~ Rapport de ZHPDiag v2014.3.12.13 - Nicolas Coolman (12/03/2014)
~ Lancé par josiane (21/03/2014 23:30:02)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista (TM) Home Basic, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 8QXTR
Windows License : OK
Windows Automatic Updates : OK
---\\ Logiciels de protection du système
Avira AntiVir Personal - Free Antivirus
AVG 2014 v14.0.3658
Spybot - Search & Destroy v1.6.2
---\\ Logiciels d'optimisation du système
CCleaner v3.19 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 10 Plugin
Adobe Reader 9.4.0 - Français
---\\ Informations sur le système
~ Processor: x86 Family 15 Model 107 Stepping 2, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2813 MB (46% free)
System Restore: Activé (Enable)
System drive C: has 75 GB (53%) free of 139 GB
---\\ Mode de connexion au système
~ Computer Name: PC-DE-JOSIANE
~ User Name: josiane
~ All Users Names: UpdatusUser, josiane, Internet, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\josiane\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\josiane\AppData\Roaming\
~ %Desktop% : C:\Users\josiane\Desktop\
~ %Favorites% : C:\Users\josiane\Favorites\
~ %LocalAppData% : C:\Users\josiane\AppData\Local\
~ %StartMenu% : C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 75 Go of 139 Go)
D: Hard drive, Flash drive, Thumb drive (Free 29 Go of 143 Go)
E: Floppy drive, Flash card reader, USB Key (Free 4 Go of 4 Go)
F: CD-ROM drive (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
H: Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 50 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:33:13.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.4CC9DF09C3D915BA0A101A11DB684F26] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/11/2013 - 23:42:41.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:33:23.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:32:45.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:34:06.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:34:44.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:32:22.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/11
~ Mes musiques (My Musics) : 0/0
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 2/597
~ Mon Bureau (My Desktop) : 0/788
~ Menu demarrer (Programs) : 1/53
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.F611B497FB7269BF163C5987E24AD7C4] - (.Pas de propriétaire - VProtect Application (Official).) -- C:\Program Files\AVG Secure Search\vprot.exe [2486296] [PID.1436] =>Toolbar.AVGSearch
[MD5.8419248D3F16873230A82D55053445E5] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [6144000] [PID.124]
[MD5.643F7A81B4FC27845886AB9650AD2C61] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2014\avgui.exe [4956176] [PID.3648]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480] [PID.1892]
[MD5.7E436B07C60B3A1D992648526732DB4F] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [19604072] [PID.1616]
[MD5.8273E8E7573C5B303F5189585D3A2BE0] - (.Smartbar - Smartbar.) -- C:\Users\josiane\AppData\Local\Smartbar\Application\QuickShare.exe [20248] [PID.3160] =>PUP.QuickShare
[MD5.B776DFE408E415AA901030C022EEB7DA] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1821472] [PID.1364]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.2576]
[MD5.64A2A75D8F4BD07BD0A0029AA8825BBF] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8353792] [PID.4768]
[MD5.733CE83516F5BFE2801D8DF475E73299] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\Program Files\AVG\AVG2014\avgrsx.exe [729648] [PID.540]
[MD5.742FB52AF2320E38C3C3C71542E996EB] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exe [590352] [PID.576]
[MD5.31B8835B003CAA6D31BEAD83DDBF98E5] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 307.8.) -- C:\Windows\system32\nvvsvc.exe [634656] [PID.1160]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1516]
[MD5.1ED58DA041A992EEEC934290508B6B71] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [865056] [PID.1592]
[MD5.F89B2DACE0FBE54CF65D12B7081C19C3] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544] [PID.832]
[MD5.B747B6BB015E552F49C634BB19540F3D] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008] [PID.1088]
[MD5.3F56903E124E820AEECE6D471583C6C1] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [238888] [PID.1236]
[MD5.4D06D9A26227AC485305133916888DF1] - (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) -- C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe [24576] [PID.1924]
[MD5.B03E3F64B70F8031E65EB26DA23DE91A] - (.Microsoft Corporation - MsCamSvc.exe.) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe [135536] [PID.2240]
[MD5.06A49B7BDC36CFBF97DD90804F833369] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared files\RichVideo.exe [272024] [PID.2312]
[MD5.A275FBB7C99458C12E088DFF3E58EB4D] - (.Microsoft Corporation - TCP/IP Services Application.) -- C:\Windows\System32\tcpsvcs.exe [9728] [PID.2404]
[MD5.E8E4AC927F3B2BFB950CDC1F434A71B0] - (.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe [892976] [PID.2456]
[MD5.2BF7C653F12F0C0F8EAD0C40EF710F4D] - (.AVG Secure Search - ToolbarU Application (Official).) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [1771544] [PID.2812] =>Toolbar.AVGSearch
[MD5.4AA2CC5979AFF984227364F2C23B04F3] - (.Wajam - Auto-updater.) -- C:\Program Files\Wajam\Updater\WajamUpdater.exe [109064] [PID.2928] =>PUP.Wajam
[MD5.3634F4D49BEB3A75402A7BA8F8ED005E] - (.Pas de propriétaire - loggings Application.) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\loggingserver.exe [159768] [PID.3020] =>Toolbar.AVGSearch
[MD5.DD0042F0C3B606A6A8B92D49AFB18AD6] - (.Yahoo! Inc. - AutoUpater Service Module.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [602392] [PID.3100]
[MD5.626A24ED1228580B9518C01930936DF9] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [133104] [PID.2444]
[MD5.0629259E3AF6BB0534FCECA208973404] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1258856] [PID.2436]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Scanned in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin] - (.AVG Technologies - npsitesafety (Official).) -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\npsitesafety.dll =>Toolbar.AVGSearch
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll =>.Google Inc
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (...) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (.not file.)
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3555.0308] - (...) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (.not file.)
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=14] - (.Google - Google Updater plugin
http://pack.) -- C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.69] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.69] - (.RealNetworks, Inc. - 6.0.12.69.) -- C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll
~ Firefox Browser: 15 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://feed.snapdo.com =>Hijacker.SmartBar
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emachines.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com =>Hijacker.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com =>Hijacker.SmartBar
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com =>Hijacker.SmartBar
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com =>Hijacker.SmartBar
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1
~ IE Browser: 17 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 20
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} . (...) -- mscoree.dll (.not file.) =>PUP.QuickShare
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (...) -- C:\Program Files\AVG\AVG2012\avgssie.dll (.not file.)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Browwsse2saVee - {6DD65015-BB18-08CD-182E-CE4678D4C5A9} Clé orpheline =>Adware.Browse2Save
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: BrooWse2seave - {94FEABBF-2EA9-0D6B-8834-0AFD073A1754} Clé orpheline =>Adware.Browse2Save
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG Secure Search - toolbar.dll (Official).) -- C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (...) -- C:\Program Files\Windows Live\Companion\companioncore.dll (.not file.)
O2 - BHO: LyricsPal - {A3DAEB01-4C15-4AC6-A689-6406FD954EE0} Clé orpheline =>Adware.AddLyrics
O2 - BHO: Wajam IE BHO - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} . (.Wajam - Wajam Internet Explorer Add-on.) -- C:\Program Files\Wajam\IE\priam_bho.dll =>PUP.Wajam
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
~ BHO: 30 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - [HKLM]{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Clé orpheline
O3 - Toolbar: AVG Security Toolbar - [HKLM]{95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG Secure Search - toolbar.dll (Official).) -- C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
O3 - Toolbar: QuickShare Widget - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>PUP.QuickShare
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Clé orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: AVG 2014.lnk . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2014\avgui.exe
O4 - GS\Desktop [Public]: Google Earth.lnk . (.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\client\googleearth.exe =>.Google Inc
O4 - GS\Program [Public]: Adobe Reader 9.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico
O4 - GS\Program [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - GS\Program [Public]: Eye Candy 5.0 Nature Manual.lnk . (...) -- C:\Program Files\PhotoFiltre Studio X\Alien Skin\Eye Candy 5 Nature\ec5nature.pdf (.not file.)
O4 - GS\Program [Public]: Micrografx Media Manager.lnk . (.Micrografx, Inc. - Micrografx Media Manager Launching Applicat.) -- C:\Program Files\Micrografx\System3\Media Manager\abcmm.exe
O4 - GS\Program [Public]: Micrografx Windows Draw.lnk . (.Micrografx - Windows Draw Application.) -- C:\Program Files\Micrografx\Windows Draw\draw.exe
O4 - GS\Program [Public]: PowerpointImageExtractor V1.2.lnk . (.--- - Pas de description.) -- C:\Program Files\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe
O4 - GS\Program [Public]: Visionneuse Microsoft PowerPoint .lnk . (...) -- C:\Windows\Installer\{95140000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe
O4 - GS\Program [Public]: Windows Calendar.lnk . (.Microsoft Corporation - Calendrier Windows.) -- C:\Program Files\Windows Calendar\WinCal.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Collaboration.lnk . (.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Contacts.lnk . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Defender.lnk . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - GS\Program [Public]: Windows Live Mail.lnk . (...) -- C:\Program Files\Windows Live\Mail\wlmail.exe (.not file.) =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Live Movie Maker.lnk . (...) -- C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe (.not file.) =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Live Photo Gallery.lnk . (...) -- C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe (.not file.) =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\MOVIEMK.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Photo Gallery.lnk . (.Microsoft Corporation - Galerie de photos Windows.) -- C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Xenofex 2 Manual.lnk . (...) -- C:\Program Files\PhotoFiltre Studio X\Plugins\Plugins\Xenofex 2\xenofex2.pdf (.not file.)
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\System32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\System32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\System32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\System32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sidebar.lnk . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\System32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Backup.lnk . (.Microsoft Corporation - Sauvegarde Microsoft® Windows.) -- C:\Windows\System32\sdclt.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\System32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\System32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\System32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: migwiz.lnk . (.Microsoft Corporation - Transfert de fichiers et paramètres Windows.) -- C:\Windows\System32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\System32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\System32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\System32\taskschd.msc
O4 - GS\Accessories [UpdatusUser]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [UpdatusUser]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [UpdatusUser]: Run.lnk - Clé orpheline
O4 - GS\Accessories [UpdatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Desktop [UpdatusUser]: PhotoFiltre Studio X.lnk . (.PhotoFiltre - PhotoFiltre Studio X.) -- C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe
O4 - GS\QuickLaunch [josiane]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - GS\QuickLaunch [josiane]: Courrier électronique - Raccourci.lnk - Clé orpheline
O4 - GS\QuickLaunch [josiane]: CrossLoop.lnk . (.CrossLoop - CrossLoop - Simple Secure Screen Sharing.) -- C:\Users\josiane\AppData\Local\CrossLoop\CrossLoopConnect.exe
O4 - GS\QuickLaunch [josiane]: Glary Utilities.lnk . (.Glarysoft Ltd - Glary Utilities.) -- C:\Program Files\Glary Utilities\Integrator.exe
O4 - GS\QuickLaunch [josiane]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [josiane]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe
O4 - GS\QuickLaunch [josiane]: Spybot - Search & Destroy.lnk . (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - GS\QuickLaunch [josiane]: Windows Media Player (2).lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [josiane]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [josiane]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Program [josiane]: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O4 - GS\Program [josiane]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [josiane]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [josiane]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [josiane]: Run.lnk - Clé orpheline
O4 - GS\Accessories [josiane]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [josiane]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\SendTo [josiane]: MediaInfo.lnk . (...) -- C:\Program Files\K-Lite Codec Pack\Tools\mediainfo.exe
O4 - GS\SendTo [josiane]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [josiane]: Corbeille - Raccourci.lnk - Clé orpheline
O4 - GS\Desktop [josiane]: Gekko Mahjongg.lnk . (.GEKKO Software GmbH - Pas de description.) -- C:\Program Files\Micro Application\Maxi Mah-Jong\Mahjongg.exe
O4 - GS\Desktop [josiane]: pfstudiox.exe - Raccourci.lnk . (.PhotoFiltre - PhotoFiltre Studio X.) -- C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe
O4 - GS\Desktop [josiane]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [josiane]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\QuickLaunch [Internet]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Internet]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe
O4 - GS\QuickLaunch [Internet]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Internet]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Program [Internet]: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O4 - GS\Program [Internet]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Internet]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Internet]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Internet]: Run.lnk - Clé orpheline
O4 - GS\Accessories [Internet]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Internet]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Internet]: Gekko Mahjongg.lnk . (.GEKKO Software GmbH - Pas de description.) -- C:\Program Files\Micro Application\Maxi Mah-Jong\Mahjongg.exe
O4 - GS\Desktop [Internet]: Livre Album Fuji Photo.lnk . (...) -- C:\Program Files\Livre Album Fuji Photo\apc.exe (.not file.)
O4 - GS\Desktop [Internet]: Marine Aquarium 2.lnk . (...) -- C:\Windows\System32\Marine Aquarium 2.scr (.not file.)
O4 - GS\Desktop [Internet]: PhotoFiltre Studio X.lnk . (.PhotoFiltre - PhotoFiltre Studio X.) -- C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe
O4 - GS\Desktop [Internet]: PhotoFiltre.lnk . (...) -- C:\Program Files\PhotoFiltre\photofiltre.exe (.not file.)
O4 - GS\Desktop [Internet]: PowerpointImageExtractor V1.2.lnk . (.--- - Pas de description.) -- C:\Program Files\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe
~ Global Startup: 84 Scanned in 00mn 05s
---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [LifeCam] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files\Microsoft LifeCam\LifeExp.exe
O4 - HKLM\..\Run: [vProt] . (.Pas de propriétaire - VProtect Application (Official).) -- C:\Program Files\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2014\avgui.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [GameXN GO] C:\ProgramData\GameXN\GameXNGO.exe (.not file.)
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKCU\..\Run: [Browser Infrastructure Helper] . (.Smartbar - Smartbar.) -- C:\Users\josiane\AppData\Local\Smartbar\Application\QuickShare.exe =>PUP.QuickShare
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-21-2573512620-3743048149-908140685-1000\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-2573512620-3743048149-908140685-1000\..\Run: [GameXN GO] C:\ProgramData\GameXN\GameXNGO.exe (.not file.)
O4 - HKUS\S-1-5-21-2573512620-3743048149-908140685-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2573512620-3743048149-908140685-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2573512620-3743048149-908140685-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2573512620-3743048149-908140685-1000\..\Run: [Browser Infrastructure Helper] . (.Smartbar - Smartbar.) -- C:\Users\josiane\AppData\Local\Smartbar\Application\QuickShare.exe =>PUP.QuickShare
~ Application: Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} -- C:\Program Files\Windows Live\Companion\companionres.dll (.not file.)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (.not file.)
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -- Clé orpheline
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{C31731E3-BEF4-41DA-9C9B-F78851112097}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{C31731E3-BEF4-41DA-9C9B-F78851112097}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{C31731E3-BEF4-41DA-9C9B-F78851112097}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Pare-feu AVG (avgfws) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\Program Files\AVG\AVG2014\avgfws.exe
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CrossLoop Service (CrossLoopService) . (.CrossLoop - CrossLoop Service.) - C:\Users\josiane\AppData\Local\CrossLoop\CrossLoopService.exe
O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
O23 - Service: Service Google Update (gupdate1c9f8dd3f490260) (gupdate1c9f8dd3f490260) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 307.8.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: (vToolbarUpdater17.3.0) . (.AVG Secure Search - ToolbarU Application (Official).) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
O23 - Service: WajamUpdater (WajamUpdater) . (.Wajam - Auto-updater.) - C:\Program Files\Wajam\Updater\WajamUpdater.exe =>PUP.Wajam
~ Services: 16 Scanned in 00mn 05s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job [316]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Google Software Updater.job [1000]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\LyricsPal Update.job [386] =>Adware.AddLyrics
[MD5.1BA1AB4141A92EB34DA99F1249CA2D4D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.38BB7FFCBD53051FA559FA362606BB74] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\initialize.exe [88576]
[MD5.5D4BC124FAAE6730AC002CDB67BF1A1C] [APT] [Google Software Updater] (.Google.) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [194032]
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachine] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [133104]
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [133104]
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [133104]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [249064]
[MD5.00000000000000000000000000000000] [APT] [LyricsPal Update] (...) -- C:\Program Files\XingHaoLyrics\XingHaoUpdater.exe (.not file.) [0] =>Adware.AddLyrics
[MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288]
[MD5.7E436B07C60B3A1D992648526732DB4F] [APT] [{BBF08423-2E61-442C-9FCA-0A66D8D3FC9F}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe [19604072]
[MD5.00000000000000000000000000000000] [APT] [{EC49FE81-53CC-44B1-8C4B-607682CA4F6A}] (...) -- C:\Users\josiane\Desktop\PPP_III-fr.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EECE55DA-87D7-4BC5-82DF-A82D49968A46}] (...) -- C:\Users\josiane\Desktop\pfsx-setup-en-10-7-3.exe (.not file.) [0]
~ Scheduled Task: 22 Scanned in 00mn 02s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: (no name) - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Microsoft Windows Media Component Removal File..) -- C:\Windows\system32\msdxm.ocx
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (...) -- C:\Windows\INF\mswmp.inf =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.9 r900.) -- C:\Windows\system32\Macromed\Flash\Flash32_11_9_900_170.ocx
~ Active Setup: 14 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Avgdiskx) . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) - C:\Windows\System32\DRIVERS\avgdiskx.sys
O41 - Driver: (Avgfwfd) . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) - C:\Windows\System32\DRIVERS\avgfwd6x.sys
O41 - Driver: (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - C:\Windows\System32\DRIVERS\avgidsdriverx.sys
O41 - Driver: (AVGIDSShim) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Dri.) - C:\Windows\System32\DRIVERS\avgidsshimx.sys
O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver: (Avgldx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx86.sys
O41 - Driver: (Avgtdix) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdix.sys
O41 - Driver: (avgtp) . (.AVG Technologies - Pas de description.) - C:\Windows\system32\drivers\avgtpx86.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
~ Drivers: 90 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM] -- AVG
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM] -- {3B97ADB7-3DA1-4964-BC10-68384BA6A66F}
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM] -- {49AEFEAB-A10B-4E8E-B577-2287ACA2B8AF}
O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM] -- AVG Secure Search =>Toolbar.AVGSearch
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems, Inc..) [HKLM] -- {AF36CE1D-FD2C-4BA0-93FA-1196785DD610}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.4.0 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Agere Systems PCI-SV92EX Soft Modem - (.Agere Systems.) [HKLM] -- Agere Systems Soft Modem
O42 - Logiciel: Alien Skin Eye Candy 5 Nature - (...) [HKLM] -- EyeCandy5Nature
O42 - Logiciel: Alien Skin Xenofex 2.0 - (...) [HKLM] -- Xenofex2
O42 - Logiciel: Apophysis 7x - (.Xyrus.) [HKLM] -- {F069DBC3-6362-42EE-9BBF-264B857F62B0}
O42 - Logiciel: Apophysis 7x - (.XyrusWorx.) [HKLM] -- Apophysis 7x
O42 - Logiciel: Apprenez Microsoft Excel 2007 - (...) [HKLM] -- Apprenez Microsoft Excel 2007
O42 - Logiciel: ArcSoft Panorama Maker 3 - (.ArcSoft.) [HKLM] -- {A5F68DC8-0278-4AD8-B413-861509B5F25B}
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {07287123-B8AC-41CE-8346-3D777245C35B}
O42 - Logiciel: BrowseToSave - (...) [HKLM] -- {340BF24A-DA9A-429E-A075-92B8EFE8D0BC} =>Adware.Browse2Save
O42 - Logiciel: Bundled software uninstaller - (...) [HKLM] -- bi_uninstaller =>Adware.MegaSearch
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>Piriform Ltd
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Camera RAW Plug-In for EPSON Creativity Suite - (.SEIKO EPSON CORPORATION.) [HKLM] -- {93EA9C3E-BDFD-4309-A605-9B5BBC0CCEFD}
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: CrossLoop 2.80 - (.CrossLoop, Inc..) [HKLM] -- CrossLoop_is1
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink PowerDVD - (.PowerDVDCorp..) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Détection de l'application Winamp - (.Nullsoft, Inc.) [HKCU] -- Winamp Detect
O42 - Logiciel: EPSON Attach To Email - (.SEIKO EPSON.) [HKLM] -- InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}
O42 - Logiciel: EPSON Copy Utility 3 - (...) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857}
O42 - Logiciel: EPSON Easy Photo Print - (.SEIKO EPSON CORPORATION.) [HKLM] -- {3D78F2A2-C893-4ABD-B5FE-AD7011837755}
O42 - Logiciel: EPSON File Manager - (...) [HKLM] -- {2EB81825-E9EE-44F4-8F51-1240C3898DC6}
O42 - Logiciel: EPSON Logiciel imprimante - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: EPSON Scan - (...) [HKLM] -- EPSON Scanner
O42 - Logiciel: EPSON Scan Assistant - (...) [HKLM] -- {2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}
O42 - Logiciel: EPSON Stylus CX7300_CX8300_DX7400_DX8400 Manuel - (...) [HKLM] -- EPSON Stylus CX7300_CX8300_DX7400_DX8400 Guide d'utilisation
O42 - Logiciel: Easy GIF Animator 5.02 - (.Karlis Blumentals.) [HKLM] -- Easy GIF Animator_is1
O42 - Logiciel: Filters Unlimited 2.0 - (...) [HKLM] -- Filters Unlimited_is1
O42 - Logiciel: Fnacmusic - Gestionnaire de téléchargement - (.Fnacmusic.) [HKLM] -- {7B792358-402A-467D-AB4C-6BA311588ADD}
O42 - Logiciel: GearDrvs - (.GEAR Software.) [HKLM] -- {CB84F0F2-927B-458D-9DC5-87832E3DC653}
O42 - Logiciel: Gekko Mahjongg - (...) [HKLM] -- GEKKO Mahjongg
O42 - Logiciel: Glary Utilities 2.15.0.728 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1
O42 - Logiciel: Google Desktop - (.Google.) [HKLM] -- Google Desktop
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: HP Celebrations - (...) [HKLM] -- HP Celebrations
O42 - Logiciel: Java(TM) 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: Java(TM) 6 Update 5 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160050}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: K-Lite Mega Codec Pack 4.7.5 - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: LyricsPal - (.XingHao Software.) [HKLM] -- lrcspal@xinghao.net =>Adware.AddLyrics
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Micro Application - Cartes de visite 2002 - (...) [HKLM] -- Cartes de visite 2002
O42 - Logiciel: Micro Application - Diaporama Créateur Photo Haute Définition - (...) [HKLM] -- {C34E6C89-D11D-4581-9735-B4D58F535409}
O42 - Logiciel: Micrografx Windows Draw 6 LE - (...) [HKLM] -- WindowsDrawLE
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM] -- {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}
O42 - Logiciel: Microsoft Corporation - (.Microsoft Visual C++ 2005 CRT Redistributable.) [HKLM] -- {7B08D306-7266-4647-A926-2F78817ED1E0}
O42 - Logiciel: Microsoft LifeCam - (.Microsoft Corporation.) [HKLM] -- {BD71B413-9FEE-49BB-A6D1-2C0BFB99BDFE}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: NVIDIA Drivers - (...) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA Pilote graphique 307.83 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: PAC MAN - Voyage dans le temps - (...) [HKLM] -- {D2023740-9AAC-11D4-B54D-006008571948}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: PictureProject - (.Nikon.) [HKLM] -- {FF3999BE-1A7B-4738-88AA-97BF14094A4A}
O42 - Logiciel: PicturesToExe 7.0 - (.WnSoft.) [HKLM] -- {A254D625} PicturesToExe 7.0_is1
O42 - Logiciel: PixBuilder Studio 2.2.0 - (.WnSoft.) [HKLM] -- 2E349885-5DA2-478A-ABDE-94F0CCDE703A_is1
O42 - Logiciel: PlayerTuto.com 2.0.6 - (.Weecast SAS.) [HKLM] -- {2B7FD473-DF96-40D4-9EE3-A427B450B1BC}_is1
O42 - Logiciel: Plus de 600 Applications pour Excel - (...) [HKLM] -- {AEB93E16-7F04-452F-9559-FD5E21778C8E}
O42 - Logiciel: PowerpointImageExtractor - (...) [HKLM] -- PowerpointImageExtractor_is1
O42 - Logiciel: QVGDM Seconde Edition - (.Eidos Interactive.) [HKLM] -- {735D1B9F-A9A4-4FF2-A830-96C150883B97}
O42 - Logiciel: Qui Veut Gagner Des Millions - (.Eidos Interactive.) [HKLM] -- {343603B6-78D8-43F9-98F6-EC07BA2CBF58}
O42 - Logiciel: QuickShare - (.Linkury Inc..) [HKLM] -- {2B0ECB7D-EA9A-422A-9651-FC195136B031} =>PUP.QuickShare
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype™ 6.5 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Surf Anonymous Free - (...) [HKLM] -- SurfAnonymousFree
O42 - Logiciel: USB Storage Driver - (...) [HKLM] -- GENEUIDE
O42 - Logiciel: Updater Service - (...) [HKLM] -- Updater Service =>Adware.IncrediBar
O42 - Logiciel: VideoConverter - (.PerformerSoft LLC.) [HKLM] -- VideoConverter
O42 - Logiciel: Visionneuse Microsoft PowerPoint - (.Microsoft Corporation.) [HKLM] -- {95140000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
O42 - Logiciel: Wajam - (.Wajam.) [HKLM] -- Wajam =>PUP.Wajam
O42 - Logiciel: WinRAR archiver - (...) [HKLM] -- WinRAR archiver
O42 - Logiciel: Yahoo! Software Update - (...) [HKLM] -- Yahoo! Software Update
O42 - Logiciel: eMachines Recovery Management - (.Acer Incorporated.) [HKLM] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
~ Logic: 53 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\5d28cdee23bec42] =>Hijacker.Hijacker.Eazel
[HKCU\Software\ABBYY]
[HKCU\Software\ACE Compression Software]
[HKCU\Software\ASProtect]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVG Secure Search] =>Toolbar.AVGSearch
[HKCU\Software\AVG]
[HKCU\Software\AcerUtil]
[HKCU\Software\Adobe]
[HKCU\Software\Alien Skin]
[HKCU\Software\Anuman Interactive]
[HKCU\Software\Apophysis 2.0]
[HKCU\Software\Apophysis 7x]
[HKCU\Software\AppDataLow\Aurigma]
[HKCU\Software\AppDataLow\Avg]
[HKCU\Software\AppDataLow\Google]
[HKCU\Software\AppDataLow\SProtector] =>PUP.Mocaflix
[HKCU\Software\AppDataLow\Software\AVG Security Toolbar] =>Toolbar.AVGSearch
[HKCU\Software\AppDataLow\Software\Avg]
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\XingHaoLyrics] =>Adware.AddLyrics
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Auslogics]
[HKCU\Software\Avira]
[HKCU\Software\BI]
[HKCU\Software\BabylonToolbar] =>PUP.Babylon
[HKCU\Software\BigFix]
[HKCU\Software\CDDB]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\CeWe Color]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CoreVorbis]
[HKCU\Software\Cr_Installer] =>PUP.CrossRider
[HKCU\Software\CyberLink]
[HKCU\Software\Datamngr] =>PUP.Datamngr
[HKCU\Software\DivXNetworks]
[HKCU\Software\DragonFly]
[HKCU\Software\EMME]
[HKCU\Software\EPSON]
[HKCU\Software\EasyBits]
[HKCU\Software\FileScout] =>PUP.FileScout
[HKCU\Software\Flaming Pear PV]
[HKCU\Software\GNU]
[HKCU\Software\GSpot Appliance Corp]
[HKCU\Software\Gabest]
[HKCU\Software\GameXN]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Hasbro Interactive]
[HKCU\Software\HipSoft]
[HKCU\Software\HotHouse Creations Ltd]
[HKCU\Software\I.C.NET Software GmbH]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Karlis Blumentals]
[HKCU\Software\LG Electronics Inc]
[HKCU\Software\Lake]
[HKCU\Software\Licenses]
[HKCU\Software\LightScribe]
[HKCU\Software\Ligos]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\Magnet]
[HKCU\Software\MainConcept (Nikon)]
[HKCU\Software\MainConcept]
[HKCU\Software\MediaInfo]
[HKCU\Software\Micro Application]
[HKCU\Software\Micrografx]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\MultiInstaller]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\New Virtual Research]
[HKCU\Software\Nikon]
[HKCU\Software\ODBC]
[HKCU\Software\ORL]
[HKCU\Software\PAW-Software]
[HKCU\Software\PerformerSoft LLC]
[HKCU\Software\PhotoFiltre Studio X]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Radio Sounds]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realtek]
[HKCU\Software\Redfield]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\SecuROM]
[HKCU\Software\SkypeApps]
[HKCU\Software\Skype]
[HKCU\Software\SlySoft]
[HKCU\Software\SmartbarBackup] =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog] =>Hijacker.SmartBar
[HKCU\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Teamwest]
[HKCU\Software\Textalk AB]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\Wajam] =>PUP.Wajam
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winsudate] =>Adware.Gibmedia
[HKCU\Software\WnSoft]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\mozilla]
[HKCU\Software\scacms64]
[HKLM\Software\5d28cdee23bec42] =>Hijacker.Hijacker.Eazel
[HKLM\Software\ABBYY]
[HKLM\Software\AVG Security Toolbar] =>Toolbar.AVGSearch
[HKLM\Software\Acer]
[HKLM\Software\Adobe]
[HKLM\Software\Agere]
[HKLM\Software\Alien Skin]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\Avira]
[HKLM\Software\Babylon] =>PUP.Babylon
[HKLM\Software\BrowserChoice]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Codec Tweak Tool]
[HKLM\Software\Cyberlink]
[HKLM\Software\Debug]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EMME]
[HKLM\Software\EPSON]
[HKLM\Software\GEAR Software]
[HKLM\Software\GEKKO]
[HKLM\Software\GNU]
[HKLM\Software\Gateway]
[HKLM\Software\Google]
[HKLM\Software\HPS]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hothouse Creations]
[HKLM\Software\IM Providers]
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Jodix]
[HKLM\Software\JreMetrics]
[HKLM\Software\KLCodecPack]
[HKLM\Software\Khronos]
[HKLM\Software\Lake]
[HKLM\Software\Licenses]
[HKLM\Software\LightScribe]
[HKLM\Software\Macromedia]
[HKLM\Software\Magix]
[HKLM\Software\Micro Application]
[HKLM\Software\Micrografx]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero ShowTime Essentials]
[HKLM\Software\Nero]
[HKLM\Software\Nikon]
[HKLM\Software\ODBC]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\S3R521]
[HKLM\Software\SP Global] =>PUP.AdvancedSystemProtector
[HKLM\Software\SProtector] =>PUP.Mocaflix
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sci-Fi]
[HKLM\Software\Skype]
[HKLM\Software\SymDebug]
[HKLM\Software\Symantec]
[HKLM\Software\TuneUp]
[HKLM\Software\Uniblue]
[HKLM\Software\Volatile]
[HKLM\Software\WOW6432Node]
[HKLM\Software\Waves Audio]
[HKLM\Software\WholeSecurity]
[HKLM\Software\WildTangent]
[HKLM\Software\WinRAR]
[HKLM\Software\Winsudate] =>Adware.Gibmedia
[HKLM\Software\WnSoft]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Yahoo]
[HKLM\Software\mozilla.org]
~ Key Software: 358 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 26/06/2009 - 11:14:09 - [118,664] ----D C:\Program Files\ABBYY FineReader 6.0 Sprint
O43 - CFD: 08/10/2010 - 08:56:17 - [154,628] ----D C:\Program Files\Adobe
O43 - CFD: 01/08/2012 - 19:37:59 - [0,496] ----D C:\Program Files\adslTV
O43 - CFD: 16/02/2013 - 00:21:32 - [0,270] ----D C:\Program Files\Alien Skin
O43 - CFD: 11/06/2012 - 21:58:09 - [22,302] ----D C:\Program Files\Apophysis 7x
O43 - CFD: 26/06/2009 - 11:52:12 - [37,532] ----D C:\Program Files\ArcSoft
O43 - CFD: 17/05/2013 - 12:48:01 - [0,002] ----D C:\Program Files\Ask.com
O43 - CFD: 16/05/2011 - 19:26:52 - [0] ----D C:\Program Files\AVAST Software
O43 - CFD: 19/11/2013 - 19:27:34 - [118,492] ----D C:\Program Files\AVG
O43 - CFD: 13/01/2014 - 17:01:23 - [37,525] ----D C:\Program Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 16/05/2011 - 11:02:16 - [28,902] ----D C:\Program Files\Avira
O43 - CFD: 10/07/2009 - 10:55:13 - [0,348] ----D C:\Program Files\BigFix
O43 - CFD: 19/12/2009 - 18:33:45 - [0,375] ----D C:\Program Files\Bonjour
O43 - CFD: 19/11/2013 - 20:51:15 - [0,471] ----D C:\Program Files\BrowseToSave =>Adware.Browse2Save
O43 - CFD: 10/04/2011 - 14:43:30 - [0] ----D C:\Program Files\Carrefour Online
O43 - CFD: 09/06/2012 - 23:16:05 - [4,620] ----D C:\Program Files\CCleaner =>Piriform Ltd
O43 - CFD: 18/02/2013 - 10:47:49 - [16,375] ----D C:\Program Files\CDBurnerXP
O43 - CFD: 22/04/2011 - 08:35:01 - [0,396] ----D C:\Program Files\ChatVibes Toolbar
O43 - CFD: 23/12/2013 - 17:27:43 - [567,403] ----D C:\Program Files\Common Files
O43 - CFD: 16/05/2011 - 11:02:18 - [278,908] ----D C:\Program Files\CyberLink
O43 - CFD: 25/10/2009 - 18:36:29 - [0] ----D C:\Program Files\directx
O43 - CFD: 24/07/2012 - 11:20:46 - [10,372] ----D C:\Program Files\Easy GIF Animator
O43 - CFD: 16/05/2011 - 11:02:18 - [0,031] ----D C:\Program Files\eBay =>Toolbar.eBay
O43 - CFD: 18/09/2009 - 17:14:02 - [772,990] ----D C:\Program Files\Eidos Interactive
O43 - CFD: 11/11/2011 - 01:25:22 - [0] ----D C:\Program Files\Elaborate Bytes
O43 - CFD: 10/10/2007 - 05:24:41 - [46,818] ----D C:\Program Files\EMACHINES
O43 - CFD: 17/10/2009 - 19:30:58 - [871,164] ----D C:\Program Files\EMME
O43 - CFD: 26/06/2009 - 11:14:43 - [145,673] ----D C:\Program Files\epson
O43 - CFD: 02/10/2009 - 22:04:05 - [0,161] ----D C:\Program Files\Fnacmusic
O43 - CFD: 22/03/2014 - 07:03:34 - [53,047] ----D C:\Program Files\Glary Utilities
O43 - CFD: 19/12/2013 - 10:59:24 - [383,122] ----D C:\Program Files\Google
O43 - CFD: 22/07/2012 - 02:14:35 - [0] ----D C:\Program Files\GUM44A1.tmp
O43 - CFD: 25/10/2009 - 18:35:03 - [290,410] ----D C:\Program Files\Hasbro Interactive
O43 - CFD: 31/03/2010 - 06:30:40 - [13,343] ----D C:\Program Files\HP Celebrations
O43 - CFD: 06/02/2011 - 23:17:02 - [1,818] ----D C:\Program Files\Iminent =>Adware.IMBooster
O43 - CFD: 17/05/2013 - 12:33:04 - [87,805] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 13/12/2013 - 10:51:43 - [5,441] ----D C:\Program Files\Internet Explorer
O43 - CFD: 27/02/2011 - 17:38:53 - [164,089] ----D C:\Program Files\Java
O43 - CFD: 26/06/2009 - 21:07:10 - [52,446] ----D C:\Program Files\K-Lite Codec Pack
O43 - CFD: 20/08/2010 - 16:33:41 - [0] ----D C:\Program Files\LimeWire
O43 - CFD: 23/12/2013 - 17:27:25 - [235,766] ----D C:\Program Files\Micro Application
O43 - CFD: 31/03/2010 - 18:23:33 - [30,427] ----D C:\Program Files\Micrografx
O43 - CFD: 17/05/2013 - 12:46:54 - [0,590] ----D C:\Program Files\Microsoft
O43 - CFD: 23/05/2010 - 14:30:34 - [57,394] ----D C:\Program Files\Microsoft Games
O43 - CFD: 16/05/2011 - 11:09:29 - [30,380] ----D C:\Program Files\Microsoft LifeCam
O43 - CFD: 30/10/2011 - 20:38:49 - [594,860] ----D C:\Program Files\Microsoft Office
O43 - CFD: 22/11/2013 - 15:06:15 - [40,851] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 30/10/2011 - 20:22:57 - [1,745] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 30/10/2011 - 20:38:44 - [0,014] ----D C:\Program Files\Microsoft Visual Studio
O43 - CFD: 30/10/2011 - 20:34:47 - [1,323] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 31/10/2011 - 19:56:46 - [3,699] ----D C:\Program Files\Microsoft Works
O43 - CFD: 30/10/2011 - 20:37:52 - [7,789] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 30/06/2012 - 18:57:25 - [19,522] ----D C:\Program Files\Movie Maker
O43 - CFD: 18/03/2013 - 22:33:14 - [0] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 30/10/2011 - 20:39:10 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 24/09/2010 - 20:10:42 - [63,464] ----D C:\Program Files\MSECache
O43 - CFD: 26/06/2009 - 12:07:09 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 30/04/2013 - 18:36:52 - [0,015] ----D C:\Program Files\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 21/10/2009 - 19:28:36 - [0,001] ----D C:\Program Files\Nero
O43 - CFD: 17/05/2013 - 12:32:21 - [29,293] ----D C:\Program Files\Nikon
O43 - CFD: 14/04/2013 - 11:22:19 - [743,014] ----D C:\Program Files\NVIDIA Corporation
O43 - CFD: 17/05/2013 - 12:55:54 - [6,330] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 24/04/2013 - 14:43:11 - [266,108] ----D C:\Program Files\PhotoFiltre Studio X
O43 - CFD: 04/07/2012 - 21:40:46 - [7,695] ----D C:\Program Files\PixBuilder Studio
O43 - CFD: 12/06/2012 - 11:09:22 - [56,147] ----D C:\Program Files\PlayerTuto.com
O43 - CFD: 17/08/2010 - 09:46:33 - [1,676] ----D C:\Program Files\PowerpointImageExtractor_V1_2
O43 - CFD: 18/11/2008 - 16:54:43 - [21,770] ----D C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 13:35:51 - [36,910] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 17/06/2013 - 13:07:27 - [27,550] R---D C:\Program Files\Skype
O43 - CFD: 17/05/2013 - 12:48:27 - [0] ----D C:\Program Files\SlySoft
O43 - CFD: 16/05/2011 - 11:02:19 - [59,891] ----D C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 02/08/2012 - 14:50:13 - [4,441] ----D C:\Program Files\SurfAnonymousFree
O43 - CFD: 20/06/2012 - 22:48:28 - [3,967] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 20/06/2012 - 22:48:28 - [24,319] ----D C:\Program Files\VideoConverter
O43 - CFD: 05/10/2010 - 15:41:03 - [0,853] ----D C:\Program Files\VideoLAN
O43 - CFD: 09/04/2013 - 23:08:24 - [0,902] ----D C:\Program Files\Wajam =>PUP.Wajam
O43 - CFD: 11/05/2010 - 20:26:47 - [0] ----D C:\Program Files\Winamp
O43 - CFD: 11/05/2010 - 19:59:03 - [0,126] ----D C:\Program Files\Winamp Detect
O43 - CFD: 30/06/2012 - 18:57:25 - [0,970] ----D C:\Program Files\Windows Calendar
O43 - CFD: 30/06/2012 - 18:57:25 - [2,610] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 30/06/2012 - 18:57:24 - [4,283] ----D C:\Program Files\Windows Defender
O43 - CFD: 02/07/2012 - 12:53:26 - [8,522] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 30/06/2012 - 18:57:25 - [4,394] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 13/06/2009 - 20:55:08 - [7,589] ----D C:\Program Files\Windows NT
O43 - CFD: 30/06/2012 - 18:57:25 - [7,847] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 02/07/2012 - 12:53:33 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 30/06/2012 - 18:57:25 - [10,074] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 16/05/2011 - 11:02:19 - [3,221] ----D C:\Program Files\WinRAR
O43 - CFD: 11/05/2010 - 20:31:20 - [0] ----D C:\Program Files\Winsudate =>Adware.Gibmedia
O43 - CFD: 04/07/2012 - 21:40:08 - [31,495] ----D C:\Program Files\WnSoft PicturesToExe
O43 - CFD: 30/03/2010 - 17:30:19 - [17,605] ----D C:\Program Files\Wondershare
O43 - CFD: 06/06/2013 - 08:40:12 - [0,149] ----D C:\Program Files\XingHaoLyrics =>Adware.AddLyrics
O43 - CFD: 31/07/2012 - 23:22:26 - [0,728] ----D C:\Program Files\Yahoo!
O43 - CFD: 21/03/2014 - 23:29:23 - [17,278] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 08/10/2010 - 08:56:26 - [5,990] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 22/03/2014 - 07:03:34 - [68,936] ----D C:\Program Files\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 30/10/2011 - 20:38:43 - [0,089] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 26/06/2009 - 11:17:09 - [7,096] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 27/02/2011 - 17:39:23 - [34,612] ----D C:\Program Files\Common Files\Java
O43 - CFD: 07/08/2012 - 07:54:37 - [326,520] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 26/06/2009 - 12:06:25 - [7,413] ----D C:\Program Files\Common Files\muvee Technologies
O43 - CFD: 24/10/2009 - 14:03:09 - [0,125] ----D C:\Program Files\Common Files\Nero
O43 - CFD: 07/08/2009 - 16:58:42 - [26,548] ----D C:\Program Files\Common Files\Nikon
O43 - CFD: 23/12/2013 - 17:27:43 - [0] ----D C:\Program Files\Common Files\ODBC
O43 - CFD: 11/05/2010 - 19:58:35 - [3,974] ----D C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 16/05/2011 - 11:03:10 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 20/05/2013 - 18:05:57 - [1,904] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 02/11/2006 - 12:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 07/08/2009 - 16:55:52 - [0,676] ----D C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 20/07/2012 - 02:07:55 - [44,320] ----D C:\Program Files\Common Files\System
O43 - CFD: 26/06/2009 - 10:34:06 - [0] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 20/01/2014 - 00:37:53 - [0,003] ----D C:\ProgramData\37nlpnda
O43 - CFD: 15/05/2011 - 21:50:13 - [0,003] ----D C:\ProgramData\ac78df
O43 - CFD: 08/10/2010 - 08:56:25 - [104,884] ----D C:\ProgramData\Adobe
O43 - CFD: 19/12/2009 - 18:30:27 - [2,249] ----D C:\ProgramData\Apple
O43 - CFD: 20/06/2011 - 09:10:20 - [0] ----D C:\ProgramData\AVAST Software
O43 - CFD: 12/12/2013 - 12:46:08 - [12,891] ----D C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 20/11/2011 - 08:48:41 - [0,015] ----D C:\ProgramData\AVG Security Toolbar =>Toolbar.AVGSearch
O43 - CFD: 19/11/2013 - 19:19:46 - [252,377] ----D C:\ProgramData\AVG2014
O43 - CFD: 16/05/2011 - 11:02:19 - [0,116] ----D C:\ProgramData\Avira
O43 - CFD: 20/06/2012 - 22:46:41 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 19/04/2013 - 17:36:10 - [0,186] ----D C:\ProgramData\BrooWse2seave =>Adware.Browse2Save
O43 - CFD: 19/04/2013 - 17:35:52 - [0,186] ----D C:\ProgramData\Browwsse2saVee =>Adware.Browse2Save
O43 - CFD: 20/08/2010 - 13:55:40 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 21/06/2011 - 18:53:53 - [0] --H-D C:\ProgramData\Common Files
O43 - CFD: 20/08/2012 - 23:34:40 - [0] ----D C:\ProgramData\CorelDRAW Graphics Suite X6
O43 - CFD: 04/07/2009 - 10:48:41 - [0,052] ----D C:\ProgramData\CyberLink
O43 - CFD: 16/09/2009 - 21:00:54 - [5,962] ----D C:\ProgramData\Downloaded Installations
O43 - CFD: 17/05/2013 - 13:02:52 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 26/06/2009 - 13:22:13 - [0] ----D C:\ProgramData\EnterNHelp
O43 - CFD: 26/06/2009 - 11:11:28 - [0,396] ----D C:\ProgramData\EPSON
O43 - CFD: 09/06/2012 - 23:15:56 - [0,514] ----D C:\ProgramData\Google
O43 - CFD: 22/10/2011 - 13:18:12 - [0,013] ----D C:\ProgramData\Google Updater
O43 - CFD: 07/08/2009 - 23:12:32 - [0,185] ----D C:\ProgramData\HipSoft
O43 - CFD: 18/09/2010 - 18:16:33 - [0] ----D C:\ProgramData\hps
O43 - CFD: 20/06/2012 - 22:48:31 - [0,617] ----D C:\ProgramData\IBUpdaterService =>Adware.InstallBrain
O43 - CFD: 28/02/2013 - 17:13:43 - [3,968] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 18/08/2010 - 22:28:36 - [2,371] ----D C:\ProgramData\LGMOBILEAX
O43 - CFD: 21/10/2009 - 19:37:25 - [0,006] ----D C:\ProgramData\LightScribe
O43 - CFD: 29/08/2009 - 15:43:15 - [1,918] ----D C:\ProgramData\MAGIX
O43 - CFD: 21/03/2014 - 22:16:55 - [201,721] ----D C:\ProgramData\MFAData
O43 - CFD: 17/05/2013 - 12:46:54 - [539,985] -S--D C:\ProgramData\Microsoft
O43 - CFD: 19/01/2014 - 14:49:52 - [0,062] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 07/08/2009 - 17:18:24 - [0,013] ----D C:\ProgramData\muvee Technologies
O43 - CFD: 24/10/2009 - 14:03:07 - [0,004] ----D C:\ProgramData\Nero
O43 - CFD: 26/06/2009 - 12:06:31 - [6,674] ----D C:\ProgramData\Nikon
O43 - CFD: 14/04/2013 - 11:26:41 - [1,554] ----D C:\ProgramData\NVIDIA
O43 - CFD: 05/02/2013 - 03:16:16 - [2,099] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 07/08/2009 - 23:08:52 - [0] ----D C:\ProgramData\PlayFirst
O43 - CFD: 19/06/2009 - 19:01:15 - [0,009] ----D C:\ProgramData\QuickTime
O43 - CFD: 26/06/2009 - 21:06:39 - [0] ----D C:\ProgramData\Real
O43 - CFD: 17/06/2013 - 13:07:32 - [139,459] ----D C:\ProgramData\Skype
O43 - CFD: 03/02/2013 - 18:56:03 - [9,564] ----D C:\ProgramData\Skype Extras
O43 - CFD: 31/05/2012 - 00:48:15 - [0,083] ----D C:\ProgramData\SlySoft
O43 - CFD: 28/02/2013 - 15:59:23 - [0] ----D C:\ProgramData\SoftSafe
O43 - CFD: 26/06/2009 - 12:05:54 - [0] ----D C:\ProgramData\Specifications
O43 - CFD: 22/03/2014 - 07:03:34 - [106,600] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 05/10/2010 - 08:25:26 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 02/08/2012 - 14:50:57 - [0,009] ----D C:\ProgramData\SurfAnonymousFree
O43 - CFD: 07/08/2009 - 16:55:52 - [0] ----D C:\ProgramData\Symantec
O43 - CFD: 10/10/2007 - 05:29:09 - [0,137] ----D C:\ProgramData\Temp
O43 - CFD: 06/06/2012 - 21:58:29 - [2,147] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 26/06/2009 - 11:15:36 - [0,003] ----D C:\ProgramData\UDL
O43 - CFD: 26/06/2009 - 13:22:13 - [0] ----D C:\ProgramData\Ultima_T15
O43 - CFD: 27/11/2011 - 08:59:51 - [0] ----D C:\ProgramData\Uniblue
O43 - CFD: 17/05/2013 - 13:01:23 - [0,450] ----D C:\ProgramData\WildTangent
O43 - CFD: 08/07/2009 - 20:25:12 - [0] ----D C:\ProgramData\WindowsSearch
O43 - CFD: 07/06/2012 - 21:44:50 - [0,004] ----D C:\ProgramData\Yahoo!
O43 - CFD: 11/06/2012 - 21:58:12 - [9,187] --H-D C:\ProgramData\{267EE85E-8823-4701-A660-268800CBEAB8}
O43 - CFD: 06/06/2012 - 21:57:04 - [22,680] -SH-D C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
O43 - CFD: 24/06/2009 - 11:36:07 - [1,294] ----D C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
O43 - CFD: 19/12/2009 - 18:35:17 - [0,003] ----D C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
O43 - CFD: 24/06/2009 - 11:20:35 - [3,215] ----D C:\Users\josiane\AppData\Roaming\Adobe
O43 - CFD: 16/02/2013 - 00:23:44 - [0,005] ----D C:\Users\josiane\AppData\Roaming\Alien Skin
O43 - CFD: 19/12/2009 - 18:38:53 - [0,169] ----D C:\Users\josiane\AppData\Roaming\Apple Computer
O43 - CFD: 26/06/2009 - 13:24:14 - [0] ----D C:\Users\josiane\AppData\Roaming\ArcSoft
O43 - CFD: 31/10/2010 - 18:04:05 - [0,587] ----D C:\Users\josiane\AppData\Roaming\Auslogics
O43 - CFD: 19/11/2013 - 19:26:43 - [0,009] ----D C:\Users\josiane\AppData\Roaming\AVG2014
O43 - CFD: 20/06/2012 - 22:46:41 - [0,031] ----D C:\Users\josiane\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 20/08/2010 - 13:55:40 - [0,002] ----D C:\Users\josiane\AppData\Roaming\Canneverbe Limited
O43 - CFD: 07/08/2009 - 20:42:27 - [0,044] ----D C:\Users\josiane\AppData\Roaming\CyberLink
O43 - CFD: 16/08/2009 - 09:49:05 - [0,042] ----D C:\Users\josiane\AppData\Roaming\Elaborate Bytes
O43 - CFD: 28/07/2009 - 17:30:42 - [0,002] ----D C:\Users\josiane\AppData\Roaming\EPSON
O43 - CFD: 25/09/2010 - 19:32:13 - [14,754] ----D C:\Users\josiane\AppData\Roaming\FastStone
O43 - CFD: 19/11/2013 - 21:06:23 - [0,060] ----D C:\Users\josiane\AppData\Roaming\File Scout =>PUP.FileScout
O43 - CFD: 07/08/2009 - 20:27:09 - [0,305] ----D C:\Users\josiane\AppData\Roaming\GlarySoft
O43 - CFD: 24/06/2009 - 11:23:47 - [0,006] ----D C:\Users\josiane\AppData\Roaming\Google
O43 - CFD: 23/02/2011 - 00:34:56 - [0] ----D C:\Users\josiane\AppData\Roaming\Identities
O43 - CFD: 26/06/2009 - 11:11:47 - [0] ----D C:\Users\josiane\AppData\Roaming\InstallShield
O43 - CFD: 18/08/2010 - 22:59:55 - [5,592] ----D C:\Users\josiane\AppData\Roaming\LG Electronics
O43 - CFD: 20/01/2014 - 00:49:50 - [0] ----D C:\Users\josiane\AppData\Roaming\Macromedia
O43 - CFD: 01/08/2009 - 20:07:40 - [0,002] ----D C:\Users\josiane\AppData\Roaming\MAGIX
O43 - CFD: 10/06/2012 - 23:04:44 - [0] ----D C:\Users\josiane\AppData\Roaming\Media Player Classic
O43 - CFD: 29/03/2013 - 00:36:48 - [742,455] -S--D C:\Users\josiane\AppData\Roaming\Microsoft
O43 - CFD: 17/08/2010 - 18:00:43 - [0,308] ----D C:\Users\josiane\AppData\Roaming\Mozilla
O43 - CFD: 07/08/2009 - 17:18:28 - [0,002] ----D C:\Users\josiane\AppData\Roaming\muvee Technologies
O43 - CFD: 07/08/2009 - 16:58:44 - [142,133] ----D C:\Users\josiane\AppData\Roaming\Nikon
O43 - CFD: 11/11/2011 - 01:35:53 - [6,033] ----D C:\Users\josiane\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 05/10/2010 - 08:29:29 - [2,423] ----D C:\Users\josiane\AppData\Roaming\OpenOffice.org
O43 - CFD: 16/05/2011 - 10:11:29 - [0] -SH-D C:\Users\josiane\AppData\Roaming\PC Security Guardian
O43 - CFD: 16/10/2009 - 22:21:40 - [0] ----D C:\Users\josiane\AppData\Roaming\PeerNetworking
O43 - CFD: 16/05/2013 - 21:23:54 - [0] ----D C:\Users\josiane\AppData\Roaming\PerformerSoft
O43 - CFD: 24/09/2010 - 18:39:38 - [0] ----D C:\Users\josiane\AppData\Roaming\PhotoFiltre
O43 - CFD: 01/06/2012 - 00:52:39 - [0,009] ----D C:\Users\josiane\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 22/03/2014 - 07:03:43 - [0,009] ----D C:\Users\josiane\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 07/08/2009 - 23:08:52 - [0,184] ----D C:\Users\josiane\AppData\Roaming\PlayFirst
O43 - CFD: 30/04/2013 - 17:37:31 - [0,056] ----D C:\Users\josiane\AppData\Roaming\PlusWinks
O43 - CFD: 09/01/2010 - 17:22:31 - [0] ----D C:\Users\josiane\AppData\Roaming\Real
O43 - CFD: 21/03/2014 - 22:09:18 - [17,111] ----D C:\Users\josiane\AppData\Roaming\Skype
O43 - CFD: 05/02/2013 - 03:00:13 - [0,029] ----D C:\Users\josiane\AppData\Roaming\skypePM
O43 - CFD: 30/04/2013 - 17:37:25 - [0,079] ----D C:\Users\josiane\AppData\Roaming\SpeedAnalysis2 =>PUP.SpeedAnalysis
O43 - CFD: 02/08/2012 - 14:50:57 - [0] ----D C:\Users\josiane\AppData\Roaming\SurfAnonymousFree
O43 - CFD: 17/06/2009 - 09:41:57 - [0,003] ----D C:\Users\josiane\AppData\Roaming\Symantec
O43 - CFD: 06/06/2012 - 21:57:49 - [1,764] ----D C:\Users\josiane\AppData\Roaming\TuneUp Software
O43 - CFD: 19/03/2013 - 12:25:10 - [0,007] ----D C:\Users\josiane\AppData\Roaming\Uniblue
O43 - CFD: 05/10/2010 - 16:14:36 - [1,455] ----D C:\Users\josiane\AppData\Roaming\vlc
O43 - CFD: 12/06/2012 - 11:09:22 - [0,161] ----D C:\Users\josiane\AppData\Roaming\Weecast
O43 - CFD: 17/05/2013 - 13:01:23 - [0] ----D C:\Users\josiane\AppData\Roaming\WildTangent
O43 - CFD: 17/06/2012 - 01:03:56 - [0] ----D C:\Users\josiane\AppData\Roaming\WinRAR
O43 - CFD: 21/03/2014 - 23:30:27 - [0,023] ----D C:\Users\josiane\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 30/04/2013 - 22:00:54 - [0,323] ----D C:\Users\josiane\AppData\Local\Adobe
O43 - CFD: 19/12/2009 - 18:32:30 - [0] ----D C:\Users\josiane\AppData\Local\Apple
O43 - CFD: 19/12/2009 - 18:40:13 - [5,239] ----D C:\Users\josiane\AppData\Local\Apple Computer
O43 - CFD: 03/02/2013 - 18:45:01 - [2,560] ----D C:\Users\josiane\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 19/11/2013 - 20:29:08 - [2,011] ----D C:\Users\josiane\AppData\Local\Avg2014
O43 - CFD: 22/03/2014 - 07:03:34 - [6,604] ----D C:\Users\josiane\AppData\Local\CrossLoop
O43 - CFD: 30/06/2012 - 15:11:58 - [0] ----D C:\Users\josiane\AppData\Local\eMule
O43 - CFD: 20/06/2012 - 22:48:17 - [361,814] ----D C:\Users\josiane\AppData\Local\Google
O43 - CFD: 23/07/2012 - 12:53:20 - [0,014] ----D C:\Users\josiane\AppData\Local\Ilivid Player =>Adware.Bandoo
O43 - CFD: 22/02/2013 - 10:07:03 - [1,285] ----D C:\Users\josiane\AppData\Local\LiveCraft
O43 - CFD: 03/08/2009 - 21:41:17 - [0,001] ----D C:\Users\josiane\AppData\Local\MAGIX
O43 - CFD: 19/11/2013 - 12:12:24 - [31,970] ----D C:\Users\josiane\AppData\Local\MFAData
O43 - CFD: 08/08/2012 - 07:45:53 - [276,462] ----D C:\Users\josiane\AppData\Local\Microsoft
O43 - CFD: 05/12/2009 - 16:24:21 - [0,679] ----D C:\Users\josiane\AppData\Local\Microsoft Games
O43 - CFD: 07/07/2010 - 12:08:02 - [0,388] ----D C:\Users\josiane\AppData\Local\Microsoft Help
O43 - CFD: 11/11/2011 - 08:52:45 - [0] ----D C:\Users\josiane\AppData\Local\OpenCandy =>Adware.OpenCandy
O43 - CFD: 11/06/2012 - 21:57:28 - [0] ----D C:\Users\josiane\AppData\Local\PackageAware
O43 - CFD: 04/07/2012 - 21:40:16 - [0,002] ----D C:\Users\josiane\AppData\Local\PixBuilder
O43 - CFD: 26/06/2009 - 13:30:37 - [0] ----D C:\Users\josiane\AppData\Local\Pixology
O43 - CFD: 26/06/2009 - 21:06:39 - [0] ----D C:\Users\josiane\AppData\Local\Real
O43 - CFD: 14/01/2014 - 17:46:44 - [18,140] ----D C:\Users\josiane\AppData\Local\Smartbar =>Hijacker.SmartBar
O43 - CFD: 21/03/2014 - 23:29:29 - [720,257] ----D C:\Users\josiane\AppData\Local\Temp
O43 - CFD: 19/06/2009 - 11:56:37 - [6,097] ----D C:\Users\josiane\AppData\Local\VirtualStore
O43 - CFD: 11/06/2013 - 11:30:29 - [0,047] ----D C:\Users\josiane\AppData\Local\Windows Live
O43 - CFD: 30/06/2012 - 22:25:35 - [2,036] ----D C:\Users\josiane\AppData\Local\Xenocode
O43 - CFD: 09/10/2010 - 00:28:37 - [0] ----D C:\Users\josiane\AppData\Local\Yahoo
O43 - CFD: 16/05/2011 - 11:02:36 - [0,014] R---D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/05/2011 - 11:02:36 - [0] R---D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 05/08/2011 - 19:18:11 - [0,004] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CrossLoop
O43 - CFD: 16/05/2011 - 11:02:36 - [0,018] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
O43 - CFD: 16/05/2011 - 11:02:36 - [0,006] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink LabelPrint
O43 - CFD: 11/05/2010 - 19:59:03 - [0,001] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Détection de l'application Winamp
O43 - CFD: 16/05/2011 - 11:02:36 - [0,001] R---D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 21/09/2010 - 16:53:30 - [0] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Micro Application
O43 - CFD: 10/02/2014 - 22:00:00 - [0] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Smart Guard Protection
O43 - CFD: 17/05/2013 - 12:52:23 - [0] R---D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 20/06/2012 - 22:48:28 - [0,002] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VideoConverter
O43 - CFD: 09/04/2013 - 23:08:24 - [0,001] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam =>PUP.Wajam
O43 - CFD: 16/05/2011 - 11:02:36 - [0,002] ----D C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ 142 Dossier CLSID vide (CLSID Empty Folder)
~ Program Folder: 401 Scanned in 00mn 53s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.116B063271F60700589E19E31BC5424E] - 21/03/2014 - 22:06:29 ---A- . (...) -- C:\Windows\setupact.log [50808]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/03/2014 - 22:11:25 ---A- . (...) -- C:\Windows\System32\LogConfigTemp.xml [0]
O44 - LFC:[MD5.391563E3B2C8142F614420D17DA2927E] - 21/03/2014 - 22:19:00 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1495948]
O44 - LFC:[MD5.47DCE8E15B82106A54C2947A79DA67A0] - 21/03/2014 - 22:19:00 ---A- . (...) -- C:\Windows\System32\perfc009.dat [103872]
O44 - LFC:[MD5.34A5559D73DB5D6AFFA96B951666E832] - 21/03/2014 - 22:19:00 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [126420]
O44 - LFC:[MD5.241DFC6BC2E2EE996DF9B2C167B1F97B] - 21/03/2014 - 22:19:00 ---A- . (...) -- C:\Windows\System32\perfh009.dat [595798]
O44 - LFC:[MD5.15309177CB396D6C44FB1B3997A8A231] - 21/03/2014 - 22:19:00 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [678804]
O44 - LFC:[MD5.DC9989859BF8B79E9DC12F93EFF0C3B7] - 21/03/2014 - 23:12:23 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.861312065678B4DA5089EB6E7B0B054F] - 21/03/2014 - 23:12:24 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1818917]
~ Files: 9 Scanned in 01mn 12s
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.056CDC5493F7A3B89F5FE2AE60EC33E5] - 19/03/2014 - 19:07:13 ---A- - C:\Windows\Prefetch\SC.EXE-945D79AE.pf
O45 - LFCP:[MD5.689F5C58F7602D180A0D3EDA9BF76744] - 21/03/2014 - 22:06:41 ---A- - C:\Windows\Prefetch\NET.EXE-DF44F913.pf
O45 - LFCP:[MD5.78B0117609B823ECA6B728844FB7ECCF] - 21/03/2014 - 22:06:41 ---A- - C:\Windows\Prefetch\NET1.EXE-849DA590.pf
O45 - LFCP:[MD5.F52BF113683F81CE698EAD4632B713DB] - 21/03/2014 - 22:06:41 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf
O45 - LFCP:[MD5.1B8154A1A04CF1292662F040CAE40B18] - 21/03/2014 - 22:09:19 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf
O45 - LFCP:[MD5.1D37D7F37F68187DA4D5C5DE7BCBEFEF] - 21/03/2014 - 22:09:25 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.B47E2B1B1F9BAA9F2CF92F348ADC0655] - 21/03/2014 - 22:12:26 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.EE993F12CEB16421B01AA584E42BE7BC] - 21/03/2014 - 22:14:10 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.B7DEA540CF601241BBE657A070593AB8] - 21/03/2014 - 22:14:21 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf
O45 - LFCP:[MD5.4EFA52396C085B2BAF32DE34E372A643] - 21/03/2014 - 22:14:22 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-09540BCD.pf
O45 - LFCP:[MD5.C214A29899FAB847BB207E1322A53CEB] - 21/03/2014 - 22:14:27 ---A- - C:\Windows\Prefetch\DAEMONU.EXE-BB669599.pf
O45 - LFCP:[MD5.DE8917627B32765B07F280DE5FC075AF] - 21/03/2014 - 22:15:52 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.4392A9A0A6C3D8EAE91F62228F16D872] - 21/03/2014 - 22:15:55 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.4C78C4143F69B350F861F3A6645FD9E5] - 21/03/2014 - 22:17:00 ---A- - C:\Windows\Prefetch\FIXCFG.EXE-AD455924.pf
O45 - LFCP:[MD5.3B86DC261453AE6693D0E32F1E5FF61C] - 21/03/2014 - 23:12:24 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-ECAD9571.pf
O45 - LFCP:[MD5.D807477B93BA6D16DAE9730D8A07AC3D] - 21/03/2014 - 23:12:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BF1A352E.pf
O45 - LFCP:[MD5.E4FC86E66B63566F84D2671D31EE1F8F] - 21/03/2014 - 23:12:30 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.6487B0E37F3B316992FC88BE9393665B] - 21/03/2014 - 23:12:34 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-FE771DDA.pf
O45 - LFCP:[MD5.236651904720BB05A213D9550E968241] - 21/03/2014 - 23:12:40 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf
O45 - LFCP:[MD5.9C5171E06DA40B043D2403081FF5D631] - 21/03/2014 - 23:12:42 ---A- - C:\Windows\Prefetch\INITIALIZE.EXE-7DCDC37F.pf
O45 - LFCP:[MD5.03102EF8E88AA29ED0C4EEC5452A8F55] - 21/03/2014 - 23:12:47 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C775D18D.pf
O45 - LFCP:[MD5.781F3C64D289EAE5E6ADF58F60D5DC82] - 21/03/2014 - 23:12:48 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-7D6CBE2E.pf
O45 - LFCP:[MD5.C911322F26C94E2B49B109BAC7C49681] - 21/03/2014 - 23:12:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-FD126C57.pf
O45 - LFCP:[MD5.86BEA0EF833211E043319E35092321A7] - 21/03/2014 - 23:12:50 ---A- - C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf
O45 - LFCP:[MD5.07FAE80630298915EBBA7183045A39B2] - 21/03/2014 - 23:12:50 ---A- - C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf
O45 - LFCP:[MD5.4692445B470AD2B141019CDE6FB2748C] - 21/03/2014 - 23:12:52 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf
O45 - LFCP:[MD5.0EB1889835A65AADB5308E7549723B24] - 21/03/2014 - 23:12:59 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:[MD5.7AD5EAEBDA0BA0DC065259B51413EEED] - 21/03/2014 - 23:13:20 ---A- - C:\Windows\Prefetch\UPDATER.EXE-AC3844D8.pf
O45 - LFCP:[MD5.7A1415AF8F393EDD633FF2FC79ABACA2] - 21/03/2014 - 23:13:30 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.B5BB294FAC3C350CB35792EBF8839005] - 21/03/2014 - 23:13:31 ---A- - C:\Windows\Prefetch\IELOWUTIL.EXE-3885C25E.pf
O45 - LFCP:[MD5.CE5ABC6E8250D2542488D9E9A3E308B7] - 21/03/2014 - 23:17:21 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.9F655FFD4AD0A8E1D60192D230F8208E] - 21/03/2014 - 23:17:45 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.5A5F5C7C8E90C4D1DFA95ABD5E778346] - 21/03/2014 - 23:17:51 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.0D67E02297BFD81C369E7C8F41852A65] - 21/03/2014 - 23:18:00 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.ECF07195F4479B7267FF574E152BF21E] - 21/03/2014 - 23:18:03 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
O45 - LFCP:[MD5.9C2A912E04C64F26A4D53A8EF12EB699] - 21/03/2014 - 23:25:16 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf
O45 - LFCP:[MD5.5C08DB17F0AC0DA32DEAE6DBE4149D62] - 21/03/2014 - 23:25:40 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.BF62F6E3ADE7B64408948984EFE85459] - 21/03/2014 - 23:26:33 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.7648FC67BBF75C3C7AA36E166CC73FDD] - 21/03/2014 - 23:26:45 ---A- - C:\Windows\Prefetch\WINWORD.EXE-C91725A1.pf
O45 - LFCP:[MD5.248A90D897AE157CCA9360EA3A1B59A4] - 21/03/2014 - 23:28:20 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.7BB9915D24834C454BA5BAA3FEB2187D] - 21/03/2014 - 23:28:24 ---A- - C:\Windows\Prefetch\COMUPDATUS.EXE-FEED2F65.pf
O45 - LFCP:[MD5.592C69566358BF851D5550E35F12C88C] - 21/03/2014 - 23:28:53 ---A- - C:\Windows\Prefetch\NVTRAY.EXE-DB83881B.pf
O45 - LFCP:[MD5.FDCD3F59F370B412FA8208B39AEF0506] - 21/03/2014 - 23:28:54 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.4F08A1778FD27120FE55E27B53B6950C] - 21/03/2014 - 23:28:59 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.A4C64AF14BD36455F056C464DEEC3072] - 21/03/2014 - 23:29:04 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.417188CFE7DF0408642634F6BE3CE39B] - 21/03/2014 - 23:30:10 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:[MD5.7E945C794ABD3ACC0AC5F02EA0B14709] - 21/03/2014 - 23:30:13 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.4B945A0D9DA433C6CDDE20291F47726E] - 21/03/2014 - 23:30:38 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
~ Prefetcher: 48 Scanned in 00mn 01s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
~ LSA: 7 Scanned in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s
---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{de10d2bc-2e80-11df-a3ba-001d72b61acb}\AutoRun\command. (...) -- C:\Windows\system32\I:\launcher.exe (.not file.)
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"msacm.l3codecp"="l3codecp.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\l3codecp.acm
O52 - TDSD: \Drivers32\"VIDC.DIVX"="divx.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\divx.dll
O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (...) -- C:\Windows\System32\xvidvfw.dll
O52 - TDSD: \Drivers32\"VIDC.YV12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\Windows\System32\yv12vfw.dll
O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm
O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\lameACM.acm
O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (...) -- C:\Windows\System32\ff_vfw.dll
O52 - TDSD: \Drivers32\"vidc.ptev"="PteVideo.dll" . (...) -- C:\Windows\System32\PteVideo.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm
O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (...) -- C:\Windows\System32\ff_vfw.dll
O52 - TDSD: \drivers.desc\"PteVideo.dll"="PicturesToExe video codec" . (...) -- C:\Windows\System32\PteVideo.dll
~ TDSD: 14 Scanned in 00mn 00s
---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\B2C_AGENT [Key] . (.LG Electronics - B2C NotiAgent MFC 응용 프로그램.) -- C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe
O53 - SMSR:HKLM\...\startupreg\EPSON Stylus DX8400 Series [Key] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICEE.exe =>.Epson Seiko Corporation
O53 - SMSR:HKLM\...\startupreg\Google Desktop Search [Key] . (.Google - Google Desktop.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O53 - SMSR:HKLM\...\startupreg\LanguageShortcut [Key] . (.Pas de propriétaire - Language Application.) -- C:\Program Files\CyberLink\PowerDVD\Language\Language.exe
O53 - SMSR:HKLM\...\startupreg\LightScribe Control Panel [Key] . (...) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\NvCplDaemon [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll =>.NVIDIA Corporation
O53 - SMSR:HKLM\...\startupreg\NvMediaCenter [Key] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\system32\NvMcTray.dll
O53 - SMSR:HKLM\...\startupreg\RemoteControl [Key] . (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe =>.Oracle Corporation
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O53 - SMSR:HKLM\...\startupreg\UpdateP2GoShortCut [Key] . (.CyberLink Corp. - StartMen Application.) -- C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
O53 - SMSR:HKLM\...\startupreg\UpdatePSTShortCut [Key] . (.CyberLink Corp. - StartMen Application.) -- C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe
O53 - SMSR:HKLM\...\startupreg\Windows Defender [Key] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
~ SMSR Keys: 15 Scanned in 00mn 00s
---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s
---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableStatusMessages"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=3
~ MWPS: 18 Scanned in 00mn 00s
---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=149
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
~ MWPE Keys: 2 Scanned in 00mn 00s
---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.B46AA621E7BD4FE150BCC140DACEDA1B] - 02/11/2006 - 09:55:12 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys [53376]
O58 - SDL:[MD5.82B296AE1892FE3DBEE00C9CF92F8AC7] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [265688]
O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:32:46 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422968]
O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 03:32:51 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [300600]
O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 03:32:52 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\System32\Drivers\adpu160m.sys [101432]
O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 03:32:53 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys [149560]
O58 - SDL:[MD5.3911B972B55FEA0478476B2E777B29FA] - 21/04/2011 - 14:58:27 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys [273408]
O58 - SDL:[MD5.13F9E33747E6B41A3FF305C37DB0D360] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [56376]
O58 - SDL:[MD5.BAF68DCBA949633DF0C16D37AF2A2351] - 05/03/2008 - 06:10:00 ---A- . (.Agere Systems - SoftModem Device Driver.) -- C:\Windows\System32\Drivers\AGRSM.sys [1203808]
O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 03:32:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [17464]
O58 - SDL:[MD5.C47344BC706E5F0B9DCE369516661578] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Filtre AGP AMD NT.) -- C:\Windows\System32\Drivers\AMDAGP.SYS [57400]
O58 - SDL:[MD5.9B78A39A4C173FDBC1321E0DD659B34C] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\Drivers\amdide.sys [17976]
O58 - SDL:[MD5.18F29B49AD23ECEE3D2A826C725C8D48] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk7.sys [41472]
O58 - SDL:[MD5.93AE7F7DD54AB986A6F1A1B37BE7442D] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [44032]
O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 03:32:49 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [79416]
O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 03:32:50 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [79928]
O58 - SDL:[MD5.53B202ABEE6455406254444303E87BE1] - 21/01/2008 - 03:33:40 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [17408]
O58 - SDL:[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - 11/04/2009 - 07:32:26 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [19944]
O58 - SDL:[MD5.64B0052340B8EC28FA8A56B708AE71CC] - 11/04/2009 - 07:32:42 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [109032]
O58 - SDL:[MD5.9C7C45DE9E167F6268D32D6D10133F7D] - 05/11/2013 - 21:50:48 ---A- . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) -- C:\Windows\System32\Drivers\avgdiskx.sys [120600]
O58 - SDL:[MD5.7F9B01CE297EF4D54C5C4D736D22CF96] - 26/09/2013 - 10:00:38 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) -- C:\Windows\System32\Drivers\avgfwd6x.sys [47928]
O58 - SDL:[MD5.C66B17D93F94622293608C2FB91C5806] - 04/11/2013 - 21:57:30 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) -- C:\Windows\System32\Drivers\avgidsdriverx.sys [209176]
O58 - SDL:[MD5.0C70FAB4B08DC1FF6612AA3F352CFCA9] - 24/10/2013 - 22:28:32 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Driver..) -- C:\Windows\System32\Drivers\avgidshx.sys [147768]
O58 - SDL:[MD5.4118A9D326A76D485713A36988102C3E] - 17/09/2013 - 00:57:26 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Driver..) -- C:\Windows\System32\Drivers\avgidsshimx.sys [22840]
O58 - SDL:[MD5.578ECC3D911897B2C5B760EDAF8ED6CA] - 31/10/2013 - 23:00:28 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\System32\Drivers\avgldx86.sys [176952]
O58 - SDL:[MD5.BD1A440B9F126AFE52978A44952B0018] - 31/10/2013 - 22:30:08 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) -- C:\Windows\System32\Drivers\avglogx.sys [222520]
O58 - SDL:[MD5.7DC192EC714342E7C020C7CF42E394D8] - 01/10/2013 - 00:49:38 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\System32\Drivers\avgmfx86.sys [102712]
O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 10/12/2009 - 16:20:11 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys [56816]
O58 - SDL:[MD5.E6322DF686CE1C59D7797FAEF0732454] - 10/09/2013 - 00:43:20 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\Windows\System32\Drivers\avgrkx86.sys [27448]
O58 - SDL:[MD5.E98603F9D1F412F38ADF2F76053F9E5A] - 01/08/2013 - 16:08:52 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\Windows\System32\Drivers\avgtdix.sys [193848]
O58 - SDL:[MD5.15ACA2AD17ACECA4814F249783E63AD3] - 19/11/2013 - 11:52:11 ---A- . (.AVG Technologies - Pas de description.) -- C:\Windows\System32\Drivers\avgtpx86.sys [37664]
O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\Windows\System32\Drivers\avipbb.sys [96104]
O58 - SDL:[MD5.2B8A5A8879238C3BA9A89A8E3AC4E45D] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [28216]
O58 - SDL:[MD5.9F5F8F2318DFA3974A6F6A5602733929] - 21/01/2008 - 03:32:58 ---A- . (.Microsoft Corporation - Microsoft BDA Driver Support Library.) -- C:\Windows\System32\Drivers\bdasup.sys [12288]
O58 - SDL:[MD5.67E506B75BD5326A3EC7B70BD014DFB6] - 21/01/2008 - 03:33:14 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [6144]
O58 - SDL:[MD5.D4DF28447741FD3D953526E33A617397] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys [45568]
O58 - SDL:[MD5.35F376253F687BDE63976CCB3F2108CA] - 22/02/2011 - 14:23:55 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [69632]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.B1564976D98E91FC764D5DC28A0297DA] - 11/04/2009 - 06:42:55 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [93696]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.AD07C1EC6665B8B35741AB91200C6B68] - 02/11/2006 - 09:55:23 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [39936]
O58 - SDL:[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - 21/01/2008 - 03:33:23 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [70144]
O58 - SDL:[MD5.6B4BFFB9BECD728097024276430DB314] - 11/04/2009 - 05:39:17 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [67072]
O58 - SDL:[MD5.E5D4133F37219DBCFE102BC61072589D] - 21/01/2008 - 03:32:51 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [35328]
O58 - SDL:[MD5.0767B09C74D935A590B4879D14463B64] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [125928]
O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 03:32:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [19000]
O58 - SDL:[MD5.6AFEF0B60FA25DE07C0968983EE4F60A] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys [20792]
O58 - SDL:[MD5.36975327EF03949CC378AB01E316B574] - 11/04/2009 - 07:32:30 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [35304]
O58 - SDL:[MD5.741E9DFF4F42D2D8477D0FC1DC0DF871] - 21/01/2008 - 03:32:48 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys [24632]
O58 - SDL:[MD5.1F07BECDCA750766A96CDA811BA86410] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\crusoe.sys [40960]
O58 - SDL:[MD5.622C41A07CA7E6DD91770F50D532CB6C] - 14/04/2011 - 15:59:03 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [75264]
O58 - SDL:[MD5.5D4AEFC3386920236A548271F8F1AF6A] - 11/04/2009 - 07:32:31 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [53736]
O58 - SDL:[MD5.494075282E23D838F43A4C9FB7143959] - 11/04/2009 - 05:39:11 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [19456]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys [71272]
O58 - SDL:[MD5.2A63675F6FA8EF0FF9F5C72695584CAA] - 30/10/2013 - 02:43:04 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Descrambler Filter.) -- C:\Windows\System32\Drivers\drmk.sys [130048]
O58 - SDL:[MD5.97FEF831AB90BEE128C9AF390E243F80] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Audio Descrambler Filter.) -- C:\Windows\System32\Drivers\drmkaud.sys [5632]
O58 - SDL:[MD5.C67EBF9C05531C406E1E079FF669A2E6] - 11/04/2009 - 07:32:29 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [27624]
O58 - SDL:[MD5.EAAAFEF04FBB45665C9576E525D45A12] - 21/01/2008 - 03:34:01 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys [13312]
O58 - SDL:[MD5.C8D5369BFE193B5FB53337DCE77CE314] - 11/04/2009 - 05:23:23 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys [76288]
O58 - SDL:[MD5.988670D8343EF9835FB3659DB71B2EFA] - 01/08/2013 - 04:16:32 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [638400]
O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 03:32:50 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel(R) PRO/1000.) -- C:\Windows\System32\Drivers\E1G60I32.sys [118784]
O58 - SDL:[MD5.7F64EA048DCFAC7ACF8B4D7B4E6FE371] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - Special Memory Device Cache.) -- C:\Windows\System32\Drivers\ecache.sys [141288]
O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:32:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [342584]
O58 - SDL:[MD5.3DB974F3935483555D7148663F726C61] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [6656]
O58 - SDL:[MD5.22B408651F9123527BCEE54B4F6C5CAE] - 11/04/2009 - 05:13:53 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [136704]
O58 - SDL:[MD5.1E9B9A70D332103C52995E957DC09EF8] - 11/04/2009 - 05:13:52 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [142848]
O58 - SDL:[MD5.AFE1E8B9782A0DD7FB46BBD88E43F89A] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [25088]
O58 - SDL:[MD5.A8C0139A884861E3AAE9CFE73B208A9F] - 21/01/2008 - 03:33:40 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [58936]
O58 - SDL:[MD5.0AE429A696AECBC5970E3CF2C62635AE] - 21/01/2008 - 03:34:01 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [27648]
O58 - SDL:[MD5.85B7CF99D532820495D68D747FDA9EBD] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [20480]
O58 - SDL:[MD5.01334F9EA68E6877C4EF05D3EA8ABB05] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [190424]
O58 - SDL:[MD5.B972A66758577E0BFD1DE0F91AAA27B5] - 29/02/2012 - 14:32:37 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [12800]
O58 - SDL:[MD5.73594DBC99E22958150192EE99BC48CE] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [99816]
O58 - SDL:[MD5.34582A6E6573D54A07ECE5FE24A126B5] - 21/01/2008 - 03:32:47 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [61496]
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 14:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [26600]
O58 - SDL:[MD5.DC26F38AB6C6BB30EC6E90B61F4647F0] - 26/06/2009 - 08:16:18 R--A- . (.General - USB Storage Driver.) -- C:\Windows\System32\Drivers\geneuide.sys [24720]
O58 - SDL:[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - 11/04/2009 - 05:42:42 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [561152]
O58 - SDL:[MD5.CB04C744BE0A61B1D648FAED182C3B59] - 02/11/2006 - 08:36:49 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys [235520]
O58 - SDL:[MD5.1338520E78D90154ED6BE8F84DE5FCEB] - 02/11/2006 - 09:55:22 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [29184]
O58 - SDL:[MD5.5961CADB7CAD938368D2028725EF771D] - 11/04/2009 - 05:42:48 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [39424]
O58 - SDL:[MD5.FF3160C3A2445128C5A6D9B076DA519E] - 02/11/2006 - 09:55:01 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [21504]
O58 - SDL:[MD5.BE4AD4045D7A6C6AF4ECCBD5F6B7F8D8] - 03/07/2013 - 03:10:50 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [25472]
O58 - SDL:[MD5.CCA4B519B17E23A00B826C55716809CC] - 11/04/2009 - 05:42:48 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [12800]
O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 03:32:52 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\Drivers\HpCISSs.sys [40504]
O58 - SDL:[MD5.0EEECA26C8D4BDE2A4664DB058A81937] - 03/11/2009 - 20:41:44 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [411648]
O58 - SDL:[MD5.95BD3EA81EBE6B8CACAFDB6CDAB3586C] - 21/01/2008 - 03:32:23 ---A- . (.Microsoft Corporation - I2O Utility Filter.) -- C:\Windows\System32\Drivers\i2omgmt.sys [19000]
O58 - SDL:[MD5.C6B032D69650985468160FC9937CF5B4] - 21/01/2008 - 03:32:23 ---A- . (.Microsoft Corporation - I2O Miniport Driver.) -- C:\Windows\System32\Drivers\i2omp.sys [30264]
O58 - SDL:[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [54784]
O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 03:32:49 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\Drivers\iaStorV.sys [235064]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [41576]
O58 - SDL:[MD5.C6E5276C00EBDEB096BB5EF4B797D1B6] - 11/06/2008 - 10:13:24 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\System32\Drivers\int15.sys [15392]
O58 - SDL:[MD5.8C7FA71CB1EBCD3EDE8958D27B1BF0B4] - 11/06/2008 - 10:13:24 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\System32\Drivers\int15_64.sys [17952]
O58 - SDL:[MD5.83AA759F3189E6370C30DE5DC5590718] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [17976]
O58 - SDL:[MD5.224191001E78C89DFA78924C3EA595FF] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [41472]
O58 - SDL:[MD5.62C265C38769B864CB25B4BCF62DF6C3] - 21/01/2008 - 03:34:33 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [47616]
O58 - SDL:[MD5.B25AAF203552B7B3491139D582B39AD1] - 21/01/2008 - 03:32:48 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [64512]
O58 - SDL:[MD5.8793643A67B42CEC66490B2A0CF92D68] - 21/01/2008 - 03:34:06 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [100864]
O58 - SDL:[MD5.E50A95179211B12946F7E035D60AF560] - 21/01/2008 - 03:34:18 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [95744]
O58 - SDL:[MD5.109C0DFB82C3632FBD11949B73AEEAC9] - 21/01/2008 - 03:33:26 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [13312]
O58 - SDL:[MD5.6C70698A3E5C4376C6AB5C7C17FB0614] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [49720]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys [35944]
O58 - SDL:[MD5.37605E0A8CF00CBBA538E753E4344C6E] - 21/01/2008 - 03:32:49 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [35384]
O58 - SDL:[MD5.EDE59EC70E25C24581ADD1FBEC7325F7] - 11/04/2009 - 05:38:40 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [17408]
O58 - SDL:[MD5.EF73C1E29FBE7B0FD0274BF4394E346A] - 11/04/2009 - 05:38:49 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [149504]
O58 - SDL:[MD5.4A1445EFA932A3BAF5BDB02D7131EE20] - 04/06/2012 - 16:26:04 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [440704]
O58 - SDL:[MD5.D1C5883087A0C3F1344D9D55A44901F6] - 21/01/2008 - 03:34:21 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [47104]
O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 03:32:49 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [96312]
O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 03:32:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [89656]
O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 03:32:48 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [96312]
O58 - SDL:[MD5.8F5C7426567798E62A3B3614965D62CC] - 21/01/2008 - 03:34:22 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [84480]
O58 - SDL:[MD5.B271EC02E71271A2DA28B3B7BC4E4F15] - 21/01/2008 - 03:34:35 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [18944]
O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 03:32:53 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\System32\Drivers\megasas.sys [31288]
O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 03:32:52 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [386616]
O58 - SDL:[MD5.E13B5EA0F51BA5B1512EC671393D09BA] - 21/01/2008 - 03:34:45 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [31744]
O58 - SDL:[MD5.0A9BB33B56E294F686ABB7C1E4E2D8A8] - 21/01/2008 - 03:32:47 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [41984]
O58 - SDL:[MD5.5BF6A1326A335C5298477754A506D263] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [34360]
O58 - SDL:[MD5.93B8D4869E12CFBE663915502900876F] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [15872]
O58 - SDL:[MD5.BDAFC88AA6B92F7842416EA6A48E1600] - 21/01/2008 - 03:33:14 ---A- . (.Microsoft Corporation - Mount Point Manager.) -- C:\Windows\System32\Drivers\mountmgr.sys [57400]
O58 - SDL:[MD5.511D011289755DD9F9A7579FB0B064E6] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Pilote du bus de prise en charge des chemins d’accès multiples.) -- C:\Windows\System32\Drivers\mpio.sys [105016]
O58 - SDL:[MD5.22241FEBA9B2DEFA669C8CB0A8DD7D2E] - 21/01/2008 - 03:34:35 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [64000]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\System32\Drivers\Mraid35x.sys [33384]
O58 - SDL:[MD5.82CEA0395524AACFEB58BA1448E8325C] - 11/04/2009 - 05:14:40 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [114688]
O58 - SDL:[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - 29/04/2011 - 14:24:40 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys [106496]
O58 - SDL:[MD5.4FCCB34D793B116423209C0F8B7A3B03] - 06/07/2011 - 16:31:47 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [214016]
O58 - SDL:[MD5.C3CB1B40AD4A0124D617A1199B0B9D7C] - 29/04/2011 - 14:24:42 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [79872]
O58 - SDL:[MD5.28023E86F17001F7CD9B15A5BC9AE07D] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys [28728]
O58 - SDL:[MD5.4468B0F385A86ECDDAF8D3CA662EC0E7] - 21/01/2008 - 03:32:47 ---A- . (.Microsoft Corporation - Microsoft Device Specific Module.) -- C:\Windows\System32\Drivers\msdsm.sys [94776]
O58 - SDL:[MD5.A9927F4A46B816C92F461ACB90CF8515] - 21/01/2008 - 03:33:23 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [22528]
O58 - SDL:[MD5.0F400E306F385C56317357D6DEA56F62] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [16440]
O58 - SDL:[MD5.232FA340531D940AAC623B121A595034] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [180712]
O58 - SDL:[MD5.D8C63D34D9C9E56C059E24EC7185CC07] - 21/01/2008 - 03:34:39 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [8192]
O58 - SDL:[MD5.1D373C90D62DDB641D50E55B9E78D65E] - 21/01/2008 - 03:34:39 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [5888]
O58 - SDL:[MD5.B572DA05BF4E098D4BBA3A4734FB505B] - 21/01/2008 - 03:34:39 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [5504]
O58 - SDL:[MD5.B49456D70555DE905C311BCDA6EC6ADB] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [161752]
O58 - SDL:[MD5.E384487CB84BE41D09711C30CA79646C] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [31288]
O58 - SDL:[MD5.7199C1EEC1E4993CAF96B8C0A26BD58A] - 21/01/2008 - 03:34:39 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [6016]
O58 - SDL:[MD5.6A57B5733D4CB702C8EA4542E836B96C] - 11/04/2009 - 07:32:31 ---A- . (.Microsoft Corporation - Multiple UNC Provider driver.) -- C:\Windows\System32\Drivers\mup.sys [48104]
O58 - SDL:[MD5.1357274D1883F68300AEADD15D7BBB42] - 11/04/2009 - 07:32:49 ---A- . (.Microsoft Corporation - NDIS 6.0 wrapper driver.) -- C:\Windows\System32\Drivers\ndis.sys [527848]
O58 - SDL:[MD5.0E186E90404980569FB449BA7519AE61] - 21/01/2008 - 03:34:06 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [20992]
O58 - SDL:[MD5.D6973AA34C4D5D76C0430B181C3CD389] - 21/01/2008 - 03:34:44 ---A- . (.Microsoft Corporation - NDIS User mode I/O driver.) -- C:\Windows\System32\Drivers\ndisuio.sys [16896]
O58 - SDL:[MD5.818F648618AE34F729FDB47EC68345C3] - 11/04/2009 - 05:46:32 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [121344]
O58 - SDL:[MD5.71DAB552B41936358F3B541AE5997FB3] - 21/01/2008 - 03:34:06 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [49664]
O58 - SDL:[MD5.BCD093A5A6777CF626434568DC7DBA78] - 21/01/2008 - 03:34:01 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [35840]
O58 - SDL:[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - 11/04/2009 - 05:45:37 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [185856]
O58 - SDL:[MD5.063EE4D3CB88A14EAB9901875CEE98B1] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [223208]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [45160]
O58 - SDL:[MD5.D36F239D7CCE1931598E8FB90A0DBC26] - 11/04/2009 - 05:14:01 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [35328]
O58 - SDL:[MD5.609773E344A97410CE4EBF74A8914FCF] - 21/01/2008 - 03:34:35 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [16384]
O58 - SDL:[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - 03/03/2013 - 20:07:52 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1082232]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\System32\Drivers\ntrigdigi.sys [20608]
O58 - SDL:[MD5.C5DBBCDA07D780BDA9B685DF333BB41E] - 21/01/2008 - 03:33:22 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [4608]
O58 - SDL:[MD5.9A77B1C13BCCEDDF78DFD7AFC25B4F5E] - 19/02/2013 - 20:32:54 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 307.83.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10919200]
O58 - SDL:[MD5.1657F3FBD9061526C14FF37E79306F98] - 02/11/2006 - 08:30:56 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\Drivers\nvm60x32.sys [429056]
O58 - SDL:[MD5.C39AD3B818502EDFA4B819148B72A0E3] - 25/03/2008 - 06:38:20 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\Drivers\nvmfdx32.sys [1048480]
O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 03:32:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [102968]
O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 03:32:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [45112]
O58 - SDL:[MD5.D05F6E26AC960474494356FE703D61BE] - 06/06/2008 - 12:13:10 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor32.sys [145440]
O58 - SDL:[MD5.18BBDF913916B71BD54575BDB6EEAC0B] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [109112]
O58 - SDL:[MD5.85C44FDFF9CF7E72A40DCB7EC06A4416] - 11/04/2009 - 05:43:28 ---A- . (.Microsoft Corporation - NativeWiFi Miniport Driver.) -- C:\Windows\System32\Drivers\nwifi.sys [148480]
O58 - SDL:[MD5.956741C67ABAA78B19AADC5474936842] - 02/12/2010 - 22:30:44 ---A- . (.Microsoft Corporation - Microsoft® LifeCam NX-6000 driver.) -- C:\Windows\System32\Drivers\nx6000.sys [25600]
O58 - SDL:[MD5.BE32DA025A0BE1878F0EE8D6D9386CD5] - 02/11/2006 - 09:55:16 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys [62080]
O58 - SDL:[MD5.99514FAA8DF93D34B5589187DB3AA0BA] - 11/04/2009 - 05:45:51 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [72192]
O58 - SDL:[MD5.0FA9B5055484649D63C303FE404E5F4D] - 02/11/2006 - 09:51:30 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [79360]
O58 - SDL:[MD5.B9C2B89F08670E159F7181891E449CD9] - 21/03/2012 - 00:28:50 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [53120]
O58 - SDL:[MD5.4F9A6A8A31413180D0FCB279AD5D8112] - 02/11/2006 - 09:51:23 ---A- . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\System32\Drivers\parvdm.sys [8704]
O58 - SDL:[MD5.941DC1D19E7E8620F40BBC206981EFDB] - 11/04/2009 - 07:32:55 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [149480]
O58 - SDL:[MD5.1636D43F10416AEB483BC6001097B26C] - 11/04/2009 - 07:32:49 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [14312]
O58 - SDL:[MD5.6429D10C5D149AC9EB2D95052A390CFF] - 11/04/2009 - 07:32:52 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [43496]
O58 - SDL:[MD5.E6F3FB1B86AA519E7698AD05E58B04E5] - 02/11/2006 - 10:51:12 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [167528]
O58 - SDL:[MD5.6349F6ED9C623B44B52EA3C63C831A92] - 02/11/2006 - 10:04:35 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [878080]
O58 - SDL:[MD5.6DBA75306DD9B242B6F1C343179AD201] - 30/10/2013 - 01:43:06 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [167936]
O58 - SDL:[MD5.2027293619DD0F047C584CF2E7DF4FFD] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [40960]
O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 03:32:50 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1122360]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [106088]
O58 - SDL:[MD5.9F5E0E1926014D17486901C88ECA2DB7] - 21/01/2008 - 03:32:58 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [31232]
O58 - SDL:[MD5.147D7F9C556D259924351FEB0DE606C3] - 21/01/2008 - 03:34:00 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [11776]
O58 - SDL:[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - 21/01/2008 - 03:34:44 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [76288]
O58 - SDL:[MD5.509A98DD18AF4375E1FC40BC175F1DEF] - 11/04/2009 - 05:46:30 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [41472]
O58 - SDL:[MD5.ECFFFAEC0C1ECD8DBC77F39070EA1DB1] - 21/01/2008 - 03:34:44 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [62976]
O58 - SDL:[MD5.2005F4A1E05FA09389AC85840F0A9E4D] - 11/04/2009 - 05:46:40 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [69120]
O58 - SDL:[MD5.B14C9D5B9ADD2F84F70570BBBFAA7935] - 11/04/2009 - 05:14:29 ---A- . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\Windows\System32\Drivers\rdbss.sys [225280]
O58 - SDL:[MD5.89E59BE9A564262A3FB6C4F4F1CD9899] - 21/01/2008 - 03:33:42 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys [6144]
O58 - SDL:[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\Drivers\rdpdr.sys [248832]
O58 - SDL:[MD5.9D91FE5286F748862ECFFA05F8A0710C] - 21/01/2008 - 03:34:38 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys [6144]
O58 - SDL:[MD5.C127EBD5AFAB31524662C48DFCEB773A] - 01/05/2012 - 15:03:49 ---A- . (.Microsoft Corporation - RDP Terminal Stack Driver.) -- C:\Windows\System32\Drivers\rdpwd.sys [180736]
O58 - SDL:[MD5.EEC7EE5675294B03E88AA868540007C1] - 11/04/2009 - 05:45:24 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [113664]
O58 - SDL:[MD5.D9225D107E40D0FA5C5069446759C8E9] - 11/04/2009 - 05:46:07 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [33280]
O58 - SDL:[MD5.75E8A6BFA7374ABA833AE92BF41AE4E6] - 21/01/2008 - 03:34:38 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [8192]
O58 - SDL:[MD5.9C508F4074A39E8B4B31D27198146FAD] - 21/01/2008 - 03:34:21 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [60416]
O58 - SDL:[MD5.58628F232A00A3149D7CC7708C521499] - 20/05/2008 - 11:01:00 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [2143136]
O58 - SDL:[MD5.3CE8F073A557E172B330109436984E30] - 02/11/2006 - 10:50:16 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [76392]
O58 - SDL:[MD5.6F5CA34AE885645ACF8A20D564DB976C] - 21/01/2008 - 03:33:27 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [142904]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480]
O58 - SDL:[MD5.68E44E331D46F0FB38F0863A84CD1A31] - 02/11/2006 - 09:51:25 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [17920]
O58 - SDL:[MD5.C70D69A918B178D3C3B06339B40C2E1B] - 02/11/2006 - 09:51:30 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456]
O58 - SDL:[MD5.8AF3D28A879BF75DB53A0EE7A4289624] - 21/01/2008 - 03:32:45 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [19968]
O58 - SDL:[MD5.3EFA810BDCA87F6ECC24F9832243FE86] - 21/01/2008 - 03:32:49 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys [13312]
O58 - SDL:[MD5.E95D451F7EA3E583AEC75F3B3EE42DC5] - 21/01/2008 - 03:32:49 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys [12288]
O58 - SDL:[MD5.3D0EA348784B7AC9EA9BD9F317980979] - 21/01/2008 - 03:32:49 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys [11776]
O58 - SDL:[MD5.46ED8E91793B2E6F848015445A0AC188] - 02/11/2006 - 09:51:40 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [13312]
O58 - SDL:[MD5.1D76624A09A054F682D746B924E2DBC3] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Filtre SIS NT AGP.) -- C:\Windows\System32\Drivers\SISAGP.SYS [55864]
O58 - SDL:[MD5.43CB7AA756C7DB280D01DA9B676CFDE2] - 21/01/2008 - 03:32:51 ---A- . (.Microsoft Corporation - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [41016]
O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 03:32:52 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [74808]
O58 - SDL:[MD5.7B75299A4D201D6A6533603D6914AB04] - 11/04/2009 - 05:45:22 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys [66560]
O58 - SDL:[MD5.A7D7EA1771D2ED6F39A8063E79B6C3E8] - 21/01/2008 - 03:34:44 ---A- . (.Microsoft Corporation - Smard Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [17408]
O58 - SDL:[MD5.7AEBDEEF071FE28B0EEF2CDD69102BFF] - 21/01/2008 - 03:33:48 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys [21048]
O58 - SDL:[MD5.A7F8BAD9590ADDC425B4003E94780DFA] - 11/04/2009 - 03:52:40 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys [684032]
O58 - SDL:[MD5.41987F9FC0E61ADF54F581E15029AD91] - 18/02/2011 - 15:03:32 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [305152]
O58 - SDL:[MD5.FF33AFF99564B1AA534F58868CBE41EF] - 29/04/2011 - 14:25:10 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys [146432]
O58 - SDL:[MD5.7605C0E1D01A08F3ECD743F38B834A44] - 29/04/2011 - 14:25:09 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [102400]
O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 07/08/2009 - 20:57:19 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\System32\Drivers\ssmdrv.sys [28520]
O58 - SDL:[MD5.47E55AFE1ED1D5AFF09690DB226F4A7A] - 11/04/2009 - 07:32:54 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\Storport.sys [122344]
O58 - SDL:[MD5.70A92E46A2F459CDEDE3CA558CB26B6A] - 11/04/2009 - 05:42:47 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [52992]
O58 - SDL:[MD5.7BA58ECF0C0A9A69D44B3DCA62BECF56] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [15288]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\symc8xx.sys [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_hi.sys [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_u3.sys [34920]
O58 - SDL:[MD5.1239FD18895040D97B7CDBC19BC2075E] - 21/01/2008 - 03:34:32 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [24576]
O58 - SDL:[MD5.D18D53974FD715D50FC76F9FFE1C830D] - 05/07/2013 - 05:53:33 ---A- . (.Microsoft Corporation - TCP/IP Driver.) -- C:\Windows\System32\Drivers\tcpip.sys [905664]
O58 - SDL:[MD5.608C345A255D82A6289C2D468EB41FD7] - 08/12/2009 - 18:26:18 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [30720]
O58 - SDL:[MD5.77937EFF009AC696B90E09F671F9D0A4] - 21/01/2008 - 03:33:41 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [20992]
O58 - SDL:[MD5.5DCF5E267BE67A1AE926F2DF77FBCC56] - 21/01/2008 - 03:33:45 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys [17920]
O58 - SDL:[MD5.389C63E32B3CEFED425B61ED92D3F021] - 21/01/2008 - 03:33:45 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys [29184]
O58 - SDL:[MD5.76B06EB8A01FC8624D699E7045303E54] - 11/04/2009 - 05:45:56 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [72192]
O58 - SDL:[MD5.3CAD38910468EAB9A6479E2F01DB43C7] - 11/04/2009 - 07:32:52 ---A- . (.Microsoft Corporation - Terminal Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys [53224]
O58 - SDL:[MD5.F4EAA7ECBCB25DE901C9B7F2CDCDA0B3] - 15/06/2013 - 12:23:33 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys [24064]
O58 - SDL:[MD5.CAECC0120AC49E3D2F758B9169872D38] - 21/01/2008 - 03:34:06 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\Drivers\TUNMP.SYS [15360]
O58 - SDL:[MD5.300DB877AC094FEAB0BE7688C3454A9C] - 18/02/2010 - 12:28:13 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\Drivers\tunnel.sys [25088]
O58 - SDL:[MD5.7D33C4DB2CE363C8518D2DFCF533941F] - 21/01/2008 - 03:32:47 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [59448]
O58 - SDL:[MD5.D9728AF68C4C7693CB100B8441CBDEC6] - 11/04/2009 - 05:13:59 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [226816]
O58 - SDL:[MD5.B0ACFDC9E4AF279E9116C03E014B2B27] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [60984]
O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:32:45 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys [238648]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:32:49 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\Drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.32CFF9F809AE9AED85464492BF3E32D2] - 21/01/2008 - 03:32:48 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [34816]
O58 - SDL:[MD5.88BD96A1BAEED33EE8BDF9499C07A841] - 21/01/2008 - 03:33:20 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [7680]
O58 - SDL:[MD5.8D31A140B55021BBD3A608F5A7AA2E18] - 12/02/2013 - 02:57:27 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [15872]
O58 - SDL:[MD5.1114579556DB85E9FAF9590DBC64CD62] - 12/07/2013 - 10:04:18 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys [73344]
O58 - SDL:[MD5.D06F193F3E9CC3B356DF97F6A43C054A] - 11/04/2009 - 05:42:56 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD.sys [25856]
O58 - SDL:[MD5.EAE017D3AA298374A1967B96C379C5AB] - 11/04/2009 - 05:42:56 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [25856]
O58 - SDL:[MD5.AAB0B5F72D2D726FBFDC895A2902DE1D] - 29/06/2013 - 03:07:04 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [73216]
O58 - SDL:[MD5.E9476E6C486E76BC4898074768FB7131] - 02/11/2006 - 09:55:09 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [68608]
O58 - SDL:[MD5.FE619ED13CE12F5B43C04E3EA061BBD6] - 29/06/2013 - 03:06:53 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [6016]
O58 - SDL:[MD5.153E8515CB86F8BB5D1A8B478EBF4BB2] - 05/05/2011 - 14:54:07 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [39936]
O58 - SDL:[MD5.2AE6BCEBD85D31317E433733DAF25888] - 29/06/2013 - 03:07:15 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [197632]
O58 - SDL:[MD5.D457EBD0C3A8B3A3A144355B5EE91CBC] - 05/05/2011 - 14:54:07 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [19456]
O58 - SDL:[MD5.B09C74A41F26B08149707EA5E7F956C2] - 29/06/2013 - 03:07:01 ---A- . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\Windows\System32\Drivers\usbport.sys [226304]
O58 - SDL:[MD5.E75C4B5269091D15A2E7DC0B6D35F2F5] - 21/01/2008 - 03:32:48 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [18944]
O58 - SDL:[MD5.1D714B8497CD68307806D5D3F60A5169] - 03/07/2013 - 03:33:45 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [35328]
O58 - SDL:[MD5.BE3DA31C191BC222D9AD503C5224F2AD] - 11/04/2009 - 05:42:55 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [65536]
O58 - SDL:[MD5.814D653EFC4D48BE3B04A307ECEFF56F] - 21/01/2008 - 03:32:24 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [23552]
O58 - SDL:[MD5.73FF24E21B690625A58109637DDA0DF7] - 12/07/2013 - 10:04:32 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [134272]
O58 - SDL:[MD5.397F9E5BD74C64FC82FF9F140F781B8F] - 23/05/2001 - 09:42:52 ---A- . (.Aiptek - UTBLFILT.) -- C:\Windows\System32\Drivers\UTBLFILT.sys [12084]
O58 - SDL:[MD5.2E93AC0A1D8C79D019DB6C51F036636C] - 21/01/2008 - 03:34:39 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys [25088]
O58 - SDL:[MD5.87B06E1F30B749A114F74622D013F8D4] - 21/01/2008 - 03:32:23 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys [26112]
O58 - SDL:[MD5.5D7159DEF58A800D5781BA3A879627BC] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Filtre VIA NT AGP.) -- C:\Windows\System32\Drivers\VIAAGP.SYS [56888]
O58 - SDL:[MD5.C4F3A691B5BAD343E6249BD8C2D45DEE] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\viac7.sys [41472]
O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 03:32:21 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [20024]
O58 - SDL:[MD5.C048D2C33D27441A0CDCAAE2651EB03D] - 21/01/2008 - 03:33:13 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [110080]
O58 - SDL:[MD5.69503668AC66C77C6CD7AF86FBDF8C43] - 21/01/2008 - 03:32:22 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [52792]
O58 - SDL:[MD5.23E41B834759917BFD6B9A0D625D0C28] - 11/04/2009 - 07:33:03 ---A- . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys [292840]
O58 - SDL:[MD5.786DB5771F05EF300390399F626BF30A] - 21/08/2012 - 12:47:42 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [224640]
O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 03:32:49 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [130616]
O58 - SDL:[MD5.48DFEE8F1AF7C8235D4E626F0C4FE031] - 02/11/2006 - 09:52:52 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [20608]
O58 - SDL:[MD5.55201897378CCA7AF8B5EFD874374A26] - 21/01/2008 - 03:34:06 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [62464]
O58 - SDL:[MD5.4A5C31E2C1646034E6A60EBA4C747FF6] - 11/04/2009 - 05:22:46 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [33280]
O58 - SDL:[MD5.78FE9542363F297B18C027B2D7E7C07F] - 21/01/2008 - 03:32:50 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys [22072]
O58 - SDL:[MD5.25944D2CC49E0A6C581D02A74B7D6645] - 27/06/2013 - 00:01:59 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [527064]
O58 - SDL:[MD5.48704647CD2E9DAA2EB81BDE6D029EDB] - 26/07/2012 - 04:39:21 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [47720]
O58 - SDL:[MD5.2E7255D172DF0B8283CDFB7B433B864E] - 21/01/2008 - 03:32:21 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [11264]
O58 - SDL:[MD5.C546864EED786304762D030FEBF6B411] - 21/01/2008 - 03:33:13 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [17976]
O58 - SDL:[MD5.DE9D36F91A4DF3D911626643DEBF11EA] - 01/10/2009 - 02:01:54 ---A- . (.Microsoft Corporation - WPD USB Driver.) -- C:\Windows\System32\Drivers\WpdUsb.sys [40448]
O58 - SDL:[MD5.E3A3CB253C0EC2494D4A61F5E43A389C] - 21/01/2008 - 03:34:35 ---A- . (.Microsoft Corporation - Winsock2 IFS Layer.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [15872]
O58 - SDL:[MD5.06E6F32C8D0A3F66D956F57B43A2E070] - 26/07/2012 - 03:33:43 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [66560]
O58 - SDL:[MD5.867C301E8B790040AE9CF6486E8041DF] - 26/07/2012 - 03:32:51 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [155136]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:[MD5.D7659D3B5B92C31E84E53C1431F35132] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys [245736]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:[MD5.A6E18756EA7B6E971184B57B86251FC5] - 30/10/2013 - 01:35:24 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2050560]
~ Drivers: 18 Scanned in 00mn 07s
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 10/03/2148 - 23:32:50 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\BabMaint.x [9808] =>Hijacker.BabSolution
O61 - LFC: 10/03/2148 - 23:32:50 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\bg.html [202]
O61 - LFC: 10/03/2148 - 23:32:50 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\bg.js [400]
O61 - LFC: 10/03/2148 - 23:32:51 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\BUSolution.dll [691792]
O61 - LFC: 10/03/2148 - 23:32:51 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\Delta128.png [13236]
O61 - LFC: 10/03/2148 - 23:32:51 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\Deltal48.png [2525]
O61 - LFC: 10/03/2148 - 23:32:51 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\NPObject.dll [126976]
O61 - LFC: 10/03/2148 - 23:32:51 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\manifest.json [523]
O61 - LFC: 10/03/2148 - 23:32:51 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\redirect.html [189]
O61 - LFC: 10/03/2148 - 23:32:51 ---A- . (...) -- C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3\redirect.js [357]
O61 - LFC: 21/03/2014 - 23:32:48 ---A- . (...) -- C:\Users\josiane\AppData\Local\Avg2014\log\avgdecider.log.1 [65588]
O61 - LFC: 21/03/2014 - 23:32:48 ---A- . (...) -- C:\Users\josiane\AppData\Local\Avg2014\log\commonpriv.log.1 [65977]
O61 - LFC: 21/03/2014 - 23:32:59 --HA- . (...) -- C:\Users\josiane\AppData\Local\IconCache.db [1815526]
O61 - LFC: 21/03/2014 - 23:33:27 ---A- . (...) -- C:\Users\josiane\AppData\Local\Temp\josiane.bmp [31832]
O61 - LFC: 21/03/2014 - 23:33:43 ---A- . (...) -- C:\Users\josiane\AppData\Local\Temp\Skype\DbTemp\temp-kdbbn8KKZKzaFBkeY5pjCRCj [20480]
O61 - LFC: 21/03/2014 - 23:33:43 ---A- . (...) -- C:\Users\josiane\AppData\Local\Temp\Skype\DbTemp\temp-lVFoVYFaRcZAJjZ8ZwgildAp [8720]
O61 - LFC: 21/03/2014 - 23:33:55 ---A- . (...) -- C:\Users\josiane\AppData\Local\Temp\VBE\MSForms.exd [147284]
O61 - LFC: 21/03/2014 - 23:33:55 ---A- . (...) -- C:\Users\josiane\AppData\Local\Temp\toolbar_log.txt [5697825]
O61 - LFC: 21/03/2014 - 23:34:00 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\AVG2014\cfgall\userawacs.cfg [9338]
O61 - LFC: 21/03/2014 - 23:34:00 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\AVG2014\cfgall\usergui.cfg [302]
O61 - LFC: 21/03/2014 - 23:34:03 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Microsoft\Office\Recent\Nouveau Document Microsoft Office Word.docx.LNK [386]
O61 - LFC: 21/03/2014 - 23:34:03 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Microsoft\Office\Recent\USB DISK (E).LNK [187]
O61 - LFC: 21/03/2014 - 23:34:03 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Microsoft\Office\Word12.pip [1716]
O61 - LFC: 21/03/2014 - 23:34:03 --H-- . (...) -- C:\Users\josiane\AppData\Roaming\Microsoft\Office\Recent\index.dat [90]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\bistats.db [118784]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\bistats.db-journal [41552]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\config.xml [17390]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\dc.db [724992]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\eas.db [65536]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\httpfe\cookies.dat [2]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\main.db [2744320]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\main.db-journal [21032]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\mmanager\mediacache.ldb [40]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\settings\restorer.queue [55]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\simcache\streamlist [44]
O61 - LFC: 21/03/2014 - 23:34:06 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\datiko64\thmanager\thcache.ldb [40]
O61 - LFC: 21/03/2014 - 23:34:07 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\shared.xml [91271]
O61 - LFC: 21/03/2014 - 23:34:07 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\shared_dynco\dc.db [1974272]
O61 - LFC: 21/03/2014 - 23:34:07 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\Skype\shared_dynco\dc.db-journal [1252232]
O61 - LFC: 21/03/2014 - 23:34:08 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\ZHP\Log.txt [24793] =>.Nicolas Coolman
O61 - LFC: 21/03/2014 - 23:34:08 ---A- . (...) -- C:\Users\josiane\AppData\Roaming\ZHP\TestsZHPDiag.txt [2899] =>.Nicolas Coolman
~ 5 Fichiers temporaires (Temporary files)
~ Files: 41 Scanned in 01mn 23s
---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 21/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 05/11/2013 - C:\Windows\System32\DRIVERS\avgdiskx.sys (Avgdiskx) .(.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) - LEGACY_AVGDISKX
O64 - Services: CurCS - 26/09/2013 - C:\Windows\System32\DRIVERS\avgfwd6x.sys (Avgfwfd) .(.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) - LEGACY_AVGFWFD
O64 - Services: CurCS - 04/11/2013 - C:\Windows\System32\DRIVERS\avgidsdriverx.sys (AVGIDSDriver) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER
O64 - Services: CurCS - 24/10/2013 - C:\Windows\System32\DRIVERS\avgidshx.sys (AVGIDSHX) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSHX
O64 - Services: CurCS - 17/09/2013 - C:\Windows\System32\DRIVERS\avgidsshimx.sys (AVGIDSShim) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Dri.) - LEGACY_AVGIDSSHIM
O64 - Services: CurCS - 13/02/2009 - C:\Program Files\Avira\AntiVir Desktop\avgio.sys (avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO
O64 - Services: CurCS - 31/10/2013 - C:\Windows\System32\DRIVERS\avgldx86.sys (Avgldx86) .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX86
O64 - Services: CurCS - 31/10/2013 - C:\Windows\System32\DRIVERS\avglogx.sys (Avglogx) .(.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) - LEGACY_AVGLOGX
O64 - Services: CurCS - 01/10/2013 - C:\Windows\System32\DRIVERS\avgmfx86.sys (Avgmfx86) .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX86
O64 - Services: CurCS - 10/12/2009 - C:\Windows\System32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 10/09/2013 - C:\Windows\System32\DRIVERS\avgrkx86.sys (Avgrkx86) .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX86
O64 - Services: CurCS - 01/08/2013 - C:\Windows\System32\DRIVERS\avgtdix.sys (Avgtdix) .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIX
O64 - Services: CurCS - 19/11/2013 - C:\Windows\system32\drivers\avgtpx86.sys (avgtp) .(.AVG Technologies - Pas de description.) - LEGACY_AVGTP
O64 - Services: CurCS - 30/03/2009 - C:\Windows\System32\DRIVERS\avipbb.sys (avipbb) .(.Avira GmbH - Avira Driver for RootKit Detection.) - LEGACY_AVIPBB
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 22/02/2011 - C:\Windows\System32\DRIVERS\bowser.sys (bowser) .(.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) - LEGACY_BOWSER
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\CLFS.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\crcdisk.sys (crcdisk) .(.Microsoft Corporation - Disk Block Verification Filter Driver.) - LEGACY_CRCDISK
O64 - Services: CurCS - 14/04/2011 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 01/08/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 03/11/2009 - C:\Windows\System32\drivers\HTTP.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 11/06/2008 - C:\Windows\system32\drivers\int15.sys (int15) .(.Acer, Inc. - int15.) - LEGACY_INT15
O64 - Services: CurCS - 04/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\mountmgr.sys (MountMgr) .(.Microsoft Corporation - Mount Point Manager.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb.sys (mrxsmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB
O64 - Services: CurCS - 06/07/2011 - C:\Windows\System32\DRIVERS\mrxsmb10.sys (mrxsmb10) .(.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb20.sys (mrxsmb20) .(.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - NDIS 6.0 wrapper driver.) - LEGACY_NDIS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\netbt.sys (netbt) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 02/11/2006 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\pacer.sys (PSched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rasacd.sys (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\rdbss.sys (rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\rdpencdd.sys (RDPENCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 02/11/2006 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Smb) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_SMB
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 18/02/2011 - C:\Windows\System32\DRIVERS\srv.sys (srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srv2.sys (srv2) .(.Microsoft Corporation - Smb 2.0 Server driver.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 07/08/2009 - C:\Windows\System32\DRIVERS\ssmdrv.sys (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 08/12/2009 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Volume Manager Extension Driver.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 21/08/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\wanarp.sys (Wanarpv6) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARPV6
O64 - Services: CurCS - 27/06/2013 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 26/07/2012 - C:\Windows\system32\drivers\Wudfpf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 87 Scanned in 00mn 04s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
~ FASS Keys: 10 Scanned in 00mn 00s
---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} [DefaultScope] - (Web Search) - http://feed.snapdo.com =>Hijacker.SmartBar
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {B115BA32-3A40-48D7-B8D0-3D81BEAFFD3C} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} [DefaultScope] - (AVG Secure Search) - http://search.avg.com =>Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {B115BA32-3A40-48D7-B8D0-3D81BEAFFD3C} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} [DefaultScope] - (AVG Secure Search) - http://search.avg.com =>Toolbar.AVGSearch
~ Keys: Scanned in 00mn 00s
---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
C:\Program Files\PhotoFiltre Studio X\Plugins\flamingpear\Filter_of_Flaming_Pear\Flaming Pear keygen.exe
C:\Users\josiane\Desktop\mon photofiltre\Filtres 8bf\Filter_of_Flaming_Pear\Flaming Pear keygen.exe
C:\Users\josiane\Desktop\Photofiltre\Filter_of_Flaming_Pear\Flaming Pear keygen.exe
C:\Program Files\PhotoFiltre Studio X\Plugins\flamingpear\Filter_of_Flaming_Pear\Flaming Pear keygen.exe
C:\Users\josiane\Desktop\mon photofiltre\Filtres 8bf\Filter_of_Flaming_Pear\Flaming Pear keygen.exe
C:\Users\josiane\Desktop\Photofiltre\Filter_of_Flaming_Pear\Flaming Pear keygen.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\AnyDvd 5.9.5.3 + key\Key.AnyDVD.reg
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\AnyDvd 5.9.5.3 + key\SetupAnyDVD5953.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\CloneCD 5.2.8.1\CloneCD patcher.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\CloneCD 5.2.8.1\SetupCloneCD5281.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\CloneDVD2 vers. 2.8.9.2\Keygen Clone DVD2 vers. 2.8.5.1.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\CloneDVD2 vers. 2.8.9.2\SetupCloneDVD2 v.2.8.9.2.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\CloneDVDmobile 1.0.7.1\Crack.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA]\CloneDVDmobile 1.0.7.1\SetupCloneDVDmobile1071.exe
D:\images\dossier images\Mes fichiers reçus\AnyDvd 5.9.5.3 + CloneCD 5.2.8.1 + CloneDVD2 2.8.9.2 + CloneDVD mobile 1.0.7.1 all cracked by Rocco[ITA].rar
~ Files: Scanned in 00mn 31s
---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [24576]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [62976]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [125952]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [576512]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [444928]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [315392]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [262144]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [68608]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [47104]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [288256]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [242688]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll [449024]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [758784]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [200704]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [19968]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [33280]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [111616]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [45056]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [153088]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [57344]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [162304]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [601600]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\System32\sessenv.dll [84992]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [81920]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [68096]
~ Services: 31 Scanned in 00mn 00s
---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.905908C4689B085E638B5EF3E12BC695] [SPRF][20/03/2014] (...) -- C:\Users\josiane\Desktop\RogueKiller.exe [3901952]
[MD5.1EDC77AA17ADEF681815164C0943339E] [SPRF][18/03/2014] (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Users\josiane\Desktop\zhpdiag2.exe [6866688]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.0C78701C6F42345DFF2B2B6C3C3D01EF] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [172032]
~ Files: 5 Scanned in 00mn 00s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-RPCSS-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-RPC-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-P2P-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-P2P-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "{D77F544C-B142-493E-94E7-98A5F821CE81}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD.) -- C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe
O87 - FAEL: "{1CF2BFDC-A57A-4A5F-A26E-80BDC1D8B7C0}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "TCP Query User{06E75D6C-3D4B-46E2-AA6B-0AC2281BF40C}C:\program files\internet explorer\iexplore.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
O87 - FAEL: "UDP Query User{8A9ECBFF-F47D-4173-A1E2-4DA16E9C8104}C:\program files\internet explorer\iexplore.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
O87 - FAEL: "{72B96679-8ABA-4720-AB25-2FC1AF3ABE4C}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "{5C324E04-1EA8-4F82-9838-A9C96BB5F411}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{CC0DB669-10EC-4670-9801-6755BEBB5345}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "TCP Query User{4A3EAF3B-FC0D-43D7-8D3A-07D19376F213}C:\program files\k-lite codec pack\media player classic\mplayerc.exe" | In - Public - P6 - TRUE | .(.mpc-hc@Sourceforge - Media Player Classic - Homecinema.) -- C:\program files\k-lite codec pack\media player classic\mplayerc.exe
O87 - FAEL: "UDP Query User{F52AC946-3053-4B5C-B01E-74DEC3C1C907}C:\program files\k-lite codec pack\media player classic\mplayerc.exe" | In - Public - P17 - TRUE | .(.mpc-hc@Sourceforge - Media Player Classic - Homecinema.) -- C:\program files\k-lite codec pack\media player classic\mplayerc.exe
O87 - FAEL: "TCP Query User{F90012E0-0EE8-4EF5-89EC-BB65E0CF2A69}C:\program files\google\google earth\client\googleearth.exe" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\client\googleearth.exe =>.Google Inc
O87 - FAEL: "UDP Query User{62522B68-E387-467C-803A-2D40DAA67410}C:\program files\google\google earth\client\googleearth.exe" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\client\googleearth.exe =>.Google Inc
O87 - FAEL: "TCP Query User{0F4348A8-8E03-4145-992B-D92B3776A4B3}C:\program files\hasbro interactive\pac man - voyage dans le temps\pac-man.exe" | In - Public - P6 - TRUE | .(.Creative Asylum Limited - Pac-Man: Adventures in Time.) -- C:\program files\hasbro interactive\pac man - voyage dans le temps\pac-man.exe
O87 - FAEL: "UDP Query User{F784C993-171C-4A02-9855-E48AE57DE90B}C:\program files\hasbro interactive\pac man - voyage dans le temps\pac-man.exe" | In - Public - P17 - TRUE | .(.Creative Asylum Limited - Pac-Man: Adventures in Time.) -- C:\program files\hasbro interactive\pac man - voyage dans le temps\pac-man.exe
O87 - FAEL: "{72CAC4A1-36A3-4134-9F3E-65064EAB8B3A}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeCam.exe.) -- C:\Program Files\Microsoft LifeCam\LifeCam.exe
O87 - FAEL: "{B90AC325-A416-4756-A4CC-546BE23C8F30}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeCam.exe.) -- C:\Program Files\Microsoft LifeCam\LifeCam.exe
O87 - FAEL: "{6F32DACC-F8F8-47BE-88EA-391625147CF2}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeEnC2.exe.) -- C:\Program Files\Microsoft LifeCam\LifeEnC2.exe
O87 - FAEL: "{3FEF83D1-CCB4-4105-89B3-ADEED74534FB}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeEnC2.exe.) -- C:\Program Files\Microsoft LifeCam\LifeEnC2.exe
O87 - FAEL: "{D221200A-04E4-4A2C-8D8E-260D9A6C3426}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files\Microsoft LifeCam\LifeExp.exe
O87 - FAEL: "{578AB311-80DB-4B30-9B73-A7FD3CD3C91F}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files\Microsoft LifeCam\LifeExp.exe
O87 - FAEL: "{8C9562C1-4920-457C-B7AE-AA84DD77B138}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeTray.exe.) -- C:\Program Files\Microsoft LifeCam\LifeTray.exe
O87 - FAEL: "{FA2F846D-5B5E-4748-ACC0-B741765FC72A}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeTray.exe.) -- C:\Program Files\Microsoft LifeCam\LifeTray.exe
O87 - FAEL: "{6727954F-846C-4FD7-AAB4-132BC56591CA}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O87 - FAEL: "{53F2176E-FC36-46C9-9F00-03AA8D5610EA}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{B241BC3F-420B-489E-AC64-2C79D45313B8}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe (.not file.)
O87 - FAEL: "{C5B91490-BED5-4578-91EB-EAF6F6AE4F0F}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\AVG\AVG10\avgmfapx.exe (.not file.)
O87 - FAEL: "{A4FE814C-08D5-460B-A0A7-7934E8639655}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\AVG\AVG10\avgmfapx.exe (.not file.)
O87 - FAEL: "{D12E5EAD-FA70-4718-8484-3B6F7A9EFEF3}" | In - Public - P6 - TRUE | .(.UltraVNC - VNCViewer.) -- C:\Users\josiane\AppData\Local\CrossLoop\vncviewer.exe
O87 - FAEL: "{39B5C7AA-B4B6-4EC6-A561-C8BCB552BCF6}" | In - Public - P17 - TRUE | .(.UltraVNC - VNCViewer.) -- C:\Users\josiane\AppData\Local\CrossLoop\vncviewer.exe
O87 - FAEL: "{E45FE6BF-B0BE-4C67-949F-BD19FDB7EE43}" | In - Public - P6 - TRUE | .(.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Users\josiane\AppData\Local\CrossLoop\tvnserver.exe
O87 - FAEL: "{20E832AF-25D9-48E2-9EC8-A985B469A642}" | In - Public - P17 - TRUE | .(.GlavSoft LLC. - TightVNC Server for Windows.) -- C:\Users\josiane\AppData\Local\CrossLoop\tvnserver.exe
O87 - FAEL: "{91CE8B48-8781-41A8-920C-E96F5885959F}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\outlook.exe =>.Microsoft Corporation
O87 - FAEL: "TCP Query User{E1AFC379-D98F-4F25-96AB-E39734750CEB}C:\users\josiane\appdata\local\crossloop\crossloopconnect.exe" | In - Public - P6 - TRUE | .(.CrossLoop - CrossLoop - Simple Secure Screen Sharing.) -- C:\users\josiane\appdata\local\crossloop\crossloopconnect.exe
O87 - FAEL: "UDP Query User{15BA56C4-616F-40A5-A55C-02D835A2BFA1}C:\users\josiane\appdata\local\crossloop\crossloopconnect.exe" | In - Public - P17 - TRUE | .(.CrossLoop - CrossLoop - Simple Secure Screen Sharing.) -- C:\users\josiane\appdata\local\crossloop\crossloopconnect.exe
O87 - FAEL: "{2C44093C-2200-48F2-90D6-935814C76F81}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe (.not file.)
O87 - FAEL: "{0297945F-33A0-4860-919C-0D1DE5AD6A20}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{1F7A4EAB-551C-44DA-85F2-6A9964BD38BF}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{8DC19C66-09C4-4DB9-B091-1B9E28311E53}" | In - Public - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files\AVG\AVG2014\avgmfapx.exe
O87 - FAEL: "{5F077CAE-ADDC-42F6-BD58-1E4329BC8CE1}" | In - Public - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files\AVG\AVG2014\avgmfapx.exe
O87 - FAEL: "{CBC90B1A-24E9-416A-90F3-6F7C44C1D795}" | In - Public - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
O87 - FAEL: "{AD174FD7-1461-4AB8-919D-6717A0B45694}" | In - Public - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
O87 - FAEL: "{7FC25A75-D2E8-4833-A360-8AEE142A2B6B}" | In - Public - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files\AVG\AVG2014\avgdiagex.exe
O87 - FAEL: "{05AD8D0C-85DB-49D7-B911-2EB572D40B1D}" | In - Public - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files\AVG\AVG2014\avgdiagex.exe
~ Firewall: 191 Scanned in 00mn 03s
---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "000021090200C0400000000000F01FEC" . (.Module de compatibilité pour Microsoft Office System 2007.) -- c:\Windows\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
O90 - PUC: "00004159A700C0400000000000F01FEC" . (.Microsoft Office Outlook Connector.) -- C:\Windows\Installer\{95140000-007A-040C-0000-0000000FF1CE}\OLCIcon.exe =>.Microsoft Corporation
O90 - PUC: "00006FCA9B229EC4896DC2FC53B9CA70" . (.ABBYY FineReader 6.0 Sprint.) -- C:\Windows\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\ARPPRODUCTICON.exe
O90 - PUC: "0336A2D4B8F23E11C9048BCAF6798BE8" . (.Google Earth.) -- C:\Windows\Installer\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "1C4235E6CF4867F4A9A36CE5708FE06E" . (.Complément Messenger.) -- C:\Windows\Installer\{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}\CompanionIcon
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "2F0F48BCB729D854D95C7838E2D36C35" . (.GearDrvs.) -- C:\Windows\Installer\{CB84F0F2-927B-458D-9DC5-87832E3DC653}\ARPPRODUCTICON.exe
O90 - PUC: "314B17DBEEF9BB946A1DC2B0BF99DBEF" . (.Microsoft LifeCam.) -- C:\Windows\Installer\{BD71B413-9FEE-49BB-A6D1-2C0BFB99BDFE}\LifeCamIcon.ico
O90 - PUC: "32178270CA8BEC143864D37727543CB5" . (.Bonjour.) -- C:\Windows\Installer\{07287123-B8AC-41CE-8346-3D777245C35B}\Installer.ico
O90 - PUC: "38E1FB04BE028D11795C00905C206085" . (.Power2Go.) -- C:\Windows\Installer\{40BF1E83-20EB-11D8-97C5-0009C5020658}\ARPPRODUCTICON.exe
O90 - PUC: "42C6FBF1DF1C10144AB2C065F4E9E897" . (.PowerStarter.) -- C:\Windows\Installer\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B7449A0400000010" . (.Adobe Reader 9.4.0 - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Toolbars.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "7CEBB04F4A2C00A4B942A750A5C22526" . (.Microsoft Office Live Add-in 1.5.) -- C:\Windows\Installer\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}\ProductIcon
O90 - PUC: "853297B7A204D764BAC4B63A1185A8DD" . (.Fnacmusic - Gestionnaire de téléchargement.) -- C:\Windows\Installer\{7B792358-402A-467D-AB4C-6BA311588ADD}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "907018673D7AD86419761A87C0E167C6" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{76810709-A7D3-468D-9167-A1780C1E766C}\FolderShare48x48.ico
O90 - PUC: "D1EC63FAC2DF0AB439AF116987D56D01" . (.Adobe Flash Player 10 Plugin.) -- C:\Windows\Installer\{AF36CE1D-FD2C-4BA0-93FA-1196785DD610}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.5.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 98 Scanned in 00mn 00s
---\\ Export de clés de registre aléatoires (O91)
[HKCU\Software\5d28cdee23bec42\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Hijacker.Eazel
[HKCU\Software\5d28cdee23bec42\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80" =>Hijacker.Hijacker.Eazel
[HKCU\Software\5d28cdee23bec42\history\{eab34bca-99d8-4192-8f3b-58b53f6d08e7}2.6.1123.78]:dllName="protector.dll" =>Hijacker.Hijacker.Eazel
[HKCU\Software\5d28cdee23bec42\history\{eab34bca-99d8-4192-8f3b-58b53f6d08e7}2.6.1123.78]:exeName="bProtect.exe" =>Hijacker.Hijacker.Eazel
[HKCU\Software\5d28cdee23bec42\history\{eab34bca-99d8-4192-8f3b-58b53f6d08e7}2.6.1123.78]:folderName="bProtectorForWindows" =>PUP.BProtector
[HKCU\Software\5d28cdee23bec42\history\{eab34bca-99d8-4192-8f3b-58b53f6d08e7}2.6.1123.78]:guid="{eab34bca-99d8-4192-8f3b-58b53f6d08e7}" =>Hijacker.Hijacker.Eazel
[HKCU\Software\5d28cdee23bec42\history\{eab34bca-99d8-4192-8f3b-58b53f6d08e7}2.6.1123.78]:serviceName="bProtector" =>PUP.BProtector
[HKCU\Software\5d28cdee23bec42\history\{eab34bca-99d8-4192-8f3b-58b53f6d08e7}2.6.1123.78]:version="2.6.1123.78" =>Hijacker.Hijacker.Eazel
[HKLM\Software\5d28cdee23bec42] => Clé orpheline
~ Export Key Software: Scanned in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.8AABAD64B8AB1F47B1B3D6CE84F87B52] [WIS][24/06/2009] (.GEAR Software - Blank Project Template.) -- C:\Windows\Installer\103716.msi [441856]
[MD5.9C68768E7B7A48425F6C2B5EEB4BFBB8] [WIS][17/06/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\19a105.msi [1615360]
[MD5.507AF978785C4FEB2B5356C6D8C3ABBD] [WIS][18/09/2009] (.Eidos Interactive - Qui Veut Gagner Des Millions.) -- C:\Windows\Installer\239d7b7.msi [6697472]
[MD5.7618AAE7199CA905A4BC4D3EDD02CDBA] [WIS][31/12/2009] (.Eidos Interactive - QVGDM Seconde Edition.) -- C:\Windows\Installer\27e1f33.msi [645632]
[MD5.56E2D9B252693969E28A8CC15FA3CD02] [WIS][10/06/2011] (.Skype Technologies S.A. - Skype Toolbars.) -- C:\Windows\Installer\315a7.msi [691200]
[MD5.37AD394D092EFD7AF2CC07E51242A6BF] [WIS][11/06/2012] (.XyrusWorx - Apophysis 7x.) -- C:\Windows\Installer\31abf8c.msi [279040]
[MD5.CD70DBFB8409332225591D9909FF009C] [WIS][09/06/2012] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\3331eae.msi [24064] =>Toolbar.Google
[MD5.41C348E75D0173B51FA56776ADE3BF32] [WIS][14/01/2014] (.Linkury Inc. - QuickShare Widget.) -- C:\Windows\Installer\5507416.msi [1713664] =>PUP.QuickShare
~ WIS: 101 Scanned in 00mn 07s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 12/12/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 07/08/2009 108289 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SS - | Auto 19/08/2009 185089 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SS - | Demand 10/11/2011 167264 | (AVG Security Toolbar Service) . (...) - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe =>Toolbar.AVGSearch
SS - | Auto 24/09/2013 1358944 | (avgfws) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2014\avgfws.exe
SS - | Auto 08/07/2011 563216 | (CrossLoopService) . (.CrossLoop.) - C:\Users\josiane\AppData\Local\CrossLoop\CrossLoopService.exe
SS - | Demand 19/11/2008 24064 | (GoogleDesktopManager-080708-050100) . (.Google.) - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
SS - | Auto 29/06/2009 133104 | (gupdate1c9f8dd3f490260) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 29/06/2009 133104 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Auto 15/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 03/06/2013 162408 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SS - | Demand 21/07/2010 814080 | (tvnserver) . (.GlavSoft LLC..) - C:\Users\josiane\AppData\Local\CrossLoop\tvnserver.exe
SS - | Auto 21/01/2008 21504 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 11/11/2013 3478544 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2014\avgidsagent.exe
SR - | Auto 24/09/2013 348008 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
SR - | Auto 12/12/2008 238888 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 11/06/2008 24576 | (ETService) . (...) - C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
SR - | Auto 31/01/2013 634656 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 10/10/2012 1258856 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 14/05/2007 272024 | (RichVideo) . (...) - C:\Program Files\CyberLink\Shared files\RichVideo.exe
SR - | Auto 13/01/2014 1771544 | (vToolbarUpdater17.3.0) . (.AVG Secure Search.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
SR - | Auto 04/04/2013 109064 | (WajamUpdater) . (.Wajam.) - C:\Program Files\Wajam\Updater\WajamUpdater.exe =>PUP.Wajam
SR - | Auto 21/01/2008 21504 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 09/11/2008 602392 | (YahooAUService) . (.Yahoo! Inc..) - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
~ Services: Scanned in 00mn 07s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by josiane at 21/03/2014 23:35:05
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll storport.sys nvstor32.sys nvlddmkm.sys tcpip.sys NETIO.SYS
C:\Windows\system32\DRIVERS\nvstor32.sys NVIDIA Corporation NVIDIA nForce(TM) SATA Driver
C:\Windows\system32\DRIVERS\nvlddmkm.sys NVIDIA Corporation NVIDIA Windows Kernel Mode Driver, Version 307.83
1 ntkrnlpa!IofCallDriver[0x82649916] >> \Device\Harddisk0\DR0[0x86ACE3A8]
3 CLASSPNP[0x8A3A98B3] >> ntkrnlpa!IofCallDriver[0x82649916] >> [0x8577A5F8]
5 acpi[0x806096BC] >> ntkrnlpa!IofCallDriver[0x82649916] >> \Device\00000059[0x84DD6B88]
kernel: MBR read successfully
user & kernel MBR OK
~ MBR: 15 Scanned in 00mn 02s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by josiane at 21/03/2014 23:35:07
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s
---\\ Scan Additionnel (O88)
Database Version : 13031 - (12/03/2014)
Clés trouvées (Keys found) : 133
Valeurs trouvées (Values found) : 4
Dossiers trouvés (Folders found) : 38
Fichiers trouvés (Files found) : 34
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>PUP.QuickShare^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6DD65015-BB18-08CD-182E-CE4678D4C5A9}] =>Adware.Browse2Save^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{94FEABBF-2EA9-0D6B-8834-0AFD073A1754}] =>Adware.Browse2Save^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] =>Toolbar.AVGSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3DAEB01-4C15-4AC6-A689-6406FD954EE0}] =>Adware.AddLyrics^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}] =>PUP.Wajam^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^
[HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater17.3.0] =>Toolbar.AVGSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\WajamUpdater] =>PUP.Wajam^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search] =>Toolbar.AVGSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{340BF24A-DA9A-429E-A075-92B8EFE8D0BC}] =>Adware.Browse2Save^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller] =>Adware.MegaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\lrcspal@xinghao.net] =>Adware.AddLyrics^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2B0ECB7D-EA9A-422A-9651-FC195136B031}] =>PUP.QuickShare^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Updater Service] =>Adware.IncrediBar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Wajam] =>PUP.Wajam^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\swg] =>Toolbar.Google^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}] =>Toolbar.Wajam
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}] =>Adware.MyWebSearch
[HKLM\Software\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}] =>Toolbar.Wajam
[HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}] =>Toolbar.Wajam
[HKLM\Software\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}] =>Toolbar.Wajam
[HKLM\Software\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}] =>Toolbar.Wajam
[HKLM\Software\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}] =>Hijacker.SmartBar
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65bcd620-07dd-012f-819f-073cf1b8f7c6}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}] =>Hijacker.SmartBar
[HKLM\Software\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}] =>Hijacker.SmartBar
[HKLM\Software\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}] =>Hijacker.SmartBar
[HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>PUP.ToparcadeHits
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKLM\Software\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}] =>Hijacker.SmartBar
[HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}] =>Toolbar.Wajam
[HKLM\Software\Classes\CLSID\{E46C8196-B634-44a1-AF6E-957C64278AB1}] =>PUP.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}] =>Adware.PricePeep
[HKLM\Software\Classes\AppID\ScriptHelper.EXE] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.PugiObj] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.PugiObj.1] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}] =>Adware.Adkubru
[HKLM\Software\Classes\S] =>Toolbar.Agent
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi.1] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE.1] =>Toolbar.AVGSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater] =>Toolbar.Wajam
[HKCU\Software\BabylonToolbar] =>PUP.Babylon
[HKCU\Software\Cr_Installer] =>PUP.CrossRider
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\SmartbarBackup] =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog] =>Hijacker.SmartBar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\SP Global] =>PUP.AdvancedSystemProtector
[HKCU\Software\AppDataLow\SProtector] =>PUP.AdvancedSystemProtector
[HKLM\Software\SProtector] =>PUP.AdvancedSystemProtector
[HKCU\Software\Winsudate] =>Adware.Gibmedia
[HKLM\Software\Winsudate] =>Adware.Gibmedia
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKLM\Software\Classes\AppID\priam_bho.DLL] =>Toolbar.Wajam
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] =>Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}] =>Adware.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C3F3165C-74D3-6FDB-3274-14FDA8698CFA}] =>Adware.Browse2Save
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}] =>Adware.MagniPic
[HKLM\Software\Classes\AppID\PropertySync.EXE] =>Toolbar.Freecorder
[HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}] =>Toolbar.Freecorder
[HKLM\Software\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}] =>Toolbar.Freecorder
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKLM\Software\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof] =>Toolbar.AVGSearch
[HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]:*.crossrider.com =>PUP.CrossRider
[HKLM\Software\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog] =>Adware.SmileyBar
[HKCU\Software\BI] =>Adware.MegaSearch
[HKCU\Software\AppDataLow\Software\XingHaoLyrics] =>Adware.ShopperReports
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}] =>Adware.SimilarSites
[HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI.1] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\protector_dll.protectorbho] =>PUP.BProtector
[HKLM\Software\Classes\protector_dll.protectorbho.1] =>PUP.BProtector
[HKLM\Software\Classes\wajam.WajamBHO] =>PUP.Wajam
[HKLM\Software\Classes\wajam.WajamBHO.1] =>PUP.Wajam
[HKLM\Software\Classes\wajam.WajamDownloader] =>PUP.Wajam
[HKLM\Software\Classes\wajam.WajamDownloader.1] =>PUP.Wajam
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Wajam] =>PUP.Wajam
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SP_48c708f2] =>Adware.Browse2Save^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{95B7759C-8C7F-4BF1-B163-73684A933233} =>Toolbar.AVGSearch^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:vProt =>Toolbar.AVGSearch^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
C:\Program Files\AVG Secure Search =>Toolbar.AVGSearch^
C:\Program Files\BrowseToSave =>Adware.Browse2Save^
C:\Program Files\eBay =>Toolbar.eBay^
C:\Program Files\Iminent =>Adware.IMBooster^
C:\Program Files\MyPC Backup =>PUP.MyPCBackup^
C:\Program Files\Wajam =>PUP.Wajam^
C:\Program Files\Winsudate =>Adware.Gibmedia^
C:\Program Files\XingHaoLyrics =>Adware.AddLyrics^
C:\Program Files\Common Files\AVG Secure Search =>Toolbar.AVGSearch^
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch^
C:\ProgramData\AVG Security Toolbar =>Toolbar.AVGSearch^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\BrooWse2seave =>Adware.Browse2Save^
C:\ProgramData\Browwsse2saVee =>Adware.Browse2Save^
C:\ProgramData\IBUpdaterService =>Adware.InstallBrain^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\Users\josiane\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\josiane\AppData\Roaming\File Scout =>PUP.FileScout^
C:\Users\josiane\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\Users\josiane\AppData\Roaming\SpeedAnalysis2 =>PUP.SpeedAnalysis^
C:\Users\josiane\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch^
C:\Users\josiane\AppData\Local\Ilivid Player =>Adware.Bandoo^
C:\Users\josiane\AppData\Local\OpenCandy =>Adware.OpenCandy^
C:\Users\josiane\AppData\Local\Smartbar =>Hijacker.SmartBar^
C:\Users\josiane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam =>PUP.Wajam^
C:\Program Files\Ask.com =>Toolbar.AskBar
C:\Users\josiane\AppData\LocalLow\AVG Secure Search =>Toolbar.AVGSearch
C:\Users\josiane\AppData\LocalLow\AVG Security Toolbar =>Toolbar.AVGSearch
C:\Users\josiane\AppData\LocalLow\BabylonToolbar =>PUP.Babylon
C:\Users\josiane\AppData\LocalLow\Smartbar =>Hijacker.SmartBar
C:\Users\josiane\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
C:\Users\josiane\AppData\Local\Temp\BabylonToolbar =>PUP.Babylon
C:\Users\josiane\AppData\Local\Temp\Smartbar =>Hijacker.SmartBar
C:\Users\josiane\AppData\Local\Temp\avg@toolbar =>Toolbar.AVGSearch
C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde =>Toolbar.DeltaSearch
C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\mocblcnaofikinigmceddfghppkkjbog =>Adware.SmileyBar
C:\Users\josiane\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf =>PUP.SpeedAnalysis
C:\Users\josiane\Downloads\bProtectorForWindows =>PUP.BProtector
C:\Program Files\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch^
C:\Users\josiane\AppData\Local\Smartbar\Application\QuickShare.exe =>PUP.QuickShare^
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe =>Toolbar.AVGSearch^
C:\Program Files\Wajam\Updater\WajamUpdater.exe =>PUP.Wajam^
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\loggingserver.exe =>Toolbar.AVGSearch^
C:\Windows\Tasks\LyricsPal Update.job =>Adware.AddLyrics^
[HKCU\Software\AVG Secure Search] =>Toolbar.AVGSearch^
[HKCU\Software\AppDataLow\Software\AVG Security Toolbar] =>Toolbar.AVGSearch^
[HKCU\Software\Datamngr] =>PUP.Datamngr^
[HKCU\Software\FileScout] =>PUP.FileScout^
[HKCU\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\Wajam] =>PUP.Wajam^
[HKLM\Software\AVG Security Toolbar] =>Toolbar.AVGSearch^
[HKLM\Software\Babylon] =>PUP.Babylon^
[HKCU\Software\5d28cdee23bec42\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Hijacker.Eazel^
[HKCU\Software\5d28cdee23bec42\history\{eab34bca-99d8-4192-8f3b-58b53f6d08e7}2.6.1123.78]:folderName="bProtectorForWindows" =>PUP.BProtector^
C:\Windows\Installer\3331eae.msi =>Toolbar.Google^
C:\Windows\Installer\5507416.msi =>PUP.QuickShare^
C:\Users\josiane\AppData\Local\Temp\uninst1.exe =>PUP.Babylon
C:\Users\josiane\AppData\Local\Temp\bundlesweetimsetup.exe =>PUP.SweetIM
C:\Users\josiane\AppData\Local\Temp\MyBabylonTB.exe =>PUP.SweetIM
C:\Users\josiane\AppData\Local\Temp\Searchqu.ini =>Adware.Bandoo
C:\Users\josiane\AppData\Local\Temp\SetupDataMngr_Searchqu.exe =>Adware.Bandoo
C:\Users\josiane\AppData\Local\Temp\wajam_install.exe =>Toolbar.Wajam
C:\Users\josiane\AppData\Local\Temp\GoogleToolbarInstaller_stub_signed.exe =>PUP.Babylon
C:\Users\josiane\AppData\Local\Temp\ToolbarInstaller.exe =>PUP.Babylon
C:\Users\josiane\AppData\Local\Temp\pricepeep_130001_1001.exe =>Adware.PricePeep
C:\Users\josiane\AppData\Local\Temp\dp.exe =>PUP.DealPly
C:\Users\josiane\AppData\Local\Temp\UpdateCheckerSetup.exe =>Adware.MegaSearch
~ Additionnel Scan: 252194 Items scanned in 00mn 25s
---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/28577022-pup-quickshare =>PUP.QuickShare
~ http://nicolascoolman.webs.com/apps/blog/show/27379491-toolbar-wajam =>PUP.Wajam
~ http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar =>Hijacker.SmartBar
~ http://nicolascoolman.webs.com/apps/blog/show/26627530-adware-browse2save =>Adware.Browse2Save
~ http://nicolascoolman.webs.com/apps/blog/show/26601058-adware-addlyrics =>Adware.AddLyrics
~ http://nicolascoolman.webs.com/apps/blog/show/26919368-adware-megasearch =>Adware.MegaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/26898222-adware-incredibar =>Adware.Incredibar
~ http://nicolascoolman.webs.com/apps/blog/show/27161672-hijacker-eazel =>Hijacker.Eazel
~ http://nicolascoolman.webs.com/apps/blog/show/28486577-pup-mocaflix =>PUP.MocaFlix
~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>PUP.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com/apps/blog/show/34311830-pup-filescout =>PUP.FileScout
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/26630283-pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
~ http://nicolascoolman.webs.com/apps/blog/show/32174815-pup-mypcbackup =>PUP.MyPCBackup
~ http://nicolascoolman.webs.com/apps/blog/show/26907365-adware-installbrain =>Adware.InstallBrain
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/26770694-adware-opencandy =>Adware.OpenCandy
~ http://nicolascoolman.webs.com/apps/blog/show/28153012-pup-speedanalysis =>PUP.SpeedAnalysis
~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution =>Hijacker.BabSolution
~ http://nicolascoolman.webs.com/apps/blog/show/28133096-pup-bprotector =>PUP.BProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch =>Adware.MyWebSearch
~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz
~ http://nicolascoolman.webs.com/apps/blog/show/28000037-pup-rewardsarcade =>PUP.RewardsArcade
~ http://nicolascoolman.webs.com/apps/blog/show/30234464-pup-toparcadehits =>PUP.ToparcadeHits
~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/26632189-adware-magnipic =>Adware.MagniPic
~ http://nicolascoolman.webs.com/apps/blog/show/27530912-adware-smileybar =>Adware.SmileyBar
~ http://nicolascoolman.webs.com/apps/blog/show/29344956-adware-similarsites =>Adware.SimilarSites
~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blog/show/28060597-pup-dealply =>PUP.DealPly
~ MSI: 34 link(s) detected in 00mn 27s
End of the scan (2393 lines in 05mn 37s)(15)