Bonjour,

 

test rapport ZHPDiag 

Attacher un fichier:

---

ZHPDiag.txt Taille: 253.88 KB; Hits: 864
ZHPFixReport.txt Taille: 0.69 KB; Hits: 605
AdwCleaner[S15].txt Taille: 2.29 KB; Hits: 614

Bonjour,

Attacher un fichier:

---

ZHPDiag.txt Taille: 253.88 KB; Hits: 1066

~ Rapport de ZHPDiag v2013.8.28.38 - Nicolas Coolman  (28/08/2013)
~ Lancé par pc (31/08/2013 01:37:18)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16660
MFIE: Mozilla Firefox 23.0.1 (Defaut)
GCIE: Google Chrome v29.0.1547.62
OBIE: Safari v5.34.57.2

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 0
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v8.0.1489.0
Malwarebytes Anti-Malware version 1.75.0.1300
Sophos Anti-Rootkit 1.5.0 v1.5.0
Windows Defender W7

---\\ Logiciels d'optimisation du système
CCleaner v4.03  =>Piriform Ltd
Slowin' Killer : Nettoyage & Optimisation v1.208

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 25

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3992 MB (41% free)
System Restore: Activé (Enable)
System drive C: has 87 GB (31%) free of 278 GB

---\\ Mode de connexion au système
~ Computer Name: ANTHONYBRIERE01
~ User Name: anthonybriere
~ All Users Names: HomeGroupUser$, anthonybriere, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\anthonybriere\AppData\Roaming\
~ %Desktop% : C:\Users\anthonybriere\Desktop\
~ %Favorites% : C:\Users\anthonybriere\Favorites\
~ %LocalAppData% : C:\Users\anthonybriere\AppData\Local\
~ %StartMenu% : C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C:\ Hard drive, Flash drive, Thumb drive (Free 87 Go of 278 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 20 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 37 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.10/02/2012 - 03:16:54.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2013 - 06:13:37.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.10/02/2012 - 03:18:52.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.10/02/2012 - 03:15:09.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/21
~ Mes musiques (My Musics) : 5/9
~ Mes Videos (My Videos) : 1/4
~ Mes Favoris (My Favorites) : 1/42
~ Mes Documents (My Documents) : 13/513
~ Mon Bureau (My Desktop) : 2/53729
~ Menu demarrer (Programs) : 1/49
~ Hidden Files:  Scanned in 00mn 53s



---\\ Processus lancés au démarrage du système
[MD5.FA8EC2E971C99F88C3A38D27CBAAA688] - (.Uniblue Systems Ltd - Uniblue DriverScanner Monitor.) -- C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe   [26456] [PID.2448]
[MD5.D645B082E49F8655F14C61DB4EEBBA1D] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe   [367016] [PID.2900]
[MD5.749949494676218FFA99501F4AA22ECC] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe   [10376704] [PID.2208]
[MD5.4EE367B8B1964160A1F1B80095183D3A] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin   [10368512] [PID.2788]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe   [4858968] [PID.3140]
[MD5.6364FA7D825B600251A4D1DE7D6FF695] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe   [291608] [PID.3148]
[MD5.8A3B69683E63808719D24E1C68C21CC7] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe   [379960] [PID.3172]
[MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe   [1343904] [PID.3212]
[MD5.8192B2E274607D1D530F5C191698C544] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe   [578944] [PID.3220]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [253816] [PID.3232]
[MD5.9D999266CA10549B7E0117C35CE91EDA] - (.Glarysoft Ltd - Glary Utilities 3.) -- C:\Program Files (x86)\Glary Utilities 3\Integrator.exe   [470816] [PID.3600]
[MD5.59A409BAB55E72D33409A8A99F50DB17] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe   [264616] [PID.3824]
[MD5.B4CF3FB7E9B8EA69757541DCE6CA20ED] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe   [276376] [PID.8356]
[MD5.72EF708552059546B1AAA82E7AA59439] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe   [17304] [PID.2216]
[MD5.D8425B8D6DC2AA8D871363B0775BCF18] - (.Adobe Systems, Inc. - Adobe Flash Player 11.8 r800.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe   [1861512] [PID.6800]
[MD5.3927774EA73227D94CE45D0E192EF7BA] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe   [17878192] [PID.7884]
[MD5.34B871161A05437DB47602BE7938677D] - (.Nicolas Coolman - Zeb Help Process.) -- C:\Program Files (x86)\ZebHelpProcess\ZHP2.exe   [4959744] [PID.12560]
[MD5.E1CD28D843470D427A2A48D39734939A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [7842304] [PID.12880]
[MD5.9243229DFCCC99B5441750EBA49F1B14] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe   [574272] [PID.880]
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe   [46808] [PID.1676]
[MD5.24EA4E2F76E216CE70353736E3556585] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe   [335168] [PID.1984]
[MD5.177FF6608B48638D4066726F3A3F8444] - (...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe   [102400] [PID.1196]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe   [65640] [PID.1732]
[MD5.65608C44E71D7BA056C9EFCD8A00A7FE] - (.Microsoft Corp. - Bing Desktop updating service.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe   [173192] [PID.2092]
[MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe   [514232] [PID.2260]
[MD5.17BE4BAEC3D4FE887BC5F446FEF4FD97] - (.F-Secure Corporation - F-Secure Host Process.) -- C:\Program Files (x86)\SFR\Pack_Securite\fshoster32.exe   [163536] [PID.2372]
[MD5.2BEC76BDCD1BC080210325E7B5094834] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe   [35200] [PID.2592]
[MD5.C9DCE1CB628AEED3C0C30ABBF4F1E718] - (...) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe   [128280] [PID.2692]
[MD5.3628933AF5305EAB8173949BFF912F04] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe   [161560] [PID.2720]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.exe   [322120] [PID.1668]
[MD5.388AE59FE75F1B959DFA0900923C61BB] - (.Skype Technologies S.A. - Skype C2C Service.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe   [3064000] [PID.3656]
[MD5.DD0042F0C3B606A6A8B92D49AFB18AD6] - (.Yahoo! Inc. - AutoUpater Service Module.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe   [602392] [PID.2100]  =>Toolbar.Yahoo
[MD5.514455F6586473791C5C6B25BA4E1BAB] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe   [1001376] [PID.4940]
[MD5.E07F8E78D08D9269E3365C2A4F637191] - (.Hewlett-Packard Development Company L.P. - HP Connection Manager Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe   [1098296] [PID.3796]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648] [PID.6368]
[MD5.7D4B9A48430ED57ACA6373B71D5904CA] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe   [13592] [PID.6780]
[MD5.BF22ACF4CF3734D61357E67F0521BC03] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe   [277784] [PID.4004]
[MD5.B097EBA0E3FEB020BB65FE43AF5ECCFF] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe   [363800] [PID.3888]
~ Processes Running:  Scanned in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\anthonybriere\AppData\Roaming\Mozilla\Firefox\Profiles\4slb9iq8.default-1362123094607\prefs.js
C:\Users\anthonybriere\AppData\Roaming\Mozilla\Firefox\Profiles\vj0bdhip.default-1340388655822\prefs.js
C:\Users\anthonybriere\AppData\Roaming\Mozilla\Firefox\Profiles\vj0bdhip.default-1340388655822\user.js
M3 - MFPP: Plugins - [anthonybriere] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo.xml  =>Toolbar.Yahoo
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.03.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.21.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20513.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\anthonybriere\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\anthonybriere\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [f4-group.com/F4WebPlugin] - (.F4 - F4 Web Plugin 0.2.20.) -- C:\Users\anthonybriere\AppData\Roaming\F4\F4WebPlugin\npF4WebPlugin.dll
~ Firefox Browser: 23 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 18 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: &Yahoo! Toolbar Helper [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\yt.dll  =>Toolbar.Yahoo
O2 - BHO: Increase performance and video formats for your HTML5 <video> [64Bits] - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Plus Web Player HTML5 <video> version.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Speed [64Bits] - {48A789BF-F6D6-4930-9C8B-77855A63EDE1} . (.Secure Speed Dial - Secure Speed Dial.) -- C:\Program Files (x86)\Secure Speed Dial\IE\SpeedDial.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll  =>Toolbar.Avast
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Advanced SystemCare Browser Protection [64Bits] - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - Pas de description.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll
O2 - BHO: Free Download Manager [64Bits] - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} . (.FreeDownloadManager.ORG - Pas de description.) -- C:\Program Files (x86)\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
~ BHO: 13 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} Clé orpheline
~ Toolbar:  Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [SetDefault] . (.Hewlett-Packard Development Company, L.P. - SetDefault.) -- C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IntelliType Pro] . (.Microsoft Corporation - IType.exe.) -- c:\Program Files\Microsoft Device Center\itype.exe
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- c:\Program Files\Microsoft Device Center\ipoint.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [HPOSD] . (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Wow6432Node\Run: [HPConnectionManager] . (.Hewlett-Packard Development Company L.P. - HPCMDelayStart Application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Wow6432Node\Run: [HP CoolSense] . (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] . (.IObit - ASCTray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
O4 - HKUS\S-1-5-21-3091538384-1223758719-1488994814-1000\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
~ Application:  Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Advanced SystemCare 6.lnk . (.IObit - Advanced SystemCare 6.)  -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASC.exe
O4 - GS\TaskBar: CCleaner.lnk . (.Piriform Ltd - CCleaner.)  -- C:\Program Files\CCleaner\CCleaner64.exe  =>Piriform Ltd
O4 - GS\TaskBar: Gestionnaire des tâches de Windows.lnk . (.Microsoft Corporation - Gestionnaire des tâches de Windows.)  -- C:\Windows\System32\taskmgr.exe
O4 - GS\TaskBar: Glary Utilities 3.lnk . (.Glarysoft Ltd - Glary Utilities 3.)  -- C:\Program Files (x86)\Glary Utilities 3\Integrator.exe
O4 - GS\TaskBar: HP Recommended.LNK . (...)  -- C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe (.not file.)
O4 - GS\TaskBar: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.)  -- C:\Windows\ehome\ehshell.exe
O4 - GS\TaskBar: Microsoft Calculatrice Plus.lnk . (...)  -- C:\Windows\Installer\{13922F10-BD74-4912-AB11-E34B35062700}\_18be6784.exe
O4 - GS\TaskBar: Microsoft Excel 2010.lnk . (...)  -- C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\TaskBar: Microsoft PowerPoint 2010.lnk . (...)  -- C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe
O4 - GS\TaskBar: Microsoft Word 2010.lnk . (...)  -- C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: OpenOffice.org 3.4.1.lnk . (.OpenOffice.org - OpenOffice.org 3.4.1.)  -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
O4 - GS\TaskBar: Skype.lnk . (...)  -- C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
O4 - GS\TaskBar: Windows Defender User Interface.lnk . (...)  -- C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Piratrax.lnk . (.DENIAU F.A.A - Le nettoyeur de trax.)  -- C:\Program Files (x86)\Piratrax\piratrax.exe
O4 - GS\QuickLaunch: adsl TV.lnk . (.adsl TV / FM - adsl TV.)  -- C:\Program Files (x86)\adslTV\adsltv.exe
O4 - GS\QuickLaunch: Apple Safari.lnk . (...)  -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - GS\QuickLaunch: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.)  -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - GS\QuickLaunch: DriverScanner.lnk . (.Uniblue Systems Ltd - Uniblue DriverScanner.)  -- C:\Program Files (x86)\Uniblue\DriverScanner\driverscanner.exe
O4 - GS\QuickLaunch: DuckCapture.lnk . (.DuckLink Software - DuckLink Screen Capture.)  -- C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe
O4 - GS\QuickLaunch: Excel Recovery Toolbox.lnk . (...)  -- C:\Program Files (x86)\Excel Recovery Toolbox\ExcelRecoveryToolboxLauncher.exe
O4 - GS\QuickLaunch: Gestionnaire de Connexion.lnk . (.SFR - Gestionnaire de connexion.)  -- C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR_Gestionnaire_connexion.exe
O4 - GS\QuickLaunch: Glary Undelete.lnk . (.Glarysoft Ltd - Glary Undelete.)  -- C:\Program Files (x86)\Glary Undelete\undelete.exe
O4 - GS\QuickLaunch: Glary Utilities 3.lnk . (.Glarysoft Ltd - Glary Utilities 3.)  -- C:\Program Files (x86)\Glary Utilities 3\Integrator.exe
O4 - GS\QuickLaunch: IncrediMail 2.0.lnk . (.IncrediMail, Ltd. - IncrediMail Application.)  -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - GS\QuickLaunch: Inkscape.lnk . (.inkscape.org - Inkscape.)  -- C:\Program Files (x86)\Inkscape\inkscape.exe
O4 - GS\QuickLaunch: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.)  -- C:\Program Files (x86)\JetAudio\JetAudio.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.)  -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\QuickLaunch: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.)  -- C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.exe
O4 - GS\QuickLaunch: Nero Home.lnk . (.Nero AG - Nero Home.)  -- C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe
O4 - GS\QuickLaunch: Nero StartSmart.lnk . (.Nero AG - Nero StartSmart.)  -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
O4 - GS\QuickLaunch: PhotoScape.lnk . (...)  -- C:\Program Files (x86)\PhotoScape\PhotoScape.exe
O4 - GS\QuickLaunch: Piratrax.lnk . (.DENIAU F.A.A - Le nettoyeur de trax.)  -- C:\Program Files (x86)\Piratrax\piratrax.exe
O4 - GS\QuickLaunch: Roxio Creator Basic v9.lnk . (...)  -- C:\Program Files (x86)\Common Files\Roxio Shared\9.0\Roxio Central33\Main\Roxio_Central33.exe
O4 - GS\QuickLaunch: Spider Player.lnk . (.VIT Software, LLC - Spider Player.)  -- C:\Program Files (x86)\Spider Player\Spider.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.)  -- C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
O4 - GS\SendTo: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.)  -- C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe
O4 - GS\SendTo: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.)  -- C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
O4 - GS\SendTo: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.)  -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - GS\SendTo: Evernote.lnk . (.Evernote Corp., 333 W Evelyn Ave. Mountain - Evernote.)  -- C:\Program Files (x86)\Evernote\Evernote\Evernote.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe
O4 - GS\SendTo: Lecteur Drag-to-Disc (E).lnk . (...)  -- E:\
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.)  -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\Desktop: 10 000 Lettres et Courriers Types.lnk . (.Micro Application - Pas de description.)  -- C:\Program Files (x86)\Micro Application\10 000 Lettres et Courriers Types\CT.exe
O4 - GS\Desktop: Free Download Manager.lnk . (.FreeDownloadManager.ORG - Free Download Manager.)  -- C:\Program Files (x86)\Free Download Manager\fdm.exe
O4 - GS\Desktop: Nero Express.lnk . (.Nero AG - Nero Burning ROM.)  -- C:\Program Files (x86)\Nero\Nero 7\Core\nero.exe
O4 - GS\Desktop: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.)  -- C:\Windows\system32\notepad.exe
O4 - GS\Desktop: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.)  -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe
~ Global Startup:  Scanned in 00mn 02s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~3\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~3\Office14\ONBTTN~1.dll (.not file.)
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Winsock: 8 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2F976DDF-55FA-451A-9AB2-B785EAAF8A0F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{4198A7D2-0520-4E13-8ED1-AC17D4970F02}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{2F976DDF-55FA-451A-9AB2-B785EAAF8A0F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{4198A7D2-0520-4E13-8ED1-AC17D4970F02}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{2F976DDF-55FA-451A-9AB2-B785EAAF8A0F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{4198A7D2-0520-4E13-8ED1-AC17D4970F02}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain:  Scanned in 00mn 00s



---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Service Planificateur2 Acronis (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) . (...) - C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: F-Secure Dll Hoster (fshoster) . (.F-Secure Corporation - F-Secure Host Process.) - C:\Program Files (x86)\SFR\Pack_Securite\fshoster32.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Client Services (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: SecureUpdate (SecureUpdateSvc) . (...) - C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe
O23 - Service:  (SFR.Dashboard.Service) . (.SFR - SFR.Dashboard.Service.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
~ Services: 24 Scanned in 00mn 08s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\dsmonitor.job   [356]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GlaryInitialize 3.job   [348]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1066]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1070]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\HPCeeScheduleForanthonybriere.job   [364]
[MD5.476BB014F3F68C0C15EDDD5B444DA8FF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [257416]
[MD5.5CE2C1433B9B634591F0A1C4C1203A0B] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe   [251784]
[MD5.4999625054FFA2AFFCAFD085C1218307] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [3611416]  =>Piriform Ltd
[MD5.FA8EC2E971C99F88C3A38D27CBAAA688] [APT] [dsmonitor] (.Uniblue Systems Ltd.) -- C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe   [26456]
[MD5.052B98699F147FEA495F39D8C324A348] [APT] [GlaryInitialize 3] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 3\Initialize.exe   [100640]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.8AA3B22B716A04AC8DD13318A40D708D] [APT] [HPCeeScheduleForanthonybriere] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe   [95800]
[MD5.6B84BDF8A4412A64BA34F5B27C5BA80D] [APT] [{1E08CD4E-87DD-45F3-BB6A-96EFF265C763}] (.Adobe Systems, Copyright 2005-2007.) -- C:\Users\anthonybriere\Desktop\Logiciel divers\adobe\Adobe CS3\Setup.exe   [2713512]
[MD5.00000000000000000000000000000000] [APT] [{45E22609-FA16-4497-A17A-02C74D0B877C}] (...) -- C:\Users\anthonybriere\Downloads\sp56801.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{4D772E80-D56D-461A-A774-32651E90AD2A}] (...) -- F:\Maintenance informatique\Outils de désinfection\ZhP\ZHP 2013.exe (.not file.)   [0]
[MD5.14E0E43D9C2184A19BD83AF270CEA4E6] [APT] [{B49A3F89-2988-4707-9802-5271D0ECCEAF}] (.Nicolas Coolman.) -- C:\Users\anthonybriere\Desktop\Nouveau dossier (5)\Outils de désinfection\ZHPDiag\ZHPDiag2.exe   [5528973]
[MD5.2D890AD63AB1B8CB4AC9AC1C6E58512F] [APT] [{E758A651-5B9D-4D1F-A22A-C64A2BA8E2A0}] (...) -- C:\Users\anthonybriere\Desktop\Téléchargement Logiciel Vidéo Mp3\im_dict_fr.exe   [362088]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe   [561984]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.353680422ADF487E808510E39ED20647] [APT] [HP Total Care Tune-Up] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe   [18336]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe   [525728]
[MD5.28E1A34ED1B810BC2F4734F2DBFF2A76] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe   [615736]
[MD5.A6578474FB7265891B76A4A3B0BCC4E9] [APT] [WarrantyChecker] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe   [1553112]
[MD5.A6578474FB7265891B76A4A3B0BCC4E9] [APT] [WarrantyChecker_DeviceScan] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe   [1553112]
~ Scheduled Task: 30 Scanned in 00mn 07s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 01s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (DLACDBHE) . (.Roxio - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHE.sys
O41 - Driver: (DLARTL_E) . (.Roxio - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_E.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 72 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: 10 000 Lettres et Courriers Types - (...) [HKLM][64Bits] -- {4AD7CCAE-FCD7-407D-B54A-912C61204E29}
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: AVS Video Converter 8 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1
O42 - Logiciel: AccelerateTab - (.AccelerateTab.) [HKLM][64Bits] -- AccelerateTab_is1
O42 - Logiciel: Acronis Drive Monitor - (.Acronis.) [HKLM][64Bits] -- {706AE61D-40A4-4F50-8359-FE8F6F7FA461}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B}
O42 - Logiciel: Adobe Bridge 1.0 - (.Adobe Systems.) [HKLM][64Bits] -- {AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}
O42 - Logiciel: Adobe Common File Installer - (.Adobe System Incorporated.) [HKLM][64Bits] -- {8EDBA74D-0686-4C99-BFDD-F894678E5102}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Help Center 2.1 - (.Adobe Systems.) [HKLM][64Bits] -- {25569723-DC5A-4467-A639-79535BF01B71}
O42 - Logiciel: Adobe Illustrator CS2 - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe Illustrator CS2
O42 - Logiciel: Adobe InDesign CS2 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe InDesign CS2 - {7F4C8163-F259-49A0-A018-2857A90578BC}
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC}
O42 - Logiciel: Adobe Photoshop CS2 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-1E257A25E34D}
O42 - Logiciel: Adobe Photoshop Elements 5.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop Elements 5
O42 - Logiciel: Adobe Photoshop Lightroom 4.3 64-bit - (.Adobe.) [HKLM][64Bits] -- {D759947B-8C5A-4480-B0DB-FC391F061C85}
O42 - Logiciel: Adobe Premiere Pro 2.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Premiere Pro 2.0
O42 - Logiciel: Adobe Reader XI (11.0.03) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe SVG Viewer
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Adobe Stock Photos 1.0 - (.Adobe Systems.) [HKLM][64Bits] -- {786C5747-0C40-4930-9AFE-113BCE553101}
O42 - Logiciel: Adobe Stock Photos 1.0 - (.Adobe Systems.) [HKLM][64Bits] -- {786C5747-1437-443D-B06E-79A00FE45110}
O42 - Logiciel: Advanced SystemCare 6 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 6_is1
O42 - Logiciel: Agriculture Simulator 2012 - (...) [HKLM][64Bits] -- Agrar Simulator 2012
O42 - Logiciel: Antidote HD - (.Druide informatique inc..) [HKLM][64Bits] -- {56CDB4FE-895F-4E0D-8BB4-9A8D4310898D}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {5D09C772-ECB3-442B-9CC6-B4341C78FDC2}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Archiveur WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Ashampoo Home Designer Pro v.1.0.1 - (.Creative Amadeo GmbH.) [HKLM][64Bits] -- {4D1A0101-17A2-4fca-9119-4734EDBDA12D}_is1
O42 - Logiciel: Beezik - (.Beezik entertainment.) [HKLM][64Bits] -- {2B5E94EB-7D72-4DD1-B9FA-15A7B1746636}_is1
O42 - Logiciel: Bing Bureau - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D095455-D971-4D4C-9EFD-9AF6A6584F3A}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner  =>Piriform Ltd
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex
O42 - Logiciel: CVitaeV4 - (...) [HKCU][64Bits] -- CVitaeV4
O42 - Logiciel: Cake Mania - (.WildTangent.) [HKLM][64Bits] -- WTA-8e3d5800-f69f-4474-9d25-1bd0c61c7b34
O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-83f9ab81-bba2-407f-a9a2-6ff3ac37596c
O42 - Logiciel: Ciel Immobilisations 17.0 Enseignants - (.Ciel.) [HKLM][64Bits] -- {A0AD5B20-5389-4FFF-B2BB-D391BB2A039A}
O42 - Logiciel: Ciel Paye Evolution 10.00 Enseignants & Formateurs - (.CIEL.) [HKLM][64Bits] -- {DF3C3472-7A31-4F36-87A1-2819290A540A}
O42 - Logiciel: Code de la Route - (...) [HKLM][64Bits] -- {10890BBB-5CBB-468B-88E7-C83D56DE2440}
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-0626d3b4-09ab-4693-ac9a-bf32c8308d81
O42 - Logiciel: Crazy Taxi - (...) [HKLM][64Bits] -- {B97ACE80-6D9B-11D6-AFFD-0040052179B6}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DFX - (.Power Technology.) [HKLM][64Bits] -- DFX
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM][64Bits] -- Defraggler
O42 - Logiciel: Diver : Aventures en eau profonde 1.1 - (...) [HKLM][64Bits] -- Diver : Aventures en eau profonde_is1
O42 - Logiciel: Driver pour mobile - (...) [HKLM][64Bits] -- {D2D77DC2-8299-11D1-8949-444553540000}_is1
O42 - Logiciel: DriverScanner - (.Uniblue Systems Ltd.) [HKLM][64Bits] -- {C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
O42 - Logiciel: DriverTuner 3.1.0.0 - (.LionSea SoftWare.) [HKLM][64Bits] -- {520C1D80-935C-42B9-9340-E883849D804F}_is1
O42 - Logiciel: DuckCapture Standard 2.7 - (.DuckLink.) [HKLM][64Bits] -- DuckCapture_is1
O42 - Logiciel: EASEUS Partition Recovery 5.0.1 - (.EASEUS.) [HKLM][64Bits] -- EASEUS Partition Recovery_is1
O42 - Logiciel: ESU for Microsoft Windows 7 SP1 - (.Hewlett-Packard.) [HKLM][64Bits] -- {768A6276-5822-489C-8A2B-67190F745655}
O42 - Logiciel: Easy Drive Data Recovery - (.MunSoft.) [HKLM][64Bits] -- Easy Drive Data Recovery
O42 - Logiciel: Evernote v. 4.5.6 - (.Evernote Corp..) [HKLM][64Bits] -- {D1F7C704-99F2-11E1-9C74-984BE15F174E}
O42 - Logiciel: Excel Recovery Toolbox 1.7 - (.Recovery Toolbox, Inc..) [HKLM][64Bits] -- Excel Recovery Toolbox_is1
O42 - Logiciel: F.C. Manager 2007 - (.Codemasters.) [HKLM][64Bits] -- {2F17F116-2FE6-40B6-97A0-9322421A987F}
O42 - Logiciel: F4WebPlugin 0.2.20 - (.F4.) [HKLM][64Bits] -- {909AA7E1-95FD-4EF4-8819-5DEFA5900BC7}
O42 - Logiciel: Faire-part - (.Micro Application.) [HKLM][64Bits] -- Faire-part
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-14d3ad33-6fc6-40bc-93bc-d504a5b0c327
O42 - Logiciel: Farmscapes - (.WildTangent.) [HKLM][64Bits] -- WTA-89431c6c-c7c2-40d1-b208-49ff9c25fc49
O42 - Logiciel: Final Drive Fury - (.WildTangent.) [HKLM][64Bits] -- WTA-512a2f5a-16fe-41d7-ae3a-bbaa1b6addc1
O42 - Logiciel: Fishdom (TM) 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-1e1eb26a-79b2-4b8d-85b7-8e7517f9b9cc
O42 - Logiciel: Free Devis Factures 2013 - (.JP Eldin.) [HKLM][64Bits] -- {C2D5B90E-92FF-4A5D-93EF-BE1EBA3EBE85}
O42 - Logiciel: Free Download Manager 3.9.2 - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- Free Download Manager_is1
O42 - Logiciel: Game Booster 3 - (.IObit.) [HKLM][64Bits] -- Game Booster_is1
O42 - Logiciel: GameShadow - (.GameShadow Ltd.) [HKLM][64Bits] -- {373C3DAE-62C8-4F63-887C-769A8986ED50}
O42 - Logiciel: Gestionnaire de Connexion 3.4 - (.SFR.) [HKLM][64Bits] -- {FC48747D-095F-4CF6-B54E-37D4F4738A15}_is1
O42 - Logiciel: GetDataBack for FAT - (.Runtime Software.) [HKLM][64Bits] -- {2EEEC858-21F8-419B-8FE2-820621BFFCD7}
O42 - Logiciel: GetDataBack for NTFS - (.Runtime Software.) [HKLM][64Bits] -- {56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}
O42 - Logiciel: Glary Undelete 1.8.0.468 - (.Glarysoft.com.) [HKLM][64Bits] -- Glary Undelete_is1
O42 - Logiciel: Glary Utilities 3.8 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 3
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {C2D4CD4A-AE20-40B3-8726-8ED1C03E8C15}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HD Tune 2.55 - (.EFD Software.) [HKLM][64Bits] -- HD Tune_is1
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F9E399CB-046F-45FD-A67F-CF399E2128E4}
O42 - Logiciel: HP Application Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {0CE7EBAF-157D-4111-9146-057CB2A4023E}
O42 - Logiciel: HP Auto - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
O42 - Logiciel: HP Client Services - (.Hewlett-Packard.) [HKLM][64Bits] -- {2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
O42 - Logiciel: HP Connection Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}
O42 - Logiciel: HP CoolSense - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {16652164-D80F-4EE6-90C6-2E8D5D06092A}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Launch Box - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {5A847522-375C-4D05-BD3D-88C450CC047F}
O42 - Logiciel: HP On Screen Display - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED1BD69A-07E3-418C-91F1-D856582581BF}
O42 - Logiciel: HP Power Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}
O42 - Logiciel: HP Product Detection - (.HP.) [HKLM][64Bits] -- {ACAA0152-96A4-4D93-92F5-1B4728C3D984}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {53B17A98-5BF0-40BC-AAFF-850A357975AC}
O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {DBCD5E64-7379-4648-9444-8A6558DCB614}
O42 - Logiciel: HP Security Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED6CD3AC-616B-4B20-BCF3-6E637B92A5AD}
O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}
O42 - Logiciel: HP Setup Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {AE856388-AFAD-4753-81DF-D96B19D0A17C}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.1.1 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: Hitman 2: Silent Assassin - (.Eidos Interactive.) [HKLM][64Bits] -- Hitman 2: Silent Assassin
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IObit Malware Fighter - (.IObit.) [HKLM][64Bits] -- IObit Malware Fighter_is1
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: Inkscape 0.48.2 - (...) [HKLM][64Bits] -- Inkscape
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-050dab37-fa79-4211-a984-9f30cfb3bf8c
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {6199B534-A1B6-46ED-873B-97B0ECF8F81E}
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-7bf3aabd-8b33-48a2-876a-991a46375fb1
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WTA-9b9784d2-b7fa-490e-aee1-7e7f5f9272e7
O42 - Logiciel: Jewel Quest Solitaire 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-447ebd81-2c48-4390-b591-f242e7772f9b
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: K-Lite Codec Pack 9.0.2 (Basic) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: LinuxLive USB Creator - (.Thibaut Lauziere.) [HKLM][64Bits] -- LinuxLive USB Creator
O42 - Logiciel: MAGIX Photo & Graphic Designer 7 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{DCCB6DE9-7F9E-4059-A59C-CE333993A295}
O42 - Logiciel: MAGIX Photo & Graphic Designer 7 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- {DCCB6DE9-7F9E-4059-A59C-CE333993A295}
O42 - Logiciel: MAGIX Photo & Graphic Designer 7 Version à télécharger Content Pack - (.MAGIX AG.) [HKLM][64Bits] -- {B39D0FAC-D138-42DC-8F9D-F261DF586E18}
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{2D486845-4F4C-402D-81C6-96DD2653166D}
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {2D486845-4F4C-402D-81C6-96DD2653166D}
O42 - Logiciel: MAGIX Web Designer 6 Silver - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{1062C7EF-731C-4EC4-9481-21BD90693F47}
O42 - Logiciel: MAGIX Web Designer 6 Silver - (.MAGIX AG.) [HKLM][64Bits] -- {1062C7EF-731C-4EC4-9481-21BD90693F47}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {08AED066-0002-4E63-8AE9-6D63D4A50C07}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WTA-3e9ec46c-b13c-4493-9539-bc1ce0d00ead
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Calculatrice Plus - (.Microsoft.) [HKLM][64Bits] -- {13922F10-BD74-4912-AB11-E34B35062700}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 23.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 23.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mystery of Mortlake Mansion - (.WildTangent.) [HKLM][64Bits] -- WTA-cca99803-c9fc-4a76-833a-0a817a29358c
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {1C4551A6-4743-4093-91E4-1477CD655043}
O42 - Logiciel: Need For Speed™ World - (.Electronic Arts.) [HKLM][64Bits] -- {7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1
O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM][64Bits] -- {CF097717-F174-4144-954A-FBC4BF301036}
O42 - Logiciel: Office Password Recovery Magic v6.1.1.190 - (.Password Recovery Magic Studio Ltd..) [HKLM][64Bits] -- Office Password Recovery Magic_is1
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: PC SECURITY TEST 2010 - (.AxBx.) [HKLM][64Bits] -- PC SECURITY TEST 2010_is1
O42 - Logiciel: Photo & Graphic Designer 7 Update - (.MAGIX AG.) [HKLM][64Bits] -- {C30D6585-943E-471A-BBA5-022C35BEFAEA}
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM][64Bits] -- Photo Notifier and Animation Creator
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail.) [HKLM][64Bits] -- {788A0222-5690-4212-AA9C-C48FD0E1C9AE}
O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape
O42 - Logiciel: Piratrax - (.DENIAU F.A.A.) [HKCU][64Bits] -- Piratrax
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-54aae0ea-e5fc-4b51-b8b5-d2edbb28be2c
O42 - Logiciel: Poker - (.Micro Application.) [HKLM][64Bits] -- {58A7D3F8-0EBC-4AC6-9782-FC2C4F457E85}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044}
O42 - Logiciel: Ralink RT5390R 802.11b/g/n 1x1 Wi-Fi Adapter - (.Ralink.) [HKLM][64Bits] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}
O42 - Logiciel: Ranch Rush 2 - Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-20983908-4ccf-46d3-a43a-739dc26283d1
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM][64Bits] -- {83FFCFC7-88C6-41c6-8752-958A45325C82}
O42 - Logiciel: Roxio Creator Basic v9 - (.Roxio.) [HKLM][64Bits] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM][64Bits] -- {619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM][64Bits] -- {0D397393-9B50-4c52-84D5-77E344289F87}
O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM][64Bits] -- {0394CDC8-FABD-4ed8-B104-03393876DFDF}
O42 - Logiciel: Roxio Drag-to-Disc - (.Roxio.) [HKLM][64Bits] -- {2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668}
O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM][64Bits] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
O42 - Logiciel: Roxio MyDVD Basic v9 - (.Roxio.) [HKLM][64Bits] -- {938B1CD7-7C60-491E-AA90-1F1888168240}
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D}
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype™ 6.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {EA17F4FC-FDBF-4CF8-A529-2D983132D053}
O42 - Logiciel: Slowin' Killer : Nettoyage & Optimisation - (.Saachaa.) [HKLM][64Bits] -- Slowin Killer
O42 - Logiciel: Smart Defrag 2 - (.IObit.) [HKLM][64Bits] -- Smart Defrag 2_is1
O42 - Logiciel: Sniper Elite - (...) [HKLM][64Bits] -- {A979B2D8-E3EE-4523-A26C-4AF0A6809280}
O42 - Logiciel: Sonic Activation Module - (.Sonic Solutions.) [HKLM][64Bits] -- {35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
O42 - Logiciel: Sophos Anti-Rootkit 1.5.0 - (.Sophos Plc.) [HKLM][64Bits] -- Sophos-AntiRootkit
O42 - Logiciel: Speccy - (.Piriform.) [HKLM][64Bits] -- Speccy
O42 - Logiciel: Spider Player 2.5.3 - (.VIT Software, LLC.) [HKLM][64Bits] -- Spider Player_is1
O42 - Logiciel: Stellar Phoenix Windows Data Recovery - Professional - (.Stellar Information Systems Ltd.) [HKLM][64Bits] -- Stellar Phoenix Windows Data Recovery - Professional_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Torchlight - (.WildTangent.) [HKLM][64Bits] -- WTA-7f7a3ae4-8ed3-4787-b493-0e53ec2b1059
O42 - Logiciel: VC 9.0 Runtime - (.Check Point Software Technologies Ltd.) [HKLM][64Bits] -- {02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 2.0.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WTA-bc7c9dde-a271-468f-b250-2da83565ba11
O42 - Logiciel: Virtual Villagers 4 - The Tree of Life - (.WildTangent.) [HKLM][64Bits] -- WTA-f0397c00-1d7b-4e4d-8a76-a1e02c14bfb6
O42 - Logiciel: Votre Avocat à Domicile - (...) [HKLM][64Bits] -- {CBC5560E-309D-4D67-845E-20C646D01344}
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WTA-b0b16158-fdb4-4919-8f0b-7bd6b62edc88
O42 - Logiciel: Yahoo! Software Update - (...) [HKLM][64Bits] -- Yahoo! Software Update  =>Toolbar.Yahoo
O42 - Logiciel: Yahoo! Toolbar - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Companion  =>Toolbar.Yahoo
O42 - Logiciel: ZebHelpProcess 2013 - (.Nicolas Coolman.) [HKLM][64Bits] -- Zeb Help Process_is1
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM][64Bits] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: avast! Free Antivirus v8.0.1489.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: jetAudio 8 - Traduction française - (.Dominic Desbiens.) [HKLM][64Bits] -- Traduction française jetAudio 8.0x_is1
O42 - Logiciel: jetAudio Basic VX - (.COWON.) [HKLM][64Bits] -- {DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}
O42 - Logiciel: opensource - (.Your Company Name.) [HKLM][64Bits] -- {3677D4D8-E5E0-49FC-B86E-06541CF00BBE}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 316 Scanned in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ASIO]
[HKCU\Software\ASProtect]
[HKCU\Software\AVS4YOU]
[HKCU\Software\ActaLogic]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Aeria Games]
[HKCU\Software\Ahead]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Yahoo]  =>Toolbar.Yahoo
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ashampoo]
[HKCU\Software\Avanquest]
[HKCU\Software\Avast Software]
[HKCU\Software\Beezik]
[HKCU\Software\Borland]
[HKCU\Software\COWON]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Amadeo GmbH]
[HKCU\Software\DFX]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\Druide informatique inc.]
[HKCU\Software\EASEUS]
[HKCU\Software\EasyBits]
[HKCU\Software\Evernote]
[HKCU\Software\Excel Recovery Toolbox]
[HKCU\Software\F4]
[HKCU\Software\FileScout]
[HKCU\Software\FreeDownloadManager.ORG]
[HKCU\Software\GNU]
[HKCU\Software\GRETECH]
[HKCU\Software\Gabest]
[HKCU\Software\GameSpy]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard Company]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\Home Solutions]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\INCAInternet]
[HKCU\Software\IObit]
[HKCU\Software\Icaros]
[HKCU\Software\IncrediMail]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Licenses]
[HKCU\Software\LinuxLive]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Marcus Hebel Freeware]
[HKCU\Software\MarineCat]
[HKCU\Software\MicroVision]
[HKCU\Software\Minnetonka Audio Software]
[HKCU\Software\Mooii]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\MunSoft]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PowerTechnology]
[HKCU\Software\Roxio]
[HKCU\Software\SFRLauncher]
[HKCU\Software\Sage]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Sonic]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\SysInternals]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Xara]
[HKCU\Software\Yahoo]  =>Toolbar.Yahoo
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\bdgest6]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Acronis]
[HKLM\Software\Audible]
[HKLM\Software\Borland]
[HKLM\Software\CBSTEST]
[HKLM\Software\CXT]
[HKLM\Software\Canneverbe Limited]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DFX]
[HKLM\Software\DivX]
[HKLM\Software\Dolby]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\TuneUp]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASDMA]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Aardwork]
[HKLM\Software\Wow6432Node\Acronis]
[HKLM\Software\Wow6432Node\ActaLogic]
[HKLM\Software\Wow6432Node\Adobe Systems]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Adobee]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Ashampoo]
[HKLM\Software\Wow6432Node\BeezikApplication]
[HKLM\Software\Wow6432Node\Borland]
[HKLM\Software\Wow6432Node\COWON]
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\CheckPoint]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Codemasters]
[HKLM\Software\Wow6432Node\Creative Amadeo GmbH]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DriverTuner]
[HKLM\Software\Wow6432Node\DriverTuner_Init]
[HKLM\Software\Wow6432Node\Druide informatique inc.]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Eidos Interactive]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Evernote]
[HKLM\Software\Wow6432Node\F-Secure]
[HKLM\Software\Wow6432Node\Fiorina Entertainment]
[HKLM\Software\Wow6432Node\FreeDownloadManager.ORG]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\IObit]
[HKLM\Software\Wow6432Node\ImInstaller]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Insyde]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KLCodecPack]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\LAV]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\MC2]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Macrovision]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\MicroVision]
[HKLM\Software\Wow6432Node\Minnetonka Audio Software]
[HKLM\Software\Wow6432Node\Monolith Productions]
[HKLM\Software\Wow6432Node\Mooii]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MunSoft]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PowerTechnology]
[HKLM\Software\Wow6432Node\Rebellion]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Roxio]
[HKLM\Software\Wow6432Node\Runtime Software]
[HKLM\Software\Wow6432Node\SFR]
[HKLM\Software\Wow6432Node\Sage]
[HKLM\Software\Wow6432Node\Secure]
[HKLM\Software\Wow6432Node\Sega]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\Stellar information Systems ltd.]
[HKLM\Software\Wow6432Node\Sun Microsystems]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Win32 Services]
[HKLM\Software\Wow6432Node\Xara]
[HKLM\Software\Wow6432Node\Yahoo]  =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\fssg]
[HKLM\Software\Wow6432Node\illiminable]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\webtogo]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 363 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/06/2012 - 06:59:11 - [3,348] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 10/07/2013 - 19:04:23 - [18,522] ----D C:\Program Files (x86)\Acronis
O43 - CFD: 31/12/2012 - 17:01:25 - [562,604] ----D C:\Program Files (x86)\Ad-Remover
O43 - CFD: 02/03/2013 - 09:42:06 - [-1446,658] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 18/07/2013 - 11:59:42 - [1,654] ----D C:\Program Files (x86)\Adobe Download Assistant
O43 - CFD: 29/03/2013 - 14:37:08 - [108,810] ----D C:\Program Files (x86)\adslTV
O43 - CFD: 13/04/2013 - 17:53:12 - [117,518] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 13/04/2013 - 17:53:24 - [267,095] ----D C:\Program Files (x86)\Agrar Simulator 2012
O43 - CFD: 03/12/2012 - 14:56:56 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 25/03/2013 - 21:41:07 - [1156,035] ----D C:\Program Files (x86)\Ashampoo
O43 - CFD: 19/03/2013 - 21:18:02 - [57,327] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 11/06/2012 - 18:46:43 - [8,068] ----D C:\Program Files (x86)\AxBx
O43 - CFD: 27/07/2013 - 02:09:21 - [0] ----D C:\Program Files (x86)\BDGest Evolution
O43 - CFD: 03/12/2012 - 08:07:41 - [10,213] ----D C:\Program Files (x86)\CDex
O43 - CFD: 22/11/2012 - 09:49:28 - [148,547] ----D C:\Program Files (x86)\Ciel
O43 - CFD: 08/06/2012 - 06:28:04 - [-507,579] ----D C:\Program Files (x86)\Codemasters
O43 - CFD: 15/07/2013 - 23:53:20 - [1715,389] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 15/09/2012 - 19:34:48 - [0,877] ----D C:\Program Files (x86)\Dactylo
O43 - CFD: 04/12/2012 - 07:58:40 - [4,454] ----D C:\Program Files (x86)\DFX
O43 - CFD: 22/08/2012 - 20:51:58 - [0] ----D C:\Program Files (x86)\directx
O43 - CFD: 10/06/2012 - 07:15:58 - [-1583,662] ----D C:\Program Files (x86)\Diver
O43 - CFD: 15/07/2013 - 23:39:10 - [178,982] ----D C:\Program Files (x86)\DivX
O43 - CFD: 24/11/2012 - 18:02:55 - [14,661] ----D C:\Program Files (x86)\DriverTuner
O43 - CFD: 26/09/2012 - 16:31:35 - [412,049] ----D C:\Program Files (x86)\Druide
O43 - CFD: 15/12/2012 - 04:50:12 - [18,778] ----D C:\Program Files (x86)\DuckLink
O43 - CFD: 22/04/2013 - 09:59:54 - [30,529] ----D C:\Program Files (x86)\EASEUS
O43 - CFD: 14/09/2012 - 06:43:21 - [109,520] ----D C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 14/11/2012 - 10:40:28 - [497,586] ----D C:\Program Files (x86)\Eidos Interactive
O43 - CFD: 24/06/2012 - 06:44:26 - [13,694] ----D C:\Program Files (x86)\Electronic Arts
O43 - CFD: 09/02/2012 - 19:42:38 - [124,937] ----D C:\Program Files (x86)\Evernote
O43 - CFD: 16/11/2012 - 08:45:36 - [6,919] ----D C:\Program Files (x86)\Excel Recovery Toolbox
O43 - CFD: 14/05/2013 - 14:05:48 - [37,242] ----D C:\Program Files (x86)\Free Devis Factures
O43 - CFD: 24/01/2013 - 08:29:36 - [24,937] ----D C:\Program Files (x86)\Free Download Manager
O43 - CFD: 19/04/2013 - 09:55:58 - [4,619] ----D C:\Program Files (x86)\Glary Undelete
O43 - CFD: 30/08/2013 - 18:39:50 - [41,412] ----D C:\Program Files (x86)\Glary Utilities 3
O43 - CFD: 27/05/2013 - 09:42:40 - [447,859] ----D C:\Program Files (x86)\Google
O43 - CFD: 25/09/2012 - 15:35:53 - [0] ----D C:\Program Files (x86)\Hachette
O43 - CFD: 10/07/2013 - 18:54:39 - [1,234] ----D C:\Program Files (x86)\HD Tune
O43 - CFD: 29/05/2013 - 19:19:06 - [405,732] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 10/07/2013 - 20:53:15 - [2,597] ----D C:\Program Files (x86)\HP
O43 - CFD: 27/12/2012 - 23:05:16 - [437,877] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 16/11/2012 - 14:06:50 - [515,253] ----D C:\Program Files (x86)\Image-Line
O43 - CFD: 28/03/2013 - 08:22:20 - [25,323] ----D C:\Program Files (x86)\IncrediMail
O43 - CFD: 30/12/2012 - 09:53:19 - [160,221] ----D C:\Program Files (x86)\Inkscape
O43 - CFD: 02/07/2013 - 13:42:37 - [73,566] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 16/03/2012 - 02:50:58 - [164,033] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/08/2013 - 03:30:44 - [5,824] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 13/01/2013 - 01:24:24 - [155,063] ----D C:\Program Files (x86)\IObit
O43 - CFD: 20/06/2013 - 06:52:06 - [125,053] ----D C:\Program Files (x86)\Java
O43 - CFD: 04/12/2012 - 08:01:20 - [75,821] ----D C:\Program Files (x86)\JetAudio
O43 - CFD: 30/12/2012 - 21:47:23 - [43,710] ----D C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 01/07/2013 - 07:04:04 - [144,922] ----D C:\Program Files (x86)\LinuxLive USB Creator
O43 - CFD: 25/02/2013 - 16:59:47 - [895,633] ----D C:\Program Files (x86)\MAGIX
O43 - CFD: 27/07/2013 - 10:11:36 - [13,379] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 09/06/2012 - 23:19:35 - [-965,836] ----D C:\Program Files (x86)\MC2
O43 - CFD: 05/07/2013 - 09:11:39 - [141,812] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 14/12/2012 - 21:32:35 - [19,681] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 05/06/2012 - 15:57:40 - [38,002] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 08/06/2012 - 07:00:30 - [0,934] ----D C:\Program Files (x86)\Microsoft Calculatrice Plus
O43 - CFD: 15/09/2012 - 18:17:08 - [1145,344] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 10/07/2013 - 21:08:19 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 09/02/2012 - 19:56:16 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 13/09/2012 - 08:52:55 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 15/11/2012 - 10:21:16 - [4,166] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 05/06/2012 - 16:00:48 - [7,965] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 15/01/2013 - 12:36:13 - [1,944] ----D C:\Program Files (x86)\MonProduit
O43 - CFD: 28/08/2013 - 22:55:32 - [53,921] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 30/08/2013 - 18:36:14 - [0,215] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 01/10/2012 - 13:03:19 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 22/04/2013 - 11:40:46 - [8,184] ----D C:\Program Files (x86)\MunSoft
O43 - CFD: 30/06/2012 - 07:16:25 - [385,632] ----D C:\Program Files (x86)\Nero
O43 - CFD: 14/08/2012 - 18:45:44 - [0] ----D C:\Program Files (x86)\Nobilis
O43 - CFD: 25/01/2013 - 12:15:29 - [5,020] ----D C:\Program Files (x86)\Office Password Recovery Magic
O43 - CFD: 05/06/2012 - 09:40:24 - [21,142] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 29/05/2013 - 11:19:00 - [307,437] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 28/03/2013 - 08:04:39 - [2,630] ----D C:\Program Files (x86)\Photo Notifier and Animation Creator
O43 - CFD: 30/12/2012 - 09:23:08 - [23,597] ----D C:\Program Files (x86)\PhotoScape
O43 - CFD: 11/06/2012 - 18:32:23 - [3,059] ----D C:\Program Files (x86)\Piratrax
O43 - CFD: 24/07/2013 - 17:07:54 - [73,545] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 23/11/2012 - 19:55:20 - [16,595] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 08/04/2013 - 13:07:35 - [200,718] ----D C:\Program Files (x86)\Roxio
O43 - CFD: 22/04/2013 - 11:06:52 - [8,765] ----D C:\Program Files (x86)\Runtime Software
O43 - CFD: 03/12/2012 - 14:58:57 - [102,823] ----D C:\Program Files (x86)\Safari
O43 - CFD: 22/08/2013 - 07:14:39 - [15,442] ----D C:\Program Files (x86)\Secure Speed Dial
O43 - CFD: 14/08/2012 - 16:22:33 - [152,139] ----D C:\Program Files (x86)\Sega
O43 - CFD: 02/05/2013 - 10:02:47 - [48,599] ----D C:\Program Files (x86)\SFR
O43 - CFD: 12/11/2012 - 08:39:51 - [48,318] R---D C:\Program Files (x86)\Skype
O43 - CFD: 31/12/2012 - 18:47:50 - [1,860] ----D C:\Program Files (x86)\Slowin Killer
O43 - CFD: 26/08/2013 - 09:01:06 - [2,652] ----D C:\Program Files (x86)\Sophos
O43 - CFD: 19/10/2012 - 06:19:15 - [8,854] ----D C:\Program Files (x86)\Spider Player
O43 - CFD: 05/05/2013 - 17:17:28 - [7,559] ----D C:\Program Files (x86)\Stellar Phoenix Windows Data Recovery
O43 - CFD: 16/03/2012 - 03:03:11 - [0,727] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 13/06/2012 - 06:20:59 - [0,000] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 28/03/2013 - 13:06:47 - [22,329] ----D C:\Program Files (x86)\Uniblue
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/01/2013 - 01:16:40 - [0,004] ----D C:\Program Files (x86)\Unlocker
O43 - CFD: 15/12/2012 - 05:37:58 - [94,419] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 10/07/2013 - 21:06:46 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/11/2012 - 08:39:54 - [147,701] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 06/06/2012 - 12:53:14 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 06/06/2012 - 12:53:14 - [5,092] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 06/06/2012 - 12:53:14 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 06/06/2012 - 12:53:14 - [6,039] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2012 - 20:54:25 - [2,969] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 16/08/2012 - 05:42:19 - [9,854] ----D C:\Program Files (x86)\Yahoo!  =>Toolbar.Yahoo
O43 - CFD: 31/08/2013 - 01:37:06 - [130,414] ----D C:\Program Files (x86)\ZebHelpProcess
O43 - CFD: 31/08/2013 - 01:38:24 - [24,737] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 25/03/2013 - 19:33:34 - [6,622] ----D C:\Program Files (x86)\ZHPFix
O43 - CFD: 10/07/2013 - 19:04:25 - [4,463] ----D C:\Program Files (x86)\Common Files\Acronis
O43 - CFD: 11/01/2013 - 02:04:17 - [610,596] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 19/06/2013 - 06:35:42 - [45,609] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 06/06/2012 - 09:52:40 - [0,069] ----D C:\Program Files (x86)\Common Files\Adobe Systems Shared
O43 - CFD: 30/06/2012 - 07:17:32 - [106,748] ----D C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 28/03/2013 - 13:19:48 - [63,892] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 19/03/2013 - 21:18:01 - [93,207] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 05/06/2012 - 13:01:26 - [7,320] ----D C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 16/11/2012 - 12:19:42 - [27,605] ----D C:\Program Files (x86)\Common Files\Ciel
O43 - CFD: 03/12/2012 - 08:44:50 - [13,719] ----D C:\Program Files (x86)\Common Files\COWON
O43 - CFD: 05/06/2012 - 16:01:02 - [0,095] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 04/12/2012 - 07:58:38 - [5,467] ----D C:\Program Files (x86)\Common Files\DFX
O43 - CFD: 15/07/2013 - 23:38:07 - [36,250] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 14/08/2012 - 18:44:23 - [11,355] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 16/03/2012 - 02:48:05 - [14,075] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 16/03/2012 - 02:58:02 - [0,007] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 15/07/2013 - 23:53:20 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 01/10/2012 - 13:03:30 - [8,324] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 14/08/2013 - 03:59:16 - [422,002] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 16/11/2012 - 12:17:24 - [0,622] ----D C:\Program Files (x86)\Common Files\MSSoap
O43 - CFD: 16/03/2012 - 02:49:31 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 08/06/2012 - 07:14:56 - [4,521] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 08/04/2013 - 13:02:53 - [104,188] ----D C:\Program Files (x86)\Common Files\Roxio Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 12/11/2012 - 08:39:39 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 08/04/2013 - 13:05:19 - [5,175] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 08/04/2013 - 13:03:33 - [0,573] ----D C:\Program Files (x86)\Common Files\SureThing Shared
O43 - CFD: 05/06/2012 - 15:48:26 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 14/11/2012 - 22:22:35 - [22,925] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 15/11/2012 - 14:49:12 - [0,233] ----D C:\Program Files (x86)\Common Files\Telespree
O43 - CFD: 09/02/2012 - 19:53:58 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 13/04/2013 - 17:52:52 - [63,718] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 10/07/2013 - 19:05:02 - [3,470] ----D C:\ProgramData\Acronis
O43 - CFD: 28/08/2013 - 12:21:54 - [615,167] ----D C:\ProgramData\Adobe
O43 - CFD: 30/06/2012 - 07:17:43 - [0,000] ----D C:\ProgramData\Ahead
O43 - CFD: 03/12/2012 - 14:56:55 - [43,222] ----D C:\ProgramData\Apple
O43 - CFD: 03/12/2012 - 14:58:41 - [62,864] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Application Data
O43 - CFD: 25/03/2013 - 21:44:58 - [0,150] ----D C:\ProgramData\Ashampoo
O43 - CFD: 04/07/2013 - 12:12:57 - [0] ----D C:\ProgramData\Avanquest
O43 - CFD: 23/11/2012 - 19:55:44 - [17,392] ----D C:\ProgramData\AVAST Software
O43 - CFD: 19/03/2013 - 21:18:14 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Bureau
O43 - CFD: 15/06/2012 - 07:21:08 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 05/08/2012 - 19:56:40 - [0,004] ----D C:\ProgramData\CheckPoint
O43 - CFD: 21/11/2012 - 21:54:41 - [0,468] ----D C:\ProgramData\Ciel
O43 - CFD: 27/07/2013 - 01:40:52 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Desktop
O43 - CFD: 04/12/2012 - 08:00:39 - [0,000] ----D C:\ProgramData\DFX
O43 - CFD: 15/07/2013 - 23:39:10 - [4,699] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Documents
O43 - CFD: 24/06/2012 - 06:44:26 - [-1443,183] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 23/11/2012 - 19:58:49 - [69,843] ----D C:\ProgramData\F-Secure
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Favorites
O43 - CFD: 21/11/2012 - 21:58:37 - [0,018] ----D C:\ProgramData\FLEXnet
O43 - CFD: 14/05/2013 - 14:13:01 - [0,264] ----D C:\ProgramData\Free Devis Factures
O43 - CFD: 15/01/2013 - 12:33:22 - [0,317] ----D C:\ProgramData\Free Download Manager
O43 - CFD: 11/07/2013 - 12:45:02 - [6,089] ----D C:\ProgramData\GlarySoft
O43 - CFD: 05/07/2013 - 09:03:23 - [56,880] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 28/03/2013 - 07:55:17 - [0,000] ----D C:\ProgramData\IM
O43 - CFD: 28/03/2013 - 07:54:05 - [6,803] ----D C:\ProgramData\IncrediMail
O43 - CFD: 16/03/2012 - 03:09:45 - [0,981] ----D C:\ProgramData\Intel
O43 - CFD: 28/01/2013 - 12:20:08 - [46,470] ----D C:\ProgramData\IObit
O43 - CFD: 22/04/2013 - 07:51:45 - [0,206] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 30/05/2013 - 10:45:32 - [1,350] ----D C:\ProgramData\ma-config.com
O43 - CFD: 06/06/2012 - 09:52:41 - [0,007] ----D C:\ProgramData\Macrovision
O43 - CFD: 25/02/2013 - 16:59:47 - [0,697] ----D C:\ProgramData\MAGIX
O43 - CFD: 06/06/2012 - 13:00:18 - [17,150] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Menu Démarrer
O43 - CFD: 02/07/2013 - 13:41:10 - [0,000] ----D C:\ProgramData\Micro Application
O43 - CFD: 29/05/2013 - 12:44:55 - [612,425] -S--D C:\ProgramData\Microsoft
O43 - CFD: 14/08/2013 - 04:04:32 - [0,058] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 05/06/2012 - 09:37:18 - [0] ----D C:\ProgramData\Modèles
O43 - CFD: 05/06/2012 - 09:52:31 - [0,035] ----D C:\ProgramData\Mozilla
O43 - CFD: 30/06/2012 - 07:16:25 - [4,715] ----D C:\ProgramData\Nero
O43 - CFD: 05/06/2012 - 15:49:08 - [0,024] ----D C:\ProgramData\Norton
O43 - CFD: 16/03/2012 - 03:00:00 - [31,018] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 02/12/2012 - 23:06:37 - [1,018] ----D C:\ProgramData\Photo Notifier and Animation Creator
O43 - CFD: 14/06/2012 - 20:36:26 - [0] ----D C:\ProgramData\PlayFirst
O43 - CFD: 14/06/2012 - 22:06:26 - [0,017] ----D C:\ProgramData\Playrix Entertainment
O43 - CFD: 24/09/2012 - 08:47:13 - [0,010] ----D C:\ProgramData\QuickTime
O43 - CFD: 16/03/2012 - 02:53:07 - [4,602] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 08/04/2013 - 13:07:05 - [16,320] ----D C:\ProgramData\Roxio
O43 - CFD: 14/09/2012 - 05:19:06 - [2,004] ----D C:\ProgramData\SecTaskMan
O43 - CFD: 02/05/2013 - 10:03:05 - [0] ----D C:\ProgramData\SFR
O43 - CFD: 12/11/2012 - 08:39:51 - [51,270] ----D C:\ProgramData\Skype
O43 - CFD: 08/04/2013 - 13:29:08 - [0,001] ----D C:\ProgramData\Sonic
O43 - CFD: 22/01/2013 - 11:39:17 - [0,013] ----D C:\ProgramData\Sophos
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Start Menu
O43 - CFD: 05/06/2012 - 11:01:40 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 16/03/2012 - 03:09:47 - [0,177] ----D C:\ProgramData\Synaptics
O43 - CFD: 06/05/2013 - 12:45:18 - [0] ---AD C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:56 - [0] ----D C:\ProgramData\Templates
O43 - CFD: 27/07/2013 - 01:42:01 - [0,461] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 27/12/2012 - 23:05:10 - [-1626,370] ----D C:\ProgramData\WildTangent
O43 - CFD: 16/08/2012 - 05:42:19 - [1,235] ----D C:\ProgramData\Yahoo!  =>Toolbar.Yahoo
O43 - CFD: 24/06/2013 - 18:56:14 - [0,032] ----D C:\ProgramData\Yahoo! Companion  =>Toolbar.Yahoo
O43 - CFD: 15/11/2012 - 16:20:31 - [39,643] ----D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
O43 - CFD: 28/01/2013 - 10:16:40 - [0] ----D C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
O43 - CFD: 23/07/2013 - 22:44:07 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\.minecraft
O43 - CFD: 28/08/2013 - 12:21:54 - [54,706] ----D C:\Users\anthonybriere\AppData\Roaming\Adobe
O43 - CFD: 28/07/2013 - 11:05:49 - [0,074] ----D C:\Users\anthonybriere\AppData\Roaming\Ahead
O43 - CFD: 29/03/2013 - 14:35:22 - [0,169] ----D C:\Users\anthonybriere\AppData\Roaming\Apple Computer
O43 - CFD: 19/06/2013 - 09:38:54 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\ARA
O43 - CFD: 19/03/2013 - 21:18:15 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\AVS4YOU
O43 - CFD: 15/06/2012 - 07:21:08 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Canneverbe Limited
O43 - CFD: 05/08/2012 - 20:25:44 - [0,112] ----D C:\Users\anthonybriere\AppData\Roaming\CheckPoint
O43 - CFD: 18/07/2013 - 09:28:33 - [0,010] ----D C:\Users\anthonybriere\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
O43 - CFD: 03/12/2012 - 08:49:47 - [0,645] ----D C:\Users\anthonybriere\AppData\Roaming\COWON
O43 - CFD: 20/01/2013 - 12:23:33 - [0,449] ----D C:\Users\anthonybriere\AppData\Roaming\CVitae
O43 - CFD: 17/01/2013 - 19:40:03 - [0,184] ----D C:\Users\anthonybriere\AppData\Roaming\DivX
O43 - CFD: 26/09/2012 - 16:28:00 - [0,008] ----D C:\Users\anthonybriere\AppData\Roaming\Druide
O43 - CFD: 15/12/2012 - 04:50:19 - [0,000] ----D C:\Users\anthonybriere\AppData\Roaming\DuckLink
O43 - CFD: 30/06/2012 - 07:10:22 - [0,373] ----D C:\Users\anthonybriere\AppData\Roaming\EasyBurner
O43 - CFD: 24/09/2012 - 12:05:42 - [0,046] ----D C:\Users\anthonybriere\AppData\Roaming\Encyclopedie Hachette
O43 - CFD: 15/06/2012 - 21:06:02 - [5,991] ----D C:\Users\anthonybriere\AppData\Roaming\F4
O43 - CFD: 31/03/2013 - 06:31:38 - [7,467] ----D C:\Users\anthonybriere\AppData\Roaming\Free Download Manager
O43 - CFD: 11/06/2012 - 05:07:20 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\GetRightToGo
O43 - CFD: 11/07/2013 - 12:39:06 - [0,079] ----D C:\Users\anthonybriere\AppData\Roaming\GlarySoft
O43 - CFD: 07/08/2013 - 18:59:58 - [0,006] ----D C:\Users\anthonybriere\AppData\Roaming\Hewlett-Packard
O43 - CFD: 15/11/2012 - 14:49:26 - [0,827] ----D C:\Users\anthonybriere\AppData\Roaming\hpqlog
O43 - CFD: 05/06/2012 - 09:42:14 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Identities
O43 - CFD: 15/06/2013 - 16:43:43 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\IDT
O43 - CFD: 24/01/2013 - 18:11:19 - [0,022] ----D C:\Users\anthonybriere\AppData\Roaming\inkscape
O43 - CFD: 13/06/2013 - 02:29:19 - [0,001] ----D C:\Users\anthonybriere\AppData\Roaming\Intel Corporation
O43 - CFD: 14/11/2012 - 14:08:35 - [7,521] ----D C:\Users\anthonybriere\AppData\Roaming\IObit
O43 - CFD: 22/12/2012 - 07:04:18 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\iolo
O43 - CFD: 05/06/2012 - 09:48:44 - [0,058] ----D C:\Users\anthonybriere\AppData\Roaming\Macromedia
O43 - CFD: 25/02/2013 - 17:13:09 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\MAGIX
O43 - CFD: 06/06/2012 - 13:00:28 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Malwarebytes
O43 - CFD: 16/03/2012 - 11:36:09 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Media Center Programs
O43 - CFD: 09/04/2013 - 13:04:33 - [10,720] -S--D C:\Users\anthonybriere\AppData\Roaming\Microsoft
O43 - CFD: 30/04/2013 - 09:55:18 - [98,084] ----D C:\Users\anthonybriere\AppData\Roaming\Mozilla
O43 - CFD: 24/06/2012 - 07:18:29 - [0,049] ----D C:\Users\anthonybriere\AppData\Roaming\Need for Speed World
O43 - CFD: 16/11/2012 - 08:52:22 - [12,517] ----D C:\Users\anthonybriere\AppData\Roaming\OpenOffice.org
O43 - CFD: 30/12/2012 - 09:25:14 - [0,025] ----D C:\Users\anthonybriere\AppData\Roaming\PhotoScape
O43 - CFD: 14/06/2012 - 20:36:26 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\PlayFirst
O43 - CFD: 08/04/2013 - 13:29:18 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Roxio
O43 - CFD: 13/06/2012 - 06:36:36 - [0] R-H-D C:\Users\anthonybriere\AppData\Roaming\SecuROM
O43 - CFD: 25/12/2012 - 11:11:56 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\ShieldApps
O43 - CFD: 31/08/2013 - 01:40:40 - [8,317] ----D C:\Users\anthonybriere\AppData\Roaming\Skype
O43 - CFD: 20/01/2013 - 09:01:19 - [0,669] ----D C:\Users\anthonybriere\AppData\Roaming\Spider Player
O43 - CFD: 05/06/2012 - 09:42:50 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Synaptics
O43 - CFD: 18/07/2013 - 10:09:11 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Systweak
O43 - CFD: 27/07/2013 - 01:42:01 - [0,004] ----D C:\Users\anthonybriere\AppData\Roaming\TuneUp Software
O43 - CFD: 28/03/2013 - 13:06:47 - [0,015] ----D C:\Users\anthonybriere\AppData\Roaming\Uniblue
O43 - CFD: 28/07/2013 - 11:08:27 - [0,077] ----D C:\Users\anthonybriere\AppData\Roaming\vlc
O43 - CFD: 07/06/2012 - 13:58:56 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Windows Live Writer
O43 - CFD: 22/08/2012 - 20:47:04 - [0,000] ----D C:\Users\anthonybriere\AppData\Roaming\WinRAR
O43 - CFD: 16/08/2012 - 05:42:17 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Yahoo!  =>Toolbar.Yahoo
O43 - CFD: 14/09/2012 - 06:13:52 - [0,008] ----D C:\Users\anthonybriere\AppData\Roaming\_MDLogs
O43 - CFD: 29/06/2013 - 17:45:16 - [88,726] ----D C:\Users\anthonybriere\AppData\Local\Adobe
O43 - CFD: 29/03/2013 - 14:41:34 - [13,893] ----D C:\Users\anthonybriere\AppData\Local\adslTV
O43 - CFD: 24/06/2012 - 00:18:33 - [0] ----D C:\Users\anthonybriere\AppData\Local\Aeria Games
O43 - CFD: 28/07/2013 - 11:05:38 - [3,160] ----D C:\Users\anthonybriere\AppData\Local\Ahead
O43 - CFD: 03/12/2012 - 14:56:57 - [0] ----D C:\Users\anthonybriere\AppData\Local\Apple
O43 - CFD: 27/08/2013 - 16:57:47 - [0,082] ----D C:\Users\anthonybriere\AppData\Local\Apple Computer
O43 - CFD: 05/06/2012 - 09:37:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Application Data
O43 - CFD: 30/12/2012 - 21:59:50 - [86,306] ----D C:\Users\anthonybriere\AppData\Local\Beezik
O43 - CFD: 19/08/2013 - 18:36:31 - [0] ----D C:\Users\anthonybriere\AppData\Local\CrashDumps
O43 - CFD: 18/07/2013 - 11:29:04 - [0] ----D C:\Users\anthonybriere\AppData\Local\CRE
O43 - CFD: 14/10/2012 - 19:14:43 - [0,000] ----D C:\Users\anthonybriere\AppData\Local\DDMSettings
O43 - CFD: 04/12/2012 - 08:02:35 - [0,005] ----D C:\Users\anthonybriere\AppData\Local\DFX
O43 - CFD: 02/06/2013 - 01:01:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Diagnostics
O43 - CFD: 24/06/2012 - 06:54:53 - [0,004] ----D C:\Users\anthonybriere\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 09/06/2012 - 05:17:14 - [48,258] ----D C:\Users\anthonybriere\AppData\Local\Evernote
O43 - CFD: 15/06/2012 - 21:05:56 - [93,953] ----D C:\Users\anthonybriere\AppData\Local\F4
O43 - CFD: 27/05/2013 - 09:42:43 - [28,438] ----D C:\Users\anthonybriere\AppData\Local\Google
O43 - CFD: 07/06/2012 - 20:56:23 - [0,042] ----D C:\Users\anthonybriere\AppData\Local\Hewlett-Packard
O43 - CFD: 05/06/2012 - 10:49:27 - [0,003] ----D C:\Users\anthonybriere\AppData\Local\Hewlett-Packard_Company
O43 - CFD: 30/11/2012 - 14:45:17 - [0,000] ----D C:\Users\anthonybriere\AppData\Local\Hewlett-Packard_Developme
O43 - CFD: 05/06/2012 - 09:37:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Historique
O43 - CFD: 28/08/2013 - 21:29:03 - [156,486] ----D C:\Users\anthonybriere\AppData\Local\IM
O43 - CFD: 29/11/2012 - 21:25:46 - [0] ----D C:\Users\anthonybriere\AppData\Local\Learnpulse
O43 - CFD: 13/06/2012 - 20:19:55 - [0] ----D C:\Users\anthonybriere\AppData\Local\Macromedia
O43 - CFD: 04/07/2013 - 06:48:28 - [1,406] ----D C:\Users\anthonybriere\AppData\Local\Micro Application
O43 - CFD: 10/06/2013 - 11:16:47 - [360,660] ----D C:\Users\anthonybriere\AppData\Local\Microsoft
O43 - CFD: 17/09/2012 - 11:56:53 - [0,463] ----D C:\Users\anthonybriere\AppData\Local\Microsoft Games
O43 - CFD: 12/10/2012 - 16:01:00 - [0,209] ----D C:\Users\anthonybriere\AppData\Local\Microsoft Help
O43 - CFD: 08/04/2013 - 13:28:51 - [0,019] ----D C:\Users\anthonybriere\AppData\Local\MicroVision Applications
O43 - CFD: 05/07/2013 - 09:29:35 - [0,004] ----D C:\Users\anthonybriere\AppData\Local\Micro_Application
O43 - CFD: 05/06/2012 - 09:52:35 - [196,997] ----D C:\Users\anthonybriere\AppData\Local\Mozilla
O43 - CFD: 13/04/2013 - 17:41:31 - [0,062] ----D C:\Users\anthonybriere\AppData\Local\Nexway
O43 - CFD: 05/06/2012 - 15:46:07 - [0,193] ----D C:\Users\anthonybriere\AppData\Local\NPE
O43 - CFD: 26/08/2013 - 21:36:57 - [0,007] ----D C:\Users\anthonybriere\AppData\Local\piratrax
O43 - CFD: 25/03/2013 - 21:39:39 - [0] ----D C:\Users\anthonybriere\AppData\Local\Programs
O43 - CFD: 05/06/2012 - 09:40:02 - [0,000] ----D C:\Users\anthonybriere\AppData\Local\RemEngine
O43 - CFD: 08/04/2013 - 13:25:12 - [0] ----D C:\Users\anthonybriere\AppData\Local\Roxio
O43 - CFD: 03/10/2012 - 12:16:48 - [3,152] ----D C:\Users\anthonybriere\AppData\Local\SFR
O43 - CFD: 31/08/2013 - 01:39:35 - [3,313] ----D C:\Users\anthonybriere\AppData\Local\Temp
O43 - CFD: 05/06/2012 - 09:37:42 - [0] ----D C:\Users\anthonybriere\AppData\Local\Temporary Internet Files
O43 - CFD: 11/01/2013 - 00:45:26 - [422,963] ----D C:\Users\anthonybriere\AppData\Local\VirtualStore
O43 - CFD: 10/06/2013 - 11:16:46 - [0,074] ----D C:\Users\anthonybriere\AppData\Local\Windows Live
O43 - CFD: 07/06/2012 - 13:59:03 - [0,618] ----D C:\Users\anthonybriere\AppData\Local\Windows Live Writer
O43 - CFD: 25/02/2013 - 23:33:26 - [0,690] ----D C:\Users\anthonybriere\AppData\Local\Xara
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 15/05/2013 - 11:55:06 - [0,000] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 29/03/2013 - 14:35:36 - [0,012] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
O43 - CFD: 24/06/2012 - 00:14:06 - [0] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 19/03/2013 - 21:18:03 - [0,001] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 15/01/2013 - 12:36:15 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CVitaeV4
O43 - CFD: 15/11/2012 - 08:07:52 - [0,000] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 13/06/2012 - 06:35:08 - [0,005] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameShadow
O43 - CFD: 01/07/2013 - 07:03:56 - [0,002] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LinuxLive USB Creator
O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/06/2012 - 18:32:23 - [0,004] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Piratrax
O43 - CFD: 17/08/2013 - 16:19:17 - [0,001] R---D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/01/2013 - 10:16:47 - [0,003] ----D C:\Users\anthonybriere\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ 1 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 323 Scanned in 02mn 42s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.0C0F8C989FD56CCAF88CD24B1F30AEC5] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1564948]
O44 - LFC:[MD5.65108FFB5386D5CB0F8391303E328158] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [108608]
O44 - LFC:[MD5.2FB96377B014D2D882D4DCE6694F5FD6] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [133630]
O44 - LFC:[MD5.6C787D4CFC2BDC3248F93CAAA26E2099] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [620924]
O44 - LFC:[MD5.7A32AA2DA30B18B9A3D572FAE57736C7] - 30/08/2013 - 22:01:44 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [709940]
O44 - LFC:[MD5.0C0F8C989FD56CCAF88CD24B1F30AEC5] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1564948]
O44 - LFC:[MD5.65108FFB5386D5CB0F8391303E328158] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfc009.dat   [108608]
O44 - LFC:[MD5.2FB96377B014D2D882D4DCE6694F5FD6] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat   [133630]
O44 - LFC:[MD5.6C787D4CFC2BDC3248F93CAAA26E2099] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfh009.dat   [620924]
O44 - LFC:[MD5.7A32AA2DA30B18B9A3D572FAE57736C7] - 30/08/2013 - 22:01:44 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat   [709940]
O44 - LFC:[MD5.DD7A97049C973D5459B147885445E835] - 30/08/2013 - 21:58:33 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1169706]
O44 - LFC:[MD5.780CFC752454F0DFC360C29F87AC78B5] - 30/08/2013 - 20:25:56 ---A- . (...) -- C:\PDOXUSRS.NET   [13030]
O44 - LFC:[MD5.1DF9A01FB7077CC96E7183A69F79BD5D] - 30/08/2013 - 20:17:56 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
O44 - LFC:[MD5.655B4AE5FF173AF8949E321DAA5C583E] - 30/08/2013 - 17:39:37 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT   [2591096]
O44 - LFC:[MD5.655B4AE5FF173AF8949E321DAA5C583E] - 30/08/2013 - 17:39:37 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT   [2591096]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 30/08/2013 - 17:37:00 ---A- . (...) -- C:\Windows\setupact.log   [56]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 30/08/2013 - 17:37:00 ---A- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.B5F4682BD867A167ED610985277DC2BE] - 30/08/2013 - 17:36:41 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/08/2013 - 18:17:56 ---A- . (...) -- C:\Windows\SysNative\HP_ActiveX_Patch_NOT_DETECTED.txt   [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/08/2013 - 18:17:56 RSHAD . (...) -- C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt   [0]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:29:50 ----- . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\SysNative\4014.tmp   [6144]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:29:50 RSHAD . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\System32\4014.tmp   [6144]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:01:15 ----- . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\SysNative\14AF.tmp   [6144]
O44 - LFC:[MD5.1595FECFFBE9EA2417E06D5FD0BFA4C4] - 26/08/2013 - 08:01:15 RSHAD . (.Sophos Plc - Memsweep kernel driver.) -- C:\Windows\System32\14AF.tmp   [6144]
O44 - LFC:[MD5.DD0443BC6CC78A19FD399817F8C51401] - 22/08/2013 - 06:15:18 RSHAD . (...) -- C:\Windows\System32\Drivers\SmartDefragDriver.sys   [17720]
~ Files: 25 Scanned in 00mn 45s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.08338C9C0AC199E377C1811590C49ACB] - 14/08/2013 - 02:38:00 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.9F52F91607E713DC4FA8D94A126D8322] - 24/08/2013 - 20:58:34 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.85555B63AF5E1A53CE26962D7A44835F] - 28/08/2013 - 20:23:23 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.C80CB20367137D3B9F47297B06002F1F] - 28/08/2013 - 22:56:39 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
O45 - LFCP:[MD5.08240A996036A97147F033418568B50D] - 29/08/2013 - 09:49:18 ---A- - C:\Windows\Prefetch\JP2LAUNCHER.EXE-6240744E.pf
O45 - LFCP:[MD5.C53B22226DB1A9E46008C5ABBEA51711] - 29/08/2013 - 09:49:19 ---A- - C:\Windows\Prefetch\JAVA.EXE-07FE5A9A.pf
O45 - LFCP:[MD5.56D71BD2205634934A78319A9D2871FD] - 29/08/2013 - 11:10:36 ---A- - C:\Windows\Prefetch\HPUSERINFO64.EXE-C5B6C7DA.pf
O45 - LFCP:[MD5.589AB28DC8FC62806425596BDB049224] - 29/08/2013 - 11:45:27 ---A- - C:\Windows\Prefetch\HPSFUPDATER.EXE-85E87A15.pf
O45 - LFCP:[MD5.9FCB100835CFBB943A49D59540A513E1] - 29/08/2013 - 18:36:15 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf
O45 - LFCP:[MD5.06B2B8D05994C8B9A8A619FD48B1B87E] - 29/08/2013 - 18:39:07 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:[MD5.6C309518F7239547CF84E89FB7C355C8] - 29/08/2013 - 22:45:51 ---A- - C:\Windows\Prefetch\SETUP.EXE-BF56A2D1.pf
O45 - LFCP:[MD5.6FC945CD3A413E874C9E470753C4FD92] - 29/08/2013 - 22:45:56 ---A- - C:\Windows\Prefetch\29.0.1547.62_29.0.1547.57_CHR-0849AA6C.pf
O45 - LFCP:[MD5.98DF253C3B57B53735623A1453B78C0A] - 29/08/2013 - 22:46:01 ---A- - C:\Windows\Prefetch\SETUP.EXE-FBBB264C.pf
O45 - LFCP:[MD5.9966B1B65F6EF8EB70E40ACDEF21EE17] - 29/08/2013 - 23:00:03 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf
O45 - LFCP:[MD5.6E8B6A27E4BBDD4A16A2B6A06EAE1897] - 29/08/2013 - 23:00:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:[MD5.D37EADBDBFF249E089B97DB1DDC7EB3F] - 29/08/2013 - 23:00:11 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:[MD5.AAC5E71D4C74332B93993FDD08C69B5D] - 29/08/2013 - 23:30:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf
O45 - LFCP:[MD5.B4432604204E40D2184AB4DBA8349488] - 30/08/2013 - 10:16:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-67751737.pf
O45 - LFCP:[MD5.A630D1BC9FBD26EA034EA6A1FB11A029] - 30/08/2013 - 10:20:39 ---A- - C:\Windows\Prefetch\INCMAIL.EXE-F91AEC10.pf
O45 - LFCP:[MD5.EB648D9D24ED41E7E4F64E9155A92050] - 30/08/2013 - 10:20:42 ---A- - C:\Windows\Prefetch\IMAPP.EXE-3E2B42CA.pf
O45 - LFCP:[MD5.1607359E3F39166C8B8ED30F81E33176] - 30/08/2013 - 11:26:05 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.BF0D15AB401C8FC16FA7BB47476DD757] - 30/08/2013 - 11:31:21 ---A- - C:\Windows\Prefetch\WATADMINSVC.EXE-082508A5.pf
O45 - LFCP:[MD5.1648C8AA857673DE2AB0170186388D18] - 30/08/2013 - 11:31:22 ---A- - C:\Windows\Prefetch\SLUI.EXE-724E99D9.pf
O45 - LFCP:[MD5.7DD1D5EDC0A4FBB8500A20B1DB1B695D] - 30/08/2013 - 13:51:36 ---A- - C:\Windows\Prefetch\EXCEL.EXE-A3633949.pf
O45 - LFCP:[MD5.47E3729EB3BCF024466CCEA04E8BF04C] - 30/08/2013 - 15:11:58 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.F6CB90E47F49AD523EFCA1CD0626D799] - 30/08/2013 - 15:13:33 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.314ABB106DA64BF0E04CB9ED3FC92913] - 30/08/2013 - 15:13:49 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.157.478.0.EXE-892DE87D.pf
O45 - LFCP:[MD5.6DE376EF9F11C50DD9197AE34BA44A7C] - 30/08/2013 - 15:13:52 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-6394ED2D.pf
O45 - LFCP:[MD5.FA5D7885B918DC7ABAFF583018F17153] - 30/08/2013 - 15:13:52 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
O45 - LFCP:[MD5.2B8F8B03CF22C336828844ADDBF4DF38] - 30/08/2013 - 17:07:27 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-779BD542.pf  =>Piriform Ltd
O45 - LFCP:[MD5.91132E0FB35A130D8AFD23926F91198A] - 30/08/2013 - 17:12:05 ---A- - C:\Windows\Prefetch\INTEGRATOR.EXE-6236533A.pf
O45 - LFCP:[MD5.CA2441CDC98C31B39DBC881213D99F1A] - 30/08/2013 - 17:28:01 ---A- - C:\Windows\Prefetch\ZHP 2013(3).TMP-B9AE13AD.pf
O45 - LFCP:[MD5.38FD3FDEEC64BA31E26B31317B341BCF] - 30/08/2013 - 17:28:04 ---A- - C:\Windows\Prefetch\ZHP 2013(3).EXE-ABA61F6A.pf
O45 - LFCP:[MD5.C032CDDF5BA5C2743D8734349BBFBD66] - 30/08/2013 - 17:28:05 ---A- - C:\Windows\Prefetch\ZHP 2013(3).TMP-BAAC9A7D.pf
O45 - LFCP:[MD5.98D6EC35C6FCCE2F4A679C7F8FE1F683] - 30/08/2013 - 17:28:15 ---A- - C:\Windows\Prefetch\ADDALIAS.EXE-062D0F59.pf
O45 - LFCP:[MD5.E5CA0D1AC3F8E127473FF26D8831CF42] - 30/08/2013 - 17:28:15 ---A- - C:\Windows\Prefetch\MINIREG.EXE-B4E53719.pf
O45 - LFCP:[MD5.8AD9D5B2E62E61CD33BF17795218B592] - 30/08/2013 - 17:32:40 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf
O45 - LFCP:[MD5.13AA5D9B1859F56293A91AFA781F9F68] - 30/08/2013 - 17:34:53 ---A- - C:\Windows\Prefetch\IMBPP.EXE-BF2AD1FF.pf
O45 - LFCP:[MD5.92453C82B51F42655CE4CDFB969402C7] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf
O45 - LFCP:[MD5.A1A9753BF0C1B05FF1379D8A1B195017] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\AVASTSVC.EXE-AEB722C6.pf
O45 - LFCP:[MD5.A9CB33FD3EAC0117B0BD321E5A9ADD3F] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\SPOOLSV.EXE-D1F6B8B6.pf
O45 - LFCP:[MD5.E872BEE171016B55200492342993713E] - 30/08/2013 - 17:39:31 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-FEDB32D0.pf
O45 - LFCP:[MD5.BF3B4637DAF3E2F73FEF3C07675D6683] - 30/08/2013 - 17:39:40 ---A- - C:\Windows\Prefetch\SECUREUPDATE.EXE-1E40B7E7.pf
O45 - LFCP:[MD5.98F227F938C36774A95DBC2B54769AEA] - 30/08/2013 - 17:39:50 ---A- - C:\Windows\Prefetch\SC.EXE-1CF1DE92.pf
O45 - LFCP:[MD5.8365F4D5105C477725E547923F9B7239] - 30/08/2013 - 17:39:50 ---A- - C:\Windows\Prefetch\UPGRADE.EXE-E4A5AABF.pf
O45 - LFCP:[MD5.1D1932F0D2DF4269C5B497157E3E0832] - 30/08/2013 - 17:40:31 ---A- - C:\Windows\Prefetch\HPCONNECTIONMANAGER.EXE-4032C2F3.pf
O45 - LFCP:[MD5.BF4FCF06C9B5777A638FBCAAFB81E93C] - 30/08/2013 - 17:40:57 ---A- - C:\Windows\Prefetch\HPQWMIEX.EXE-FAAC8C6F.pf
O45 - LFCP:[MD5.58F3180C247DF2028D0855AC8E0C70D0] - 30/08/2013 - 17:40:58 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.BE78B03BCE87A399F163802BD8BD839A] - 30/08/2013 - 17:41:00 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf
O45 - LFCP:[MD5.F8B59058D9F2B7E2A5E0A57B8AD117B1] - 30/08/2013 - 17:41:03 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf
O45 - LFCP:[MD5.00B548C2DFA261E0B91C72CE73B5000E] - 30/08/2013 - 17:41:07 ---A- - C:\Windows\Prefetch\LPKSETUP.EXE-90F505D8.pf
O45 - LFCP:[MD5.08312BF44BD915E028A70499363661A8] - 30/08/2013 - 17:41:19 ---A- - C:\Windows\Prefetch\AUTOUPDATE.EXE-E77B6320.pf
O45 - LFCP:[MD5.AEC99EA2F68F21402DDC972DB8674F17] - 30/08/2013 - 17:41:19 ---A- - C:\Windows\Prefetch\KEYTOOL.EXE-17AA66E3.pf
O45 - LFCP:[MD5.66D8B9606F9A8E677108335856F24F16] - 30/08/2013 - 17:41:23 ---A- - C:\Windows\Prefetch\SYNTPHELPER.EXE-0A20AAC4.pf
O45 - LFCP:[MD5.4978C04458D92514480986907D2C7CC9] - 30/08/2013 - 17:41:30 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf
O45 - LFCP:[MD5.A5F6D8644E4E95574D8C3AC3E4AE0A63] - 30/08/2013 - 17:42:06 ---A- - C:\Windows\Prefetch\HPCMSRV.EXE-90C8761B.pf
O45 - LFCP:[MD5.AEBB4A805C0FADE716B317D867A877FC] - 30/08/2013 - 17:42:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf
O45 - LFCP:[MD5.15557E1A48AA9A1759C96F23FA48364C] - 30/08/2013 - 17:42:46 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.03AB2551A62CAA04A46812B42C75CFCA] - 30/08/2013 - 17:42:47 ---A- - C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf
O45 - LFCP:[MD5.33D0F3E356E45F9E4620D6F3F0309BCB] - 30/08/2013 - 17:42:49 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf
O45 - LFCP:[MD5.25BABF059BDC083692D5CCB47C5742D9] - 30/08/2013 - 17:43:06 ---A- - C:\Windows\Prefetch\HPSA_SERVICE.EXE-AD6579F0.pf
O45 - LFCP:[MD5.F9A2DA41A85DC4B82DB7F1473FFF00C6] - 30/08/2013 - 17:43:13 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-C086B157.pf
O45 - LFCP:[MD5.75F419A4E0DB485BD738F20A83D80864] - 30/08/2013 - 17:43:35 ---A- - C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf
O45 - LFCP:[MD5.9D613671BE9EAD21970436EDF51F7533] - 30/08/2013 - 17:43:36 ---A- - C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf
O45 - LFCP:[MD5.FB85CE808618A4BF0B95C5671D01AAA9] - 30/08/2013 - 17:43:52 ---A- - C:\Windows\Prefetch\LMS.EXE-8C70F87D.pf
O45 - LFCP:[MD5.98CBE58527ECDBDF01F1E21E866B316B] - 30/08/2013 - 17:43:56 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:[MD5.FA6EC551ABDF22EFD9BA83C10E03ACA8] - 30/08/2013 - 17:44:16 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf
O45 - LFCP:[MD5.8862D66C42E1B28C9759B47BE9881985] - 30/08/2013 - 17:44:17 ---A- - C:\Windows\Prefetch\DELAYLOAD.EXE-36BAD4B7.pf
O45 - LFCP:[MD5.61B67AA7D097940326B75E2E8654B80E] - 30/08/2013 - 17:45:09 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf
O45 - LFCP:[MD5.27C3009DAC3EE679367165ED5E746689] - 30/08/2013 - 17:45:32 ---A- - C:\Windows\Prefetch\UNS.EXE-E6E49771.pf
O45 - LFCP:[MD5.764C7BD15C7977D1EED323505640C35B] - 30/08/2013 - 17:50:39 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.E987DA16740FF689F8A215E7F47A7815] - 30/08/2013 - 17:50:40 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-02CC9EFF.pf
O45 - LFCP:[MD5.0A04913DA474D6729BB596636E322F7C] - 30/08/2013 - 17:51:38 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:[MD5.D9E22F7A47076B70A0DA13C23BEFDCFA] - 30/08/2013 - 17:52:02 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf
O45 - LFCP:[MD5.ACFDC0A9B0CDC26CB8E2363B6081A736] - 30/08/2013 - 17:52:54 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E7777CC4.pf
O45 - LFCP:[MD5.7BEFA6B3CB2049FE0F201B6C6C120650] - 30/08/2013 - 20:09:30 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-D066635E.pf
O45 - LFCP:[MD5.FBE5A34D6310ED1E1FA3CC250A3FA098] - 30/08/2013 - 20:10:01 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf
O45 - LFCP:[MD5.CEC8A89153FD9B48554E3E5DBEE87E82] - 30/08/2013 - 20:10:36 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-03FFF510.pf
O45 - LFCP:[MD5.C49A9BC3C4CB40186868E13CB4337493] - 30/08/2013 - 20:10:44 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-2023FAA8.pf
O45 - LFCP:[MD5.0D7DB1874C0B9EB23B471A37E0C9EB12] - 30/08/2013 - 20:10:45 ---A- - C:\Windows\Prefetch\REG.EXE-4978446A.pf
O45 - LFCP:[MD5.6F810AC07E29D129140BA1A30657E2CA] - 30/08/2013 - 20:10:46 ---A- - C:\Windows\Prefetch\ZHPFIX.EXE-32786FC2.pf
O45 - LFCP:[MD5.9C02861A4C823C017419CF11796815F3] - 30/08/2013 - 20:11:21 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf
O45 - LFCP:[MD5.743E026985AA4D7B21B00B8CB254CAA7] - 30/08/2013 - 20:14:29 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-F1B02F03.pf
O45 - LFCP:[MD5.7A1E20BD1F945BA0EB2F2C1F2D3AEC05] - 30/08/2013 - 20:14:30 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_8_800_94-5FD421D3.pf
O45 - LFCP:[MD5.6A139C53234B6D1F3B92A3EDEE94AE57] - 30/08/2013 - 20:14:53 ---A- - C:\Windows\Prefetch\LADS.EXE-046BC4A8.pf
O45 - LFCP:[MD5.CF6E50981816BEC8E2428682FC234BD2] - 30/08/2013 - 20:16:00 ---A- - C:\Windows\Prefetch\NSLOOKUP.EXE-8DBC12C3.pf
O45 - LFCP:[MD5.0018E91FB3522E82E5F4BAD027BBFF22] - 30/08/2013 - 20:17:56 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-2CA9EB2F.pf
O45 - LFCP:[MD5.B80337B71829DDA3A309DB9CC3EDFC0A] - 30/08/2013 - 20:19:47 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.F92D37008299B47E9FBC79FEF98DDFF0] - 30/08/2013 - 20:19:51 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.2CDFCC1F9631413891DB4BA79AF22871] - 30/08/2013 - 20:19:52 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-1605FA5B.pf
O45 - LFCP:[MD5.E064BC7C0E74BC1F49667161337DFD83] - 30/08/2013 - 20:19:52 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.09D712B819F696F82BA8AF1C9470E6AD] - 30/08/2013 - 21:58:23 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:[MD5.632C46EEEFBC241E905C80955607AEF8] - 30/08/2013 - 21:58:35 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.960A12CE8BE9B4C84D4BE0B9977A4B8D] - 30/08/2013 - 21:58:35 ---A- - C:\Windows\Prefetch\WIRELESSOFFMSG.EXE-286C32A5.pf
O45 - LFCP:[MD5.A345EF9D1BA3891C84BFF2AC63D161CD] - 30/08/2013 - 21:58:37 ---A- - C:\Windows\Prefetch\HPCASLNOTIFICATION.EXE-F1274B82.pf
O45 - LFCP:[MD5.FED300396418C79BD191FCE2FA327170] - 30/08/2013 - 21:58:42 ---A- - C:\Windows\Prefetch\AVAST.SETUP-B1D66586.pf
O45 - LFCP:[MD5.DFC0E0695FFFA577BC881CD7D7D0B053] - 30/08/2013 - 21:59:09 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-6EF4B603.pf
O45 - LFCP:[MD5.CF9900B044891C20F2DA77A6BD89AD06] - 30/08/2013 - 21:59:18 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-3B5B9E84.pf
O45 - LFCP:[MD5.E949E0409F580A3694B81B27C76B165E] - 30/08/2013 - 21:59:36 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.0C98F64F0BA5DA7A4AFBF3AA78311848] - 30/08/2013 - 21:59:42 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.29657084BD33E5B12A310D912DEA6737] - 30/08/2013 - 22:02:41 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3091538384-1223758719-1488994814-1000.db
O45 - LFCP:[MD5.1C865D8A05825E248B6E345C65C06913] - 30/08/2013 - 22:02:41 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-3091538384-1223758719-1488994814-1000.db
O45 - LFCP:[MD5.A7A5561887EA1EE764CBAAC53BDB0605] - 30/08/2013 - 22:20:59 ---A- - C:\Windows\Prefetch\SKYPE.EXE-E71BF59F.pf
O45 - LFCP:[MD5.A5A363E878C810FF470D0942044735EF] - 30/08/2013 - 22:21:05 ---A- - C:\Windows\Prefetch\UPDATER.EXE-EA1310CB.pf
O45 - LFCP:[MD5.0E06E14363DB5B77EEFEF0057B3C1FD6] - 30/08/2013 - 22:21:12 ---A- - C:\Windows\Prefetch\IELOWUTIL.EXE-903B8AC1.pf
O45 - LFCP:[MD5.64056127F29FED2B200D21AC15FDB449] - 30/08/2013 - 22:27:23 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf
O45 - LFCP:[MD5.E0F11227A4D451B25B03175171F81C0B] - 30/08/2013 - 23:55:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf
O45 - LFCP:[MD5.6CFABBEC87A20AB9B1341E104E5ED29A] - 30/08/2013 - 23:55:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.EE2B7693FB7C8759257E0098A681B8B7] - 31/08/2013 - 00:03:57 ---A- - C:\Windows\Prefetch\IMNOTFY.EXE-53DEA81D.pf
O45 - LFCP:[MD5.7BB9C46FD3700DC28366FDF2B300A163] - 31/08/2013 - 00:08:15 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf
O45 - LFCP:[MD5.9F547273AAAB2FC6A887374704F7A71C] - 31/08/2013 - 00:15:56 ---A- - C:\Windows\Prefetch\IMLPP.EXE-C9266A11.pf
O45 - LFCP:[MD5.1A0E750D328A863E82F55C05F619FDBA] - 31/08/2013 - 00:36:59 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.8E045BAF9465AE62B1422F702B78B714] - 31/08/2013 - 00:36:59 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.2F88283069835F1CC02FA6BD1AE42CDE] - 31/08/2013 - 00:36:59 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.346F6076C8F2125DF1E52A676F4D3C66] - 31/08/2013 - 00:37:00 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.800C5F1CB1F8EE5AEBCE2D0205D00E5B] - 31/08/2013 - 00:37:00 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.D5888CE1AB75DB335A6744C4A0A436CA] - 31/08/2013 - 00:37:03 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-6E0B8A49.pf
O45 - LFCP:[MD5.0E7223B338CCC3E97E506FAA56946195] - 31/08/2013 - 00:37:06 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.53170752ECDD5CECFDEF75325087C5BC] - 31/08/2013 - 00:37:09 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-EBD3B8D7.pf
O45 - LFCP:[MD5.68FDA841854B493FA727B5777FD52B2A] - 31/08/2013 - 00:37:10 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf
O45 - LFCP:[MD5.2BDC4A9DC0B704F86E24215CE34FC4D5] - 31/08/2013 - 00:37:12 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A8DE6D5B.pf
O45 - LFCP:[MD5.C4AA7D3878B689DD1F7E624DDDC1651C] - 31/08/2013 - 00:37:13 ---A- - C:\Windows\Prefetch\ZHP2.EXE-B86E8D5A.pf
O45 - LFCP:[MD5.E55BEEE913E695F34D17947530E389FD] - 31/08/2013 - 00:37:19 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf
O45 - LFCP:[MD5.61756AEEB36749F66356F7CAE0B09BD7] - 31/08/2013 - 00:37:24 ---A- - C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf
O45 - LFCP:[MD5.04DBF66839B4E475E26207A14EDF8285] - 31/08/2013 - 00:37:24 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
O45 - LFCP:[MD5.18AA7167B5E0B4E35DEBE3934F781180] - 31/08/2013 - 00:37:24 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-0FB3F22C.pf
O45 - LFCP:[MD5.2AA10A7313786896A87FDFE3EFF362FC] - 31/08/2013 - 00:37:29 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-6768A320.pf
O45 - LFCP:[MD5.0DE7557AB2A7AEBF1043BE40D7358C51] - 31/08/2013 - 00:37:30 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.1BF6C89AE2A6351B5313A146D4ED66DA] - 31/08/2013 - 00:38:21 ---A- - C:\Windows\Prefetch\PV.EXE-34B75B82.pf
O45 - LFCP:[MD5.8BF04906D99E9577DBAA4611FFABB78E] - 31/08/2013 - 00:38:29 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-AB0CE9D9.pf
O45 - LFCP:[MD5.22CA5169E7569EAB4A1F382A4BDEABE2] - 31/08/2013 - 00:38:42 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-AD598958.pf
O45 - LFCP:[MD5.65F273C6371DCBEE51725809070C2EB3] - 31/08/2013 - 00:38:55 ---A- - C:\Windows\Prefetch\WINWORD.EXE-7D220BFE.pf
O45 - LFCP:[MD5.593C45347917B5B1ADFB2EA1D6FAD832] - 31/08/2013 - 00:39:57 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
O45 - LFCP:[MD5.321203676C85958A0229974665235EB1] - 31/08/2013 - 00:39:58 ---A- - C:\Windows\Prefetch\OSPPSVC.EXE-E53D3CC0.pf
O45 - LFCP:[MD5.9BF86D867E1D87B77085CE0E3827B60A] - 31/08/2013 - 00:40:28 ---A- - C:\Windows\Prefetch\SPLWOW64.EXE-297C4568.pf
O45 - LFCP:[MD5.B139292C743473B26CCA50AE8AF03E41] - 31/08/2013 - 00:41:01 ---A- - C:\Windows\Prefetch\ADM.EXE-8CEF4B54.pf
~ Prefetcher: 136 Scanned in 00mn 02s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\procexp90.Sys . (...) -- C:\Windows\System32\Drivers\procexp90.Sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\procexp90.Sys . (...) -- C:\Windows\System32\Drivers\procexp90.Sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 15 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\adm_tray.exe  [Key] . (.Acronis - ADM System Tray Application.) -- C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM  [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Photo Downloader  [Key] . (.Adobe Systems Incorporated - Adobe Photo Downloader 3.0 component.) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\apdproxy.exe
O53 - SMSR:HKLM\...\startupreg\Advanced SystemCare 6  [Key] . (.IObit - ASCTray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
O53 - SMSR:HKLM\...\startupreg\agentantidote.exe  [Key] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe
O53 - SMSR:HKLM\...\startupreg\agentantidote64.exe  [Key] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe
O53 - SMSR:HKLM\...\startupreg\APSDaemon  [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}  [Key] . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
O53 - SMSR:HKLM\...\startupreg\BingDesktop  [Key] . (.Microsoft Corp. - Bing Desktop Application.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
O53 - SMSR:HKLM\...\startupreg\DFX  [Key] . (...) -- C:\Program Files (x86)\DFX\DFX.exe
O53 - SMSR:HKLM\...\startupreg\DivXMediaServer  [Key] . (.DivX, LLC - DivX DLNA Media Server.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O53 - SMSR:HKLM\...\startupreg\DivXUpdate  [Key] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
O53 - SMSR:HKLM\...\startupreg\DuckCapture  [Key] . (.DuckLink Software - DuckLink Screen Capture.) -- C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe
O53 - SMSR:HKLM\...\startupreg\Easybits Recovery  [Key] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O53 - SMSR:HKLM\...\startupreg\Free Download Manager  [Key] . (.FreeDownloadManager.ORG - Free Download Manager.) -- C:\Program Files (x86)\Free Download Manager\fdm.exe
O53 - SMSR:HKLM\...\startupreg\IObit Malware Fighter  [Key] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task  [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O53 - SMSR:HKLM\...\startupreg\RoxioDragToDisc  [Key] . (.Roxio - Drag To Disc Application.) -- C:\Program Files (x86)\Roxio\Drag-to-Disc\DrgToDsc.exe
O53 - SMSR:HKLM\...\startupreg\Service Planificateur2 Acronis  [Key] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched  [Key] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O53 - SMSR:HKLM\...\startupreg\SysTrayApp  [Key] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O53 - SMSR:HKLM\...\startupreg\UnlockerAssistant  [Key] . (...) -- C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe (.not file.)
~ SMSR Keys: 22 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1
~ MWPE Keys: 1 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.899B7E724BF19F17978B6A37B864A277] - 24/09/2012 - 12:40:56 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys   [43840]
O58 - SDL:[MD5.577C79B8F5C6A6925F6EF0AE1B0D4051] - 25/08/2010 - 18:39:00 ---A- . (...) -- C:\Windows\System32\prwntdrv.sys   [16776]
O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys   [38224]
O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 01/01/2005 - 10:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\SysWOW64\npptNT2.sys   [4682]
~ Drivers: 17 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 28/08/2013 - 08:28:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Hewlett-Packard\HPCEE.exe_Url_pzhsl5v0i1efivcm1patkorkz2ji0v0q\6.0.1.8\user.config   [5745]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Mots-clés.psp   [344]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Nouveaux formats doc.psp   [370]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Palette Scripts.psp.lnk   [21141]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Photoshop\8.0\Paramètres Adobe Photoshop CS\Préfs Adobe Photoshop CS.psp   [129443]
O61 - LFC: 28/08/2013 - 11:21:54 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Workflow\settings.xml   [2952]
O61 - LFC: 28/08/2013 - 11:41:13 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings   [24]
O61 - LFC: 28/08/2013 - 11:41:13 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav   [36]
O61 - LFC: 28/08/2013 - 11:41:13 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav   [54]
O61 - LFC: 28/08/2013 - 18:18:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Hewlett-Packard\HP Support Framework\cee\2437702013.cee   [1996]
O61 - LFC: 28/08/2013 - 19:22:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img9EDF.htm   [298]
O61 - LFC: 28/08/2013 - 19:22:41 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_full_service[1].swf   [22448]
O61 - LFC: 28/08/2013 - 19:22:44 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_gives_more_chubycons[1].swf   [13108]
O61 - LFC: 28/08/2013 - 19:22:45 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_sv.ix   [8]
O61 - LFC: 28/08/2013 - 19:22:46 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_a.ix   [910]
O61 - LFC: 28/08/2013 - 19:23:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_plus_incredibackup[1].swf   [11810]
O61 - LFC: 28/08/2013 - 19:23:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_red_remove_ad_plus[1].swf   [17241]
O61 - LFC: 28/08/2013 - 19:23:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gg_1000s_best_email_bg[1].swf   [48443]
O61 - LFC: 28/08/2013 - 19:23:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left_gold_234x60[1].swf   [30464]
O61 - LFC: 28/08/2013 - 19:24:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_potection_center_spam[1].swf   [12911]
O61 - LFC: 28/08/2013 - 19:24:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left2_gold_234x60[1].swf   [14435]
O61 - LFC: 28/08/2013 - 19:24:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gold_necktie[1].swf   [5948]
O61 - LFC: 28/08/2013 - 19:24:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\gg_mx[1].swf   [40197]
O61 - LFC: 28/08/2013 - 19:25:48 ---A- . (...) -- C:\Users\anthonybriere\Downloads\RogueKiller(5).exe   [913408]
O61 - LFC: 28/08/2013 - 19:42:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_a.ix   [910]
O61 - LFC: 28/08/2013 - 19:42:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_sv.ix   [8]
O61 - LFC: 28/08/2013 - 20:21:09 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img3E1C.htm   [298]
O61 - LFC: 28/08/2013 - 20:21:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BE43516D-950E-4A1B-9764-9E515E0B60BE}\Show\20409_~33.GIF   [44898]
O61 - LFC: 28/08/2013 - 20:21:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BE43516D-950E-4A1B-9764-9E515E0B60BE}\Show\SENDER_EMAILrbarbeau@sfr@@fr2.png   [3543]
O61 - LFC: 28/08/2013 - 20:21:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BE43516D-950E-4A1B-9764-9E515E0B60BE}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [24902]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Barbeau_rené.imm   [9257000]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BF4E83D3-8718-413A-B371-155D7E87CABA}\Show\ATT1.txt   [42]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BF4E83D3-8718-413A-B371-155D7E87CABA}\Show\ATT2.htm   [2880]
O61 - LFC: 28/08/2013 - 20:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{BF4E83D3-8718-413A-B371-155D7E87CABA}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [5928]
O61 - LFC: 28/08/2013 - 20:21:21 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{4F7F1F3D-F175-4630-A073-450061527AB5}\Show\textPartPrev.html   [3842]
O61 - LFC: 28/08/2013 - 20:29:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{FDF28935-04A9-4BE0-8771-45B508856623}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 28/08/2013 - 20:29:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv5EB2.htm   [78]
O61 - LFC: 28/08/2013 - 21:55:07 ---A- . (.Mozilla.) -- C:\Users\anthonybriere\Downloads\mozilla-firefox_23-0-1_fr_11003.exe   [22558568]
O61 - LFC: 28/08/2013 - 23:03:41 ---A- . (...) -- C:\Users\anthonybriere\Downloads\Unidialog_0659778A_1377727430963.pdf   [186240]
O61 - LFC: 29/08/2013 - 10:42:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1865\kc_plus_20x22.png   [1101]
O61 - LFC: 29/08/2013 - 10:42:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{2FB2B765-BDB0-43BA-A264-EC6377063A5C}\SWH.dat   [416]
O61 - LFC: 29/08/2013 - 10:42:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{2FB2B765-BDB0-43BA-A264-EC6377063A5C}\SWSB.dat   [236]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1864\kc_gg_20x22.png   [1152]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1866\kc_pc_20x22.png   [1158]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\1962\kc_gallery_20x22.png   [736]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\100\2026\KC3.png   [1724]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1860\ic_gg_20x18.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1861\plus.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1862\ic_pc_20x18.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\1959\ic_gallery_20x18.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:42:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\2023\ic2.bmp   [1136]
O61 - LFC: 29/08/2013 - 10:43:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_full_service[1]1.swf   [22448]
O61 - LFC: 29/08/2013 - 10:43:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_premium_gives_more_chubycons[1]1.swf   [13108]
O61 - LFC: 29/08/2013 - 10:43:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_plus_incredibackup[1]1.swf   [11810]
O61 - LFC: 29/08/2013 - 10:43:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_red_remove_ad_plus[1]1.swf   [17241]
O61 - LFC: 29/08/2013 - 10:44:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gg_1000s_best_email_bg[1]1.swf   [48443]
O61 - LFC: 29/08/2013 - 10:44:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left_gold_234x60[1]1.swf   [30464]
O61 - LFC: 29/08/2013 - 10:44:38 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_potection_center_spam[1]1.swf   [12911]
O61 - LFC: 29/08/2013 - 10:44:38 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\incredimail_left2_gold_234x60[1]1.swf   [14435]
O61 - LFC: 29/08/2013 - 10:44:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img51E8.htm   [298]
O61 - LFC: 29/08/2013 - 10:45:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\gg_mx[1]1.swf   [40197]
O61 - LFC: 29/08/2013 - 10:45:08 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{D48362CB-0E8B-4A1D-A360-C34C11220108}\234x60_gold_necktie[1]1.swf   [5948]
O61 - LFC: 29/08/2013 - 17:37:08 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgD488.htm   [298]
O61 - LFC: 29/08/2013 - 17:37:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imvFC15.htm   [78]
O61 - LFC: 29/08/2013 - 23:44:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgF47F.htm   [298]
O61 - LFC: 30/08/2013 - 01:26:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img62DE.htm   [298]
O61 - LFC: 30/08/2013 - 01:26:28 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv8472.htm   [78]
O61 - LFC: 30/08/2013 - 10:15:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Pictures\Pictures.db   [12288]
O61 - LFC: 30/08/2013 - 10:15:14 R--A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Attachments\{44AD5E0B-5795-4993-B5C1-20A081BDE592}\SnipImage.JPG   [135231]
O61 - LFC: 30/08/2013 - 10:15:14 R--A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\SnipImage.JPG   [135231]
O61 - LFC: 30/08/2013 - 10:15:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgBA6B.htm   [298]
O61 - LFC: 30/08/2013 - 10:15:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img4231.htm   [298]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Attachments\{44AD5E0B-5795-4993-B5C1-20A081BDE592}\SnipImage.JPG_thumb.bmp   [24174]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C34B2E86-E8D1-423D-9268-103A94689E2F}\Show\CHUBBY~43.GIF   [9053]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C34B2E86-E8D1-423D-9268-103A94689E2F}\Show\SENDER_EMAILrbarbeau@sfr@@fr2.png   [3543]
O61 - LFC: 30/08/2013 - 10:15:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C34B2E86-E8D1-423D-9268-103A94689E2F}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [24700]
O61 - LFC: 30/08/2013 - 10:16:35 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgDF8A.htm   [298]
O61 - LFC: 30/08/2013 - 10:20:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\AddressBook\AddrBook.db3.bak   [105472]
O61 - LFC: 30/08/2013 - 10:51:43 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv8D1.htm   [78]
O61 - LFC: 30/08/2013 - 13:52:01 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Microsoft\Excel\Excel14.xlb   [13753]
O61 - LFC: 30/08/2013 - 13:52:16 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEohQkmv7O_maconfig_0.pdf   [216519]
O61 - LFC: 30/08/2013 - 13:52:18 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEohQkmv7O_maconfig_0(1).pdf   [216519]
O61 - LFC: 30/08/2013 - 13:52:22 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEohQkmv7O_maconfig_0(2).pdf   [216519]
O61 - LFC: 30/08/2013 - 17:09:43 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\History   [102400]
O61 - LFC: 30/08/2013 - 17:09:44 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\Web Data   [73728]
O61 - LFC: 30/08/2013 - 17:27:45 ---A- . (.Nicolas Coolman.) -- C:\Users\anthonybriere\Downloads\ZHP 2013(3).exe   [16197836]
O61 - LFC: 30/08/2013 - 17:34:45 --HA- . (...) -- C:\Users\anthonybriere\AppData\Local\IconCache.db   [4455082]
O61 - LFC: 30/08/2013 - 17:34:47 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\httpfe\cookies.dat   [2]
O61 - LFC: 30/08/2013 - 17:34:53 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\AccountsOrder.dat   [120]
O61 - LFC: 30/08/2013 - 17:39:37 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\GDIPFONTCACHEV1.DAT   [217408]
O61 - LFC: 30/08/2013 - 17:39:50 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~gu3-ver.dat   [160]
O61 - LFC: 30/08/2013 - 17:39:50 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~upgrade.dat   [936]
O61 - LFC: 30/08/2013 - 17:39:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{433ED63B-9198-4560-93D2-7E71393190DB}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 30/08/2013 - 17:39:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imvCF7E.htm   [78]
O61 - LFC: 30/08/2013 - 17:40:53 -SHA- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Microsoft\Protect\S-1-5-21-3091538384-1223758719-1488994814-1000\9cdf7c16-c60d-4900-9afc-db0c293e8503   [468]
O61 - LFC: 30/08/2013 - 17:40:53 -SHA- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Microsoft\Protect\S-1-5-21-3091538384-1223758719-1488994814-1000\Preferred   [24]
O61 - LFC: 30/08/2013 - 17:41:32 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\OpenOffice.org\3\.lock   [159]
O61 - LFC: 30/08/2013 - 17:41:33 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu   [126976]
O61 - LFC: 30/08/2013 - 17:44:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\IObit\Advanced SystemCare V6\Boottime\AscTray_Delay.Log   [1852684]
O61 - LFC: 30/08/2013 - 17:50:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\663EACF9-3A94-45D3-9EFC-435AA3542D80_data.bak   [0]
O61 - LFC: 30/08/2013 - 18:49:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv41E3.htm   [78]
O61 - LFC: 30/08/2013 - 18:49:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv4666.htm   [78]
O61 - LFC: 30/08/2013 - 18:49:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imv4ACA.htm   [78]
O61 - LFC: 30/08/2013 - 18:49:29 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Notifier.xml   [6619]
O61 - LFC: 30/08/2013 - 18:49:52 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Letter\B433CDFE-B71C-42C2-A5C1-D34C076A9851\CC91FD94-274D-4BDC-B669-705C76032709.htm   [46692]
O61 - LFC: 30/08/2013 - 19:22:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{3857A47F-8B16-4C00-9804-B7769BBA5EAB}\New\noScriptHtmlStrWithoutSource_8.htm   [43760]
O61 - LFC: 30/08/2013 - 19:25:24 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\incredicenter_v2.bmp   [5348]
O61 - LFC: 30/08/2013 - 20:09:07 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEvawyT4zq_rapport_conseiller_maj_seven.pdf   [96738]
O61 - LFC: 30/08/2013 - 20:09:08 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEvawyT4zq_rapport_conseiller_maj_seven(1).pdf   [96738]
O61 - LFC: 30/08/2013 - 20:09:51 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\8CD9D1EF-012C-4061-B5F5-15337BC2AB6D_data.msg   [0]
O61 - LFC: 30/08/2013 - 20:11:32 ---A- . (...) -- C:\Users\anthonybriere\Downloads\CHEvawyT4zq_rapport_conseiller_maj_seven(2).pdf   [96738]
O61 - LFC: 30/08/2013 - 20:11:58 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgF473.htm   [298]
O61 - LFC: 30/08/2013 - 20:12:18 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{65641321-39DE-46F0-B24E-30AF6050E4D4}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [16462]
O61 - LFC: 30/08/2013 - 22:20:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\shared_dynco\dc.db   [1802240]
O61 - LFC: 30/08/2013 - 22:20:55 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\shared_dynco\dc.db-journal   [1141424]
O61 - LFC: 30/08/2013 - 22:20:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\DbTemp\temp-9HokEmSILeNdhkGwUwEBtVrH   [0]
O61 - LFC: 30/08/2013 - 22:21:00 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\bistats.db   [61440]
O61 - LFC: 30/08/2013 - 22:21:00 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\bistats.db-journal   [33344]
O61 - LFC: 30/08/2013 - 22:21:04 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\eas.db   [122880]
O61 - LFC: 30/08/2013 - 22:21:04 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\eas.db-journal   [115424]
O61 - LFC: 30/08/2013 - 22:21:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\keyval.db   [49152]
O61 - LFC: 30/08/2013 - 22:21:06 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\keyval.db-journal   [41552]
O61 - LFC: 30/08/2013 - 22:21:15 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\chatsync\f5\f53ca0e2608b8f35.dat   [1961]
O61 - LFC: 30/08/2013 - 22:21:17 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\DbTemp\temp-1XI18mMNTfXsHAlDnw2DW7tT   [0]
O61 - LFC: 30/08/2013 - 22:31:05 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\dc.db   [126976]
O61 - LFC: 30/08/2013 - 22:42:42 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\imgF580.htm   [298]
O61 - LFC: 30/08/2013 - 23:33:14 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\663EACF9-3A94-45D3-9EFC-435AA3542D80_data.msg   [0]
O61 - LFC: 30/08/2013 - 23:33:28 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img6E69.htm   [298]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\history.ix   [54458]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_d_1.ix   [131072]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_di_1.ix   [65536]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_i_20.ix   [774]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_k_20.ix   [65536]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_kl_1.ix   [958464]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_klh_20.ix   [490]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_r_1.ix   [130398]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\index_v.ix   [285]
O61 - LFC: 30/08/2013 - 23:52:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\indexlog.dat   [2767]
O61 - LFC: 31/08/2013 - 00:00:53 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\imsl.dat   [7689]
O61 - LFC: 31/08/2013 - 00:03:46 ----- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Inbox.imm   [2028438]
O61 - LFC: 31/08/2013 - 00:03:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img5ED1.htm   [298]
O61 - LFC: 31/08/2013 - 00:04:46 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img16DA.htm   [298]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\019810~18.GIF   [21284]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\090104~13.GIF   [9051]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\110109~19.GIF   [21822]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\122912~14.GIF   [2282]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\CONGRA~22.GIF   [6536]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\ROFL_C~15.GIF   [39496]
O61 - LFC: 31/08/2013 - 00:04:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [36802]
O61 - LFC: 31/08/2013 - 00:04:59 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Show\noScriptHtmlStrWithoutSource_7.htm   [43378]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\019810~18.GIF   [21284]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\090104~13.GIF   [9051]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\110109~19.GIF   [21822]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\122912~14.GIF   [2282]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\CONGRA~22.GIF   [6536]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\ROFL_C~15.GIF   [39496]
O61 - LFC: 31/08/2013 - 00:05:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\noScriptHtmlStrWithoutSource_7.htm   [83174]
O61 - LFC: 31/08/2013 - 00:05:10 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img72FE.htm   [298]
O61 - LFC: 31/08/2013 - 00:06:10 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img6069.htm   [298]
O61 - LFC: 31/08/2013 - 00:06:36 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\everyday_sad_230608.png   [1206]
O61 - LFC: 31/08/2013 - 00:08:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_di_1.ix   [65536]
O61 - LFC: 31/08/2013 - 00:08:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_kl_1.ix   [655360]
O61 - LFC: 31/08/2013 - 00:08:25 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_r_1.ix   [22647]
O61 - LFC: 31/08/2013 - 00:10:39 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\110110_sad3.png   [1190]
O61 - LFC: 31/08/2013 - 00:11:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\010105i_angry_steaming.png   [1446]
O61 - LFC: 31/08/2013 - 00:11:23 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\EmoticonCenter\MyEmoticons\QuickBar\Order.dat   [380]
O61 - LFC: 31/08/2013 - 00:14:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\msn.db   [69632]
O61 - LFC: 31/08/2013 - 00:14:07 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\msn.db-journal   [45656]
O61 - LFC: 31/08/2013 - 00:16:01 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Google\Chrome\User Data\Default\Cookies   [14336]
O61 - LFC: 31/08/2013 - 00:17:19 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img9556.htm   [298]
O61 - LFC: 31/08/2013 - 00:18:20 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img830F.htm   [298]
O61 - LFC: 31/08/2013 - 00:21:08 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\config.xml   [12128]
O61 - LFC: 31/08/2013 - 00:24:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\A2507E1E-4A16-42CD-B401-234B7C0754CD_data.bak   [162]
O61 - LFC: 31/08/2013 - 00:28:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img1985.htm   [298]
O61 - LFC: 31/08/2013 - 00:29:49 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\IM\img73E.htm   [298]
O61 - LFC: 31/08/2013 - 00:34:10 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\A2507E1E-4A16-42CD-B401-234B7C0754CD_data.msg   [162]
O61 - LFC: 31/08/2013 - 00:35:11 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Runtime\Message\{C31D3EE0-1841-47B0-9942-AC38AEF75821}\Reply\noScriptHtmlStrWithoutSource_8.htm   [64098]
O61 - LFC: 31/08/2013 - 00:36:30 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\AddressBook\AddrBook.db3   [105472]
O61 - LFC: 31/08/2013 - 00:36:31 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\content.xml   [23006]
O61 - LFC: 31/08/2013 - 00:36:46 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Sent Items.imm   [2798056]
O61 - LFC: 31/08/2013 - 00:36:47 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\Containers.db   [95232]
O61 - LFC: 31/08/2013 - 00:36:47 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexB\imit.dat   [9216]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\history.ix   [192956]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\imit.dat   [14336]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_d_1.ix   [131072]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_i_69.ix   [1015]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_k_69.ix   [65536]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_klh_69.ix   [338]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\index_v.ix   [285]
O61 - LFC: 31/08/2013 - 00:37:02 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\IM\Identities\{FDBCAB18-A4DB-4BBF-9A3B-1AAE817A250E}\Message Store\IndexH\indexlog.dat   [2675]
O61 - LFC: 31/08/2013 - 00:37:04 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\INMEM000.REM   [0]
O61 - LFC: 31/08/2013 - 00:38:48 ---A- . (...) -- C:\Users\anthonybriere\AppData\Local\Temp\CVR3D55.tmp.cvr   [0]
O61 - LFC: 31/08/2013 - 00:40:40 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\shared.xml   [78448]
O61 - LFC: 31/08/2013 - 00:42:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\main.db   [880640]
O61 - LFC: 31/08/2013 - 00:42:57 ---A- . (...) -- C:\Users\anthonybriere\AppData\Roaming\Skype\live#3aanthonybriere\main.db-journal   [213920]
~ 33 Fichiers temporaires (Temporary files)
~ Files: 195 Scanned in 01mn 14s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: ZHPFix 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1
~ ADS:  Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 09/05/2013 - Pas de propriétaire (aswRvrt)  .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - 27/06/2013 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 27/06/2013 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 27/06/2013 - Pas de propriétaire (aswVmm)  .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi)  .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (BootDefragDriver)  .(...) - LEGACY_BOOTDEFRAGDRIVER
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs)  .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLABMFSE.sys (DLABMFSE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABMFSE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLABOIOE.sys (DLABOIOE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLABOIOE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLADResE.sys (DLADResE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLADRESE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAIFS_E.sys (DLAIFS_E)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAIFS_E
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAOPIOE.sys (DLAOPIOE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAOPIOE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAPoolE.sys (DLAPoolE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAPOOLE
O64 - Services: CurCS - 08/02/2007 - C:\Windows\System32\Drivers\DLARTL_E.sys (DLARTL_E)  .(.Roxio - Shared Driver Component.) - LEGACY_DLARTL_E
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAUDFAE.sys (DLAUDFAE)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDFAE
O64 - Services: CurCS - 22/02/2008 - C:\Windows\System32\DLA\DLAUDF_E.sys (DLAUDF_E)  .(.Roxio - Drive Letter Access Component.) - LEGACY_DLAUDF_E
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64)  .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 09/02/2007 - C:\Windows\System32\Drivers\DRVEDDM.sys (DRVEDDM)  .(.Roxio - Device Driver Manager.) - LEGACY_DRVEDDM
O64 - Services: CurCS - 10/04/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat)  .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 23/03/2013 - C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys (FileMonitor)  .(.IObit - IMF File MiniFilter Driver.) - LEGACY_FILEMONITOR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 29/11/2011 - C:\Windows\System32\drivers\iaStor.sys (iaStor)  .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP)  .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio)  .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 25/08/2010 - Pas de propriétaire (prwntdrv)  .(...) - LEGACY_PRWNTDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 26/03/2013 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys (RegFilter)  .(.IObit.com - Registry Filter.) - LEGACY_REGFILTER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 22/05/2013 - Pas de propriétaire (SmartDefragDriver)  .(...) - LEGACY_SMARTDEFRAGDRIVER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 10/02/2012 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs)  .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 26/03/2013 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys (UrlFilter)  .(.IObit.com - URL Filter.) - LEGACY_URLFILTER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 10/02/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt)  .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl)  .(.Microsoft Corporation - Couche IFS Winsock2.) - LEGACY_WS2IFSL
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf)  .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 102 Scanned in 00mn 01s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <jsfile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {BE5BB1A1-A4AB-4E3E-AD60-2AD8B9AA4109} - (Yahoo! Search) - http://fr.search.yahoo.com  =>Toolbar.Yahoo
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {BE5BB1A1-A4AB-4E3E-AD60-2AD8B9AA4109} - (Yahoo! Search) - http://fr.search.yahoo.com  =>Toolbar.Yahoo
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
C:\Users\anthonybriere\Desktop\Logiciel de maitenance 2013\Logiciel de gravure\nero_7_crack_keygen\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen.rar
C:\Users\anthonybriere\Desktop\Logiciel de maitenance 2013\Logiciel de gravure\nero_7_crack_keygen\Nero.7.Premium.v7.10.1.0.FR.Incl-Keygen.rar
~ Files:  Scanned in 01mn 08s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Services: 32 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.7811058E6E6AFEFFF8692AC2B28DEABD] [SPRF][30/08/2013] (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~gu3-ver.dat   [160]
[MD5.08512BFFB233FFA2D77379B74C4EBB54] [SPRF][30/08/2013] (...) -- C:\Users\anthonybriere\AppData\Local\Temp\~upgrade.dat   [936]
[MD5.0139E9FAAC2B6BF7B7303D4FA88AFFD8] [SPRF][20/09/2012] (...) -- C:\Users\anthonybriere\Desktop\adwcleaner (2).exe   [512737]
[MD5.D4C2029F756A161C5ACB88A00D593E51] [SPRF][24/01/2013] (.Swearware - ComboFix NSIS Installer.) -- C:\Users\anthonybriere\Desktop\ComboFix.exe   [5026656]
[MD5.FCA8974A8A7499A0966A38EF2CD8938E] [SPRF][25/07/2013] (...) -- C:\Users\anthonybriere\Desktop\RogueKiller(1).exe   [915968]
~ Files: 5 Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "{8FD3F9F7-5695-43A9-8803-526F56E3B24B}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{00049C9C-7623-4045-9662-395942FB28EA}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{ECE9E674-5FD4-43D5-9FCB-73CB7E02FD46}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{68BDDAB6-F489-461A-854F-4F8AEEF10F4A}C:\program files (x86)\windows live\contacts\wlcomm.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\windows live\contacts\wlcomm.exe
O87 - FAEL: "UDP Query User{BCD5E8FB-4EF8-4AF5-8E76-F23D504E3D36}C:\program files (x86)\windows live\contacts\wlcomm.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\windows live\contacts\wlcomm.exe
O87 - FAEL: "{A3BB7381-32F5-48D1-9CCC-D02382B59B2C}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{F5670394-7C54-410A-A039-6AFA3B7B204C}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DCD0D556-9FFD-4B5A-9B96-2273FA6C5D72}" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{50B44FF2-4D77-4F76-AD28-73DC261A99D4}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{9B24FCE4-6A10-4576-AD45-AC99523528D2}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{20DE93D3-249D-4AE7-8939-29FAD7DC0DAE}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{62618FB7-1118-44BF-9177-15B64E008B83}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DD225609-8968-4498-A06A-33C85EE5A748}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{2FE15CBD-58FC-4A0D-BE1D-B155148D6A37}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{B6FD6717-9622-489A-BDE6-EDF8678EC6FB}C:\program files (x86)\mc2\sniper elite\sniperelite.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\mc2\sniper elite\sniperelite.exe
O87 - FAEL: "UDP Query User{F6E07403-12C8-4ED9-BDD3-6202891A5784}C:\program files (x86)\mc2\sniper elite\sniperelite.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\mc2\sniper elite\sniperelite.exe
O87 - FAEL: "{CB4EE027-4DB4-4ADA-86EF-BC02C2F34696}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{5E4934D5-C279-45EB-890D-0B0461379509}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "{06DC70B1-2785-43A0-9124-D4B6556506C2}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.exe
O87 - FAEL: "TCP Query User{BFACE1DA-ADD9-4899-8CDF-89CB86671C5A}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "UDP Query User{816036EF-6529-4BF3-8DAF-21A33D45B286}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "{4977AE1B-68D3-4951-AB56-F636CE8C49AE}" | In - Public - P6 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "{787820F1-569B-4E6C-AFFC-63BC5D62CFD8}" | In - Public - P17 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "{5638E3B3-5ADC-4230-B9E0-8209EB1B205D}" | In - Public - P6 - TRUE | .(.VideoLAN - VLC media player 2.0.7.) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{F4B72862-19D3-4193-8889-9A17484A613F}" | In - Public - P17 - TRUE | .(.VideoLAN - VLC media player 2.0.7.) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{28061782-97B3-4925-91CB-F5F86230AED0}" | In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{24A0C19D-9A9D-4376-B5E0-E5405A438327}" | In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "TCP Query User{6C87F203-7FD7-495F-A985-C37475496711}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "UDP Query User{F536EDC1-2374-4098-B878-3332B160E1F5}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "{A65B4068-DBDF-49EE-B0AC-F0D5DBBE765F}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{BB1FF144-F803-48DB-84D3-E8A99EE43E37}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{4FDAA429-7BDF-4BA3-874E-53B207576E9B}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{0CCA9358-5B55-4A6A-9A1C-C8B8C8263265}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{7A505AA2-E68A-48D2-A723-1823E5273285}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{BD22BF72-C744-49BF-BDDF-4BFAB035E800}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{E173D11D-388B-434A-ACFF-17D908A42575}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{9913981F-2D79-4ECD-8518-571F0781C168}" | In - Public - P6 - TRUE | .(.ActaLogic - auto update.) -- C:\Program Files (x86)\Agrar Simulator 2012\iupdate.dll
O87 - FAEL: "{B347EBCA-91D1-4698-93D8-564284586D24}" | In - Public - P17 - TRUE | .(.ActaLogic - auto update.) -- C:\Program Files (x86)\Agrar Simulator 2012\iupdate.dll
O87 - FAEL: "{5DFFFE33-3CFA-4E45-A9CF-8770B5D28387}" | In - Public - P6 - TRUE | .(.ActaLogic - Agrar Simulator 2011.) -- C:\Program Files (x86)\Agrar Simulator 2012\farm2012.dll
O87 - FAEL: "{E056F395-B767-4747-AF50-BA3610E0DC08}" | In - Public - P17 - TRUE | .(.ActaLogic - Agrar Simulator 2011.) -- C:\Program Files (x86)\Agrar Simulator 2012\farm2012.dll
O87 - FAEL: "{A1CDECC3-D5A3-4F0D-8B73-A1CEA14D43D1}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{F1DA4CC0-A554-494D-A350-93E3B32EC4C9}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "TCP Query User{174FD96C-9D8E-492D-9687-91C975CD002E}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" | In - Public - P6 - TRUE | .(.Electronic Arts.) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe
O87 - FAEL: "UDP Query User{C0FEF646-49E6-4635-B6FF-B73618C8E3AE}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" | In - Public - P17 - TRUE | .(.Electronic Arts.) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe
O87 - FAEL: "TCP Query User{2D7731A5-11D5-4B1B-ADE0-F01E64853910}C:\program files (x86)\hp\common\hpdevicedetection3.exe" | In - Public - P6 - TRUE | .(.Hewlett-Packard Company.) -- C:\program files (x86)\hp\common\hpdevicedetection3.exe
O87 - FAEL: "UDP Query User{D3098BED-E7DE-4022-9AAD-22CDEF38814C}C:\program files (x86)\hp\common\hpdevicedetection3.exe" | In - Public - P17 - TRUE | .(.Hewlett-Packard Company.) -- C:\program files (x86)\hp\common\hpdevicedetection3.exe
O87 - FAEL: "{8720CE97-A44C-406D-B991-97D2840949A6}" | In - None - P17 - TRUE | .(.Hewlett-Packard Company - HP Device Detection.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
~ Firewall: 209 Scanned in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "01F2293147DB2194BA113EB453607200" . (.Microsoft Calculatrice Plus.) -- C:\Windows\Installer\{13922F10-BD74-4912-AB11-E34B35062700}\_294823.exe
O90 - PUC: "02B5DA0A9835FFF42BBB3D19BBA230A9" . (.Ciel Immobilisations 17.0 Enseignants.) -- C:\Windows\Installer\{A0AD5B20-5389-4FFF-B2BB-D391BB2A039A}\ARPPRODUCTICON.exe
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "114202EE62C28E947948B11CBD7FED69" . (.HP Support Assistant.) -- C:\Windows\Installer\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\ARPPRODUCTICON.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "2220A88709652124AAC94CF80D1E9CEA" . (.Photo Notifier and Animation Creator.) -- C:\Windows\Installer\{788A0222-5690-4212-AA9C-C48FD0E1C9AE}\ARPPRODUCTICON.exe
O90 - PUC: "225748A5C57350D4DBD3884C05CC40F7" . (.HP Launch Box.) -- C:\Windows\Installer\{5A847522-375C-4D05-BD3D-88C450CC047F}\_853F67D554F05449430E7E.exe
O90 - PUC: "2743C3FD13A763F4781A829192A045A0" . (.Ciel Paye Evolution 10.00 Enseignants & Formateurs.) -- C:\Windows\Installer\{DF3C3472-7A31-4F36-87A1-2819290A540A}\ARPPRODUCTICON.exe
O90 - PUC: "277C90D53BCEB244C96C4B43C187DF2C" . (.Apple Application Support.) -- C:\Windows\Installer\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}\WinInstall.ico
O90 - PUC: "2C1A65825C073CE4FA7F5E5BE155032A" . (.HP Client Services.) -- C:\Windows\Installer\{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}\ARPPRODUCTICON.exe
O90 - PUC: "35B229754D20CFD4CA423A15D91C4FA9" . (.Adobe Premiere Pro FC.) -- C:\Windows\Installer\{57922B53-02D4-4DFC-AC24-A3519DC1F49A}\ARPPRODUCTICON.exe
O90 - PUC: "3618C4F7952F0A940A8182759A5087CB" . (.Adobe InDesign CS2.) -- C:\Windows\Installer\{7F4C8163-F259-49A0-A018-2857A90578BC}\ARPPRODUCTICON.exe
O90 - PUC: "393793D005B925c4485D773E4482F978" . (.Roxio Creator Data.) -- C:\Windows\Installer\{0D397393-9B50-4c52-84D5-77E344289F87}\RoxioCentral.exe
O90 - PUC: "407C7F1D2F991E11C94789B41EF571E4" . (.Evernote v. 4.5.6.) -- C:\Windows\Installer\{D1F7C704-99F2-11E1-9C74-984BE15F174E}\Evernote.ico
O90 - PUC: "46125661F08D6EE4096CE2D8D56090A2" . (.HP Documentation.) -- C:\Windows\Installer\{16652164-D80F-4EE6-90C6-2E8D5D06092A}\NotebookDocs.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "46E5DCBD973784644944A85685CD6B41" . (.HP Recovery Manager.) -- C:\Windows\Installer\{DBCD5E64-7379-4648-9444-8A6558DCB614}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\Windows\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe
O90 - PUC: "554590D7179DC4D4E9DFA96F6A85F4A3" . (.Bing Bureau.) -- C:\Windows\Installer\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}\icon.ico
O90 - PUC: "5856D03CE349A174BB5A20C253EBAFAE" . (.Photo & Graphic Designer 7 Update.) -- C:\Windows\Installer\{C30D6585-943E-471A-BBA5-022C35BEFAEA}\ProgramIcon.exe
O90 - PUC: "5AACF56B6A3FF3B4BAEEBC2C0B5897B6" . (.HP Connection Manager.) -- C:\Windows\Installer\{B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}\ARPPRODUCTICON.exe
O90 - PUC: "627A71AF922B61147B392ABAA1E4EAE2" . (.Adobe Premiere Pro 2.0.) -- C:\Windows\Installer\{57922B53-02D4-4DFC-AC24-A3519DC1F49A}\ARPPRODUCTICON.exe
O90 - PUC: "660DEA80200036E4A89ED6364D5AC070" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{08AED066-0002-4E63-8AE9-6D63D4A50C07}\maconfico
O90 - PUC: "676C6FEA2A7D7844DBB4B1DE712B925B" . (.Centre Souris et Claviers Microsoft.) -- c:\Windows\Installer\{AEF6C676-D7A2-4487-BD4B-1BED17B229B5}\DeviceCenter.ico
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.03) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "69A9FA1138D6B3C4D8BC61AEA253E8F3" . (.HP CoolSense.) -- C:\Windows\Installer\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}\_853F67D554F05449430E7E.exe
O90 - PUC: "6E42C4F24DBCCAA45BF69CDF44ED6586" . (.Roxio Drag-to-Disc.) -- C:\Windows\Installer\{2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668}\DrgToDscIcon.exe
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.1.1.) -- C:\Windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "717790FC471F441459A4BF4CFB030163" . (.Nero 7 Ultra Edition.) -- C:\Windows\Installer\{CF097717-F174-4144-954A-FBC4BF301036}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "7B65D4CC81F6B0747843BADC57CB4F1F" . (.HP Auto.) -- C:\Windows\Installer\{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}\ARPPRODUCTICON.exe
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "7CFCFF386C886c14782559A85423C528" . (.Roxio Creator Audio.) -- C:\Windows\Installer\{83FFCFC7-88C6-41c6-8752-958A45325C82}\RoxioCentral.exe
O90 - PUC: "7DC1B83906C7E194AA09F18188612804" . (.Roxio MyDVD Basic v9.) -- C:\Windows\Installer\{938B1CD7-7C60-491E-AA90-1F1888168240}\ARPPRODUCTICON.exe
O90 - PUC: "883658EADAFA357418FD9DB6910D1AC7" . (.HP Setup Manager.) -- C:\Windows\Installer\{AE856388-AFAD-4753-81DF-D96B19D0A17C}\ARPPRODUCTICON.exe
O90 - PUC: "89A71B350FB5CB04AAFF58A0539757CA" . (.HP Quick Launch.) -- C:\Windows\Installer\{53B17A98-5BF0-40BC-AAFF-850A357975AC}\_853F67D554F05449430E7E.exe
O90 - PUC: "8CDC4930DBAF8de41B4030938367FDFD" . (.Roxio Creator Tools.) -- C:\Windows\Installer\{0394CDC8-FABD-4ed8-B104-03393876DFDF}\RoxioCentral.exe
O90 - PUC: "8D4D77630E5ECF948BE66045C10FB0EB" . (.opensource.) -- C:\Windows\Installer\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}\ARPPRODUCTICON.exe
O90 - PUC: "8F3D7A85CBE06CA47928CFC2F454E758" . (.Poker.) -- C:\Windows\Installer\{58A7D3F8-0EBC-4AC6-9782-FC2C4F457E85}\_16496df1.exe
O90 - PUC: "9B5ECB8DFC76F3F439EAA3CC57C427BE" . (.HP Power Manager.) -- C:\Windows\Installer\{D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}\_853F67D554F05449430E7E.exe
O90 - PUC: "A4DC4D2C02EA3B047862E81D0CE3C851" . (.Google Drive.) -- C:\Windows\Installer\{C2D4CD4A-AE20-40B3-8726-8ED1C03E8C15}\DriveIcon
O90 - PUC: "A8DDC9166B411a34BAC6F0E44EC80E84" . (.Roxio Creator Copy.) -- C:\Windows\Installer\{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}\RoxioCentral.exe
O90 - PUC: "A96DB1DE3E70C814191F8D65855218FB" . (.HP On Screen Display.) -- C:\Windows\Installer\{ED1BD69A-07E3-418C-91F1-D856582581BF}\_853F67D554F05449430E7E.exe
O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico
O90 - PUC: "AF5A5D893AA1EBC42BC67A732EF0A8D6" . (.HP Software Framework.) -- C:\Windows\Installer\{98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}\app_1.exe
O90 - PUC: "B0860B8CEADC9084F91983B7D60EF0C7" . (.Roxio Creator Basic v9.) -- C:\Windows\Installer\{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}\RoxioCentral.exe
O90 - PUC: "B749957DA5C808440BBDCF93F160C158" . (.Adobe Photoshop Lightroom 4.3 64-bit.) -- C:\Windows\Installer\{D759947B-8C5A-4480-B0DB-FC391F061C85}\ARPPRODUCTICON.exe
O90 - PUC: "B846977CE014ABB47BB58551CBFE7ED1" . (.Safari.) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\Installer.ico
O90 - PUC: "BC993E9FF640DF546AF7FC93E912824E" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{F9E399CB-046F-45FD-A67F-CF399E2128E4}\controlPanelIcon.exe
O90 - PUC: "C80D5F2B97E7DCF4AA4F75DA53FF6010" . (.Adobe Illustrator CS2.) -- C:\Windows\Installer\{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}\ARPPRODUCTICON.exe
O90 - PUC: "CA3DC6DEB61602B4CB3FE636B7295ADA" . (.HP Security Assistant.) -- C:\Windows\Installer\{ED6CD3AC-616B-4B20-BCF3-6E637B92A5AD}\_853F67D554F05449430E7E.exe
O90 - PUC: "CAF0D93B831DCD24F8D92F16FD85E681" . (.MAGIX Photo & Graphic Designer 7 Version à télécharger Content Pack.) -- C:\Windows\Installer\{B39D0FAC-D138-42DC-8F9D-F261DF586E18}\ProgramIcon.exe
O90 - PUC: "CF4F71AEFBDF8FC45A92D28913230D35" . (.Skype™ 6.0.) -- C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
O90 - PUC: "D16EA6074A0405F43895EFF8F6F74A16" . (.Acronis Drive Monitor.) -- C:\Windows\Installer\{706AE61D-40A4-4F50-8359-FE8F6F7FA461}\product.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "F60C1AD7319C7C64A8F0ADC2AB71AED1" . (.OpenOffice.org 3.4.1.) -- C:\Windows\Installer\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}\soffice.ico
O90 - PUC: "FA9D7E5F6F0603A4783EE49AD423C21E" . (.HP Setup.) -- C:\Windows\Installer\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}\ARPPRODUCTICON.exe
O90 - PUC: "FABE7EC0D7511114196450C72B4A20E3" . (.HP Application Assistant.) -- C:\Windows\Installer\{0CE7EBAF-157D-4111-9146-057CB2A4023E}\ARPPRODUCTICON.exe
~ Update Products: 172 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.486C03972ABBD5DC6E5077CD22B2F2C6] [WIS][15/06/2012] (.F4 - F4WebPlugin 0.2.20 installer.) -- C:\Windows\Installer\17aab18.msi   [735232]
[MD5.D63C670BFEB5D29CF9DAA7023D9252F9] [WIS][10/01/2013] (.Adobe - Adobe Photoshop Lightroom 4.3.) -- C:\Windows\Installer\19c9ca9.msi   [404891136]
[MD5.FB170AD7512F9E3E985C91578FE250BA] [WIS][13/06/2012] (.GameShadow Ltd - GameShadow V2.30.) -- C:\Windows\Installer\24c9d7.msi   [10854784]
[MD5.19712A22B7742B562315F4C73F8D5D20] [WIS][28/03/2013] (.IncrediMail - Photo Notifier and Animation Creator.) -- C:\Windows\Installer\2948b5a.msi   [2832896]
[MD5.A955DCC932530B0B89BA612BC9832B9D] [WIS][28/03/2013] (.IncrediMail - IncrediMail.) -- C:\Windows\Installer\2948e44.msi   [2687488]
[MD5.9D1FC3737A86F6B516152DFF025F2FC7] [WIS][12/07/2013] (.Google Inc. - Google Update Helper.) -- C:\Windows\Installer\2bef30a.msi   [26112]
[MD5.1C5E40F474435FCE78A2C4CBA1BFDB8D] [WIS][16/11/2012] (.CIEL - Ciel Paye Evolution 10.00.) -- C:\Windows\Installer\31765d.msi   [57357824]
[MD5.9D446C932CC158121C7F5F81CD54146D] [WIS][07/07/2010] (.Ciel - Ciel Immobilisations.) -- C:\Windows\Installer\317666.msi   [8405484]
[MD5.6E3C1AC09871AB0D629649F0189839C9] [WIS][12/11/2012] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\4e6fc9.msi   [20185088]
[MD5.3E765C9DA387C8C8C067266C3AE3FB9B] [WIS][12/11/2012] (.Skype Technologies S.A. - Skype Click to Call.) -- C:\Windows\Installer\4e6fcf.msi   [10137600]
[MD5.3F477D33DD7B1C483FE2959B1A13DAA9] [WIS][03/07/2013] (.Google, Inc. - Google Drive.) -- C:\Windows\Installer\79f1298.msi   [31588352]
~ WIS: 185 Scanned in 01mn 38s



---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 27/10/2009 881688 |  (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
SS - | Demand 10/01/2013 72704 |  (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
SR - | Auto 14/09/2006 102400 |  (AdobeActiveFileMonitor5.0) . (...) - C:\Program Files (x86)\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
SR - | Auto 11/05/2013 65640 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 15/07/2013 257416 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 18/04/2013 574272 |  (AdvancedSystemCareService6) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
SR - | Auto 09/05/2013 46808 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Demand 13/01/2012 274200 |  (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 00\00\0000 0 |  (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe
SR - | Auto 21/06/2012 163536 |  (fshoster) . (.F-Secure Corporation.) - C:\Program Files (x86)\SFR\Pack_Securite\fshoster32.exe
SS - | Auto 05/11/2012 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 05/11/2012 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 27/09/2012 86528 |  (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
SR - | Auto 11/10/2010 346168 |  (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
SR - | Demand 13/09/2011 1098296 |  (hpCMSrv) . (.Hewlett-Packard Development Company L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
SR - | Demand 06/09/2012 1001376 |  (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 24/09/2012 31040 |  (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 05/03/2012 35200 |  (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 29/11/2011 13592 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 22/10/2004 73728 |  (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe
SR - | Auto 25/04/2013 335168 |  (IMFservice) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
SR - | Auto 08/12/2011 607456 |  (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 16/12/2011 128280 |  (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Auto 16/12/2011 161560 |  (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 16/12/2011 277784 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 15/05/2013 1144144 |  (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SS - | Demand 18/06/2009 6144 |  (MEMSWEEP2) . (.Sophos Plc.) - C:\Windows\system32\4014.tmp
SS - | Demand 17/08/2013 117656 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 29/06/2007 800040 |  (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
SS - | Demand 27/06/2007 279848 |  (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
SS - | Demand 00\00\0000 0 |  (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des
SS - | Demand 06/11/2006 887544 |  (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
SS - | Auto 15/08/2013 2298704 |  (SecureUpdateSvc) . (...) - C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe
SS - | Auto 12/11/2012 28632 |  (SFR.Dashboard.Service) . (.SFR.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe
SR - | Auto 02/10/2012 3064000 |  (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SS - | Auto 07/11/2012 160944 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 29/05/2013 314880 |  (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SS - | Demand 01/11/2006 73728 |  (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
SR - | Auto 16/12/2011 363800 |  (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 00\00\0000 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 09/11/2008 602392 |  (YahooAUService) . (.Yahoo! Inc..) - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe  =>Toolbar.Yahoo
~ Services:  Scanned in 01mn 41s



---\\ Recherche dinfection sur le Master Boot Record (MBR)(O80)
Run by anthonybriere at 31/08/2013 01:46:41
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche dinfection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by anthonybriere at 31/08/2013 01:46:43

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR:  Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : v2.12867 - (28/08/2013)
Clés trouvées (Keys found) : 20
Valeurs trouvées (Values found) : 1
Dossiers trouvés  (Folders found) : 4
Fichiers trouvés  (Files found) : 7

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}]   =>Toolbar.Avast^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Software Update]   =>Toolbar.Yahoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion]   =>Toolbar.Yahoo^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion]   =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{EF99BD32-C1FB-11D2-892F-0090271D4F88}   =>Toolbar.Yahoo
C:\Program Files (x86)\Yahoo!   =>Toolbar.Yahoo^
C:\ProgramData\Yahoo!   =>Toolbar.Yahoo^
C:\ProgramData\Yahoo! Companion   =>Toolbar.Yahoo^
C:\Users\anthonybriere\AppData\Roaming\Yahoo!   =>Toolbar.Yahoo^
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe   =>Toolbar.Yahoo^
C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo.xml   =>Toolbar.Yahoo^
C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn3\yt.dll   =>Toolbar.Yahoo^
C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll   =>Toolbar.Avast^
[HKCU\Software\AppDataLow\Software\Yahoo]   =>Toolbar.Yahoo^
[HKCU\Software\Yahoo]   =>Toolbar.Yahoo^
[HKLM\Software\Wow6432Node\Yahoo]   =>Toolbar.Yahoo^
~ Additionnel Scan: 524269 Items scanned in 02mn 18s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com30268689-toolbar-yahoo   =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com30898585-toolbar-avast   =>Toolbar.Avast
~ MSI: 2 link(s) detected in 02mn 18s



End of the scan (2398 lines in 11mn 46s)(2)