Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

[Résolu] Grosse infection de mon PC

pas au top

Par pas au top
dans Analyses et éradication malwares

 Partager

Messages recommandés

pas au top Power Member

pas au top

Posté(e)
Posté(e)

bonjour

 

je n'ai pas le temps d'expliquer mon souci. Firefox s'arrete avant

 

Comment dois je faire.?

 

Merci


voilà le scan

 

~ Rapport de ZHPDiag v2014.4.14.26 - Nicolas Coolman (14/04/2014)
~ Lancé par Famille Philippe (14/04/2014 21:05:55)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC):


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista Home Premium, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK

---\\ Logiciels de protection du système

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3070 MB (49% free)
System Restore: Activé (Enable)
System drive C: has 23 GB (7%) free of 293 GB

---\\ Mode de connexion au système
~ Computer Name: LES-PHIPHI
~ User Name: Famille Philippe
~ All Users Names: UpdatusUser, Famille Philippe, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Famille Philippe\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Famille Philippe\AppData\Roaming\
~ %Desktop% : C:\Users\Famille Philippe\Desktop\
~ %Favorites% : C:\Users\Famille Philippe\Favorites\
~ %LocalAppData% : C:\Users\Famille Philippe\AppData\Local\
~ %StartMenu% : C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 23 Go of 293 Go)
D: Hard drive, Flash drive, Thumb drive (Free 247 Go of 293 Go)
E: CD-ROM drive (Free 0 Go of 0 Go)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
H: Floppy drive, Flash card reader, USB Key (Not Inserted)
I: Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 42 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.62077F806BC59CBD5A404338D710D133] - (.Microsoft Corporation - Internet Extensions for Win32.) (.08/03/2014 - 00:02:07.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 3/26665
~ Mes musiques (My Musics) : 1/819
~ Mes Videos (My Videos) : 2/85
~ Mes Favoris (My Favorites) : 1/27
~ Mes Documents (My Documents) : 1/244
~ Mon Bureau (My Desktop) : 5/46
~ Menu demarrer (Programs) : 1/3
~ Hidden Files: Scanned in 00mn 21s



---\\ Processus lancés
[MD5.F576CA88DC79EE6369302182B2BD1E9F] - (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.exe [3234256] [PID.2628] =>PUA.FSTfr9
[MD5.47C9EF1600EDD9EBD8155EB6B5206B6B] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1821984] [PID.1940]
[MD5.241B07FF7F5943B9C1BF3235F49AC1E1] - (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744] [PID.2304]
[MD5.151B2D097C7182898387994CEA34890B] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [5369856] [PID.4044]
[MD5.BD79B566345ADCCF8984F957DF31AE01] - (...) -- C:\Program Files\fst_fr_134\fst_fr_134.exe [3984848] [PID.2628] =>PUA.FSTfr9
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.2296]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.2268]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.3244]
[MD5.7BEDD051B53821B040EAD42DB0724848] - (.Microsoft Corporation - Rapports de problèmes Windows.) -- C:\Windows\system32\werfault.exe [217088] [PID.4484]
[MD5.7116680C2C62709EE81BDDC69EF26B93] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [757488] [PID.2276]
[MD5.9625BE15F953113E5DF59BAC59859878] - (.Freeven - MediaPlayerplus exe.) -- C:\program files\mediaplayerplus\mediaplayerplus-bg.exe [519168] [PID.5100] =>PUP.CrossRider
[MD5.2B0FD3D2A797121FA552AF8688D0B16E] - (.Freeven - Freeven pro 1.2 exe.) -- C:\program files\freeven pro 1.2\freeven pro 1.2-bg.exe [519168] [PID.4524]
[MD5.8DB4898E61E0BB251CC0F0D1CA749C09] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe [841096] [PID.744]
[MD5.775DDB699B40C42E1BD799CC0EBF3528] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8215552] [PID.4600]
[MD5.8E556A72D54F7E3B7844AB9217F02DD7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [275568] [PID.4204]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome

~ Google Lines Browser: 0 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\prefs.js
C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\user.js
M3 - MFPP: Plugins - [Famille Philippe] -- C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\searchplugins\buenosearch.xml =>PUP.BuenoSearch
M3 - MFPP: Plugins - [Famille Philippe] -- C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\searchplugins\live-search.xml
M0 - MFSP: prefs.js [Famille Philippe - 93zkm48l.default] www.google.com
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.NOS Microsystems Ltd. - getplusplusadobe16241.) -- C:\Program Files\Mozilla Firefox\Plugins\np_gp.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.9.620.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.2.39.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] - (.Foxit Corporation - Foxit Reader Plug-In For Firefox and Netscape.) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] - (.Foxit Corporation - Foxit Reader Plug-In For Firefox and Netscape.) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll =>.Google Inc
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.5.1] - (.Oracle Corporation - Next Generation Java Plug-in 10.5.1 for Mozilla browsers.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@veoh.com/VeohTVPlugin] - (.Veoh Networks - NPVeohTVPlugin.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll
P2 - FPN: [HKLM] [@veoh.com/VeohWebPlayer] - (.Veoh - Veoh Web Video Player Browser Plugin.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.3] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\Users\Famille Philippe\AppData\Roaming\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Firefox Browser: 31 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.9.) (No version) -- (.not file.)
~ IE Browser: 17 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: CrossriderApp0054246 - {11111111-1111-1111-1111-110511421146} . (.Freeven - MediaPlayerplus BHO.) -- C:\Program Files\MediaPlayerplus\MediaPlayerplus-bho.dll =>PUP.CrossRider
O2 - BHO: CrossriderApp0054253 - {11111111-1111-1111-1111-110511421153} . (.Freeven - Freeven pro 1.2 BHO.) -- C:\Program Files\Freeven pro 1.2\Freeven pro 1.2-bho.dll =>PUP.CrossRider
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} . (.Thinknice Co. Limited - SupTab setup package.) -- C:\Program Files\SupTab\SupTab.dll =>PUP.SupTab
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Clé orpheline
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
~ BHO: 14 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Acer eDataSecurity Management - [HKLM]{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: (no name) - [HKLM]{0BF43445-2F28-4351-9252-17FE6E806AA0} Clé orpheline
O3 - Toolbar: Veoh Web Player Video Finder - [HKLM]{0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} . (.Veoh Networks Inc - Veoh Video Finder.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{F2CF5485-4E02-4F68-819C-B92DE9277049} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{00000000-F0AC-02FB-5CEB-A6742851976A} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Acer Arcade Live.lnk . (...) -- C:\Program Files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.mcl
O4 - GS\Desktop [Public]: Adobe Reader 9.lnk . (...) -- C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe (.not file.)
O4 - GS\Desktop [Public]: Adobe Reader X.lnk . (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
O4 - GS\Desktop [Public]: Avira Control Center.lnk . (.Avira Operations GmbH & Co. KG - Antivirus Control Center (Desktop).) -- C:\Program Files\Avira\AntiVir Desktop\avcenter.exe
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\Desktop [Public]: Empowering Technology.lnk . (.Acer Inc. - Acer Empowering Techonology Framework Launc.) -- C:\Acer\Empowering Technology\Acer.Empowering.Framework.Supervisor.exe
O4 - GS\Desktop [Public]: Google Earth.lnk . (.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\client\googleearth.exe =>.Google Inc
O4 - GS\Desktop [Public]: HP Photo & Imaging.lnk . (.Hewlett-Packard Co. - HP Photo & Imaging Gallery.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
O4 - GS\Desktop [Public]: Media Manager for WALKMAN 1.2.lnk . (.Sony Creative Software Inc. - Media Manager.) -- C:\Program Files\Sony\Media Manager for WALKMAN\MediaManager.exe
O4 - GS\Desktop [Public]: Nokia PC Suite.lnk . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
O4 - GS\Desktop [Public]: Scanner.lnk . (...) -- C:\Program Files\SmarThru 4\ControlPanel.exe
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
O4 - GS\Desktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files\Steam\Steam.exe
O4 - GS\Desktop [Public]: Stellarium.lnk . (...) -- C:\Program Files\Stellarium\stellarium.exe
O4 - GS\Desktop [Public]: VLC media player.lnk . (...) -- C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN
O4 - GS\Program [Public]: Acrobat Reader 5.0.lnk . (.Adobe Systems Incorporated - Acrobat Reader 5.0.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - GS\Program [Public]: Adobe Download Assistant.lnk . (...) -- C:\Program Files\Adobe Download Assistant\Adobe Download Assistant.exe
O4 - GS\Program [Public]: Adobe Reader X.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe
O4 - GS\Program [Public]: Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation - Microsoft® Works.) -- C:\Program Files\Microsoft Works\MSWorks.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O4 - GS\Program [Public]: Microsoft Office PowerPoint Viewer 2003.lnk . (.Microsoft Corporation - Microsoft Office PowerPoint Viewer.) -- C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Windows Calendar.lnk . (.Microsoft Corporation - Calendrier Windows.) -- C:\Program Files\Windows Calendar\WinCal.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Collaboration.lnk . (.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Contacts.lnk . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Defender.lnk . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - Création de DVD Windows.) -- C:\Program Files\Movie Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Mobile Device Center.lnk . (.Microsoft Corporation - Windows Mobile Device Center.) -- C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe
O4 - GS\Program [Public]: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\MOVIEMK.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Photo Gallery.lnk . (.Microsoft Corporation - Galerie de photos Windows.) -- C:\Program Files\Windows Photo Gallery\WindowsPhotoGallery.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\System32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\System32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\System32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\System32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\System32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sidebar.lnk . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\System32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Backup.lnk . (.Microsoft Corporation - Sauvegarde Microsoft® Windows.) -- C:\Windows\System32\sdclt.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\System32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\System32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\System32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: migwiz.lnk . (.Microsoft Corporation - Transfert de fichiers et paramètres Windows.) -- C:\Windows\System32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\System32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\System32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\System32\taskschd.msc
O4 - GS\Accessories [updatusUser]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [updatusUser]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [updatusUser]: Run.lnk - Clé orpheline
O4 - GS\Accessories [updatusUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Desktop [updatusUser]: JPEG Compression.lnk . (...) -- C:\Program Files\JPEG Compression\JPEG Compression.exe
O4 - GS\QuickLaunch [Famille Philippe]: Bridge Base Online.lnk . (...) -- C:\Bridge Base Online\NetBridgeVu.exe
O4 - GS\QuickLaunch [Famille Philippe]: Easy Audio Cutter.lnk . (...) -- M:\Chloé\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe (.not file.)
O4 - GS\QuickLaunch [Famille Philippe]: Free CD Ripper.lnk . (...) -- M:\Chloé\Free Audio Pack\Free CD Ripper\FreeCDRipper.exe (.not file.)
O4 - GS\QuickLaunch [Famille Philippe]: Free Mp3 Wma Converter.lnk . (...) -- M:\Chloé\Free Audio Pack\FreeConverter\FreeConverter.exe (.not file.)
O4 - GS\QuickLaunch [Famille Philippe]: Internet - Raccourci.lnk - Clé orpheline
O4 - GS\QuickLaunch [Famille Philippe]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Famille Philippe]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Famille Philippe]: Microsoft Office Outlook.lnk . (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [Famille Philippe]: Microsoft Office Word 2007 (2).lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\QuickLaunch [Famille Philippe]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\QuickLaunch [Famille Philippe]: Mozilla Firefox (3).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [Famille Philippe]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [Famille Philippe]: OpenOffice.org 3.0 (2).lnk . (.OpenOffice.org - OpenOffice.org 3.0.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
O4 - GS\QuickLaunch [Famille Philippe]: Windows Media Player (2).lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [Famille Philippe]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe
O4 - GS\SendTo [Famille Philippe]: IsoBuster.lnk . (.Smart Projects - The Ultimate CD/DVD/BD Recovery tool.) -- C:\Program Files\Smart Projects\IsoBuster\IsoBuster.exe
O4 - GS\SendTo [Famille Philippe]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [Famille Philippe]: Alawar Games.lnk . (...) -- C:\My Games\Alawar\Alawar.url
O4 - GS\Desktop [Famille Philippe]: AVS Image Converter.lnk . (.Online Media Technologies Ltd. - Image Converter.) -- C:\Program Files\AVS4YOU\AVSImageConverter\AVSImageConverter.exe
O4 - GS\Desktop [Famille Philippe]: Bridge Base Online.lnk . (...) -- C:\Bridge Base Online\NetBridgeVu.exe
O4 - GS\Desktop [Famille Philippe]: DivX Movies.lnk . (...) -- C:\Users\Famille Philippe\Videos\DivX Movies
O4 - GS\Desktop [Famille Philippe]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\Famille Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox
O4 - GS\Desktop [Famille Philippe]: Jeux Alawar.lnk . (...) -- C:\Program Files\Alawar.fr\Alawar.url
O4 - GS\Desktop [Famille Philippe]: JPEG Compression.lnk . (...) -- C:\Program Files\JPEG Compression\JPEG Compression.exe
O4 - GS\Desktop [Famille Philippe]: jv16 PowerTools.lnk . (...) -- C:\Program Files\jv16 PowerTools\jv16 PowerTools.exe
O4 - GS\Desktop [Famille Philippe]: Nokia Software Updater.lnk . (.Nokia - Nokia Software Updater.) -- C:\Program Files\Nokia\Nokia Software Updater\nsu3ui.exe =>.Nokia
O4 - GS\Desktop [Famille Philippe]: WAV MP3 Converter.lnk . (.Hoo Technologies - WAV MP3 Converter.) -- C:\Program Files\HooTech\WAV_MP3\WAV_MP3.exe
O4 - GS\Desktop [Famille Philippe]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [Famille Philippe]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 85 Scanned in 00mn 01s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [eRecoveryService] Clé orpheline
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [fst_fr_134] . (...) -- C:\Program Files\fst_fr_134\fst_fr_134.exe =>PUA.FSTfr9
O4 - HKLM\..\RunOnce: [upfst_fr_134.exe] . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.exe =>PUA.FSTfr9
O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [iSUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [iSUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
O4 - HKUS\S-1-5-21-3877668347-929058439-3679567081-1000\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
~ Application: Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} . (.Microsoft Corporation - Synchronisation des favoris ActiveSync.) -- C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} -- Clé orpheline
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} ((no name)) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} ((no name)) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} ((no name)) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} ((no name)) - http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab
O16 - DPF: {B60CEFE7-2DD0-4B78-951A-509D951DB1F0} ((no name)) - http://www.smartphoto.fr/ExtraFilmUploader6.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} ((no name)) - http://acerdtfr.oberon-media.com/online/online2/zuma/oberongamesloader.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS3\Services\Tcpip\..\{3463CBB6-6110-4A29-84FF-C94B47675F65}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\system32\mshtml.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\Windows\System32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) . (.Pas de propriétaire - MemCheck.Service.) - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) . (.Acer Inc. - eRecoveryService.) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) . (.Pas de propriétaire - Service.) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: IePlugin Service (IePluginService) . (.Cherished Technololgy LIMITED - IePlugin Service.) - C:\ProgramData\IePluginService\PluginService.exe =>Trojan.SProtector
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: nuttkoqiez32 (nuttkoqiez32) . (...) - C:\Program Files\003\nuttkoqiez32.exe =>PUP.Agent
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.0.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
~ Services: 21 Scanned in 00mn 07s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-1.job [1454]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.job [1438]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.job [3130]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.job [2180]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.job [1526]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-1.job [1406]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-2.job [1390]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-3.job [2786]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-4.job [2124]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-5.job [1478]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1072]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1076]
[MD5.7AE80F34C915088B02B217CBF0628DC2] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-1] (.Freeven.) -- C:\Program Files\MediaPlayerplus\MediaPlayerplus-codedownloader.exe [477696] =>PUP.CrossRider
[MD5.118177E5B291636A0BECF5419332CD17] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.exe [333824] =>PUP.CrossRider
[MD5.66AA123CBF19E49E848BEA06AFC3FB0F] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.exe [1861120] =>PUP.CrossRider
[MD5.4184A2D4B32AAD4BE8A6A928241F46CD] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.exe [796672] =>PUP.CrossRider
[MD5.D784D1EF7DCE67D7AF04DFA1A05E5062] [APT] [84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5] (.Freeven.) -- C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.exe [321536] =>PUP.CrossRider
[MD5.9D96B0D5855FD1B98023B3EEC9F06786] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [257928]
[MD5.6C9EA08ED0FD5578D93E8A7739240038] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-1] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\Freeven pro 1.2-codedownloader.exe [477696]
[MD5.80152DA7AA1FFE65DFC534D6F39FC0FD] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-2] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-2.exe [333824]
[MD5.B6A90E60500E16D1C8F167DD08ED2AA5] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-3] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-3.exe [1861120]
[MD5.E6CEDED80C3BF7D6CAA69C8EEF39ED0B] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-4] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-4.exe [796672]
[MD5.2F681A809E2DD3BA111B0AD9DC75A245] [APT] [c2821be0-d6d6-4d1f-a185-ab9eda51706e-5] (.Freeven.) -- C:\Program Files\Freeven pro 1.2\c2821be0-d6d6-4d1f-a185-ab9eda51706e-5.exe [321536]
[MD5.A9DA5B43CF597F83B1EB441968E24891] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3497240] =>.Piriform Ltd
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176]
[MD5.00000000000000000000000000000000] [APT] [pricemeterdownloader] (...) -- C:\Users\Famille Philippe\AppData\Local\PriceMeter\pricemeterd.exe (.not file.) [0] =>PUP.PriceMeter
[MD5.E5CF812D81A4C4D60AF7AEB12E24789C] [APT] [RunAsStdUser Task for VeohWebPlayer] (.Veoh Networks.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [3558136] =>Adware.SocialSkinz
[MD5.00000000000000000000000000000000] [APT] [{15C28A17-2E1C-4098-ABFE-ACB1113DDFD4}] (...) -- C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe (.not file.) [0]
[MD5.9A91B5D0193F0ED73F3A693A0A3001B3] [APT] [{3C6E535C-5DCD-4899-89EF-2C0C66C86F25}] (...) -- C:\Users\Famille Philippe\Downloads\avira_antivir_personal_free.exe [30143928]
[MD5.A7EB7AC7145C0B2D9E8103A90AE255E0] [APT] [{A1F65FEE-CD2F-4206-BECB-CC73B4DCF3A2}] (.InstallShield Software Corporation.) -- C:\Windows\system32\ISUSPM.cpl [61440]
[MD5.00000000000000000000000000000000] [APT] [{FB319744-D2AE-4A14-B5FA-895F0B7102E7}] (...) -- E:\install.exe (.not file.) [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984]
~ Scheduled Task: 45 Scanned in 00mn 05s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - IEAK branding.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Adobe Shockwave Director 10.4 - {233C1507-6A77-46A4-9443-F871F945D258} . (.Adobe Systems, Inc. - Shockwave ActiveX Control.) -- C:\Windows\system32\Adobe\Director\SwDir.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 12.0 r0.) -- C:\Windows\system32\Macromed\Flash\Flash32_12_0_0_77.ocx
~ Active Setup: 14 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\Windows\System32\DRIVERS\avkmgr.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (dflusowq) . (. - .) - C:\Windows\system32\drivers\dflusowq.sys (.not file.)
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
~ Drivers: 75 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox
O42 - Logiciel: Skype 6.14 - (.Skype Technologies S.A..) [HKLM] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
~ Logic: 5 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\7-Zip]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Accmeware Corporation]
[HKCU\Software\Adobe]
[HKCU\Software\Alawar]
[HKCU\Software\AnyProtect] =>PUP.AnyProtect
[HKCU\Software\AppDataLow\Aurigma]
[HKCU\Software\AppDataLow\Google]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\DivX]
[HKCU\Software\AppDataLow\Software\Freeven pro 1.2]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\MediaPlayerplus] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\Rr Savings] =>PUP.SupraSavings
[HKCU\Software\AppDataLow\Software\Supra Savings] =>PUP.SupraSavings
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ashongsoft]
[HKCU\Software\Aureal]
[HKCU\Software\Avira]
[HKCU\Software\Big Fish Games]
[HKCU\Software\Bugsplat]
[HKCU\Software\CDDB]
[HKCU\Software\CISRA]
[HKCU\Software\Canon]
[HKCU\Software\CeWe Color]
[HKCU\Software\ChrmTB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DivX]
[HKCU\Software\EA GAMES]
[HKCU\Software\EasyBits]
[HKCU\Software\Expert]
[HKCU\Software\Foxit Software]
[HKCU\Software\Freeware]
[HKCU\Software\GOG]
[HKCU\Software\Gabest]
[HKCU\Software\GameHouse]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\Hoo Technologies]
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\Innovative Solutions]
[HKCU\Software\InstallShield]
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\Intel]
[HKCU\Software\Iris]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\JollyBear]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Mobileleader]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\NewTech Infosystems]
[HKCU\Software\Nokia Mobile Phones]
[HKCU\Software\Nokia]
[HKCU\Software\Northcode Inc]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opendisc]
[HKCU\Software\PDF Architect]
[HKCU\Software\PDFCreator]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter
[HKCU\Software\Realtek]
[HKCU\Software\SSPrint]
[HKCU\Software\SSScan]
[HKCU\Software\Samsung]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Smart Projects]
[HKCU\Software\Sony Corporation]
[HKCU\Software\Sony Creative Software]
[HKCU\Software\TomTom]
[HKCU\Software\TransTechnology]
[HKCU\Software\Trolltech]
[HKCU\Software\TutoTag] =>AgenceExclusive
[HKCU\Software\Tutorials] =>AgenceExclusive
[HKCU\Software\Ulead Systems]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Veoh]
[HKCU\Software\Visualbee] =>Adware.VisualBeeToolbar
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Winamp]
[HKCU\Software\Yahoo]
[HKCU\Software\Zylom]
[HKCU\Software\acer]
[HKCU\Software\cybelsoft]
[HKCU\Software\eSobi]
[HKCU\Software\ej-technologies]
[HKCU\Software\freesofttoday] =>Adware.FreeSoftToday
[HKLM\Software\7-Zip]
[HKLM\Software\<company>]
[HKLM\Software\ACE Compression Software]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Accmeware]
[HKLM\Software\Acer Inc.]
[HKLM\Software\Acer Incorporated]
[HKLM\Software\Acer]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Ahead]
[HKLM\Software\Alawar]
[HKLM\Software\Amazon]
[HKLM\Software\America Online]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Audible]
[HKLM\Software\Avira]
[HKLM\Software\Big Fish Games]
[HKLM\Software\Boonty]
[HKLM\Software\Bridge Base]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\CDex]
[HKLM\Software\CISRA]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\Disney Interactive]
[HKLM\Software\DivXNetworks]
[HKLM\Software\DivX]
[HKLM\Software\EACADEMY]
[HKLM\Software\Foxit Software]
[HKLM\Software\Freeven pro 1.2]
[HKLM\Software\GEAR Software]
[HKLM\Software\Gabest]
[HKLM\Software\Google]
[HKLM\Software\HPS]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\HighCriteria]
[HKLM\Software\I.R.I.S.]
[HKLM\Software\IM Providers]
[HKLM\Software\IePlugin]
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Innovative Solutions]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\LevelQualityWatcher] =>PUP.LevelQualityWatcher
[HKLM\Software\Licenses]
[HKLM\Software\LightScribe]
[HKLM\Software\MCCI]
[HKLM\Software\Macromedia]
[HKLM\Software\MarkAny]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MediaPlayerplus] =>PUP.CrossRider
[HKLM\Software\MimarSinan]
[HKLM\Software\Mindscape]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\NewTech Infosystems]
[HKLM\Software\Nokia]
[HKLM\Software\ODBC]
[HKLM\Software\Oak Technology]
[HKLM\Software\Oberon Media]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Oracle]
[HKLM\Software\PC Connectivity Solution]
[HKLM\Software\PCSuite]
[HKLM\Software\PDFCreator]
[HKLM\Software\Photocite Collection 4]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\PopCap] =>Adware.PopCap
[HKLM\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\ReflexiveArcade]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SSScan]
[HKLM\Software\Samsung]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Sony Creative Software]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Taronja]
[HKLM\Software\TomTom]
[HKLM\Software\TransTechnology]
[HKLM\Software\TrendMicro]
[HKLM\Software\Tutorials] =>AgenceExclusive
[HKLM\Software\Ulead Systems]
[HKLM\Software\Uniblue]
[HKLM\Software\VBMZ] =>PUP.Duuqu
[HKLM\Software\Valve]
[HKLM\Software\VideoLAN]
[HKLM\Software\Visualbee] =>Adware.VisualBeeToolbar
[HKLM\Software\Volatile]
[HKLM\Software\WOW6432Node]
[HKLM\Software\Waves Audio]
[HKLM\Software\Windows]
[HKLM\Software\Wpm] =>PUP.WpManager
[HKLM\Software\X-AVCSD]
[HKLM\Software\XnView]
[HKLM\Software\Yahoo]
[HKLM\Software\ZSMC]
[HKLM\Software\anset]
[HKLM\Software\cybelsoft]
[HKLM\Software\ej-technologies]
[HKLM\Software\free_soft_to_day] =>Adware.FreeSoftToday
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
[HKLM\Software\muvee Technologies]
[HKLM\Software\supTab] =>PUP.SupTab
[HKLM\Software\supWPM] =>PUP.WpManager
[HKLM\Software\suprasavings] =>PUP.SupraSavings
[HKLM\Software\webssearchesSoftware] =>Hijacker.WebsSearches
~ Key Software: 245 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/04/2014 - 20:23:46 - [0,517] ----D C:\Program Files\003
O43 - CFD: 13/04/2013 - 11:26:45 - [3,348] ----D C:\Program Files\7-Zip
O43 - CFD: 16/08/2013 - 20:04:26 - [240,111] ----D C:\Program Files\Acer Arcade Live
O43 - CFD: 29/09/2013 - 18:17:15 - [245,393] ----D C:\Program Files\Acer GameZone
O43 - CFD: 16/09/2012 - 07:32:36 - [17,327] ----D C:\Program Files\Acer GameZone Online
O43 - CFD: 28/06/2008 - 00:27:43 - [0] ----D C:\Program Files\Acer Incorporated
O43 - CFD: 21/03/2008 - 13:18:03 - [12,096] ----D C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD: 04/11/2013 - 21:05:42 - [173,855] ----D C:\Program Files\Adobe
O43 - CFD: 03/11/2013 - 09:23:43 - [2,818] ----D C:\Program Files\Adobe Download Assistant
O43 - CFD: 15/06/2013 - 00:08:46 - [117,518] ----D C:\Program Files\AGEIA Technologies
O43 - CFD: 08/09/2013 - 10:43:03 - [0] ----D C:\Program Files\Alawar
O43 - CFD: 08/09/2013 - 10:43:30 - [0,283] ----D C:\Program Files\Alawar.fr
O43 - CFD: 31/12/2010 - 19:11:29 - [2,539] ----D C:\Program Files\Amazon
O43 - CFD: 08/02/2012 - 19:12:34 - [2,316] ----D C:\Program Files\Apple Software Update =>.Apple Inc
O43 - CFD: 28/06/2008 - 00:23:55 - [13,730] ----D C:\Program Files\ATI
O43 - CFD: 04/04/2013 - 18:04:59 - [291,119] ----D C:\Program Files\Avira
O43 - CFD: 25/07/2013 - 19:40:32 - [29,580] ----D C:\Program Files\AVS4YOU
O43 - CFD: 22/09/2010 - 11:18:17 - [0,572] ----D C:\Program Files\Bonjour
O43 - CFD: 13/09/2008 - 05:14:17 - [0,009] ----D C:\Program Files\BoontyGames
O43 - CFD: 22/02/2009 - 15:23:16 - [0,426] ----D C:\Program Files\CamStudio
O43 - CFD: 22/02/2009 - 21:49:23 - [51,811] ----D C:\Program Files\Canon
O43 - CFD: 04/04/2013 - 16:16:11 - [5,456] ----D C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 18/04/2010 - 08:46:45 - [2,976] ----D C:\Program Files\CDex_150
O43 - CFD: 12/04/2014 - 10:12:59 - [1051,099] ----D C:\Program Files\Common Files
O43 - CFD: 21/03/2008 - 13:33:09 - [4,122] ----D C:\Program Files\CyberLink
O43 - CFD: 26/08/2009 - 00:53:29 - [0,028] ----D C:\Program Files\Deenero
O43 - CFD: 17/01/2009 - 11:22:44 - [1,875] ----D C:\Program Files\Defraggler
O43 - CFD: 05/11/2012 - 20:00:37 - [1,522] ----D C:\Program Files\DIFX
O43 - CFD: 12/04/2010 - 23:10:16 - [12,340] ----D C:\Program Files\DivX
O43 - CFD: 21/03/2008 - 13:47:18 - [16,827] ----D C:\Program Files\eSobi
O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\Program Files\Fichiers communs
O43 - CFD: 04/01/2014 - 15:09:41 - [82,871] ----D C:\Program Files\Foxit Software
O43 - CFD: 08/04/2014 - 20:36:10 - [7,257] ----D C:\Program Files\Freeven pro 1.2
O43 - CFD: 12/04/2014 - 10:13:49 - [4,878] ----D C:\Program Files\fst_fr_134 =>PUA.FSTfr9
O43 - CFD: 08/09/2012 - 13:54:51 - [215,094] ----D C:\Program Files\GIMP 2
O43 - CFD: 14/12/2013 - 09:51:32 - [555,810] ----D C:\Program Files\Google
O43 - CFD: 16/09/2008 - 19:52:26 - [356,042] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 21/05/2009 - 16:52:28 - [12,314] ----D C:\Program Files\HooTech
O43 - CFD: 22/12/2008 - 13:07:11 - [7,274] ----D C:\Program Files\HP
O43 - CFD: 16/08/2013 - 20:04:32 - [91,014] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 12/04/2014 - 10:06:50 - [5,320] ----D C:\Program Files\Internet Explorer
O43 - CFD: 22/09/2010 - 11:22:31 - [1,770] ----D C:\Program Files\iPod
O43 - CFD: 22/09/2010 - 11:23:13 - [116,182] ----D C:\Program Files\iTunes
O43 - CFD: 04/04/2013 - 18:13:39 - [155,030] ----D C:\Program Files\Java
O43 - CFD: 12/06/2013 - 18:43:33 - [1,038] ----D C:\Program Files\JPEG Compression
O43 - CFD: 27/03/2009 - 12:31:09 - [15,244] ----D C:\Program Files\JRE
O43 - CFD: 27/05/2009 - 08:37:45 - [2,480] ----D C:\Program Files\jv16 PowerTools
O43 - CFD: 04/04/2013 - 15:24:50 - [5,010] ----D C:\Program Files\ma-config.com
O43 - CFD: 08/04/2014 - 20:37:56 - [7,265] ----D C:\Program Files\MediaPlayerplus =>PUP.CrossRider
O43 - CFD: 02/11/2006 - 14:37:34 - [89,117] ----D C:\Program Files\Microsoft Games
O43 - CFD: 25/04/2012 - 17:59:34 - [627,760] ----D C:\Program Files\Microsoft Office
O43 - CFD: 24/03/2014 - 21:59:15 - [40,879] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 05/01/2010 - 18:25:57 - [0,014] ----D C:\Program Files\Microsoft Visual Studio
O43 - CFD: 05/01/2010 - 18:22:31 - [1,323] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 18/11/2009 - 04:02:25 - [144,853] ----D C:\Program Files\Microsoft Works
O43 - CFD: 25/06/2010 - 23:48:50 - [7,797] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 18/08/2010 - 20:31:36 - [94,740] ----D C:\Program Files\Movie Maker
O43 - CFD: 30/03/2014 - 12:33:56 - [60,039] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 12/04/2014 - 10:08:19 - [0,216] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 05/01/2010 - 18:26:09 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 05/11/2012 - 20:32:23 - [0,147] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 28/06/2009 - 17:40:57 - [1073,285] ----D C:\Program Files\Nero
O43 - CFD: 21/03/2008 - 13:22:14 - [46,688] ----D C:\Program Files\NewTech Infosystems
O43 - CFD: 05/11/2012 - 20:31:45 - [96,401] ----D C:\Program Files\Nokia
O43 - CFD: 14/04/2013 - 03:04:11 - [823,963] ----D C:\Program Files\NVIDIA Corporation
O43 - CFD: 19/07/2010 - 19:15:24 - [0,310] ----D C:\Program Files\Oberon Media
O43 - CFD: 27/03/2009 - 12:31:05 - [338,174] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 28/06/2012 - 22:46:45 - [33,205] ----D C:\Program Files\Oracle
O43 - CFD: 19/07/2010 - 19:15:24 - [0] ----D C:\Program Files\orange
O43 - CFD: 04/04/2013 - 18:46:24 - [15,046] ----D C:\Program Files\PC Connectivity Solution
O43 - CFD: 12/06/2013 - 12:32:00 - [23,365] ----D C:\Program Files\PDFCreator
O43 - CFD: 31/08/2009 - 13:04:38 - [102,753] ----D C:\Program Files\Photocite Collection 4
O43 - CFD: 08/04/2014 - 20:30:58 - [0] ----D C:\Program Files\PriceMeterLiveUpdate =>PUP.PriceMeter
O43 - CFD: 02/01/2010 - 15:52:54 - [99,474] ----D C:\Program Files\Readiris10
O43 - CFD: 22/02/2009 - 13:08:07 - [8,238] ----D C:\Program Files\Real
O43 - CFD: 21/03/2008 - 13:11:05 - [16,800] ----D C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:34 - [36,910] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 01/10/2008 - 16:24:40 - [0,038] ----D C:\Program Files\ReflexiveArcade
O43 - CFD: 02/04/2013 - 10:17:41 - [0,798] ----D C:\Program Files\Samsung
O43 - CFD: 12/04/2014 - 10:12:59 - [43,504] R---D C:\Program Files\Skype
O43 - CFD: 02/01/2009 - 19:07:27 - [0] ----D C:\Program Files\SlySoft
O43 - CFD: 05/01/2010 - 18:12:15 - [10,069] ----D C:\Program Files\Smart Projects
O43 - CFD: 02/01/2010 - 15:53:20 - [15,576] ----D C:\Program Files\SmarThru 4
O43 - CFD: 10/08/2009 - 15:20:22 - [75,956] ----D C:\Program Files\Sony
O43 - CFD: 03/01/2014 - 19:52:09 - [-125,192] ----D C:\Program Files\Steam
O43 - CFD: 21/08/2010 - 00:47:43 - [64,735] ----D C:\Program Files\Stellarium
O43 - CFD: 08/04/2014 - 20:37:47 - [1,442] ----D C:\Program Files\SupTab =>PUP.SupTab
O43 - CFD: 22/08/2010 - 16:05:03 - [0] ----D C:\Program Files\TomTom DesktopSuite
O43 - CFD: 22/08/2010 - 16:06:06 - [48,373] ----D C:\Program Files\TomTom HOME 2
O43 - CFD: 22/08/2010 - 16:06:15 - [0,021] ----D C:\Program Files\TomTom International B.V
O43 - CFD: 14/06/2009 - 16:36:21 - [12,970] ----D C:\Program Files\TransTechnology
O43 - CFD: 22/02/2009 - 21:49:24 - [50,301] ----D C:\Program Files\Ulead Systems
O43 - CFD: 02/11/2006 - 15:01:55 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 22/03/2009 - 17:10:11 - [18,385] ----D C:\Program Files\Veoh Networks
O43 - CFD: 16/12/2008 - 21:17:20 - [0] ----D C:\Program Files\ViaMichelin
O43 - CFD: 23/11/2008 - 13:29:21 - [92,147] ----D C:\Program Files\VideoLAN
O43 - CFD: 18/08/2010 - 20:31:36 - [0,970] ----D C:\Program Files\Windows Calendar
O43 - CFD: 18/08/2010 - 20:31:34 - [2,610] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 18/08/2010 - 20:31:28 - [4,283] ----D C:\Program Files\Windows Defender
O43 - CFD: 11/07/2013 - 03:01:05 - [6,757] ----D C:\Program Files\Windows Journal
O43 - CFD: 14/04/2012 - 03:01:47 - [8,694] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 22/02/2009 - 21:49:26 - [10,836] ----D C:\Program Files\Windows Media Components
O43 - CFD: 19/10/2010 - 03:23:32 - [4,290] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 09/09/2008 - 19:50:20 - [7,589] ----D C:\Program Files\Windows NT
O43 - CFD: 18/08/2010 - 20:31:33 - [12,902] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 19/08/2010 - 03:18:29 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 18/08/2010 - 20:31:35 - [53,818] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 03/11/2009 - 18:41:35 - [95,661] ----D C:\Program Files\Woonoz
O43 - CFD: 19/09/2010 - 22:07:07 - [9,013] ----D C:\Program Files\XnView
O43 - CFD: 16/08/2013 - 20:03:00 - [0] ----D C:\Program Files\Yahoo!
O43 - CFD: 14/04/2014 - 21:04:16 - [17,152] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 04/11/2013 - 21:02:20 - [4,214] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 22/09/2010 - 11:22:30 - [97,116] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 25/07/2013 - 19:40:31 - [33,853] ----D C:\Program Files\Common Files\AVSMedia
O43 - CFD: 21/03/2008 - 13:16:02 - [0,089] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 12/04/2010 - 23:10:06 - [22,895] ----D C:\Program Files\Common Files\DivX Shared
O43 - CFD: 16/09/2008 - 19:36:05 - [0,436] ----D C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 08/10/2008 - 15:15:38 - [13,407] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 11/11/2012 - 12:23:29 - [30,837] ----D C:\Program Files\Common Files\Java
O43 - CFD: 21/03/2008 - 13:21:54 - [6,846] ----D C:\Program Files\Common Files\LightScribe
O43 - CFD: 12/04/2014 - 09:56:34 - [441,402] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 16/09/2008 - 19:35:22 - [0,542] ----D C:\Program Files\Common Files\MSSoap
O43 - CFD: 21/03/2008 - 13:21:26 - [9,257] ----D C:\Program Files\Common Files\muvee Technologies
O43 - CFD: 28/06/2009 - 17:56:53 - [208,435] ----D C:\Program Files\Common Files\Nero
O43 - CFD: 21/03/2008 - 13:22:20 - [2,141] ----D C:\Program Files\Common Files\NewTech Infosystems
O43 - CFD: 05/11/2012 - 20:31:46 - [12,536] ----D C:\Program Files\Common Files\Nokia
O43 - CFD: 25/07/2010 - 22:21:48 - [0,338] ----D C:\Program Files\Common Files\Oberon Media
O43 - CFD: 05/11/2012 - 20:01:13 - [0,084] ----D C:\Program Files\Common Files\PCSuite
O43 - CFD: 12/06/2013 - 19:47:10 - [0] ----D C:\Program Files\Common Files\PDF Architect
O43 - CFD: 31/01/2009 - 15:30:16 - [1,772] ----D C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 22/02/2009 - 13:56:49 - [8,374] ----D C:\Program Files\Common Files\Real
O43 - CFD: 02/11/2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 12/04/2014 - 10:12:59 - [1,904] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 10/08/2009 - 15:20:31 - [0,324] ----D C:\Program Files\Common Files\Sony Shared
O43 - CFD: 02/11/2006 - 13:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 02/01/2010 - 15:52:56 - [0] ----D C:\Program Files\Common Files\SRC Shared
O43 - CFD: 08/09/2013 - 09:57:11 - [1,087] ----D C:\Program Files\Common Files\Steam
O43 - CFD: 12/07/2012 - 03:09:26 - [42,085] ----D C:\Program Files\Common Files\System
O43 - CFD: 22/02/2009 - 21:49:24 - [4,063] ----D C:\Program Files\Common Files\Ulead Systems
O43 - CFD: 18/03/2009 - 15:04:53 - [0] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 09/09/2008 - 20:10:20 - [35,318] -SH-D C:\Program Files\Common Files\WindowsLiveInstaller
O43 - CFD: 15/06/2013 - 00:07:33 - [32,544] ----D C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 21/03/2008 - 13:35:58 - [0,015] ----D C:\ProgramData\Acer GameZone Console
O43 - CFD: 19/11/2013 - 04:28:32 - [271,244] ----D C:\ProgramData\Adobe
O43 - CFD: 28/11/2012 - 20:22:15 - [60,541] ----D C:\ProgramData\Apple
O43 - CFD: 27/12/2008 - 19:02:50 - [35,962] ----D C:\ProgramData\Apple Computer
O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 06/12/2008 - 13:33:18 - [0,015] ----D C:\ProgramData\Arcade Lab
O43 - CFD: 04/04/2013 - 18:05:40 - [123,817] ----D C:\ProgramData\Avira
O43 - CFD: 25/07/2013 - 19:40:38 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 12/04/2014 - 10:14:50 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 04/04/2013 - 18:50:51 - [0] --H-D C:\ProgramData\Common Files
O43 - CFD: 10/09/2008 - 07:59:07 - [0,102] ----D C:\ProgramData\CyberLink
O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 12/04/2010 - 23:10:16 - [2,513] ----D C:\ProgramData\DivX
O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 04/01/2009 - 20:04:48 - [0] ----D C:\ProgramData\eSobi
O43 - CFD: 19/12/2008 - 01:11:27 - [0,027] ----D C:\ProgramData\FarmFrenzy2
O43 - CFD: 16/09/2012 - 08:56:09 - [0,035] ----D C:\ProgramData\FarmFrenzy3
O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Favorites
O43 - CFD: 25/02/2009 - 20:31:43 - [0] ----D C:\ProgramData\Flood Light Games
O43 - CFD: 21/03/2008 - 13:36:41 - [0] ----D C:\ProgramData\FloodLightGames
O43 - CFD: 24/02/2009 - 20:27:50 - [0,024] ----D C:\ProgramData\Friends Games
O43 - CFD: 23/02/2009 - 20:25:50 - [0,009] ----D C:\ProgramData\Gogii
O43 - CFD: 22/12/2008 - 13:09:02 - [0,089] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 22/12/2008 - 13:06:27 - [0,163] ----D C:\ProgramData\HP
O43 - CFD: 31/08/2009 - 13:05:19 - [0] ----D C:\ProgramData\hps
O43 - CFD: 11/04/2014 - 21:37:48 - [0,672] ----D C:\ProgramData\IePluginService =>Trojan.SProtector
O43 - CFD: 05/11/2012 - 20:30:11 - [383,437] ----D C:\ProgramData\Installations
O43 - CFD: 08/10/2008 - 15:18:25 - [0] ----D C:\ProgramData\InstallShield
O43 - CFD: 28/01/2009 - 21:18:32 - [0,001] ----D C:\ProgramData\JollyBear
O43 - CFD: 28/06/2009 - 18:10:06 - [0,007] ----D C:\ProgramData\LightScribe
O43 - CFD: 04/04/2013 - 15:24:47 - [1,488] ----D C:\ProgramData\ma-config.com
O43 - CFD: 29/09/2013 - 18:15:05 - [0,055] ----D C:\ProgramData\McAfee
O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 26/02/2014 - 09:24:13 - [484,165] -S--D C:\ProgramData\Microsoft
O43 - CFD: 12/04/2014 - 09:44:17 - [0,062] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 09/09/2008 - 19:50:20 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 25/04/2012 - 08:31:21 - [0,036] ----D C:\ProgramData\Mozilla
O43 - CFD: 28/06/2009 - 17:34:26 - [16,572] ----D C:\ProgramData\Nero
O43 - CFD: 31/08/2009 - 09:39:22 - [0,272] ----D C:\ProgramData\NOS
O43 - CFD: 12/04/2014 - 10:09:06 - [2,565] ----D C:\ProgramData\NVIDIA
O43 - CFD: 18/11/2012 - 04:05:01 - [2,104] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 12/11/2012 - 20:39:37 - [0,007] ----D C:\ProgramData\PC Suite
O43 - CFD: 09/09/2012 - 18:47:29 - [0] ----D C:\ProgramData\PlayFirst
O43 - CFD: 04/12/2008 - 20:23:39 - [0,016] ----D C:\ProgramData\Playrix Entertainment
O43 - CFD: 08/04/2014 - 20:25:04 - [0,101] ----D C:\ProgramData\PriceMeterLiveUpdate =>PUP.PriceMeter
O43 - CFD: 22/02/2009 - 13:07:12 - [0] ----D C:\ProgramData\QuickTime
O43 - CFD: 31/12/2008 - 11:23:28 - [0] ----D C:\ProgramData\SiteAdvisor
O43 - CFD: 12/04/2014 - 10:13:06 - [152,872] ----D C:\ProgramData\Skype
O43 - CFD: 21/09/2008 - 16:44:11 - [0,004] ----D C:\ProgramData\SpinTop Games
O43 - CFD: 02/11/2006 - 15:02:03 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 06/04/2010 - 10:58:30 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 16/09/2012 - 07:30:22 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 17/05/2012 - 21:26:38 - [1,059] ----D C:\ProgramData\TmForever
O43 - CFD: 22/08/2010 - 16:06:50 - [0,153] ----D C:\ProgramData\TomTom
O43 - CFD: 22/02/2009 - 21:49:28 - [0,045] ----D C:\ProgramData\Ulead Systems
O43 - CFD: 12/04/2014 - 09:49:55 - [28,305] ----D C:\ProgramData\VisualBee =>Adware.VisualBeeToolbar
O43 - CFD: 16/03/2012 - 09:08:21 - [0] ----D C:\ProgramData\WindowsSearch
O43 - CFD: 14/04/2013 - 09:38:41 - [0] ----D C:\ProgramData\WinZip
O43 - CFD: 09/09/2008 - 20:09:43 - [0,206] ----D C:\ProgramData\WLInstaller
O43 - CFD: 08/04/2014 - 20:43:36 - [0] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 15/12/2012 - 01:39:59 - [24,483] ----D C:\ProgramData\Zylom
O43 - CFD: 21/03/2008 - 13:18:04 - [6,585] ----D C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
O43 - CFD: 22/09/2010 - 11:23:13 - [0,518] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 25/02/2009 - 23:31:08 - [0,018] -SH-D C:\Users\Famille Philippe\AppData\Roaming\.#
O43 - CFD: 21/03/2008 - 13:35:58 - [0,039] ----D C:\Users\Famille Philippe\AppData\Roaming\Acer GameZone Console
O43 - CFD: 04/11/2013 - 21:09:13 - [8,552] ----D C:\Users\Famille Philippe\AppData\Roaming\Adobe
O43 - CFD: 31/12/2010 - 19:15:33 - [0,082] ----D C:\Users\Famille Philippe\AppData\Roaming\Amazon
O43 - CFD: 05/07/2009 - 20:47:04 - [0,652] ----D C:\Users\Famille Philippe\AppData\Roaming\Apple Computer
O43 - CFD: 22/02/2009 - 21:17:27 - [0,015] ----D C:\Users\Famille Philippe\AppData\Roaming\avidemux
O43 - CFD: 04/04/2013 - 18:11:20 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Avira
O43 - CFD: 25/07/2013 - 19:40:37 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\AVS4YOU
O43 - CFD: 23/09/2008 - 08:38:58 - [1,906] ----D C:\Users\Famille Philippe\AppData\Roaming\Big Fish Games
O43 - CFD: 13/01/2009 - 21:21:21 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\BloodTies
O43 - CFD: 08/09/2013 - 10:10:54 - [0,305] ----D C:\Users\Famille Philippe\AppData\Roaming\cerasus.media
O43 - CFD: 03/11/2013 - 09:23:48 - [0,012] ----D C:\Users\Famille Philippe\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
O43 - CFD: 22/02/2009 - 18:00:28 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\CyberLink
O43 - CFD: 12/04/2014 - 09:52:08 - [71,898] ----D C:\Users\Famille Philippe\AppData\Roaming\Dropbox
O43 - CFD: 26/10/2011 - 18:53:40 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\dvdcss
O43 - CFD: 13/09/2008 - 09:44:43 - [0,529] ----D C:\Users\Famille Philippe\AppData\Roaming\eSobi
O43 - CFD: 25/02/2009 - 20:31:43 - [0,043] ----D C:\Users\Famille Philippe\AppData\Roaming\Flood Light Games
O43 - CFD: 24/09/2008 - 16:16:51 - [0,015] ----D C:\Users\Famille Philippe\AppData\Roaming\FloodLightGames
O43 - CFD: 04/01/2014 - 18:44:46 - [5,077] ----D C:\Users\Famille Philippe\AppData\Roaming\Foxit Software
O43 - CFD: 14/01/2013 - 09:24:22 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Free WAV to MP3 Converter
O43 - CFD: 12/03/2009 - 00:21:05 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Hewlett-Packard
O43 - CFD: 06/06/2010 - 12:36:37 - [0,007] ----D C:\Users\Famille Philippe\AppData\Roaming\Identities
O43 - CFD: 22/02/2009 - 13:08:31 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\InterTrust
O43 - CFD: 09/09/2008 - 19:54:58 - [0,002] ----D C:\Users\Famille Philippe\AppData\Roaming\Macromedia
O43 - CFD: 02/11/2006 - 14:37:34 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Media Center Programs
O43 - CFD: 04/04/2013 - 16:35:32 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Media Player Classic
O43 - CFD: 05/11/2012 - 20:32:16 - [90,248] -S--D C:\Users\Famille Philippe\AppData\Roaming\Microsoft
O43 - CFD: 05/01/2009 - 12:22:07 - [42,627] ----D C:\Users\Famille Philippe\AppData\Roaming\Mozilla
O43 - CFD: 28/06/2009 - 18:10:10 - [1,507] ----D C:\Users\Famille Philippe\AppData\Roaming\Nero
O43 - CFD: 25/11/2012 - 13:56:33 - [0,539] ----D C:\Users\Famille Philippe\AppData\Roaming\Nokia
O43 - CFD: 02/01/2014 - 19:56:00 - [0,016] ----D C:\Users\Famille Philippe\AppData\Roaming\NVIDIA
O43 - CFD: 22/01/2009 - 19:49:46 - [2,593] ----D C:\Users\Famille Philippe\AppData\Roaming\OpenOffice.org
O43 - CFD: 12/11/2012 - 20:40:31 - [6,715] ----D C:\Users\Famille Philippe\AppData\Roaming\PC Suite
O43 - CFD: 12/06/2013 - 13:09:17 - [0,004] ----D C:\Users\Famille Philippe\AppData\Roaming\PDF Architect
O43 - CFD: 09/09/2012 - 18:47:28 - [0,703] ----D C:\Users\Famille Philippe\AppData\Roaming\PlayFirst
O43 - CFD: 23/08/2009 - 21:40:09 - [5,173] ----D C:\Users\Famille Philippe\AppData\Roaming\Python-Eggs
O43 - CFD: 26/07/2011 - 22:53:01 - [33,012] ----D C:\Users\Famille Philippe\AppData\Roaming\Samsung
O43 - CFD: 21/02/2009 - 19:38:10 - [0,027] ----D C:\Users\Famille Philippe\AppData\Roaming\SecretIslandEng
O43 - CFD: 13/09/2008 - 05:10:47 - [0,010] R-H-D C:\Users\Famille Philippe\AppData\Roaming\SecuROM
O43 - CFD: 12/04/2014 - 10:13:51 - [15,272] ----D C:\Users\Famille Philippe\AppData\Roaming\Skype
O43 - CFD: 27/04/2012 - 14:49:02 - [0,052] ----D C:\Users\Famille Philippe\AppData\Roaming\skypePM
O43 - CFD: 02/01/2010 - 15:53:20 - [26,919] ----D C:\Users\Famille Philippe\AppData\Roaming\SmarThru4
O43 - CFD: 10/08/2009 - 15:26:33 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Sony Corporation
O43 - CFD: 23/08/2010 - 23:13:03 - [0,013] ----D C:\Users\Famille Philippe\AppData\Roaming\Stellarium
O43 - CFD: 08/04/2014 - 20:37:45 - [0,490] ----D C:\Users\Famille Philippe\AppData\Roaming\SupTab =>PUP.SupTab
O43 - CFD: 22/08/2010 - 16:06:17 - [40,169] ----D C:\Users\Famille Philippe\AppData\Roaming\TomTom
O43 - CFD: 22/02/2009 - 13:13:19 - [16,508] ----D C:\Users\Famille Philippe\AppData\Roaming\Ulead Systems
O43 - CFD: 02/01/2009 - 17:59:45 - [0,029] ----D C:\Users\Famille Philippe\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 31/12/2013 - 12:24:13 - [0,456] ----D C:\Users\Famille Philippe\AppData\Roaming\vlc
O43 - CFD: 08/04/2014 - 20:44:05 - [1,684] ----D C:\Users\Famille Philippe\AppData\Roaming\webssearches
O43 - CFD: 05/07/2012 - 19:57:50 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\WinRAR
O43 - CFD: 19/12/2013 - 19:11:28 - [0,437] ----D C:\Users\Famille Philippe\AppData\Roaming\XnView
O43 - CFD: 17/09/2008 - 18:06:14 - [0] ----D C:\Users\Famille Philippe\AppData\Roaming\Yahoo!
O43 - CFD: 14/04/2014 - 21:06:45 - [0,020] ----D C:\Users\Famille Philippe\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 06/06/2010 - 12:36:37 - [0,252] ----D C:\Users\Famille Philippe\AppData\Roaming\Zylom
O43 - CFD: 22/02/2009 - 21:49:28 - [0,007] ----D C:\Users\Famille Philippe\AppData\Local\Acer Arcade Live
O43 - CFD: 27/09/2008 - 19:34:12 - [0,007] ----D C:\Users\Famille Philippe\AppData\Local\Acer DV Magician
O43 - CFD: 22/02/2009 - 21:49:28 - [0,006] ----D C:\Users\Famille Philippe\AppData\Local\Acer VideoMagician
O43 - CFD: 04/11/2013 - 21:03:12 - [61,218] ----D C:\Users\Famille Philippe\AppData\Local\Adobe
O43 - CFD: 04/04/2013 - 18:05:14 - [0,187] ----D C:\Users\Famille Philippe\AppData\Local\APN
O43 - CFD: 27/12/2008 - 19:00:19 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Apple
O43 - CFD: 31/01/2009 - 17:40:42 - [11,186] ----D C:\Users\Famille Philippe\AppData\Local\Apple Computer
O43 - CFD: 09/09/2008 - 19:53:54 - [0] -SH-D C:\Users\Famille Philippe\AppData\Local\Application Data
O43 - CFD: 15/01/2012 - 10:03:31 - [31,224] ----D C:\Users\Famille Philippe\AppData\Local\Apps
O43 - CFD: 09/11/2013 - 18:50:44 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Big Fish
O43 - CFD: 15/01/2012 - 10:03:45 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Deployment
O43 - CFD: 27/01/2010 - 21:52:51 - [93,440] ----D C:\Users\Famille Philippe\AppData\Local\Downloaded Installations
O43 - CFD: 08/09/2012 - 13:56:51 - [1,401] ----D C:\Users\Famille Philippe\AppData\Local\fontconfig
O43 - CFD: 13/04/2014 - 12:26:51 - [9,400] ----D C:\Users\Famille Philippe\AppData\Local\fst_fr_134 =>PUA.FSTfr9
O43 - CFD: 08/09/2012 - 13:56:49 - [0,001] ----D C:\Users\Famille Philippe\AppData\Local\gegl-0.2
O43 - CFD: 14/06/2013 - 19:02:47 - [467,011] ----D C:\Users\Famille Philippe\AppData\Local\Google
O43 - CFD: 09/09/2008 - 19:53:54 - [0] -SH-D C:\Users\Famille Philippe\AppData\Local\Historique
O43 - CFD: 04/04/2013 - 18:51:33 - [120,318] ----D C:\Users\Famille Philippe\AppData\Local\Innovative Solutions
O43 - CFD: 28/01/2009 - 21:18:32 - [0] ----D C:\Users\Famille Philippe\AppData\Local\JollyBear
O43 - CFD: 14/06/2012 - 09:00:20 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Macromedia
O43 - CFD: 14/06/2012 - 09:00:20 - [-1456,548] ----D C:\Users\Famille Philippe\AppData\Local\Microsoft
O43 - CFD: 14/03/2009 - 19:35:29 - [1,631] ----D C:\Users\Famille Philippe\AppData\Local\Microsoft Games
O43 - CFD: 08/01/2013 - 20:55:50 - [0,565] ----D C:\Users\Famille Philippe\AppData\Local\Microsoft Help
O43 - CFD: 05/01/2009 - 12:22:06 - [93,085] ----D C:\Users\Famille Philippe\AppData\Local\Mozilla
O43 - CFD: 30/06/2009 - 13:24:06 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Nero
O43 - CFD: 05/11/2012 - 20:31:47 - [5,290] ----D C:\Users\Famille Philippe\AppData\Local\Nokia
O43 - CFD: 21/02/2009 - 21:18:10 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Oberon Games
O43 - CFD: 09/09/2008 - 19:54:41 - [0] ----D C:\Users\Famille Philippe\AppData\Local\PowerCinema
O43 - CFD: 08/04/2014 - 20:25:05 - [0] ----D C:\Users\Famille Philippe\AppData\Local\PriceMeterLiveUpdate =>PUP.PriceMeter
O43 - CFD: 09/07/2012 - 19:16:03 - [0,003] ----D C:\Users\Famille Philippe\AppData\Local\PSU
O43 - CFD: 03/01/2014 - 16:49:53 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Robot Entertainment
O43 - CFD: 02/04/2013 - 10:17:23 - [0] ----D C:\Users\Famille Philippe\AppData\Local\S2PC
O43 - CFD: 12/04/2014 - 10:13:11 - [4,549] ----D C:\Users\Famille Philippe\AppData\Local\Skype
O43 - CFD: 15/01/2012 - 09:46:32 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Sony
O43 - CFD: 14/04/2014 - 21:06:43 - [408,604] ----D C:\Users\Famille Philippe\AppData\Local\Temp
O43 - CFD: 09/09/2008 - 19:53:54 - [0] -SH-D C:\Users\Famille Philippe\AppData\Local\Temporary Internet Files
O43 - CFD: 22/08/2010 - 16:06:17 - [1,892] ----D C:\Users\Famille Philippe\AppData\Local\TomTom
O43 - CFD: 10/09/2008 - 08:58:50 - [44,309] ----D C:\Users\Famille Philippe\AppData\Local\VirtualStore
O43 - CFD: 12/04/2014 - 09:57:23 - [0] ----D C:\Users\Famille Philippe\AppData\Local\VisualBeeExe =>Adware.VisualBeeToolbar
O43 - CFD: 13/07/2012 - 16:18:23 - [0,039] ----D C:\Users\Famille Philippe\AppData\Local\Windows Live
O43 - CFD: 16/09/2012 - 07:30:00 - [0] ----D C:\Users\Famille Philippe\AppData\Local\Zylom Games
O43 - CFD: 08/04/2014 - 21:07:07 - [0] R---D C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ 152 Dossier CLSID vide (CLSID Empty Folder)
~ Program Folder: 457 Scanned in 00mn 44s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.DF39FA86C02C6DDBA5FC84742EDEF889] - 08/04/2014 - 19:26:22 ---A- . (.SecureAssist - Pas de description.) -- C:\Windows\System32\SecureAssist.dll [295080] =>PUP.SupraSavings
O44 - LFC:[MD5.695DB97B018FB06F693F37108322AA1E] - 11/04/2014 - 19:40:05 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll [894464]
O44 - LFC:[MD5.A7327FBA8897E5AA16A1D3BB57589407] - 12/04/2014 - 08:37:38 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\mrt.exe [88028728]
O44 - LFC:[MD5.10D0FA4F2A6ADBEEA0FFF10583CC5407] - 12/04/2014 - 08:42:19 ---A- . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\System32\mshtml.dll [12347904]
O44 - LFC:[MD5.D15B8C3BD0F2F6F520A10D5CFCE68879] - 12/04/2014 - 08:42:21 ---A- . (.Microsoft Corporation - Internet Browser.) -- C:\Windows\System32\ieframe.dll [9739264]
O44 - LFC:[MD5.8229FB32D999CDD1DFA731E8E2E510A4] - 12/04/2014 - 08:42:22 ---A- . (.Microsoft Corporation - Internet Control Panel.) -- C:\Windows\System32\inetcpl.cpl [1427968]
O44 - LFC:[MD5.25B97E6F25AFDA7EA0C9BF3CB137B4D8] - 12/04/2014 - 08:42:22 ---A- . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [1105408]
O44 - LFC:[MD5.46F8078ED1D499BF8149B7FDF915E5D5] - 12/04/2014 - 08:42:22 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [1796096]
O44 - LFC:[MD5.077B7BE0796C9DA2E8C45F90496CFE36] - 12/04/2014 - 08:42:23 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll [231936]
O44 - LFC:[MD5.E8E0342BC443D013E8806EE1B69C1FC7] - 12/04/2014 - 08:42:23 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript.dll [717824]
O44 - LFC:[MD5.6D4BC1F977EDF186A8C68152BFB43769] - 12/04/2014 - 08:42:23 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript9.dll [1806848]
O44 - LFC:[MD5.48CB5C9B0942011010F5504F056FBF4E] - 12/04/2014 - 08:42:24 ---A- . (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) -- C:\Windows\System32\ieUnatt.exe [142848]
O44 - LFC:[MD5.62077F806BC59CBD5A404338D710D133] - 12/04/2014 - 08:42:24 ---A- . (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [1129472]
O44 - LFC:[MD5.DCEBA94B909C218BA2E471AEB9913E1C] - 12/04/2014 - 08:42:24 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [607744]
O44 - LFC:[MD5.D20FBD7E03F24A2720EAD746EADEE5A2] - 12/04/2014 - 08:42:25 ---A- . (.Microsoft Corporation - Internet Explorer UI Engine.) -- C:\Windows\System32\ieui.dll [176640]
O44 - LFC:[MD5.4C43E955E8F782E722659364341E0529] - 12/04/2014 - 08:42:25 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [65024]
O44 - LFC:[MD5.447C9FADAC167AA7031328C11464C7D0] - 12/04/2014 - 08:42:26 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [421376]
O44 - LFC:[MD5.AC65D9692CA56D8581F75FCFE0C0C4D6] - 12/04/2014 - 08:42:26 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [73216]
O44 - LFC:[MD5.BC63D80B6810238266D4334A80783D60] - 12/04/2014 - 08:42:26 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2382848]
O44 - LFC:[MD5.F07B807CDF221CCE87178570DF10EE1A] - 12/04/2014 - 09:08:20 ---A- . (...) -- C:\Windows\PFRO.log [777156]
O44 - LFC:[MD5.D1D5E87EBC2333DF028313BC44ADA980] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1615904]
O44 - LFC:[MD5.F5322C1375DE0C685831B7D9EC47B1BD] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\perfc009.dat [119840]
O44 - LFC:[MD5.0DE5AE2A88B40C5A7C54F62713DE09BB] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [146072]
O44 - LFC:[MD5.1E3418FC7E01EA5567847485EF22C51C] - 14/04/2014 - 07:20:23 ---A- . (...) -- C:\Windows\System32\perfh009.dat [634274]
O44 - LFC:[MD5.896661E9CC57B2825344D086276738A3] - 14/04/2014 - 07:20:24 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [722238]
O44 - LFC:[MD5.995D1F0F0970161F1EFAD2DAD6239285] - 14/04/2014 - 18:49:42 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.6969704BA5E5E5088AED72483F387B54] - 14/04/2014 - 18:49:53 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1336567]
~ Files: 27 Scanned in 00mn 56s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.6C96CC13D38B4C13A5F6AC0CF02EF641] - 13/04/2014 - 11:26:51 ---A- - C:\Windows\Prefetch\UPFST_FR_134.EXE-C16D908B.pf =>PUA.FSTfr9
O45 - LFCP:[MD5.4133EFDAD57BFF920A7D6864C768D1A5] - 14/04/2014 - 18:52:03 ---A- - C:\Windows\Prefetch\FREEVEN PRO 1.2-BG.EXE-672FB386.pf
O45 - LFCP:[MD5.0D76D5839C1F35FA09CB12DCBFD40EE3] - 14/04/2014 - 18:52:03 ---A- - C:\Windows\Prefetch\MEDIAPLAYERPLUS-BG.EXE-9A7BE8BE.pf =>PUP.CrossRider
O45 - LFCP:[MD5.366C1327A4515D50C3C03AE313D9C811] - 14/04/2014 - 19:35:03 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-A8DC1B8E.pf
O45 - LFCP:[MD5.05EF710FCB7DE9E1A357ECFBC1649FF8] - 14/04/2014 - 19:36:00 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-95866109.pf
O45 - LFCP:[MD5.085BDF02C992CA04B5258804A20B12BC] - 14/04/2014 - 19:36:00 ---A- - C:\Windows\Prefetch\FREEVEN PRO 1.2-CODEDOWNLOADE-2DE84F6B.pf
O45 - LFCP:[MD5.A410C7D0F4C7339084E296E512FE8CC1] - 14/04/2014 - 19:36:08 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-CF879098.pf
O45 - LFCP:[MD5.1135C5DE1A7E2E58B2A37BBC08A394FE] - 14/04/2014 - 19:36:10 ---A- - C:\Windows\Prefetch\C2821BE0-D6D6-4D1F-A185-AB9ED-BC31D613.pf
O45 - LFCP:[MD5.EF63B50AE119994227723C4A1940E981] - 14/04/2014 - 19:37:00 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-507CEF4C.pf
O45 - LFCP:[MD5.29CB9422CFDCE84158B9DF383213DCB0] - 14/04/2014 - 19:37:00 ---A- - C:\Windows\Prefetch\MEDIAPLAYERPLUS-CODEDOWNLOADE-D4DEA7A3.pf =>PUP.CrossRider
O45 - LFCP:[MD5.25894CB1BE292D2161E21C31FC0856D3] - 14/04/2014 - 19:37:03 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-63D2A9D1.pf
O45 - LFCP:[MD5.AD5C0BD709DD08B6A9A879B51474A5C5] - 14/04/2014 - 19:37:05 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-8A7E1EDB.pf
O45 - LFCP:[MD5.462A0823A44FB9E468FC7B98FB3D8494] - 14/04/2014 - 19:37:07 ---A- - C:\Windows\Prefetch\84FEC6D9-2FF8-4DF1-AF03-941A4-77286456.pf
O45 - LFCP:[MD5.7D58B7D7DFA68DE92F5814EF93F3EF40] - 14/04/2014 - 19:37:50 ---A- - C:\Windows\Prefetch\AURORA.SCR-082F40F8.pf
~ Prefetcher: 14 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
~ LSA: 7 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - DatamngrCoordinator.exe - tasklist.exe =>PUP.Datamngr
~ IFEO: Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{9f0e6477-d344-11dd-a8ad-001d92986b59}\AutoRun\command - Clé orpheline
O51 - MPSK:{ad59bbb0-1342-11e2-8053-001d92986b59}\AutoRun\command. (...) -- K:\Startme.exe (.not file.)
O51 - MPSK:{c6603308-7f05-11dd-997f-001d92986b59}\AutoRun\command - Clé orpheline
O51 - MPSK:{de063b6f-da31-11de-8968-001d92986b59}\AutoRun\command - Clé orpheline
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm
O52 - TDSD: \Drivers32\"vidc.VP60"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \Drivers32\"vidc.VP61"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm
O52 - TDSD: \drivers.desc\"vp6vfw.dll"="EA VP6 Codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll
~ TDSD: 8 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Acer Empowering Technology Monitor [Key] . (...) -- C:\Acer\Empowering Technology\SysMonitor.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (...) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Apanel [Key] . (...) -- C:\ACERSW\config\NewSetApanel.cmd (.not file.)
O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\AutoStartNPSAgent [Key] . (...) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\BigDogPath [Key] . (.BIGDOG - BIGDOG.) -- C:\Windows\VM_STI.exe
O53 - SMSR:HKLM\...\startupreg\ccleaner [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd
O53 - SMSR:HKLM\...\startupreg\ContentTransferWMDetector.exe [Key] . (.Sony Corporation - Content Transfer Walkman Detector.) -- C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe
O53 - SMSR:HKLM\...\startupreg\DivXUpdate [Key] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
O53 - SMSR:HKLM\...\startupreg\eDataSecurity Loader [Key] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O53 - SMSR:HKLM\...\startupreg\ISUSPM Startup [Key] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe
O53 - SMSR:HKLM\...\startupreg\ISUSScheduler [Key] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\NSU_agent [Key] . (...) -- C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe =>.Nokia
O53 - SMSR:HKLM\...\startupreg\NvCplDaemon [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll =>.NVIDIA Corporation
O53 - SMSR:HKLM\...\startupreg\NvMediaCenter [Key] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\system32\NvMcTray.dll
O53 - SMSR:HKLM\...\startupreg\NVRaidService [Key] . (.NVIDIA Corporation - NVIDIA RAID Service French language.) -- C:\Windows\system32\nvraidservice.exe
O53 - SMSR:HKLM\...\startupreg\PC Suite Tray [Key] . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
O53 - SMSR:HKLM\...\startupreg\PCMMediaSharing [Key] . (...) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files\Steam\steam.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O53 - SMSR:HKLM\...\startupreg\TomTomHOME.exe [Key] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
O53 - SMSR:HKLM\...\startupreg\VeohPlugin [Key] . (.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz
O53 - SMSR:HKLM\...\startupreg\WarReg_PopUp [Key] . (.Acer Inc. - WR_PopUp.) -- C:\Acer\WR_PopUp\WarReg_PopUp.exe
O53 - SMSR:HKLM\...\startupreg\Windows Defender [Key] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O53 - SMSR:HKLM\...\startupreg\Windows Mobile Device Center [Key] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdc.exe
~ SMSR Keys: 31 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 15 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
~ MWPE Keys: 1 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.0349BE02F329F4F48F1D48097FD65974] - 21/01/2008 - 03:23:21 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys [53376]
O58 - SDL:[MD5.585E64BB6DFBC0A2F1F0B554DED012DF] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - 61883 Device Class.) -- C:\Windows\System32\Drivers\61883.sys [45696]
O58 - SDL:[MD5.82B296AE1892FE3DBEE00C9CF92F8AC7] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [265688]
O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422968]
O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 03:23:25 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [300600]
O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 03:23:26 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\System32\Drivers\adpu160m.sys [101432]
O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 03:23:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys [149560]
O58 - SDL:[MD5.3911B972B55FEA0478476B2E777B29FA] - 21/04/2011 - 14:58:27 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys [273408]
O58 - SDL:[MD5.13F9E33747E6B41A3FF305C37DB0D360] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [56376]
O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 03:23:00 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [17464]
O58 - SDL:[MD5.C47344BC706E5F0B9DCE369516661578] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre AGP AMD NT.) -- C:\Windows\System32\Drivers\AMDAGP.SYS [57400]
O58 - SDL:[MD5.9B78A39A4C173FDBC1321E0DD659B34C] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\Drivers\amdide.sys [17976]
O58 - SDL:[MD5.18F29B49AD23ECEE3D2A826C725C8D48] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk7.sys [41472]
O58 - SDL:[MD5.93AE7F7DD54AB986A6F1A1B37BE7442D] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [44032]
O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 03:23:23 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [79416]
O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 03:23:24 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [79928]
O58 - SDL:[MD5.53B202ABEE6455406254444303E87BE1] - 21/01/2008 - 03:24:04 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [17408]
O58 - SDL:[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - 11/04/2009 - 07:32:26 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [19944]
O58 - SDL:[MD5.64B0052340B8EC28FA8A56B708AE71CC] - 11/04/2009 - 07:32:42 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [109032]
O58 - SDL:[MD5.F4B56425A00BEB32F5FA6603FF7B0EA2] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - AVC Driver.) -- C:\Windows\System32\Drivers\avc.sys [40448]
O58 - SDL:[MD5.A25F0F39AC579FE899A7C8D67ECB157C] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Microsoft WDM AVC Streaming filter driver.) -- C:\Windows\System32\Drivers\avcstrm.sys [14208]
O58 - SDL:[MD5.B8C10FF9369394EB84993F331810CF29] - 19/12/2013 - 14:59:32 ---A- . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys [90400]
O58 - SDL:[MD5.4189E5AB2CAD6F395D87DAAE73EB090F] - 19/12/2013 - 14:59:32 ---A- . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\Drivers\avipbb.sys [135648]
O58 - SDL:[MD5.D8C712305F73CD34D1B344810E522728] - 03/12/2013 - 19:40:59 ---A- . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\Drivers\avkmgr.sys [37352]
O58 - SDL:[MD5.2B8A5A8879238C3BA9A89A8E3AC4E45D] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [28216]
O58 - SDL:[MD5.9F5F8F2318DFA3974A6F6A5602733929] - 21/01/2008 - 03:23:31 ---A- . (.Microsoft Corporation - Microsoft BDA Driver Support Library.) -- C:\Windows\System32\Drivers\bdasup.sys [12288]
O58 - SDL:[MD5.67E506B75BD5326A3EC7B70BD014DFB6] - 21/01/2008 - 03:23:44 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [6144]
O58 - SDL:[MD5.D4DF28447741FD3D953526E33A617397] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys [45568]
O58 - SDL:[MD5.35F376253F687BDE63976CCB3F2108CA] - 22/02/2011 - 14:23:55 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [69632]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.B1564976D98E91FC764D5DC28A0297DA] - 11/04/2009 - 06:42:55 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [93696]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.AD07C1EC6665B8B35741AB91200C6B68] - 02/11/2006 - 09:55:23 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [39936]
O58 - SDL:[MD5.F6C40E0A565EE3CE5AEEB325E10054F2] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\ccdcmb.sys [18176]
O58 - SDL:[MD5.2A394E9E1FA3565E4B2FEA470FFE4D6B] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\ccdcmbo.sys [23168]
O58 - SDL:[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - 21/01/2008 - 03:23:51 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [70144]
O58 - SDL:[MD5.6B4BFFB9BECD728097024276430DB314] - 11/04/2009 - 05:39:17 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [67072]
O58 - SDL:[MD5.E5D4133F37219DBCFE102BC61072589D] - 21/01/2008 - 03:23:26 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [35328]
O58 - SDL:[MD5.0767B09C74D935A590B4879D14463B64] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [125928]
O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 03:23:00 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [19000]
O58 - SDL:[MD5.6AFEF0B60FA25DE07C0968983EE4F60A] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys [20792]
O58 - SDL:[MD5.36975327EF03949CC378AB01E316B574] - 11/04/2009 - 07:32:30 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [35304]
O58 - SDL:[MD5.741E9DFF4F42D2D8477D0FC1DC0DF871] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys [24632]
O58 - SDL:[MD5.1F07BECDCA750766A96CDA811BA86410] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\crusoe.sys [40960]
O58 - SDL:[MD5.622C41A07CA7E6DD91770F50D532CB6C] - 14/04/2011 - 15:59:03 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [75264]
O58 - SDL:[MD5.770471DE2550820FEEB7E5D24BF2E273] - 22/10/2007 - 07:55:46 ---A- . (.Samsung Electronics Co., Ltd. - Windows 2k,XP IEEE-1284 parallel class driver for ECP, Byte, an.) -- C:\Windows\System32\Drivers\DgivEcp.sys [41984]
O58 - SDL:[MD5.5D4AEFC3386920236A548271F8F1AF6A] - 11/04/2009 - 07:32:31 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [53736]
O58 - SDL:[MD5.494075282E23D838F43A4C9FB7143959] - 11/04/2009 - 05:39:11 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [19456]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys [71272]
O58 - SDL:[MD5.4F59C172C094E1A1D46463A8DC061CBD] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - IEEE-1284.4-1999 Driver.) -- C:\Windows\System32\Drivers\Dot4.sys [131584]
O58 - SDL:[MD5.80BF3BA09F6F2523C8F6B7CC6DBF7BD5] - 21/01/2008 - 03:23:03 ---A- . (.Microsoft Corporation - IEEE-1284.4 Print Class Driver.) -- C:\Windows\System32\Drivers\Dot4Prt.sys [16384]
O58 - SDL:[MD5.C55004CA6B419B6695970DFE849B122F] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Pilote de filtre DOT4USB.) -- C:\Windows\System32\Drivers\Dot4usb.sys [36864]
O58 - SDL:[MD5.2A63675F6FA8EF0FF9F5C72695584CAA] - 30/10/2013 - 02:43:04 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Descrambler Filter.) -- C:\Windows\System32\Drivers\drmk.sys [130048]
O58 - SDL:[MD5.97FEF831AB90BEE128C9AF390E243F80] - 21/01/2008 - 03:23:21 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Audio Descrambler Filter.) -- C:\Windows\System32\Drivers\drmkaud.sys [5632]
O58 - SDL:[MD5.C67EBF9C05531C406E1E079FF669A2E6] - 11/04/2009 - 07:32:29 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [27624]
O58 - SDL:[MD5.EAAAFEF04FBB45665C9576E525D45A12] - 21/01/2008 - 03:24:21 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys [13312]
O58 - SDL:[MD5.C8D5369BFE193B5FB53337DCE77CE314] - 11/04/2009 - 05:23:23 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys [76288]
O58 - SDL:[MD5.988670D8343EF9835FB3659DB71B2EFA] - 01/08/2013 - 04:16:32 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [638400]
O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 03:23:24 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel® PRO/1000.) -- C:\Windows\System32\Drivers\E1G60I32.sys [118784]
O58 - SDL:[MD5.7F64EA048DCFAC7ACF8B4D7B4E6FE371] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - Special Memory Device Cache.) -- C:\Windows\System32\Drivers\ecache.sys [141288]
O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:23:22 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [342584]
O58 - SDL:[MD5.3DB974F3935483555D7148663F726C61] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [6656]
O58 - SDL:[MD5.22B408651F9123527BCEE54B4F6C5CAE] - 11/04/2009 - 05:13:53 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [136704]
O58 - SDL:[MD5.1E9B9A70D332103C52995E957DC09EF8] - 11/04/2009 - 05:13:52 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [142848]
O58 - SDL:[MD5.AFE1E8B9782A0DD7FB46BBD88E43F89A] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [25088]
O58 - SDL:[MD5.A8C0139A884861E3AAE9CFE73B208A9F] - 21/01/2008 - 03:24:04 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [58936]
O58 - SDL:[MD5.0AE429A696AECBC5970E3CF2C62635AE] - 21/01/2008 - 03:24:21 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [27648]
O58 - SDL:[MD5.85B7CF99D532820495D68D747FDA9EBD] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [20480]
O58 - SDL:[MD5.01334F9EA68E6877C4EF05D3EA8ABB05] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [190424]
O58 - SDL:[MD5.B972A66758577E0BFD1DE0F91AAA27B5] - 29/02/2012 - 14:32:37 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [12800]
O58 - SDL:[MD5.73594DBC99E22958150192EE99BC48CE] - 11/04/2009 - 07:32:43 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [99816]
O58 - SDL:[MD5.34582A6E6573D54A07ECE5FE24A126B5] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [61496]
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 12:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [26600]
O58 - SDL:[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - 11/04/2009 - 05:42:42 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [561152]
O58 - SDL:[MD5.CB04C744BE0A61B1D648FAED182C3B59] - 02/11/2006 - 08:36:49 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys [235520]
O58 - SDL:[MD5.1338520E78D90154ED6BE8F84DE5FCEB] - 02/11/2006 - 09:55:22 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [29184]
O58 - SDL:[MD5.5961CADB7CAD938368D2028725EF771D] - 11/04/2009 - 05:42:48 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [39424]
O58 - SDL:[MD5.FF3160C3A2445128C5A6D9B076DA519E] - 02/11/2006 - 09:55:01 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [21504]
O58 - SDL:[MD5.BE4AD4045D7A6C6AF4ECCBD5F6B7F8D8] - 03/07/2013 - 03:10:50 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [25472]
O58 - SDL:[MD5.CCA4B519B17E23A00B826C55716809CC] - 11/04/2009 - 05:42:48 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [12800]
O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 03:23:26 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\Drivers\HpCISSs.sys [40504]
O58 - SDL:[MD5.F870AA3E254628EBEAFE754108D664DE] - 20/02/2010 - 21:53:34 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [411648]
O58 - SDL:[MD5.95BD3EA81EBE6B8CACAFDB6CDAB3586C] - 21/01/2008 - 03:23:02 ---A- . (.Microsoft Corporation - I2O Utility Filter.) -- C:\Windows\System32\Drivers\i2omgmt.sys [19000]
O58 - SDL:[MD5.C6B032D69650985468160FC9937CF5B4] - 21/01/2008 - 03:23:02 ---A- . (.Microsoft Corporation - I2O Miniport Driver.) -- C:\Windows\System32\Drivers\i2omp.sys [30264]
O58 - SDL:[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [54784]
O58 - SDL:[MD5.580BFEC487C55264BFE3D60C3C24EEE1] - 13/06/2006 - 21:56:40 ----- . (.Intel Corporation - Intel Matrix Storage Manager driver.) -- C:\Windows\System32\Drivers\iaStor.sys [247808]
O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 03:23:23 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\Drivers\iaStorV.sys [235064]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [41576]
O58 - SDL:[MD5.C6E5276C00EBDEB096BB5EF4B797D1B6] - 03/07/2007 - 03:05:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\System32\Drivers\int15.sys [15392]
O58 - SDL:[MD5.91B61589BB2915E81D436EFE07548507] - 06/11/2007 - 09:30:46 ---A- . (...) -- C:\Windows\System32\Drivers\int15_64.sys [15656]
O58 - SDL:[MD5.83AA759F3189E6370C30DE5DC5590718] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [17976]
O58 - SDL:[MD5.224191001E78C89DFA78924C3EA595FF] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [41472]
O58 - SDL:[MD5.62C265C38769B864CB25B4BCF62DF6C3] - 21/01/2008 - 03:24:45 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [47616]
O58 - SDL:[MD5.B25AAF203552B7B3491139D582B39AD1] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [64512]
O58 - SDL:[MD5.8793643A67B42CEC66490B2A0CF92D68] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [100864]
O58 - SDL:[MD5.E50A95179211B12946F7E035D60AF560] - 21/01/2008 - 03:24:31 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [95744]
O58 - SDL:[MD5.109C0DFB82C3632FBD11949B73AEEAC9] - 21/01/2008 - 03:23:54 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [13312]
O58 - SDL:[MD5.6C70698A3E5C4376C6AB5C7C17FB0614] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [49720]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys [35944]
O58 - SDL:[MD5.37605E0A8CF00CBBA538E753E4344C6E] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [35384]
O58 - SDL:[MD5.EDE59EC70E25C24581ADD1FBEC7325F7] - 11/04/2009 - 05:38:40 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [17408]
O58 - SDL:[MD5.EF73C1E29FBE7B0FD0274BF4394E346A] - 11/04/2009 - 05:38:49 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [149504]
O58 - SDL:[MD5.4A1445EFA932A3BAF5BDB02D7131EE20] - 04/06/2012 - 16:26:04 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [440704]
O58 - SDL:[MD5.D1C5883087A0C3F1344D9D55A44901F6] - 21/01/2008 - 03:24:37 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [47104]
O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [96312]
O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 03:23:25 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [89656]
O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [96312]
O58 - SDL:[MD5.8F5C7426567798E62A3B3614965D62CC] - 21/01/2008 - 03:24:37 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [84480]
O58 - SDL:[MD5.B271EC02E71271A2DA28B3B7BC4E4F15] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [18944]
O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\System32\Drivers\megasas.sys [31288]
O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [386616]
O58 - SDL:[MD5.E13B5EA0F51BA5B1512EC671393D09BA] - 21/01/2008 - 03:24:57 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [31744]
O58 - SDL:[MD5.0A9BB33B56E294F686ABB7C1E4E2D8A8] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [41984]
O58 - SDL:[MD5.5BF6A1326A335C5298477754A506D263] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [34360]
O58 - SDL:[MD5.93B8D4869E12CFBE663915502900876F] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [15872]
O58 - SDL:[MD5.BDAFC88AA6B92F7842416EA6A48E1600] - 21/01/2008 - 03:23:43 ---A- . (.Microsoft Corporation - Mount Point Manager.) -- C:\Windows\System32\Drivers\mountmgr.sys [57400]
O58 - SDL:[MD5.511D011289755DD9F9A7579FB0B064E6] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote du bus de prise en charge des chemins d’accès multiples.) -- C:\Windows\System32\Drivers\mpio.sys [105016]
O58 - SDL:[MD5.22241FEBA9B2DEFA669C8CB0A8DD7D2E] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [64000]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\System32\Drivers\Mraid35x.sys [33384]
O58 - SDL:[MD5.82CEA0395524AACFEB58BA1448E8325C] - 11/04/2009 - 05:14:40 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [114688]
O58 - SDL:[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - 29/04/2011 - 14:24:40 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys [106496]
O58 - SDL:[MD5.4FCCB34D793B116423209C0F8B7A3B03] - 06/07/2011 - 16:31:47 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [214016]
O58 - SDL:[MD5.C3CB1B40AD4A0124D617A1199B0B9D7C] - 29/04/2011 - 14:24:42 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [79872]
O58 - SDL:[MD5.28023E86F17001F7CD9B15A5BC9AE07D] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys [28728]
O58 - SDL:[MD5.4468B0F385A86ECDDAF8D3CA662EC0E7] - 21/01/2008 - 03:23:21 ---A- . (.Microsoft Corporation - Microsoft Device Specific Module.) -- C:\Windows\System32\Drivers\msdsm.sys [94776]
O58 - SDL:[MD5.343291A4DFD7C923C3F71F550830EC1C] - 21/01/2008 - 03:23:26 ---A- . (.Microsoft Corporation - Microsoft DV Camera and VCR Driver.) -- C:\Windows\System32\Drivers\msdv.sys [52608]
O58 - SDL:[MD5.A9927F4A46B816C92F461ACB90CF8515] - 21/01/2008 - 03:23:51 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [22528]
O58 - SDL:[MD5.0F400E306F385C56317357D6DEA56F62] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [16440]
O58 - SDL:[MD5.232FA340531D940AAC623B121A595034] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [180712]
O58 - SDL:[MD5.D8C63D34D9C9E56C059E24EC7185CC07] - 21/01/2008 - 03:24:50 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [8192]
O58 - SDL:[MD5.1D373C90D62DDB641D50E55B9E78D65E] - 21/01/2008 - 03:24:51 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [5888]
O58 - SDL:[MD5.B572DA05BF4E098D4BBA3A4734FB505B] - 21/01/2008 - 03:24:51 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [5504]
O58 - SDL:[MD5.B49456D70555DE905C311BCDA6EC6ADB] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [161752]
O58 - SDL:[MD5.E384487CB84BE41D09711C30CA79646C] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [31288]
O58 - SDL:[MD5.7199C1EEC1E4993CAF96B8C0A26BD58A] - 21/01/2008 - 03:24:51 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [6016]
O58 - SDL:[MD5.6A57B5733D4CB702C8EA4542E836B96C] - 11/04/2009 - 07:32:31 ---A- . (.Microsoft Corporation - Multiple UNC Provider driver.) -- C:\Windows\System32\Drivers\mup.sys [48104]
O58 - SDL:[MD5.1357274D1883F68300AEADD15D7BBB42] - 11/04/2009 - 07:32:49 ---A- . (.Microsoft Corporation - NDIS 6.0 wrapper driver.) -- C:\Windows\System32\Drivers\ndis.sys [527848]
O58 - SDL:[MD5.0E186E90404980569FB449BA7519AE61] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [20992]
O58 - SDL:[MD5.D6973AA34C4D5D76C0430B181C3CD389] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - NDIS User mode I/O driver.) -- C:\Windows\System32\Drivers\ndisuio.sys [16896]
O58 - SDL:[MD5.818F648618AE34F729FDB47EC68345C3] - 11/04/2009 - 05:46:32 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [121344]
O58 - SDL:[MD5.71DAB552B41936358F3B541AE5997FB3] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [49664]
O58 - SDL:[MD5.BCD093A5A6777CF626434568DC7DBA78] - 21/01/2008 - 03:24:20 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [35840]
O58 - SDL:[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - 11/04/2009 - 05:45:37 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [185856]
O58 - SDL:[MD5.063EE4D3CB88A14EAB9901875CEE98B1] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [223208]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [45160]
O58 - SDL:[MD5.D36F239D7CCE1931598E8FB90A0DBC26] - 11/04/2009 - 05:14:01 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [35328]
O58 - SDL:[MD5.609773E344A97410CE4EBF74A8914FCF] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [16384]
O58 - SDL:[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - 03/03/2013 - 20:07:52 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1082232]
O58 - SDL:[MD5.7F1C1F78D709C4A54CBB46EDE7E0B48D] - 21/03/2008 - 12:21:06 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\System32\Drivers\NTIDrvr.sys [6144]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\System32\Drivers\ntrigdigi.sys [20608]
O58 - SDL:[MD5.C5DBBCDA07D780BDA9B685DF333BB41E] - 21/01/2008 - 03:23:50 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [4608]
O58 - SDL:[MD5.57945C4C155A79CF3E0F463E3CC9923E] - 28/04/2008 - 10:02:42 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\Drivers\nvhda32v.sys [42528]
O58 - SDL:[MD5.B69E6F70CE1151C8D62ABC9DEF64DFBE] - 25/02/2013 - 23:22:06 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 311.06.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [8939296]
O58 - SDL:[MD5.B896FB556B4DC1E1D2943559EA79C5C5] - 10/09/2007 - 19:17:40 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\Drivers\nvmfdx32.sys [1035168]
O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [102968]
O58 - SDL:[MD5.73F84853274C0F633425B102B4EDD631] - 06/05/2008 - 16:53:20 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvrd32.sys [132128]
O58 - SDL:[MD5.7EC12A73067BACA25A8E3E2A58AE83D8] - 07/07/2007 - 14:13:10 ---A- . (.NVIDIA Corporation - NVIDIA® nForce SMU Microcontroller Driver.) -- C:\Windows\System32\Drivers\nvsmu.sys [12032]
O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [45112]
O58 - SDL:[MD5.A136BA7EB1EEBE4B2469F123F4607518] - 06/05/2008 - 16:53:20 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor32.sys [140832]
O58 - SDL:[MD5.18BBDF913916B71BD54575BDB6EEAC0B] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [109112]
O58 - SDL:[MD5.85C44FDFF9CF7E72A40DCB7EC06A4416] - 11/04/2009 - 05:43:28 ---A- . (.Microsoft Corporation - NativeWiFi Miniport Driver.) -- C:\Windows\System32\Drivers\nwifi.sys [148480]
O58 - SDL:[MD5.6F310E890D46E246E0E261A63D9B36B4] - 11/04/2009 - 05:43:04 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys [62208]
O58 - SDL:[MD5.99514FAA8DF93D34B5589187DB3AA0BA] - 11/04/2009 - 05:45:51 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [72192]
O58 - SDL:[MD5.0FA9B5055484649D63C303FE404E5F4D] - 02/11/2006 - 09:51:30 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [79360]
O58 - SDL:[MD5.B9C2B89F08670E159F7181891E449CD9] - 21/03/2012 - 00:28:50 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [53120]
O58 - SDL:[MD5.4F9A6A8A31413180D0FCB279AD5D8112] - 02/11/2006 - 09:51:23 ---A- . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\System32\Drivers\parvdm.sys [8704]
O58 - SDL:[MD5.F451DCACBAA67F3307305EBD4A39EA07] - 11/06/2012 - 11:33:46 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\System32\Drivers\pccsmcfd.sys [19072]
O58 - SDL:[MD5.941DC1D19E7E8620F40BBC206981EFDB] - 11/04/2009 - 07:32:55 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [149480]
O58 - SDL:[MD5.1636D43F10416AEB483BC6001097B26C] - 11/04/2009 - 07:32:49 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [14312]
O58 - SDL:[MD5.6429D10C5D149AC9EB2D95052A390CFF] - 11/04/2009 - 07:32:52 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [43496]
O58 - SDL:[MD5.E6F3FB1B86AA519E7698AD05E58B04E5] - 02/11/2006 - 10:51:12 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [167528]
O58 - SDL:[MD5.6349F6ED9C623B44B52EA3C63C831A92] - 02/11/2006 - 10:04:35 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [878080]
O58 - SDL:[MD5.6DBA75306DD9B242B6F1C343179AD201] - 30/10/2013 - 01:43:06 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [167936]
O58 - SDL:[MD5.2027293619DD0F047C584CF2E7DF4FFD] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [40960]
O58 - SDL:[MD5.AB94285FF6C6BC5433407D8D182A4BB4] - 04/03/2008 - 23:38:42 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\System32\Drivers\psdfilter.sys [18992]
O58 - SDL:[MD5.2AAF9A5D7A63D26BFAEA853C5F2292BC] - 04/03/2008 - 23:38:44 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\System32\Drivers\PSDNServ.sys [16944]
O58 - SDL:[MD5.0EB8CEC99855BEAE5B0D02C2302619EF] - 04/03/2008 - 23:38:44 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\System32\Drivers\PSDVdisk.sys [60464]
O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 20/11/2008 - 20:19:06 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\Drivers\pxhelp20.sys [43872]
O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 03:23:24 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1122360]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [106088]
O58 - SDL:[MD5.9F5E0E1926014D17486901C88ECA2DB7] - 21/01/2008 - 03:23:31 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [31232]
O58 - SDL:[MD5.147D7F9C556D259924351FEB0DE606C3] - 21/01/2008 - 03:24:19 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [11776]
O58 - SDL:[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [76288]
O58 - SDL:[MD5.509A98DD18AF4375E1FC40BC175F1DEF] - 11/04/2009 - 05:46:30 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [41472]
O58 - SDL:[MD5.ECFFFAEC0C1ECD8DBC77F39070EA1DB1] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [62976]
O58 - SDL:[MD5.2005F4A1E05FA09389AC85840F0A9E4D] - 11/04/2009 - 05:46:40 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [69120]
O58 - SDL:[MD5.B14C9D5B9ADD2F84F70570BBBFAA7935] - 11/04/2009 - 05:14:29 ---A- . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\Windows\System32\Drivers\rdbss.sys [225280]
O58 - SDL:[MD5.89E59BE9A564262A3FB6C4F4F1CD9899] - 21/01/2008 - 03:24:06 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys [6144]
O58 - SDL:[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\Drivers\rdpdr.sys [248832]
O58 - SDL:[MD5.9D91FE5286F748862ECFFA05F8A0710C] - 21/01/2008 - 03:24:50 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys [6144]
O58 - SDL:[MD5.C127EBD5AFAB31524662C48DFCEB773A] - 01/05/2012 - 15:03:49 ---A- . (.Microsoft Corporation - RDP Terminal Stack Driver.) -- C:\Windows\System32\Drivers\rdpwd.sys [180736]
O58 - SDL:[MD5.EEC7EE5675294B03E88AA868540007C1] - 11/04/2009 - 05:45:24 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [113664]
O58 - SDL:[MD5.D9225D107E40D0FA5C5069446759C8E9] - 11/04/2009 - 05:46:07 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [33280]
O58 - SDL:[MD5.75E8A6BFA7374ABA833AE92BF41AE4E6] - 21/01/2008 - 03:24:49 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [8192]
O58 - SDL:[MD5.9C508F4074A39E8B4B31D27198146FAD] - 21/01/2008 - 03:24:37 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [60416]
O58 - SDL:[MD5.4C01298060CF930D26A75A86B874B6AE] - 26/03/2008 - 19:35:54 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [2103512]
O58 - SDL:[MD5.3CE8F073A557E172B330109436984E30] - 02/11/2006 - 10:50:16 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [76392]
O58 - SDL:[MD5.6F5CA34AE885645ACF8A20D564DB976C] - 21/01/2008 - 03:23:54 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [142904]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480]
O58 - SDL:[MD5.CE9EC966638EF0B10B864DDEDF62A099] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [17920]
O58 - SDL:[MD5.6D663022DB3E7058907784AE14B69898] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456]
O58 - SDL:[MD5.8AF3D28A879BF75DB53A0EE7A4289624] - 21/01/2008 - 03:23:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [19968]
O58 - SDL:[MD5.3EFA810BDCA87F6ECC24F9832243FE86] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys [13312]
O58 - SDL:[MD5.E95D451F7EA3E583AEC75F3B3EE42DC5] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys [12288]
O58 - SDL:[MD5.3D0EA348784B7AC9EA9BD9F317980979] - 21/01/2008 - 03:23:23 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys [11776]
O58 - SDL:[MD5.46ED8E91793B2E6F848015445A0AC188] - 02/11/2006 - 09:51:40 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [13312]
O58 - SDL:[MD5.1D76624A09A054F682D746B924E2DBC3] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre SIS NT AGP.) -- C:\Windows\System32\Drivers\SISAGP.SYS [55864]
O58 - SDL:[MD5.43CB7AA756C7DB280D01DA9B676CFDE2] - 21/01/2008 - 03:23:26 ---A- . (.Microsoft Corporation - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [41016]
O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 03:23:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [74808]
O58 - SDL:[MD5.7B75299A4D201D6A6533603D6914AB04] - 11/04/2009 - 05:45:22 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys [66560]
O58 - SDL:[MD5.A7D7EA1771D2ED6F39A8063E79B6C3E8] - 21/01/2008 - 03:24:55 ---A- . (.Microsoft Corporation - Smard Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [17408]
O58 - SDL:[MD5.7AEBDEEF071FE28B0EEF2CDD69102BFF] - 21/01/2008 - 03:24:11 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys [21048]
O58 - SDL:[MD5.A7F8BAD9590ADDC425B4003E94780DFA] - 11/04/2009 - 03:52:40 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys [684032]
O58 - SDL:[MD5.41987F9FC0E61ADF54F581E15029AD91] - 18/02/2011 - 15:03:32 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [305152]
O58 - SDL:[MD5.FF33AFF99564B1AA534F58868CBE41EF] - 29/04/2011 - 14:25:10 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys [146432]
O58 - SDL:[MD5.7605C0E1D01A08F3ECD743F38B834A44] - 29/04/2011 - 14:25:09 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [102400]
O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 27/08/2012 - 13:50:24 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\System32\Drivers\ssmdrv.sys [28520]
O58 - SDL:[MD5.EF3458337D7341A05169CEFC73709264] - 13/08/2007 - 03:51:11 ----- . (.Samsung Electronics - 32bit Port Contention Driver.) -- C:\Windows\System32\Drivers\SSPORT.SYS [5120]
O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 25/10/2007 - 17:26:10 ---A- . (...) -- C:\Windows\System32\Drivers\StarOpen.sys [5632]
O58 - SDL:[MD5.47E55AFE1ED1D5AFF09690DB226F4A7A] - 11/04/2009 - 07:32:54 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\Storport.sys [122344]
O58 - SDL:[MD5.70A92E46A2F459CDEDE3CA558CB26B6A] - 11/04/2009 - 05:42:47 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [52992]
O58 - SDL:[MD5.7BA58ECF0C0A9A69D44B3DCA62BECF56] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [15288]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\symc8xx.sys [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_hi.sys [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_u3.sys [34920]
O58 - SDL:[MD5.1239FD18895040D97B7CDBC19BC2075E] - 21/01/2008 - 03:24:44 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [24576]
O58 - SDL:[MD5.D18D53974FD715D50FC76F9FFE1C830D] - 05/07/2013 - 05:53:33 ---A- . (.Microsoft Corporation - TCP/IP Driver.) -- C:\Windows\System32\Drivers\tcpip.sys [905664]
O58 - SDL:[MD5.608C345A255D82A6289C2D468EB41FD7] - 08/12/2009 - 18:26:18 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [30720]
O58 - SDL:[MD5.77937EFF009AC696B90E09F671F9D0A4] - 21/01/2008 - 03:24:05 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [20992]
O58 - SDL:[MD5.5DCF5E267BE67A1AE926F2DF77FBCC56] - 21/01/2008 - 03:24:08 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys [17920]
O58 - SDL:[MD5.389C63E32B3CEFED425B61ED92D3F021] - 21/01/2008 - 03:24:08 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys [29184]
O58 - SDL:[MD5.76B06EB8A01FC8624D699E7045303E54] - 11/04/2009 - 05:45:56 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [72192]
O58 - SDL:[MD5.3CAD38910468EAB9A6479E2F01DB43C7] - 11/04/2009 - 07:32:52 ---A- . (.Microsoft Corporation - Terminal Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys [53224]
O58 - SDL:[MD5.F4EAA7ECBCB25DE901C9B7F2CDCDA0B3] - 15/06/2013 - 12:23:33 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys [24064]
O58 - SDL:[MD5.CAECC0120AC49E3D2F758B9169872D38] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\Drivers\TUNMP.SYS [15360]
O58 - SDL:[MD5.300DB877AC094FEAB0BE7688C3454A9C] - 18/02/2010 - 12:28:13 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\Drivers\tunnel.sys [25088]
O58 - SDL:[MD5.97DD70FECA64FB4F63DE7BB7E66A80B1] - 06/11/2007 - 09:30:46 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\System32\Drivers\TVicPort.sys [14544]
O58 - SDL:[MD5.4E104EBC164231D2272CC9BDD1EF5C40] - 06/11/2007 - 09:30:46 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\System32\Drivers\TVicPort64.sys [8704]
O58 - SDL:[MD5.7D33C4DB2CE363C8518D2DFCF533941F] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [59448]
O58 - SDL:[MD5.D9728AF68C4C7693CB100B8441CBDEC6] - 11/04/2009 - 05:13:59 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [226816]
O58 - SDL:[MD5.B0ACFDC9E4AF279E9116C03E014B2B27] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [60984]
O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:23:20 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys [238648]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:23:23 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\Drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.32CFF9F809AE9AED85464492BF3E32D2] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [34816]
O58 - SDL:[MD5.88BD96A1BAEED33EE8BDF9499C07A841] - 21/01/2008 - 03:23:49 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [7680]
O58 - SDL:[MD5.8D31A140B55021BBD3A608F5A7AA2E18] - 12/02/2013 - 02:57:27 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [15872]
O58 - SDL:[MD5.4B8A9C16B6D9258ED99C512AECB8C555] - 19/04/2010 - 19:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl.sys [41984]
O58 - SDL:[MD5.1114579556DB85E9FAF9590DBC64CD62] - 12/07/2013 - 10:04:18 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys [73344]
O58 - SDL:[MD5.D06F193F3E9CC3B356DF97F6A43C054A] - 11/04/2009 - 05:42:56 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD.sys [25856]
O58 - SDL:[MD5.EAE017D3AA298374A1967B96C379C5AB] - 11/04/2009 - 05:42:56 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [25856]
O58 - SDL:[MD5.AAB0B5F72D2D726FBFDC895A2902DE1D] - 29/06/2013 - 03:07:04 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [73216]
O58 - SDL:[MD5.E9476E6C486E76BC4898074768FB7131] - 02/11/2006 - 09:55:09 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [68608]
O58 - SDL:[MD5.FE619ED13CE12F5B43C04E3EA061BBD6] - 29/06/2013 - 03:06:53 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [6016]
O58 - SDL:[MD5.153E8515CB86F8BB5D1A8B478EBF4BB2] - 05/05/2011 - 14:54:07 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [39936]
O58 - SDL:[MD5.2AE6BCEBD85D31317E433733DAF25888] - 29/06/2013 - 03:07:15 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [197632]
O58 - SDL:[MD5.D457EBD0C3A8B3A3A144355B5EE91CBC] - 05/05/2011 - 14:54:07 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [19456]
O58 - SDL:[MD5.B09C74A41F26B08149707EA5E7F956C2] - 29/06/2013 - 03:07:01 ---A- . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\Windows\System32\Drivers\usbport.sys [226304]
O58 - SDL:[MD5.E75C4B5269091D15A2E7DC0B6D35F2F5] - 21/01/2008 - 03:23:22 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [18944]
O58 - SDL:[MD5.1D714B8497CD68307806D5D3F60A5169] - 03/07/2013 - 03:33:45 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [35328]
O58 - SDL:[MD5.8E6C378A885D6FFDA8F05E8D27B95C0E] - 29/08/2013 - 08:56:16 ---A- . (.Microsoft Corporation - USB Modem Driver.) -- C:\Windows\System32\Drivers\usbser.sys [27648]
O58 - SDL:[MD5.47F5F9D837D80FFD5882A14DB9DA0A67] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\usbser_lowerflt.sys [8192]
O58 - SDL:[MD5.E44F0D17BE0908B58DCC99CCB99C6C32] - 09/01/2012 - 17:28:20 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\usbser_lowerfltj.sys [8192]
O58 - SDL:[MD5.BE3DA31C191BC222D9AD503C5224F2AD] - 11/04/2009 - 05:42:55 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [65536]
O58 - SDL:[MD5.814D653EFC4D48BE3B04A307ECEFF56F] - 21/01/2008 - 03:23:03 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [23552]
O58 - SDL:[MD5.73FF24E21B690625A58109637DDA0DF7] - 12/07/2013 - 10:04:32 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [134272]
O58 - SDL:[MD5.7481637A50A0468CF46C719672BC7EAA] - 26/02/2005 - 15:25:52 ---A- . (.VM - Video streaming and Capture Device Driver.) -- C:\Windows\System32\Drivers\usbVM31b.sys [91527]
O58 - SDL:[MD5.2E93AC0A1D8C79D019DB6C51F036636C] - 21/01/2008 - 03:24:50 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys [25088]
O58 - SDL:[MD5.87B06E1F30B749A114F74622D013F8D4] - 21/01/2008 - 03:23:02 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys [26112]
O58 - SDL:[MD5.5D7159DEF58A800D5781BA3A879627BC] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Filtre VIA NT AGP.) -- C:\Windows\System32\Drivers\VIAAGP.SYS [56888]
O58 - SDL:[MD5.C4F3A691B5BAD343E6249BD8C2D45DEE] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\viac7.sys [41472]
O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 03:23:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [20024]
O58 - SDL:[MD5.C048D2C33D27441A0CDCAAE2651EB03D] - 21/01/2008 - 03:23:42 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [110080]
O58 - SDL:[MD5.69503668AC66C77C6CD7AF86FBDF8C43] - 21/01/2008 - 03:23:01 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [52792]
O58 - SDL:[MD5.23E41B834759917BFD6B9A0D625D0C28] - 11/04/2009 - 07:33:03 ---A- . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys [292840]
O58 - SDL:[MD5.786DB5771F05EF300390399F626BF30A] - 21/08/2012 - 12:47:42 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [224640]
O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 03:23:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [130616]
O58 - SDL:[MD5.48DFEE8F1AF7C8235D4E626F0C4FE031] - 02/11/2006 - 09:52:52 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [20608]
O58 - SDL:[MD5.55201897378CCA7AF8B5EFD874374A26] - 21/01/2008 - 03:24:25 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [62464]
O58 - SDL:[MD5.4A5C31E2C1646034E6A60EBA4C747FF6] - 11/04/2009 - 05:22:46 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [33280]
O58 - SDL:[MD5.DC7F91B2ED24A738C807EA07F298928C] - 01/09/2003 - 11:00:00 ---A- . (.Microsoft Corporation - Windows CE USB Serial Host.) -- C:\Windows\System32\Drivers\wceusbsh.sys [104064]
O58 - SDL:[MD5.78FE9542363F297B18C027B2D7E7C07F] - 21/01/2008 - 03:23:24 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys [22072]
O58 - SDL:[MD5.25944D2CC49E0A6C581D02A74B7D6645] - 27/06/2013 - 00:01:59 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [527064]
O58 - SDL:[MD5.48704647CD2E9DAA2EB81BDE6D029EDB] - 26/07/2012 - 04:39:21 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [47720]
O58 - SDL:[MD5.2E7255D172DF0B8283CDFB7B433B864E] - 21/01/2008 - 03:23:00 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [11264]
O58 - SDL:[MD5.C546864EED786304762D030FEBF6B411] - 21/01/2008 - 03:23:42 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [17976]
O58 - SDL:[MD5.DE9D36F91A4DF3D911626643DEBF11EA] - 01/10/2009 - 02:01:54 ---A- . (.Microsoft Corporation - WPD USB Driver.) -- C:\Windows\System32\Drivers\WpdUsb.sys [40448]
O58 - SDL:[MD5.E3A3CB253C0EC2494D4A61F5E43A389C] - 21/01/2008 - 03:24:47 ---A- . (.Microsoft Corporation - Winsock2 IFS Layer.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [15872]
O58 - SDL:[MD5.06E6F32C8D0A3F66D956F57B43A2E070] - 26/07/2012 - 03:33:43 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [66560]
O58 - SDL:[MD5.867C301E8B790040AE9CF6486E8041DF] - 26/07/2012 - 03:32:51 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [155136]
O58 - SDL:[MD5.40AC8590CC9006DBB99FFCB37879D4C6] - 06/11/2007 - 09:30:48 ---A- . (.Zeal SoftStudio - zntport.) -- C:\Windows\System32\Drivers\zntport.sys [6080]
O58 - SDL:[MD5.C32ACB6D3FB23EBF528B676F7B8197B7] - 06/11/2007 - 09:30:46 ---A- . (.Zeal SoftStudio - NTPort Library kernel driver.) -- C:\Windows\System32\Drivers\zntport64.sys [13096]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:[MD5.D7659D3B5B92C31E84E53C1431F35132] - 11/04/2009 - 07:32:46 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys [245736]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:[MD5.790A4CA68F44BE35967B3DF61F3E4675] - 31/03/2009 - 09:39:36 ---A- . (...) -- C:\Windows\System32\FsUsbExDisk.Sys [36608]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:[MD5.7DEEA31FD41B77B433C17903B3416507] - 07/02/2014 - 11:38:44 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2050560]
~ Drivers: 15 Scanned in 00mn 03s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 12/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Local State [70654]
O61 - LFC: 12/04/2014 - 21:08:41 ---A- . (.FreeSoftToday.) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\Download\majfstfr.exe [6619672] =>PUA.FSTfr9
O61 - LFC: 12/04/2014 - 21:08:42 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\CdmAdapterVersion [13]
O61 - LFC: 12/04/2014 - 21:08:42 --HA- . (...) -- C:\Users\Famille Philippe\AppData\Local\IconCache.db [4162746]
O61 - LFC: 12/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\BON DE COMMANDE.LNK [919]
O61 - LFC: 12/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\Bureau.LNK [751]
O61 - LFC: 13/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.cyp [876] =>PUA.FSTfr9
O61 - LFC: 13/04/2014 - 21:09:20 ---A- . (...) -- C:\Users\Famille Philippe\Downloads\Setup.exe [679616]
O61 - LFC: 14/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\fst_fr_134\1.10\cnf.cyl [131] =>PUA.FSTfr9
O61 - LFC: 14/04/2014 - 21:08:41 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Local\fst_fr_134\fst_fr_134\1.10\eorezo.cyl [69] =>PUA.FSTfr9
O61 - LFC: 14/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\FRANCOIS (J).LNK [187]
O61 - LFC: 14/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\TD_Ethique-et-morale_14-04-2014.LNK [365]
O61 - LFC: 14/04/2014 - 21:08:48 ---A- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Word12.pip [1744]
O61 - LFC: 14/04/2014 - 21:08:48 --H-- . (...) -- C:\Users\Famille Philippe\AppData\Roaming\Microsoft\Office\Recent\index.dat [1124]
O61 - LFC: 14/04/2014 - 21:09:26 ---A- . (.Nicolas Coolman.) -- C:\Users\Famille Philippe\Downloads\ZHPDiag2.exe [6867907] =>.Nicolas Coolman
~ Files: 15 Scanned in 01mn 10s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 21/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 19/12/2013 - C:\Windows\System32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 19/12/2013 - C:\Windows\System32\DRIVERS\avipbb.sys (avipbb) .(.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB
O64 - Services: CurCS - 03/12/2013 - C:\Windows\System32\DRIVERS\avkmgr.sys (avkmgr) .(.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - LEGACY_AVKMGR
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 22/02/2011 - C:\Windows\System32\DRIVERS\bowser.sys (bowser) .(.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) - LEGACY_BOWSER
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\CLFS.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\crcdisk.sys (crcdisk) .(.Microsoft Corporation - Disk Block Verification Filter Driver.) - LEGACY_CRCDISK
O64 - Services: CurCS - 14/04/2011 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 01/08/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 20/02/2010 - C:\Windows\System32\drivers\HTTP.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 03/07/2007 - C:\Acer\Empowering Technology\eRecovery\int15.sys (int15) .(.Acer, Inc. - int15.) - LEGACY_INT15
O64 - Services: CurCS - 04/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\mountmgr.sys (MountMgr) .(.Microsoft Corporation - Mount Point Manager.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\drivers\mrxdav.sys (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb.sys (mrxsmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB
O64 - Services: CurCS - 06/07/2011 - C:\Windows\System32\DRIVERS\mrxsmb10.sys (mrxsmb10) .(.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\mrxsmb20.sys (mrxsmb20) .(.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\Drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - NDIS 6.0 wrapper driver.) - LEGACY_NDIS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\netbt.sys (netbt) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 02/11/2006 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\pacer.sys (PSched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 04/03/2008 - C:\Windows\System32\DRIVERS\psdfilter.sys (PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER
O64 - Services: CurCS - 04/03/2008 - C:\Windows\System32\DRIVERS\PSDNServ.sys (PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV
O64 - Services: CurCS - 04/03/2008 - C:\Windows\System32\DRIVERS\PSDVdisk.sys (psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rasacd.sys (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\DRIVERS\rdbss.sys (rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\drivers\rdpencdd.sys (RDPENCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 02/11/2006 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Smb) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_SMB
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 18/02/2011 - C:\Windows\System32\DRIVERS\srv.sys (srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srv2.sys (srv2) .(.Microsoft Corporation - Smb 2.0 Server driver.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 27/08/2012 - C:\Windows\System32\DRIVERS\ssmdrv.sys (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV
O64 - Services: CurCS - 13/08/2007 - C:\Windows\system32\Drivers\SSPORT.sys (SSPORT) .(.Samsung Electronics - 32bit Port Contention Driver.) - LEGACY_SSPORT
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 08/12/2009 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 11/04/2009 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 06/11/2007 - C:\Windows\system32\drivers\tvicport.sys (tvicport) .(.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) - LEGACY_TVICPORT
O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 11/04/2009 - C:\Windows\System32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Volume Manager Extension Driver.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 21/08/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 21/01/2008 - C:\Windows\System32\DRIVERS\wanarp.sys (Wanarpv6) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARPV6
O64 - Services: CurCS - 27/06/2013 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
O64 - Services: CurCS - 06/11/2007 - C:\Windows\system32\drivers\zntport.sys (zntport) .(.Zeal SoftStudio - zntport.) - LEGACY_ZNTPORT
~ Legacy: 77 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
~ FASS Keys: 10 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [Famille Philippe - 93zkm48l.default] user_pref("extensions.crossrider.bic", "14542a3ac321a57d872667662bad8d16"); =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Bueno Search) -
O69 - SBI: SearchScopes [HKCU] {14880626-986F-4C98-8670-9B8077813C09} - (Ask Search) -
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Yahoo!) - http://fr.search.yahoo.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [24576]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [62976]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [40448]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [125952]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [576512]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [444928]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [315392]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [262144]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [68608]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [47104]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [288256]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [242688]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll [449024]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [758784]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [200704]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [19968]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [33280]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [111616]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [45056]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [153088]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [57344]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [162304]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [601600]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\System32\sessenv.dll [84992]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [81920]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [68096]

~ Services: 31 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.333C52BEB540E9BAED6208CD20AA2F75] [sPRF][19/10/2008] (...) -- C:\ProgramData\ezsidmv.dat [56]
[MD5.FC6AAEA12ADE44355F315BE6B7170B4A] [sPRF][19/09/2010] (...) -- C:\ProgramData\hpothb07.dat [151]
[MD5.C3BD91F09C88D6D28E8B9979272AAEC8] [sPRF][08/09/2012] (...) -- C:\Users\Famille Philippe\Desktop\hpothb07.dat [2925]
[MD5.9BF10785E977207D53BFA8B3158D17B4] [sPRF][27/03/2009] (...) -- C:\Users\Famille Philippe\Desktop\OOo_3.0.1_Win32Intel_install_wJRE_fr.exe [143875176]
[MD5.63287A13A20D526E39BC027EC1C91A3C] [sPRF][17/06/2013] (.Microsoft Corporation - Programme d’installation de Windows Essentials.) -- C:\Users\Famille Philippe\Desktop\wlsetup-all.exe [139601632]
[MD5.AFF096280AB535CE34F82CABDB3C136D] [sPRF][22/08/2007] (.Direction Générale des Impôts - Module de délivrance de certificat MINEFI.) -- C:\Windows\Downloaded Program Files\CERTDGI1.dll [117288]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [sPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [sPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.29CFE9ED23C55E55838A789EB1182A9B] [sPRF][04/10/2008] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1887080]
[MD5.A7226E3C773911C7687299B3E2284CAB] [sPRF][13/04/2004] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [307200]
[MD5.C0C19C6D32721B4B323237EF80254D37] [sPRF][28/11/2005] (.Oberon Games - OberongamesLoader Module.) -- C:\Windows\Downloaded Program Files\Oberongamesloader.dll [135168]
~ Files: 11 Scanned in 00mn 04s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation
O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation
O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation
O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation
O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation
O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Programme DTCconsole MS.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-RPCSS-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-RPC-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "BITSSVC-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-P2P-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-P2P-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe =>.Microsoft Corporation
O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-TCP" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Serveur DCOM des journaux et alertes de performance.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "{9A0FC0E6-C41A-491D-85B2-7B42B0C4D7B6}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{9272E7EA-E5B0-4E65-AA03-61B849992A79}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{0590D135-20CF-4616-83A2-B4D64D7A7ADC}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe
O87 - FAEL: "{EC714915-D3A6-43D3-B785-23155F4ED9A6}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe
O87 - FAEL: "{8FB6D042-3CF4-407D-A2E9-A1CE05C41456}" | In - None - P17 - TRUE | .(.Acer Incorporated - HomeMedia Connect.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe
O87 - FAEL: "{542BA28B-703D-48DB-B83F-94E757E578BF}" | In - None - P17 - TRUE | .(.CyberLink - CLMSServer.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O87 - FAEL: "{B34DAF09-668F-41FD-94EB-A7A892360F5C}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer SlideShow DVD.) -- C:\Program Files\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe
O87 - FAEL: "{F051E17E-51EF-4830-B367-F6DA497077E5}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Live.) -- C:\Program Files\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe
O87 - FAEL: "{F19A5023-E796-411B-91F4-615DCEB3F968}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{78BB1033-644A-4F58-B071-CF8CF1608B5D}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{3F52ACBA-15C7-41A0-ABBB-8579AF82460F}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{F99EC74C-BA19-4314-8CCF-7820DFE887BD}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{010D17B6-079E-4CC6-A539-B09C95182122}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{2087B08C-61D1-4402-8377-4B7D1DFA2D22}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{51781BBD-9333-49DF-B6D4-1345AF134EC0}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{D262D572-AED9-4F03-BF62-B7B3DAD8C808}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{97D2ADEF-E7CD-4910-B598-BE9142C205CE}" | In - Private - P6 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz
O87 - FAEL: "{C513CCF3-4F02-49BE-8B95-A32B3FB0B78E}" | In - Private - P17 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz
O87 - FAEL: "TCP Query User{414DBE8B-AB20-4D68-8D8A-1D7A0D90C85B}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe" | In - Public - P6 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe =>Adware.SocialSkinz
O87 - FAEL: "UDP Query User{89ED80C8-65C8-4276-A2F1-3597C23FC79D}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe" | In - Public - P17 - TRUE | .(.Veoh Networks - Veoh Web Player Beta.) -- C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe =>Adware.SocialSkinz
O87 - FAEL: "TCP Query User{D3253CBD-2E94-482B-A8F3-8C47A98DF332}C:\program files\mozilla firefox\firefox.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
O87 - FAEL: "UDP Query User{66A07EEA-1070-43A8-AFCB-3D43E7AFD0E2}C:\program files\mozilla firefox\firefox.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
O87 - FAEL: "TCP Query User{80ED8CDE-A8B8-44A0-9F8F-638BBEB1D1C3}C:\program files\java\jre6\bin\java.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe
O87 - FAEL: "UDP Query User{F1C52527-4DD9-4143-AD06-5489CBE31D7F}C:\program files\java\jre6\bin\java.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe
O87 - FAEL: "{B514E67D-B8D1-4F58-89E6-9B57D8464B76}" | In - Private - P6 - TRUE | .(.Sony Creative Software Inc. - Media Manager.) -- C:\Program Files\Sony\Media Manager for WALKMAN\MediaManager.exe
O87 - FAEL: "{F95F51A7-D2C6-40BA-BFFB-E32BF6D27AF8}" | In - Private - P17 - TRUE | .(.Sony Creative Software Inc. - Media Manager.) -- C:\Program Files\Sony\Media Manager for WALKMAN\MediaManager.exe
O87 - FAEL: "{4579016E-4A9E-4952-996A-90B5A357D78D}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Moovida\moovida.exe (.not file.) =>Adware.SPointer
O87 - FAEL: "{5DBD72BC-9461-4E78-ACD4-162D721977D2}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Moovida\moovida.exe (.not file.) =>Adware.SPointer
O87 - FAEL: "{FFF2B981-EC40-4325-B009-08566D8ED08B}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{48FFA645-8DB1-4954-B142-6EF28AAA4301}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\outlook.exe =>.Microsoft Corporation
O87 - FAEL: "{DA8F8E44-4C8F-4037-907D-B5BF6712B7A5}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (.not file.)
O87 - FAEL: "{D5699F78-3B1C-4BE6-A29F-ACC06CC53C8F}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (.not file.)
O87 - FAEL: "{E4511D41-CA05-4BCB-86B4-B4215D78F05C}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (.not file.)
O87 - FAEL: "{1AD8EC46-8403-4802-81B6-127267CB2650}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (.not file.)
O87 - FAEL: "{A94312F5-EC2F-4433-8AD1-D39DD032CAD5}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{372EEDE5-96CA-433B-9B3D-75C10442643A}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{C544C677-9D1F-4C14-B34E-52BD413CF4B8}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O87 - FAEL: "TCP Query User{70168AC3-16B4-4297-81E9-BD1547F1E0B3}C:\program files\google\google earth\plugin\geplugin.exe" | In - Private - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe =>.Google Inc
O87 - FAEL: "UDP Query User{CBBF003B-B6CE-4920-AC36-E83BC609762A}C:\program files\google\google earth\plugin\geplugin.exe" | In - Private - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe =>.Google Inc
O87 - FAEL: "{258BF34C-4758-4680-87C2-7183B31EF18E}" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Famille Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox
O87 - FAEL: "{33912CF3-3952-4873-A3FD-850FFEEBA944}" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Famille Philippe\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox
O87 - FAEL: "TCP Query User{4622C3E6-5F63-40D5-80A8-793E25195AE8}C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe =>.Dropbox
O87 - FAEL: "UDP Query User{66DC1D47-2243-4DC0-82A6-411500BFCC43}C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\famille philippe\appdata\roaming\dropbox\bin\dropbox.exe =>.Dropbox
O87 - FAEL: "{C75EAC6B-99EA-46DB-9857-31087DBED764}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "{F8883439-1A7E-4645-86C8-3850851B9447}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{FB234ACA-656B-44A8-8296-388564FF1C80}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{C6B8E02D-95A5-44D5-8BF6-3CAB3AB01981}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{12843CBD-44A3-4675-9EAE-81BCD15B3416}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{33A8DC29-5341-46D4-8353-914574D0519C}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files\Steam\Steam.exe
O87 - FAEL: "{CD69D293-2F3B-452B-BA1E-9BD119FAFBCB}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam Client Bootstrapper (buildbot_winslave04_steam_steam_rel_client_win.) -- C:\Program Files\Steam\Steam.exe
O87 - FAEL: "{C426C1AC-256E-4FF6-8DD2-0318FCAB9BC9}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine\trine_launcher.exe
O87 - FAEL: "{F613AE4A-BCF3-4156-8745-57ACF16C66FE}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine\trine_launcher.exe
O87 - FAEL: "{E212CC9F-ED91-4435-9D39-0BDF78D09E88}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{8FFF16FA-2B89-4D6B-813D-E866F3FF92E0}" | In - Private - P6 - TRUE | .(.Robot Entertainment - OMD 2 Mod Launcher.) -- C:\Program Files\Steam\SteamApps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
O87 - FAEL: "{0B30F6C0-D1D7-45AB-87E4-6DA950621B7C}" | In - Private - P17 - TRUE | .(.Robot Entertainment - OMD 2 Mod Launcher.) -- C:\Program Files\Steam\SteamApps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
O87 - FAEL: "{9EB9D8C2-3642-479B-8865-281E4DC4B5A5}" |In - Public - P6 - TRUE | .(...) -- C:\ProgramData\eSafe\eGdpSvc.exe (.not file.) =>PUP.eSafeSecurity
O87 - FAEL: "TCP Query User{00EC21CA-6F44-45F0-B2FE-921F4D4A6B32}C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" | In - Private - P6 - TRUE | .(.Robot Entertainment, Inc. - Orcs Must Die 2.) -- C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
O87 - FAEL: "UDP Query User{69B4B00D-3EA3-47A3-9F2D-0618D15E33B2}C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" | In - Private - P17 - TRUE | .(.Robot Entertainment, Inc. - Orcs Must Die 2.) -- C:\program files\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
O87 - FAEL: "{FB346DAC-2CC5-4643-AF77-7F5DA6909D36}" | In - Domain - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine 2\trine2_launcher.exe
O87 - FAEL: "{A7BB7CB3-323F-4704-AC0F-CC73F2F1C2DB}" | In - Domain - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\Trine 2\trine2_launcher.exe
O87 - FAEL: "{B83DAF99-0D60-435F-927A-1FA9C7442FB5}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
~ Firewall: 228 Scanned in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "0194F446218EDA9439CE6828C88BA1D0" . (.PC Connectivity Solution.) -- C:\Windows\Installer\{644F4910-E812-49AD-93EC-86828CB81A0D}\ARPPRODUCTICON.exe
O90 - PUC: "0336A2D4B8F23E11C9048BCAF6798BE8" . (.Google Earth.) -- C:\Windows\Installer\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "043B0686D0353B64198FA11E7FF0C733" . (.OpenOffice.org 3.0.) -- C:\Windows\Installer\{6860B340-530D-46B3-91F8-1AE1F70F7C33}\soffice.exe
O90 - PUC: "0D00C83EB86A81348A6A7F4D5B1BFDE0" . (.Codeur Windows Media Série 9.) -- C:\Windows\Installer\{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}\ARPIcon
O90 - PUC: "147AE92A7F4270C4B9C260BC4619EBA4" . (.Camera Window.) -- C:\Windows\Installer\{A29EA741-24F7-4C07-9B2C-06CB6491BE4A}\ARPPRODUCTICON.exe
O90 - PUC: "2563365A59739284BBB046F420972E97" . (.Acer eDataSecurity Management.) -- C:\Windows\Installer\{A5633652-3795-4829-BB0B-644F0279E279}\ARPPRODUCTICON.exe
O90 - PUC: "26FCC409D8185764CB673DE73B999F71" . (.Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{904CCF62-818D-4675-BC76-D37EB399F917}\wmdc.exe
O90 - PUC: "277C90D53BCEB244C96C4B43C187DF2C" . (.Apple Application Support.) -- C:\Windows\Installer\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}\WinInstall.ico
O90 - PUC: "2A59BE6954252AE46BAE8BABF2FB464C" . (.Ma-Config.com.) -- C:\Windows\Installer\{96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}\maconfico
O90 - PUC: "34D2E50CF50A53841AC5DCA01D755660" . (.PhotoStitch.) -- C:\Windows\Installer\{C05E2D43-A05F-4835-A15C-CD0AD1576506}\ARPPRODUCTICON.exe
O90 - PUC: "3654C66835DE3F342AD9B8EEB21DABC3" . (.Nokia PC Suite.) -- C:\Windows\Installer\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\ARPPRODUCTICON.exe
O90 - PUC: "3AEE1ACCE55550D4CA64B4946C5C8D78" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887}\Installer.ico
O90 - PUC: "44FD8FE3045FA564C8C45A8CFDED69BA" . (.Trans Music Manager.) -- C:\Windows\Installer\{3EF8DF44-F540-465A-8C4C-A5C8DFDE96AB}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc
O90 - PUC: "4C70161239943F34AAA70D0588871C20" . (.Canon DV TWAIN Driver.) -- C:\Windows\Installer\{216107C4-4993-43F3-AA7A-D0508878C102}\ARPPRODUCTICON.exe
O90 - PUC: "50E7C3A773EE6D74991EE20BA5D33A7F" . (.Skype 6.14.) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
O90 - PUC: "52E4407E830367A4094643A40C8340E3" . (.Mise à jour du pilote du Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{E7044E25-3038-4A76-9064-344AC038043E}\WindowsMobileDeviceCenter.ico
O90 - PUC: "5B769D51EB4AEA24E94846DC60B252AA" . (.eSobi v2.) -- C:\Windows\Installer\{15D967B5-A4BE-42AE-9E84-64CD062B25AA}\ARPPRODUCTICON.exe
O90 - PUC: "65C853104F443B8B7875602F8A468A36" . (.ATI Catalyst Install Manager.) -- C:\Windows\Installer\{01358C56-44F4-B8B3-8757-06F2A864A863}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA746454382080000000030" . (.Spelling Dictionaries Support For Adobe Reader 8.) -- C:\Windows\Installer\{AC76BA86-7AD7-5464-3428-800000000003}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.9) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "6AABD0A6CEF47B1458E899FE959B71C3" . (.CIG.) -- C:\Windows\Installer\{6A0DBAA6-4FEC-41B7-858E-99EF59B9173C}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "8CAF48E7815C9F048970475503D1D652" . (.SamsungConnectivityCableDriver.) -- C:\Windows\Installer\{7E84FAC8-C518-40F9-9807-7455301D6D25}\ARPPRODUCTICON.exe
O90 - PUC: "B50A775126EECBB4D97BEF47F84AE42C" . (.NTI CD & DVD-Maker.) -- C:\Windows\Installer\{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}\ARPPRODUCTICON.exe
O90 - PUC: "C72BF05326FC3FE4FAD907FF13F32E12" . (.iTunes.) -- C:\Windows\Installer\{350FB27C-CF62-4EF3-AF9D-70FF313FE221}\Installer.ico
O90 - PUC: "CC52075AE2F510D43B7860BD0105D034" . (.Nokia Connectivity Cable Driver.) -- C:\Windows\Installer\{A57025CC-5F2E-4D01-B387-06DB10500D43}\ARPPRODUCTICON.exe
O90 - PUC: "D43089517417C234C88A88E860231D42" . (.NTI Backup NOW! 4.7.) -- C:\Windows\Installer\{1598034D-7147-432C-8CA8-888E0632D124}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D83BC1B64E2E03a439D3FEEDAB67DAC9" . (.Microsoft Works.) -- C:\Windows\Installer\{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}\Win2Kico.exe
O90 - PUC: "EA13C1FFCDC0EC04BA5804F6B8076D34" . (.Bonjour.) -- C:\Windows\Installer\{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}\Bonjour.ico
O90 - PUC: "F6071111A6667304777712318267D401" . (.JavaFX 2.1.1.) -- C:\Windows\Installer\{1111706F-666A-4037-7777-211328764D10}\javaIcon.ico
O90 - PUC: "FA4EDAFCFC0C40A47A674731811F56F8" . (.Content Transfer.) -- C:\Windows\Installer\{CFADE4AF-C0CF-4A04-A776-741318F1658F}\ARPPRODUCTICON.exe
~ Update Products: 143 Scanned in 00mn 00s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: Nokia Phone Browser - {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}
O92 - MNS: Dossiers Web - {BDEADF00-C265-11D0-BCED-00A0C90AB50F}
~ MNS: 2 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.6E4ADD19D45CC5F0014D870CFEEF29B3] [WIS][21/03/2008] (.esobi Inc. - eSobi Setup.) -- C:\Windows\Installer\11aaf2.msi [1338368]
[MD5.D1875D3EAC27EA33360A9C967AD43178] [WIS][21/03/2008] (.NewTech Infosystems - CD & DVD-Maker.) -- C:\Windows\Installer\1810f.msi [13896704]
[MD5.ED43E687DA6DD236B7E6AED0B3C48EF5] [WIS][21/03/2008] (.NewTech Infosystems - BUN 4.7.) -- C:\Windows\Installer\1811a.msi [1232896]
[MD5.B7191A3ACAE20C3C6506823DDA58748F] [WIS][21/03/2008] (.Egis Inc. - Acer eDataSecurity Management.) -- C:\Windows\Installer\291e8.msi [8373248]
[MD5.CE37176C6386843E51FBA8877DB3753B] [WIS][14/06/2009] (.TransTechnology - Trans Music Manager.) -- C:\Windows\Installer\2e4234b.msi [567296]
[MD5.B24514D0AB0DFA8DA36CEACD1296A7AD] [WIS][30/10/2012] (.Skype Technologies S.A. - Skype Click to Call.) -- C:\Windows\Installer\3060e15b.msi [1188352]
[MD5.DF7FCDB4D456BC01BF053398A970EDF5] [WIS][12/04/2014] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\4161f.msi [1610240]
[MD5.956A6780A171A21111236B85D9BA883D] [WIS][05/11/2012] (.Nokia - MSVC90_x86.) -- C:\Windows\Installer\4f761663.msi [78336]
[MD5.6B70F23FC8E4E9FC1AA9218B88BBD120] [WIS][05/11/2012] (.Nokia - Nokia Connectivity Cable Driver.) -- C:\Windows\Installer\4f761669.msi [337920]
[MD5.F8FC7A4FBDF092FB884090AFD223308D] [WIS][05/11/2012] (.Nokia - PC Connectivity Solution.) -- C:\Windows\Installer\4f7616a0.msi [496128]
[MD5.33BEB4A60F8F8A0ADDCD85AC3E13477E] [WIS][05/11/2012] (.Nokia - Nokia PC Suite.) -- C:\Windows\Installer\4f7616a7.msi [971776]
[MD5.037BBB2FBDCD1A92169D278F0F3A19E5] [WIS][05/11/2012] (.Nokia Corporation - Nokia Software Updater.) -- C:\Windows\Installer\4f94dd79.msi [988672]
[MD5.085D524E99E53F043CFC9470A7DE58C3] [WIS][14/06/2013] (.Valve Corporation - Steam.) -- C:\Windows\Installer\8865689.msi [1074176]
[MD5.87DB6BC3013438DE2EE0B7934179DDB4] [WIS][16/12/2008] (.ViaMichelin - Blank Project Template.) -- C:\Windows\Installer\df92d69.msi [160256]
~ WIS: 147 Scanned in 00mn 09s



---\\ Recherche de clés de registre CLSID (O101)
[HKCR\CLSID\{11111111-1111-1111-1111-110511421146}] (MediaPlayerplus) =>PUP.CrossRider
[HKCR\CLSID\{22222222-2222-2222-2222-220522422246}] (CrossriderApp0054246.Sandbox) =>PUP.CrossRider
[HKCR\CLSID\{22222222-2222-2222-2222-220522422253}] (CrossriderApp0054253.Sandbox) =>PUP.CrossRider
~ BCK: 6903 Scanned in 00mn 13s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 23/03/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 27/05/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 31/07/2008 136120 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 21/01/2008 21504 | C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SS - | Demand 01/09/2010 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 12/09/2010 251248 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe
SS - | Demand 30/03/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 21/01/2008 21504 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SS - | Auto 25/02/2013 1260320 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Auto 21/01/2008 21504 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SS - | Demand 11/06/2012 724376 | (ServiceLayer) . (.Nokia.) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SS - | Demand 11/12/2013 569768 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe

SR - | Auto 25/01/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
SR - | Auto 17/10/2007 28672 | (AcerMemUsageCheckService) . (...) - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
SR - | Auto 18/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 23/03/2014 440400 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SR - | Auto 23/03/2014 440400 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 13/08/2010 144672 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 27/07/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 04/03/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
SR - | Auto 10/09/2007 57344 | (eRecoveryService) . (.Acer Inc..) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
SR - | Auto 19/12/2007 24576 | (eSettingsService) . (...) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
SR - | Auto 27/05/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Auto 11/04/2014 705136 | (IePluginService) . (.Cherished Technololgy LIMITED.) - C:\ProgramData\IePluginService\PluginService.exe =>Trojan.SProtector
SR - | Auto 17/01/2007 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 05/12/2008 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 08/04/2014 541696 | (nuttkoqiez32) . (...) - C:\Program Files\003\nuttkoqiez32.exe =>PUP.Agent
SR - | Auto 18/01/2013 639776 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 02/10/2012 3064000 | (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SR - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 23/01/2012 92592 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
SR - | Auto 21/01/2008 21504 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 21/01/2008 21504 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services: Scanned in 00mn 15s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net

~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Famille Philippe at 14/04/2014 21:11:00

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR: Scanned in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 13044 - (14/04/2014)
Clés trouvées (Keys found) : 36
Valeurs trouvées (Values found) : 3
Dossiers trouvés (Folders found) : 15
Fichiers trouvés (Files found) : 34

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511421146}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511421153}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] =>PUP.SupTab^
[HKLM\SYSTEM\CurrentControlSet\Services\IePluginService] =>Trojan.SProtector^
[HKLM\SYSTEM\CurrentControlSet\Services\nuttkoqiez32] =>PUP.Agent^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\VeohPlugin] =>Adware.SocialSkinz^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>PUP.Babylon
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\VBMZ] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKLM\Software\Classes\CLSID\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Classes\SpeedUpMyPC] =>PUP.SpeedUpMyPC
[HKLM\Software\Classes\CrossriderApp0054246.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0054246.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0054246.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0054246.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0054253.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0054253.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0054253.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0054253.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\Iminent] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110511421146}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110511421153}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220522422246}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220522422253}] =>PUP.CrossRider
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:fst_fr_134 =>PUA.FSTfr9^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]:upfst_fr_134.exe =>PUA.FSTfr9^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{84FF7BD6-B47F-46F8-9130-01B2696B36CB} =>Adware.IMBooster
C:\Program Files\fst_fr_134 =>PUA.FSTfr9^
C:\Program Files\MediaPlayerplus =>PUP.CrossRider^
C:\Program Files\PriceMeterLiveUpdate =>PUP.PriceMeter^
C:\Program Files\SupTab =>PUP.SupTab^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\IePluginService =>Trojan.SProtector^
C:\ProgramData\PriceMeterLiveUpdate =>PUP.PriceMeter^
C:\ProgramData\VisualBee =>Adware.VisualBeeToolbar^
C:\ProgramData\WPM =>PUP.WpManager^
C:\Users\Famille Philippe\AppData\Roaming\SupTab =>PUP.SupTab^
C:\Users\Famille Philippe\AppData\Roaming\uTorrent =>P2P.µTorrent^
C:\Users\Famille Philippe\AppData\Local\fst_fr_134 =>PUA.FSTfr9^
C:\Users\Famille Philippe\AppData\Local\PriceMeterLiveUpdate =>PUP.PriceMeter^
C:\Users\Famille Philippe\AppData\Local\VisualBeeExe =>Adware.VisualBeeToolbar^
C:\Users\Famille Philippe\AppData\Local\Temp\Iminent =>Adware.IMBooster
C:\Users\Famille Philippe\AppData\Local\fst_fr_134\upfst_fr_134.exe =>PUA.FSTfr9^
C:\Program Files\fst_fr_134\fst_fr_134.exe =>PUA.FSTfr9^
C:\program files\mediaplayerplus\mediaplayerplus-bg.exe =>PUP.CrossRider^
C:\Program Files\MediaPlayerplus\MediaPlayerplus-codedownloader.exe =>PUP.CrossRider^
C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.exe =>PUP.CrossRider^
C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.exe =>PUP.CrossRider^
C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.exe =>PUP.CrossRider^
C:\Program Files\MediaPlayerplus\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.exe =>PUP.CrossRider^
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe =>Adware.SocialSkinz^
[HKCU\Software\AnyProtect] =>PUP.AnyProtect^
[HKCU\Software\AppDataLow\Software\MediaPlayerplus] =>PUP.CrossRider^
[HKCU\Software\AppDataLow\Software\Rr Savings] =>PUP.SupraSavings^
[HKCU\Software\AppDataLow\Software\Supra Savings] =>PUP.SupraSavings^
[HKCU\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter^
[HKCU\Software\Visualbee] =>Adware.VisualBeeToolbar^
[HKCU\Software\freesofttoday] =>Adware.FreeSoftToday^
[HKLM\Software\LevelQualityWatcher] =>PUP.LevelQualityWatcher^
[HKLM\Software\MediaPlayerplus] =>PUP.CrossRider^
[HKLM\Software\PopCap] =>Adware.PopCap^
[HKLM\Software\PriceMeterLiveUpdate] =>PUP.PriceMeter^
[HKLM\Software\Visualbee] =>Adware.VisualBeeToolbar^
[HKLM\Software\Wpm] =>PUP.WpManager^
[HKLM\Software\free_soft_to_day] =>Adware.FreeSoftToday^
[HKLM\Software\supTab] =>PUP.SupTab^
[HKLM\Software\supWPM] =>PUP.WpManager^
[HKLM\Software\suprasavings] =>PUP.SupraSavings^
[HKLM\Software\webssearchesSoftware] =>Hijacker.WebsSearches^
[HKCR\CLSID\{11111111-1111-1111-1111-110511421146}] (MediaPlayerplus) =>PUP.CrossRider^
[HKCR\CLSID\{22222222-2222-2222-2222-220522422246}] (CrossriderApp0054246.Sandbox) =>PUP.CrossRider^
[HKCR\CLSID\{22222222-2222-2222-2222-220522422253}] (CrossriderApp0054253.Sandbox) =>PUP.CrossRider^
C:\Users\Famille Philippe\AppData\Local\Temp\uninst1.exe =>PUP.Babylon
C:\Users\Famille Philippe\AppData\Local\Temp\IminentSetup.exe =>Adware.IMBooster
~ Additionnel Scan: 430360 Items scanned in 00mn 43s



---\\ Récapitulatif des détections trouvées sur votre station



























~ MSI: 27 link(s) detected in 00mn 00s



End of the scan (2278 lines in 05mn 53s)(0)

pas au top Power Member

pas au top

Posté(e)
  • Auteur
Posté(e)

je me branche sur un autre ordinateur pour continuer ce message.
Firefox s'arrête de fonctionner très rapidement sur l'ordi infecté.
J'ai remarqué aussi que lorsque j'ouvre une page, il y a un espèce de légo qui s'installe au bout de querlques secondes avant l'adresse.

C'est par exemple le cas quand je vais sur http://forum.zebulon.fr/grosse-infection-t207055.html

Avira a détecté aussi 16 virus pour l'instant. Luke firewall est en cours et le dernier virus indiqué est adware/bryte.A 19254
Merci de votre aide

pear Devil Member !

pear

Posté(e)
Posté(e)

Bonjour,

 

Avant de commencer
La désinfection peut nécessiter l'utilisation de plusieurs procédures qui sont parfois longues.
Il serait préférable que vous ne preniez aucune initiative qui pourrait les contrarier.
Veuillez retenir que la désinfection n'est pas achevée avant qu'on vous le dise

Suivez cette procédure attentivement, point par point, et postez en les rapports dans l'ordre
Comment poster les rapports
Aller sur le site :Ci-Jointicne2cjoint.png
Appuyez sur Parcourir et chercher les rapports sur le disque,
Cliquer sur Ouvrir
Cliquer sur Créer le lien CJoint,
>> dans la page suivante --> ,,
une adresse http//.. sera créée
Copier /coller cette adresse dans votre prochain message.

1)Si vous avez Adwcleaner depuis quelque temps, désinstallez le et installez la dernière version

Télécharger AdwCleaner
Sous Vista et Windows 7_ 8-> Exécuter en tant qu'administrateur
Afin de ne pas fausser les rapports,Scanner et Nettoyer ne doivent être lancés qu'une seule fois
Cliquez sur Scanner et postez le rapport généré C:\AdwCleaner[R1].txt
13082303453515405011487723.png

Nettoyage A faire sans délai
Relancez AdwCleaner avec droits administrateur
Cliquez sur Nettoyer Une seule fois pour ne pas perturber la procédure
et postez le rapport C:\AdwCleaner[s1].txt

2)Télécharger Junkware Removal Tool de thisisu
OS:Windows XP/Vista/7/8
Utilisable sur systèmes 32-bits et 64-bits

Clquez sur Jrt.exe avec droits administrateur.
Si votre antvirus râle,Vous le signalez comme acceptable dans les exceptions de votre antivirus
Une fenêtre noire s'ouvre qui vous dit de cliquer une touche pour lancer le scan.

L'outil va prendre quelques minutes pour fouiller votre machine.
Patientez jusqu'à l'apparition de Jrt.txt dont vous posterez le contenu.

3)

Téléchargez Malwarebytes Anti-Malware
Ici

ou là:
et enregistrez-le sur le Bureau.
Faites un double clic sur mbam-setup-2.0.0.1000.exe et suivez les invites pour installer le programme.
Cliquer Setting pour le mettre en Français
vérifiez que cette cases Lancer Malwarebytes Anti-Malware est bien cochée.
Un essai gratuit de 14 jours des fonctions de la version Premium(payante) est pré-sélectionné, décochez le.
Cela ne diminuera pas les capacités d'analyse et de suppression du programme.
Cliquez sur Terminer.

580581Capture1.png

Dans l'onglet Paramètres > Sous-onglet Détection et Protection, Options de détection, cochez la case située devant Recherche de Rootkits
Sur le Tableau de bord, cliquez sur le lien Mettre à jour .
Si , par la suite, vos bases de données sont obsolètes vous en serez averti et invtié à Corriger maintenant.
679073Capture.png
Après la mise à jour,Connecter les supports amovibles (USB) et cliquer sur Examen-> Examen personnalisé
Cochez tout
cliquez sur le bouton Examiner maintenant .

Si des élémentss ont détectés, cliquez sur Appliquer les actions pour que MBAM nettoye ce qu'il a détecté.
Dans la plupart des cas, un redémarrage sera nécessaire.
Attendez l'affichage du message vous invitant à faire redémarrer le PC, puis cliquez sur Oui

(Copier dans le Presse-papiers pour coller dans une réponse sur le forum)
Après le redémarrage, quand vous êtes de retour sur le Bureau, ouvrez de nouveau MBAM.
Cliquez sur l'onglet Historique > Journaux de l'application.
Faites un double clic sur le Journal d'examen dont les date et heure correspondent à l'analyse qui vient d'être effectuée.
Cliquez sur Afficher puis Copier dans le Presse-papiers
Collez le contenu du Presse-papiers dans votre prochaine réponse.

4)Il faut Réinitialiser votre Navigateur
en cliquant ici

Cela désinstallera plugins et extensions que vous pourrez réinstaller avec la prudence nécessaire

5)Nouveau rapport Zhpdiag
Téchargement de Zhpdiag
Autre lien en cas de défaiillance du précédent

Double-cliquer sur ZHPDiag.exe pour installer l'outil
Il devrait y avoir 2 icônes sur le bureau ou dans le fichier d'installation de Zhpdiag.
34038020130908194213.jpg

633672AshampooSnap2014032608h35m23s001.p
Sous XP, double clic sur l'icône ZhpDiag
Sous Vista et +, faire un clic droit et Exécuter en tant qu'administrateur

Cliquez sur le bouton Complet

Patientez quelques instants
Le rapport ZhpDiag.txt apparaitra sur le bureau

pear Devil Member !

pear

Posté(e)
Posté(e) (modifié)

Les liens ont sauté:

 

Télécharger AdwCleaner

Télécharger Junkware Removal Tool de thisisu

Téléchargez Malwarebytes Anti-Malware
Ici

ou là:

 

Il faut Réinitialiser votre Navigateur
en cliquant ici

Cela désinstallera plugins et extensions que vous pourrez réinstaller avec la prudence nécessaire

Modifié par pear
pas au top Power Member

pas au top

Posté(e)
  • Auteur
Posté(e)

http://cjoint.com/?3DtsarQ6pZ9

 

http://cjoint.com/?3DtscxWmC4E

 

http://cjoint.com/?3DtseO9hTRe

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 19/04/2014
Scan Time: 17:25:59
Logfile:
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.19.07
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: Famille Philippe

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 275568
Time Elapsed: 13 min, 17 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 12
PUP.Optional.AdPeak.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{10AD2C61-0898-4348-8600-14A342F22AC3}, Quarantined, [b38061cb483377bf0f5ea96cc33f38c8],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [270ca488c9b21f176daa33e4679b9b65],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, Quarantined, [270ca488c9b21f176daa33e4679b9b65],
PUP.Optional.Feven.A, HKLM\SOFTWARE\Freeven pro 1.2, Quarantined, [d95a3bf10e6dc27457d4df92ef13a25e],
PUP.Optional.MediaPlayerplus.A, HKLM\SOFTWARE\MediaPlayerplus, Quarantined, [87acbe6efc7fd0665cf22a471be73dc3],
PUP.Optional.AdPeak.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\nuttkoqiez32, Quarantined, [171c9d8f3447b77f6abb81ea23dfd32d],
PUP.Optional.FreeHDSportTV.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\FreeHD-Sport TV V9.0, Delete-on-Reboot, [69ca9993245792a4fb9cd7a2c33fe719],
PUP.Optional.Feven.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Freeven pro 1.2, Delete-on-Reboot, [161def3d5724c86e80ade988c43e4fb1],
PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, Delete-on-Reboot, [63d0e646d2a9290dada36d04748ef709],
PUP.Optional.Feven.A, HKU\S-1-5-21-3877668347-929058439-3679567081-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Freeven pro 1.2, Delete-on-Reboot, [2f0495977803d5619c91254c7d85aa56],
PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-21-3877668347-929058439-3679567081-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, Delete-on-Reboot, [8ea599932c4f55e1232d5d14a45ef60a],
PUP.Optional.SupraSavings.A, HKU\S-1-5-21-3877668347-929058439-3679567081-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Supra Savings, Delete-on-Reboot, [34ffae7e95e6bd79720870ff738f9c64],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 20
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\defaults, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\defaults\preferences, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\userCode, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\locale, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\locale\en-US, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.QuickStart.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma, Quarantined, [f241cf5de09bc1756a17e283b9496799],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmgpbjjcdccinnndjdgmegndbmhbgglb, Quarantined, [949ff13be09b3ef800311a4cf60cbc44],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd, Quarantined, [151e74b817646cca47eb3c2a3ec41be5],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0, Quarantined, [ef44ea42c4b73afc3a15c4a21fe32dd3],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0, Quarantined, [bd76c06cd5a64aecd87c5e08c1411de3],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],

Files: 164
PUP.Optional.AdPeak.A, C:\Temp\InstallFilter32.msi, Quarantined, [b083ae7eea91a393da9844f9bb4507f9],
PUP.Optional.SupraSavings.A, C:\Temp\t.msi, Quarantined, [b57e66c6e8932e08b726f9231ee65ba5],
PUP.Optional.Iminent.A, C:\Users\Famille Philippe\AppData\Local\Temp\IminentSetup.exe, Quarantined, [36fdd65681fac17551389a8e9071b34d],
Backdoor.Bot, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\android.exe, Quarantined, [bd76b07c2b50280eb9a295d2b44da55b],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\software\freeven-prox-1-2.exe, Quarantined, [171cd5570c6f0036674ffa4423dd7a86],
PUP.Optional.SkyTech.A, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\software\lly_webssearches.exe, Quarantined, [bb78ec405f1ca5912c03b69b02ff34cc],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Temp\a1ff29e9-4c9d-40d1-a6d3-5ed2c36453b1\software\mediaplayerpluus.exe, Quarantined, [6bc80c2091eaba7c0aad5ee028d80df3],
Backdoor.Bot, C:\Users\Famille Philippe\AppData\Local\Temp\android\android.exe, Quarantined, [75be63c94635e94d382379ee738e27d9],
PUP.Optional.SkyTech.A, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\alilog.dll, Quarantined, [f14230fc6615ce6850c1a191c43cc53b],
PUP.Optional.SkyTech.A, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\package1.zip, Quarantined, [0d26de4e3a415ed823eeef4312ee758b],
PUP.Optional.IePluginService.A, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\tmp\SupTab.exe, Quarantined, [61d279b3a2d9ff37074859f8e21fba46],
PUP.Optional.WpManager, C:\Users\Famille Philippe\AppData\Local\Temp\fullpackage_temp1396982112\tmp\wpm.exe, Quarantined, [d3602c00ef8c1026ffa03a21956c39c7],
PUP.Optional.BabSolution.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\BUSolution.dll, Quarantined, [ab8836f6fc7f9d99d67451b6758c2cd4],
PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\ccp.exe, Quarantined, [0132db51c5b641f5889730eea55b08f8],
PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\CrxInstaller.dll, Quarantined, [fe35c86489f21620718dc35036cb0df3],
PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\MntrDLLInstall.dll, Quarantined, [4ee52b012b501e18a25d69aa946dec14],
PUP.Optional.Delta.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\MyDeltaTB.exe, Quarantined, [2a09bc70166576c0bfdb99d1c63b926e],
PUP.Optional.Babylon.A, C:\Users\Famille Philippe\AppData\Local\Temp\EBC92027-BAB0-7891-83C8-A0D7AF464182\NTRedirect.dll, Quarantined, [290a61cb651693a3e34832c11fe454ac],
PUP.Optional.ToolBarInstaller.A, C:\Users\Famille Philippe\AppData\Local\Temp\is-OI417.tmp\BuenoSearchTB.exe, Quarantined, [c96ac26afa811b1b459359a715efbc44],
PUP.Optional.GenericExt.A, C:\Users\Famille Philippe\AppData\Local\Temp\igdhbblpcellaljokkpfhcjlagemhgjl4cf73c87\minibarchrome.exe, Quarantined, [d55e62ca394246f060d4c974659b43bd],
PUP.Optional.DomaIQ, C:\Users\Famille Philippe\Downloads\Java.exe, Quarantined, [49eaa587106b191de2452816a45c5ba5],
PUP.Downloader.ZYL, C:\Users\Famille Philippe\Downloads\igglepopdownload.exe, Quarantined, [47ecd9538af18ea898a1dedb0cf4fd03],
PUP.OptionalBundleInstaller.A, C:\Users\Famille Philippe\Downloads\Player_Setup.exe, Quarantined, [ca69a7857b001323dcd7db46f30d817f],
PUP.Downloader.ZYL, C:\Users\Famille Philippe\Downloads\bigcityadventuresfdownload.exe, Quarantined, [de555fcd601b5adc5adfa712b64ad32d],
PUP.Optional.Softonic, C:\Users\Famille Philippe\Downloads\SoftonicDownloader_pour_image-converter-one.exe, Quarantined, [e35030fc8bf00630fc9fc43b0ef229d7],
PUP.Optional.Softonic, C:\Users\Famille Philippe\Downloads\SoftonicDownloader_pour_windows-live-galerie-de-photos.exe, Quarantined, [d75cf93343382a0cd9c214ebd22ece32],
PUP.Optional.OneClickDownloader.A, C:\Users\Famille Philippe\Downloads\StreamhuntAppsSetup(18_3f)3_ff.exe, Quarantined, [f340939975063df900eee12b55ac22de],
Trojan.RepackedSetup.SFX, C:\Users\Famille Philippe\Downloads\WebPlayer_V16 (1).exe, Quarantined, [1023052798e30135e95ed0cbcd34d62a],
Trojan.RepackedSetup.SFX, C:\Users\Famille Philippe\Downloads\WebPlayer_V16.exe, Quarantined, [959e9795eb90ea4caa9d5e3d758c758b],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-1.job, Quarantined, [d75c9993453670c6dae4106043bf768a],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-2.job, Quarantined, [0231e14b2952cc6a714d67090bf7c23e],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-3.job, Quarantined, [0a2959d3097240f67648c2ae24de916f],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-4.job, Quarantined, [0b2857d5e09b9f97aa148de3c33fcf31],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\84fec6d9-2ff8-4df1-af03-941a44d5d8f4-5.job, Quarantined, [d75c38f44b3053e3c2fce58b0af8e719],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-1.job, Quarantined, [052e919be49740f64678531d778b5aa6],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-2.job, Quarantined, [6dc6d8549fdc3402942adf91da2828d8],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-3.job, Quarantined, [c56e84a8057692a4b20c5020f40ece32],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-4.job, Quarantined, [4fe424087ffc5ed81da175fb54ae02fe],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\c2821be0-d6d6-4d1f-a185-ab9eda51706e-5.job, Quarantined, [77bc1a12f18a4fe7912d76fa92707d83],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0.localstorage, Quarantined, [bb7879b383f820160718f97828da25db],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0.localstorage-journal, Quarantined, [c0739a9292e95cdac35c9ad77e843ec2],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage, Quarantined, [3af9919b7605280e869ec0b19b6707f9],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage-journal, Quarantined, [250ec8643348989eb074a2cf5aa845bb],
PUP.Optional.WebsSearches.A, C:\Program Files\Mozilla Firefox\browser\searchplugins\webssearches.xml, Quarantined, [da599c907605b87e76b297dbf0126e92],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome.manifest, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\install.rdf, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\background.html, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\baseObject.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\browser.xul, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\dialog.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\ffCoreFilesIndex.txt, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\main.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\options.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\options.xul, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\platformVersion.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\search_dialog.xul, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\asyncDB.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\background.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\browserAction.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\contextMenu.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\dbManager.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\dom_bg.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\fileManager.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\firefox.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\firefoxNotifications.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\firefoxOmnibox.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\message.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\pageAction.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\request.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\tabs.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\webRequest.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\api\windowsMessagingHandler.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\addressBarChangeObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\console.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\consts.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\delegate.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\extensionDataStore.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\folderIOWrapper.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\httpObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\IDBWrapper.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\installer.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\logFile.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\prefs.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\progressListenerObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\registry.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\reloadObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\reports.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\requestObject.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\searchSettings.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\uninstallObserver.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\updateManager.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\utils.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\chrome\content\core\xhr.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\defaults\preferences\prefs.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\manifest.xml, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins.json, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\1.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\102.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\103.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\104.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\13.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\14.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\155.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\16.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\17.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\177.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\180.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\182.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\183.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\184.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\191.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\207.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\21.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\22.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\223.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\230.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\233.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\246.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\28.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\4.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\47.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\64.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\72.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\78.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\91.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\93.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins\98.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\userCode\background.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\userCode\extension.js, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\locale\en-US\translations.dtd, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button1.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button2.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button3.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button4.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\button5.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\crossrider_statusbar.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon128.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon16.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon24.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\icon48.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\panelarrow-up.png, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\popup.html, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\skin.css, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\93zkm48l.default\extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\skin\update.css, Quarantined, [191a59d3df9c91a5baf8e67e5ea4d22e],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0\5, Quarantined, [ef44ea42c4b73afc3a15c4a21fe32dd3],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dmgpbjjcdccinnndjdgmegndbmhbgglb_0\5-journal, Quarantined, [ef44ea42c4b73afc3a15c4a21fe32dd3],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0\6, Quarantined, [bd76c06cd5a64aecd87c5e08c1411de3],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\000005.ldb, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\000035.ldb, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\000051.log, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\CURRENT, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\LOCK, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\LOG, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\LOG.old, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmgpbjjcdccinnndjdgmegndbmhbgglb\MANIFEST-000049, Quarantined, [003325073b4079bd2d2e52141fe3aa56],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000005.ldb, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000029.ldb, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000045.log, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\CURRENT, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOCK, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOG, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOG.old, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],
PUP.Optional.CrossRider.A, C:\Users\Famille Philippe\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\MANIFEST-000043, Quarantined, [80b30b21106b9e98f66ae383c83a31cf],

Physical Sectors: 0
(No malicious items detected)


(end)

 

Je n'ai pas pu réinitialiser le navigateur le lien n'était pas actif.

Merci encore

pear Devil Member !

pear

Posté(e)
Posté(e)

Le lien est actif -<message #5

 

postez un nouveau Zhpdiag, svp

 

Téchargement de Zhpdiag
Autre lien en cas de défaiillance du précédent

Double-cliquer sur ZHPDiag.exe pour installer l'outil
Il devrait y avoir 2 icônes sur le bureau ou dans le fichier d'installation de Zhpdiag.
34038020130908194213.jpg

633672AshampooSnap2014032608h35m23s001.p
Sous XP, double clic sur l'icône ZhpDiag
Sous Vista et +, faire un clic droit et Exécuter en tant qu'administrateur

Cliquez sur le bouton Complet

Patientez quelques instants
Le rapport ZhpDiag.txt apparaitra sur le bureau


Comment poster les rapports
Aller sur le site :Ci-Jointicne2cjoint.png
Appuyez sur Parcourir et chercher les rapports sur le bureau
Cliquer sur Ouvrir
Cliquer sur Créer le lien CJoint,
>> dans la page suivante --> ,,
une adresse http//.. sera créée
Copier /coller cette adresse dans votre prochain message.

pear Devil Member !

pear

Posté(e)
Posté(e) (modifié)

Ce n'est pas une copie d'écran , que je ne vois d'ailleurs pas, mais un nouveau rapport Zhpdiag que je vous demande si besoin , en mode sans échec.

Modifié par pear

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...