Aller au contenu

pas au top

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    105

  • Inscription

  • Dernière visite

Tout ce qui a été posté par pas au top

  1. pas au top
    ok je vais le faire.Mais le portable est touours tres lent. Par exemple, montre en main, il faut environ 3 minutes pour ouvrir la page ggogle que j'ai choisie comme page d'accueil quad je clique sur firefox
  2. pas au top
    Nouvelle notification d'avira ce matin pour le même virus http://cjoint.com/?3DvjRHvqBMX
  3. pas au top
    j'ai donc suivi les instructions et lorsque j'ai telechargé host install avira m'a dit que le virus TR/Roque.9284919 a été trouvé. je l'ai mis en quarantaine. est ce que je dois réessayer host install?
  4. pas au top
    MERCI http://cjoint.com/?3Duxlkp0c4z http://cjoint.com/?3DuxnL5e4xM http://cjoint.com/?3DuxwJcrsDz voilà les rapports
  5. pas au top
    Bonjour J'ouvre un deuxième sujet pour une deuxième machine: mon portable est extrèmement lent pour ne pas dire plus. Voilà le lien pour le rapport ZHP diag http://cjoint.com/?3DuwwCDfZ7v Merci de votre aide Pas au top
  6. pas au top
    merci beaucoup de votre suivi et surtout de votre aide.Je" crois que la machine a retrouvé de la vitalité grace à vous. Le portable qui m'a permis d'envoyer les messages quand la grosse machine ne voulait rien savoir est extrèmement lent. Je vais profiter d'avoir du temps pour m'en occuper maintenant. Mais je vais ouvrir un autre sujet. Est ce vous qui cloturez celui ci?
  7. pas au top
    http://cjoint.com/?3Duuowlt08k http://cjoint.com/?3DuupRbB1hd J'ai refait les deux scan A quoi ça sert setting.ini? en tous cas merci beaucoup pour tout. C'est déjà beaucoup mieux. Je n'ai plus aucune fenêtre intempestive et ça va beaucoup plus vite.
  8. pas au top
    J'ai un document qui s'appelle settings tout court qui a été créé le 19 avril 2014 et un don dossier Content.transfert.gadget dans lequel il y a un fichier setting (sans s) Si je veux renommer le settings, j'ai un message me disant que le fichier est ouvert ailleurs et que je dois le refermer avant de le renommer.Mais je n'ai rien d'autre qui est ouvert
  9. pas au top
    ca va beaucoup mieux je regarde mieux ce soir. Je dois partir maintenant Merci beaucoup
  10. pas au top
    http://cjoint.com/?3DumB7FovRv http://cjoint.com/?3DumEm42FGX Voilà ce que j'ai obtenu
  11. pas au top
    Bon je fais demarrer accessoire et là je n'ai pas invite de command J'ai essayé sur l'autre ordi et là je trouve sans problème. j'ai aussi remarqué que en dehors de cette semaine, dans le menu panneau de configuration, programme installer desintaller , il n'y a aucune date d'installation en face du nom des programmes. J'ai aussi une imprimante laser scanner samsung dont le scanner ne fonctionne plus si on le commande de l'écran. J'ai essayé de la désinstaller, mais le programme n'est pas dans les programme installés. Mais pour l'imprimante ça fait plusieurs mois que c'est comme ça. Merci
  12. pas au top
    bon ben vous n'allez pas être content, mais je ne vois plus l'icone qui était sur le bureau et je ne la troiuve pas non plus dans program files... Je ne peux pas réinstaller zhpdiag. J'ai toujours le même message. Du coup je ne peux pas acceder à zhfix
  13. pas au top
    http://cjoint.com/?DDttdrppShU je ne sais pas si c'est bien!
  14. pas au top
    j'ai donc désinstallé et j'ai le meme message d'erreur en réinstallant
  15. pas au top
    est ce que je dois désinstaller zhpdiag et le réinstaller avant de demander un nouveau rapport?
  16. pas au top
    excusez moi mais je ne sais pas faire ce que vous me demandez
  17. pas au top
    bon la copie d'écran ne s'est pas installée. Il y a écrit : Une erreur est survenue lors du remplacement d'un fichier existant. Delete file a échoué;code 5 accès refusé
  18. pas au top
    j'ai en effet pu réinitialiser le navigateur. Pour ZHP diag voilà la copie d'écran du message que j'ai:
  19. pas au top
    http://cjoint.com/?3DtsarQ6pZ9 http://cjoint.com/?3DtscxWmC4E http://cjoint.com/?3DtseO9hTRe Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 19/04/2014 Scan Time: 17:25:59 Logfile: Administrator: Yes Version: 2.00.1.1004 Malware Database: v2014.04.19.07 Rootkit Database: v2014.03.27.01 License: Trial Malware Protection: Enabled Malicious Website Protection: Enabled Chameleon: Disabled OS: Windows Vista Service Pack 2 CPU: x86 File System: NTFS User: Famille Philippe Scan Type: Threat Scan Result: Completed Objects Scanned: 275568 Time Elapsed: 13 min, 17 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Shuriken: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 12 PUP.Optional.AdPeak.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{10AD2C61-0898-4348-8600-14A342F22AC3}, Quarantined, [b38061cb483377bf0f5ea96cc33f38c8], PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [270ca488c9b21f176daa33e4679b9b65], PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [270ca488c9b21f176daa33e4679b9b65], PUP.Optional.Feven.A, HKLM\SOFTWARE\Freeven pro 1.2, Quarantined, [d95a3bf10e6dc27457d4df92ef13a25e], PUP.Optional.MediaPlayerplus.A, HKLM\SOFTWARE\MediaPlayerplus, Quarantined, [87acbe6efc7fd0665cf22a471be73dc3], PUP.Optional.AdPeak.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\nuttkoqiez32, Quarantined, [171c9d8f3447b77f6abb81ea23dfd32d], PUP.Optional.FreeHDSportTV.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\FreeHD-Sport TV V9.0, Delete-on-Reboot, [69ca9993245792a4fb9cd7a2c33fe719], PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Freeven pro 1.2, Delete-on-Reboot, [161def3d5724c86e80ade988c43e4fb1], PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, Delete-on-Reboot, [63d0e646d2a9290dada36d04748ef709], PUP.Optional.Feven.A, HKU\S-1-5-21-3877668347-929058439-3679567081-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Freeven pro 1.2, Delete-on-Reboot, [2f0495977803d5619c91254c7d85aa56], PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-21-3877668347-929058439-3679567081-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, Delete-on-Reboot, [8ea599932c4f55e1232d5d14a45ef60a], PUP.Optional.SupraSavings.A, HKU\S-1-5-21-3877668347-929058439-3679567081-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Supra Savings, Delete-on-Reboot, [34ffae7e95e6bd79720870ff738f9c64], Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 20 PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\defaults, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\defaults\preferences, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\userCode, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\locale, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\locale\en-US, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.QuickStart.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma, Quarantined, [f241cf5de09bc1756a17e283b9496799], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmgpbjjcdccinnndjdgmegndbmhbgglb, Quarantined, [949ff13be09b3ef800311a4cf60cbc44], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd, Quarantined, [151e74b817646cca47eb3c2a3ec41be5], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0, Quarantined, [ef44ea42c4b73afc3a15c4a21fe32dd3], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0, Quarantined, [bd76c06cd5a64aecd87c5e08c1411de3], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], Files: 164 PUP.Optional.AdPeak.A, C:\Temp\InstallFilter32.msi, Quarantined, [b083ae7eea91a393da9844f9bb4507f9], PUP.Optional.SupraSavings.A, C:\Temp\t.msi, Quarantined, [b57e66c6e8932e08b726f9231ee65ba5], PUP.Optional.Iminent.A, C:\Users\Famille Philippe\AppData\Local\Temp\IminentSetup.exe, Quarantined, [36fdd65681fac17551389a8e9071b34d], Backdoor.Bot, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\android.exe, Quarantined, [bd76b07c2b50280eb9a295d2b44da55b], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\software\freeven-prox-1-2.exe, Quarantined, [171cd5570c6f0036674ffa4423dd7a86], PUP.Optional.SkyTech.A, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\software\lly_webssearches.exe, Quarantined, [bb78ec405f1ca5912c03b69b02ff34cc], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\software\mediaplayerpluus.exe, Quarantined, [6bc80c2091eaba7c0aad5ee028d80df3], Backdoor.Bot, C:\Users\Famille Philippe\AppData\Local\Temp\android\android.exe, Quarantined, [75be63c94635e94d382379ee738e27d9], PUP.Optional.SkyTech.A, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\alilog.dll, Quarantined, [f14230fc6615ce6850c1a191c43cc53b], PUP.Optional.SkyTech.A, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\package1.zip, Quarantined, [0d26de4e3a415ed823eeef4312ee758b], PUP.Optional.IePluginService.A, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\tmp\SupTab.exe, Quarantined, [61d279b3a2d9ff37074859f8e21fba46], PUP.Optional.WpManager, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\tmp\wpm.exe, Quarantined, [d3602c00ef8c1026ffa03a21956c39c7], PUP.Optional.BabSolution.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\BUSolution.dll, Quarantined, [ab8836f6fc7f9d99d67451b6758c2cd4], PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\ccp.exe, Quarantined, [0132db51c5b641f5889730eea55b08f8], PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\CrxInstaller.dll, Quarantined, [fe35c86489f21620718dc35036cb0df3], PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\MntrDLLInstall.dll, Quarantined, [4ee52b012b501e18a25d69aa946dec14], PUP.Optional.Delta.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\MyDeltaTB.exe, Quarantined, [2a09bc70166576c0bfdb99d1c63b926e], PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\NTRedirect.dll, Quarantined, [290a61cb651693a3e34832c11fe454ac], PUP.Optional.ToolBarInstaller.A, C:\Users\Famille Philippe\AppData\Local\Temp\is-OI417.tmp\BuenoSearchTB.exe, Quarantined, [c96ac26afa811b1b459359a715efbc44], PUP.Optional.GenericExt.A, C:\Users\Famille Philippe\AppData\Local\Temp\igdhbblpcellaljokkpfhcjlagemhgjl4cf73c87\minibarchrome.exe, Quarantined, [d55e62ca394246f060d4c974659b43bd], PUP.Optional.DomaIQ, C:\Users\Famille Philippe\Downloads\Java.exe, Quarantined, [49eaa587106b191de2452816a45c5ba5], PUP.Downloader.ZYL, C:\Users\Famille Philippe\Downloads\igglepopdownload.exe, Quarantined, [47ecd9538af18ea898a1dedb0cf4fd03], PUP.OptionalBundleInstaller.A, C:\Users\Famille Philippe\Downloads\Player_Setup.exe, Quarantined, [ca69a7857b001323dcd7db46f30d817f], PUP.Downloader.ZYL, C:\Users\Famille Philippe\Downloads\bigcityadventuresfdownload.exe, Quarantined, [de555fcd601b5adc5adfa712b64ad32d], PUP.Optional.Softonic, C:\Users\Famille Philippe\Downloads\SoftonicDownloader_pour_image-converter-one.exe, Quarantined, [e35030fc8bf00630fc9fc43b0ef229d7], PUP.Optional.Softonic, C:\Users\Famille Philippe\Downloads\SoftonicDownloader_pour_windows-live-galerie-de-photos.exe, Quarantined, [d75cf93343382a0cd9c214ebd22ece32], PUP.Optional.OneClickDownloader.A, C:\Users\Famille Philippe\Downloads\StreamhuntAppsSetup(18_3f)3_ff.exe, Quarantined, [f340939975063df900eee12b55ac22de], Trojan.RepackedSetup.SFX, C:\Users\Famille Philippe\Downloads\WebPlayer_V16 (1).exe, Quarantined, [1023052798e30135e95ed0cbcd34d62a], Trojan.RepackedSetup.SFX, C:\Users\Famille Philippe\Downloads\WebPlayer_V16.exe, Quarantined, [959e9795eb90ea4caa9d5e3d758c758b], PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-1.job, Quarantined, [d75c9993453670c6dae4106043bf768a], PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.job, Quarantined, [0231e14b2952cc6a714d67090bf7c23e], PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.job, Quarantined, [0a2959d3097240f67648c2ae24de916f], PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.job, Quarantined, [0b2857d5e09b9f97aa148de3c33fcf31], PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.job, Quarantined, [d75c38f44b3053e3c2fce58b0af8e719], PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-1.job, Quarantined, [052e919be49740f64678531d778b5aa6], PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-2.job, Quarantined, [6dc6d8549fdc3402942adf91da2828d8], PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-3.job, Quarantined, [c56e84a8057692a4b20c5020f40ece32], PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-4.job, Quarantined, [4fe424087ffc5ed81da175fb54ae02fe], PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-5.job, Quarantined, [77bc1a12f18a4fe7912d76fa92707d83], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0.localstorage, Quarantined, [bb7879b383f820160718f97828da25db], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0.localstorage-journal, Quarantined, [c0739a9292e95cdac35c9ad77e843ec2], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage, Quarantined, [3af9919b7605280e869ec0b19b6707f9], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage-journal, Quarantined, [250ec8643348989eb074a2cf5aa845bb], PUP.Optional.WebsSearches.A, C:\Program Files\Mozilla Firefox\browser\searchplugins\webssearches.xml, Quarantined, [da599c907605b87e76b297dbf0126e92], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome.manifest, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\install.rdf, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\background.html, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\baseObject.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\browser.xul, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\dialog.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\ffCoreFilesIndex.txt, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\main.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\options.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\options.xul, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\platformVersion.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\search_dialog.xul, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\asyncDB.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\background.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\browserAction.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\contextMenu.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\dbManager.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\dom_bg.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\fileManager.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\firefox.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\firefoxNotifications.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\firefoxOmnibox.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\message.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\pageAction.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\request.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\tabs.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\webRequest.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\windowsMessagingHandler.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\addressBarChangeObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\console.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\consts.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\delegate.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\extensionDataStore.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\folderIOWrapper.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\httpObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\IDBWrapper.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\installer.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\logFile.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\prefs.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\progressListenerObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\registry.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\reloadObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\reports.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\requestObject.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\searchSettings.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\uninstallObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\updateManager.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\utils.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\xhr.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\defaults\preferences\prefs.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\manifest.xml, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins.json, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\1.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\102.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\103.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\104.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\13.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\14.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\155.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\16.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\17.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\177.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\180.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\182.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\183.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\184.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\191.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\207.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\21.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\22.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\223.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\230.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\233.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\246.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\28.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\4.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\47.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\64.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\72.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\78.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\91.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\93.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\98.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\userCode\background.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\userCode\extension.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\locale\en-US\translations.dtd, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button1.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button2.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button3.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button4.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button5.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\crossrider_statusbar.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon128.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon16.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon24.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon48.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\panelarrow-up.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\popup.html, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\skin.css, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\update.css, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0\5, Quarantined, [ef44ea42c4b73afc3a15c4a21fe32dd3], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0\5-journal, Quarantined, [ef44ea42c4b73afc3a15c4a21fe32dd3], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0\6, Quarantined, [bd76c06cd5a64aecd87c5e08c1411de3], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\000005.ldb, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\000035.ldb, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\000051.log, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\CURRENT, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\LOCK, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\LOG, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\LOG.old, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\MANIFEST-000049, Quarantined, [003325073b4079bd2d2e52141fe3aa56], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000005.ldb, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000029.ldb, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000045.log, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\CURRENT, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOCK, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOG, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOG.old, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\MANIFEST-000043, Quarantined, [80b30b21106b9e98f66ae383c83a31cf], Physical Sectors: 0 (No malicious items detected) (end) Je n'ai pas pu réinitialiser le navigateur le lien n'était pas actif. Merci encore
  20. pas au top
    voilà le lien avec Ci-joint http://cjoint.com/?DDtoeWCRBfN
  21. pas au top
    je me branche sur un autre ordinateur pour continuer ce message. Firefox s'arrête de fonctionner très rapidement sur l'ordi infecté. J'ai remarqué aussi que lorsque j'ouvre une page, il y a un espèce de légo qui s'installe au bout de querlques secondes avant l'adresse. C'est par exemple le cas quand je vais sur http://forum.zebulon.fr/grosse-infection-t207055.html Avira a détecté aussi 16 virus pour l'instant. Luke firewall est en cours et le dernier virus indiqué est adware/bryte.A 19254 Merci de votre aide
  22. pas au top
    bonjour je n'ai pas le temps d'expliquer mon souci. Firefox s'arrete avant Comment dois je faire.? Merci voilà le scan ~ Rapport de ZHPDiag v2014.4.14.26 - Nicolas Coolman (14/04/2014) ~ Lancé par Famille Philippe (14/04/2014 21:05:55) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): ---\\ Navigateurs Internet MSIE: Internet Explorer v9.0.8112.16421 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows Vista Home Premium, 32-bit Service Pack 2 (Build 6002) Windows Server License Manager Script : OK ---\\ Logiciels de protection du système ---\\ Logiciels d'optimisation du système ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3070 MB (49% free) System Restore: Activé (Enable) System drive C: has 23 GB (7%) free of 293 GB ---\\ Mode de connexion au système ~ Computer Name: LES-PHIPHI ~ User Name: Famille Philippe ~ All Users Names: UpdatusUser, Famille Philippe, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Famille Philippe\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Famille Philippe\AppData\Roaming\ ~ %Desktop% : C:\Users\Famille Philippe\Desktop\ ~ %Favorites% : C:\Users\Famille Philippe\Favorites\ ~ %LocalAppData% : C:\Users\Famille Philippe\AppData\Local\ ~ %StartMenu% : C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 23 Go of 293 Go) D: Hard drive, Flash drive, Thumb drive (Free 247 Go of 293 Go) E: CD-ROM drive (Free 0 Go of 0 Go) F: Floppy drive, Flash card reader, USB Key (Not Inserted) G: Floppy drive, Flash card reader, USB Key (Not Inserted) H: Floppy drive, Flash card reader, USB Key (Not Inserted) I: Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 42 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768] [MD5.62077F806BC59CBD5A404338D710D133] - (.Microsoft Corporation - Internet Extensions for Win32.) (.08/03/2014 - 00:02:07.) -- C:\Windows\System32\wininet.dll [1129472] [MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368] [MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408] [MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944] [MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144] [MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072] [MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264] [MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152] [MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784] [MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864] [MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496] [MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856] [MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232] [MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360] [MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288] [MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832] [MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560] [MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192] [MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 3/26665 ~ Mes musiques (My Musics) : 1/819 ~ Mes Videos (My Videos) : 2/85 ~ Mes Favoris (My Favorites) : 1/27 ~ Mes Documents (My Documents) : 1/244 ~ Mon Bureau (My Desktop) : 5/46 ~ Menu demarrer (Programs) : 1/3 ~ Hidden Files: Scanned in 00mn 21s ---\\ Processus lancés [MD5.F576CA88DC79EE6369302182B2BD1E9F] - (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.exe [3234256] [PID.2628] =>PUA.FSTfr9 [MD5.47C9EF1600EDD9EBD8155EB6B5206B6B] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1821984] [PID.1940] [MD5.241B07FF7F5943B9C1BF3235F49AC1E1] - (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744] [PID.2304] [MD5.151B2D097C7182898387994CEA34890B] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [5369856] [PID.4044] [MD5.BD79B566345ADCCF8984F957DF31AE01] - (...) -- C:\Program Files\fst_fr_134\fst_fr_134.exe [3984848] [PID.2628] =>PUA.FSTfr9 [MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.2296] [MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.2268] [MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.3244] [MD5.7BEDD051B53821B040EAD42DB0724848] - (.Microsoft Corporation - Rapports de problèmes Windows.) -- C:\Windows\system32\werfault.exe [217088] [PID.4484] [MD5.7116680C2C62709EE81BDDC69EF26B93] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [757488] [PID.2276] [MD5.9625BE15F953113E5DF59BAC59859878] - (.Freeven - MediaPlayerplus exe.) -- C:\program files\mediaplayerplus\mediaplayerplus-bg.exe [519168] [PID.5100] =>PUP.CrossRider [MD5.2B0FD3D2A797121FA552AF8688D0B16E] - (.Freeven - Freeven pro 1.2 exe.) -- C:\program files\freeven pro 1.2\freeven pro 1.2-bg.exe [519168] [PID.4524] [MD5.8DB4898E61E0BB251CC0F0D1CA749C09] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe [841096] [PID.744] [MD5.775DDB699B40C42E1BD799CC0EBF3528] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8215552] [PID.4600] [MD5.8E556A72D54F7E3B7844AB9217F02DD7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [275568] [PID.4204] ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Preferences ---\\ Liste des dossiers d'extension Google Chrome ~ Google Lines Browser: 0 Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\prefs.js C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\user.js M3 - MFPP: Plugins - [Famille Philippe] -- C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\searchplugins\buenosearch.xml =>PUP.BuenoSearch M3 - MFPP: Plugins - [Famille Philippe] -- C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\searchplugins\live-search.xml M0 - MFSP: prefs.js [Famille Philippe - 93zkm48l.default] www.google.com P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.NOS Microsystems Ltd. - getplusplusadobe16241.) -- C:\Program Files\Mozilla Firefox\Plugins\np_gp.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.9.620.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.39.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] - (.Foxit Corporation - Foxit Reader Plug-In For Firefox and Netscape.) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] - (.Foxit Corporation - Foxit Reader Plug-In For Firefox and Netscape.) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll =>.Google Inc P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Windows\system32\npDeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.5.1] - (.Oracle Corporation - Next Generation Java Plug-in 10.5.1 for Mozilla browsers.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@veoh.com/VeohTVPlugin] - (.Veoh Networks - NPVeohTVPlugin.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll P2 - FPN: [HKLM] [@veoh.com/VeohWebPlayer] - (.Veoh - Veoh Web Video Player Browser Plugin.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.3] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\Users\Famille Philippe\AppData\Roaming\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll ~ Firefox Browser: 31 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) (No version) -- (.not file.) R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) (No version) -- (.not file.) ~ IE Browser: 17 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 20 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: CrossriderApp0054246 - {11111111-1111-1111-1111-110511421146} . (.Freeven - MediaPlayerplus BHO.) -- C:\Program Files\MediaPlayerplus\MediaPlayerplus-bho.dll =>PUP.CrossRider O2 - BHO: CrossriderApp0054253 - {11111111-1111-1111-1111-110511421153} . (.Freeven - Freeven pro 1.2 BHO.) -- C:\Program Files\Freeven pro 1.2\Freeven pro 1.2-bho.dll =>PUP.CrossRider O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} . (.Thinknice Co. Limited - SupTab setup package.) -- C:\Program Files\SupTab\SupTab.dll =>PUP.SupTab O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Clé orpheline O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll ~ BHO: 14 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Acer eDataSecurity Management - [HKLM]{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll O3 - Toolbar: (no name) - [HKLM]{0BF43445-2F28-4351-9252-17FE6E806AA0} Clé orpheline O3 - Toolbar: Veoh Web Player Video Finder - [HKLM]{0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} . (.Veoh Networks Inc - Veoh Video Finder.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll O3 - Toolbar\WebBrowser: (no name) - [HKCU]{F2CF5485-4E02-4F68-819C-B92DE9277049} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{00000000-F0AC-02FB-5CEB-A6742851976A} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Acer Arcade Live.lnk . (...) -- C:\Program Files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.mcl O4 - GS\Desktop [Public]: Adobe Reader 9.lnk . (...) -- C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe (.not file.) O4 - GS\Desktop [Public]: Adobe Reader X.lnk . (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe O4 - GS\Desktop [Public]: Avira Control Center.lnk . (.Avira Operations GmbH & Co. KG - Antivirus Control Center (Desktop).) -- C:\Program Files\Avira\AntiVir Desktop\avcenter.exe O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd O4 - GS\Desktop [Public]: Empowering Technology.lnk . (.Acer Inc. - Acer Empowering Techonology Framework Launc.) -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.Supervisor.exe O4 - GS\Desktop [Public]: Google Earth.lnk . (.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\client\googleearth.exe =>.Google Inc O4 - GS\Desktop [Public]: HP Photo & Imaging.lnk . (.Hewlett-Packard Co. - HP Photo & Imaging Gallery.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe O4 - GS\Desktop [Public]: Media Manager for WALKMAN 1.2.lnk . (.Sony Creative Software Inc. - Media Manager.) -- C:\Program Files\Sony\Media Manager for WALKMAN\MediaManager.exe O4 - GS\Desktop [Public]: Nokia PC Suite.lnk . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe O4 - GS\Desktop [Public]: Scanner.lnk . (...) -- C:\Program Files\SmarThru 4\ControlPanel.exe O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe O4 - GS\Desktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files\Steam\Steam.exe O4 - GS\Desktop [Public]: Stellarium.lnk . (...) -- C:\Program Files\Stellarium\stellarium.exe O4 - GS\Desktop [Public]: VLC media player.lnk . (...) -- C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN O4 - GS\Program [Public]: Acrobat Reader 5.0.lnk . (.Adobe Systems Incorporated - Acrobat Reader 5.0.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe O4 - GS\Program [Public]: Adobe Download Assistant.lnk . (...) -- C:\Program Files\Adobe Download Assistant\Adobe Download Assistant.exe O4 - GS\Program [Public]: Adobe Reader X.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe O4 - GS\Program [Public]: Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation - Microsoft® Works.) -- C:\Program Files\Microsoft Works\MSWorks.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe O4 - GS\Program [Public]: Microsoft Office PowerPoint Viewer 2003.lnk . (.Microsoft Corporation - Microsoft Office PowerPoint Viewer.) -- C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - GS\Program [Public]: Windows Calendar.lnk . (.Microsoft Corporation - Calendrier Windows.) -- C:\Program Files\Windows Calendar\WinCal.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Collaboration.lnk . (.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Contacts.lnk . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Defender.lnk . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe O4 - GS\Program [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - Création de DVD Windows.) -- C:\Program Files\Movie Maker\DVDMaker.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Mobile Device Center.lnk . (.Microsoft Corporation - Windows Mobile Device Center.) -- C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe O4 - GS\Program [Public]: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\MOVIEMK.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Photo Gallery.lnk . (.Microsoft Corporation - Galerie de photos Windows.) -- C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\System32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\System32\mblctr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\System32\NetProj.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\System32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\System32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sidebar.lnk . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\System32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Backup.lnk . (.Microsoft Corporation - Sauvegarde Microsoft® Windows.) -- C:\Windows\System32\sdclt.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\System32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\System32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\System32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: migwiz.lnk . (.Microsoft Corporation - Transfert de fichiers et paramètres Windows.) -- C:\Windows\System32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\System32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\System32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\System32\taskschd.msc O4 - GS\Accessories [updatusUser]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [updatusUser]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [updatusUser]: Run.lnk - Clé orpheline O4 - GS\Accessories [updatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Desktop [updatusUser]: JPEG Compression.lnk . (...) -- C:\Program Files\JPEG Compression\JPEG Compression.exe O4 - GS\QuickLaunch [Famille Philippe]: Bridge Base Online.lnk . (...) -- C:\Bridge Base Online\NetBridgeVu.exe O4 - GS\QuickLaunch [Famille Philippe]: Easy Audio Cutter.lnk . (...) -- M:\Chloé\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe (.not file.) O4 - GS\QuickLaunch [Famille Philippe]: Free CD Ripper.lnk . (...) -- M:\Chloé\Free Audio Pack\Free CD Ripper\FreeCDRipper.exe (.not file.) O4 - GS\QuickLaunch [Famille Philippe]: Free Mp3 Wma Converter.lnk . (...) -- M:\Chloé\Free Audio Pack\FreeConverter\FreeConverter.exe (.not file.) O4 - GS\QuickLaunch [Famille Philippe]: Internet - Raccourci.lnk - Clé orpheline O4 - GS\QuickLaunch [Famille Philippe]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch [Famille Philippe]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch [Famille Philippe]: Microsoft Office Outlook.lnk . (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [Famille Philippe]: Microsoft Office Word 2007 (2).lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe O4 - GS\QuickLaunch [Famille Philippe]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe O4 - GS\QuickLaunch [Famille Philippe]: Mozilla Firefox (3).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - GS\QuickLaunch [Famille Philippe]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - GS\QuickLaunch [Famille Philippe]: OpenOffice.org 3.0 (2).lnk . (.OpenOffice.org - OpenOffice.org 3.0.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe O4 - GS\QuickLaunch [Famille Philippe]: Windows Media Player (2).lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [Famille Philippe]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe O4 - GS\SendTo [Famille Philippe]: IsoBuster.lnk . (.Smart Projects - The Ultimate CD/DVD/BD Recovery tool.) -- C:\Program Files\Smart Projects\IsoBuster\IsoBuster.exe O4 - GS\SendTo [Famille Philippe]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - GS\Desktop [Famille Philippe]: Alawar Games.lnk . (...) -- C:\My Games\Alawar\Alawar.url O4 - GS\Desktop [Famille Philippe]: AVS Image Converter.lnk . (.Online Media Technologies Ltd. - Image Converter.) -- C:\Program Files\AVS4YOU\AVSImageConverter\AVSImageConverter.exe O4 - GS\Desktop [Famille Philippe]: Bridge Base Online.lnk . (...) -- C:\Bridge Base Online\NetBridgeVu.exe O4 - GS\Desktop [Famille Philippe]: DivX Movies.lnk . (...) -- C:\Users\Famille Philippe\Videos\DivX Movies O4 - GS\Desktop [Famille Philippe]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\Famille Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox O4 - GS\Desktop [Famille Philippe]: Jeux Alawar.lnk . (...) -- C:\Program Files\Alawar.fr\Alawar.url O4 - GS\Desktop [Famille Philippe]: JPEG Compression.lnk . (...) -- C:\Program Files\JPEG Compression\JPEG Compression.exe O4 - GS\Desktop [Famille Philippe]: jv16 PowerTools.lnk . (...) -- C:\Program Files\jv16 PowerTools\jv16 PowerTools.exe O4 - GS\Desktop [Famille Philippe]: Nokia Software Updater.lnk . (.Nokia - Nokia Software Updater.) -- C:\Program Files\Nokia\Nokia Software Updater\nsu3ui.exe =>.Nokia O4 - GS\Desktop [Famille Philippe]: WAV MP3 Converter.lnk . (.Hoo Technologies - WAV MP3 Converter.) -- C:\Program Files\HooTech\WAV_MP3\WAV_MP3.exe O4 - GS\Desktop [Famille Philippe]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Desktop [Famille Philippe]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman ~ Global Startup: 85 Scanned in 00mn 01s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [eRecoveryService] Clé orpheline O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [fst_fr_134] . (...) -- C:\Program Files\fst_fr_134\fst_fr_134.exe =>PUA.FSTfr9 O4 - HKLM\..\RunOnce: [upfst_fr_134.exe] . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.exe =>PUA.FSTfr9 O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation O4 - HKCU\..\Run: [iSUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Clé orpheline O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Clé orpheline O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [iSUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. ~ Application: Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} . (.Microsoft Corporation - Synchronisation des favoris ActiveSync.) -- C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} -- Clé orpheline O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ~ Winsock: 7 Scanned in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} ((no name)) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} ((no name)) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} ((no name)) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} ((no name)) - http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab O16 - DPF: {B60CEFE7-2DD0-4B78-951A-509D951DB1F0} ((no name)) - http://www.smartphoto.fr/ExtraFilmUploader6.cab O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} ((no name)) - http://acerdtfr.oberon-media.com/online/online2/zuma/oberongamesloader.cab ~ Objets ActiveX: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS1\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS3\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\system32\mshtml.dll O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\Windows\System32\webcheck.dll ~ SSODL: 1 Scanned in 00mn 00s ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll ~ STS/SSO: Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O23 - Service: ePerformance Service (AcerMemUsageCheckService) . (.Pas de propriétaire - MemCheck.Service.) - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe O23 - Service: eRecovery Service (eRecoveryService) . (.Acer Inc. - eRecoveryService.) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe O23 - Service: eSettings Service (eSettingsService) . (.Pas de propriétaire - Service.) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: IePlugin Service (IePluginService) . (.Cherished Technololgy LIMITED - IePlugin Service.) - C:\ProgramData\IePluginService\PluginService.exe =>Trojan.SProtector O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: nuttkoqiez32 (nuttkoqiez32) . (...) - C:\Program Files\003\nuttkoqiez32.exe =>PUP.Agent O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.0.) - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe ~ Services: 21 Scanned in 00mn 07s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-1.job [1454] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.job [1438] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.job [3130] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.job [2180] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.job [1526] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-1.job [1406] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-2.job [1390] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-3.job [2786] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-4.job [2124] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-5.job [1478] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1072] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1076] [MD5.7AE80F34C915088B02B217CBF0628DC2] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-1] (.Freeven.) -- C:\Program Files\MediaPlayerplus\MediaPlayerplus-codedownloader.exe [477696] =>PUP.CrossRider [MD5.118177E5B291636A0BECF5419332CD17] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.exe [333824] =>PUP.CrossRider [MD5.66AA123CBF19E49E848BEA06AFC3FB0F] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.exe [1861120] =>PUP.CrossRider [MD5.4184A2D4B32AAD4BE8A6A928241F46CD] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.exe [796672] =>PUP.CrossRider [MD5.D784D1EF7DCE67D7AF04DFA1A05E5062] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.exe [321536] =>PUP.CrossRider [MD5.9D96B0D5855FD1B98023B3EEC9F06786] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [257928] [MD5.6C9EA08ED0FD5578D93E8A7739240038] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-1] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\Freeven pro 1.2-codedownloader.exe [477696] [MD5.80152DA7AA1FFE65DFC534D6F39FC0FD] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-2] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-2.exe [333824] [MD5.B6A90E60500E16D1C8F167DD08ED2AA5] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-3] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-3.exe [1861120] [MD5.E6CEDED80C3BF7D6CAA69C8EEF39ED0B] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-4] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-4.exe [796672] [MD5.2F681A809E2DD3BA111B0AD9DC75A245] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-5] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-5.exe [321536] [MD5.A9DA5B43CF597F83B1EB441968E24891] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3497240] =>.Piriform Ltd [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] [MD5.00000000000000000000000000000000] [APT] [pricemeterdownloader] (...) -- C:\Users\Famille Philippe\AppData\Local\PriceMeter\pricemeterd.exe (.not file.) [0] =>PUP.PriceMeter [MD5.E5CF812D81A4C4D60AF7AEB12E24789C] [APT] [RunAsStdUser Task for VeohWebPlayer] (.Veoh Networks.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [3558136] =>Adware.SocialSkinz [MD5.00000000000000000000000000000000] [APT] [{15C28A17-2E1C-4098-ABFE-ACB1113DDFD4}] (...) -- C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe (.not file.) [0] [MD5.9A91B5D0193F0ED73F3A693A0A3001B3] [APT] [{3C6E535C-5DCD-4899-89EF-2C0C66C86F25}] (...) -- C:\Users\Famille Philippe\Downloads\avira_antivir_personal_free.exe [30143928] [MD5.A7EB7AC7145C0B2D9E8103A90AE255E0] [APT] [{A1F65FEE-CD2F-4206-BECB-CC73B4DCF3A2}] (.InstallShield Software Corporation.) -- C:\Windows\system32\ISUSPM.cpl [61440] [MD5.00000000000000000000000000000000] [APT] [{FB319744-D2AE-4A14-B5FA-895F0B7102E7}] (...) -- E:\install.exe (.not file.) [0] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984] ~ Scheduled Task: 45 Scanned in 00mn 05s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\system32\ie4uinit.exe O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - IEAK branding.) -- C:\Windows\system32\iedkcs32.dll O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Adobe Shockwave Director 10.4 - {233C1507-6A77-46A4-9443-F871F945D258} . (.Adobe Systems, Inc. - Shockwave ActiveX Control.) -- C:\Windows\system32\Adobe\Director\SwDir.dll O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 12.0 r0.) -- C:\Windows\system32\Macromed\Flash\Flash32_12_0_0_77.ocx ~ Active Setup: 14 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\Windows\System32\DRIVERS\avkmgr.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: (dflusowq) . (. - .) - C:\Windows\system32\drivers\dflusowq.sys (.not file.) O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ~ Drivers: 75 Scanned in 00mn 01s ---\\ Logiciels installés (O42) O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox O42 - Logiciel: Skype™ 6.14 - (.Skype Technologies S.A..) [HKLM] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7} ~ Logic: 5 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader [HKCU\Software\7-Zip] [HKCU\Software\AVS4YOU] [HKCU\Software\Accmeware Corporation] [HKCU\Software\Adobe] [HKCU\Software\Alawar] [HKCU\Software\AnyProtect] =>PUP.AnyProtect [HKCU\Software\AppDataLow\Aurigma] [HKCU\Software\AppDataLow\Google] [HKCU\Software\AppDataLow\Software\Adobe] [HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider [HKCU\Software\AppDataLow\Software\DivX] [HKCU\Software\AppDataLow\Software\Freeven pro 1.2] [HKCU\Software\AppDataLow\Software\Macromedia] [HKCU\Software\AppDataLow\Software\MediaPlayerplus] =>PUP.CrossRider [HKCU\Software\AppDataLow\Software\Rr Savings] =>PUP.SupraSavings [HKCU\Software\AppDataLow\Software\Supra Savings] =>PUP.SupraSavings [HKCU\Software\AppDataLow\Software\Yahoo] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Ashongsoft] [HKCU\Software\Aureal] [HKCU\Software\Avira] [HKCU\Software\Big Fish Games] [HKCU\Software\Bugsplat] [HKCU\Software\CDDB] [HKCU\Software\CISRA] [HKCU\Software\Canon] [HKCU\Software\CeWe Color] [HKCU\Software\ChrmTB] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DivX] [HKCU\Software\EA GAMES] [HKCU\Software\EasyBits] [HKCU\Software\Expert] [HKCU\Software\Foxit Software] [HKCU\Software\Freeware] [HKCU\Software\GOG] [HKCU\Software\Gabest] [HKCU\Software\GameHouse] [HKCU\Software\Google] [HKCU\Software\Hewlett-Packard] [HKCU\Software\Hoo Technologies] [HKCU\Software\IGA] [HKCU\Software\IM Providers] [HKCU\Software\Innovative Solutions] [HKCU\Software\InstallShield] [HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver [HKCU\Software\Intel] [HKCU\Software\Iris] [HKCU\Software\JEDI-VCL] [HKCU\Software\JavaSoft] [HKCU\Software\JollyBear] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Macromedia] [HKCU\Software\MainConcept] [HKCU\Software\Mobileleader] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Nero] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\Nokia Mobile Phones] [HKCU\Software\Nokia] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\Oberon Media] [HKCU\Software\OpenOffice.org] [HKCU\Software\Opendisc] [HKCU\Software\PDF Architect] [HKCU\Software\PDFCreator] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter [HKCU\Software\Realtek] [HKCU\Software\SSPrint] [HKCU\Software\SSScan] [HKCU\Software\Samsung] [HKCU\Software\SecuROM] [HKCU\Software\Skype] [HKCU\Software\Smart Projects] [HKCU\Software\Sony Corporation] [HKCU\Software\Sony Creative Software] [HKCU\Software\TomTom] [HKCU\Software\TransTechnology] [HKCU\Software\Trolltech] [HKCU\Software\TutoTag] =>AgenceExclusive [HKCU\Software\Tutorials] =>AgenceExclusive [HKCU\Software\Ulead Systems] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\Valve] [HKCU\Software\Veoh] [HKCU\Software\Visualbee] =>Adware.VisualBeeToolbar [HKCU\Software\WinRAR SFX] [HKCU\Software\Winamp] [HKCU\Software\Yahoo] [HKCU\Software\Zylom] [HKCU\Software\acer] [HKCU\Software\cybelsoft] [HKCU\Software\eSobi] [HKCU\Software\ej-technologies] [HKCU\Software\freesofttoday] =>Adware.FreeSoftToday [HKLM\Software\7-Zip] [HKLM\Software\<company>] [HKLM\Software\ACE Compression Software] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ATI Technologies] [HKLM\Software\AVS4YOU] [HKLM\Software\Accmeware] [HKLM\Software\Acer Inc.] [HKLM\Software\Acer Incorporated] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\AdwCleaner] [HKLM\Software\Ahead] [HKLM\Software\Alawar] [HKLM\Software\Amazon] [HKLM\Software\America Online] [HKLM\Software\AppDataLow] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Audible] [HKLM\Software\Avira] [HKLM\Software\Big Fish Games] [HKLM\Software\Boonty] [HKLM\Software\Bridge Base] [HKLM\Software\C07ft5Y] [HKLM\Software\CDDB] [HKLM\Software\CDex] [HKLM\Software\CISRA] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\Disney Interactive] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\EACADEMY] [HKLM\Software\Foxit Software] [HKLM\Software\Freeven pro 1.2] [HKLM\Software\GEAR Software] [HKLM\Software\Gabest] [HKLM\Software\Google] [HKLM\Software\HPS] [HKLM\Software\Hewlett-Packard] [HKLM\Software\HighCriteria] [HKLM\Software\I.R.I.S.] [HKLM\Software\IM Providers] [HKLM\Software\IePlugin] [HKLM\Software\Iminent] =>Adware.IMBooster [HKLM\Software\Innovative Solutions] [HKLM\Software\InstallShield] [HKLM\Software\InstalledBrowserExtensions] =>Adware.VidSaver [HKLM\Software\Intel] [HKLM\Software\InterVideo] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Khronos] [HKLM\Software\LevelQualityWatcher] =>PUP.LevelQualityWatcher [HKLM\Software\Licenses] [HKLM\Software\LightScribe] [HKLM\Software\MCCI] [HKLM\Software\Macromedia] [HKLM\Software\MarkAny] [HKLM\Software\McAfee.com] [HKLM\Software\McAfee] [HKLM\Software\MediaPlayerplus] =>PUP.CrossRider [HKLM\Software\MimarSinan] [HKLM\Software\Mindscape] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nero] [HKLM\Software\NewTech Infosystems] [HKLM\Software\Nokia] [HKLM\Software\ODBC] [HKLM\Software\Oak Technology] [HKLM\Software\Oberon Media] [HKLM\Software\OpenOffice.org] [HKLM\Software\Oracle] [HKLM\Software\PC Connectivity Solution] [HKLM\Software\PCSuite] [HKLM\Software\PDFCreator] [HKLM\Software\Photocite Collection 4] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\PopCap] =>Adware.PopCap [HKLM\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\ReflexiveArcade] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\SSScan] [HKLM\Software\Samsung] [HKLM\Software\Skype] [HKLM\Software\Sonic] [HKLM\Software\Sony Corporation] [HKLM\Software\Sony Creative Software] [HKLM\Software\Sun Microsystems] [HKLM\Software\Taronja] [HKLM\Software\TomTom] [HKLM\Software\TransTechnology] [HKLM\Software\TrendMicro] [HKLM\Software\Tutorials] =>AgenceExclusive [HKLM\Software\Ulead Systems] [HKLM\Software\Uniblue] [HKLM\Software\VBMZ] =>PUP.Duuqu [HKLM\Software\Valve] [HKLM\Software\VideoLAN] [HKLM\Software\Visualbee] =>Adware.VisualBeeToolbar [HKLM\Software\Volatile] [HKLM\Software\WOW6432Node] [HKLM\Software\Waves Audio] [HKLM\Software\Windows] [HKLM\Software\Wpm] =>PUP.WpManager [HKLM\Software\X-AVCSD] [HKLM\Software\XnView] [HKLM\Software\Yahoo] [HKLM\Software\ZSMC] [HKLM\Software\anset] [HKLM\Software\cybelsoft] [HKLM\Software\ej-technologies] [HKLM\Software\free_soft_to_day] =>Adware.FreeSoftToday [HKLM\Software\mcafeeupdater] [HKLM\Software\mozilla.org] [HKLM\Software\muvee Technologies] [HKLM\Software\supTab] =>PUP.SupTab [HKLM\Software\supWPM] =>PUP.WpManager [HKLM\Software\suprasavings] =>PUP.SupraSavings [HKLM\Software\webssearchesSoftware] =>Hijacker.WebsSearches ~ Key Software: 245 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 08/04/2014 - 20:23:46 - [0,517] ----D C:\Program Files\003 O43 - CFD: 13/04/2013 - 11:26:45 - [3,348] ----D C:\Program Files\7-Zip O43 - CFD: 16/08/2013 - 20:04:26 - [240,111] ----D C:\Program Files\Acer Arcade Live O43 - CFD: 29/09/2013 - 18:17:15 - [245,393] ----D C:\Program Files\Acer GameZone O43 - CFD: 16/09/2012 - 07:32:36 - [17,327] ----D C:\Program Files\Acer GameZone Online O43 - CFD: 28/06/2008 - 00:27:43 - [0] ----D C:\Program Files\Acer Incorporated O43 - CFD: 21/03/2008 - 13:18:03 - [12,096] ----D C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites O43 - CFD: 04/11/2013 - 21:05:42 - [173,855] ----D C:\Program Files\Adobe O43 - CFD: 03/11/2013 - 09:23:43 - [2,818] ----D C:\Program Files\Adobe Download Assistant O43 - CFD: 15/06/2013 - 00:08:46 - [117,518] ----D C:\Program Files\AGEIA Technologies O43 - CFD: 08/09/2013 - 10:43:03 - [0] ----D C:\Program Files\Alawar O43 - CFD: 08/09/2013 - 10:43:30 - [0,283] ----D C:\Program Files\Alawar.fr O43 - CFD: 31/12/2010 - 19:11:29 - [2,539] ----D C:\Program Files\Amazon O43 - CFD: 08/02/2012 - 19:12:34 - [2,316] ----D C:\Program Files\Apple Software Update =>.Apple Inc O43 - CFD: 28/06/2008 - 00:23:55 - [13,730] ----D C:\Program Files\ATI O43 - CFD: 04/04/2013 - 18:04:59 - [291,119] ----D C:\Program Files\Avira O43 - CFD: 25/07/2013 - 19:40:32 - [29,580] ----D C:\Program Files\AVS4YOU O43 - CFD: 22/09/2010 - 11:18:17 - [0,572] ----D C:\Program Files\Bonjour O43 - CFD: 13/09/2008 - 05:14:17 - [0,009] ----D C:\Program Files\BoontyGames O43 - CFD: 22/02/2009 - 15:23:16 - [0,426] ----D C:\Program Files\CamStudio O43 - CFD: 22/02/2009 - 21:49:23 - [51,811] ----D C:\Program Files\Canon O43 - CFD: 04/04/2013 - 16:16:11 - [5,456] ----D C:\Program Files\CCleaner =>.Piriform Ltd O43 - CFD: 18/04/2010 - 08:46:45 - [2,976] ----D C:\Program Files\CDex_150 O43 - CFD: 12/04/2014 - 10:12:59 - [1051,099] ----D C:\Program Files\Common Files O43 - CFD: 21/03/2008 - 13:33:09 - [4,122] ----D C:\Program Files\CyberLink O43 - CFD: 26/08/2009 - 00:53:29 - [0,028] ----D C:\Program Files\Deenero O43 - CFD: 17/01/2009 - 11:22:44 - [1,875] ----D C:\Program Files\Defraggler O43 - CFD: 05/11/2012 - 20:00:37 - [1,522] ----D C:\Program Files\DIFX O43 - CFD: 12/04/2010 - 23:10:16 - [12,340] ----D C:\Program Files\DivX O43 - CFD: 21/03/2008 - 13:47:18 - [16,827] ----D C:\Program Files\eSobi O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\Program Files\Fichiers communs O43 - CFD: 04/01/2014 - 15:09:41 - [82,871] ----D C:\Program Files\Foxit Software O43 - CFD: 08/04/2014 - 20:36:10 - [7,257] ----D C:\Program Files\Freeven pro 1.2 O43 - CFD: 12/04/2014 - 10:13:49 - [4,878] ----D C:\Program Files\fst_fr_134 =>PUA.FSTfr9 O43 - CFD: 08/09/2012 - 13:54:51 - [215,094] ----D C:\Program Files\GIMP 2 O43 - CFD: 14/12/2013 - 09:51:32 - [555,810] ----D C:\Program Files\Google O43 - CFD: 16/09/2008 - 19:52:26 - [356,042] ----D C:\Program Files\Hewlett-Packard O43 - CFD: 21/05/2009 - 16:52:28 - [12,314] ----D C:\Program Files\HooTech O43 - CFD: 22/12/2008 - 13:07:11 - [7,274] ----D C:\Program Files\HP O43 - CFD: 16/08/2013 - 20:04:32 - [91,014] --H-D C:\Program Files\InstallShield Installation Information O43 - CFD: 12/04/2014 - 10:06:50 - [5,320] ----D C:\Program Files\Internet Explorer O43 - CFD: 22/09/2010 - 11:22:31 - [1,770] ----D C:\Program Files\iPod O43 - CFD: 22/09/2010 - 11:23:13 - [116,182] ----D C:\Program Files\iTunes O43 - CFD: 04/04/2013 - 18:13:39 - [155,030] ----D C:\Program Files\Java O43 - CFD: 12/06/2013 - 18:43:33 - [1,038] ----D C:\Program Files\JPEG Compression O43 - CFD: 27/03/2009 - 12:31:09 - [15,244] ----D C:\Program Files\JRE O43 - CFD: 27/05/2009 - 08:37:45 - [2,480] ----D C:\Program Files\jv16 PowerTools O43 - CFD: 04/04/2013 - 15:24:50 - [5,010] ----D C:\Program Files\ma-config.com O43 - CFD: 08/04/2014 - 20:37:56 - [7,265] ----D C:\Program Files\MediaPlayerplus =>PUP.CrossRider O43 - CFD: 02/11/2006 - 14:37:34 - [89,117] ----D C:\Program Files\Microsoft Games O43 - CFD: 25/04/2012 - 17:59:34 - [627,760] ----D C:\Program Files\Microsoft Office O43 - CFD: 24/03/2014 - 21:59:15 - [40,879] ----D C:\Program Files\Microsoft Silverlight O43 - CFD: 05/01/2010 - 18:25:57 - [0,014] ----D C:\Program Files\Microsoft Visual Studio O43 - CFD: 05/01/2010 - 18:22:31 - [1,323] ----D C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 18/11/2009 - 04:02:25 - [144,853] ----D C:\Program Files\Microsoft Works O43 - CFD: 25/06/2010 - 23:48:50 - [7,797] ----D C:\Program Files\Microsoft.NET O43 - CFD: 18/08/2010 - 20:31:36 - [94,740] ----D C:\Program Files\Movie Maker O43 - CFD: 30/03/2014 - 12:33:56 - [60,039] ----D C:\Program Files\Mozilla Firefox O43 - CFD: 12/04/2014 - 10:08:19 - [0,216] ----D C:\Program Files\Mozilla Maintenance Service O43 - CFD: 05/01/2010 - 18:26:09 - [0,025] ----D C:\Program Files\MSBuild O43 - CFD: 05/11/2012 - 20:32:23 - [0,147] ----D C:\Program Files\MSXML 4.0 O43 - CFD: 28/06/2009 - 17:40:57 - [1073,285] ----D C:\Program Files\Nero O43 - CFD: 21/03/2008 - 13:22:14 - [46,688] ----D C:\Program Files\NewTech Infosystems O43 - CFD: 05/11/2012 - 20:31:45 - [96,401] ----D C:\Program Files\Nokia O43 - CFD: 14/04/2013 - 03:04:11 - [823,963] ----D C:\Program Files\NVIDIA Corporation O43 - CFD: 19/07/2010 - 19:15:24 - [0,310] ----D C:\Program Files\Oberon Media O43 - CFD: 27/03/2009 - 12:31:05 - [338,174] ----D C:\Program Files\OpenOffice.org 3 O43 - CFD: 28/06/2012 - 22:46:45 - [33,205] ----D C:\Program Files\Oracle O43 - CFD: 19/07/2010 - 19:15:24 - [0] ----D C:\Program Files\orange O43 - CFD: 04/04/2013 - 18:46:24 - [15,046] ----D C:\Program Files\PC Connectivity Solution O43 - CFD: 12/06/2013 - 12:32:00 - [23,365] ----D C:\Program Files\PDFCreator O43 - CFD: 31/08/2009 - 13:04:38 - [102,753] ----D C:\Program Files\Photocite Collection 4 O43 - CFD: 08/04/2014 - 20:30:58 - [0] ----D C:\Program Files\PriceMeterLiveUpdate =>PUP.PriceMeter O43 - CFD: 02/01/2010 - 15:52:54 - [99,474] ----D C:\Program Files\Readiris10 O43 - CFD: 22/02/2009 - 13:08:07 - [8,238] ----D C:\Program Files\Real O43 - CFD: 21/03/2008 - 13:11:05 - [16,800] ----D C:\Program Files\Realtek O43 - CFD: 02/11/2006 - 14:37:34 - [36,910] ----D C:\Program Files\Reference Assemblies O43 - CFD: 01/10/2008 - 16:24:40 - [0,038] ----D C:\Program Files\ReflexiveArcade O43 - CFD: 02/04/2013 - 10:17:41 - [0,798] ----D C:\Program Files\Samsung O43 - CFD: 12/04/2014 - 10:12:59 - [43,504] R---D C:\Program Files\Skype O43 - CFD: 02/01/2009 - 19:07:27 - [0] ----D C:\Program Files\SlySoft O43 - CFD: 05/01/2010 - 18:12:15 - [10,069] ----D C:\Program Files\Smart Projects O43 - CFD: 02/01/2010 - 15:53:20 - [15,576] ----D C:\Program Files\SmarThru 4 O43 - CFD: 10/08/2009 - 15:20:22 - [75,956] ----D C:\Program Files\Sony O43 - CFD: 03/01/2014 - 19:52:09 - [-125,192] ----D C:\Program Files\Steam O43 - CFD: 21/08/2010 - 00:47:43 - [64,735] ----D C:\Program Files\Stellarium O43 - CFD: 08/04/2014 - 20:37:47 - [1,442] ----D C:\Program Files\SupTab =>PUP.SupTab O43 - CFD: 22/08/2010 - 16:05:03 - [0] ----D C:\Program Files\TomTom DesktopSuite O43 - CFD: 22/08/2010 - 16:06:06 - [48,373] ----D C:\Program Files\TomTom HOME 2 O43 - CFD: 22/08/2010 - 16:06:15 - [0,021] ----D C:\Program Files\TomTom International B.V O43 - CFD: 14/06/2009 - 16:36:21 - [12,970] ----D C:\Program Files\TransTechnology O43 - CFD: 22/02/2009 - 21:49:24 - [50,301] ----D C:\Program Files\Ulead Systems O43 - CFD: 02/11/2006 - 15:01:55 - [0] --H-D C:\Program Files\Uninstall Information O43 - CFD: 22/03/2009 - 17:10:11 - [18,385] ----D C:\Program Files\Veoh Networks O43 - CFD: 16/12/2008 - 21:17:20 - [0] ----D C:\Program Files\ViaMichelin O43 - CFD: 23/11/2008 - 13:29:21 - [92,147] ----D C:\Program Files\VideoLAN O43 - CFD: 18/08/2010 - 20:31:36 - [0,970] ----D C:\Program Files\Windows Calendar O43 - CFD: 18/08/2010 - 20:31:34 - [2,610] ----D C:\Program Files\Windows Collaboration O43 - CFD: 18/08/2010 - 20:31:28 - [4,283] ----D C:\Program Files\Windows Defender O43 - CFD: 11/07/2013 - 03:01:05 - [6,757] ----D C:\Program Files\Windows Journal O43 - CFD: 14/04/2012 - 03:01:47 - [8,694] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 22/02/2009 - 21:49:26 - [10,836] ----D C:\Program Files\Windows Media Components O43 - CFD: 19/10/2010 - 03:23:32 - [4,290] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 09/09/2008 - 19:50:20 - [7,589] ----D C:\Program Files\Windows NT O43 - CFD: 18/08/2010 - 20:31:33 - [12,902] ----D C:\Program Files\Windows Photo Gallery O43 - CFD: 19/08/2010 - 03:18:29 - [0,128] ----D C:\Program Files\Windows Portable Devices O43 - CFD: 18/08/2010 - 20:31:35 - [53,818] ----D C:\Program Files\Windows Sidebar O43 - CFD: 03/11/2009 - 18:41:35 - [95,661] ----D C:\Program Files\Woonoz O43 - CFD: 19/09/2010 - 22:07:07 - [9,013] ----D C:\Program Files\XnView O43 - CFD: 16/08/2013 - 20:03:00 - [0] ----D C:\Program Files\Yahoo! O43 - CFD: 14/04/2014 - 21:04:16 - [17,152] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman O43 - CFD: 04/11/2013 - 21:02:20 - [4,214] ----D C:\Program Files\Common Files\Adobe O43 - CFD: 22/09/2010 - 11:22:30 - [97,116] ----D C:\Program Files\Common Files\Apple O43 - CFD: 25/07/2013 - 19:40:31 - [33,853] ----D C:\Program Files\Common Files\AVSMedia O43 - CFD: 21/03/2008 - 13:16:02 - [0,089] ----D C:\Program Files\Common Files\DESIGNER O43 - CFD: 12/04/2010 - 23:10:06 - [22,895] ----D C:\Program Files\Common Files\DivX Shared O43 - CFD: 16/09/2008 - 19:36:05 - [0,436] ----D C:\Program Files\Common Files\Hewlett-Packard O43 - CFD: 08/10/2008 - 15:15:38 - [13,407] ----D C:\Program Files\Common Files\InstallShield O43 - CFD: 11/11/2012 - 12:23:29 - [30,837] ----D C:\Program Files\Common Files\Java O43 - CFD: 21/03/2008 - 13:21:54 - [6,846] ----D C:\Program Files\Common Files\LightScribe O43 - CFD: 12/04/2014 - 09:56:34 - [441,402] ----D C:\Program Files\Common Files\microsoft shared O43 - CFD: 16/09/2008 - 19:35:22 - [0,542] ----D C:\Program Files\Common Files\MSSoap O43 - CFD: 21/03/2008 - 13:21:26 - [9,257] ----D C:\Program Files\Common Files\muvee Technologies O43 - CFD: 28/06/2009 - 17:56:53 - [208,435] ----D C:\Program Files\Common Files\Nero O43 - CFD: 21/03/2008 - 13:22:20 - [2,141] ----D C:\Program Files\Common Files\NewTech Infosystems O43 - CFD: 05/11/2012 - 20:31:46 - [12,536] ----D C:\Program Files\Common Files\Nokia O43 - CFD: 25/07/2010 - 22:21:48 - [0,338] ----D C:\Program Files\Common Files\Oberon Media O43 - CFD: 05/11/2012 - 20:01:13 - [0,084] ----D C:\Program Files\Common Files\PCSuite O43 - CFD: 12/06/2013 - 19:47:10 - [0] ----D C:\Program Files\Common Files\PDF Architect O43 - CFD: 31/01/2009 - 15:30:16 - [1,772] ----D C:\Program Files\Common Files\PX Storage Engine O43 - CFD: 22/02/2009 - 13:56:49 - [8,374] ----D C:\Program Files\Common Files\Real O43 - CFD: 02/11/2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services O43 - CFD: 12/04/2014 - 10:12:59 - [1,904] ----D C:\Program Files\Common Files\Skype O43 - CFD: 10/08/2009 - 15:20:31 - [0,324] ----D C:\Program Files\Common Files\Sony Shared O43 - CFD: 02/11/2006 - 13:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines O43 - CFD: 02/01/2010 - 15:52:56 - [0] ----D C:\Program Files\Common Files\SRC Shared O43 - CFD: 08/09/2013 - 09:57:11 - [1,087] ----D C:\Program Files\Common Files\Steam O43 - CFD: 12/07/2012 - 03:09:26 - [42,085] ----D C:\Program Files\Common Files\System O43 - CFD: 22/02/2009 - 21:49:24 - [4,063] ----D C:\Program Files\Common Files\Ulead Systems O43 - CFD: 18/03/2009 - 15:04:53 - [0] ----D C:\Program Files\Common Files\Windows Live O43 - CFD: 09/09/2008 - 20:10:20 - [35,318] -SH-D C:\Program Files\Common Files\WindowsLiveInstaller O43 - CFD: 15/06/2013 - 00:07:33 - [32,544] ----D C:\Program Files\Common Files\Wise Installation Wizard O43 - CFD: 21/03/2008 - 13:35:58 - [0,015] ----D C:\ProgramData\Acer GameZone Console O43 - CFD: 19/11/2013 - 04:28:32 - [271,244] ----D C:\ProgramData\Adobe O43 - CFD: 28/11/2012 - 20:22:15 - [60,541] ----D C:\ProgramData\Apple O43 - CFD: 27/12/2008 - 19:02:50 - [35,962] ----D C:\ProgramData\Apple Computer O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Application Data O43 - CFD: 06/12/2008 - 13:33:18 - [0,015] ----D C:\ProgramData\Arcade Lab O43 - CFD: 04/04/2013 - 18:05:40 - [123,817] ----D C:\ProgramData\Avira O43 - CFD: 25/07/2013 - 19:40:38 - [0] ----D C:\ProgramData\AVS4YOU O43 - CFD: 12/04/2014 - 10:14:50 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Bureau O43 - CFD: 04/04/2013 - 18:50:51 - [0] --H-D C:\ProgramData\Common Files O43 - CFD: 10/09/2008 - 07:59:07 - [0,102] ----D C:\ProgramData\CyberLink O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Desktop O43 - CFD: 12/04/2010 - 23:10:16 - [2,513] ----D C:\ProgramData\DivX O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Documents O43 - CFD: 04/01/2009 - 20:04:48 - [0] ----D C:\ProgramData\eSobi O43 - CFD: 19/12/2008 - 01:11:27 - [0,027] ----D C:\ProgramData\FarmFrenzy2 O43 - CFD: 16/09/2012 - 08:56:09 - [0,035] ----D C:\ProgramData\FarmFrenzy3 O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Favoris O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Favorites O43 - CFD: 25/02/2009 - 20:31:43 - [0] ----D C:\ProgramData\Flood Light Games O43 - CFD: 21/03/2008 - 13:36:41 - [0] ----D C:\ProgramData\FloodLightGames O43 - CFD: 24/02/2009 - 20:27:50 - [0,024] ----D C:\ProgramData\Friends Games O43 - CFD: 23/02/2009 - 20:25:50 - [0,009] ----D C:\ProgramData\Gogii O43 - CFD: 22/12/2008 - 13:09:02 - [0,089] ----D C:\ProgramData\Hewlett-Packard O43 - CFD: 22/12/2008 - 13:06:27 - [0,163] ----D C:\ProgramData\HP O43 - CFD: 31/08/2009 - 13:05:19 - [0] ----D C:\ProgramData\hps O43 - CFD: 11/04/2014 - 21:37:48 - [0,672] ----D C:\ProgramData\IePluginService =>Trojan.SProtector O43 - CFD: 05/11/2012 - 20:30:11 - [383,437] ----D C:\ProgramData\Installations O43 - CFD: 08/10/2008 - 15:18:25 - [0] ----D C:\ProgramData\InstallShield O43 - CFD: 28/01/2009 - 21:18:32 - [0,001] ----D C:\ProgramData\JollyBear O43 - CFD: 28/06/2009 - 18:10:06 - [0,007] ----D C:\ProgramData\LightScribe O43 - CFD: 04/04/2013 - 15:24:47 - [1,488] ----D C:\ProgramData\ma-config.com O43 - CFD: 29/09/2013 - 18:15:05 - [0,055] ----D C:\ProgramData\McAfee O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 26/02/2014 - 09:24:13 - [484,165] -S--D C:\ProgramData\Microsoft O43 - CFD: 12/04/2014 - 09:44:17 - [0,062] ----D C:\ProgramData\Microsoft Help O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Modèles O43 - CFD: 25/04/2012 - 08:31:21 - [0,036] ----D C:\ProgramData\Mozilla O43 - CFD: 28/06/2009 - 17:34:26 - [16,572] ----D C:\ProgramData\Nero O43 - CFD: 31/08/2009 - 09:39:22 - [0,272] ----D C:\ProgramData\NOS O43 - CFD: 12/04/2014 - 10:09:06 - [2,565] ----D C:\ProgramData\NVIDIA O43 - CFD: 18/11/2012 - 04:05:01 - [2,104] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 12/11/2012 - 20:39:37 - [0,007] ----D C:\ProgramData\PC Suite O43 - CFD: 09/09/2012 - 18:47:29 - [0] ----D C:\ProgramData\PlayFirst O43 - CFD: 04/12/2008 - 20:23:39 - [0,016] ----D C:\ProgramData\Playrix Entertainment O43 - CFD: 08/04/2014 - 20:25:04 - [0,101] ----D C:\ProgramData\PriceMeterLiveUpdate =>PUP.PriceMeter O43 - CFD: 22/02/2009 - 13:07:12 - [0] ----D C:\ProgramData\QuickTime O43 - CFD: 31/12/2008 - 11:23:28 - [0] ----D C:\ProgramData\SiteAdvisor O43 - CFD: 12/04/2014 - 10:13:06 - [152,872] ----D C:\ProgramData\Skype O43 - CFD: 21/09/2008 - 16:44:11 - [0,004] ----D C:\ProgramData\SpinTop Games O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Start Menu O43 - CFD: 06/04/2010 - 10:58:30 - [0] ----D C:\ProgramData\Sun O43 - CFD: 16/09/2012 - 07:30:22 - [0] ---AD C:\ProgramData\TEMP O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D C:\ProgramData\Templates O43 - CFD: 17/05/2012 - 21:26:38 - [1,059] ----D C:\ProgramData\TmForever O43 - CFD: 22/08/2010 - 16:06:50 - [0,153] ----D C:\ProgramData\TomTom O43 - CFD: 22/02/2009 - 21:49:28 - [0,045] ----D C:\ProgramData\Ulead Systems O43 - CFD: 12/04/2014 - 09:49:55 - [28,305] ----D C:\ProgramData\VisualBee =>Adware.VisualBeeToolbar O43 - CFD: 16/03/2012 - 09:08:21 - [0] ----D C:\ProgramData\WindowsSearch O43 - CFD: 14/04/2013 - 09:38:41 - [0] ----D C:\ProgramData\WinZip O43 - CFD: 09/09/2008 - 20:09:43 - [0,206] ----D C:\ProgramData\WLInstaller O43 - CFD: 08/04/2014 - 20:43:36 - [0] ----D C:\ProgramData\WPM =>PUP.WpManager O43 - CFD: 15/12/2012 - 01:39:59 - [24,483] ----D C:\ProgramData\Zylom O43 - CFD: 21/03/2008 - 13:18:04 - [6,585] ----D C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3} O43 - CFD: 22/09/2010 - 11:23:13 - [0,518] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521} O43 - CFD: 25/02/2009 - 23:31:08 - [0,018] -SH-D C:\Users\Famille Philippe\AppData\Roaming\.# O43 - CFD: 21/03/2008 - 13:35:58 - [0,039] ----D C:\Users\Famille Philippe\AppData\Roaming\Acer GameZone Console O43 - CFD: 04/11/2013 - 21:09:13 - [8,552] ----D C:\Users\Famille Philippe\AppData\Roaming\Adobe O43 - CFD: 31/12/2010 - 19:15:33 - [0,082] ----D C:\Users\Famille Philippe\AppData\Roaming\Amazon O43 - CFD: 05/07/2009 - 20:47:04 - [0,652] ----D C:\Users\Famille Philippe\AppData\Roaming\Apple Computer O43 - CFD: 22/02/2009 - 21:17:27 - [0,015] ----D C:\Users\Famille Philippe\AppData\Roaming\avidemux O43 - CFD: 04/04/2013 - 18:11:20 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Avira O43 - CFD: 25/07/2013 - 19:40:37 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\AVS4YOU O43 - CFD: 23/09/2008 - 08:38:58 - [1,906] ----D C:\Users\Famille Philippe\AppData\Roaming\Big Fish Games O43 - CFD: 13/01/2009 - 21:21:21 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\BloodTies O43 - CFD: 08/09/2013 - 10:10:54 - [0,305] ----D C:\Users\Famille Philippe\AppData\Roaming\cerasus.media O43 - CFD: 03/11/2013 - 09:23:48 - [0,012] ----D C:\Users\Famille Philippe\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant O43 - CFD: 22/02/2009 - 18:00:28 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\CyberLink O43 - CFD: 12/04/2014 - 09:52:08 - [71,898] ----D C:\Users\Famille Philippe\AppData\Roaming\Dropbox O43 - CFD: 26/10/2011 - 18:53:40 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\dvdcss O43 - CFD: 13/09/2008 - 09:44:43 - [0,529] ----D C:\Users\Famille Philippe\AppData\Roaming\eSobi O43 - CFD: 25/02/2009 - 20:31:43 - [0,043] ----D C:\Users\Famille Philippe\AppData\Roaming\Flood Light Games O43 - CFD: 24/09/2008 - 16:16:51 - [0,015] ----D C:\Users\Famille Philippe\AppData\Roaming\FloodLightGames O43 - CFD: 04/01/2014 - 18:44:46 - [5,077] ----D C:\Users\Famille Philippe\AppData\Roaming\Foxit Software O43 - CFD: 14/01/2013 - 09:24:22 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Free WAV to MP3 Converter O43 - CFD: 12/03/2009 - 00:21:05 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Hewlett-Packard O43 - CFD: 06/06/2010 - 12:36:37 - [0,007] ----D C:\Users\Famille Philippe\AppData\Roaming\Identities O43 - CFD: 22/02/2009 - 13:08:31 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\InterTrust O43 - CFD: 09/09/2008 - 19:54:58 - [0,002] ----D C:\Users\Famille Philippe\AppData\Roaming\Macromedia O43 - CFD: 02/11/2006 - 14:37:34 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Media Center Programs O43 - CFD: 04/04/2013 - 16:35:32 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Media Player Classic O43 - CFD: 05/11/2012 - 20:32:16 - [90,248] -S--D C:\Users\Famille Philippe\AppData\Roaming\Microsoft O43 - CFD: 05/01/2009 - 12:22:07 - [42,627] ----D C:\Users\Famille Philippe\AppData\Roaming\Mozilla O43 - CFD: 28/06/2009 - 18:10:10 - [1,507] ----D C:\Users\Famille Philippe\AppData\Roaming\Nero O43 - CFD: 25/11/2012 - 13:56:33 - [0,539] ----D C:\Users\Famille Philippe\AppData\Roaming\Nokia O43 - CFD: 02/01/2014 - 19:56:00 - [0,016] ----D C:\Users\Famille Philippe\AppData\Roaming\NVIDIA O43 - CFD: 22/01/2009 - 19:49:46 - [2,593] ----D C:\Users\Famille Philippe\AppData\Roaming\OpenOffice.org O43 - CFD: 12/11/2012 - 20:40:31 - [6,715] ----D C:\Users\Famille Philippe\AppData\Roaming\PC Suite O43 - CFD: 12/06/2013 - 13:09:17 - [0,004] ----D C:\Users\Famille Philippe\AppData\Roaming\PDF Architect O43 - CFD: 09/09/2012 - 18:47:28 - [0,703] ----D C:\Users\Famille Philippe\AppData\Roaming\PlayFirst O43 - CFD: 23/08/2009 - 21:40:09 - [5,173] ----D C:\Users\Famille Philippe\AppData\Roaming\Python-Eggs O43 - CFD: 26/07/2011 - 22:53:01 - [33,012] ----D C:\Users\Famille Philippe\AppData\Roaming\Samsung O43 - CFD: 21/02/2009 - 19:38:10 - [0,027] ----D C:\Users\Famille Philippe\AppData\Roaming\SecretIslandEng O43 - CFD: 13/09/2008 - 05:10:47 - [0,010] R-H-D C:\Users\Famille Philippe\AppData\Roaming\SecuROM O43 - CFD: 12/04/2014 - 10:13:51 - [15,272] ----D C:\Users\Famille Philippe\AppData\Roaming\Skype O43 - CFD: 27/04/2012 - 14:49:02 - [0,052] ----D C:\Users\Famille Philippe\AppData\Roaming\skypePM O43 - CFD: 02/01/2010 - 15:53:20 - [26,919] ----D C:\Users\Famille Philippe\AppData\Roaming\SmarThru4 O43 - CFD: 10/08/2009 - 15:26:33 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Sony Corporation O43 - CFD: 23/08/2010 - 23:13:03 - [0,013] ----D C:\Users\Famille Philippe\AppData\Roaming\Stellarium O43 - CFD: 08/04/2014 - 20:37:45 - [0,490] ----D C:\Users\Famille Philippe\AppData\Roaming\SupTab =>PUP.SupTab O43 - CFD: 22/08/2010 - 16:06:17 - [40,169] ----D C:\Users\Famille Philippe\AppData\Roaming\TomTom O43 - CFD: 22/02/2009 - 13:13:19 - [16,508] ----D C:\Users\Famille Philippe\AppData\Roaming\Ulead Systems O43 - CFD: 02/01/2009 - 17:59:45 - [0,029] ----D C:\Users\Famille Philippe\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 31/12/2013 - 12:24:13 - [0,456] ----D C:\Users\Famille Philippe\AppData\Roaming\vlc O43 - CFD: 08/04/2014 - 20:44:05 - [1,684] ----D C:\Users\Famille Philippe\AppData\Roaming\webssearches O43 - CFD: 05/07/2012 - 19:57:50 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\WinRAR O43 - CFD: 19/12/2013 - 19:11:28 - [0,437] ----D C:\Users\Famille Philippe\AppData\Roaming\XnView O43 - CFD: 17/09/2008 - 18:06:14 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Yahoo! O43 - CFD: 14/04/2014 - 21:06:45 - [0,020] ----D C:\Users\Famille Philippe\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 06/06/2010 - 12:36:37 - [0,252] ----D C:\Users\Famille Philippe\AppData\Roaming\Zylom O43 - CFD: 22/02/2009 - 21:49:28 - [0,007] ----D C:\Users\Famille Philippe\AppData\Local\Acer Arcade Live O43 - CFD: 27/09/2008 - 19:34:12 - [0,007] ----D C:\Users\Famille Philippe\AppData\Local\Acer DV Magician O43 - CFD: 22/02/2009 - 21:49:28 - [0,006] ----D C:\Users\Famille Philippe\AppData\Local\Acer VideoMagician O43 - CFD: 04/11/2013 - 21:03:12 - [61,218] ----D C:\Users\Famille Philippe\AppData\Local\Adobe O43 - CFD: 04/04/2013 - 18:05:14 - [0,187] ----D C:\Users\Famille Philippe\AppData\Local\APN O43 - CFD: 27/12/2008 - 19:00:19 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Apple O43 - CFD: 31/01/2009 - 17:40:42 - [11,186] ----D C:\Users\Famille Philippe\AppData\Local\Apple Computer O43 - CFD: 09/09/2008 - 19:53:54 - [0] -SH-D C:\Users\Famille Philippe\AppData\Local\Application Data O43 - CFD: 15/01/2012 - 10:03:31 - [31,224] ----D C:\Users\Famille Philippe\AppData\Local\Apps O43 - CFD: 09/11/2013 - 18:50:44 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Big Fish O43 - CFD: 15/01/2012 - 10:03:45 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Deployment O43 - CFD: 27/01/2010 - 21:52:51 - [93,440] ----D C:\Users\Famille Philippe\AppData\Local\Downloaded Installations O43 - CFD: 08/09/2012 - 13:56:51 - [1,401] ----D C:\Users\Famille Philippe\AppData\Local\fontconfig O43 - CFD: 13/04/2014 - 12:26:51 - [9,400] ----D C:\Users\Famille Philippe\AppData\Local\fst_fr_134 =>PUA.FSTfr9 O43 - CFD: 08/09/2012 - 13:56:49 - [0,001] ----D C:\Users\Famille Philippe\AppData\Local\gegl-0.2 O43 - CFD: 14/06/2013 - 19:02:47 - [467,011] ----D C:\Users\Famille Philippe\AppData\Local\Google O43 - CFD: 09/09/2008 - 19:53:54 - [0] -SH-D C:\Users\Famille Philippe\AppData\Local\Historique O43 - CFD: 04/04/2013 - 18:51:33 - [120,318] ----D C:\Users\Famille Philippe\AppData\Local\Innovative Solutions O43 - CFD: 28/01/2009 - 21:18:32 - [0] ----D C:\Users\Famille Philippe\AppData\Local\JollyBear O43 - CFD: 14/06/2012 - 09:00:20 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Macromedia O43 - CFD: 14/06/2012 - 09:00:20 - [-1456,548] ----D C:\Users\Famille Philippe\AppData\Local\Microsoft O43 - CFD: 14/03/2009 - 19:35:29 - [1,631] ----D C:\Users\Famille Philippe\AppData\Local\Microsoft Games O43 - CFD: 08/01/2013 - 20:55:50 - [0,565] ----D C:\Users\Famille Philippe\AppData\Local\Microsoft Help O43 - CFD: 05/01/2009 - 12:22:06 - [93,085] ----D C:\Users\Famille Philippe\AppData\Local\Mozilla O43 - CFD: 30/06/2009 - 13:24:06 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Nero O43 - CFD: 05/11/2012 - 20:31:47 - [5,290] ----D C:\Users\Famille Philippe\AppData\Local\Nokia O43 - CFD: 21/02/2009 - 21:18:10 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Oberon Games O43 - CFD: 09/09/2008 - 19:54:41 - [0] ----D C:\Users\Famille Philippe\AppData\Local\PowerCinema O43 - CFD: 08/04/2014 - 20:25:05 - [0] ----D C:\Users\Famille Philippe\AppData\Local\PriceMeterLiveUpdate =>PUP.PriceMeter O43 - CFD: 09/07/2012 - 19:16:03 - [0,003] ----D C:\Users\Famille Philippe\AppData\Local\PSU O43 - CFD: 03/01/2014 - 16:49:53 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Robot Entertainment O43 - CFD: 02/04/2013 - 10:17:23 - [0] ----D C:\Users\Famille Philippe\AppData\Local\S2PC O43 - CFD: 12/04/2014 - 10:13:11 - [4,549] ----D C:\Users\Famille Philippe\AppData\Local\Skype O43 - CFD: 15/01/2012 - 09:46:32 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Sony O43 - CFD: 14/04/2014 - 21:06:43 - [408,604] ----D C:\Users\Famille Philippe\AppData\Local\Temp O43 - CFD: 09/09/2008 - 19:53:54 - [0] -SH-D C:\Users\Famille Philippe\AppData\Local\Temporary Internet Files O43 - CFD: 22/08/2010 - 16:06:17 - [1,892] ----D C:\Users\Famille Philippe\AppData\Local\TomTom O43 - CFD: 10/09/2008 - 08:58:50 - [44,309] ----D C:\Users\Famille Philippe\AppData\Local\VirtualStore O43 - CFD: 12/04/2014 - 09:57:23 - [0] ----D C:\Users\Famille Philippe\AppData\Local\VisualBeeExe =>Adware.VisualBeeToolbar O43 - CFD: 13/07/2012 - 16:18:23 - [0,039] ----D C:\Users\Famille Philippe\AppData\Local\Windows Live O43 - CFD: 16/09/2012 - 07:30:00 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Zylom Games O43 - CFD: 08/04/2014 - 21:07:07 - [0] R---D C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup ~ 152 Dossier CLSID vide (CLSID Empty Folder) ~ Program Folder: 457 Scanned in 00mn 44s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.DF39FA86C02C6DDBA5FC84742EDEF889] - 08/04/2014 - 19:26:22 ---A- . (.SecureAssist - Pas de description.) -- C:\Windows\System32\SecureAssist.dll [295080] =>PUP.SupraSavings O44 - LFC:[MD5.695DB97B018FB06F693F37108322AA1E] - 11/04/2014 - 19:40:05 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll [894464] O44 - LFC:[MD5.A7327FBA8897E5AA16A1D3BB57589407] - 12/04/2014 - 08:37:38 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\mrt.exe [88028728] O44 - LFC:[MD5.10D0FA4F2A6ADBEEA0FFF10583CC5407] - 12/04/2014 - 08:42:19 ---A- . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\System32\mshtml.dll [12347904] O44 - LFC:[MD5.D15B8C3BD0F2F6F520A10D5CFCE68879] - 12/04/2014 - 08:42:21 ---A- . (.Microsoft Corporation - Internet Browser.) -- C:\Windows\System32\ieframe.dll [9739264] O44 - LFC:[MD5.8229FB32D999CDD1DFA731E8E2E510A4] - 12/04/2014 - 08:42:22 ---A- . (.Microsoft Corporation - Internet Control Panel.) -- C:\Windows\System32\inetcpl.cpl [1427968] O44 - LFC:[MD5.25B97E6F25AFDA7EA0C9BF3CB137B4D8] - 12/04/2014 - 08:42:22 ---A- . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [1105408] O44 - LFC:[MD5.46F8078ED1D499BF8149B7FDF915E5D5] - 12/04/2014 - 08:42:22 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [1796096] O44 - LFC:[MD5.077B7BE0796C9DA2E8C45F90496CFE36] - 12/04/2014 - 08:42:23 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll [231936] O44 - LFC:[MD5.E8E0342BC443D013E8806EE1B69C1FC7] - 12/04/2014 - 08:42:23 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript.dll [717824] O44 - LFC:[MD5.6D4BC1F977EDF186A8C68152BFB43769] - 12/04/2014 - 08:42:23 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript9.dll [1806848] O44 - LFC:[MD5.48CB5C9B0942011010F5504F056FBF4E] - 12/04/2014 - 08:42:24 ---A- . (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) -- C:\Windows\System32\ieUnatt.exe [142848] O44 - LFC:[MD5.62077F806BC59CBD5A404338D710D133] - 12/04/2014 - 08:42:24 ---A- . (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [1129472] O44 - LFC:[MD5.DCEBA94B909C218BA2E471AEB9913E1C] - 12/04/2014 - 08:42:24 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [607744] O44 - LFC:[MD5.D20FBD7E03F24A2720EAD746EADEE5A2] - 12/04/2014 - 08:42:25 ---A- . (.Microsoft Corporation - Internet Explorer UI Engine.) -- C:\Windows\System32\ieui.dll [176640] O44 - LFC:[MD5.4C43E955E8F782E722659364341E0529] - 12/04/2014 - 08:42:25 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [65024] O44 - LFC:[MD5.447C9FADAC167AA7031328C11464C7D0] - 12/04/2014 - 08:42:26 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [421376] O44 - LFC:[MD5.AC65D9692CA56D8581F75FCFE0C0C4D6] - 12/04/2014 - 08:42:26 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [73216] O44 - LFC:[MD5.BC63D80B6810238266D4334A80783D60] - 12/04/2014 - 08:42:26 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2382848] O44 - LFC:[MD5.F07B807CDF221CCE87178570DF10EE1A] - 12/04/2014 - 09:08:20 ---A- . (...) -- C:\Windows\PFRO.log [777156] O44 - LFC:[MD5.D1D5E87EBC2333DF028313BC44ADA980] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1615904] O44 - LFC:[MD5.F5322C1375DE0C685831B7D9EC47B1BD] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\perfc009.dat [119840] O44 - LFC:[MD5.0DE5AE2A88B40C5A7C54F62713DE09BB] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [146072] O44 - LFC:[MD5.1E3418FC7E01EA5567847485EF22C51C] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\perfh009.dat [634274] O44 - LFC:[MD5.896661E9CC57B2825344D086276738A3] - 14/04/2014 - 07:20:24 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [722238] O44 - LFC:[MD5.995D1F0F0970161F1EFAD2DAD6239285] - 14/04/2014 - 18:49:42 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.6969704BA5E5E5088AED72483F387B54] - 14/04/2014 - 18:49:53 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1336567] ~ Files: 27 Scanned in 00mn 56s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.6C96CC13D38B4C13A5F6AC0CF02EF641] - 13/04/2014 - 11:26:51 ---A- - C:\Windows\Prefetch\UPFST_FR_134.EXE-C16D908B.pf =>PUA.FSTfr9 O45 - LFCP:[MD5.4133EFDAD57BFF920A7D6864C768D1A5] - 14/04/2014 - 18:52:03 ---A- - C:\Windows\Prefetch\FREEVEN PRO 1.2-BG.EXE-672FB386.pf O45 - LFCP:[MD5.0D76D5839C1F35FA09CB12DCBFD40EE3] - 14/04/2014 - 18:52:03 ---A- - C:\Windows\Prefetch\MEDIAPLAYERPLUS-BG.EXE-9A7BE8BE.pf =>PUP.CrossRider O45 - LFCP:[MD5.366C1327A4515D50C3C03AE313D9C811] - 14/04/2014 - 19:35:03 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-A8DC1B8E.pf O45 - LFCP:[MD5.05EF710FCB7DE9E1A357ECFBC1649FF8] - 14/04/2014 - 19:36:00 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-95866109.pf O45 - LFCP:[MD5.085BDF02C992CA04B5258804A20B12BC] - 14/04/2014 - 19:36:00 ---A- - C:\Windows\Prefetch\FREEVEN PRO 1.2-CODEDOWNLOADE-2DE84F6B.pf O45 - LFCP:[MD5.A410C7D0F4C7339084E296E512FE8CC1] - 14/04/2014 - 19:36:08 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-CF879098.pf O45 - LFCP:[MD5.1135C5DE1A7E2E58B2A37BBC08A394FE] - 14/04/2014 - 19:36:10 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-BC31D613.pf O45 - LFCP:[MD5.EF63B50AE119994227723C4A1940E981] - 14/04/2014 - 19:37:00 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-507CEF4C.pf O45 - LFCP:[MD5.29CB9422CFDCE84158B9DF383213DCB0] - 14/04/2014 - 19:37:00 ---A- - C:\Windows\Prefetch\MEDIAPLAYERPLUS-CODEDOWNLOADE-D4DEA7A3.pf =>PUP.CrossRider O45 - LFCP:[MD5.25894CB1BE292D2161E21C31FC0856D3] - 14/04/2014 - 19:37:03 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-63D2A9D1.pf O45 - LFCP:[MD5.AD5C0BD709DD08B6A9A879B51474A5C5] - 14/04/2014 - 19:37:05 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-8A7E1EDB.pf O45 - LFCP:[MD5.462A0823A44FB9E468FC7B98FB3D8494] - 14/04/2014 - 19:37:07 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-77286456.pf O45 - LFCP:[MD5.7D58B7D7DFA68DE92F5814EF93F3EF40] - 14/04/2014 - 19:37:50 ---A- - C:\Windows\Prefetch\AURORA.SCR-082F40F8.pf ~ Prefetcher: 14 Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll ~ LSA: 7 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 13 Scanned in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - DatamngrCoordinator.exe - tasklist.exe =>PUP.Datamngr ~ IFEO: Scanned in 00mn 00s ---\\ Clé de registre Shell MountPoints2 (MPKS) (O51) O51 - MPSK:{9f0e6477-d344-11dd-a8ad-001d92986b59}\AutoRun\command - Clé orpheline O51 - MPSK:{ad59bbb0-1342-11e2-8053-001d92986b59}\AutoRun\command. (...) -- K:\Startme.exe (.not file.) O51 - MPSK:{c6603308-7f05-11dd-997f-001d92986b59}\AutoRun\command - Clé orpheline O51 - MPSK:{de063b6f-da31-11de-8968-001d92986b59}\AutoRun\command - Clé orpheline ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm O52 - TDSD: \Drivers32\"vidc.VP60"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll O52 - TDSD: \Drivers32\"vidc.VP61"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"vp6vfw.dll"="EA VP6 Codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll ~ TDSD: 8 Scanned in 00mn 00s ---\\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\Acer Empowering Technology Monitor [Key] . (...) -- C:\Acer\Empowering Technology\SysMonitor.exe O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (...) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Apanel [Key] . (...) -- C:\ACERSW\config\NewSetApanel.cmd (.not file.) O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe O53 - SMSR:HKLM\...\startupreg\AutoStartNPSAgent [Key] . (...) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\BigDogPath [Key] . (.BIGDOG - BIGDOG.) -- C:\Windows\VM_STI.exe O53 - SMSR:HKLM\...\startupreg\ccleaner [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd O53 - SMSR:HKLM\...\startupreg\ContentTransferWMDetector.exe [Key] . (.Sony Corporation - Content Transfer Walkman Detector.) -- C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe O53 - SMSR:HKLM\...\startupreg\DivXUpdate [Key] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe O53 - SMSR:HKLM\...\startupreg\eDataSecurity Loader [Key] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe O53 - SMSR:HKLM\...\startupreg\ISUSPM Startup [Key] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe O53 - SMSR:HKLM\...\startupreg\ISUSScheduler [Key] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\NSU_agent [Key] . (...) -- C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe =>.Nokia O53 - SMSR:HKLM\...\startupreg\NvCplDaemon [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll =>.NVIDIA Corporation O53 - SMSR:HKLM\...\startupreg\NvMediaCenter [Key] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\system32\NvMcTray.dll O53 - SMSR:HKLM\...\startupreg\NVRaidService [Key] . (.NVIDIA Corporation - NVIDIA RAID Service French language.) -- C:\Windows\system32\nvraidservice.exe O53 - SMSR:HKLM\...\startupreg\PC Suite Tray [Key] . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe O53 - SMSR:HKLM\...\startupreg\PCMMediaSharing [Key] . (...) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files\Steam\steam.exe O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation O53 - SMSR:HKLM\...\startupreg\TomTomHOME.exe [Key] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe O53 - SMSR:HKLM\...\startupreg\VeohPlugin [Key] . (.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz O53 - SMSR:HKLM\...\startupreg\WarReg_PopUp [Key] . (.Acer Inc. - WR_PopUp.) -- C:\Acer\WR_PopUp\WarReg_PopUp.exe O53 - SMSR:HKLM\...\startupreg\Windows Defender [Key] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe O53 - SMSR:HKLM\...\startupreg\Windows Mobile Device Center [Key] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdc.exe ~ SMSR Keys: 31 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 ~ MWPS: 15 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0 ~ MWPE Keys: 1 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.0349BE02F329F4F48F1D48097FD65974] - 21/01/2008 - 03:23:21 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys [53376] O58 - SDL:[MD5.585E64BB6DFBC0A2F1F0B554DED012DF] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - 61883 Device Class.) -- C:\Windows\System32\Drivers\61883.sys [45696] O58 - SDL:[MD5.82B296AE1892FE3DBEE00C9CF92F8AC7] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [265688] O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422968] O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 03:23:25 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [300600] O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 03:23:26 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\System32\Drivers\adpu160m.sys [101432] O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 03:23:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys [149560] O58 - SDL:[MD5.3911B972B55FEA0478476B2E777B29FA] - 21/04/2011 - 14:58:27 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys [273408] O58 - SDL:[MD5.13F9E33747E6B41A3FF305C37DB0D360] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [56376] O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 03:23:00 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [17464] O58 - SDL:[MD5.C47344BC706E5F0B9DCE369516661578] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre AGP AMD NT.) -- C:\Windows\System32\Drivers\AMDAGP.SYS [57400] O58 - SDL:[MD5.9B78A39A4C173FDBC1321E0DD659B34C] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\Drivers\amdide.sys [17976] O58 - SDL:[MD5.18F29B49AD23ECEE3D2A826C725C8D48] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk7.sys [41472] O58 - SDL:[MD5.93AE7F7DD54AB986A6F1A1B37BE7442D] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [44032] O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 03:23:23 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [79416] O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 03:23:24 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [79928] O58 - SDL:[MD5.53B202ABEE6455406254444303E87BE1] - 21/01/2008 - 03:24:04 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [17408] O58 - SDL:[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - 11/04/2009 - 07:32:26 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [19944] O58 - SDL:[MD5.64B0052340B8EC28FA8A56B708AE71CC] - 11/04/2009 - 07:32:42 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [109032] O58 - SDL:[MD5.F4B56425A00BEB32F5FA6603FF7B0EA2] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - AVC Driver.) -- C:\Windows\System32\Drivers\avc.sys [40448] O58 - SDL:[MD5.A25F0F39AC579FE899A7C8D67ECB157C] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Microsoft WDM AVC Streaming filter driver.) -- C:\Windows\System32\Drivers\avcstrm.sys [14208] O58 - SDL:[MD5.B8C10FF9369394EB84993F331810CF29] - 19/12/2013 - 14:59:32 ---A- . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys [90400] O58 - SDL:[MD5.4189E5AB2CAD6F395D87DAAE73EB090F] - 19/12/2013 - 14:59:32 ---A- . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\Drivers\avipbb.sys [135648] O58 - SDL:[MD5.D8C712305F73CD34D1B344810E522728] - 03/12/2013 - 19:40:59 ---A- . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\Drivers\avkmgr.sys [37352] O58 - SDL:[MD5.2B8A5A8879238C3BA9A89A8E3AC4E45D] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [28216] O58 - SDL:[MD5.9F5F8F2318DFA3974A6F6A5602733929] - 21/01/2008 - 03:23:31 ---A- . (.Microsoft Corporation - Microsoft BDA Driver Support Library.) -- C:\Windows\System32\Drivers\bdasup.sys [12288] O58 - SDL:[MD5.67E506B75BD5326A3EC7B70BD014DFB6] - 21/01/2008 - 03:23:44 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [6144] O58 - SDL:[MD5.D4DF28447741FD3D953526E33A617397] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys [45568] O58 - SDL:[MD5.35F376253F687BDE63976CCB3F2108CA] - 22/02/2011 - 14:23:55 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [69632] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [13568] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [5248] O58 - SDL:[MD5.B1564976D98E91FC764D5DC28A0297DA] - 11/04/2009 - 06:42:55 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [93696] O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [71808] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [62336] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [12160] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [11904] O58 - SDL:[MD5.AD07C1EC6665B8B35741AB91200C6B68] - 02/11/2006 - 09:55:23 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [39936] O58 - SDL:[MD5.F6C40E0A565EE3CE5AEEB325E10054F2] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\ccdcmb.sys [18176] O58 - SDL:[MD5.2A394E9E1FA3565E4B2FEA470FFE4D6B] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\ccdcmbo.sys [23168] O58 - SDL:[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - 21/01/2008 - 03:23:51 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [70144] O58 - SDL:[MD5.6B4BFFB9BECD728097024276430DB314] - 11/04/2009 - 05:39:17 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [67072] O58 - SDL:[MD5.E5D4133F37219DBCFE102BC61072589D] - 21/01/2008 - 03:23:26 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [35328] O58 - SDL:[MD5.0767B09C74D935A590B4879D14463B64] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [125928] O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 03:23:00 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [19000] O58 - SDL:[MD5.6AFEF0B60FA25DE07C0968983EE4F60A] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys [20792] O58 - SDL:[MD5.36975327EF03949CC378AB01E316B574] - 11/04/2009 - 07:32:30 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [35304] O58 - SDL:[MD5.741E9DFF4F42D2D8477D0FC1DC0DF871] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys [24632] O58 - SDL:[MD5.1F07BECDCA750766A96CDA811BA86410] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\crusoe.sys [40960] O58 - SDL:[MD5.622C41A07CA7E6DD91770F50D532CB6C] - 14/04/2011 - 15:59:03 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [75264] O58 - SDL:[MD5.770471DE2550820FEEB7E5D24BF2E273] - 22/10/2007 - 07:55:46 ---A- . (.Samsung Electronics Co., Ltd. - Windows 2k,XP IEEE-1284 parallel class driver for ECP, Byte, an.) -- C:\Windows\System32\Drivers\DgivEcp.sys [41984] O58 - SDL:[MD5.5D4AEFC3386920236A548271F8F1AF6A] - 11/04/2009 - 07:32:31 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [53736] O58 - SDL:[MD5.494075282E23D838F43A4C9FB7143959] - 11/04/2009 - 05:39:11 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [19456] O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys [71272] O58 - SDL:[MD5.4F59C172C094E1A1D46463A8DC061CBD] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - IEEE-1284.4-1999 Driver.) -- C:\Windows\System32\Drivers\Dot4.sys [131584] O58 - SDL:[MD5.80BF3BA09F6F2523C8F6B7CC6DBF7BD5] - 21/01/2008 - 03:23:03 ---A- . (.Microsoft Corporation - IEEE-1284.4 Print Class Driver.) -- C:\Windows\System32\Drivers\Dot4Prt.sys [16384] O58 - SDL:[MD5.C55004CA6B419B6695970DFE849B122F] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Pilote de filtre DOT4USB.) -- C:\Windows\System32\Drivers\Dot4usb.sys [36864] O58 - SDL:[MD5.2A63675F6FA8EF0FF9F5C72695584CAA] - 30/10/2013 - 02:43:04 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Descrambler Filter.) -- C:\Windows\System32\Drivers\drmk.sys [130048] O58 - SDL:[MD5.97FEF831AB90BEE128C9AF390E243F80] - 21/01/2008 - 03:23:21 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Audio Descrambler Filter.) -- C:\Windows\System32\Drivers\drmkaud.sys [5632] O58 - SDL:[MD5.C67EBF9C05531C406E1E079FF669A2E6] - 11/04/2009 - 07:32:29 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [27624] O58 - SDL:[MD5.EAAAFEF04FBB45665C9576E525D45A12] - 21/01/2008 - 03:24:21 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys [13312] O58 - SDL:[MD5.C8D5369BFE193B5FB53337DCE77CE314] - 11/04/2009 - 05:23:23 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys [76288] O58 - SDL:[MD5.988670D8343EF9835FB3659DB71B2EFA] - 01/08/2013 - 04:16:32 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [638400] O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 03:23:24 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel® PRO/1000.) -- C:\Windows\System32\Drivers\E1G60I32.sys [118784] O58 - SDL:[MD5.7F64EA048DCFAC7ACF8B4D7B4E6FE371] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - Special Memory Device Cache.) -- C:\Windows\System32\Drivers\ecache.sys [141288] O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:23:22 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [342584] O58 - SDL:[MD5.3DB974F3935483555D7148663F726C61] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [6656] O58 - SDL:[MD5.22B408651F9123527BCEE54B4F6C5CAE] - 11/04/2009 - 05:13:53 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [136704] O58 - SDL:[MD5.1E9B9A70D332103C52995E957DC09EF8] - 11/04/2009 - 05:13:52 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [142848] O58 - SDL:[MD5.AFE1E8B9782A0DD7FB46BBD88E43F89A] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [25088] O58 - SDL:[MD5.A8C0139A884861E3AAE9CFE73B208A9F] - 21/01/2008 - 03:24:04 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [58936] O58 - SDL:[MD5.0AE429A696AECBC5970E3CF2C62635AE] - 21/01/2008 - 03:24:21 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [27648] O58 - SDL:[MD5.85B7CF99D532820495D68D747FDA9EBD] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [20480] O58 - SDL:[MD5.01334F9EA68E6877C4EF05D3EA8ABB05] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [190424] O58 - SDL:[MD5.B972A66758577E0BFD1DE0F91AAA27B5] - 29/02/2012 - 14:32:37 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [12800] O58 - SDL:[MD5.73594DBC99E22958150192EE99BC48CE] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [99816] O58 - SDL:[MD5.34582A6E6573D54A07ECE5FE24A126B5] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [61496] O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 12:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [26600] O58 - SDL:[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - 11/04/2009 - 05:42:42 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [561152] O58 - SDL:[MD5.CB04C744BE0A61B1D648FAED182C3B59] - 02/11/2006 - 08:36:49 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys [235520] O58 - SDL:[MD5.1338520E78D90154ED6BE8F84DE5FCEB] - 02/11/2006 - 09:55:22 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [29184] O58 - SDL:[MD5.5961CADB7CAD938368D2028725EF771D] - 11/04/2009 - 05:42:48 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [39424] O58 - SDL:[MD5.FF3160C3A2445128C5A6D9B076DA519E] - 02/11/2006 - 09:55:01 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [21504] O58 - SDL:[MD5.BE4AD4045D7A6C6AF4ECCBD5F6B7F8D8] - 03/07/2013 - 03:10:50 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [25472] O58 - SDL:[MD5.CCA4B519B17E23A00B826C55716809CC] - 11/04/2009 - 05:42:48 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [12800] O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 03:23:26 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\Drivers\HpCISSs.sys [40504] O58 - SDL:[MD5.F870AA3E254628EBEAFE754108D664DE] - 20/02/2010 - 21:53:34 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [411648] O58 - SDL:[MD5.95BD3EA81EBE6B8CACAFDB6CDAB3586C] - 21/01/2008 - 03:23:02 ---A- . (.Microsoft Corporation - I2O Utility Filter.) -- C:\Windows\System32\Drivers\i2omgmt.sys [19000] O58 - SDL:[MD5.C6B032D69650985468160FC9937CF5B4] - 21/01/2008 - 03:23:02 ---A- . (.Microsoft Corporation - I2O Miniport Driver.) -- C:\Windows\System32\Drivers\i2omp.sys [30264] O58 - SDL:[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [54784] O58 - SDL:[MD5.580BFEC487C55264BFE3D60C3C24EEE1] - 13/06/2006 - 21:56:40 ----- . (.Intel Corporation - Intel Matrix Storage Manager driver.) -- C:\Windows\System32\Drivers\iaStor.sys [247808] O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 03:23:23 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\Drivers\iaStorV.sys [235064] O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [41576] O58 - SDL:[MD5.C6E5276C00EBDEB096BB5EF4B797D1B6] - 03/07/2007 - 03:05:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\System32\Drivers\int15.sys [15392] O58 - SDL:[MD5.91B61589BB2915E81D436EFE07548507] - 06/11/2007 - 09:30:46 ---A- . (...) -- C:\Windows\System32\Drivers\int15_64.sys [15656] O58 - SDL:[MD5.83AA759F3189E6370C30DE5DC5590718] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [17976] O58 - SDL:[MD5.224191001E78C89DFA78924C3EA595FF] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [41472] O58 - SDL:[MD5.62C265C38769B864CB25B4BCF62DF6C3] - 21/01/2008 - 03:24:45 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [47616] O58 - SDL:[MD5.B25AAF203552B7B3491139D582B39AD1] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [64512] O58 - SDL:[MD5.8793643A67B42CEC66490B2A0CF92D68] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [100864] O58 - SDL:[MD5.E50A95179211B12946F7E035D60AF560] - 21/01/2008 - 03:24:31 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [95744] O58 - SDL:[MD5.109C0DFB82C3632FBD11949B73AEEAC9] - 21/01/2008 - 03:23:54 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [13312] O58 - SDL:[MD5.6C70698A3E5C4376C6AB5C7C17FB0614] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [49720] O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys [35944] O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys [35944] O58 - SDL:[MD5.37605E0A8CF00CBBA538E753E4344C6E] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [35384] O58 - SDL:[MD5.EDE59EC70E25C24581ADD1FBEC7325F7] - 11/04/2009 - 05:38:40 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [17408] O58 - SDL:[MD5.EF73C1E29FBE7B0FD0274BF4394E346A] - 11/04/2009 - 05:38:49 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [149504] O58 - SDL:[MD5.4A1445EFA932A3BAF5BDB02D7131EE20] - 04/06/2012 - 16:26:04 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [440704] O58 - SDL:[MD5.D1C5883087A0C3F1344D9D55A44901F6] - 21/01/2008 - 03:24:37 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [47104] O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [96312] O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 03:23:25 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [89656] O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [96312] O58 - SDL:[MD5.8F5C7426567798E62A3B3614965D62CC] - 21/01/2008 - 03:24:37 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [84480] O58 - SDL:[MD5.B271EC02E71271A2DA28B3B7BC4E4F15] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [18944] O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\System32\Drivers\megasas.sys [31288] O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [386616] O58 - SDL:[MD5.E13B5EA0F51BA5B1512EC671393D09BA] - 21/01/2008 - 03:24:57 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [31744] O58 - SDL:[MD5.0A9BB33B56E294F686ABB7C1E4E2D8A8] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [41984] O58 - SDL:[MD5.5BF6A1326A335C5298477754A506D263] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [34360] O58 - SDL:[MD5.93B8D4869E12CFBE663915502900876F] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [15872] O58 - SDL:[MD5.BDAFC88AA6B92F7842416EA6A48E1600] - 21/01/2008 - 03:23:43 ---A- . (.Microsoft Corporation - Mount Point Manager.) -- C:\Windows\System32\Drivers\mountmgr.sys [57400] O58 - SDL:[MD5.511D011289755DD9F9A7579FB0B064E6] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote du bus de prise en charge des chemins d’accès multiples.) -- C:\Windows\System32\Drivers\mpio.sys [105016] O58 - SDL:[MD5.22241FEBA9B2DEFA669C8CB0A8DD7D2E] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [64000] O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\System32\Drivers\Mraid35x.sys [33384] O58 - SDL:[MD5.82CEA0395524AACFEB58BA1448E8325C] - 11/04/2009 - 05:14:40 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [114688] O58 - SDL:[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - 29/04/2011 - 14:24:40 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys [106496] O58 - SDL:[MD5.4FCCB34D793B116423209C0F8B7A3B03] - 06/07/2011 - 16:31:47 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [214016] O58 - SDL:[MD5.C3CB1B40AD4A0124D617A1199B0B9D7C] - 29/04/2011 - 14:24:42 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [79872] O58 - SDL:[MD5.28023E86F17001F7CD9B15A5BC9AE07D] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys [28728] O58 - SDL:[MD5.4468B0F385A86ECDDAF8D3CA662EC0E7] - 21/01/2008 - 03:23:21 ---A- . (.Microsoft Corporation - Microsoft Device Specific Module.) -- C:\Windows\System32\Drivers\msdsm.sys [94776] O58 - SDL:[MD5.343291A4DFD7C923C3F71F550830EC1C] - 21/01/2008 - 03:23:26 ---A- . (.Microsoft Corporation - Microsoft DV Camera and VCR Driver.) -- C:\Windows\System32\Drivers\msdv.sys [52608] O58 - SDL:[MD5.A9927F4A46B816C92F461ACB90CF8515] - 21/01/2008 - 03:23:51 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [22528] O58 - SDL:[MD5.0F400E306F385C56317357D6DEA56F62] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [16440] O58 - SDL:[MD5.232FA340531D940AAC623B121A595034] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [180712] O58 - SDL:[MD5.D8C63D34D9C9E56C059E24EC7185CC07] - 21/01/2008 - 03:24:50 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [8192] O58 - SDL:[MD5.1D373C90D62DDB641D50E55B9E78D65E] - 21/01/2008 - 03:24:51 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [5888] O58 - SDL:[MD5.B572DA05BF4E098D4BBA3A4734FB505B] - 21/01/2008 - 03:24:51 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [5504] O58 - SDL:[MD5.B49456D70555DE905C311BCDA6EC6ADB] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [161752] O58 - SDL:[MD5.E384487CB84BE41D09711C30CA79646C] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [31288] O58 - SDL:[MD5.7199C1EEC1E4993CAF96B8C0A26BD58A] - 21/01/2008 - 03:24:51 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [6016] O58 - SDL:[MD5.6A57B5733D4CB702C8EA4542E836B96C] - 11/04/2009 - 07:32:31 ---A- . (.Microsoft Corporation - Multiple UNC Provider driver.) -- C:\Windows\System32\Drivers\mup.sys [48104] O58 - SDL:[MD5.1357274D1883F68300AEADD15D7BBB42] - 11/04/2009 - 07:32:49 ---A- . (.Microsoft Corporation - NDIS 6.0 wrapper driver.) -- C:\Windows\System32\Drivers\ndis.sys [527848] O58 - SDL:[MD5.0E186E90404980569FB449BA7519AE61] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [20992] O58 - SDL:[MD5.D6973AA34C4D5D76C0430B181C3CD389] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - NDIS User mode I/O driver.) -- C:\Windows\System32\Drivers\ndisuio.sys [16896] O58 - SDL:[MD5.818F648618AE34F729FDB47EC68345C3] - 11/04/2009 - 05:46:32 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [121344] O58 - SDL:[MD5.71DAB552B41936358F3B541AE5997FB3] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [49664] O58 - SDL:[MD5.BCD093A5A6777CF626434568DC7DBA78] - 21/01/2008 - 03:24:20 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [35840] O58 - SDL:[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - 11/04/2009 - 05:45:37 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [185856] O58 - SDL:[MD5.063EE4D3CB88A14EAB9901875CEE98B1] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [223208] O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [45160] O58 - SDL:[MD5.D36F239D7CCE1931598E8FB90A0DBC26] - 11/04/2009 - 05:14:01 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [35328] O58 - SDL:[MD5.609773E344A97410CE4EBF74A8914FCF] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [16384] O58 - SDL:[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - 03/03/2013 - 20:07:52 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1082232] O58 - SDL:[MD5.7F1C1F78D709C4A54CBB46EDE7E0B48D] - 21/03/2008 - 12:21:06 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\System32\Drivers\NTIDrvr.sys [6144] O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\System32\Drivers\ntrigdigi.sys [20608] O58 - SDL:[MD5.C5DBBCDA07D780BDA9B685DF333BB41E] - 21/01/2008 - 03:23:50 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [4608] O58 - SDL:[MD5.57945C4C155A79CF3E0F463E3CC9923E] - 28/04/2008 - 10:02:42 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\Drivers\nvhda32v.sys [42528] O58 - SDL:[MD5.B69E6F70CE1151C8D62ABC9DEF64DFBE] - 25/02/2013 - 23:22:06 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 311.06.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [8939296] O58 - SDL:[MD5.B896FB556B4DC1E1D2943559EA79C5C5] - 10/09/2007 - 19:17:40 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\Drivers\nvmfdx32.sys [1035168] O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [102968] O58 - SDL:[MD5.73F84853274C0F633425B102B4EDD631] - 06/05/2008 - 16:53:20 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvrd32.sys [132128] O58 - SDL:[MD5.7EC12A73067BACA25A8E3E2A58AE83D8] - 07/07/2007 - 14:13:10 ---A- . (.NVIDIA Corporation - NVIDIA® nForce SMU Microcontroller Driver.) -- C:\Windows\System32\Drivers\nvsmu.sys [12032] O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [45112] O58 - SDL:[MD5.A136BA7EB1EEBE4B2469F123F4607518] - 06/05/2008 - 16:53:20 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor32.sys [140832] O58 - SDL:[MD5.18BBDF913916B71BD54575BDB6EEAC0B] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [109112] O58 - SDL:[MD5.85C44FDFF9CF7E72A40DCB7EC06A4416] - 11/04/2009 - 05:43:28 ---A- . (.Microsoft Corporation - NativeWiFi Miniport Driver.) -- C:\Windows\System32\Drivers\nwifi.sys [148480] O58 - SDL:[MD5.6F310E890D46E246E0E261A63D9B36B4] - 11/04/2009 - 05:43:04 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys [62208] O58 - SDL:[MD5.99514FAA8DF93D34B5589187DB3AA0BA] - 11/04/2009 - 05:45:51 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [72192] O58 - SDL:[MD5.0FA9B5055484649D63C303FE404E5F4D] - 02/11/2006 - 09:51:30 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [79360] O58 - SDL:[MD5.B9C2B89F08670E159F7181891E449CD9] - 21/03/2012 - 00:28:50 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [53120] O58 - SDL:[MD5.4F9A6A8A31413180D0FCB279AD5D8112] - 02/11/2006 - 09:51:23 ---A- . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\System32\Drivers\parvdm.sys [8704] O58 - SDL:[MD5.F451DCACBAA67F3307305EBD4A39EA07] - 11/06/2012 - 11:33:46 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\System32\Drivers\pccsmcfd.sys [19072] O58 - SDL:[MD5.941DC1D19E7E8620F40BBC206981EFDB] - 11/04/2009 - 07:32:55 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [149480] O58 - SDL:[MD5.1636D43F10416AEB483BC6001097B26C] - 11/04/2009 - 07:32:49 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [14312] O58 - SDL:[MD5.6429D10C5D149AC9EB2D95052A390CFF] - 11/04/2009 - 07:32:52 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [43496] O58 - SDL:[MD5.E6F3FB1B86AA519E7698AD05E58B04E5] - 02/11/2006 - 10:51:12 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [167528] O58 - SDL:[MD5.6349F6ED9C623B44B52EA3C63C831A92] - 02/11/2006 - 10:04:35 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [878080] O58 - SDL:[MD5.6DBA75306DD9B242B6F1C343179AD201] - 30/10/2013 - 01:43:06 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [167936] O58 - SDL:[MD5.2027293619DD0F047C584CF2E7DF4FFD] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [40960] O58 - SDL:[MD5.AB94285FF6C6BC5433407D8D182A4BB4] - 04/03/2008 - 23:38:42 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\System32\Drivers\psdfilter.sys [18992] O58 - SDL:[MD5.2AAF9A5D7A63D26BFAEA853C5F2292BC] - 04/03/2008 - 23:38:44 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\System32\Drivers\PSDNServ.sys [16944] O58 - SDL:[MD5.0EB8CEC99855BEAE5B0D02C2302619EF] - 04/03/2008 - 23:38:44 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\System32\Drivers\PSDVdisk.sys [60464] O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 20/11/2008 - 20:19:06 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\Drivers\pxhelp20.sys [43872] O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 03:23:24 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1122360] O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [106088] O58 - SDL:[MD5.9F5E0E1926014D17486901C88ECA2DB7] - 21/01/2008 - 03:23:31 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [31232] O58 - SDL:[MD5.147D7F9C556D259924351FEB0DE606C3] - 21/01/2008 - 03:24:19 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [11776] O58 - SDL:[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [76288] O58 - SDL:[MD5.509A98DD18AF4375E1FC40BC175F1DEF] - 11/04/2009 - 05:46:30 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [41472] O58 - SDL:[MD5.ECFFFAEC0C1ECD8DBC77F39070EA1DB1] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [62976] O58 - SDL:[MD5.2005F4A1E05FA09389AC85840F0A9E4D] - 11/04/2009 - 05:46:40 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [69120] O58 - SDL:[MD5.B14C9D5B9ADD2F84F70570BBBFAA7935] - 11/04/2009 - 05:14:29 ---A- . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\Windows\System32\Drivers\rdbss.sys [225280] O58 - SDL:[MD5.89E59BE9A564262A3FB6C4F4F1CD9899] - 21/01/2008 - 03:24:06 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys [6144] O58 - SDL:[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\Drivers\rdpdr.sys [248832] O58 - SDL:[MD5.9D91FE5286F748862ECFFA05F8A0710C] - 21/01/2008 - 03:24:50 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys [6144] O58 - SDL:[MD5.C127EBD5AFAB31524662C48DFCEB773A] - 01/05/2012 - 15:03:49 ---A- . (.Microsoft Corporation - RDP Terminal Stack Driver.) -- C:\Windows\System32\Drivers\rdpwd.sys [180736] O58 - SDL:[MD5.EEC7EE5675294B03E88AA868540007C1] - 11/04/2009 - 05:45:24 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [113664] O58 - SDL:[MD5.D9225D107E40D0FA5C5069446759C8E9] - 11/04/2009 - 05:46:07 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [33280] O58 - SDL:[MD5.75E8A6BFA7374ABA833AE92BF41AE4E6] - 21/01/2008 - 03:24:49 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [8192] O58 - SDL:[MD5.9C508F4074A39E8B4B31D27198146FAD] - 21/01/2008 - 03:24:37 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [60416] O58 - SDL:[MD5.4C01298060CF930D26A75A86B874B6AE] - 26/03/2008 - 19:35:54 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [2103512] O58 - SDL:[MD5.3CE8F073A557E172B330109436984E30] - 02/11/2006 - 10:50:16 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [76392] O58 - SDL:[MD5.6F5CA34AE885645ACF8A20D564DB976C] - 21/01/2008 - 03:23:54 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [142904] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480] O58 - SDL:[MD5.CE9EC966638EF0B10B864DDEDF62A099] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [17920] O58 - SDL:[MD5.6D663022DB3E7058907784AE14B69898] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456] O58 - SDL:[MD5.8AF3D28A879BF75DB53A0EE7A4289624] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [19968] O58 - SDL:[MD5.3EFA810BDCA87F6ECC24F9832243FE86] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys [13312] O58 - SDL:[MD5.E95D451F7EA3E583AEC75F3B3EE42DC5] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys [12288] O58 - SDL:[MD5.3D0EA348784B7AC9EA9BD9F317980979] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys [11776] O58 - SDL:[MD5.46ED8E91793B2E6F848015445A0AC188] - 02/11/2006 - 09:51:40 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [13312] O58 - SDL:[MD5.1D76624A09A054F682D746B924E2DBC3] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre SIS NT AGP.) -- C:\Windows\System32\Drivers\SISAGP.SYS [55864] O58 - SDL:[MD5.43CB7AA756C7DB280D01DA9B676CFDE2] - 21/01/2008 - 03:23:26 ---A- . (.Microsoft Corporation - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [41016] O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 03:23:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [74808] O58 - SDL:[MD5.7B75299A4D201D6A6533603D6914AB04] - 11/04/2009 - 05:45:22 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys [66560] O58 - SDL:[MD5.A7D7EA1771D2ED6F39A8063E79B6C3E8] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - Smard Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [17408] O58 - SDL:[MD5.7AEBDEEF071FE28B0EEF2CDD69102BFF] - 21/01/2008 - 03:24:11 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys [21048] O58 - SDL:[MD5.A7F8BAD9590ADDC425B4003E94780DFA] - 11/04/2009 - 03:52:40 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys [684032] O58 - SDL:[MD5.41987F9FC0E61ADF54F581E15029AD91] - 18/02/2011 - 15:03:32 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [305152] O58 - SDL:[MD5.FF33AFF99564B1AA534F58868CBE41EF] - 29/04/2011 - 14:25:10 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys [146432] O58 - SDL:[MD5.7605C0E1D01A08F3ECD743F38B834A44] - 29/04/2011 - 14:25:09 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [102400] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 27/08/2012 - 13:50:24 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\System32\Drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.EF3458337D7341A05169CEFC73709264] - 13/08/2007 - 03:51:11 ----- . (.Samsung Electronics - 32bit Port Contention Driver.) -- C:\Windows\System32\Drivers\SSPORT.SYS [5120] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 25/10/2007 - 17:26:10 ---A- . (...) -- C:\Windows\System32\Drivers\StarOpen.sys [5632] O58 - SDL:[MD5.47E55AFE1ED1D5AFF09690DB226F4A7A] - 11/04/2009 - 07:32:54 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\Storport.sys [122344] O58 - SDL:[MD5.70A92E46A2F459CDEDE3CA558CB26B6A] - 11/04/2009 - 05:42:47 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [52992] O58 - SDL:[MD5.7BA58ECF0C0A9A69D44B3DCA62BECF56] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [15288] O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\symc8xx.sys [35944] O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_hi.sys [31848] O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_u3.sys [34920] O58 - SDL:[MD5.1239FD18895040D97B7CDBC19BC2075E] - 21/01/2008 - 03:24:44 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [24576] O58 - SDL:[MD5.D18D53974FD715D50FC76F9FFE1C830D] - 05/07/2013 - 05:53:33 ---A- . (.Microsoft Corporation - TCP/IP Driver.) -- C:\Windows\System32\Drivers\tcpip.sys [905664] O58 - SDL:[MD5.608C345A255D82A6289C2D468EB41FD7] - 08/12/2009 - 18:26:18 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [30720] O58 - SDL:[MD5.77937EFF009AC696B90E09F671F9D0A4] - 21/01/2008 - 03:24:05 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [20992] O58 - SDL:[MD5.5DCF5E267BE67A1AE926F2DF77FBCC56] - 21/01/2008 - 03:24:08 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys [17920] O58 - SDL:[MD5.389C63E32B3CEFED425B61ED92D3F021] - 21/01/2008 - 03:24:08 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys [29184] O58 - SDL:[MD5.76B06EB8A01FC8624D699E7045303E54] - 11/04/2009 - 05:45:56 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [72192] O58 - SDL:[MD5.3CAD38910468EAB9A6479E2F01DB43C7] - 11/04/2009 - 07:32:52 ---A- . (.Microsoft Corporation - Terminal Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys [53224] O58 - SDL:[MD5.F4EAA7ECBCB25DE901C9B7F2CDCDA0B3] - 15/06/2013 - 12:23:33 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys [24064] O58 - SDL:[MD5.CAECC0120AC49E3D2F758B9169872D38] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\Drivers\TUNMP.SYS [15360] O58 - SDL:[MD5.300DB877AC094FEAB0BE7688C3454A9C] - 18/02/2010 - 12:28:13 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\Drivers\tunnel.sys [25088] O58 - SDL:[MD5.97DD70FECA64FB4F63DE7BB7E66A80B1] - 06/11/2007 - 09:30:46 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\System32\Drivers\TVicPort.sys [14544] O58 - SDL:[MD5.4E104EBC164231D2272CC9BDD1EF5C40] - 06/11/2007 - 09:30:46 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\System32\Drivers\TVicPort64.sys [8704] O58 - SDL:[MD5.7D33C4DB2CE363C8518D2DFCF533941F] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [59448] O58 - SDL:[MD5.D9728AF68C4C7693CB100B8441CBDEC6] - 11/04/2009 - 05:13:59 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [226816] O58 - SDL:[MD5.B0ACFDC9E4AF279E9116C03E014B2B27] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [60984] O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:23:20 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys [238648] O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys [98408] O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:23:23 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\Drivers\ulsata2.sys [115816] O58 - SDL:[MD5.32CFF9F809AE9AED85464492BF3E32D2] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [34816] O58 - SDL:[MD5.88BD96A1BAEED33EE8BDF9499C07A841] - 21/01/2008 - 03:23:49 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [7680] O58 - SDL:[MD5.8D31A140B55021BBD3A608F5A7AA2E18] - 12/02/2013 - 02:57:27 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [15872] O58 - SDL:[MD5.4B8A9C16B6D9258ED99C512AECB8C555] - 19/04/2010 - 19:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl.sys [41984] O58 - SDL:[MD5.1114579556DB85E9FAF9590DBC64CD62] - 12/07/2013 - 10:04:18 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys [73344] O58 - SDL:[MD5.D06F193F3E9CC3B356DF97F6A43C054A] - 11/04/2009 - 05:42:56 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD.sys [25856] O58 - SDL:[MD5.EAE017D3AA298374A1967B96C379C5AB] - 11/04/2009 - 05:42:56 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [25856] O58 - SDL:[MD5.AAB0B5F72D2D726FBFDC895A2902DE1D] - 29/06/2013 - 03:07:04 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [73216] O58 - SDL:[MD5.E9476E6C486E76BC4898074768FB7131] - 02/11/2006 - 09:55:09 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [68608] O58 - SDL:[MD5.FE619ED13CE12F5B43C04E3EA061BBD6] - 29/06/2013 - 03:06:53 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [6016] O58 - SDL:[MD5.153E8515CB86F8BB5D1A8B478EBF4BB2] - 05/05/2011 - 14:54:07 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [39936] O58 - SDL:[MD5.2AE6BCEBD85D31317E433733DAF25888] - 29/06/2013 - 03:07:15 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [197632] O58 - SDL:[MD5.D457EBD0C3A8B3A3A144355B5EE91CBC] - 05/05/2011 - 14:54:07 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [19456] O58 - SDL:[MD5.B09C74A41F26B08149707EA5E7F956C2] - 29/06/2013 - 03:07:01 ---A- . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\Windows\System32\Drivers\usbport.sys [226304] O58 - SDL:[MD5.E75C4B5269091D15A2E7DC0B6D35F2F5] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [18944] O58 - SDL:[MD5.1D714B8497CD68307806D5D3F60A5169] - 03/07/2013 - 03:33:45 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [35328] O58 - SDL:[MD5.8E6C378A885D6FFDA8F05E8D27B95C0E] - 29/08/2013 - 08:56:16 ---A- . (.Microsoft Corporation - USB Modem Driver.) -- C:\Windows\System32\Drivers\usbser.sys [27648] O58 - SDL:[MD5.47F5F9D837D80FFD5882A14DB9DA0A67] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\usbser_lowerflt.sys [8192] O58 - SDL:[MD5.E44F0D17BE0908B58DCC99CCB99C6C32] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\usbser_lowerfltj.sys [8192] O58 - SDL:[MD5.BE3DA31C191BC222D9AD503C5224F2AD] - 11/04/2009 - 05:42:55 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [65536] O58 - SDL:[MD5.814D653EFC4D48BE3B04A307ECEFF56F] - 21/01/2008 - 03:23:03 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [23552] O58 - SDL:[MD5.73FF24E21B690625A58109637DDA0DF7] - 12/07/2013 - 10:04:32 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [134272] O58 - SDL:[MD5.7481637A50A0468CF46C719672BC7EAA] - 26/02/2005 - 15:25:52 ---A- . (.VM - Video streaming and Capture Device Driver.) -- C:\Windows\System32\Drivers\usbVM31b.sys [91527] O58 - SDL:[MD5.2E93AC0A1D8C79D019DB6C51F036636C] - 21/01/2008 - 03:24:50 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys [25088] O58 - SDL:[MD5.87B06E1F30B749A114F74622D013F8D4] - 21/01/2008 - 03:23:02 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys [26112] O58 - SDL:[MD5.5D7159DEF58A800D5781BA3A879627BC] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre VIA NT AGP.) -- C:\Windows\System32\Drivers\VIAAGP.SYS [56888] O58 - SDL:[MD5.C4F3A691B5BAD343E6249BD8C2D45DEE] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\viac7.sys [41472] O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 03:23:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [20024] O58 - SDL:[MD5.C048D2C33D27441A0CDCAAE2651EB03D] - 21/01/2008 - 03:23:42 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [110080] O58 - SDL:[MD5.69503668AC66C77C6CD7AF86FBDF8C43] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [52792] O58 - SDL:[MD5.23E41B834759917BFD6B9A0D625D0C28] - 11/04/2009 - 07:33:03 ---A- . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys [292840] O58 - SDL:[MD5.786DB5771F05EF300390399F626BF30A] - 21/08/2012 - 12:47:42 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [224640] O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 03:23:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [130616] O58 - SDL:[MD5.48DFEE8F1AF7C8235D4E626F0C4FE031] - 02/11/2006 - 09:52:52 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [20608] O58 - SDL:[MD5.55201897378CCA7AF8B5EFD874374A26] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [62464] O58 - SDL:[MD5.4A5C31E2C1646034E6A60EBA4C747FF6] - 11/04/2009 - 05:22:46 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [33280] O58 - SDL:[MD5.DC7F91B2ED24A738C807EA07F298928C] - 01/09/2003 - 11:00:00 ---A- . (.Microsoft Corporation - Windows CE USB Serial Host.) -- C:\Windows\System32\Drivers\wceusbsh.sys [104064] O58 - SDL:[MD5.78FE9542363F297B18C027B2D7E7C07F] - 21/01/2008 - 03:23:24 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys [22072] O58 - SDL:[MD5.25944D2CC49E0A6C581D02A74B7D6645] - 27/06/2013 - 00:01:59 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [527064] O58 - SDL:[MD5.48704647CD2E9DAA2EB81BDE6D029EDB] - 26/07/2012 - 04:39:21 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [47720] O58 - SDL:[MD5.2E7255D172DF0B8283CDFB7B433B864E] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [11264] O58 - SDL:[MD5.C546864EED786304762D030FEBF6B411] - 21/01/2008 - 03:23:42 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [17976] O58 - SDL:[MD5.DE9D36F91A4DF3D911626643DEBF11EA] - 01/10/2009 - 02:01:54 ---A- . (.Microsoft Corporation - WPD USB Driver.) -- C:\Windows\System32\Drivers\WpdUsb.sys [40448] O58 - SDL:[MD5.E3A3CB253C0EC2494D4A61F5E43A389C] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - Winsock2 IFS Layer.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [15872] O58 - SDL:[MD5.06E6F32C8D0A3F66D956F57B43A2E070] - 26/07/2012 - 03:33:43 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [66560] O58 - SDL:[MD5.867C301E8B790040AE9CF6486E8041DF] - 26/07/2012 - 03:32:51 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [155136] O58 - SDL:[MD5.40AC8590CC9006DBB99FFCB37879D4C6] - 06/11/2007 - 09:30:48 ---A- . (.Zeal SoftStudio - zntport.) -- C:\Windows\System32\Drivers\zntport.sys [6080] O58 - SDL:[MD5.C32ACB6D3FB23EBF528B676F7B8197B7] - 06/11/2007 - 09:30:46 ---A- . (.Zeal SoftStudio - NTPort Library kernel driver.) -- C:\Windows\System32\Drivers\zntport64.sys [13096] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] O58 - SDL:[MD5.D7659D3B5B92C31E84E53C1431F35132] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys [245736] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\System32\country.sys [27097] O58 - SDL:[MD5.790A4CA68F44BE35967B3DF61F3E4675] - 31/03/2009 - 09:39:36 ---A- . (...) -- C:\Windows\System32\FsUsbExDisk.Sys [36608] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768] O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952] O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672] O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776] O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536] O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672] O58 - SDL:[MD5.7DEEA31FD41B77B433C17903B3416507] - 07/02/2014 - 11:38:44 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2050560] ~ Drivers: 15 Scanned in 00mn 03s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 12/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Local State [70654] O61 - LFC: 12/04/2014 - 21:08:41 ---A- . (.FreeSoftToday.) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\Download\majfstfr.exe [6619672] =>PUA.FSTfr9 O61 - LFC: 12/04/2014 - 21:08:42 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\CdmAdapterVersion [13] O61 - LFC: 12/04/2014 - 21:08:42 --HA- . (...) -- C:\Users\Famille Philippe\AppData\Local\IconCache.db [4162746] O61 - LFC: 12/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\BON DE COMMANDE.LNK [919] O61 - LFC: 12/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\Bureau.LNK [751] O61 - LFC: 13/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.cyp [876] =>PUA.FSTfr9 O61 - LFC: 13/04/2014 - 21:09:20 ---A- . (...) -- C:\Users\Famille Philippe\Downloads\Setup.exe [679616] O61 - LFC: 14/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\fst_fr_134\1.10\cnf.cyl [131] =>PUA.FSTfr9 O61 - LFC: 14/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\fst_fr_134\1.10\eorezo.cyl [69] =>PUA.FSTfr9 O61 - LFC: 14/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\FRANCOIS (J).LNK [187] O61 - LFC: 14/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\TD_Ethique-et-morale_14-04-2014.LNK [365] O61 - LFC: 14/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Word12.pip [1744] O61 - LFC: 14/04/2014 - 21:08:48 --H-- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\index.dat [1124] O61 - LFC: 14/04/2014 - 21:09:26 ---A- . (.Nicolas Coolman.) -- C:\Users\Famille Philippe\Downloads\ZHPDiag2.exe [6867907] =>.Nicolas Coolman ~ Files: 15 Scanned in 01mn 10s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 21/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - 19/12/2013 - C:\Windows\System32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 19/12/2013 - C:\Windows\System32\DRIVERS\avipbb.sys (avipbb) .(.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB O64 - Services: CurCS - 03/12/2013 - C:\Windows\System32\DRIVERS\avkmgr.sys (avkmgr) .(.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - LEGACY_AVKMGR O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP O64 - Services: CurCS - 22/02/2011 - C:\Windows\System32\DRIVERS\bowser.sys (bowser) .(.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) - LEGACY_BOWSER O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\CLFS.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\crcdisk.sys (crcdisk) .(.Microsoft Corporation - Disk Block Verification Filter Driver.) - LEGACY_CRCDISK O64 - Services: CurCS - 14/04/2011 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC O64 - Services: CurCS - 01/08/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR O64 - Services: CurCS - 20/02/2010 - C:\Windows\System32\drivers\HTTP.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP O64 - Services: CurCS - 03/07/2007 - C:\Acer\Empowering Technology\eRecovery\int15.sys (int15) .(.Acer, Inc. - int15.) - LEGACY_INT15 O64 - Services: CurCS - 04/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\mountmgr.sys (MountMgr) .(.Microsoft Corporation - Mount Point Manager.) - LEGACY_MOUNTMGR O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\drivers\mrxdav.sys (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb.sys (mrxsmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB O64 - Services: CurCS - 06/07/2011 - C:\Windows\System32\DRIVERS\mrxsmb10.sys (mrxsmb10) .(.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) - LEGACY_MRXSMB10 O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb20.sys (mrxsmb20) .(.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) - LEGACY_MRXSMB20 O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - NDIS 6.0 wrapper driver.) - LEGACY_NDIS O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\netbt.sys (netbt) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) - LEGACY_NVRAID O64 - Services: CurCS - 02/11/2006 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\pacer.sys (PSched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED O64 - Services: CurCS - 04/03/2008 - C:\Windows\System32\DRIVERS\psdfilter.sys (PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER O64 - Services: CurCS - 04/03/2008 - C:\Windows\System32\DRIVERS\PSDNServ.sys (PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV O64 - Services: CurCS - 04/03/2008 - C:\Windows\System32\DRIVERS\PSDVdisk.sys (psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rasacd.sys (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\rdbss.sys (rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\rdpencdd.sys (RDPENCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPENCDD O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR O64 - Services: CurCS - 02/11/2006 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Smb) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_SMB O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR O64 - Services: CurCS - 18/02/2011 - C:\Windows\System32\DRIVERS\srv.sys (srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srv2.sys (srv2) .(.Microsoft Corporation - Smb 2.0 Server driver.) - LEGACY_SRV2 O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET O64 - Services: CurCS - 27/08/2012 - C:\Windows\System32\DRIVERS\ssmdrv.sys (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: CurCS - 13/08/2007 - C:\Windows\system32\Drivers\SSPORT.sys (SSPORT) .(.Samsung Electronics - 32bit Port Contention Driver.) - LEGACY_SSPORT O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP O64 - Services: CurCS - 08/12/2009 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX O64 - Services: CurCS - 06/11/2007 - C:\Windows\system32\drivers\tvicport.sys (tvicport) .(.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) - LEGACY_TVICPORT O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Volume Manager Extension Driver.) - LEGACY_VOLMGRX O64 - Services: CurCS - 21/08/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\wanarp.sys (Wanarpv6) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARPV6 O64 - Services: CurCS - 27/06/2013 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000 O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF O64 - Services: CurCS - 06/11/2007 - C:\Windows\system32\drivers\zntport.sys (zntport) .(.Zeal SoftStudio - zntport.) - LEGACY_ZNTPORT ~ Legacy: 77 Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S ~ FASS Keys: 10 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: prefs.js [Famille Philippe - 93zkm48l.default] user_pref("extensions.crossrider.bic", "14542a3ac321a57d872667662bad8d16"); =>PUP.CrossRider O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://search.live.com O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Bueno Search) - O69 - SBI: SearchScopes [HKCU] {14880626-986F-4C98-8670-9B8077813C09} - (Ask Search) - O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Yahoo!) - http://fr.search.yahoo.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [24576] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [62976] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [125952] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [576512] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [444928] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [315392] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [262144] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [68608] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [47104] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [288256] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [242688] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll [449024] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [1933848] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [758784] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [200704] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [19968] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [33280] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [111616] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [45056] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [153088] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [57344] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [162304] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [601600] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\System32\sessenv.dll [84992] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [81920] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [68096] ~ Services: 31 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.333C52BEB540E9BAED6208CD20AA2F75] [sPRF][19/10/2008] (...) -- C:\ProgramData\ezsidmv.dat [56] [MD5.FC6AAEA12ADE44355F315BE6B7170B4A] [sPRF][19/09/2010] (...) -- C:\ProgramData\hpothb07.dat [151] [MD5.C3BD91F09C88D6D28E8B9979272AAEC8] [sPRF][08/09/2012] (...) -- C:\Users\Famille Philippe\Desktop\hpothb07.dat [2925] [MD5.9BF10785E977207D53BFA8B3158D17B4] [sPRF][27/03/2009] (...) -- C:\Users\Famille Philippe\Desktop\OOo_3.0.1_Win32Intel_install_wJRE_fr.exe [143875176] [MD5.63287A13A20D526E39BC027EC1C91A3C] [sPRF][17/06/2013] (.Microsoft Corporation - Programme d’installation de Windows Essentials.) -- C:\Users\Famille Philippe\Desktop\wlsetup-all.exe [139601632] [MD5.AFF096280AB535CE34F82CABDB3C136D] [sPRF][22/08/2007] (.Direction Générale des Impôts - Module de délivrance de certificat MINEFI.) -- C:\Windows\Downloaded Program Files\CERTDGI1.dll [117288] [MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [sPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576] [MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [sPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608] [MD5.29CFE9ED23C55E55838A789EB1182A9B] [sPRF][04/10/2008] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1887080] [MD5.A7226E3C773911C7687299B3E2284CAB] [sPRF][13/04/2004] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [307200] [MD5.C0C19C6D32721B4B323237EF80254D37] [sPRF][28/11/2005] (.Oberon Games - OberongamesLoader Module.) -- C:\Windows\Downloaded Program Files\Oberongamesloader.dll [135168] ~ Files: 11 Scanned in 00mn 04s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "BITSSVC-RPCSS-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "BITSSVC-RPC-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "BITSSVC-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "BITSSVC-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WinCollab-P2P-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WinCollab-P2P-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe O87 - FAEL: "MCX-Prov-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-QWave-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "{9A0FC0E6-C41A-491D-85B2-7B42B0C4D7B6}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O87 - FAEL: "{9272E7EA-E5B0-4E65-AA03-61B849992A79}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O87 - FAEL: "{0590D135-20CF-4616-83A2-B4D64D7A7ADC}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe O87 - FAEL: "{EC714915-D3A6-43D3-B785-23155F4ED9A6}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe O87 - FAEL: "{8FB6D042-3CF4-407D-A2E9-A1CE05C41456}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia Connect.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe O87 - FAEL: "{542BA28B-703D-48DB-B83F-94E757E578BF}" | In - None - P17 - TRUE | .(.CyberLink - CLMSServer.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O87 - FAEL: "{B34DAF09-668F-41FD-94EB-A7A892360F5C}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer SlideShow DVD.) -- C:\Program Files\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe O87 - FAEL: "{F051E17E-51EF-4830-B367-F6DA497077E5}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe O87 - FAEL: "{F19A5023-E796-411B-91F4-615DCEB3F968}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "{78BB1033-644A-4F58-B071-CF8CF1608B5D}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{3F52ACBA-15C7-41A0-ABBB-8579AF82460F}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F99EC74C-BA19-4314-8CCF-7820DFE887BD}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{010D17B6-079E-4CC6-A539-B09C95182122}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{2087B08C-61D1-4402-8377-4B7D1DFA2D22}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{51781BBD-9333-49DF-B6D4-1345AF134EC0}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O87 - FAEL: "{D262D572-AED9-4F03-BF62-B7B3DAD8C808}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O87 - FAEL: "{97D2ADEF-E7CD-4910-B598-BE9142C205CE}" | In - Private - P6 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz O87 - FAEL: "{C513CCF3-4F02-49BE-8B95-A32B3FB0B78E}" | In - Private - P17 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz O87 - FAEL: "TCP Query User{414DBE8B-AB20-4D68-8D8A-1D7A0D90C85B}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe" | In - Public - P6 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe =>Adware.SocialSkinz O87 - FAEL: "UDP Query User{89ED80C8-65C8-4276-A2F1-3597C23FC79D}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe" | In - Public - P17 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe =>Adware.SocialSkinz O87 - FAEL: "TCP Query User{D3253CBD-2E94-482B-A8F3-8C47A98DF332}C:\program files\mozilla firefox\firefox.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe O87 - FAEL: "UDP Query User{66A07EEA-1070-43A8-AFCB-3D43E7AFD0E2}C:\program files\mozilla firefox\firefox.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe O87 - FAEL: "TCP Query User{80ED8CDE-A8B8-44A0-9F8F-638BBEB1D1C3}C:\program files\java\jre6\bin\java.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe O87 - FAEL: "UDP Query User{F1C52527-4DD9-4143-AD06-5489CBE31D7F}C:\program files\java\jre6\bin\java.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe O87 - FAEL: "{B514E67D-B8D1-4F58-89E6-9B57D8464B76}" | In - Private - P6 - TRUE | .(.Sony Creative Software Inc. - Media Manager.) -- C:\Program Files\Sony\Media Manager for WALKMAN\MediaManager.exe O87 - FAEL: "{F95F51A7-D2C6-40BA-BFFB-E32BF6D27AF8}" | In - Private - P17 - TRUE | .(.Sony Creative Software Inc. - Media Manager.) -- C:\Program Files\Sony\Media Manager for WALKMAN\MediaManager.exe O87 - FAEL: "{4579016E-4A9E-4952-996A-90B5A357D78D}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Moovida\moovida.exe (.not file.) =>Adware.SPointer O87 - FAEL: "{5DBD72BC-9461-4E78-ACD4-162D721977D2}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Moovida\moovida.exe (.not file.) =>Adware.SPointer O87 - FAEL: "{FFF2B981-EC40-4325-B009-08566D8ED08B}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{48FFA645-8DB1-4954-B142-6EF28AAA4301}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\outlook.exe =>.Microsoft Corporation O87 - FAEL: "{DA8F8E44-4C8F-4037-907D-B5BF6712B7A5}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (.not file.) O87 - FAEL: "{D5699F78-3B1C-4BE6-A29F-ACC06CC53C8F}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (.not file.) O87 - FAEL: "{E4511D41-CA05-4BCB-86B4-B4215D78F05C}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (.not file.) O87 - FAEL: "{1AD8EC46-8403-4802-81B6-127267CB2650}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (.not file.) O87 - FAEL: "{A94312F5-EC2F-4433-8AD1-D39DD032CAD5}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{372EEDE5-96CA-433B-9B3D-75C10442643A}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{C544C677-9D1F-4C14-B34E-52BD413CF4B8}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O87 - FAEL: "TCP Query User{70168AC3-16B4-4297-81E9-BD1547F1E0B3}C:\program files\google\google earth\plugin\geplugin.exe" | In - Private - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe =>.Google Inc O87 - FAEL: "UDP Query User{CBBF003B-B6CE-4920-AC36-E83BC609762A}C:\program files\google\google earth\plugin\geplugin.exe" | In - Private - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe =>.Google Inc O87 - FAEL: "{258BF34C-4758-4680-87C2-7183B31EF18E}" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Famille Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox O87 - FAEL: "{33912CF3-3952-4873-A3FD-850FFEEBA944}" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Famille Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox O87 - FAEL: "TCP Query User{4622C3E6-5F63-40D5-80A8-793E25195AE8}C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe =>.Dropbox O87 - FAEL: "UDP Query User{66DC1D47-2243-4DC0-82A6-411500BFCC43}C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe =>.Dropbox O87 - FAEL: "{C75EAC6B-99EA-46DB-9857-31087DBED764}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O87 - FAEL: "{F8883439-1A7E-4645-86C8-3850851B9447}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O87 - FAEL: "{FB234ACA-656B-44A8-8296-388564FF1C80}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe O87 - FAEL: "{C6B8E02D-95A5-44D5-8BF6-3CAB3AB01981}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O87 - FAEL: "{12843CBD-44A3-4675-9EAE-81BCD15B3416}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O87 - FAEL: "{33A8DC29-5341-46D4-8353-914574D0519C}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files\Steam\Steam.exe O87 - FAEL: "{CD69D293-2F3B-452B-BA1E-9BD119FAFBCB}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files\Steam\Steam.exe O87 - FAEL: "{C426C1AC-256E-4FF6-8DD2-0318FCAB9BC9}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine\trine_launcher.exe O87 - FAEL: "{F613AE4A-BCF3-4156-8745-57ACF16C66FE}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine\trine_launcher.exe O87 - FAEL: "{E212CC9F-ED91-4435-9D39-0BDF78D09E88}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe O87 - FAEL: "{8FFF16FA-2B89-4D6B-813D-E866F3FF92E0}" | In - Private - P6 - TRUE | .(.Robot Entertainment - OMD 2 Mod Launcher.) -- C:\Program Files\Steam\SteamApps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe O87 - FAEL: "{0B30F6C0-D1D7-45AB-87E4-6DA950621B7C}" | In - Private - P17 - TRUE | .(.Robot Entertainment - OMD 2 Mod Launcher.) -- C:\Program Files\Steam\SteamApps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe O87 - FAEL: "{9EB9D8C2-3642-479B-8865-281E4DC4B5A5}" |In - Public - P6 - TRUE | .(...) -- C:\ProgramData\eSafe\eGdpSvc.exe (.not file.) =>PUP.eSafeSecurity O87 - FAEL: "TCP Query User{00EC21CA-6F44-45F0-B2FE-921F4D4A6B32}C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" | In - Private - P6 - TRUE | .(.Robot Entertainment, Inc. - Orcs Must Die 2.) -- C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe O87 - FAEL: "UDP Query User{69B4B00D-3EA3-47A3-9F2D-0618D15E33B2}C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" | In - Private - P17 - TRUE | .(.Robot Entertainment, Inc. - Orcs Must Die 2.) -- C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe O87 - FAEL: "{FB346DAC-2CC5-4643-AF77-7F5DA6909D36}" | In - Domain - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine 2\trine2_launcher.exe O87 - FAEL: "{A7BB7CB3-323F-4704-AC0F-CC73F2F1C2DB}" | In - Domain - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine 2\trine2_launcher.exe O87 - FAEL: "{B83DAF99-0D60-435F-927A-1FA9C7442FB5}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe ~ Firewall: 228 Scanned in 00mn 01s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "0194F446218EDA9439CE6828C88BA1D0" . (.PC Connectivity Solution.) -- C:\Windows\Installer\{644F4910-E812-49AD-93EC-86828CB81A0D}\ARPPRODUCTICON.exe O90 - PUC: "0336A2D4B8F23E11C9048BCAF6798BE8" . (.Google Earth.) -- C:\Windows\Installer\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}\ARPPRODUCTICON.exe O90 - PUC: "043B0686D0353B64198FA11E7FF0C733" . (.OpenOffice.org 3.0.) -- C:\Windows\Installer\{6860B340-530D-46B3-91F8-1AE1F70F7C33}\soffice.exe O90 - PUC: "0D00C83EB86A81348A6A7F4D5B1BFDE0" . (.Codeur Windows Media Série 9.) -- C:\Windows\Installer\{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}\ARPIcon O90 - PUC: "147AE92A7F4270C4B9C260BC4619EBA4" . (.Camera Window.) -- C:\Windows\Installer\{A29EA741-24F7-4C07-9B2C-06CB6491BE4A}\ARPPRODUCTICON.exe O90 - PUC: "2563365A59739284BBB046F420972E97" . (.Acer eDataSecurity Management.) -- C:\Windows\Installer\{A5633652-3795-4829-BB0B-644F0279E279}\ARPPRODUCTICON.exe O90 - PUC: "26FCC409D8185764CB673DE73B999F71" . (.Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe O90 - PUC: "277C90D53BCEB244C96C4B43C187DF2C" . (.Apple Application Support.) -- C:\Windows\Installer\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}\WinInstall.ico O90 - PUC: "2A59BE6954252AE46BAE8BABF2FB464C" . (.Ma-Config.com.) -- C:\Windows\Installer\{96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}\maconfico O90 - PUC: "34D2E50CF50A53841AC5DCA01D755660" . (.PhotoStitch.) -- C:\Windows\Installer\{C05E2D43-A05F-4835-A15C-CD0AD1576506}\ARPPRODUCTICON.exe O90 - PUC: "3654C66835DE3F342AD9B8EEB21DABC3" . (.Nokia PC Suite.) -- C:\Windows\Installer\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\ARPPRODUCTICON.exe O90 - PUC: "3AEE1ACCE55550D4CA64B4946C5C8D78" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887}\Installer.ico O90 - PUC: "44FD8FE3045FA564C8C45A8CFDED69BA" . (.Trans Music Manager.) -- C:\Windows\Installer\{3EF8DF44-F540-465A-8C4C-A5C8DFDE96AB}\ARPPRODUCTICON.exe O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc O90 - PUC: "4C70161239943F34AAA70D0588871C20" . (.Canon DV TWAIN Driver.) -- C:\Windows\Installer\{216107C4-4993-43F3-AA7A-D0508878C102}\ARPPRODUCTICON.exe O90 - PUC: "50E7C3A773EE6D74991EE20BA5D33A7F" . (.Skype™ 6.14.) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe O90 - PUC: "52E4407E830367A4094643A40C8340E3" . (.Mise à jour du pilote du Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{E7044E25-3038-4A76-9064-344AC038043E}\WindowsMobileDeviceCenter.ico O90 - PUC: "5B769D51EB4AEA24E94846DC60B252AA" . (.eSobi v2.) -- C:\Windows\Installer\{15D967B5-A4BE-42AE-9E84-64CD062B25AA}\ARPPRODUCTICON.exe O90 - PUC: "65C853104F443B8B7875602F8A468A36" . (.ATI Catalyst Install Manager.) -- C:\Windows\Installer\{01358C56-44F4-B8B3-8757-06F2A864A863}\ARPPRODUCTICON.exe O90 - PUC: "68AB67CA7DA746454382080000000030" . (.Spelling Dictionaries Support For Adobe Reader 8.) -- C:\Windows\Installer\{AC76BA86-7AD7-5464-3428-800000000003}\ARPPRODUCTICON.exe O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.9) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico O90 - PUC: "6AABD0A6CEF47B1458E899FE959B71C3" . (.CIG.) -- C:\Windows\Installer\{6A0DBAA6-4FEC-41B7-858E-99EF59B9173C}\ARPPRODUCTICON.exe O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco O90 - PUC: "8CAF48E7815C9F048970475503D1D652" . (.SamsungConnectivityCableDriver.) -- C:\Windows\Installer\{7E84FAC8-C518-40F9-9807-7455301D6D25}\ARPPRODUCTICON.exe O90 - PUC: "B50A775126EECBB4D97BEF47F84AE42C" . (.NTI CD & DVD-Maker.) -- C:\Windows\Installer\{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}\ARPPRODUCTICON.exe O90 - PUC: "C72BF05326FC3FE4FAD907FF13F32E12" . (.iTunes.) -- C:\Windows\Installer\{350FB27C-CF62-4EF3-AF9D-70FF313FE221}\Installer.ico O90 - PUC: "CC52075AE2F510D43B7860BD0105D034" . (.Nokia Connectivity Cable Driver.) -- C:\Windows\Installer\{A57025CC-5F2E-4D01-B387-06DB10500D43}\ARPPRODUCTICON.exe O90 - PUC: "D43089517417C234C88A88E860231D42" . (.NTI Backup NOW! 4.7.) -- C:\Windows\Installer\{1598034D-7147-432C-8CA8-888E0632D124}\ARPPRODUCTICON.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "D83BC1B64E2E03a439D3FEEDAB67DAC9" . (.Microsoft Works.) -- C:\Windows\Installer\{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}\Win2Kico.exe O90 - PUC: "EA13C1FFCDC0EC04BA5804F6B8076D34" . (.Bonjour.) -- C:\Windows\Installer\{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}\Bonjour.ico O90 - PUC: "F6071111A6667304777712318267D401" . (.JavaFX 2.1.1.) -- C:\Windows\Installer\{1111706F-666A-4037-7777-211328764D10}\javaIcon.ico O90 - PUC: "FA4EDAFCFC0C40A47A674731811F56F8" . (.Content Transfer.) -- C:\Windows\Installer\{CFADE4AF-C0CF-4A04-A776-741318F1658F}\ARPPRODUCTICON.exe ~ Update Products: 143 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: Nokia Phone Browser - {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} O92 - MNS: Dossiers Web - {BDEADF00-C265-11D0-BCED-00A0C90AB50F} ~ MNS: 2 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.6E4ADD19D45CC5F0014D870CFEEF29B3] [WIS][21/03/2008] (.esobi Inc. - eSobi Setup.) -- C:\Windows\Installer\11aaf2.msi [1338368] [MD5.D1875D3EAC27EA33360A9C967AD43178] [WIS][21/03/2008] (.NewTech Infosystems - CD & DVD-Maker.) -- C:\Windows\Installer\1810f.msi [13896704] [MD5.ED43E687DA6DD236B7E6AED0B3C48EF5] [WIS][21/03/2008] (.NewTech Infosystems - BUN 4.7.) -- C:\Windows\Installer\1811a.msi [1232896] [MD5.B7191A3ACAE20C3C6506823DDA58748F] [WIS][21/03/2008] (.Egis Inc. - Acer eDataSecurity Management.) -- C:\Windows\Installer\291e8.msi [8373248] [MD5.CE37176C6386843E51FBA8877DB3753B] [WIS][14/06/2009] (.TransTechnology - Trans Music Manager.) -- C:\Windows\Installer\2e4234b.msi [567296] [MD5.B24514D0AB0DFA8DA36CEACD1296A7AD] [WIS][30/10/2012] (.Skype Technologies S.A. - Skype Click to Call.) -- C:\Windows\Installer\3060e15b.msi [1188352] [MD5.DF7FCDB4D456BC01BF053398A970EDF5] [WIS][12/04/2014] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\4161f.msi [1610240] [MD5.956A6780A171A21111236B85D9BA883D] [WIS][05/11/2012] (.Nokia - MSVC90_x86.) -- C:\Windows\Installer\4f761663.msi [78336] [MD5.6B70F23FC8E4E9FC1AA9218B88BBD120] [WIS][05/11/2012] (.Nokia - Nokia Connectivity Cable Driver.) -- C:\Windows\Installer\4f761669.msi [337920] [MD5.F8FC7A4FBDF092FB884090AFD223308D] [WIS][05/11/2012] (.Nokia - PC Connectivity Solution.) -- C:\Windows\Installer\4f7616a0.msi [496128] [MD5.33BEB4A60F8F8A0ADDCD85AC3E13477E] [WIS][05/11/2012] (.Nokia - Nokia PC Suite.) -- C:\Windows\Installer\4f7616a7.msi [971776] [MD5.037BBB2FBDCD1A92169D278F0F3A19E5] [WIS][05/11/2012] (.Nokia Corporation - Nokia Software Updater.) -- C:\Windows\Installer\4f94dd79.msi [988672] [MD5.085D524E99E53F043CFC9470A7DE58C3] [WIS][14/06/2013] (.Valve Corporation - Steam.) -- C:\Windows\Installer\8865689.msi [1074176] [MD5.87DB6BC3013438DE2EE0B7934179DDB4] [WIS][16/12/2008] (.ViaMichelin - Blank Project Template.) -- C:\Windows\Installer\df92d69.msi [160256] ~ WIS: 147 Scanned in 00mn 09s ---\\ Recherche de clés de registre CLSID (O101) [HKCR\CLSID\{11111111-1111-1111-1111-110511421146}] (MediaPlayerplus) =>PUP.CrossRider [HKCR\CLSID\{22222222-2222-2222-2222-220522422246}] (CrossriderApp0054246.Sandbox) =>PUP.CrossRider [HKCR\CLSID\{22222222-2222-2222-2222-220522422253}] (CrossriderApp0054253.Sandbox) =>PUP.CrossRider ~ BCK: 6903 Scanned in 00mn 13s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 23/03/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 27/05/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 31/07/2008 136120 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 21/01/2008 21504 | C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SS - | Demand 01/09/2010 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SS - | Demand 12/09/2010 251248 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe SS - | Demand 30/03/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe SS - | Auto 21/01/2008 21504 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SS - | Auto 25/02/2013 1260320 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe SS - | Auto 21/01/2008 21504 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SS - | Demand 11/06/2012 724376 | (ServiceLayer) . (.Nokia.) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe SS - | Demand 11/12/2013 569768 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe SR - | Auto 25/01/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe SR - | Auto 17/10/2007 28672 | (AcerMemUsageCheckService) . (...) - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe SR - | Auto 18/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe SR - | Auto 23/03/2014 440400 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 23/03/2014 440400 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 13/08/2010 144672 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 27/07/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 04/03/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe SR - | Auto 10/09/2007 57344 | (eRecoveryService) . (.Acer Inc..) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe SR - | Auto 19/12/2007 24576 | (eSettingsService) . (...) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe SR - | Auto 27/05/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SR - | Auto 11/04/2014 705136 | (IePluginService) . (.Cherished Technololgy LIMITED.) - C:\ProgramData\IePluginService\PluginService.exe =>Trojan.SProtector SR - | Auto 17/01/2007 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe SR - | Auto 05/12/2008 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe SR - | Auto 08/04/2014 541696 | (nuttkoqiez32) . (...) - C:\Program Files\003\nuttkoqiez32.exe =>PUP.Agent SR - | Auto 18/01/2013 639776 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 02/10/2012 3064000 | (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe SR - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SR - | Auto 23/01/2012 92592 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe SR - | Auto 21/01/2008 21504 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 21/01/2008 21504 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 15s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net ~ MBR: 1 Scanned in 00mn 02s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Famille Philippe at 14/04/2014 21:11:00 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s ---\\ Scan Additionnel (O88) Database Version : 13044 - (14/04/2014) Clés trouvées (Keys found) : 36 Valeurs trouvées (Values found) : 3 Dossiers trouvés (Folders found) : 15 Fichiers trouvés (Files found) : 34 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511421146}] =>PUP.CrossRider^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511421153}] =>PUP.CrossRider^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] =>PUP.SupTab^ [HKLM\SYSTEM\CurrentControlSet\Services\IePluginService] =>Trojan.SProtector^ [HKLM\SYSTEM\CurrentControlSet\Services\nuttkoqiez32] =>PUP.Agent^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\VeohPlugin] =>Adware.SocialSkinz^ [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>PUP.Babylon [HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}] =>Adware.Bandoo [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster [HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader [HKLM\Software\Iminent] =>Adware.IMBooster [HKCU\Software\Tutorials] =>Spyware.AgenceExclusive [HKLM\Software\Tutorials] =>Spyware.AgenceExclusive [HKLM\Software\VBMZ] =>Toolbar.Conduit [HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider [HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity [HKLM\Software\Classes\CLSID\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity [HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider [HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider [HKLM\Software\Classes\SpeedUpMyPC] =>PUP.SpeedUpMyPC [HKLM\Software\Classes\CrossriderApp0054246.BHO] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0054246.BHO.1] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0054246.Sandbox] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0054246.Sandbox.1] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0054253.BHO] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0054253.BHO.1] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0054253.Sandbox] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0054253.Sandbox.1] =>PUP.CrossRider [HKLM\Software\Classes\Iminent] =>Adware.IMBooster [HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110511421146}] =>PUP.CrossRider [HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110511421153}] =>PUP.CrossRider [HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220522422246}] =>PUP.CrossRider [HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220522422253}] =>PUP.CrossRider [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:fst_fr_134 =>PUA.FSTfr9^ [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]:upfst_fr_134.exe =>PUA.FSTfr9^ [HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{84FF7BD6-B47F-46F8-9130-01B2696B36CB} =>Adware.IMBooster C:\Program Files\fst_fr_134 =>PUA.FSTfr9^ C:\Program Files\MediaPlayerplus =>PUP.CrossRider^ C:\Program Files\PriceMeterLiveUpdate =>PUP.PriceMeter^ C:\Program Files\SupTab =>PUP.SupTab^ C:\ProgramData\Babylon =>PUP.Babylon^ C:\ProgramData\IePluginService =>Trojan.SProtector^ C:\ProgramData\PriceMeterLiveUpdate =>PUP.PriceMeter^ C:\ProgramData\VisualBee =>Adware.VisualBeeToolbar^ C:\ProgramData\WPM =>PUP.WpManager^ C:\Users\Famille Philippe\AppData\Roaming\SupTab =>PUP.SupTab^ C:\Users\Famille Philippe\AppData\Roaming\uTorrent =>P2P.µTorrent^ C:\Users\Famille Philippe\AppData\Local\fst_fr_134 =>PUA.FSTfr9^ C:\Users\Famille Philippe\AppData\Local\PriceMeterLiveUpdate =>PUP.PriceMeter^ C:\Users\Famille Philippe\AppData\Local\VisualBeeExe =>Adware.VisualBeeToolbar^ C:\Users\Famille Philippe\AppData\Local\Temp\Iminent =>Adware.IMBooster C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.exe =>PUA.FSTfr9^ C:\Program Files\fst_fr_134\fst_fr_134.exe =>PUA.FSTfr9^ C:\program files\mediaplayerplus\mediaplayerplus-bg.exe =>PUP.CrossRider^ C:\Program Files\MediaPlayerplus\MediaPlayerplus-codedownloader.exe =>PUP.CrossRider^ C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.exe =>PUP.CrossRider^ C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.exe =>PUP.CrossRider^ C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.exe =>PUP.CrossRider^ C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.exe =>PUP.CrossRider^ C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz^ [HKCU\Software\AnyProtect] =>PUP.AnyProtect^ [HKCU\Software\AppDataLow\Software\MediaPlayerplus] =>PUP.CrossRider^ [HKCU\Software\AppDataLow\Software\Rr Savings] =>PUP.SupraSavings^ [HKCU\Software\AppDataLow\Software\Supra Savings] =>PUP.SupraSavings^ [HKCU\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter^ [HKCU\Software\Visualbee] =>Adware.VisualBeeToolbar^ [HKCU\Software\freesofttoday] =>Adware.FreeSoftToday^ [HKLM\Software\LevelQualityWatcher] =>PUP.LevelQualityWatcher^ [HKLM\Software\MediaPlayerplus] =>PUP.CrossRider^ [HKLM\Software\PopCap] =>Adware.PopCap^ [HKLM\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter^ [HKLM\Software\Visualbee] =>Adware.VisualBeeToolbar^ [HKLM\Software\Wpm] =>PUP.WpManager^ [HKLM\Software\free_soft_to_day] =>Adware.FreeSoftToday^ [HKLM\Software\supTab] =>PUP.SupTab^ [HKLM\Software\supWPM] =>PUP.WpManager^ [HKLM\Software\suprasavings] =>PUP.SupraSavings^ [HKLM\Software\webssearchesSoftware] =>Hijacker.WebsSearches^ [HKCR\CLSID\{11111111-1111-1111-1111-110511421146}] (MediaPlayerplus) =>PUP.CrossRider^ [HKCR\CLSID\{22222222-2222-2222-2222-220522422246}] (CrossriderApp0054246.Sandbox) =>PUP.CrossRider^ [HKCR\CLSID\{22222222-2222-2222-2222-220522422253}] (CrossriderApp0054253.Sandbox) =>PUP.CrossRider^ C:\Users\Famille Philippe\AppData\Local\Temp\uninst1.exe =>PUP.Babylon C:\Users\Famille Philippe\AppData\Local\Temp\IminentSetup.exe =>Adware.IMBooster ~ Additionnel Scan: 430360 Items scanned in 00mn 43s ---\\ Récapitulatif des détections trouvées sur votre station ~ MSI: 27 link(s) detected in 00mn 00s End of the scan (2278 lines in 05mn 53s)(0)
  23. pas au top
    Bonjour j'ai donc posté la suite. Que dois je faire maintenant? Merci pour tout
  24. pas au top
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 4.9.4 (05.06.2013:1) OS: Windows 7 Starter x86 Ran by Sophie Philippe on 09/06/2013 at 18:32:27,25 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{074A5B1B-7788-40A5-89E5-BC12C43A069A} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{07A9E016-0DF7-49FC-8CCF-86E357097DDC} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{0B6E42B5-1461-428E-B4E4-AA50FAC19602} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{0C5BA96F-CDEA-4730-A8DE-0F5122D1F826} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{1310D9DC-F684-4446-A4C0-7E4FD8890BA4} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{13F5A234-89EB-4AE9-863C-58FC79D4420E} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{1A6A8A4D-3157-4004-BAAE-82226E8EC50C} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{1BC1C6AF-0ED9-4AEB-BDDD-C49D9C85F093} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{1F09106A-4AEF-4E58-ADFD-3CA9A1C77795} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{1F733D71-04E1-43D7-B118-F1C9DF421C3D} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{21B97546-6451-4B94-AB9B-5E3516C0ADC9} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{2960BAAA-ED14-4F68-A6AE-26F18F432ADE} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{2C08B491-7911-4784-9D5D-20F8D08AAFE4} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{345E644D-4ECC-4228-B2BD-2407439C6F88} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{34D8808E-CA5A-4ED6-9294-8C1E7CF4CBB5} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{42641BE4-C421-4346-82BB-B0BA688E52B3} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{439B5528-20CC-49A3-AD73-DC86A339FB8F} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{4412394D-933A-430A-9FCD-A7CDFFD532FA} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{44447D64-F24F-40F5-AB00-1F9A43752A68} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{445EBEF7-3426-4DAA-8AA7-CC9F47119752} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{45DE4722-27A9-4B6D-AB1C-4B071B766F58} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{4FE7E7BE-83A4-4531-8174-42CEB92EE674} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{52014214-14FD-41B0-8B40-7C37D408D2A0} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{5AF409F4-7F8C-4AF3-BE8F-E0E9BF77739C} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{5B87E591-3AD0-4A10-A741-64D8C26789A1} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{6C06EF24-FF66-4FB5-BA7C-BA7DFB43A6A7} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{75D7ED56-52C9-4245-A3CF-8E68B3F58E7E} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{77A1A69D-6F86-4A5C-BF45-F0E7223E8E0E} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{797DB531-B2E8-4CEC-AA75-05715E0C1BD8} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{7BD1F577-25B7-4487-9294-CB677F01AC02} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{7C34BBAA-B3A9-446F-BAA2-5640C630B00F} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{8A78D10F-4A89-4AD7-830E-245782213757} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{8B691713-9A75-4A4E-89AC-5BF9850F85B0} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{9306E201-1E71-4D8A-9AAD-4C172238E7F3} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{954855C9-11B5-46BB-BE09-30CB98E962AC} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{9AAFD62B-3538-48DD-9751-267D1626218A} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{A4E885B8-7BF9-423C-AF80-6CAC43766DE3} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{A732DCBE-FB6F-418B-B68B-DE8B887993DE} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{A800B5B9-22DD-4DFD-9776-245BED0F9F35} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{B0761463-BFF7-4558-BD7B-738E7D9BE7D9} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{BCF734E0-97E0-48E1-B857-304DE1D2436C} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{BF516361-C131-4BB1-ADD0-9CDC7CC26795} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{BF97E9EB-61EE-454C-A00D-4AA4CBC1015D} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{C0091342-13F5-4728-BF70-5565CFB78D49} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{C60A5CC3-862E-480E-A2FF-D7D22103EDFC} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{C6152D55-0BCC-4210-9747-7EDECB9B1FF4} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{CC54E212-9789-4AED-AEDA-AD8000A93E45} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{CD3113E7-CADD-4AD5-8FEB-7A8B70EFD593} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{CDB591F4-7ACD-4315-902E-9E9462BC1FE7} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{CDCFC777-DB54-43C5-9E8E-3E937FEB36A7} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{CEBA7240-3B51-4610-AD1C-56BCE04EE745} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{CED3D2C6-4756-4398-A2CF-0741DE165A4E} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{D4971392-AEB4-4893-A4B5-F9C822B23130} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{DF15B674-7513-483F-9385-3F5C3720A323} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{E0A64F44-3659-49B2-94B4-7686ABC788E1} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{E0E83617-1A20-4660-AFDD-530E5E91291C} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{ED39A93C-8032-40E8-87C2-936974AA3C7B} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{EEBDA1E6-58D7-4821-A681-0A3B2B50608F} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{F11A37EE-8DFC-46BB-8FC3-63C7633F6D4C} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{F7C34F01-441A-48F1-90E7-9E7DAB5239ED} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{FC80FD7B-7527-4B8B-BD56-CF1AD196E003} Successfully deleted: [Empty Folder] C:\Users\Sophie Philippe\appdata\local\{FE945643-8044-4DFC-B399-E2BD3F4F4425} ~~~ FireFox Successfully deleted: [File] "C:\Users\Sophie Philippe\AppData\Roaming\mozilla\firefox\profiles\b9pbu2gm.default\extensions\DivXWebPlayer@divx.com.xpi" Emptied folder: C:\Users\Sophie Philippe\AppData\Roaming\mozilla\firefox\profiles\b9pbu2gm.default\minidumps [23 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 09/06/2013 at 18:40:45,02 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  25. pas au top
    # AdwCleaner v2.303 - Rapport créé le 09/06/2013 à 17:58:32 # Mis à jour le 08/06/2013 par Xplode # Système d'exploitation : Windows 7 Starter Service Pack 1 (32 bits) # Nom d'utilisateur : Sophie Philippe - MOUCHOIRDEPOCHE # Mode de démarrage : Normal # Exécuté depuis : C:\Users\Sophie Philippe\Downloads\adwcleaner.exe # Option [suppression] ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Supprimé : C:\ProgramData\Partner Dossier Supprimé : C:\Users\Sophie Philippe\AppData\Roaming\pdfforge ***** [Registre] ***** Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar Clé Supprimée : HKCU\Software\Conduit Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966 ***** [Navigateurs] ***** -\\ Internet Explorer v9.0.8112.16476 [OK] Le registre ne contient aucune entrée illégitime. -\\ Mozilla Firefox v21.0 (fr) Fichier : C:\Users\Sophie Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\b9pbu2gm.default\prefs.js Supprimée : user_pref("extensions.enabledAddons", "DivXWebPlayer%40divx.com:2.0.2.039,%7B972ce4c6-7e08-4474-a285[...] ************************* AdwCleaner[R1].txt - [1337 octets] - [09/06/2013 17:27:45] AdwCleaner[s1].txt - [382 octets] - [09/06/2013 17:34:01] AdwCleaner[s2].txt - [1335 octets] - [09/06/2013 17:58:32] ########## EOF - C:\AdwCleaner[s2].txt - [1395 octets] ##########
×
×
  • Créer...