---\\ Web Browser
MSIE: Internet Explorer v9.10.9200.16453 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 8 Home Premium Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : P9T7T
Windows License : OK
~ Windows Remaining Initializations Number : 998
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3984 MB (65% free)
System Restore: Activ� (Enable)
System drive C: has 176 GB (57%) free of 306 GB
---\\ Logged in mode
~ Computer Name: DAVID
~ User Name: David
~ All Users Names: UpdatusUser, HomeGroupUser$, David, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\David\AppData\Roaming\
~ %Desktop% : C:\Users\David\Desktop\
~ %Favorites% : C:\Users\David\Favorites\
~ %LocalAppData% : C:\Users\David\AppData\Local\
~ %StartMenu% : C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 176 Go of 306 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 101 Go of 142 Go)
E:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files
[MD5.928791755FDDEA721B053535EF84FA17] - (.Microsoft Corporation - Explorateur Windows.) (.26/07/2012 - 05:49:13.) -- C:\Windows\Explorer.exe [2380440]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.AAEF73606F58ADE710208F4B1B988FBF] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.08/11/2012 - 05:22:19.) -- C:\Windows\System32\wininet.dll [2246656]
[MD5.93AB226C07A9789B2EC7B41F73602F76] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Winlogon.exe [516608]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Biblioth�que de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.9E975BDC89C83900B2C534C4E1B018F8] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\AFD.sys [561152]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.8D6810577E9C4F56DCB8E9BACAC7287B] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.26/07/2012 - 03:27:36.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.1EEAA5A62E8C49DDF58798F06F78BFFA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.26/07/2012 - 03:23:25.) -- C:\Windows\system32\Drivers\MRxSmb.sys [368128]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.4A7EEA9C4AD5CBFDA3C0E5B821C99CAD] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.26/07/2012 - 06:26:46.) -- C:\Windows\system32\Drivers\ntfs.sys [1934064]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parall�le.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de p�riph�rique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.26/07/2012 - 05:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016]
---\\ Hidden files state (Hidden/Total)
~ Mes images (My Pictures) : 2/15983
~ Mes musiques (My Musics) : 1/4955
~ Mes Favoris (My Favorites) : 1/2
~ Mes Documents (My Documents) : 1/332
~ Menu demarrer (Programs) : 1/21
---\\ Running Processes
[MD5.E02A512F30FC2A02A9CADEEC375FC969].(.Creative Technology Ltd.THXAudio.) -- C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [1517056] [PID.5328]
[MD5.2FD0AB384223922EE6811A3FB4F11211].(.MSI.Super-Charger.) -- C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [502328] [PID.5360]
[MD5.9DADF1A809ECEC86F04BDE35190D59FE].(.AVG Technologies CZ, s.r.o..AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe [3147384] [PID.5388]
[MD5.D05965C02FD5781503968225B22189F4].(.Microsoft Corporation.Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [770520] [PID.5640]
[MD5.883B2E1341E5BE906A7507308A6636DF].(.Intel Corporation.IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240] [PID.3196]
[MD5.72CB29B523061FF64B3F66B8F3A5E034].(.Nicolas Coolman.ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5648896] [PID.1184]
---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis F0, F1, F2, F3 - IniFiles, Auto loading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
---\\ Browser Helper Objects (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
---\\ Auto loading programs from Registry and folders (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKLM\..\Run: [BTMTrayAgent] . (.Motorola Solutions, Inc. - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll
O4 - HKLM\..\Run: [Radio Manager] . (.MSI - Radio Manager.) -- C:\Program Files (x86)\SCM\Radio Manager.exe
O4 - HKLM\..\Run: [SCM] . (.MSI - SCM.) -- C:\Program Files (x86)\SCM\SCM.exe
O4 - HKLM\..\Run: [THXCfg64] . (.Creative Technology Ltd. - .) -- C:\Windows\system32\THXCfg64.dll
O4 - HKCU\..\Run: [EPSON Stylus SX200 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEFE.exe
O4 - HKCU\..\Run: [EPSON Stylus SX200 Series (Copie 1)] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEFE.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
O4 - HKLM\..\Wow6432Node\Run: [THX Audio Control Panel] . (.Creative Technology Ltd - THXAudio.) -- C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdReg] . (.Creative Technology Ltd. - Creative UpdReg.) -- C:\Windows\UpdReg.exe
O4 - HKLM\..\Wow6432Node\Run: [Super-Charger] . (.MSI - Super-Charger.) -- C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKUS\S-1-5-21-757369325-2790952892-3743396432-1002-757369325-2790952892-3743396432-1001\..\Run: [EPSON Stylus SX200 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEFE.exe
O4 - HKUS\S-1-5-21-757369325-2790952892-3743396432-1002-757369325-2790952892-3743396432-1001\..\Run: [EPSON Stylus SX200 Series (Copie 1)] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEFE.exe
---\\ IE Options icon not visible in Control Panel (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
---\\ Hijackers (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0C722ADD-A413-4C29-9551-652029C5D048}: DhcpNameServer =
O17 - HKLM\System\CCS\Services\Tcpip\..\{953FD413-C2FE-44F0-A5FC-8E0CF7A4F25D}: DhcpNameServer =
O17 - HKLM\System\CS1\Services\Tcpip\..\{0C722ADD-A413-4C29-9551-652029C5D048}: DhcpNameServer =
O17 - HKLM\System\CS1\Services\Tcpip\..\{953FD413-C2FE-44F0-A5FC-8E0CF7A4F25D}: DhcpNameServer =
---\\ Extra protocols (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contr�le ActiveX pour le flux vid�o.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft� InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft� InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contr�le ActiveX pour le flux vid�o.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
---\\ AppInit_DLLs Registry value Autorun (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
---\\ AppInit_DLLs Registry value Autorun (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 310.) - C:\Windows\system32\nvinitx.dll
---\\ ShellServiceObjectDelayLoad (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ non Microsoft non disabled Windows XP/NT/2000 Services (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: Bluetooth Device Monitor (Bluetooth Device Monitor) . (.Motorola Solutions, Inc. - Bluetooth Device Monitor.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service (Bluetooth OBEX Service) . (.Motorola Solutions, Inc. - Bluetooth OBEX Service.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Micro Star SCM (Micro Star SCM) . (.Micro-Star International Co., Ltd. - MSI SCM Service.) - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: MSI_SuperCharger (MSI_SuperCharger) . (.MSI - Super-Charger Service.) - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 310.9.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Qualcomm Atheros Killer Service (Qualcomm Atheros Killer Service) . (...) - C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
---\\ Windows Active Desktop Components & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
---\\ Task Planned Automatically(039)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\ROC_REG_JAN_DELETE.job
---\\ ActiveSetup Installed Components (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
---\\ Drivers launched at startup (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - C:\Windows\system32\DRIVERS\avgidsdrivera.sys
O41 - Driver: (Avgldx64) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\system32\DRIVERS\avgldx64.sys
O41 - Driver: (Avgwfpa) . (.AVG Technologies CZ, s.r.o. - AVG Firewall driver.) - C:\Windows\system32\DRIVERS\avgwfpa.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: oem13.inf (BfLwf) . (.Qualcomm Atheros, Inc. - Killer Bandwidth Control Filter Driver.) - C:\Windows\system32\DRIVERS\bwcW8x64.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: Windows Socket 2.0 Non-IFS Service Provider Support Environment (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
---\\ Software installed (O42)
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- AVG
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {058EB68D-8F07-4E07-BD3B-B97D18E092F0}
O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {502275B0-3DA3-44D8-8702-066525CAAE98}
O42 - Logiciel: Adobe Reader XI (11.0.01) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {CCE825DB-347A-4004-A186-5F4A6FDD8547}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {D70884EA-E2CE-4539-91DB-4766CC1E5F5F}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Battery Calibration - (.Micro-Star International Co., Ltd..) [HKLM][64Bits] -- {619FA785-489B-4D22-911F-82D6EDF5BDB0}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: BurnRecovery - (.Micro-Star International Co., Ltd..) [HKLM][64Bits] -- {2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: D�sinstaller l'imprimante EPSON Stylus SX200 Series - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON Stylus SX200 Series
O42 - Logiciel: EPSON Scan - (..) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: ETDWare PS/2-X64 - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel� Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {977D1ABF-4089-4CA7-BA33-CC75808B7ACE}
O42 - Logiciel: KB9X Radio Switch Driver - (.ENE TECHNOLOGY INC..) [HKLM][64Bits] -- B16388B2E5D3CBA8F0EE88A8C5459BADAF4DE251
O42 - Logiciel: Malwarebytes Anti-Malware version - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mises � jour NVIDIA 1.11.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: NVIDIA Logiciel syst�me PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29}
O42 - Logiciel: NVIDIA Pilote graphique 310.90 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Qualcomm Atheros Killer Network Manager - (.Qualcomm Atheros.) [HKLM][64Bits] -- InstallShield_{DF446558-ADF7-4884-9B2D-281979CCE71F}
O42 - Logiciel: Qualcomm Atheros Killer Network Manager - (.Qualcomm Atheros.) [HKLM][64Bits] -- {DF446558-ADF7-4884-9B2D-281979CCE71F}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: SCM - (. .) [HKLM][64Bits] -- {FA8AB91A-0B41-4797-9015-9B3FBC7834CC}
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM][64Bits] -- StarCraft II
O42 - Logiciel: Super-Charger - (.MSI.) [HKLM][64Bits] -- {7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1
O42 - Logiciel: THX TruStudio Pro - (.Creative Technology Limited.) [HKLM][64Bits] -- {4FA6CB9A-2972-4AAF-A36E-3C40FCC22395}
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Visual Studio 2010 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {21B133D6-5979-47F0-BE1C-F6A6B304693F}
O42 - Logiciel: Windows Driver Package - Intel (NETwNe64) net (09/12/2012 - (.Intel.) [HKLM][64Bits] -- A007E57753F87B14A4737DA95057F173950A6A3D
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {0E5D76AD-A3FB-48D5-8400-8903B10317D3}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Creative Tech]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Creative Tech]
[HKLM\Software\GEAR Software]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\SRS Labs]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Blizzard Entertainment]
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Micro-Star International Co., Ltd.]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
---\\ Contents of the Common Files folders (O43)
O43 - CFD: 27/01/2013 - 16:12:56 - [119,659] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 26/01/2013 - 16:02:21 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 27/01/2013 - 15:30:16 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 25/01/2013 - 21:12:45 - [117,151] ----D C:\Program Files (x86)\AVG
O43 - CFD: 27/01/2013 - 15:29:54 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 27/01/2013 - 16:12:56 - [236,774] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 25/09/2012 - 12:51:39 - [5,827] ----D C:\Program Files (x86)\Creative
O43 - CFD: 25/09/2012 - 13:13:17 - [176,700] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 26/01/2013 - 18:04:44 - [6,269] ----D C:\Program Files (x86)\epson
O43 - CFD: 25/09/2012 - 13:14:36 - [61,680] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 25/09/2012 - 12:43:31 - [248,544] ----D C:\Program Files (x86)\Intel
O43 - CFD: 30/01/2013 - 22:02:46 - [7,645] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 27/01/2013 - 15:32:18 - [152,491] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 27/01/2013 - 15:37:28 - [12,242] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 14/08/2012 - 08:49:34 - [6,085] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 26/07/2012 - 09:12:59 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/08/2012 - 08:35:11 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/09/2012 - 13:11:19 - [12,019] ----D C:\Program Files (x86)\MSI
O43 - CFD: 26/01/2013 - 16:02:21 - [73,050] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 25/09/2012 - 12:42:19 - [17,416] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/08/2012 - 08:35:11 - [66,731] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 25/09/2012 - 12:45:31 - [5,136] ----D C:\Program Files (x86)\SCM
O43 - CFD: 25/01/2013 - 23:38:27 - [113,287] ----D C:\Program Files (x86)\StarCraft II
O43 - CFD: 25/09/2012 - 12:40:25 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 26/01/2013 - 13:48:43 - [94,419] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 30/01/2013 - 22:02:45 - [2,715] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/01/2013 - 22:02:46 - [15,970] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 30/01/2013 - 22:02:46 - [5,776] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 09:12:59 - [11,890] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 30/01/2013 - 22:02:45 - [6,580] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 09:12:59 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 01/02/2013 - 21:38:45 - [11,882] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 27/01/2013 - 16:12:59 - [6,274] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 27/01/2013 - 15:31:55 - [105,341] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 25/01/2013 - 22:37:25 - [2,910] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 25/09/2012 - 12:40:02 - [3,682] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 25/09/2012 - 12:33:22 - [13,439] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 25/09/2012 - 12:39:41 - [0,171] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 30/01/2013 - 22:23:16 - [86,838] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 25/09/2012 - 12:29:21 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 26/07/2012 - 09:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 30/01/2013 - 22:02:45 - [17,930] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 27/01/2013 - 15:32:19 - [2,774] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 01/02/2013 - 21:10:02 - [145,736] ----D C:\ProgramData\Adobe
O43 - CFD: 27/01/2013 - 15:30:08 - [36,748] ----D C:\ProgramData\Apple
O43 - CFD: 27/01/2013 - 15:31:55 - [56,903] ----D C:\ProgramData\Apple Computer
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 26/01/2013 - 12:23:00 - [8,430] ----D C:\ProgramData\AVG January 2013 Campaign
O43 - CFD: 25/01/2013 - 21:14:29 - [250,950] ----D C:\ProgramData\AVG2013
O43 - CFD: 25/01/2013 - 22:28:18 - [110,457] ----D C:\ProgramData\
O43 - CFD: 02/02/2013 - 20:52:15 - [0,053] ----D C:\ProgramData\Bigfoot Networks
O43 - CFD: 25/01/2013 - 22:37:25 - [148,824] ----D C:\ProgramData\Blizzard Entertainment
O43 - CFD: 25/01/2013 - 21:02:38 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 26/01/2013 - 18:01:37 - [7,610] ----D C:\ProgramData\EPSON
O43 - CFD: 25/09/2012 - 12:33:30 - [0,023] ----D C:\ProgramData\Intel
O43 - CFD: 27/01/2013 - 15:37:27 - [6,647] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 02/02/2013 - 20:56:17 - [34,682] ----D C:\ProgramData\MFAData
O43 - CFD: 29/01/2013 - 22:11:13 - [-1300,563] -S--D C:\ProgramData\Microsoft
O43 - CFD: 26/01/2013 - 16:01:48 - [3,843] ----D C:\ProgramData\NVIDIA
O43 - CFD: 25/09/2012 - 12:34:29 - [2,507] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 30/01/2013 - 22:43:43 - [3,757] ----D C:\ProgramData\PRICache
O43 - CFD: 26/07/2012 - 08:52:44 - [0,001] ----D C:\ProgramData\
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 25/09/2012 - 13:13:59 - [0,356] ----D C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 01/02/2013 - 21:08:47 - [0,041] ----D C:\Users\David\AppData\Roaming\Adobe
O43 - CFD: 27/01/2013 - 16:15:26 - [0,695] ----D C:\Users\David\AppData\Roaming\Apple Computer
O43 - CFD: 25/01/2013 - 21:14:47 - [0,005] ----D C:\Users\David\AppData\Roaming\AVG2013
O43 - CFD: 25/01/2013 - 20:29:24 - [0] ----D C:\Users\David\AppData\Roaming\Intel Corporation
O43 - CFD: 25/01/2013 - 20:56:34 - [0,004] ----D C:\Users\David\AppData\Roaming\Macromedia
O43 - CFD: 27/01/2013 - 15:37:41 - [0,004] ----D C:\Users\David\AppData\Roaming\Malwarebytes
O43 - CFD: 01/02/2013 - 21:08:47 - [1,161] -S--D C:\Users\David\AppData\Roaming\Microsoft
O43 - CFD: 25/01/2013 - 21:14:08 - [0] ----D C:\Users\David\AppData\Roaming\TuneUp Software
O43 - CFD: 26/01/2013 - 13:49:15 - [0,077] ----D C:\Users\David\AppData\Roaming\vlc
O43 - CFD: 01/02/2013 - 21:08:47 - [17,147] ----D C:\Users\David\AppData\Local\Adobe
O43 - CFD: 27/01/2013 - 15:30:17 - [0] ----D C:\Users\David\AppData\Local\Apple
O43 - CFD: 27/01/2013 - 15:34:55 - [3,845] ----D C:\Users\David\AppData\Local\Apple Computer
O43 - CFD: 25/01/2013 - 20:24:25 - [0] ----D C:\Users\David\AppData\Local\Application Data
O43 - CFD: 26/01/2013 - 14:18:11 - [1,133] ----D C:\Users\David\AppData\Local\Avg2013
O43 - CFD: 26/01/2013 - 15:53:12 - [0,110] ----D C:\Users\David\AppData\Local\Diagnostics
O43 - CFD: 25/01/2013 - 20:24:25 - [0] ----D C:\Users\David\AppData\Local\Historique
O43 - CFD: 25/01/2013 - 21:02:38 - [6,524] ----D C:\Users\David\AppData\Local\MFAData
O43 - CFD: 01/02/2013 - 21:37:40 - [537,438] ----D C:\Users\David\AppData\Local\Microsoft
O43 - CFD: 25/01/2013 - 20:28:34 - [0,001] ----D C:\Users\David\AppData\Local\MSI
O43 - CFD: 30/01/2013 - 22:43:44 - [266,274] ----D C:\Users\David\AppData\Local\Packages
O43 - CFD: 27/01/2013 - 15:37:17 - [0] ----D C:\Users\David\AppData\Local\Programs
O43 - CFD: 02/02/2013 - 21:03:37 - [42,106] ----D C:\Users\David\AppData\Local\Temp
O43 - CFD: 25/01/2013 - 20:24:25 - [0] ----D C:\Users\David\AppData\Local\Temporary Internet Files
O43 - CFD: 31/01/2013 - 21:03:24 - [0,000] ----D C:\Users\David\AppData\Local\VirtualStore
O43 - CFD: 26/07/2012 - 09:13:00 - [0,004] R---D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 26/07/2012 - 09:13:00 - [0,001] R---D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 30/01/2013 - 22:43:51 - [0,000] R---D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/07/2012 - 09:13:00 - [0,000] ----D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 25/01/2013 - 22:18:49 - [0,001] ----D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StarCraft II
O43 - CFD: 30/01/2013 - 22:43:51 - [0,000] R---D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/07/2012 - 09:13:00 - [0,005] R---D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
---\\ Last modified or created files under Windows and System32 (O44)
O44 - LFC:[MD5.BF75E5F0662EE6705C99E44E2851C40D] - 02/02/2013 - 20:53:09 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.FE42C35DDC4194B10F0170A94CF5E0C4] - 02/02/2013 - 20:50:18 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1459520]
O44 - LFC:[MD5.14141F81BD11E664F5590C20FD74F83E] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc001.dat [7565240]
O44 - LFC:[MD5.275CB72376A1135E2E77C0E5A6E024A1] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc005.dat [7565240]
O44 - LFC:[MD5.48D510584107D3CFF84AA938A106E04B] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc006.dat [7565240]
O44 - LFC:[MD5.8E1EAC181CDAC4752DBAA5D24AF925B5] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc007.dat [7565240]
O44 - LFC:[MD5.16256AEC901D8C97E2B0EA29B45D5E95] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc008.dat [7565240]
O44 - LFC:[MD5.E356DE2B6E196D8F4E1FD5C9768D61CA] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc009.dat [7565240]
O44 - LFC:[MD5.EB333C236B00E860D533861F0369F56B] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc00A.dat [7565240]
O44 - LFC:[MD5.2364742914E622B7363E96171B1B111E] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc00B.dat [7565240]
O44 - LFC:[MD5.11808453940C15D2473C3360FD35BCF4] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc00C.dat [7565240]
O44 - LFC:[MD5.14141F81BD11E664F5590C20FD74F83E] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc00D.dat [7565240]
O44 - LFC:[MD5.C7A9486E80CBFF35C6D4DFE53BA5FEAF] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc00E.dat [7565240]
O44 - LFC:[MD5.E9D4911CFAF3F7B4B4390583D10299E3] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc010.dat [7565240]
O44 - LFC:[MD5.1C70F7DF5DB122F69059C9A5E3B95999] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc011.dat [7565240]
O44 - LFC:[MD5.1C70F7DF5DB122F69059C9A5E3B95999] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc012.dat [7565240]
O44 - LFC:[MD5.A575C0808743C85FF41A05BF28FCCDD0] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc013.dat [7565240]
O44 - LFC:[MD5.F0C782282B06B5A1921A5F23B446D511] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc014.dat [7565240]
O44 - LFC:[MD5.B3866AF54C0BE29472F38689D30C66A6] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc015.dat [7565240]
O44 - LFC:[MD5.29E45F70CFDE98ECA941389BC0CE6DC3] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc019.dat [7565240]
O44 - LFC:[MD5.9752772CABB779473206577728DF7C45] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc01D.dat [7565240]
O44 - LFC:[MD5.D47CFBC987E3BD44691E39E3554EBA3D] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfc01F.dat [7565240]
O44 - LFC:[MD5.DDEA1A79556F5FAD5D692A18D85FA855] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh001.dat [7565240]
O44 - LFC:[MD5.BD61C55CE0CF7D75D763ED9930DAC8D0] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh005.dat [7565240]
O44 - LFC:[MD5.81A1BB746E0F828AFB011A62A383BEF1] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh006.dat [7565240]
O44 - LFC:[MD5.3D10B4EE501BF59D44381342FCD30B8B] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh007.dat [7565240]
O44 - LFC:[MD5.FAC3F874C4DB30B62F265CA2A8B27CE6] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh008.dat [7565240]
O44 - LFC:[MD5.325A42D95267244E703748BD51F9860A] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh009.dat [7565240]
O44 - LFC:[MD5.9F258256E40E97053BC14B7D5B4B6915] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh00A.dat [7565240]
O44 - LFC:[MD5.FF01263BB4F9FEF0A0AEA7AA1355ADFE] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh00B.dat [7565240]
O44 - LFC:[MD5.3725E468B066BBA31CB58A90797AB346] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh00C.dat [7565240]
O44 - LFC:[MD5.8E3FB404DACF0862EEDF4333DC5A6EAB] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh00D.dat [7565240]
O44 - LFC:[MD5.ACC3EAC4A6CCB88293E8CB689902AFC7] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh00E.dat [7565240]
O44 - LFC:[MD5.F0D1DAB26B221EE62EC959DE2837B491] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh010.dat [7565240]
O44 - LFC:[MD5.BEAE8EA0023267C702286799552EA3AF] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh011.dat [7565240]
O44 - LFC:[MD5.C9396F7E1D93F97F14AEC44425758B77] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh012.dat [7565240]
O44 - LFC:[MD5.CF9DB8961B582C004B3EE7E95BDC1F7B] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh013.dat [7565240]
O44 - LFC:[MD5.32AC3AA50B5FD02D401EB547341FD53A] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh014.dat [7565240]
O44 - LFC:[MD5.BF72E18F8A1882993F65BF302CD53372] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh015.dat [7565240]
O44 - LFC:[MD5.1349059DE62DA570A421E521B7E0BC87] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh019.dat [7565240]
O44 - LFC:[MD5.C9E282449857B452E2751002AA727332] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh01D.dat [7565240]
O44 - LFC:[MD5.AD500DC5F8136C88DCE3A871C7403833] - 01/02/2013 - 20:56:07 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\perfh01F.dat [7565240]
O44 - LFC:[MD5.9C8507A84A56F59687F0413AE7DDC460] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [18263130]
O44 - LFC:[MD5.14141F81BD11E664F5590C20FD74F83E] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc001.dat [65162]
O44 - LFC:[MD5.275CB72376A1135E2E77C0E5A6E024A1] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc005.dat [148412]
O44 - LFC:[MD5.48D510584107D3CFF84AA938A106E04B] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc006.dat [79958]
O44 - LFC:[MD5.8E1EAC181CDAC4752DBAA5D24AF925B5] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc007.dat [155896]
O44 - LFC:[MD5.16256AEC901D8C97E2B0EA29B45D5E95] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc008.dat [89394]
O44 - LFC:[MD5.E356DE2B6E196D8F4E1FD5C9768D61CA] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [133150]
O44 - LFC:[MD5.EB333C236B00E860D533861F0369F56B] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc00A.dat [162890]
O44 - LFC:[MD5.2364742914E622B7363E96171B1B111E] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc00B.dat [81986]
O44 - LFC:[MD5.11808453940C15D2473C3360FD35BCF4] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [156186]
O44 - LFC:[MD5.14141F81BD11E664F5590C20FD74F83E] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc00D.dat [65162]
O44 - LFC:[MD5.C7A9486E80CBFF35C6D4DFE53BA5FEAF] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc00E.dat [174554]
O44 - LFC:[MD5.E9D4911CFAF3F7B4B4390583D10299E3] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc010.dat [153144]
O44 - LFC:[MD5.1C70F7DF5DB122F69059C9A5E3B95999] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc011.dat [133088]
O44 - LFC:[MD5.1C70F7DF5DB122F69059C9A5E3B95999] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc012.dat [133088]
O44 - LFC:[MD5.A575C0808743C85FF41A05BF28FCCDD0] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc013.dat [159122]
O44 - LFC:[MD5.F0C782282B06B5A1921A5F23B446D511] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc014.dat [77450]
O44 - LFC:[MD5.B3866AF54C0BE29472F38689D30C66A6] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc015.dat [159932]
O44 - LFC:[MD5.29E45F70CFDE98ECA941389BC0CE6DC3] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc019.dat [158362]
O44 - LFC:[MD5.9752772CABB779473206577728DF7C45] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc01D.dat [149444]
O44 - LFC:[MD5.D47CFBC987E3BD44691E39E3554EBA3D] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfc01F.dat [147116]
O44 - LFC:[MD5.DDEA1A79556F5FAD5D692A18D85FA855] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh001.dat [422458]
O44 - LFC:[MD5.BD61C55CE0CF7D75D763ED9930DAC8D0] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh005.dat [719336]
O44 - LFC:[MD5.81A1BB746E0F828AFB011A62A383BEF1] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh006.dat [456714]
O44 - LFC:[MD5.3D10B4EE501BF59D44381342FCD30B8B] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh007.dat [742838]
O44 - LFC:[MD5.FAC3F874C4DB30B62F265CA2A8B27CE6] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh008.dat [542830]
O44 - LFC:[MD5.325A42D95267244E703748BD51F9860A] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [711282]
O44 - LFC:[MD5.9F258256E40E97053BC14B7D5B4B6915] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh00A.dat [788984]
O44 - LFC:[MD5.FF01263BB4F9FEF0A0AEA7AA1355ADFE] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh00B.dat [427352]
O44 - LFC:[MD5.3725E468B066BBA31CB58A90797AB346] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [802016]
O44 - LFC:[MD5.8E3FB404DACF0862EEDF4333DC5A6EAB] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh00D.dat [409156]
O44 - LFC:[MD5.ACC3EAC4A6CCB88293E8CB689902AFC7] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh00E.dat [731582]
O44 - LFC:[MD5.F0D1DAB26B221EE62EC959DE2837B491] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh010.dat [782014]
O44 - LFC:[MD5.BEAE8EA0023267C702286799552EA3AF] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh011.dat [485714]
O44 - LFC:[MD5.C9396F7E1D93F97F14AEC44425758B77] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh012.dat [495782]
O44 - LFC:[MD5.CF9DB8961B582C004B3EE7E95BDC1F7B] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh013.dat [786588]
O44 - LFC:[MD5.32AC3AA50B5FD02D401EB547341FD53A] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh014.dat [441800]
O44 - LFC:[MD5.BF72E18F8A1882993F65BF302CD53372] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh015.dat [786784]
O44 - LFC:[MD5.1349059DE62DA570A421E521B7E0BC87] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh019.dat [769726]
O44 - LFC:[MD5.C9E282449857B452E2751002AA727332] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh01D.dat [713560]
O44 - LFC:[MD5.AD500DC5F8136C88DCE3A871C7403833] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\perfh01F.dat [703484]
O44 - LFC:[MD5.1C70F7DF5DB122F69059C9A5E3B95999] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfc0404.dat [133088]
O44 - LFC:[MD5.759023D05C6393E86E7C97343B2F3035] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfc0416.dat [155144]
O44 - LFC:[MD5.1C70F7DF5DB122F69059C9A5E3B95999] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfc0804.dat [133088]
O44 - LFC:[MD5.B179525071DF51C3DF938425D38DF2DF] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfc0816.dat [160510]
O44 - LFC:[MD5.042E0607F6E510F364B25D4C0C2A596F] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfh0404.dat [438200]
O44 - LFC:[MD5.163CCDA5BBCF97B24F989412F4B80485] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfh0416.dat [763854]
O44 - LFC:[MD5.AFA7D5C9D742172AB42D7C2FC7BA106B] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfh0804.dat [423880]
O44 - LFC:[MD5.1AD51E993628B0C4B91A8CD18A2AB0E6] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\SysNative\prfh0816.dat [777732]
O44 - LFC:[MD5.9C8507A84A56F59687F0413AE7DDC460] - 01/02/2013 - 20:56:07 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [18263130]
O44 - LFC:[MD5.3574E6CA31F75F50DE6F03E2D8C96472] - 01/02/2013 - 20:37:13 ---A- . (...) -- C:\Windows\setupact.log [4561]
O44 - LFC:[MD5.25F95C7CEDB2E29C851CB43CCA9FC8A6] - 31/01/2013 - 12:36:29 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [281176]
O44 - LFC:[MD5.B141BEF2BF97B6504868EB7FAB5A349C] - 31/01/2013 - 12:36:19 ---A- . (...) -- C:\Windows\PFRO.log [3796]
O44 - LFC:[MD5.EBA655700A35328F4E61266DD35FB71F] - 26/01/2013 - 21:38:44 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\pcadm.dll [7565240]
O44 - LFC:[MD5.CA989A202F2A6A32D51F875265CA4FC0] - 26/01/2013 - 21:38:44 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\pcaevts.dll [7565240]
O44 - LFC:[MD5.D3C93101F4031001F47D38E17C6BB28E] - 26/01/2013 - 21:38:44 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\pcalua.exe [7565240]
O44 - LFC:[MD5.4811D9EC53649105A5A8BEA661B0F936] - 26/01/2013 - 21:38:44 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\pcasvc.dll [7565240]
O44 - LFC:[MD5.6A8692468662C2780717FACA07269CA6] - 26/01/2013 - 21:35:17 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080]
O44 - LFC:[MD5.6A8692468662C2780717FACA07269CA6] - 26/01/2013 - 21:35:17 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [46080]
O44 - LFC:[MD5.DAFF45EACE818FA560BDA2E0672487F0] - 26/01/2013 - 21:35:17 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [362496]
O44 - LFC:[MD5.DAFF45EACE818FA560BDA2E0672487F0] - 26/01/2013 - 21:35:17 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [362496]
O44 - LFC:[MD5.5FFF863DB5BC54685FEF62886C51E899] - 26/01/2013 - 18:04:49 ---A- . (.SEIKO EPSON CORP. - EPSON WIA Module.) -- C:\Windows\SysNative\esxcwiad.dll [83968]
O44 - LFC:[MD5.BAC5074667751F72A9CE48CDC31BAC48] - 26/01/2013 - 17:59:41 ---A- . (.SEIKO EPSON CORP. - E_GCINST.) -- C:\Windows\SysNative\E_GCINST.DLL [10752]
O44 - LFC:[MD5.9891511E620B74DAC5FC6376667F10BE] - 26/01/2013 - 17:59:40 ---A- . (.SEIKO EPSON CORPORATION - ECBTEGB AMD64.) -- C:\Windows\SysNative\E_IBCBEFE.DLL [81408]
O44 - LFC:[MD5.5119CA537F22E38019C811C0BE314EC2] - 26/01/2013 - 17:59:40 ---A- . (.SEIKO EPSON CORPORATION - EPSON Bi-directional Monitor AMD64.) -- C:\Windows\SysNative\E_ILMEFE.DLL [108032]
O44 - LFC:[MD5.ACFD6579DA815BE13664002638B0B0C7] - 26/01/2013 - 15:59:53 . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\nvwgf2umx.dll [7565240]
O44 - LFC:[MD5.DCAAE51177A64856A4E19AE1E3D4802D] - 26/01/2013 - 15:59:53 . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 310.9.) -- C:\Windows\System32\nvEncodeAPI64.dll [2904504]
O44 - LFC:[MD5.BA00213023D5CD80C2534BBD38F77610] - 26/01/2013 - 15:59:53 . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 310.9.) -- C:\Windows\System32\nvd3dumx.dll [2904504]
O44 - LFC:[MD5.495568CAAA34FA15EFC2BD03160CFAB2] - 26/01/2013 - 15:59:53 . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 310.9.) -- C:\Windows\System32\nvoglv64.dll [2904504]
O44 - LFC:[MD5.4DB1E8ABA8BF08D88F815027245304B9] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\SysNative\nvcuda.dll [9389888]
O44 - LFC:[MD5.E84924E89683387EB2DAF5E14A722C40] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\SysNative\nvopencl.dll [7565240]
O44 - LFC:[MD5.4DB1E8ABA8BF08D88F815027245304B9] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\nvcuda.dll [9389888]
O44 - LFC:[MD5.E84924E89683387EB2DAF5E14A722C40] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 310.90.) -- C:\Windows\System32\nvopencl.dll [7565240]
O44 - LFC:[MD5.7701EB847340365FD94ACA23CF304EC4] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 310.9.) -- C:\Windows\SysNative\nvcuvid.dll [2904504]
O44 - LFC:[MD5.7701EB847340365FD94ACA23CF304EC4] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 310.9.) -- C:\Windows\System32\nvcuvid.dll [2904504]
O44 - LFC:[MD5.D4D3B71893655130ECF6CD3BA5F8D36F] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 310.90.) -- C:\Windows\SysNative\nvcuvenc.dll [2344888]
O44 - LFC:[MD5.D4D3B71893655130ECF6CD3BA5F8D36F] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 310.90.) -- C:\Windows\System32\nvcuvenc.dll [2344888]
O44 - LFC:[MD5.495568CAAA34FA15EFC2BD03160CFAB2] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\SysNative\nvoglv64.dll [26931128]
O44 - LFC:[MD5.6290088F9561B735CA4923CD0B9C59CB] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 310.90.) -- C:\Windows\SysNative\nvcompiler.dll [25256376]
O44 - LFC:[MD5.6290088F9561B735CA4923CD0B9C59CB] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 310.90.) -- C:\Windows\System32\nvcompiler.dll [25256376]
O44 - LFC:[MD5.ACFD6579DA815BE13664002638B0B0C7] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 310.90.) -- C:\Windows\SysNative\nvwgf2umx.dll [15052368]
O44 - LFC:[MD5.DCAAE51177A64856A4E19AE1E3D4802D] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA Video Encoder API, Version 2.0.) -- C:\Windows\SysNative\nvEncodeAPI64.dll [420280]
O44 - LFC:[MD5.BA00213023D5CD80C2534BBD38F77610] - 26/01/2013 - 15:59:53 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 310.90.) -- C:\Windows\SysNative\nvd3dumx.dll [18054312]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/01/2013 - 14:27:14 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.19D7C8C2186B5D0230361D7BDBA3558D] - 10/11/2012 - 05:20:20 . (...) -- C:\Windows\System32\appserverai.dll []
---\\ Local Security Authority-LSA Deny (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de s�curit� TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
---\\ Safe Boot Control (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
---\\ MountPoints2 Shell Key (MPKS) (O51) (None)
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
---\\ ShareTools MSconfig StartupReg (SMSR) (O53) (None)
---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
---\\ System Drivers List (SDL) (O58)
O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736]
---\\ Last modified or created user files (O61)
O61 - LFC:Last File Created 01/02/2013 - 20:37:48 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC:Last File Created 01/02/2013 - 20:37:48 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:37:49 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:37:53 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC:Last File Created 01/02/2013 - 20:37:54 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:37:55 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:37:57 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:37:57 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:00 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:01 ---A- C:\Users\David\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:12 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:13 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:14 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC:Last File Created 01/02/2013 - 20:38:15 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:16 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC:Last File Created 01/02/2013 - 20:38:17 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC:Last File Created 01/02/2013 - 20:38:18 ---A- C:\Users\David\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC:Last File Created 01/02/2013 - 20:38:19 ---A- C:\Users\David\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:19 ---A- C:\Users\David\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC:Last File Created 01/02/2013 - 20:38:29 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\200004bd_77ed699d206b78.eml [77168]
O61 - LFC:Last File Created 01/02/2013 - 20:38:32 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000009\200004c4_4dd9ea103eb982.eml [13086]
O61 - LFC:Last File Created 01/02/2013 - 20:38:35 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000007\200004c9_bfa13fe4240b76.eml [32465]
O61 - LFC:Last File Created 01/02/2013 - 20:38:36 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000007\200004c8_4fc0ed7762575.eml [6907]
O61 - LFC:Last File Created 01/02/2013 - 20:38:37 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000007\200004c7_1e7edf34c3b024.eml [17687]
O61 - LFC:Last File Created 01/02/2013 - 20:38:38 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000007\200004ca_30bbeaad151f8.eml [37157]
O61 - LFC:Last File Created 01/02/2013 - 20:38:40 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000007\200004c6_741a7fb3870ff8.eml [120352]
O61 - LFC:Last File Created 01/02/2013 - 20:38:43 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000007\200004c5_341caf3555debc.eml [122097]
O61 - LFC:Last File Created 01/02/2013 - 20:38:45 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\200004c3_8b8dcb9561727f.eml [8813]
O61 - LFC:Last File Created 01/02/2013 - 20:38:46 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\200004c2_fcd503f9884bea.eml [22039]
O61 - LFC:Last File Created 01/02/2013 - 20:38:47 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\200004c0_80d499453563d2.eml [20971]
O61 - LFC:Last File Created 01/02/2013 - 20:38:47 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\200004c1_2420ca472e3a35.eml [61579]
O61 - LFC:Last File Created 01/02/2013 - 20:38:48 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\200004bf_7a13d01cf7c14.eml [19608]
O61 - LFC:Last File Created 01/02/2013 - 20:38:49 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\200004be_d915df703e3596.eml [9429]
O61 - LFC:Last File Created 01/02/2013 - 20:49:20 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCache\A3Q1PKKA\NL_06[1].jpg [14904]
O61 - LFC:Last File Created 01/02/2013 - 20:49:20 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCache\A3Q1PKKA\NL_08[1].jpg [47160]
O61 - LFC:Last File Created 01/02/2013 - 20:49:20 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCache\A3Q1PKKA\NL_09[1].jpg [36147]
O61 - LFC:Last File Created 01/02/2013 - 20:49:20 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCache\A3Q1PKKA\crumblet[8].gif [43]
O61 - LFC:Last File Created 01/02/2013 - 20:49:20 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCache\A3Q1PKKA\header-LDLC[1].jpg [9509]
O61 - LFC:Last File Created 01/02/2013 - 20:49:21 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCache\NHLP80QZ\r[4] [44]
O61 - LFC:Last File Created 01/02/2013 - 20:49:24 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000007\200004cb_432fae179cfc9a.eml [18587]
O61 - LFC:Last File Created 01/02/2013 - 21:09:28 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Microsoft.WindowsLive.Mail.etl [786432]
O61 - LFC:Last File Created 01/02/2013 - 21:09:45 ---A- C:\Users\David\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\48B76449F3D5FEFA1133AA805E420F0FCA643651.crl [898]
O61 - LFC:Last File Created 01/02/2013 - 21:09:45 ---A- C:\Users\David\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\A9B8213768ADC68AF64FCC6409E8BE414726687F.crl [36163]
O61 - LFC:Last File Created 01/02/2013 - 21:09:47 ---A- C:\Users\David\AppData\Roaming\Adobe\Acrobat\11.0\Security\addressbook.acrodata [5399]
O61 - LFC:Last File Created 01/02/2013 - 21:12:00 ---A- C:\Users\David\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobData [22]
O61 - LFC:Last File Created 01/02/2013 - 21:12:00 ---A- C:\Users\David\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings [24]
O61 - LFC:Last File Created 01/02/2013 - 21:12:00 ---A- C:\Users\David\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav [36]
O61 - LFC:Last File Created 01/02/2013 - 21:12:00 ---A- C:\Users\David\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav [54]
O61 - LFC:Last File Created 01/02/2013 - 21:29:43 ---A- C:\Users\David\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-02-01 (21-21-02).txt [2074]
O61 - LFC:Last File Created 02/02/2013 - 20:46:57 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\20000522_dc49dc777f776.eml [116255]
O61 - LFC:Last File Created 02/02/2013 - 20:47:01 ---A- C:\Users\David\AppData\Roaming\AVG2013\cfgall\userawacs.cfg [5252]
O61 - LFC:Last File Created 02/02/2013 - 20:47:05 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\20000528_62b340747d3b3.eml [27355]
O61 - LFC:Last File Created 02/02/2013 - 20:47:08 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\20000527_84baefa6eb7f6a.eml [44055]
O61 - LFC:Last File Created 02/02/2013 - 20:47:10 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\20000526_cba440f24c77f8.eml [18876]
O61 - LFC:Last File Created 02/02/2013 - 20:47:11 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\20000525_3b30a12da44e5b.eml [19911]
O61 - LFC:Last File Created 02/02/2013 - 20:47:13 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\20000524_ea7647d21cc29b.eml [122079]
O61 - LFC:Last File Created 02/02/2013 - 20:47:15 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\57375d9b1ef3596f\120712-0049\Mail\1\1d000002\20000523_5d86b0a02c5282.eml [57044]
O61 - LFC:Last File Created 02/02/2013 - 20:49:22 ---A- C:\Users\David\Downloads\adwcleaner.exe [579713]
O61 - LFC:Last File Created 02/02/2013 - 20:49:36 ---A- C:\Users\David\AppData\Local\Temp\~DFB34C6E12376F1678.TMP [32768]
O61 - LFC:Last File Created 02/02/2013 - 20:49:40 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveCommLast.etl [131072]
O61 - LFC:Last File Created 02/02/2013 - 20:51:51 ----- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm.etl [131072]
O61 - LFC:Last File Created 02/02/2013 - 20:51:55 ---A- C:\Users\David\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\57375d9b1ef3596f\120712-0049\DBStore\edb.chk [8192]
O61 - LFC:Last File Created 02/02/2013 - 20:52:36 ---A- C:\Users\David\AppData\Local\MSI\SCM.exe_Url_zv0ikcohnhzptbjtykvepncdk0ijftla\10.12.9132.0\user.config [700]
O63 - Logiciel: ZHPDiag 1.34 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) -
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1071104]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d�acc�s � distance.) -- C:\Windows\System32\rasmans.dll [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3318784]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [69632]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1282560]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [80384]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [190464]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft�.) -- C:\Windows\System32\wlidsvc.dll [1968128]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d�installation de p�riph�rique.) -- C:\Windows\System32\DeviceSetupManager.dll [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivit� r�seau Microsoft.) -- C:\Windows\System32\ncasvc.dll [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les �v�nements syst�me.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [178176]
[MD5.28C0933E02006C33E76A59EEDA980620] [SPRF][25/01/2013] (.Conduit - .) -- C:\Users\David\AppData\Local\Temp\conduitinstaller.exe [75344]
[MD5.8A4AF3B0695F29186AD02E2FD766FA3B] [SPRF][27/01/2013] (.SweetIM Technologies Ltd. - SQLite DLL.) -- C:\Users\David\AppData\Local\Temp\mgsqlite3.dll [393016]
[MD5.D9DA3FDE1AEE64CEE57D4C57A538A53B] [SPRF][22/10/2012] (.SweetIM Technologies Ltd. - SweetIM Installer by SweetPacks.) -- C:\Users\David\AppData\Local\Temp\Shortcut_bundlesweetimsetup.exe [7739736]
[MD5.C6D792E4583FC46DB0953FBF6E46348A] [SPRF][27/01/2013] (.SweetIM Technologies Lt - This installer.) -- C:\Users\David\AppData\Local\Temp\SIMEEI2Installer.exe [2962432]
[MD5.7704B843006444B69486FD27D4660845] [SPRF][27/01/2013] (.SweetIM Technologies Lt - This installer.) -- C:\Users\David\AppData\Local\Temp\SIMEEIInstaller.exe [3380216]
[MD5.225CCDCFE5625795647043679CB77112] [SPRF][25/01/2013] (...) -- C:\Users\David\AppData\Local\Temp\wajam_install.exe [417256]
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-In-TCP" |In - None - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "MCX-In-TCP" |In - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Prov-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcx2prov.exe (.not file.)
O87 - FAEL: "MCX-McrMgr-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcrmgr.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{9D9FC66A-0CD0-4F4C-A0C3-E8B697495605}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{05A7878E-7FD6-4D76-BEA0-59FCABE47935}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{3C8647A7-CB9A-495C-B818-7DA3322D671D}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 10 Main Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
O87 - FAEL: "{16C523DD-0E85-407D-A398-3A370A7AC516}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 10.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.exe
O87 - FAEL: "{4358D1D2-F9AE-4CF2-A304-8AEF3D17830E}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{8B3A3D3B-7B48-457E-A4E4-EE158FC6E8DD}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{68CE7A14-D5E4-4C31-974F-D6EFD7BA7257}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{475B6580-C131-4FE8-8416-5461144808E3}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{4EB47D20-2BDA-416F-B1EC-401CFE21BCF1}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
O87 - FAEL: "{731DFB57-D1AA-4250-A3DC-CEC87684FF55}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
O87 - FAEL: "{E810649D-FD67-4E87-ADE9-BFB9BC2296F8}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe
O87 - FAEL: "{5D73ED21-CF9F-4F6E-A210-113E7042097F}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe
O87 - FAEL: "TCP Query User{D32CF2A9-3E8C-4C3A-8EF5-D5AC218A6104}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-
O87 - FAEL: "UDP Query User{00643082-CE13-449F-A99B-B55ED37BCE41}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-
O87 - FAEL: "{81096A9A-A4FA-44F6-84FD-6F5C3D43DCD7}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Update Agent.) -- C:\ProgramData\\Agent\Agent.1040\Agent.exe
O87 - FAEL: "{2000F399-D79A-4648-AADB-D301780AC734}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Update Agent.) -- C:\ProgramData\\Agent\Agent.1040\Agent.exe
O87 - FAEL: "{84C374C0-626C-46F4-B762-267FFCFB554B}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Update Agent.) -- C:\ProgramData\\Agent\Agent.1544\Agent.exe
O87 - FAEL: "{B1E9875D-4E4D-4C99-908B-969582EC02EC}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Update Agent.) -- C:\ProgramData\\Agent\Agent.1544\Agent.exe
O87 - FAEL: "{8C02C46A-C46F-4B58-95A4-E0FD8A5C4482}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
O87 - FAEL: "{7B335DF3-7A11-4512-8390-6E748A122B2A}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - StarCraft II Setup.) -- C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
O87 - FAEL: "TCP Query User{47BC5A35-D274-461C-A77A-AE0A66658DEC}C:\program files (x86)\starcraft ii\versions\base23260\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base23260\sc2.
O87 - FAEL: "UDP Query User{84B70844-FA49-4A9B-8096-F87E3EC5E7EB}C:\program files (x86)\starcraft ii\versions\base23260\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base23260\sc2
O87 - FAEL: "{8AE18221-9FB0-4C45-A32E-684C18BC1851}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{BA8753DF-5575-4CAE-ACE3-49E4B66095A5}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{A1FEBE87-B6CA-4466-97A8-86A8437B2590}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{49A255D7-7E19-4A95-A44C-16FE194A005D}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{6B3B282C-832F-49D7-A8BE-B3EA98FD17F0}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{5CC2BD6F-305D-4C4F-9AF1-FA3225BC217B}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{4C33F65B-3E77-4A3B-B032-FDDBBAD92D5A}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{6B8F1298-219C-472D-BE7C-DDC10C06CBDE}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{64D4F1C7-940C-4285-87AD-93FEE48E1035}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O87 - FAEL: "{F9E7ABD1-2E8B-4B10-95DD-B3301EC5223D}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O87 - FAEL: "{F42BFBA9-630A-483F-81FD-B7FD9DFF93C8}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
O87 - FAEL: "{91D25FB0-AD11-4C4D-A2FF-B2B2408D3BEF}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
O87 - FAEL: "{D559EEA7-0D22-4297-B244-EF671857E04A}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
O87 - FAEL: "{E210D881-D132-46F6-87D3-EE5EE6FD1D06}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
O87 - FAEL: "{EDCFAB0D-A631-4CE8-BC2E-6A6C0D48336D}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
O87 - FAEL: "{8EE326D4-0109-4ECD-B33B-7B56B9399969}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
Database Version : v2.10502 - (01/02/2013)
Cl�s trouv�es (Keys found) : 1
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 1
Fichiers trouv�s (Files found) : 13
[HKCU\Software\SweetIM] =>PUP.SweetIM
C:\ProgramData\AVG January 2013 Campaign =>Toolbar.AVGSearch
C:\Users\David\AppData\Local\Temp\Shortcut_bundlesweetimsetup.exe =>PUP.SweetIM
C:\Users\David\AppData\Local\Temp\SIMEEI2Installer.exe =>PUP.SweetIM
C:\Users\David\AppData\Local\Temp\SIMEEIInstaller.exe =>PUP.SweetIM
C:\Users\David\AppData\Local\Temp\conduitinstaller.exe => Infection PUP (Toolbar.Conduit)
C:\Users\David\AppData\Local\Temp\mgsqlite3.dll => Infection PUP (PUP.SweetIM)
C:\Users\David\AppData\Local\Temp\Shortcut_bundlesweetimsetup.exe => Infection PUP (PUP.SweetIM)
C:\Users\David\AppData\Local\Temp\SIMEEI2Installer.exe => Infection PUP (PUP.SweetIM)
C:\Users\David\AppData\Local\Temp\SIMEEIInstaller.exe => Infection PUP (PUP.SweetIM)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "481A8270998F65349BD3288276F4D0BE" . (.Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology.) -- C:\Windows\Installer\{0728A184-F899-4356-B93D-8228674F0DEB}\IntelBluetoothICO
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.01) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "855644FD7FDA4884B9D2829197CC7EF1" . (.Qualcomm Atheros Killer Network Manager.) -- C:\Windows\Installer\{DF446558-ADF7-4884-9B2D-281979CCE71F}\ARPPRODUCTICON.exe
O90 - PUC: "8FC229B8C6A8EC148A851F57D5F7D592" . (.NVIDIA PhysX.) -- C:\Windows\Installer\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}\icon.ico
O90 - PUC: "A19BA8AF14B079740951B9F3CB8743CC" . (.SCM.) -- C:\Windows\Installer\{FA8AB91A-0B41-4797-9015-9B3FBC7834CC}\_853F67D554F05449430E7E.exe
O90 - PUC: "AE48807DEC2E935419BD7466CCE1F5F5" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{D70884EA-E2CE-4539-91DB-4766CC1E5F5F}\Installer.ico
O90 - PUC: "BD528ECCA74340041A68F5A4F6DD5874" . (.Apple Application Support.) -- C:\Windows\Installer\{CCE825DB-347A-4004-A186-5F4A6FDD8547}\WinInstall.ico
O90 - PUC: "DA67D5E0BF3A5D84480098301B30713D" . (.iTunes.) -- C:\Windows\Installer\{0E5D76AD-A3FB-48D5-8400-8903B10317D3}\Installer.ico
O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 15/11/2012 5814904 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
SR - | Auto 22/10/2012 196664 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
SR - | Auto 27/08/2012 1112000 | (Bluetooth Device Monitor) . (.Motorola Solutions, Inc..) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
SR - | Auto 06/09/2012 1124288 | (Bluetooth OBEX Service) . (.Motorola Solutions, Inc..) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Demand 25/09/2012 276288 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 02/09/2012 14904 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Auto 20/06/2012 634632 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Demand 12/12/2012 641504 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 25/09/2012 165760 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 25/09/2012 276864 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 13/09/2012 160768 | (Micro Star SCM) . (.Micro-Star International Co., Ltd..) - C:\Program Files (x86)\SCM\MSIService.exe
SR - | Auto 23/05/2012 142904 | (MSI_SuperCharger) . (.MSI.) - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
SR - | Auto 29/12/2012 884152 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 29/12/2012 1260472 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 490496 | (Qualcomm Atheros Killer Service) . (...) - C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
SR - | Auto 25/09/2012 364416 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Demand 26/07/2012 30208 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
End of the scan (1687 lines in 01mn 33s)(0)