Recommended Posts

Bonjour,

Emsisoft Anti-Malware a détécté ce rootkit (scanner) : Rookit.crackactivation!E2 (ou un nom de ce genre)

J'ai téléchargé OTL et EEK.

J'ai peur pour mes informations personnelles (mot de passes, ect...)

Nous sommes plusieurs a utiliser l'ordinateur.

Merci d'avance de votre aide.

Share this post


Link to post
Share on other sites

Bonjour, comment puis-je enlever le Rootkit " Bootkit.MBR.Vrabber.A (Bootimage) B" Sur une mahcine windows 7 et une machine windows7 X64?

Je joins le ZHPdiag car je ne peux up loader.

Rapport de ZHPDiag v1.31.31 par Nicolas Coolman, Update du 19/10/2012

Run by UranusDominique at 18/11/2012 18:28:55

Web site : http://nicolascoolman.skyrock.com/

State : Version à jour.

UAC : Not Found or deactivate by user

---\\ Web Browser

MSIE: Internet Explorer v9.0.8112.16421

GCIE: Google Chrome v23.0.1271.64 (Defaut)

---\\ Windows Product Information

~ Langage: Français

Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601)

Windows Server License Manager Script : OK

~ Windows® 7, OEM_COA_NSLP channel

Software Protection Service (Protection logicielle) : OK

Windows Automatic Updates : OK

Windows Activation Technologies : OK

---\\ System Information

~ Processor: x86 Family 6 Model 42 Stepping 7, GenuineIntel

~ Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3697 MB (65% free)

System Restore: Désactivé (Disabled)

System drive C: has 687 GB (77%) free of 886 GB

---\\ Logged in mode

~ Computer Name: URANUS

~ User Name: UranusDominique

~ All Users Names: UranusDominique, UpdatusUser, HomeGroupUser$, Guest, Administrator,

~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89

Logged in as Administrator

---\\ Environnement Variables

~ System Unit : C:\

~ %AppData% : C:\Users\UranusDominique\AppData\Roaming\

~ %Desktop% : C:\Users\UranusDominique\Desktop\

~ %Favorites% : C:\Users\UranusDominique\Favorites\

~ %LocalAppData% : C:\Users\UranusDominique\AppData\Local\

~ %StartMenu% : C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\

~ %Windir% : C:\Windows\

~ %System% : C:\Windows\System32\

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 687 Go of 886 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 131 Go of 736 Go)

E:\ Hard drive, Flash drive, Thumb drive (Free 40 Go of 466 Go)

F:\ Hard drive, Flash drive, Thumb drive (Free 103 Go of 195 Go)

G:\ CD-ROM drive (Not Inserted)

H:\ Hard drive, Flash drive, Thumb drive (Free 976 Go of 977 Go)

O:\ CD-ROM drive (Free 0 Go of 6 Go)

P:\ CD-ROM drive (Not Inserted)

Q:\ CD-ROM drive (Not Inserted)

R:\ CD-ROM drive (Free 0 Go of 0 Go)

---\\ Security Center & Tools Informations

~ UAC deactivate by user

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques

[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Windows Explorer.) (.25/02/2011 - 12:30:54.) -- C:\Windows\Explorer.exe [2616320]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Windows Start-Up Application.) (.14/07/2009 - 08:14:45.) -- C:\Windows\System32\Wininit.exe [96256]

[MD5.9CB0D2A9A77D91D9614355EE9FF00519] - (.Microsoft Corporation - Internet Extensions for Win32.) (.08/10/2012 - 14:48:03.) -- C:\Windows\System32\wininet.dll [1129472]

[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Windows Logon Application.) (.21/11/2010 - 04:29:06.) -- C:\Windows\System32\Winlogon.exe [286720]

[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Software Licensing Library.) (.21/11/2010 - 04:29:24.) -- C:\Windows\System32\sppcomapi.dll [193536]

[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 09:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944]

[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 08:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]

[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 06:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]

[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:29:03.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]

[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:29:07.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]

[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:29:03.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]

[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - i8042 Port Driver.) (.14/07/2009 - 06:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]

[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 06:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]

[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 09:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]

[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:29:08.) -- C:\Windows\system32\Drivers\netBT.sys [187904]

[MD5.0D87503986BB3DFED58E343FE39DDE13] - (.Microsoft Corporation - NT File System Driver.) (.01/09/2012 - 00:18:09.) -- C:\Windows\system32\Drivers\ntfs.sys [1211760]

[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Parallel Port Driver.) (.14/07/2009 - 06:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]

[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 06:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]

[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 04:29:49.) -- C:\Windows\system32\Drivers\rdpdr.sys [133632]

[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 06:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]

[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:29:07.) -- C:\Windows\system32\Drivers\tdx.sys [74752]

[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Volume Shadow Copy Driver.) (.21/11/2010 - 04:29:03.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]

~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 0/1

~ Mes musiques (My Musics) : 0/43

~ Mes Videos (My Video) : 0/1

~ Mes Favoris (My Favorites) : 0/19

~ Mes Documents (My Documents) : 0/56

~ Mon Bureau (My Desktop) : 0/2517

~ Menu demarrer (Programs) : 0/28

~ Scan Hidden Files in 00mn 02s

---\\ Processus lancés

[MD5.9048E39550CD6599F98673B4437D0E4C] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9742952] [PID.3448]

[MD5.8943465BEFA91044227D42E84ECB8280] - (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048] [PID.3472]

[MD5.AF14865688616679CD9A66FC7B5F1752] - (.Emsisoft GmbH - Background Guard.) -- C:\Program Files\Emsisoft Anti-Malware\a2guard.exe [3364264] [PID.]

[MD5.6A9805891AAEFE2CE3E7EE2C02EFA516] - (.FarStone Technology Inc. - VirtualDrive VDTask.) -- C:\Program Files\FarStone\VirtualDrive\vdtask.exe [170512] [PID.3524]

[MD5.9D197E4D8D7ED5302609808CD21D56C0] - (.Logicool Co. Ltd. - Logicool WingMan Event Monitor.) -- C:\Program Files\Logitech\Gaming Software\LWEMon.exe [153672] [PID.3588]

[MD5.0E34B7BB1FCF22BCC1E394D16F9E992B] - (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040] [PID.3612]

[MD5.C637FC4638A96165256B28D38DE7B953] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3696]

[MD5.D610CDEDF1F702EB0A86B0FBD9BB49E5] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1820520] [PID.2400]

[MD5.883B2E1341E5BE906A7507308A6636DF] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [285240] [PID.4988]

[MD5.56873D899C0707AA017AA2D74EC190AE] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [3770368] [PID.4404]

[MD5.BDDCA154AA28B38429BC9134F6AC5792] - (.Collect3 PTY LTD - Video Stream.) -- C:\Program Files\VideoStream\VideoStream.exe [2989568] [PID.4412]

[MD5.E327C0DE1D7013BE360881801C0AB0FA] - (.Emsisoft GmbH - Emsisoft Anti-Malware Service.) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe [3084176] [PID.]

[MD5.EB5A13F9139F20AD71ADF4BF79C3AA29] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 306.9.) -- C:\Windows\system32\nvvsvc.exe [645992] [PID.]

[MD5.F0359F7CE712D69ACEF0886BDB4792ED] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [382824] [PID.]

[MD5.A5299D04ED225D64CF07A568A3E1BF8C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55184] [PID.]

[MD5.C71F2B4D0151CFEDE5D405C5D60B6FCE] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [864616] [PID.]

[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.]

[MD5.AFFF9B106DB80D85FAEE14D47ECFC3CD] - (.Intel® Corporation - Intel® Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [462088] [PID.]

[MD5.1987570CF9A7F4DD9806D886393336F1] - (.Intel Corporation - Intel® PROSet Monitoring Service.) -- C:\Windows\system32\IProsetMonitor.exe [112968] [PID.]

[MD5.5B7DE9D87B9D2713BDD6A53678DC2A49] - (.Intel Corporation - Intel® Dynamic Application Loader Host In.) -- C:\Program Files\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720] [PID.]

[MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\system32\DllHost.exe [7168] [PID.]

[MD5.0AB254994A460550258446950BB58311] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [14904] [PID.]

[MD5.E70FD0D2C95F559A17321D831875593D] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe [277824] [PID.]

[MD5.CF87A1DE791347E75B98885214CED2B8] - (.Microsoft Corporation - Microsoft Software Protection Platform Serv.) -- C:\Windows\system32\sppsvc.exe [3179520] [PID.]

[MD5.C485FB802F6C4A306B8F89BA087E5CA2] - (.Intel Corporation - User Notification Service.) -- C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe [365376] [PID.]

~ Scan Processes Running in 00mn 00s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

C:\Users\UranusDominique\AppData\Local\Google\Chrome\User Data\Default\Preferences

G0 - GCSP: Preference [user Data\Default][HomePage] http://www.igoogle.fr

G0 - GCSP: Preference [user Data\Default] http://www.igoogle.fr

G1 - GCS: Preference [user Data\Default] None

~ Scan Google Browser in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

P2 - FPN: [HKLM] [@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42] - (.Intel Corporation - Intel web components for Intel® Identity Protection Technology.) -- C:\Program Files\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll

P2 - FPN: [HKLM] [@intel-webapi.intel.com/Intel WebAPI updater] - (.Intel Corporation - Intel web components updater - Installs and updates the Intel web comp.) -- C:\Program Files\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll

P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.9.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Windows\system32\npDeployJava1.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.9.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.9.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win # 6.5.0.3.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.1.10329.0.) -- c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll

P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.2".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com

R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com

R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.2".) (No version) -- (.not file.)

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0

~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: Shell=C:\Windows\explorer.exe

F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe

~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)

~ Le fichier hosts est sain (The hosts file is clean).

~ Scan Hosts File in 00mn 00s

~ Nombre de lignes (Lines number): 21

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: (no name) - {0347C33E-8762-4905-BF09-768834316C61} Clé orpheline

O2 - BHO: (no name) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} Clé orpheline

O2 - BHO: (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} Clé orpheline

O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline

O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} Clé orpheline

O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline

O2 - BHO: (no name) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} Clé orpheline

~ Scan BHO in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

O4 - HKLM\..\Run: [iAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe

O4 - HKLM\..\Run: [NUSB3MON] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

O4 - HKLM\..\Run: [emsisoft anti-malware] . (.Emsisoft GmbH - Background Guard.) -- c:\program files\emsisoft anti-malware\a2guard.exe

O4 - HKLM\..\Run: [VirtualDrive] . (.FarStone Technology Inc. - VirtualDrive VDTask.) -- C:\Program Files\FarStone\VirtualDrive\VDTask.exe

O4 - HKLM\..\Run: [start WingMan Profiler] . (.Logicool Co. Ltd. - Logicool WingMan Event Monitor.) -- C:\Program Files\Logitech\Gaming Software\LWEMon.exe

O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

O4 - HKLM\..\Run: [WheelMouse] . (.Pas de propriétaire - Mouse Start Program.) -- C:\Stinger Mouse Driver\wh_exec.exe

O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe

O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\RunOnce: [FsVdInstReboot] Clé orpheline

O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-21-2303954919-2537596544-1179146069-1000\..\Run: [sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\UranusDominique\Desktop\JoystickSDKDemo - Shortcut.lnk . (.Logitech Inc..) -- C:\Program Files\Logitech\Gaming Software\Joystick\JoystickSDKDemo.exe

O4 - Global Startup: C:\Users\UranusDominique\Desktop\SteeringWheelSDKDemo - Shortcut.lnk . (.Logitech Inc..) -- C:\Program Files\Logitech\Gaming Software\SteeringWheel\SteeringWheelSDKDemo.exe

O4 - Global Startup: C:\Users\UranusDominique\Desktop\ZHPDiag.lnk . (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe

O4 - Global Startup: C:\Users\UranusDominique\Desktop\ZHPFix.lnk . (...) -- C:\Program Files\ZHPDiag\ZHPFix.exe

O4 - Global Startup: C:\Users\UranusDominique\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\EaseUS Partition Master 9.1.1 Home Edition.lnk . (.EaseUS.) -- C:\Program Files\EaseUS\EaseUS Partition Master 9.1.1 Home Edition\bin\epm0.exe

O4 - Global Startup: C:\Users\UranusDominique\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Emsisoft Anti-Malware.lnk . (.Emsisoft GmbH.) -- C:\Program Files\Emsisoft Anti-Malware\a2start.exe

O4 - Global Startup: C:\Users\UranusDominique\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

~ Scan Global Startup in 00mn 01s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)

O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no

~ Scan IE Control Panel in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: S&end to OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO

O9 - Extra button: S&end to OneNote - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll

O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll

~ Scan Winsock in 00mn 00s

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://fichiers2.touslesdrivers.com/maconfig/MaConfig_6_0_3_0.cab

~ Scan Objets ActiveX in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{668399F5-EBB4-4590-8F3D-02FDD50F74C4}: NameServer = 8.8.8.8,8.8.4.4

O17 - HKLM\System\CS1\Services\Tcpip\..\{668399F5-EBB4-4590-8F3D-02FDD50F74C4}: NameServer = 8.8.8.8,8.8.4.4

O17 - HKLM\System\CS2\Services\Tcpip\..\{668399F5-EBB4-4590-8F3D-02FDD50F74C4}: NameServer = 8.8.8.8,8.8.4.4

~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)

O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll

O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll

O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\System32\mshtml.dll

O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\System32\mshtml.dll

O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll

O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll

O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll

O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll

~ Scan Protocole Additionnel in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Emsisoft Anti-Malware 6.0 - Service (a2AntiMalware) . (.Emsisoft GmbH - Emsisoft Anti-Malware Service.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe

O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Intel® Capability Licensing Service In (Intel® Capability Licensing Service Interface) . (.Intel® Corporation - Intel® Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: Intel® PROSet Monitoring Service (Intel® PROSet Monitoring Service) . (.Intel Corporation - Intel® PROSet Monitoring Service.) - C:\Windows\system32\IProsetMonitor.exe

O23 - Service: Intel® Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel® Dynamic Application Loader Host In.) - C:\Program Files\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

O23 - Service: Intel® Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 306.9.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: Intel® Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

~ Scan Desktop Component in 00mn 00s

---\\ BootExecute (O34)

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

~ Scan Keys in 00mn 00s

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.00000000000000000000000000000000] [APT] [{5D48D111-297B-47D6-9E7D-1B62AE93A11F}] (...) -- C:\Users\UranusDominique\AppData\Local\Temp\Temp1_Stinger_driver_v1.0_9x_me_2k_xp_vista32-64.zip\setup.exe (.not file.)

[MD5.07E09D95AFDA096BFD4C06EF51DEC558] [APT] [{A95E9DEE-867B-4B71-8A04-FCC3FBC88AB0}] (.Logitech.) -- C:\Users\UranusDominique\Downloads\lgs510.exe

[MD5.4413423665E7E49DC056AE9B725B22EC] [APT] [{C786FE64-0749-4B5A-93EC-F7753C82E25C}] (...) -- O:\Installer_Windows.exe

[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

~ Scan Scheduled Task in 00mn 04s

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll

O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe

O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - IEAK branding.) -- C:\Windows\System32\iedkcs32.dll

O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll

O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - Windows Theme API.) -- C:\Windows\System32\themeui.dll

O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe

O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Microsoft Internet Explorer FTP Folder Shell Extension.) -- C:\Windows\System32\msieftp.dll

O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll

O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll

O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe

O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r32.) -- C:\Windows\system32\Macromed\Flash\Flash10c.ocx

~ Scan Active Setup in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (A2DDA) . (.Emsi Software GmbH - Emsisoft Direct Disk Access Support Driver.) - C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys

O41 - Driver: (a2injectiondriver) . (.Emsisoft GmbH - Emsisoft Anti-Malware Behavior Blocker.) - C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys

O41 - Driver: (a2util) . (.Emsi Software GmbH - a-squared Malware-IDS utility driver.) - C:\Program Files\Emsisoft Anti-Malware\a2util32.sys

O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys

O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - QoS Packet Scheduler.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys

O41 - Driver: (SAVRKBootTasks) . (.Sophos Plc - Sophos boot tasks for Windows 2000.) - C:\Windows\system32\SAVRKBootTasks.sys

O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)

O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {A80FA752-C491-4ED9-ABF0-4278563160B2}

O42 - Logiciel: [email protected] Partition Manager - (.LSoft Technologies Inc.) [HKLM] -- {A98E3354-AD08-427C-A0AC-32221A3E6598}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems, Inc..) [HKLM] -- {B7B3E9B3-FB14-4927-894B-E9124509AF5A}

O42 - Logiciel: Adobe Reader 9.5.2 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-A95000000001}

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {F5266D28-E0B2-4130-BFC5-EE155AD514DC}

O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {D4DDFAA1-EC37-4529-AD5B-A433ADE68662}

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}

O42 - Logiciel: Assistant Publication de sites Web Microsoft 1.53 - (.Pas de propriétaire.) [HKLM] -- WebPost

O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}

O42 - Logiciel: EaseUS Partition Master 9.1.1 Home Edition - (.EaseUS.) [HKLM] -- EaseUS Partition Master Home Edition_is1

O42 - Logiciel: Emsisoft Anti-Malware - (.Emsi Software GmbH.) [HKLM] -- {BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {3E8A20E1-223F-11E2-9116-B8AC6F98CCE3}

O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM] -- HPExtendedCapabilities

O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM] -- HP Imaging Device Functions

O42 - Logiciel: HP Officejet 7000 E809a Series - (.HP.) [HKLM] -- {44E1D9AA-2A0E-48B8-BA26-136C2149C8AD}

O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM] -- HP Photo Creations

O42 - Logiciel: HP Smart Web Printing 4.60 - (.HP.) [HKLM] -- HP Smart Web Printing

O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}

O42 - Logiciel: Intel® Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}

O42 - Logiciel: Intel® Desktop Utilities - (.Intel Corporation.) [HKLM] -- {F01CBA59-B5BD-4608-A834-1CBE8C292A71}

O42 - Logiciel: Intel® Integrator Assistant - (.Intel Corporation.) [HKLM] -- {D1A35687-AEA9-422C-B237-FC4F8136B6F6}

O42 - Logiciel: Intel® Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}

O42 - Logiciel: Intel® Network Connections 17.4.95.0 - (.Intel.) [HKLM] -- PROSetDX

O42 - Logiciel: Intel® Network Connections 17.4.95.0 - (.Intel.) [HKLM] -- {D54ADF6B-2164-4394-AF70-2778422E9DD8}

O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}

O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM] -- {BCED7487-44BC-487C-94CF-824AB27909E0}

O42 - Logiciel: Java 7 Update 9 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217009FF}

O42 - Logiciel: Logitech Gaming Software 5.10 - (.Logitech.) [HKLM] -- {60D32CDC-E3BE-4578-BA10-29322307CDDC}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}

O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {FE4EA1FF-DBA7-4B04-821F-0AC5BE292C5D}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}

O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}

O42 - Logiciel: Microsoft Office Access MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Access Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0117-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- ENTERPRISE

O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Groove MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Groove Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0114-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}

O42 - Logiciel: Microsoft Office Publisher MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual Basic 6.0 Édition Entreprise (Français) - (.Pas de propriétaire.) [HKLM] -- Visual Basic 6.0 Édition Entreprise (fra)

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}

O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}

O42 - Logiciel: Mobile Mouse Server - (.RPA Tech, Inc.) [HKLM] -- {5AB36A6C-27A8-4CB1-89A1-9D05F3F16625}

O42 - Logiciel: NVIDIA 3D Vision Controller Driver 306.97 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB

O42 - Logiciel: NVIDIA 3D Vision Driver 306.97 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision

O42 - Logiciel: NVIDIA Graphics Driver 306.97 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver

O42 - Logiciel: NVIDIA HD Audio Driver 1.3.18.0 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}

O42 - Logiciel: NVIDIA PhysX System Software 9.12.0604 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX

O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo

O42 - Logiciel: NVIDIA Update 1.10.8 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update

O42 - Logiciel: Navigraph nDAC 3 - (.Navigraph.) [HKLM] -- {F9217D1C-DF96-4C23-8B43-EC60B9C40CB1}

O42 - Logiciel: Node.js - (.Joyent, Inc. and other Node contributors.) [HKLM] -- {C622026F-6461-4C8F-9A92-1EF8D5290EF3}

O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL

O42 - Logiciel: PCmover OEM Express - (.Laplink Software, Inc..) [HKLM] -- {1EE14CC2-ED85-4EEA-8714-A31C86AF3769}

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM] -- InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}

O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM] -- {5442DAB8-7177-49E1-8B22-09A049EA5996}

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2604121

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656351

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656368v2

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656405

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2686827

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2729449

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2737019

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C6997D22-CC93-4ED9-AD8A-02C3F3D2F1F9}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5DD3FF90-B302-45B2-A188-C5EA7ACD5D46}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{D33B9EF5-3801-496A-A2D6-B7F4BE972D75}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B145DBBB-7778-4A5D-9D2B-DA6569F02391}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A0D5F849-D9D5-48ED-99D0-C74D7BFA6A09}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E34960DB-2A93-45DB-A208-02650F7AB09C}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{2623A96B-78E5-42CC-AB55-6A3969B32E36}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{293FB6BE-D3EB-4162-B522-F9108040B9FE}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{2B3C041A-A7F2-4A24-968D-4BEB6A123D15}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{43171CAD-DC60-4E7B-9703-B2EC18001B9F}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687314) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C8F44A46-5C2F-43D8-A0E7-B32E098EDA63}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3579CE34-B225-4B19-A3AF-DE5F562A212F}

O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{EF5B5C7F-20CB-4A3A-AC3D-F5DE2C2BFDC7}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{488F0918-97F9-4CD0-8AD5-8986A46AC962}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Editi - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8F311D6C-D8DD-4C32-9457-1A129CABD1A5}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edi - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{AEA16A27-0B97-4670-818F-A98D06EC0A6F}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edi - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edit - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5A8732F0-C20F-4A9B-A2A9-66FE7A586C35}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2687315) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{71190DF4-8724-4A56-9054-AE97FDC57115}

O42 - Logiciel: Sequoia F8.L Falco - (.X-Aviation.) [HKLM] -- Sequoia F8.L Falco 1.2

O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies

O42 - Logiciel: Sophos Anti-Rootkit 1.5.0 - (.Sophos Plc.) [HKLM] -- Sophos-AntiRootkit

O42 - Logiciel: Stinger Mouse Driver 6.0.0.002 - (.Pas de propriétaire.) [HKLM] -- WheelMouse

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2600217) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217

O42 - Logiciel: Update for Microsoft Office 2007 Help for Common Features (KB963673) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}

O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{620E77C0-CDFE-4C14-AAEB-830ABB65864C}

O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8153EC80-C988-4336-8DAF-6D99C0D26E0C}

O42 - Logiciel: Update for Microsoft Office Access 2007 Help (KB963663) - (.Microsoft.) [HKLM] -- {90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}

O42 - Logiciel: Update for Microsoft Office Excel 2007 Help (KB963678) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}

O42 - Logiciel: Update for Microsoft Office Infopath 2007 Help (KB963662) - (.Microsoft.) [HKLM] -- {90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}

O42 - Logiciel: Update for Microsoft Office OneNote 2007 Help (KB963670) - (.Microsoft.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5DB2894C-2DA4-4DEF-A051-795AE799964A}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 Help (KB963677) - (.Microsoft.) [HKLM] -- {90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760413) 32-B - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{9832AED0-6A0C-4311-9227-FC9CB54F87DD}

O42 - Logiciel: Update for Microsoft Office Powerpoint 2007 Help (KB963669) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}

O42 - Logiciel: Update for Microsoft Office Publisher 2007 Help (KB963667) - (.Microsoft.) [HKLM] -- {90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}

O42 - Logiciel: Update for Microsoft Office Script Editor Help (KB963671) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}

O42 - Logiciel: Update for Microsoft Office Word 2007 Help (KB963665) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}

O42 - Logiciel: VideoStream Server v1.0.3.3 - (.Pas de propriétaire.) [HKLM] -- VideoStream Server_is1

O42 - Logiciel: VirtualDrive Pro - (.FarStone Technology Inc..) [HKLM] -- {EEE22184-B53C-4B87-9F5B-53638160B966}

O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {0840B4D6-7DD1-4187-8523-E6FC0007EFB7}

O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {0F6F6876-6334-4977-B5DD-CFC12E193420}

O42 - Logiciel: pThreads GC2 - (.pThreads.) [HKLM] -- {B72F78A5-1733-47B3-AF79-16EA358A59F3}_is1

---\\ HKCU & HKLM Software Keys

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\BasicScript Program Settings]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Collect3 PTY LTD]

[HKCU\Software\ESET]

[HKCU\Software\EaseUS]

[HKCU\Software\FarStone]

[HKCU\Software\Google]

[HKCU\Software\HP]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\JC]

[HKCU\Software\JavaSoft]

[HKCU\Software\Joyent]

[HKCU\Software\Laplink]

[HKCU\Software\Logitech]

[HKCU\Software\Macromedia]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Spearit]

[HKCU\Software\Trolltech]

[HKCU\Software\Visan]

[HKCU\Software\ZebHelpProcess Helper]

[HKCU\Software\cybelsoft]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Adobe]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\CBSTEST]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\DTS]

[HKLM\Software\Emsi Software GmbH]

[HKLM\Software\Eset]

[HKLM\Software\FarStone]

[HKLM\Software\GEAR Software]

[HKLM\Software\Google]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\ICE]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Khronos]

[HKLM\Software\LSoft Technologies Inc]

[HKLM\Software\Laplink]

[HKLM\Software\Logitech]

[HKLM\Software\Macromedia]

[HKLM\Software\McAfee]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Navigraph]

[HKLM\Software\ODBC]

[HKLM\Software\Policies]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\RocketLife]

[HKLM\Software\SRS Labs]

[HKLM\Software\SonicFocus]

[HKLM\Software\Sonic]

[HKLM\Software\SourceCodeControlProvider]

[HKLM\Software\Spearit]

[HKLM\Software\Visan]

[HKLM\Software\Volatile]

[HKLM\Software\WOW6432Node]

[HKLM\Software\Waves Audio]

[HKLM\Software\X-Aviation]

[HKLM\Software\Zenographics]

[HKLM\Software\cybelsoft]

[HKLM\Software\lameme]

~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 26/10/2012 - 06:05:00 - [96,457] ----D C:\Program Files\Adobe

O43 - CFD: 24/10/2012 - 16:07:46 - [1,086] ----D C:\Program Files\Air Mouse

O43 - CFD: 28/10/2012 - 05:01:30 - [2,316] ----D C:\Program Files\Apple Software Update

O43 - CFD: 28/10/2012 - 05:03:58 - [0,602] ----D C:\Program Files\Bonjour

O43 - CFD: 28/10/2012 - 12:39:31 - [479,530] ----D C:\Program Files\Common Files

O43 - CFD: 12/04/2011 - 09:24:54 - [79,361] ----D C:\Program Files\DVD Maker

O43 - CFD: 04/11/2012 - 12:01:59 - [37,140] ----D C:\Program Files\EaseUS

O43 - CFD: 18/11/2012 - 18:25:32 - [271,879] ----D C:\Program Files\Emsisoft Anti-Malware

O43 - CFD: 25/10/2012 - 04:33:06 - [46,338] ----D C:\Program Files\FarStone

O43 - CFD: 11/11/2012 - 08:58:38 - [518,491] ----D C:\Program Files\Google

O43 - CFD: 11/11/2012 - 09:17:51 - [155,739] ----D C:\Program Files\HP

O43 - CFD: 11/11/2012 - 09:18:12 - [0,428] ----D C:\Program Files\HP Photo Creations

O43 - CFD: 04/11/2012 - 08:46:29 - [19,889] ----D C:\Program Files\InstallShield Installation Information

O43 - CFD: 28/10/2012 - 07:20:39 - [59,659] ----D C:\Program Files\Intel

O43 - CFD: 14/11/2012 - 10:15:05 - [5,782] ----D C:\Program Files\Internet Explorer

O43 - CFD: 28/10/2012 - 05:08:51 - [2,258] ----D C:\Program Files\iPod

O43 - CFD: 28/10/2012 - 05:09:37 - [145,931] ----D C:\Program Files\iTunes

O43 - CFD: 28/10/2012 - 06:44:27 - [122,056] ----D C:\Program Files\Java

O43 - CFD: 24/10/2012 - 12:30:15 - [23,642] ----D C:\Program Files\Laplink

O43 - CFD: 24/10/2012 - 16:09:59 - [14,902] ----D C:\Program Files\Logitech

O43 - CFD: 04/11/2012 - 08:46:29 - [3,941] ----D C:\Program Files\LSoft Technologies Inc

O43 - CFD: 29/10/2012 - 15:08:24 - [7,342] ----D C:\Program Files\ma-config.com

O43 - CFD: 02/11/2012 - 13:03:17 - [0] ----D C:\Program Files\Microsoft

O43 - CFD: 28/10/2012 - 11:22:34 - [660,594] ----D C:\Program Files\Microsoft Office

O43 - CFD: 29/10/2012 - 09:42:19 - [36,641] ----D C:\Program Files\Microsoft Silverlight

O43 - CFD: 26/10/2012 - 06:49:57 - [70,627] ----D C:\Program Files\Microsoft Visual Studio

O43 - CFD: 27/10/2012 - 06:32:03 - [1,204] ----D C:\Program Files\Microsoft Visual Studio 8

O43 - CFD: 27/10/2012 - 16:54:53 - [3,554] ----D C:\Program Files\Microsoft Works

O43 - CFD: 27/10/2012 - 06:33:13 - [7,789] ----D C:\Program Files\Microsoft.NET

O43 - CFD: 27/10/2012 - 06:34:19 - [0,025] ----D C:\Program Files\MSBuild

O43 - CFD: 24/10/2012 - 12:16:27 - [0] ----D C:\Program Files\MSXML 4.0

O43 - CFD: 07/11/2012 - 16:54:19 - [7,107] ----D C:\Program Files\Navigraph

O43 - CFD: 12/11/2012 - 14:05:32 - [7,809] ----D C:\Program Files\nodejs

O43 - CFD: 28/10/2012 - 07:28:05 - [622,496] ----D C:\Program Files\NVIDIA Corporation

O43 - CFD: 29/10/2012 - 19:51:41 - [0,772] ----D C:\Program Files\OpenAL

O43 - CFD: 26/10/2012 - 06:50:27 - [0,133] ----D C:\Program Files\Publication Web

O43 - CFD: 11/11/2012 - 07:49:46 - [72,326] ----D C:\Program Files\QuickTime

O43 - CFD: 24/10/2012 - 12:22:41 - [17,288] ----D C:\Program Files\Realtek

O43 - CFD: 14/07/2009 - 11:52:30 - [35,219] ----D C:\Program Files\Reference Assemblies

O43 - CFD: 24/10/2012 - 12:27:21 - [1,047] ----D C:\Program Files\Renesas Electronics

O43 - CFD: 26/10/2012 - 15:15:24 - [2,652] ----D C:\Program Files\Sophos

O43 - CFD: 26/10/2012 - 14:57:02 - [0,029] ----D C:\Program Files\stinger

O43 - CFD: 24/10/2012 - 12:23:04 - [0] ----D C:\Program Files\Temp

O43 - CFD: 14/07/2009 - 11:53:23 - [0] ----D C:\Program Files\Uninstall Information

O43 - CFD: 25/10/2012 - 04:42:24 - [23,190] ----D C:\Program Files\VideoStream

O43 - CFD: 12/04/2011 - 09:16:02 - [2,887] ----D C:\Program Files\Windows Defender

O43 - CFD: 26/10/2012 - 09:58:31 - [6,677] ----D C:\Program Files\Windows Journal

O43 - CFD: 12/04/2011 - 09:16:02 - [5,833] ----D C:\Program Files\Windows Mail

O43 - CFD: 12/04/2011 - 09:16:02 - [6,277] ----D C:\Program Files\Windows Media Player

O43 - CFD: 14/07/2009 - 11:52:30 - [11,504] ----D C:\Program Files\Windows NT

O43 - CFD: 12/04/2011 - 09:16:02 - [4,191] ----D C:\Program Files\Windows Photo Viewer

O43 - CFD: 21/11/2010 - 04:33:48 - [0,181] ----D C:\Program Files\Windows Portable Devices

O43 - CFD: 12/04/2011 - 09:16:02 - [6,370] ----D C:\Program Files\Windows Sidebar

O43 - CFD: 18/11/2012 - 18:29:05 - [10,147] ----D C:\Program Files\ZHPDiag

O43 - CFD: 26/10/2012 - 06:05:04 - [5,493] ----D C:\Program Files\Common Files\Adobe

O43 - CFD: 28/10/2012 - 05:10:27 - [158,790] ----D C:\Program Files\Common Files\Apple

O43 - CFD: 26/10/2012 - 06:50:22 - [2,041] ----D C:\Program Files\Common Files\designer

O43 - CFD: 25/10/2012 - 04:32:06 - [3,564] ----D C:\Program Files\Common Files\InstallShield

O43 - CFD: 28/10/2012 - 12:39:32 - [0,186] ----D C:\Program Files\Common Files\Intel Corporation

O43 - CFD: 28/10/2012 - 06:45:11 - [1,184] ----D C:\Program Files\Common Files\Java

O43 - CFD: 24/10/2012 - 12:30:16 - [0,216] ----D C:\Program Files\Common Files\Laplink

O43 - CFD: 25/10/2012 - 06:01:23 - [0,995] ----D C:\Program Files\Common Files\Logitech

O43 - CFD: 28/10/2012 - 08:25:16 - [224,603] ----D C:\Program Files\Common Files\microsoft shared

O43 - CFD: 24/10/2012 - 12:30:31 - [0,185] ----D C:\Program Files\Common Files\postureAgent

O43 - CFD: 14/07/2009 - 09:37:05 - [0,003] ----D C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 09:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 27/10/2012 - 16:53:08 - [43,071] ----D C:\Program Files\Common Files\System

O43 - CFD: 28/10/2012 - 05:09:38 - [2,445] ----D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1

O43 - CFD: 26/10/2012 - 06:05:04 - [112,551] ----D C:\ProgramData\Adobe

O43 - CFD: 28/10/2012 - 05:08:27 - [65,320] ----D C:\ProgramData\Apple

O43 - CFD: 28/10/2012 - 05:08:48 - [74,857] ----D C:\ProgramData\Apple Computer

O43 - CFD: 14/07/2009 - 11:53:55 - [0] --H-D C:\ProgramData\Application Data

O43 - CFD: 14/07/2009 - 11:53:55 - [0] --H-D C:\ProgramData\Desktop

O43 - CFD: 14/07/2009 - 11:53:55 - [0] --H-D C:\ProgramData\Documents

O43 - CFD: 25/10/2012 - 05:02:47 - [3,278] ----D C:\ProgramData\Downloaded Installations

O43 - CFD: 24/10/2012 - 12:32:56 - [0,008] ----D C:\ProgramData\ESET

O43 - CFD: 26/10/2012 - 10:08:38 - [0] ----D C:\ProgramData\farstone

O43 - CFD: 14/07/2009 - 11:53:55 - [0] --H-D C:\ProgramData\Favorites

O43 - CFD: 28/10/2012 - 08:27:20 - [16,443] ----D C:\ProgramData\HP

O43 - CFD: 11/11/2012 - 09:18:12 - [2,742] ----D C:\ProgramData\HP Photo Creations

O43 - CFD: 28/10/2012 - 08:10:08 - [0,009] ----D C:\ProgramData\HP Product Assistant

O43 - CFD: 25/10/2012 - 06:00:27 - [0,048] ----D C:\ProgramData\Intel

O43 - CFD: 14/11/2012 - 10:14:27 - [0,000] ----D C:\ProgramData\Laplink

O43 - CFD: 29/10/2012 - 15:08:19 - [5,285] ----D C:\ProgramData\ma-config.com

O43 - CFD: 02/11/2012 - 13:03:17 - [1751,988] -S--D C:\ProgramData\Microsoft

O43 - CFD: 14/11/2012 - 02:29:09 - [0,059] ----D C:\ProgramData\Microsoft Help

O43 - CFD: 07/11/2012 - 16:54:19 - [125,363] ----D C:\ProgramData\Navigraph

O43 - CFD: 18/11/2012 - 18:25:05 - [2,248] ----D C:\ProgramData\NVIDIA

O43 - CFD: 27/10/2012 - 16:17:31 - [2,085] ----D C:\ProgramData\NVIDIA Corporation

O43 - CFD: 14/07/2009 - 11:53:55 - [0] --H-D C:\ProgramData\Start Menu

O43 - CFD: 28/10/2012 - 06:45:11 - [0,000] ----D C:\ProgramData\Sun

O43 - CFD: 14/07/2009 - 11:53:55 - [0] --H-D C:\ProgramData\Templates

O43 - CFD: 11/11/2012 - 09:18:10 - [0,091] ----D C:\ProgramData\Visan

O43 - CFD: 28/10/2012 - 08:28:40 - [0,000] ----D C:\ProgramData\WEBREG

O43 - CFD: 06/11/2012 - 14:37:51 - [0,206] ----D C:\Users\UranusDominique\AppData\Roaming\Adobe

O43 - CFD: 01/11/2012 - 09:26:38 - [0,200] ----D C:\Users\UranusDominique\AppData\Roaming\Apple Computer

O43 - CFD: 24/10/2012 - 12:33:33 - [0] ----D C:\Users\UranusDominique\AppData\Roaming\ESET

O43 - CFD: 25/10/2012 - 04:47:11 - [0,149] ----D C:\Users\UranusDominique\AppData\Roaming\FarStone

O43 - CFD: 28/10/2012 - 08:28:40 - [0,001] ----D C:\Users\UranusDominique\AppData\Roaming\HP

O43 - CFD: 18/11/2012 - 09:47:27 - [0,001] ----D C:\Users\UranusDominique\AppData\Roaming\HpUpdate

O43 - CFD: 24/10/2012 - 10:12:22 - [0] ----D C:\Users\UranusDominique\AppData\Roaming\Identities

O43 - CFD: 24/10/2012 - 12:24:31 - [0] ----D C:\Users\UranusDominique\AppData\Roaming\InstallShield

O43 - CFD: 24/10/2012 - 12:34:51 - [0] ----D C:\Users\UranusDominique\AppData\Roaming\Intel Corporation

O43 - CFD: 06/11/2012 - 14:37:53 - [0,001] ----D C:\Users\UranusDominique\AppData\Roaming\Macromedia

O43 - CFD: 12/04/2011 - 09:24:34 - [0] ----D C:\Users\UranusDominique\AppData\Roaming\Media Center Programs

O43 - CFD: 12/11/2012 - 14:05:33 - [3,287] -S--D C:\Users\UranusDominique\AppData\Roaming\Microsoft

O43 - CFD: 12/11/2012 - 14:05:20 - [0] ----D C:\Users\UranusDominique\AppData\Roaming\npm

O43 - CFD: 24/10/2012 - 20:21:15 - [24,580] ----D C:\Users\UranusDominique\AppData\Roaming\NVIDIA

O43 - CFD: 18/11/2012 - 18:28:44 - [0,003] ----D C:\Users\UranusDominique\AppData\Roaming\VideoStream

O43 - CFD: 26/10/2012 - 06:04:53 - [0,079] ----D C:\Users\UranusDominique\AppData\Local\Adobe

O43 - CFD: 24/10/2012 - 16:22:48 - [0,020] ----D C:\Users\UranusDominique\AppData\Local\AirMouse

O43 - CFD: 24/10/2012 - 16:22:54 - [0] ----D C:\Users\UranusDominique\AppData\Local\Apple

O43 - CFD: 28/10/2012 - 05:09:59 - [1,376] ----D C:\Users\UranusDominique\AppData\Local\Apple Computer

O43 - CFD: 24/10/2012 - 10:12:15 - [0] ----D C:\Users\UranusDominique\AppData\Local\Application Data

O43 - CFD: 25/10/2012 - 04:36:50 - [1,507] ----D C:\Users\UranusDominique\AppData\Local\Apps

O43 - CFD: 25/10/2012 - 04:37:48 - [0] ----D C:\Users\UranusDominique\AppData\Local\Deployment

O43 - CFD: 03/11/2012 - 15:02:18 - [0,887] ----D C:\Users\UranusDominique\AppData\Local\Diagnostics

O43 - CFD: 24/10/2012 - 16:07:23 - [33,873] ----D C:\Users\UranusDominique\AppData\Local\Downloaded Installations

O43 - CFD: 11/11/2012 - 08:58:44 - [143,474] ----D C:\Users\UranusDominique\AppData\Local\Google

O43 - CFD: 24/10/2012 - 10:12:15 - [0] ----D C:\Users\UranusDominique\AppData\Local\History

O43 - CFD: 09/11/2012 - 12:43:56 - [1895,042] ----D C:\Users\UranusDominique\AppData\Local\Microsoft

O43 - CFD: 27/10/2012 - 06:31:34 - [0] ----D C:\Users\UranusDominique\AppData\Local\Microsoft Help

O43 - CFD: 18/11/2012 - 18:26:36 - [15,592] ----D C:\Users\UranusDominique\AppData\Local\Temp

O43 - CFD: 24/10/2012 - 10:12:15 - [0] ----D C:\Users\UranusDominique\AppData\Local\Temporary Internet Files

O43 - CFD: 25/10/2012 - 04:47:13 - [0,001] ----D C:\Users\UranusDominique\AppData\Local\VirtualStore

O43 - CFD: 14/07/2009 - 11:42:04 - [0,014] R---D C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

O43 - CFD: 26/10/2012 - 10:02:57 - [0,000] R---D C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

O43 - CFD: 28/10/2012 - 06:57:40 - [0,001] ----D C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cyber Snipa Stinger Mouse

O43 - CFD: 14/07/2009 - 11:37:42 - [0,001] R---D C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

O43 - CFD: 26/10/2012 - 06:50:27 - [0,001] ----D C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Web Publishing

O43 - CFD: 12/11/2012 - 14:05:34 - [0,003] ----D C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js (x86)

O43 - CFD: 05/11/2012 - 11:57:13 - [0] R---D C:\Users\UranusDominique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

~ Scan Program Folder in 00mn 20s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.44A8F5CFFC530613E042515BFCA4E3A2] - 18/11/2012 - 18:28:19 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1076714]

O44 - LFC:[MD5.5BE5308A3AB805D4C6477365AB2DB6E8] - 18/11/2012 - 18:25:05 ---A- . (...) -- C:\Windows\setupact.log [28733]

O44 - LFC:[MD5.BB94BB7830BAB2E1037D23DF3862FE5A] - 18/11/2012 - 18:25:01 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.C39950CBD01B5C66878876AD0E8EBB43] - 18/11/2012 - 18:24:59 ---A- . (...) -- C:\Windows\MEMORY.DMP [270297293]

O44 - LFC:[MD5.85D416B48B34F6683BF0EAD9154C85DF] - 16/11/2012 - 17:47:24 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [728132]

O44 - LFC:[MD5.4F90E0B65364F235E1BCC28A9B0AEEF7] - 16/11/2012 - 17:47:24 ---A- . (...) -- C:\Windows\System32\perfc009.dat [106726]

O44 - LFC:[MD5.15389B9D1A6259954A6D09B8EB22CF51] - 16/11/2012 - 17:47:24 ---A- . (...) -- C:\Windows\System32\perfh009.dat [616848]

O44 - LFC:[MD5.C49E93FCA4068A69097E4DF6A231EE61] - 14/11/2012 - 10:16:18 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [410024]

O44 - LFC:[MD5.AE9EAFB41B938644EE32AED040701ECE] - 14/11/2012 - 07:12:05 ---A- . (...) -- C:\Windows\System32\unins000.dat [2156]

O44 - LFC:[MD5.B761A6ECA7A63ED0B1BC705628FD491C] - 14/11/2012 - 07:11:15 ---A- . (.Pas de propriétaire - Setup/Uninstall.) -- C:\Windows\System32\unins000.exe [695578]

O44 - LFC:[MD5.D494267BC169604FAC5E3679B9A97FED] - 14/11/2012 - 07:11:12 ---A- . (.Creative Labs - OpenAL32.) -- C:\Windows\System32\wrap_oal.dll [444952]

O44 - LFC:[MD5.235355A8DD26903E75D5E812ECF50E53] - 14/11/2012 - 07:11:12 ---A- . (.Portions © Creative Labs Inc. and NVIDIA - Standard OpenAL Implementation.) -- C:\Windows\System32\OpenAL32.dll [109080]

O44 - LFC:[MD5.2465EBC8CD6E412CDC1AB9FEF40BCAE6] - 14/11/2012 - 02:21:06 ---A- . (...) -- C:\Windows\win.ini [478]

O44 - LFC:[MD5.CE931021E18F385F519E945A8A10548E] - 11/11/2012 - 07:56:14 ---A- . (.Open Source Software community project - POSIX Threads for Windows32 Library.) -- C:\Windows\System32\pthreadGC2.dll [60273]

O44 - LFC:[MD5.14C1567005393B68D75A90706C3802E0] - 05/11/2012 - 17:58:46 ---A- . (...) -- C:\Windows\ntbtlog.txt [270496]

O44 - LFC:[MD5.4B160AEC75933B9A7A5E9D74C5E51C7F] - 05/11/2012 - 05:01:52 --HA- . (...) -- C:\Windows\EPMBatch.ept [1395]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 04/11/2012 - 12:17:01 ---A- . (...) -- C:\Windows\BcdLog.txt [0]

O44 - LFC:[MD5.18E2CACDCFA842C6C27E56D945F419DB] - 03/11/2012 - 03:57:27 ---A- . (...) -- C:\BCD_Backup [28672]

O44 - LFC:[MD5.D7C53AF8C396F5D362F902211F7AF7D3] - 03/11/2012 - 03:57:26 -SHA- . (...) -- C:\BCD_Backup.LOG [25600]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 03/11/2012 - 03:57:26 -SHA- . (...) -- C:\BCD_Backup.LOG1 [0]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 03/11/2012 - 03:57:26 -SHA- . (...) -- C:\BCD_Backup.LOG2 [0]

O44 - LFC:[MD5.414CE7205D054838D135A739ED2E18DB] - 01/11/2012 - 11:35:17 ---A- . (...) -- C:\X-Plane Installer.prf [152]

O44 - LFC:[MD5.694F54BD227916B89FC3EB1DB53F0685] - 29/10/2012 - 19:52:52 R--A- . (.Creative Labs Inc. - OpenAL Installer.) -- C:\Windows\System32\tmp4CC3.tmp [809496]

O44 - LFC:[MD5.B3EDFECE69618CEEDD69385CA2E203B7] - 28/10/2012 - 12:34:47 ---A- . (...) -- C:\Windows\PFRO.log [8166]

O44 - LFC:[MD5.F3CF2A82E8C8528A8A1DF2236A3E8A94] - 28/10/2012 - 08:27:10 ---A- . (...) -- C:\Windows\hpwins25.dat [251573]

O44 - LFC:[MD5.8D4A6A3940CE08E23B98D84B4797138C] - 28/10/2012 - 08:08:17 ---A- . (...) -- C:\Windows\DPINST.LOG [12134]

O44 - LFC:[MD5.9E0D9842081A38FFF52C423AF0C63C83] - 28/10/2012 - 08:08:12 ---A- . (.Hewlett-Packard Company - LanguageMonitor.) -- C:\Windows\System32\hpf3l02t.dll [125440]

O44 - LFC:[MD5.48BD3DD357DB6BB61FB2E6EF3D137764] - 28/10/2012 - 07:20:45 ---A- . (.Intel Corporation - Intel Rapid Storage Technology Filter drive.) -- C:\Windows\System32\Drivers\iaStorF.sys [25656]

O44 - LFC:[MD5.70BADD827F0C6863AD7F4850DCC5E79B] - 28/10/2012 - 07:20:45 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\Drivers\iaStorA.sys [532536]

O44 - LFC:[MD5.BC95F5900522097FC73F573DFFE07D59] - 28/10/2012 - 06:55:40 ---A- . (...) -- C:\Windows\System32\WmiConf.txt [3357]

O44 - LFC:[MD5.8C3D0C73A0850A0EE62DF9EC36DBDE80] - 28/10/2012 - 06:51:02 ----- . (...) -- C:\Windows\System32\SetupBD.din [1904]

O44 - LFC:[MD5.6CA90E04F27E26B579E001F72F603A6A] - 28/10/2012 - 06:50:28 ---A- . (.Intel Corporation - PRONtObj Module.) -- C:\Windows\System32\PRONtObj.dll [240448]

O44 - LFC:[MD5.B1E9B8DBA70006DE7E347AF6533246C4] - 28/10/2012 - 06:50:27 ---A- . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\System32\Drivers\iANSW60.sys [140680]

O44 - LFC:[MD5.4513836BFA89B4DC5336F71A9DE5C295] - 28/10/2012 - 06:49:21 ---A- . (.Intel Corporation - Intel ® Network Connections Driver Uninst.) -- C:\Windows\System32\PROUnstl.exe [297344]

O44 - LFC:[MD5.DD7838FA7FE64970C791837291B73DCF] - 28/10/2012 - 06:49:21 ---A- . (.Intel Corporation - Intel® Network Interface Card CoInstaller.) -- C:\Windows\System32\NicInstC.dll [83808]

O44 - LFC:[MD5.226D65B23E1BF630FFC9BBF1FBB577C7] - 28/10/2012 - 06:49:20 ---A- . (...) -- C:\Windows\System32\e1c6232.din [3109]

O44 - LFC:[MD5.6E0BD8B93405E5C0711AFDB01E69673F] - 28/10/2012 - 06:49:20 ---A- . (.Intel Corporation - Intel® Gigabit Adapter Event-Log Message.) -- C:\Windows\System32\e1cmsg.dll [73032]

O44 - LFC:[MD5.884870CD3BF7BA07E57605685AAC3785] - 28/10/2012 - 06:49:20 ---A- . (.Intel Corporation - Intel® Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\Drivers\e1c6232.sys [358224]

O44 - LFC:[MD5.69E5F6102D8016CA487D35D565AA61F2] - 28/10/2012 - 06:44:33 ---A- . (.Oracle Corporation - Pas de description.) -- C:\Windows\System32\WindowsAccessBridge.dll [93672]

O44 - LFC:[MD5.23C84DBECF3BD95687623F23BCD66441] - 28/10/2012 - 06:44:31 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\Windows\System32\javaw.exe [174056]

O44 - LFC:[MD5.315F60FEDCFDACD6A6DBA0A28596F551] - 28/10/2012 - 06:44:31 ---A- . (.Oracle Corporation - Java Web Start Launcher.) -- C:\Windows\System32\javaws.exe [246760]

O44 - LFC:[MD5.E8AFA843B9CEC534379950FA398A3F30] - 28/10/2012 - 06:44:30 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\Windows\System32\deployJava1.dll [746984]

O44 - LFC:[MD5.AF20DA051DE39496C098F2F33B958E94] - 28/10/2012 - 06:44:30 ---A- . (.Oracle Corporation - Java Platform SE binary.) -- C:\Windows\System32\java.exe [174056]

O44 - LFC:[MD5.2C82D753EF779945977C82A3908DA20A] - 28/10/2012 - 06:44:30 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\System32\npDeployJava1.dll [821736]

O44 - LFC:[MD5.185ADA973B5020655CEE342059A86CBB] - 28/10/2012 - 05:09:38 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [26840]

O44 - LFC:[MD5.68DE5B1E82D3DD10F5F6169522C7C88A] - 26/10/2012 - 23:19:19 ----- . (.Sophos Plc - Sophos boot tasks for Windows 2000.) -- C:\Windows\System32\SAVRKBootTasks.sys [18816]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/10/2012 - 20:43:26 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf [0]

O44 - LFC:[MD5.B4FA6D277F63CE3E5E547DD40365F178] - 26/10/2012 - 14:49:43 ---A- . (.McAfee, Inc. - McAfee Labs® GetSusp™ Utility Driver.) -- C:\Windows\stinger.sys [14664]

O44 - LFC:[MD5.D320BF87125326F996D4904FE24300FC] - 26/10/2012 - 14:44:17 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [80256]

O44 - LFC:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 26/10/2012 - 14:44:17 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [22400]

O44 - LFC:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 26/10/2012 - 14:44:17 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys [332160]

O44 - LFC:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 26/10/2012 - 14:44:17 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [117120]

O44 - LFC:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 26/10/2012 - 14:44:17 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [143744]

O44 - LFC:[MD5.B2F7861A18DDF66E9C82F76167EE1546] - 26/10/2012 - 11:32:36 ---A- . (...) -- C:\Windows\hpoins19.dat [245518]

O44 - LFC:[MD5.4FEB34235456276C733B50DACFD530E2] - 26/10/2012 - 06:50:42 ---A- . (...) -- C:\Windows\ODBCINST.INI [535]

O44 - LFC:[MD5.8AC7A2D4EC55C0386E3FEE2FD537131F] - 26/10/2012 - 06:50:41 ---A- . (...) -- C:\Windows\ODBC.INI [288]

O44 - LFC:[MD5.217213E775E0CE54A20296E2FC22D3DE] - 26/10/2012 - 06:50:40 ---A- . (...) -- C:\Windows\VBAddin.INI [71]

O44 - LFC:[MD5.F58B343105C941C95B13DD6C56356713] - 26/10/2012 - 06:50:29 ---A- . (...) -- C:\Windows\VB.INI [1273]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/10/2012 - 06:50:27 ---A- . (...) -- C:\Windows\wplog.txt [0]

O44 - LFC:[MD5.45D1AE9EFBC36EDC84FB73F30A60A209] - 26/10/2012 - 06:18:32 ---A- . (...) -- C:\Windows\IE9_main.log [3253]

O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 26/10/2012 - 06:18:17 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]

O44 - LFC:[MD5.335BE1B7EDAED53DC6AA3B4D60AA68A8] - 26/10/2012 - 06:15:53 ---A- . (...) -- C:\Windows\msxml4-KB954430-enu.LOG [291972]

O44 - LFC:[MD5.F2E9AEED7972091950923DB4052729DA] - 26/10/2012 - 06:14:43 ---A- . (...) -- C:\Windows\msxml4-KB973688-enu.LOG [294442]

O44 - LFC:[MD5.C5ACDBF61DF211BDCC2B5021B1405BB0] - 26/10/2012 - 06:12:15 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304]

O44 - LFC:[MD5.ED4649A28AFE0B3DB93C3198BA48E34E] - 26/10/2012 - 06:12:15 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [294912]

O44 - LFC:[MD5.56C519C4EEF322F0C72396C970EDEA87] - 25/10/2012 - 04:35:42 ---A- . (...) -- C:\Windows\vdp.log [11830]

O44 - LFC:[MD5.0E722803B702F03FE11C3CF67C044638] - 25/10/2012 - 04:35:15 ---A- . (...) -- C:\inVHDDrvLog.dat [261]

O44 - LFC:[MD5.6DE08E1FA2631B7AA5AA68D3C923A96D] - 25/10/2012 - 04:35:09 ---A- . (...) -- C:\Windows\Driverinstall.log [2357]

O44 - LFC:[MD5.985709505C80B88C1B41908C0075CA0D] - 25/10/2012 - 04:34:32 ----- . (.FarStone Inc. - FarStone Bus Enumerator.) -- C:\Windows\System32\Drivers\fcdabus.sys [18448]

O44 - LFC:[MD5.8E2BE5233C88A50EE69442B4A4937FCE] - 25/10/2012 - 04:34:32 ----- . (.FarStone Inc. - FarStone SCSI Miniport.) -- C:\Windows\System32\Drivers\fvxscsi.sys [86800]

O44 - LFC:[MD5.86748B574AD69010A81715554E40E07A] - 25/10/2012 - 04:32:10 ---A- . (.Pas de propriétaire - RDrv2KInterface DLL.) -- C:\Windows\System32\RDrv2KInterface.dll [86016]

O44 - LFC:[MD5.5C4972BF030AC19FB9A24E47ED28746D] - 25/10/2012 - 04:32:10 ---A- . (.Pas de propriétaire - RDrvInterface DLL.) -- C:\Windows\System32\RDrvInterface.dll [28672]

O44 - LFC:[MD5.93FEA7723AB474AC06F48C4F61A3D0C5] - 25/10/2012 - 04:32:09 ---A- . (...) -- C:\Windows\System32\DVC.dll [118784]

O44 - LFC:[MD5.5220389826609383ACDB3428A14861EF] - 25/10/2012 - 04:32:09 ---A- . (...) -- C:\Windows\System32\inVHDDrvExe.exe [32768]

O44 - LFC:[MD5.554C57B67C7B9379D34BBA3DEA8BC890] - 25/10/2012 - 04:32:09 ---A- . (...) -- C:\Windows\System32\unVHDDrvExe.exe [36864]

O44 - LFC:[MD5.5F2203A97B45158376DA68769C6D131B] - 25/10/2012 - 04:32:09 ---A- . (.FarStone Technology, Inc. - Driver Control version.) -- C:\Windows\System32\Dversion.dll [86016]

O44 - LFC:[MD5.68685BBD072F7316C2DA1DB6CEA4535B] - 25/10/2012 - 03:12:26 ---A- . (.Apple Inc. - QuickTime Client DLL.) -- C:\Windows\System32\QuickTime.qts [69632]

O44 - LFC:[MD5.9D6C0C74CA6F4CC2B251483DD6C7BBE3] - 25/10/2012 - 03:12:26 ---A- . (.Apple Inc. - QuickTimeVR DLL.) -- C:\Windows\System32\QuickTimeVR.qtx [94208]

O44 - LFC:[MD5.30DBD09E8176AFFD3B6B773AB4876A28] - 25/10/2012 - 01:00:51 RSHA- . (...) -- C:\BOOTSECT.BAK [8192]

O44 - LFC:[MD5.572CBECE3BAA034CD3AF3CBBA5A6F8F2] - 24/10/2012 - 16:40:47 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 306.9.) -- C:\Windows\System32\nvsvcr.dll [2557288]

O44 - LFC:[MD5.EB5A13F9139F20AD71ADF4BF79C3AA29] - 24/10/2012 - 16:40:47 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 306.9.) -- C:\Windows\System32\nvvsvc.exe [645992]

O44 - LFC:[MD5.1839D6A4578B1B91044648897E07F87E] - 24/10/2012 - 16:40:47 ---A- . (.NVIDIA Corporation - Pas de description.) -- C:\Windows\System32\nvshext.dll [62312]

O44 - LFC:[MD5.9BA2B36132A41AEBDA66C1D90F8470C2] - 24/10/2012 - 16:40:46 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [3965288]

O44 - LFC:[MD5.DEC53E152E18541D3D585794D99F02B7] - 24/10/2012 - 16:40:46 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 306.9.) -- C:\Windows\System32\nvsvc.dll [2853224]

O44 - LFC:[MD5.450DA5D4332A0693EF7050CCD17002D4] - 24/10/2012 - 16:40:46 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [108392]

O44 - LFC:[MD5.353ADD0D05F6265D49C0B95AB6AAF593] - 24/10/2012 - 16:40:14 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [52584]

O44 - LFC:[MD5.FDEABB62FD35F3F720CDD5910325F3B5] - 24/10/2012 - 16:39:52 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvhdagenco3220103.dll [884072]

O44 - LFC:[MD5.77F9F9A199B87FE3F852E12F5419240B] - 24/10/2012 - 16:39:52 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\Drivers\nvhda32v.sys [149352]

O44 - LFC:[MD5.1E6B66A9703B4DD58F96086DD424FA98] - 24/10/2012 - 16:39:52 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\nvhdap32.dll [28008]

O44 - LFC:[MD5.C937FA0D62CC64FEC133C727611668A0] - 24/10/2012 - 16:39:51 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 306.97.) -- C:\Windows\System32\nvcuda.dll [7697768]

O44 - LFC:[MD5.8A65DE50C4D9BAB60AA04BF47FD31686] - 24/10/2012 - 16:39:51 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 306.9.) -- C:\Windows\System32\nvcuvid.dll [2574696]

O44 - LFC:[MD5.8854614A9792ABCB1D8323B31AF4BF7A] - 24/10/2012 - 16:39:51 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 306.97.) -- C:\Windows\System32\nvcuvenc.dll [1867112]

O44 - LFC:[MD5.CEDE7CB889F5BAE7B6FA90C8BBA79498] - 24/10/2012 - 16:39:51 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 306.97.) -- C:\Windows\System32\nvapi.dll [2428776]

O44 - LFC:[MD5.0A1B502CBC8230DA74BEFBAADDB58916] - 24/10/2012 - 16:39:51 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10837352]

O44 - LFC:[MD5.3F42C367EAC68A81FBED294C15982120] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco32.dll [1009512]

O44 - LFC:[MD5.D820FA30B281E8BAFD24B19BBE198726] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco32.dll [888168]

O44 - LFC:[MD5.54672280A7A9805E3CE4B65FD0350E5D] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 306.97.) -- C:\Windows\System32\nvopencl.dll [6127464]

O44 - LFC:[MD5.A9E419A527081E1088FF1A13FBC4690E] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv32.dll [19906920]

O44 - LFC:[MD5.AFA6C2B04F74B9F69730D25ED8B9911F] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 306.97.) -- C:\Windows\System32\nvcompiler.dll [17559912]

O44 - LFC:[MD5.540DE2DC577E1199301E37CC0F580550] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - NVIDIA D3D Shim Driver, Version 306.97.) -- C:\Windows\System32\nvumdshim.dll [831848]

O44 - LFC:[MD5.70BA2ED3DE9080D9ED3C65B7ADE6F653] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 306.97.) -- C:\Windows\System32\nvwgf2um.dll [12501352]

O44 - LFC:[MD5.82FC59A500AA685F833E61E3A1BB7DAF] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 306.97.) -- C:\Windows\System32\nvd3dum.dll [15309160]

O44 - LFC:[MD5.E7F21C284E38B07AB61E8066E08638F5] - 24/10/2012 - 16:39:50 ---A- . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 306.) -- C:\Windows\System32\nvinit.dll [202600]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/10/2012 - 16:10:09 RSHA- . (...) -- C:\IO.SYS [0]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/10/2012 - 16:10:09 RSHA- . (...) -- C:\MSDOS.SYS [0]

O44 - LFC:[MD5.A83E7E710989FC0138C6ADD4A11EE21A] - 24/10/2012 - 15:04:18 ---A- . (...) -- C:\Windows\System32\license.rtf [41450]

O44 - LFC:[MD5.0386A1F629FDD766B36A39DA88240EA9] - 24/10/2012 - 15:03:31 ---A- . (...) -- C:\Windows\TSSysprep.log [1355]

O44 - LFC:[MD5.25CA1D27CFD81EBB4D4886463EA663C1] - 24/10/2012 - 15:01:53 ---A- . (...) -- C:\Windows\DtcInstall.log [2790]

O44 - LFC:[MD5.4192468FB10D604673BC46AC50AFA22F] - 24/10/2012 - 12:30:49 ---A- . (.Intel Corporation - Intel® Network Interface Card CoInstaller.) -- C:\Windows\System32\NicCo36.dll [28792]

O44 - LFC:[MD5.150BF0F55FC31FCD01051E3FF4962ECC] - 24/10/2012 - 12:30:36 ---A- . (.Intel Corporation - Intel® Manageability Engine Firmware Dynami.) -- C:\Windows\System32\Drivers\IntelMEFWVer.dll [15168]

O44 - LFC:[MD5.BDB904902500628C6C510CD723800558] - 24/10/2012 - 12:26:38 ---A- . (...) -- C:\CIR.log [87]

O44 - LFC:[MD5.459DB8708F93BEAC0F75E149E1D990F6] - 24/10/2012 - 12:24:44 ---A- . (...) -- C:\IRST.log [86]

O44 - LFC:[MD5.F4F4CBC7F6C7CB940AA9F0AAF3EF1104] - 24/10/2012 - 12:24:32 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\Drivers\iaStor.sys [353304]

O44 - LFC:[MD5.C710C9F51363E9B0B2EAFCAA5A70EA72] - 24/10/2012 - 12:23:04 ---A- . (...) -- C:\RHDSetup.log [2051]

O44 - LFC:[MD5.42F0CF798D7C3946FF38EC85B3F054E7] - 24/10/2012 - 12:23:04 ---A- . (...) -- C:\realtek.log [206]

O44 - LFC:[MD5.6A63E4847EE62E79217444C0C245E847] - 24/10/2012 - 12:22:47 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for window.) -- C:\Windows\System32\RtkPgExt.dll [1843816]

O44 - LFC:[MD5.272BF8E5DBDAF0614CC367A25EA3B256] - 24/10/2012 - 12:22:47 ---A- . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\System32\SRSHP360.dll [173296]

O44 - LFC:[MD5.029F36DE21AFBDD2865CC657E252EBA7] - 24/10/2012 - 12:22:47 ---A- . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\System32\SRSTSHD.dll [185584]

O44 - LFC:[MD5.8C83CED38F8CAC3E8D5A953C03BCF4B4] - 24/10/2012 - 12:22:47 ---A- . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\System32\SRSTSXT.dll [345328]

O44 - LFC:[MD5.A258F7B2B84E88118369B0B2196CC257] - 24/10/2012 - 12:22:47 ---A- . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\System32\SRSWOW.dll [140528]

O44 - LFC:[MD5.FDED64DC18429175D4DD9BB8D92C334C] - 24/10/2012 - 12:22:47 ---A- . (.Virage Logic Corporation / Sonic Focus - SFAPO.DLL.) -- C:\Windows\System32\SFAPO.dll [68944]

O44 - LFC:[MD5.FDDC4D6EC3B2BD3B5A04C22881305621] - 24/10/2012 - 12:22:47 ---A- . (.Virage Logic Corporation / Sonic Focus - SFCOM.DLL.) -- C:\Windows\System32\SFCOM.dll [74064]

O44 - LFC:[MD5.1BE0D5882B4812A0DC0A8137A350AF67] - 24/10/2012 - 12:22:47 ---A- . (.Virage Logic Corporation / Sonic Focus - SFNHK.DLL.) -- C:\Windows\System32\SFNHK.dll [214352]

O44 - LFC:[MD5.10B04CCF552C649EA93CCA00B857912A] - 24/10/2012 - 12:22:47 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesGUILib.dll [1738072]

O44 - LFC:[MD5.CE1E84AA03EE50362D3C69382DCFA294] - 24/10/2012 - 12:22:47 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesLib.dll [1783056]

O44 - LFC:[MD5.AE2882E47206AA92B6D36C196496F87C] - 24/10/2012 - 12:22:46 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\System32\RtkApoApi.dll [453224]

O44 - LFC:[MD5.FC6C799863E38CFC9A161F0ACAD428EE] - 24/10/2012 - 12:22:46 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RtkCoInst.dll [66152]

O44 - LFC:[MD5.31BEDCDED78CADBD9E9FFDF208A9FFEA] - 24/10/2012 - 12:22:46 ---A- . (.Realtek Semiconductor Corp. - Realtek® LFX/GFX DSP component.) -- C:\Windows\System32\RtkAPO.dll [3610216]

O44 - LFC:[MD5.573A6934D4BC8FB8F19AB6E47EBB9128] - 24/10/2012 - 12:22:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) -- C:\Windows\System32\RTEED32A.dll [168648]

O44 - LFC:[MD5.6285E76879D717C3C978A794130DADE8] - 24/10/2012 - 12:22:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x86.) -- C:\Windows\System32\RTEEP32A.dll [357576]

O44 - LFC:[MD5.B747DDAA11333F1EABB35E2AE2E877C9] - 24/10/2012 - 12:22:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x86.) -- C:\Windows\System32\RTEEG32A.dll [62664]

O44 - LFC:[MD5.52999C60386C123BDD6C93D73BEF37CD] - 24/10/2012 - 12:22:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x86.) -- C:\Windows\System32\RTEEL32A.dll [76488]

O44 - LFC:[MD5.DFAC006A189D2CC302F53DFDEE3D74D3] - 24/10/2012 - 12:22:45 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x86.) -- C:\Windows\System32\RP3DAA32.dll [293584]

O44 - LFC:[MD5.655DDC227B11790127A8CBFA7E9CF700] - 24/10/2012 - 12:22:45 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x86.) -- C:\Windows\System32\RP3DHT32.dll [293584]

O44 - LFC:[MD5.83E3F632DB8FADD7DDEEACB2F01ED550] - 24/10/2012 - 12:22:45 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\System32\RTSndMgr.cpl [1084008]

O44 - LFC:[MD5.F42901F67CBC137A0F141C58B831A03C] - 24/10/2012 - 12:22:45 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [3211432]

O44 - LFC:[MD5.2C428ED2AC97B871D1BCC7C1566C4DCC] - 24/10/2012 - 12:22:44 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes.dat [477288]

O44 - LFC:[MD5.84AB243EBB8839C268BA45975BD6558C] - 24/10/2012 - 12:22:44 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO.dll [132368]

O44 - LFC:[MD5.57C588F098C811E9459AC7034349AF6F] - 24/10/2012 - 12:22:44 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO20.dll [232792]

O44 - LFC:[MD5.33CCA4B2289AA5F8753387A8BF18816B] - 24/10/2012 - 12:22:44 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO30.dll [252928]

O44 - LFC:[MD5.6C75723CB2309D23A3A16EF9F45B2F49] - 24/10/2012 - 12:22:44 ---A- . (.Waves Audio Ltd. - MaxxVolumeSD APO.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll [252760]

O44 - LFC:[MD5.F678031A1EF7C96DB09AE9F0DDB7F88E] - 24/10/2012 - 12:22:44 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioEQ.dll [1938704]

O44 - LFC:[MD5.DB2C8187A8397EF8CC08B411C509E80C] - 24/10/2012 - 12:22:44 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioRealtek.dll [1327104]

O44 - LFC:[MD5.6353994C972CB58EB01854C6FDFAC80D] - 24/10/2012 - 12:22:42 ---A- . (.Andrea Electronics Corporation - Render Noise Filters (32-bit).) -- C:\Windows\System32\AERTARen.dll [96160]

O44 - LFC:[MD5.B9C341FFD3C60B376E5BE184DC445C64] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Bass Enhancement COM DLL.) -- C:\Windows\System32\DTSBassEnhancementDLL.dll [447200]

O44 - LFC:[MD5.6D00C1CF1F3A52A319329AD4CC294920] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Boost COM DLL.) -- C:\Windows\System32\DTSBoostDLL.dll [899808]

O44 - LFC:[MD5.87017531CF3898F2EF625F5B3691BEB1] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPO.dll [105696]

O44 - LFC:[MD5.7E5A34FC59A9AA0460ED5549A154A433] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPONS.dll [105184]

O44 - LFC:[MD5.CC1993CB1734E1C6F01B1DD963B6FD98] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Gain Compensator COM DLL.) -- C:\Windows\System32\DTSGainCompensatorDLL.dll [235232]

O44 - LFC:[MD5.B5E329EF4012D0AF05D1C73B3C53AA4A] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSLFXAPO.dll [105696]

O44 - LFC:[MD5.ADF77C70852915A79739E52AA41A973E] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Limiter COM DLL.) -- C:\Windows\System32\DTSLimiterDLL.dll [222944]

O44 - LFC:[MD5.FD3C484B750FA85C72A010495AD5EE03] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS NEO:PC COM DLL.) -- C:\Windows\System32\DTSNeoPCDLL.dll [290016]

O44 - LFC:[MD5.7F996B69DD9E2D357D913A6414E0D768] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Surround Sensation Headphone COM DLL.) -- C:\Windows\System32\DTSS2HeadphoneDLL.dll [961248]

O44 - LFC:[MD5.A8437D1746FAD34DAE962725373E0688] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Surround Sensation Speaker COM DLL.) -- C:\Windows\System32\DTSS2SpeakerDLL.dll [1131232]

O44 - LFC:[MD5.53DBC7200BF6681F86A01B8C18C6B955] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Symmetry COM DLL.) -- C:\Windows\System32\DTSSymmetryDLL.dll [427744]

O44 - LFC:[MD5.DC867B20034FE6A62999FE9290D2F624] - 24/10/2012 - 12:22:42 ---A- . (.DTS - DTS Voice Clarity COM DLL.) -- C:\Windows\System32\DTSVoiceClarityDLL.dll [404704]

O44 - LFC:[MD5.151E683CF0E22A7D2A76C5CF361D5454] - 24/10/2012 - 12:22:42 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\System32\FMAPO.dll [305568]

O44 - LFC:[MD5.2CCEAF03E8AF4543171D236DF21DC29A] - 24/10/2012 - 12:22:41 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (32-bit).) -- C:\Windows\System32\AERTACap.dll [175200]

O44 - LFC:[MD5.90E48E2B15703970E147D8A32A146B8C] - 24/10/2012 - 12:22:40 R---- . (.Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) -- C:\Windows\RtlExUpd.dll [1251944]

O44 - LFC:[MD5.98A94B81391480B350C874E05F8F8339] - 24/10/2012 - 12:19:36 ---A- . (.Intel® Corp - CSVer.) -- C:\Windows\System32\CSVer.dll [53248]

O44 - LFC:[MD5.2D7F0C68E19E2143986618A25985A5E7] - 03/10/2012 - 05:20:00 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [12865]

O44 - LFC:[MD5.AC644E9F91AE18521525713C5D3988DD] - 03/10/2012 - 02:29:23 ---A- . (...) -- C:\Windows\System32\nvcoproc.bin [3536817]

O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 21:57:50 ---A- . (...) -- C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [3]

O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 21:34:21 ---A- . (...) -- C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [3]

O44 - LFC:[MD5.49A3836D438198DE58383756EC7D002E] - 17/05/2012 - 17:36:54 ---A- . (...) -- C:\Windows\System32\BootMan.exe [2468520]

O44 - LFC:[MD5.1F2F4AB15CE03ECC257FEB2F6DC5A013] - 29/07/2011 - 13:54:56 ---A- . (...) -- C:\Windows\System32\EuGdiDrv.sys [8456]

O44 - LFC:[MD5.539CA34FBC74EC366A0D751028C32A08] - 29/07/2011 - 13:54:56 ---A- . (...) -- C:\Windows\System32\epmntdrv.sys [14216]

O44 - LFC:[MD5.780FB595E5E11355A8313F644329E3EB] - 29/07/2011 - 13:54:56 ---A- . (...) -- C:\Windows\System32\setupempdrv03.exe [86408]

O44 - LFC:[MD5.6E7DA5D64EEC97E90B36039551B44CCD] - 29/07/2011 - 13:54:46 ---A- . (...) -- C:\Windows\System32\EuEpmGdi.dll [19840]

O44 - LFC:[MD5.259525CFB422E6AC8E87BC9777B1DF73] - 21/11/2010 - 04:29:06 RSHA- . (...) -- C:\bootmgr [383786]

O44 - LFC:[MD5.D431C9E3792CBBB6DECDFD5A857BCC35] - 29/07/2010 - 10:03:15 ----- . (...) -- C:\Windows\hpwmdl25.dat [530]

O44 - LFC:[MD5.E366573E4AB73F3EBE169B62ABCF77FC] - 20/10/2009 - 11:32:19 ----- . (...) -- C:\Windows\hpomdl19.dat [13898]

O44 - LFC:[MD5.F75D16FB6BEA2FF375290B5FEDF2186D] - 03/04/2009 - 13:55:00 ---A- . (...) -- C:\Windows\MSUMLT0G.ini [31910]

O44 - LFC:[MD5.67EE08A7EE31F246B5DA823C84A1050A] - 23/06/2007 - 02:06:48 ----- . (...) -- C:\Windows\System32\Drivers\fsRamDsk.sys [43408]

O44 - LFC:[MD5.711AE45CE8A4EFBDF01C2ECBBAB3C190] - 15/06/2007 - 06:10:54 ----- . (...) -- C:\Windows\Driver.ico [17542]

O44 - LFC:[MD5.8201439B30C2E1B8BBFC2F2256CDC21C] - 08/08/2006 - 10:03:40 ----- . (...) -- C:\Windows\System32\VDI08X.dat [14496]

~ Scan Files in 01mn 51s

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

~ Scan ShellExecuteHooks in 00mn 00s

---\\ Déni du service (Local Security Authority) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Windows Security Configuration Editor Client Engine.) -- C:\Windows\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Kerberos Security Package.) -- C:\Windows\System32\kerberos.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - LiveSSP.) -- C:\Windows\System32\livessp.dll

~ Scan Keys in 00mn 00s

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys

~ Scan CSB in 00mn 00s

---\\ MountPoints2 Shell Key (O51)

O51 - MPSK:{751f3dcf-1dc0-11e2-8272-3860770e2afc}\AutoRun\command. (...) -- O:\Installer_Windows.exe

~ Scan Keys in 00mn 00s

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

~ Scan Keys in 00mn 00s

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe

O53 - SMSR:HKLM\...\startupreg\Bing Bar [Key] . (...) -- C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe (.not file.)

O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe

O53 - SMSR:HKLM\...\startupreg\Microsoft Default Manager [Key] . (...) -- C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe (.not file.)

O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

O53 - SMSR:HKLM\...\startupreg\RAMDrive [Key] . (.FarStone Technology, Inc. - RDTask Microsoft ???????.) -- C:\Program Files\FarStone\VirtualDrive\VHD\RDTask.exe

O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

~ Scan SMSR Keys in 00mn 00s

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll

~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "LegalNoticeText"=0

O55 - MWPS:[HKLM\...\Policies\System] - "LegalNoticeCaption"=0

~ Scan Keys in 00mn 00s

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 08:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 14/07/2009 - 04:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]

~ Scan Drivers in 00mn 00s

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - 24/10/2012 - C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys (a2acc) .(.Emsisoft GmbH - Emsisoft Anti-Malware File Guard.) - LEGACY_A2ACC

O64 - Services: CurCS - 19/05/2011 - C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys (A2DDA) .(.Emsi Software GmbH - Emsisoft Direct Disk Access Support Driver.) - LEGACY_A2DDA

O64 - Services: CurCS - 24/10/2012 - C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys (a2injectiondriver) .(.Emsisoft GmbH - Emsisoft Anti-Malware Behavior Blocker.) - LEGACY_A2INJECTIONDRIVER

O64 - Services: CurCS - 05/05/2010 - C:\Program Files\Emsisoft Anti-Malware\a2util32.sys (a2util) .(.Emsi Software GmbH - a-squared Malware-IDS utility driver.) - LEGACY_A2UTIL

O64 - Services: CurCS - 29/07/2011 - C:\Windows\system32\epmntdrv.sys - epmntdrv (epmntdrv) .(...) - LEGACY_EPMNTDRV

O64 - Services: CurCS - 29/07/2011 - C:\Windows\system32\EuGdiDrv.sys - EuGdiDrv (EuGdiDrv) .(...) - LEGACY_EUGDIDRV

O64 - Services: CurCS - 21/10/2008 - C:\Windows\System32\DRIVERS\fvxscsi.sys (FVXSCSI) .(.FarStone Inc. - FarStone SCSI Miniport.) - LEGACY_FVXSCSI

O64 - Services: CurCS - 13/09/2010 - C:\Windows\System32\DRIVERS\iaStor.sys (iaStor) .(.Intel Corporation - Intel Rapid Storage Technology driver - x86.) - LEGACY_IASTOR

O64 - Services: CurCS - 18/06/2009 - C:\Windows\system32\SAVRKBootTasks.sys (SAVRKBootTasks) .(.Sophos Plc - Sophos boot tasks for Windows 2000.) - LEGACY_SAVRKBOOTTASKS

O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV

~ Scan Services in 00mn 00s

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe

~ Scan Keys in 00mn 00s

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)

~ Scan Keys in 00mn 00s

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com

~ Scan Keys in 00mn 00s

---\\ Recherche des services démarrés par Svchost (O83)

O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [62464]

O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation Service.) -- C:\Windows\System32\certprop.dll [67584]

O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation Service.) -- C:\Windows\System32\certprop.dll [67584]

O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [168960]

O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [593408]

O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [674304]

O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [473600]

O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [90624]

O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [286208]

O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [75264]

O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\sens.dll [49664]

O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [300544]

O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows Telephony Server.) -- C:\Windows\System32\tapisrv.dll [242176]

O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote Connections Manager.) -- C:\Windows\System32\termsrv.dll [521216]

O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [1933848]

O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [585728]

O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [328192]

O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over an IPv4 network..) -- C:\Windows\System32\iphlpsvc.dll [499712]

O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [21504]

O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [47104]

O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [114688]

O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [49664]

O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [61440]

O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [98304]

O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352]

O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [750592]

O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\kmsvc.dll [71168]

O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\sessenv.dll [113664]

O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]

O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [102912]

O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [37376]

O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [76800]

O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [149504]

~ Scan Services in 00mn 00s

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.FBAB280D0CAC5E21C72F0A1A7B5B9608] [sPRF][08/10/2010] (.Macrovision Corporation - Setup.exe.) -- C:\Users\UranusDominique\AppData\Local\Temp\_isBCC9.exe [455600]

[MD5.A883DB5C29D35D16634450D885967A15] [sPRF][24/10/2012] (.NVIDIA Corporation - NVIDIA Package Launcher.) -- C:\Users\UranusDominique\Desktop\306.97-desktop-win8-win7-winvista-32bit-international-whql.exe [178253024]

[MD5.00D59A2EFBADFB8453E25BA42067AD02] [sPRF][05/11/2012] (.AVAST Software - avast! Antirootkit.) -- C:\Users\UranusDominique\Desktop\aswMBR.exe [4731392]

[MD5.A10ECA34B408810471C0795E2E2EBF6A] [sPRF][04/11/2012] (.Macrovision Corporation - Setup.exe.) -- C:\Users\UranusDominique\Desktop\PartManFree-Setup.exe [4506352]

~ Scan Files in 00mn 01s

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "{80416BD1-95AD-45E3-981D-FC090C9A0C04}" | In - None - P6 - TRUE | .(.Laplink Software Inc. - PCmover.) -- C:\Program Files\Laplink\PCmover\pcmover.exe

O87 - FAEL: "{F71C0A6A-BBE9-49D2-8B5E-3421F969517F}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "{BB5A9DAB-C0F8-47BF-BBE6-27030235F45C}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "{AF6235C6-C420-4B85-ACFE-7B88A7157BB8}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O87 - FAEL: "{FFB7D9EF-E588-4161-9764-6A5415E3140A}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O87 - FAEL: "TCP Query User{A8CF72F8-5F47-40E9-957E-3A354B0D5DFE}C:\program files\air mouse\air mouse\air mouse.exe" | In - Public - P6 - TRUE | .(.Pas de propriétaire - AirMouse.) -- C:\program files\air mouse\air mouse\air mouse.exe

O87 - FAEL: "UDP Query User{C1AC4D40-7A8B-413A-9DD4-A98A392A67FA}C:\program files\air mouse\air mouse\air mouse.exe" | In - Public - P17 - TRUE | .(.Pas de propriétaire - AirMouse.) -- C:\program files\air mouse\air mouse\air mouse.exe

O87 - FAEL: "TCP Query User{12A00120-8990-4579-8416-239639B64E12}E:\x-plane 10\x-plane.exe" | In - Public - P6 - TRUE | .(...) -- E:\x-plane 10\x-plane.exe

O87 - FAEL: "UDP Query User{1B2CF42A-F371-4F93-86C0-FE0A43D3A9E9}E:\x-plane 10\x-plane.exe" | In - Public - P17 - TRUE | .(...) -- E:\x-plane 10\x-plane.exe

O87 - FAEL: "TCP Query User{FF7385C5-C737-4373-9054-778D360046A0}E:\x-plane 10.10 b11 - copy\x-plane.exe" | In - Public - P6 - TRUE | .(...) -- E:\x-plane 10.10 b11 - copy\x-plane.exe

O87 - FAEL: "UDP Query User{C8C7FCDE-E428-4E0A-8F01-23D103B9C1B2}E:\x-plane 10.10 b11 - copy\x-plane.exe" | In - Public - P17 - TRUE | .(...) -- E:\x-plane 10.10 b11 - copy\x-plane.exe

O87 - FAEL: "TCP Query User{F66065CD-A5FD-4306-AAF9-97C66F35591D}C:\program files\videostream\videostream.exe" | In - Public - P6 - TRUE | .(.Collect3 PTY LTD - Video Stream.) -- C:\program files\videostream\videostream.exe

O87 - FAEL: "UDP Query User{43348A24-2D86-496C-9F68-026658192EAE}C:\program files\videostream\videostream.exe" | In - Public - P17 - TRUE | .(.Collect3 PTY LTD - Video Stream.) -- C:\program files\videostream\videostream.exe

O87 - FAEL: "{32E6E64E-14B0-44DC-982B-DA3A7CF80F7F}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe

O87 - FAEL: "{486F413B-BDB8-4597-8AAA-5C47C6F1C0D3}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "{DAA43D76-3087-4B28-A782-E16DE41E5FF2}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe

O87 - FAEL: "TCP Query User{F509ED41-C30E-408D-AF50-D8C6A4F34492}E:\x-plane 10.10\x-plane.exe" |In - Public - P6 - TRUE | .(...) -- E:\x-plane 10.10\x-plane.exe (.not file.)

O87 - FAEL: "UDP Query User{03096F0C-8397-4B85-B963-A23663CA1F21}E:\x-plane 10.10\x-plane.exe" |In - Public - P17 - TRUE | .(...) -- E:\x-plane 10.10\x-plane.exe (.not file.)

O87 - FAEL: "{C48662B4-6CCD-46A7-8995-34EACCA60114}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe

O87 - FAEL: "{A5492A0D-BB23-4F98-A427-DDBBD46ED760}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Update Client.) -- C:\Program Files\HP\hp software update\hpwucli.exe

O87 - FAEL: "{C5E91AD6-381B-4D06-85E4-BC2836BAE8FB}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "{AA880DE4-D633-4CBE-AB8E-1B541690E9EA}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "TCP Query User{47EBB818-100C-4FE2-B67D-BB950D21ED9C}E:\x-plane 9\x-plane.exe" | In - Public - P6 - TRUE | .(...) -- E:\x-plane 9\x-plane.exe

O87 - FAEL: "UDP Query User{485CF832-350E-4AC7-BF4F-37B0B6806C9F}E:\x-plane 9\x-plane.exe" | In - Public - P17 - TRUE | .(...) -- E:\x-plane 9\x-plane.exe

~ Scan Firewall in 00mn 03s

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 24/10/2012 3084176 | (a2AntiMalware) . (.Emsisoft GmbH.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe

SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe

SS - | Auto 25/10/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 25/10/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SR - | Demand 14/07/2009 20992 | C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe

SR - | Auto 14/07/2009 20992 | C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe

SR - | Auto 14/07/2009 20992 | C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe

SR - | Auto 01/09/2012 14904 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

SR - | Auto 19/06/2012 462088 | (Intel® Capability Licensing Service Interface) . (.Intel® Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe

SR - | Auto 06/09/2012 112968 | (Intel® PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe

SS - | Demand 09/09/2012 821648 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe

SR - | Auto 19/07/2012 166720 | (jhi_service) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

SR - | Auto 19/07/2012 277824 | (LMS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

SS - | Demand 28/10/2012 312264 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe

SS - | Demand 0 | (MEMSWEEP2) . (...) - C:\Windows\system32\3B3B.tmp

SR - | Auto 14/07/2009 20992 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe

SR - | Auto 03/10/2012 645992 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe

SS - | Auto 03/10/2012 1258856 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

SR - | Auto 14/07/2009 20992 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe

SR - | Auto 02/10/2012 382824 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

SR - | Auto 19/07/2012 365376 | (UNS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Scan Services in 00mn 04s

End of the scan (1246 lines in 02mn 47s)(0)

Merci pour votre aide.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.