "03E9C206838F2DA4D82C62C591D2A4CA" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{602C9E30-F838-4AD2-8DC2-265C192D4AAC}\maconfico
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "0C7EC0FA4E3A37D489B82B1978CEE6A9" . (.QuickTime.) -- C:\Windows\Installer\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}\Installer.ico
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "3058F5C62D55893458C863B2A7A75FC1" . (.Firebird SQL Server - MAGIX Edition.) -- C:\Windows\Installer\{6C5F8503-55D2-4398-858C-362B7A7AF51C}\ProgramIcon.exe
O90 - PUC: "3F7A4F31CBAE1624FAB6317177F77055" . (.Fast Boot.) -- C:\Windows\Installer\{13F4A7F3-EABC-4261-AF6B-1317777F0755}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "44870A0846AC4ED4BA163DD7BD8E70F4" . (.PDF Architect.) -- C:\Windows\Installer\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}\main_icon
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "554590D7179DC4D4E9DFA96F6A85F4A3" . (.Bing Bureau.) -- C:\Windows\Installer\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}\icon.ico
O90 - PUC: "68AB67CA7DA7FFFFB744AA0000000010" . (.Adobe Reader X (10.1.7) MUI.) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "82D6625F2B0E0314FB5CEE51A55D41CD" . (.Apple Application Support.) -- C:\Windows\Installer\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}\WinInstall.ico
O90 - PUC: "8FC229B8C6A8EC148A851F57D5F7D592" . (.NVIDIA PhysX.) -- C:\Windows\Installer\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}\icon.ico
O90 - PUC: "90C64EA18BA25EE488BF80DCF07F2FFD" . (.Bing Bar.) -- C:\Windows\Installer\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}\icon_installer_ico =>Toolbar.Bing
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D7ADF82D6C512A848986B6BC82EB2645" . (.Microsoft Picture It! Photo 2001.) -- C:\Windows\Installer\{D28FDA7D-15C6-48A2-9868-6BCB28BE6254}\pi.ico
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.7.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 187 Scanned in 00mn 00s
---\\ Enum�re les donn�es de la cl� NameSpace (MNS) (O92)
O92 - MNS: ASUS WebStorage Drive - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf}
~ MNS: 1 Scanned in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.C1CF2F238023ABC668B2A5AC48E44DA6] [WIS][30/03/2013] (.pdfforge - PDF Architect Installer.) -- C:\Windows\Installer\135866.msi [49815552]
[MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\143e527.msi [3760128] =>PUP.SweetIM
[MD5.EDD21B7C504C7E3F36DE766B31BD3178] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\143e52f.msi [3304960] =>PUP.SweetIM
[MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\143e537.msi [2997248] =>PUP.SweetIM
[MD5.BBF4134424D0556F36DC086028750937] [WIS][23/01/2013] (.SweetIM Technologies Ltd. - SweetPacks bundle uninstaller.) -- C:\Windows\Installer\143e53f.msi [2579456] =>PUP.SweetIM
[MD5.CAC92727C33BEC0A79965C61BBB1C82F] [WIS][19/01/2013] (.Igor Pavlov - 7-Zip (x64 edition) Package.) -- C:\Windows\Installer\14cfcbf.msi [1376768]
[MD5.B1C861317B5A5D0755FBC53352C4B0A3] [WIS][23/08/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\7669a4.msi [22614016]
[MD5.D2F34AF196CCAF29A124324392FC3DFF] [WIS][04/01/2013] (.Valve Corporation - Steam.) -- C:\Windows\Installer\9f90d1.msi [8532992]
~ WIS: 188 Scanned in 00mn 06s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 09/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 20/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 14/07/2011 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe
SR - | Auto 29/10/2011 918448 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
SR - | Auto 29/12/2011 950912 | (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.18\aaHMSvc.exe
SR - | Auto 21/10/2010 586880 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
SR - | Auto 04/07/2013 4939312 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
SR - | Auto 23/07/2013 283136 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
SS - | Auto 11/06/2012 193616 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
SR - | Demand 11/06/2012 240208 | (BBUpdate) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
SR - | Auto 23/12/2009 203392 | (Device Handle Service) . (.ASUSTeK Computer Inc..) - C:\Windows\SysWOW64\AsHookDevice.exe
SR - | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SR - | Auto 03/02/2012 628448 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 22/11/2012 828072 | (IswSvc) . (.Check Point Software Technologies.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
SR - | Auto 08/02/2012 161560 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 08/02/2012 277784 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Demand 28/10/2012 427976 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\x64\maconfservice.exe
SS - | Demand 05/01/2013 115760 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 29/12/2012 884152 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 29/12/2012 1260472 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 09/01/2013 1324104 | (PDF Architect Helper Service) . (.pdfforge GbR.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
SR - | Auto 09/01/2013 795208 | (PDF Architect Service) . (.pdfforge GbR.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 13/11/2012 1103392 | (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - | Auto 13/11/2012 1369624 | (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - | Auto 13/11/2012 168384 | (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SS - | Auto 25/07/2013 162672 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 10/07/2013 559016 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 29/12/2012 383416 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 08/02/2012 363800 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 29/01/2013 2447888 | (vsmon) . (.Check Point Software Technologies LTD.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 06s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Beardy at 11/09/2013 01:53:22
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Beardy at 11/09/2013 01:53:24
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s
---\\ Liste des �mulateurs de CD/DVD (MBR Hook)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
~ Emulateurs: Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : 12899 - (10/09/2013)
Cl�s trouv�es (Keys found) : 205
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 9
Fichiers trouv�s (Files found) : 13
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427}] =>PUP.SpeedAnalysis^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4723AAA8-B2F9-4CC1-9E60-190976DB1FA4}] =>Adware.SmileyBar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}] =>Toolbar.Bing^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}] =>Toolbar.Bing^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload] =>PUP.1ClickDownloader^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Smiley Bar for Facebook] =>Adware.SmileyBar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 2] =>PUP.SpeedAnalysis^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F21ABA47-CE22-4B3D-8F47-8BF08C21C094}] =>Adware.SocialSkinz^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>PUP.SweetIM
[HKLM\Software\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
[HKLM\Software\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}] =>Adware.Adkubru
[HKLM\Software\Wow6432Node\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}] =>Adware.Adkubru
[HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD] =>Toolbar.Agent
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKCU\Software\AppDataLow\SProtector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.AdvancedSystemProtector
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}] =>PUP.SweetIM
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload] =>PUP.1ClickDownloader
[HKLM\Software\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Smiley Bar for Facebook] =>Adware.SmileyBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils.1] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator.1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}] =>Adware.MagniPic
[HKLM\Software\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}] =>Adware.MagniPic
[HKLM\Software\Classes\ScriptHost.Tool.1] =>Toolbar.Agent
[HKLM\Software\Classes\ScriptHost.Tool] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\AddonsFramework.DLL] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\ButtonSite.DLL] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\PropertySync.EXE] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\ScriptHost.DLL] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{93CF54F5-CFAA-4440-B588-8ED0DFAD5C21}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{93CF54F5-CFAA-4440-B588-8ED0DFAD5C21}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{D3BC53E7-0437-4C97-90EE-2CD6FF47FB14}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Classes\Interface\{D3BC53E7-0437-4C97-90EE-2CD6FF47FB14}] =>Toolbar.Freecorder
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Protection_ZoneAlarm Toolbar] =>Toolbar.ZoneAlarm
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASMANCS] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk] =>Spyware.GophotoIt
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\bgnnidmnbdkmhfkjgdnngciimpdgohok] =>Hijacker.FreehdsportTV
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog] =>Adware.SmileyBar
[HKLM\Software\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^
C:\Program Files (x86)\Gophoto.it =>Spyware.GophotoIt^
C:\Program Files (x86)\Smiley Bar for Facebook =>Adware.SmileyBar^
C:\Program Files (x86)\Speed Analysis 2 =>PUP.SpeedAnalysis^
C:\ProgramData\Tarma Installer =>Toolbar.Tarma^
D:\Users\Beardy\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
D:\Users\Beardy\AppData\Roaming\SpeedAnalysis2 =>PUP.SpeedAnalysis^
D:\Users\Beardy\AppData\Roaming\WebPlayerBdd =>Adware.SocialSkinz^
C:\ProgramData\InstallMate =>Toolbar.Tarma
C:\ProgramData\AVG January 2013 Campaign =>Toolbar.AVGSearch
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\SearchPlugins\zonealarm.xml =>Toolbar.ZoneAlarm
D:\Users\Beardy\AppData\Roaming\Mozilla\Firefox\Profiles\4uld153n.default\Extensions\gophoto@gophoto.it.xpi =>Spyware.GophotoIt
C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll =>PUP.SpeedAnalysis^
C:\Program Files (x86)\Smiley Bar for Facebook\ScriptHost.dll =>Adware.SmileyBar^
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll =>Toolbar.Bing^
[HKCU\Software\AppDataLow\Software\SmartBar] =>Hijacker.SmartBar^
[HKLM\Software\Wow6432Node\AVG Secure Search] =>Toolbar.AVGSearch^
[HKLM\Software\Wow6432Node\DirectDownloader] =>PUP.DirectDownloader^
C:\Windows\Installer\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}\icon_installer_ico =>Toolbar.Bing^
C:\Windows\Installer\143e527.msi =>PUP.SweetIM^
C:\Windows\Installer\143e52f.msi =>PUP.SweetIM^
C:\Windows\Installer\143e537.msi =>PUP.SweetIM^
C:\Windows\Installer\143e53f.msi =>PUP.SweetIM^
~ Additionnel Scan: 246893 Items scanned in 00mn 11s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/28153012-pup-speedanalysis =>PUP.SpeedAnalysis
~ http://nicolascoolman.webs.com/apps/blog/show/27530912-adware-smileybar =>Adware.SmileyBar
~ http://nicolascoolman.webs.com/apps/blog/show/31536787-toolbar-bing =>Toolbar.Bing
~ http://nicolascoolman.webs.com/apps/blog/show/26607014-pup-1clickdownloader =>PUP.1ClickDownloader
~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz
~ http://nicolascoolman.webs.com/apps/blog/show/26811836-adware-yontoo =>Adware.Yontoo
~ http://nicolascoolman.webs.com/apps/blog/show/28486577-pup-mocaflix =>PUP.MocaFlix
~ http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar =>Hijacker.SmartBar
~ http://nicolascoolman.webs.com/apps/blog/show/29790567-adware-installcore =>Adware.InstallCore
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>Toolbar.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/28061330-pup-directdownloader =>PUP.DirectDownloader
~ http://nicolascoolman.webs.com/apps/blog/show/26630283-pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27793524-spyware-gophotoit =>Spyware.GophotoIt
~ http://nicolascoolman.webs.com/apps/blog/show/26770694-adware-opencandy =>Adware.OpenCandy
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blog/show/26632189-adware-magnipic =>Adware.MagniPic
~ http://nicolascoolman.webs.com/apps/blog/show/30583270-hijacker-freehdsporttv =>Hijacker.FreeHDSportTV
~ MSI: 20 link(s) detected in 00mn 11s
End of the scan (2080 lines in 01mn 44s)(2)