Untitled

Rapport de ZHPDiag v1.31.52 par Nicolas Coolman, Update du 22/11/2012
Run by johan at 29/11/2012 18:23:59
State : Problème connexion internet
UAC : Not Found or deactivate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
GCIE: Google Chrome

---\\ Windows Product Information
~ Langage: Français
Windows 7, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8YDCM
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 15 Model 107 Stepping 2, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3071 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 96 GB (21%) free of 446 GB

---\\ Logged in mode
~ Computer Name: JOHAN-PC
~ User Name: johan
~ All Users Names: johan, HomeGroupUser$, ASPNET, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\johan\AppData\Roaming\
~ %Desktop% : C:\Users\johan\Desktop\
~ %Favorites% : C:\Users\johan\Favorites\
~ %LocalAppData% : C:\Users\johan\AppData\Local\
~ %StartMenu% : C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 96 Go of 446 Go)
D:\ CD-ROM drive (Not Inserted)
G:\ CD-ROM drive (Free 0 Go of 2 Go)
Z:\ Hard drive, Flash drive, Thumb drive (Free 6 Go of 20 Go)


---\\ Security Center & Tools Informations
~ UAC deactivate by user
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Scan Security Center in 00mn 00s


---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.9CB0D2A9A77D91D9614355EE9FF00519] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.08/10/2012 - 08:48:03.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.0D87503986BB3DFED58E343FE39DDE13] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 18:18:09.) -- C:\Windows\system32\Drivers\ntfs.sys [1211760]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 11:24:46.) -- C:\Windows\system32\Drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Scan Generic Processes in 00mn 00s


---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/1055
~ Mes musiques (My Musics) : 2/451
~ Mes Videos (My Videos) : 1/58
~ Mes Favoris (My Favorites) : 1/48
~ Mes Documents (My Documents) : 7/22263
~ Mon Bureau (My Desktop) : 2/2237
~ Menu demarrer (Programs) : 1/55
~ Scan Hidden Files in 00mn 40s


---\\ Processus lancés
[MD5.12E33DD823D74680DE6F33BFA359EFB3] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe   [766536] [PID.2760]
[MD5.988CA322B74DA65D85EC24D5CE230548] - (.Creative Technology Ltd. - Live! Cam Console Auto Launcher.) -- C:\Windows\V0220Mon.exe   [32768] [PID.3496]
[MD5.BAD0D303EF0A519409C625738F3E10A3] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe   [4282728] [PID.3748]
[MD5.A73731A0B0A165907799E9AFB461F856] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe   [296096] [PID.4060]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   [252848] [PID.2776]
[MD5.F1CA8ED683D6945EFDC4492AB60B1460] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe   [218880] [PID.]
[MD5.A090F19F57DEBA7F82498C634EA855B7] - (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\johan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe   [255992] [PID.3632]
[MD5.4B9949208944C50B1A16FD1F05ED0A04] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe   [299008] [PID.3760]
[MD5.8E18C83C6CFE2F02F8885D3A9DB363D7] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe   [299008] [PID.2416]
[MD5.30802A4825B0CE68800CB76DDC781474] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [3771904] [PID.1260]
~ Scan Processes Running in 00mn 00s


---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.5.635.) -- C:\Windows\system32\Adobe\Director\np32dsw_1165635.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.7.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.9.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.9.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (...) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (.not file.)
P2 - FPN: [HKLM] [@Nero.com/KM] - (.Nero AG - Plug-in for detecting Nero Kwik Media..) -- C:\Program Files\Common Files\Nero\BrowserPlugin\npBrowserPlugin.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=15.0.6.14] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- c:\program files\real\realplayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=15.0.6.14] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- c:\program files\real\realplayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpchromebrowserrecordext;version=15.0.6.14] - (.RealNetworks, Inc. - RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrec
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=15.0.6.14] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
P2 - FPN: [HKLM] [@real.com/nprpplugin;version=15.0.6.14] - (.RealPlayer - RealPlayer Download Plugin.) -- c:\program files\real\realplayer\Netscape6\nprpplugin.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s


---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.rpidity.com
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.rpidity.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.rpidity.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s


---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s


---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} Clé orpheline
O2 - BHO: (no name) - {3049C3E9-B461-4BC5-8870-4C09146192CA} Clé orpheline
O2 - BHO: (no name) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} Clé orpheline
O2 - BHO: (no name) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} Clé orpheline
O2 - BHO: (no name) - {73455575-E40C-433C-9784-C78DC7761455} Clé orpheline
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline
O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} Clé orpheline
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} Clé orpheline
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline
O2 - BHO: (no name) - {E33CF602-D945-461A-83F0-819F76A199F8} Clé orpheline
~ Scan BHO in 00mn 00s


---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (...) --  (.not file.)
~ Scan Toolbar in 00mn 00s


---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [V0220Mon.exe] . (.Creative Technology Ltd. - Live! Cam Console Auto Launcher.) -- C:\Windows\V0220Mon.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [Tutorials] Clé orpheline
O4 - HKLM\..\Run: [AMD AVT] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\Cmd.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\update\realsched.exe
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKCU\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKCU\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\johan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-3026010304-3200845865-1493322001-1000\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe
O4 - HKUS\S-1-5-21-3026010304-3200845865-1493322001-1000\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKUS\S-1-5-21-3026010304-3200845865-1493322001-1000\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKUS\S-1-5-21-3026010304-3200845865-1493322001-1000\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\johan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
O4 - HKUS\S-1-5-21-3026010304-3200845865-1493322001-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-3026010304-3200845865-1493322001-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s


---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Install_NSS.lnk . (...)  -- G:\nssstub.exe (.not file.)
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk . (.Microsoft Corporation.)  -- C:\Users\johan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
O4 - Global Startup: C:\Users\johan\Desktop\AIDA32.lnk . (...)  -- C:\Program Files\AIDA32 - Personal System Information\aida32.exe
O4 - Global Startup: C:\Users\johan\Desktop\EVEREST Ultimate Edition.lnk . (.Lavalys, Inc..)  -- C:\Program Files\Lavalys\EVEREST Ultimate Edition\everest.exe
O4 - Global Startup: C:\Users\johan\Desktop\Format Factory.lnk . (.Free Time.)  -- C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe
O4 - Global Startup: C:\Users\johan\Desktop\Fraps.lnk . (.Beepa P/L.)  -- C:\Fraps\fraps.exe
O4 - Global Startup: C:\Users\johan\Desktop\Free CD Ripper.lnk . (.Koyote Soft.)  -- C:\Program Files\Free CD Ripper\FreeCDRipper.exe
O4 - Global Startup: C:\Users\johan\Desktop\Free Video Converter.lnk . (.Koyote Soft.)  -- C:\Program Files\Free Video Converter\FreeVideoConverter.exe
O4 - Global Startup: C:\Users\johan\Desktop\PlayClaw.lnk . (.Sytexis Software.)  -- C:\Program Files\Sytexis Software\PlayClaw\PlayClaw.exe
O4 - Global Startup: C:\Users\johan\Desktop\Quick Menu Builder.lnk . (...)  -- C:\Program Files\Mattgo27 Apps\Quick Menu Builder\Qmb.exe
O4 - Global Startup: C:\Users\johan\Desktop\Rip It !.lnk . (.Bech (http://www.sed-p.net).)  -- C:\Program Files\Rip It !\RipIt.exe
O4 - Global Startup: C:\Users\johan\Desktop\Team Fortress 2.url . (...)  -- C:\Users\johan\Desktop\Team Fortress 2.url
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\dc-unlocker client.lnk . (...)  -- C:\Program Files\DC-Unlocker\dc-unlocker2client.exe (.not file.)
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free CD Ripper.lnk . (.Koyote Soft.)  -- C:\Program Files\Free CD Ripper\FreeCDRipper.exe
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Video Converter.lnk . (.Koyote Soft.)  -- C:\Program Files\Free Video Converter\FreeVideoConverter.exe
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VDownloader.lnk . (.Vitzo.)  -- C:\Program Files\VDownloader\VDownloader.exe
O4 - Global Startup: C:\Users\johan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..)  -- C:\Program Files\uTorrent\uTorrent.exe
~ Scan Global Startup in 00mn 02s


---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s


---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Clavier virtuel - {0C4CC089-D306-440D-9772-464E226F6539} . (...) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\kbrd.ico
O9 - Extra button: Clavier virtuel - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Clavier virtuel - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\logo.ico
~ Scan IE Extra Buttons in 00mn 00s


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s


---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} (Cisco SSL VPN Relay Loader) - https://portail.eseo.fr/+CSCOL+/csvrloader32.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} () - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} () - http://fichiers.touslesdrivers.com/maconfig/MaConfig_5_2_1_0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Scan Objets ActiveX in 00mn 00s


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{59D139A4-E0DA-44DE-838C-A10289CD2B11}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{59D139A4-E0DA-44DE-838C-A10289CD2B11}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{59D139A4-E0DA-44DE-838C-A10289CD2B11}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s


---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} . (.Advanced Micro Devices - MIME Video Detector for IE.) -- C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} . (.Advanced Micro Devices - MIME Video Detector for IE.) -- C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
~ Scan Protocole Additionnel in 00mn 00s


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service:  (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service:  (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: C:\Program Files\Nero\Update\NASvc.exe (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 266.5.) - C:\Windows\System32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
~ Scan Services in 00mn 00s


---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s


---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s


---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Norton Security Scan for johan.job
[MD5.00000000000000000000000000000000] [APT] [4709] (...) -- C:\Users\johan\AppData\Local\Temp\launchie.vbs \\B (.not file.)
[MD5.0CB0AA071C7B86A64F361DCFDF357329] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.B174DE0DE6C9AA8AFFD3B926653E625F] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
[MD5.A5062EA164067050F2DFA9DCA98CA63A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.343E9EFB16136611B0322A1E94353C41] [APT] [Norton Security Scan for johan] (.Symantec Corporation.) -- C:\Program Files\NORTON~2\Engine\372~1.5\Nss.exe
[MD5.E6019253451DBB67740F7027AD9E1CB5] [APT] [RealUpgradeLogonTaskS-1-5-21-3026010304-3200845865-1493322001-1000] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.E6019253451DBB67740F7027AD9E1CB5] [APT] [RealUpgradeScheduledTaskS-1-5-21-3026010304-3200845865-1493322001-1000] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files\ClickPotatoLite\bin\10.0.701.0\ClickPotatoLiteSA.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{10EC951A-CAD7-438D-8B4F-51961E0224D6}] (...) -- C:\Users\johan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8622QBTJ\everesthome220.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{36E8D685-BC13-4505-86A5-2DDABD6EC5BE}] (...) -- C:\Program Files\Alwil Software\Avast5\chrome\ChromeInst.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{3CC75D10-E5F8-4E3E-ADEF-D12B67BAFB7F}] (...) -- D:\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4A5F9B4B-826F-4D4C-A3B2-095580B3EE62}] (...) -- C:\Users\johan\Desktop\burnout paradis\BP The Ultimate Box\rld-burp\Support\Burnout(TM) Paradise The Ultimate Box_code.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4B326D08-9C75-4BC2-880C-E054F0234B3B}] (...) -- G:\Setup (1).exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{86E349DB-C1B7-4896-8479-7D97C30B0792}] (...) -- E:\wmp11-windowsxp-x86-FR-FR.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{994EDA51-8A2B-4132-A45D-7A29A10DD4AA}] (...) -- C:\Program Files\Square Enix\Sleeping Dogs\redist\D3D11Install_2010.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{9E5447EF-6093-4BF0-91C5-C9A6EC3A1CFC}] (...) -- C:\Users\johan\Downloads\wmp11-windowsxp-x86-FR-FR.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{CF2B0C91-9A20-427F-AFE6-6665E389214D}] (...) -- D:\Setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E3E962FD-A099-4C57-B159-B75B9E5CD7AE}] (...) -- C:\Users\johan\Desktop\DTLite4356-0091.exe (.not file.)
[MD5.FF6A019A3A033B66CF316814BAA10FE8] [APT] [{EC38201A-820F-4C3A-B604-A32DD8AB63CA}] (.Hewlett-Packard Co..) -- C:\Program Files\HP\Digital Imaging\HP Print Screen\prnsys.exe
[MD5.00000000000000000000000000000000] [APT] [{FB0668A5-8C6E-4998-A68C-D7E390BE5E6E}] (...) -- C:\Users\johan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZNJW9DVK\wmp11-windowsxp-x86-FR-FR[1].exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [AppleSoftwareUpdate] (...) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe (.not file.)
~ Scan Scheduled Task in 00mn 04s


---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Macromedia Shockwave Director 9.0 - {166B1BCA-3F9C-11CF-8075-444553540000} . (.Macromedia, Inc. - Shockwave ActiveX Control.) -- C:\Windows\System32\Macromed\Director\SwDir.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media Player 2 ActiveX Control.) -- C:\Windows\system32\msdxm.ocx
O40 - ASIC: Windows Media Player 5.2 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (...) -- C:\Windows\INF\mswmp.inf
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.5 r502.) -- C:\Windows\system32\Macromed\Flash\Flash32_11_5_502_110.ocx
~ Scan Active Setup in 00mn 00s


---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver:  (KLIF) . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) - C:\Windows\System32\DRIVERS\klif.sys
O41 - Driver:  (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\System32\DRIVERS\klim6.sys
O41 - Driver:  (kltdi) . (.Kaspersky Lab - Network filtering component.) - C:\Windows\System32\DRIVERS\kltdi.sys
O41 - Driver:  (kneps) . (.Kaspersky Lab - KNEPS Power.) - C:\Windows\System32\DRIVERS\kneps.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver:  (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s


---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.22beta - (.Pas de propriétaire.) [HKLM] -- 7-Zip
O42 - Logiciel: AIDA32 v3.93 - (.Tamas Miklos.) [HKLM] -- AIDA32_is1
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {A25FF1C0-80B6-4B8B-A551-DC525697A408}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM] -- {071E3D6A-79AB-0085-8CCF-EF52AEC6666F}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM] -- {33FFD86B-569C-9E8D-6659-A1F84D07CAD0}
O42 - Logiciel: AMD Steady Video Plug-In  - (.AMD.) [HKLM] -- {4F198874-3C7D-5983-02EB-9E234C43F174}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {47FA2C44-D148-4DBC-AF60-B91934AA4842}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.4) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Advanced Video FX Engine - (.Pas de propriétaire.) [HKLM] -- Advanced Video FX Engine
O42 - Logiciel: Aliens vs. Predator - (.Rebellion.) [HKLM] -- Steam App 10680
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EB879750-CCBD-4013-BFD5-0294D4DA5BD0}
O42 - Logiciel: Application Profiles - (.Nom de votre société.) [HKLM] -- {C496ED25-F3EC-0CBC-37DB-B31C6E6592C9}
O42 - Logiciel: Assassin's Creed - (.Ubisoft.) [HKLM] -- {8CFA9151-6404-409A-AF22-4632D04582FD}
O42 - Logiciel: Audacity 2.0 - (.Audacity Team.) [HKLM] -- Audacity_is1
O42 - Logiciel: Burnout(TM) Paradise The Ultimate Box - (.Electronic Arts.) [HKLM] -- {9A996B6A-846E-4A89-B9C4-17546B7BE49F}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Call of Duty - (.Pas de propriétaire.) [HKLM] -- Call of Duty
O42 - Logiciel: Call of Duty: Modern Warfare 3 - (.Infinity Ward - Sledgehammer Games.) [HKLM] -- Steam App 42680
O42 - Logiciel: Call of Duty: Modern Warfare 3 - Dedicated Server - (.Infinity Ward - Sledgehammer Games.) [HKLM] -- Steam App 42750
O42 - Logiciel: Call of Duty: Modern Warfare 3 - Multiplayer - (.Infinity Ward - Sledgehammer Games.) [HKLM] -- Steam App 42690
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM] -- {E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}
O42 - Logiciel: Creative Live! Cam Center - (.Pas de propriétaire.) [HKLM] -- Creative Live! Cam Center
O42 - Logiciel: Creative Live! Cam Manager - (.Pas de propriétaire.) [HKLM] -- Creative Live! Cam Manager
O42 - Logiciel: Creative Live! Cam Video IM Driver (1.01.01.00) - (.Pas de propriétaire.) [HKLM] -- Creative VF0220
O42 - Logiciel: Creative Software AutoUpdate - (.Pas de propriétaire.) [HKLM] -- Creative Software AutoUpdate
O42 - Logiciel: Creative System Information - (.Pas de propriétaire.) [HKLM] -- SysInfo
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Dishonored - (.Pas de propriétaire.) [HKLM] -- Dishonored_is1
O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..) [HKLM] -- EADM
O42 - Logiciel: EA SPORTS online 2004 - (.Pas de propriétaire.) [HKLM] -- 82A44D22-9452-49FB-00FB-CEC7DCAF7E23
O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1
O42 - Logiciel: Empire: Total War - (.The Creative Assembly.) [HKLM] -- Steam App 10500
O42 - Logiciel: FIFA 11 - (.Electronic Arts.) [HKLM] -- {3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}
O42 - Logiciel: FIFA 2004 - (.Pas de propriétaire.) [HKLM] -- {782DDB70-3DF4-4366-00BF-E3767BCD173B}
O42 - Logiciel: ForceDownload - (.Aedge Performance BCN SL.) [HKLM] -- {99870497-1A9D-49FC-949F-ECF4986ABA1F}
O42 - Logiciel: FormatFactory 2.96 - (.Free Time.) [HKLM] -- FormatFactory
O42 - Logiciel: Fraps - (.Pas de propriétaire.) [HKLM] -- Fraps
O42 - Logiciel: Free CD Ripper V2.0 - (.Koyote Soft.) [HKLM] -- Free CD Ripper_is1
O42 - Logiciel: Free Video Converter V 3.1 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1
O42 - Logiciel: Google SketchUp Pro 8 - (.Google, Inc..) [HKLM] -- {A2DB6348-117F-4FED-BEC6-E4F190E8FA2A}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP PSC & OfficeJet 3.0 - (.HP.) [HKLM] -- {F38FA38A-7E5A-4209-88ED-4DE21CD20EEF}
O42 - Logiciel: High-Definition Video Playback - (.Nero AG.) [HKLM] -- {9193490D-5229-4FC4-9BB9-A6D63C09574A}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2461678
O42 - Logiciel: Java 7 Update 9 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Kaspersky Anti-Virus 2013 - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Kaspersky Anti-Virus 2013 - (.Kaspersky Lab.) [HKLM] -- {560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: LAME v3.99.3 (for Windows) - (.Pas de propriétaire.) [HKLM] -- LAME_is1
O42 - Logiciel: LastChaosFRA - (.BarunsonGames CO., LTD..) [HKLM] -- {CC431AE0-60DC-451B-A7A9-FBBC2BE5E86F}
O42 - Logiciel: Logitech Gaming Software - (.Pas de propriétaire.) [HKLM] -- {B9242864-2841-4ADE-86E0-8F90F91B04DD}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.65.1.1000 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Medieval II Total War - (.SEGA.) [HKLM] -- {C0698BDA-0D29-40EE-8570-A31106DF9AB1}
O42 - Logiciel: Memories Disc Creator 2.0 - (.Memories Disc Creator 2.0.) [HKLM] -- {2E132061-C78A-48D4-A899-1D13B9D189FA}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{8283FD64-6A3B-4104-9E12-7CA25EF29A1A}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (English) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{3E8EA473-ECCE-405F-A9CA-59446AEADD3A}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{928D7B99-2BEA-49F9-83B8-20FA57860643}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{2C95E7EE-FEA7-4B3A-A6E5-DF90A88B816A}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Rise of Nations - (.Microsoft.) [HKLM] -- RiseOfNations 1.0
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU] -- SkyDriveSetup.exe
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 - (.Microsoft Corporation.) [HKLM] -- {5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mp3tag v2.52 - (.Florian Heidenreich.) [HKLM] -- Mp3tag
O42 - Logiciel: MyFreeCodec - (.Pas de propriétaire.) [HKCU] -- MyFreeCodec
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.10.0514 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
O42 - Logiciel: NVIDIA Pilote 3D Vision 266.58 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote graphique 266.58 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo
O42 - Logiciel: Napoleon: Total War - (.The Creative Assembly.) [HKLM] -- Steam App 34030
O42 - Logiciel: Nero 11 Kwik Themes Basic - (.Nero AG.) [HKLM] -- {5A212B2D-140D-46F4-B625-2D1CA5A00594}
O42 - Logiciel: Nero Audio Pack 1 - (.Nero AG.) [HKLM] -- {A7A0BF2E-31CC-49E3-9913-52C503EB969D}
O42 - Logiciel: Nero Core Components 11 - (.Nero AG.) [HKLM] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Kwik Media - (.Nero AG.) [HKLM] -- {E3749996-2D35-4591-B06A-4F62F2A5E18E}
O42 - Logiciel: Nero Kwik Media - (.Nero AG.) [HKLM] -- {FAF448F1-4460-440C-9280-07F66A63D6F5}
O42 - Logiciel: Nero Kwik Media Help (CHM) - (.Nero AG.) [HKLM] -- {B9B1BA7F-7E07-49DD-A713-5B397A5BB66B}
O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Norton Security Scan - (.Symantec Corporation.) [HKLM] -- NSS
O42 - Logiciel: OpenOffice.org 3.4 - (.OpenOffice.org.) [HKLM] -- {2F90A789-DD1E-41CE-BFCA-BD78213BABC7}
O42 - Logiciel: PC Suite - (.Huawei Technologies Co.,Ltd.) [HKLM] -- PC Suite
O42 - Logiciel: PhotoFiltre 7 - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre 7
O42 - Logiciel: PlayClaw - (.Sytexis Software.) [HKLM] -- PlayClaw
O42 - Logiciel: Pro Evolution Soccer 4 - (.Nom de votre société.) [HKLM] -- InstallShield_{AC056D10-E6C0-4085-BAD6-EEBB5EC76D66}
O42 - Logiciel: Quick Menu Builder 1.2 - (.Pas de propriétaire.) [HKLM] -- QuickMenuBuilder
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {0E64B098-8018-4256-BA23-C316A43AD9B0}
O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 15.0
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva
O42 - Logiciel: Rip It ! (CD) - (.Bech.) [HKLM] -- {F372DBE7-3035-4939-A750-FD96664100D5}}_is1
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: SPEED-LINK DUAL SHOCK ADAPTER - (.GASIA.) [HKLM] -- {AEC7CD2E-2BB5-40C3-9592-078F64677E6C}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2572078
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2604121
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2633870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656351
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656368
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656368v2
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2656405
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2686827
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2729449
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2737019
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C6997D22-CC93-4ED9-AD8A-02C3F3D2F1F9}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5DD3FF90-B302-45B2-A188-C5EA7ACD5D46}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D33B9EF5-3801-496A-A2D6-B7F4BE972D75}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B145DBBB-7778-4A5D-9D2B-DA6569F02391}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0D5F849-D9D5-48ED-99D0-C74D7BFA6A09}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{E34960DB-2A93-45DB-A208-02650F7AB09C}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{2623A96B-78E5-42CC-AB55-6A3969B32E36}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{293FB6BE-D3EB-4162-B522-F9108040B9FE}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{43171CAD-DC60-4E7B-9703-B2EC18001B9F}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687314) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C8F44A46-5C2F-43D8-A0E7-B32E098EDA63}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3579CE34-B225-4B19-A3AF-DE5F562A212F}
O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{EF5B5C7F-20CB-4A3A-AC3D-F5DE2C2BFDC7}
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition  - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{488F0918-97F9-4CD0-8AD5-8986A46AC962}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Editi - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8F311D6C-D8DD-4C32-9457-1A129CABD1A5}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edi - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AEA16A27-0B97-4670-818F-A98D06EC0A6F}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edi - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edit - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A8732F0-C20F-4A9B-A2A9-66FE7A586C35}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2687315) 32-Bit Edition  - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71190DF4-8724-4A56-9054-AE97FDC57115}
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client P - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client P - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870
O42 - Logiciel: Shockwave - (.Pas de propriétaire.) [HKLM] -- Shockwave
O42 - Logiciel: ShopperReports - (.ShopperReports.) [HKLM] -- ShoppingReport2
O42 - Logiciel: SightSpeed - (.SightSpeed Inc..) [HKLM] -- SightSpeed
O42 - Logiciel: Star Wars Battlefront II - (.LucasArts.) [HKLM] -- {3D374523-CFDE-461A-827E-2A102E2AB365}
O42 - Logiciel: Steam - (.Valve.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Team Fortress 2 - (.Valve.) [HKLM] -- Steam App 440
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2600217) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217
O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}
O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{620E77C0-CDFE-4C14-AAEB-830ABB65864C}
O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8153EC80-C988-4336-8DAF-6D99C0D26E0C}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5DB2894C-2DA4-4DEF-A051-795AE799964A}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{B83A8864-A85D-437E-9D4C-27350765BF46}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760413) 32-B - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{9832AED0-6A0C-4311-9227-FC9CB54F87DD}
O42 - Logiciel: Updater Service - (.Pas de propriétaire.) [HKLM] -- Updater Service
O42 - Logiciel: VDownloader 3.9.1300 - (.Vitzo Limited.) [HKLM] -- {A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1
O42 - Logiciel: VLC media player 2.0.2 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Warcraft III - (.Pas de propriétaire.) [HKLM] -- Warcraft III
O42 - Logiciel: WinPcap 4.1.1 - (.CACE Technologies.) [HKLM] -- WinPcapInst
O42 - Logiciel: WinRAR 4.11 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {AF844339-2F8A-4593-81B3-9F4C54038C4E}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {E5B21F11-6933-4E0B-A25C-7963E3C07D11}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: avast! Free Antivirus v7.0.1466.0 - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM] -- uTorrent

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ASProtect]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AdTools, Inc.]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Google]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Crossrider]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\ShoppingReport2]
[HKCU\Software\AppDataLow\Software\Smartbar]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Audacity]
[HKCU\Software\Battle.net]
[HKCU\Software\BitTorrent]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Bugsplat]
[HKCU\Software\CDDB]
[HKCU\Software\Cisco Systems]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Convar]
[HKCU\Software\Cr_Installer]
[HKCU\Software\Creative Tech]
[HKCU\Software\Criterion Games]
[HKCU\Software\DT Soft]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\DivX]
[HKCU\Software\Do The Evolution! - Next Generation]
[HKCU\Software\EA Games]
[HKCU\Software\EA Sports]
[HKCU\Software\EMME]
[HKCU\Software\EffectMgr]
[HKCU\Software\Fraps3]
[HKCU\Software\FreeCDRIP]
[HKCU\Software\FreeTime]
[HKCU\Software\GNU]
[HKCU\Software\GTAGarage]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\Iminent]
[HKCU\Software\InstallCore]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Lavalys]
[HKCU\Software\Leadertech]
[HKCU\Software\Licenses]
[HKCU\Software\Logitech]
[HKCU\Software\LucasArts]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\ManiacTools]
[HKCU\Software\Mattgo27 Apps]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Myfree Codec]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Oak Technology]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Orange]
[HKCU\Software\PDFCreator]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\Samsung]
[HKCU\Software\SearchCore for Browsers]
[HKCU\Software\SecuROM]
[HKCU\Software\ShoppingReport2]
[HKCU\Software\SightSpeed Inc]
[HKCU\Software\Softonic]
[HKCU\Software\SweetIM]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Creative Assembly]
[HKCU\Software\TightVNC]
[HKCU\Software\Tomato]
[HKCU\Software\Trolltech]
[HKCU\Software\Tutorials]
[HKCU\Software\Unlimited Possibilities]
[HKCU\Software\Valve]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wondershare]
[HKCU\Software\Xilisoft]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\hblitesa]
[HKCU\Software\mozilla]
[HKCU\Software\spookie]
[HKLM\Software\3Com]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ALWIL Software]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\Activision]
[HKLM\Software\Adobe]
[HKLM\Software\AedgePerformanceBCN]
[HKLM\Software\America Online]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\AviSynth]
[HKLM\Software\Babylon]
[HKLM\Software\BarunsonGames CO., LTD.]
[HKLM\Software\BrowserChoice]
[HKLM\Software\BrowserMngr]
[HKLM\Software\Bunndle]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\DC-Unlocker]
[HKLM\Software\DT Soft]
[HKLM\Software\DataMngr]
[HKLM\Software\Debug]
[HKLM\Software\DiskSoftware]
[HKLM\Software\DivX]
[HKLM\Software\Driver-Soft]
[HKLM\Software\DriverTuner]
[HKLM\Software\DriverTuner_Init]
[HKLM\Software\EA Games]
[HKLM\Software\EA SPORTS]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Empire Interactive]
[HKLM\Software\FileServe]
[HKLM\Software\Florian Heidenreich]
[HKLM\Software\Fraps2]
[HKLM\Software\GASIA]
[HKLM\Software\GNU]
[HKLM\Software\Google]
[HKLM\Software\HBLite]
[HKLM\Software\HP]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Huawei technologies]
[HKLM\Software\Hyperionics]
[HKLM\Software\ICE]
[HKLM\Software\Iminent]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KONAMI]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Khronos]
[HKLM\Software\LEAD Technologies, Inc.]
[HKLM\Software\Lame For Audacity]
[HKLM\Software\LastChaosFRA]
[HKLM\Software\Logitech]
[HKLM\Software\LucasArts]
[HKLM\Software\MCCI]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MarkAny]
[HKLM\Software\McAfee.com]
[HKLM\Software\Mindscape]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Myfree Codec]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\NeoSmart Technologies]
[HKLM\Software\Nero]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\Oak Technology]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SEGA]
[HKLM\Software\Samsung]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Sierra OnLine]
[HKLM\Software\SightSpeed Inc]
[HKLM\Software\Square Enix]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\SweetIM]
[HKLM\Software\Symantec]
[HKLM\Software\Systweak]
[HKLM\Software\Tarma Installer]
[HKLM\Software\Ubisoft]
[HKLM\Software\VDownloader]
[HKLM\Software\Valve]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WinPcap]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wondershare]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Xpiral]
[HKLM\Software\lameme]
[HKLM\Software\mcafeeupdater]
~ Scan Softwares in 00mn 00s


---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/12/2011 - 21:31:50 - [3,440] ----D C:\Program Files\7-Zip
O43 - CFD: 23/05/2012 - 12:35:21 - [158,607] ----D C:\Program Files\Adobe
O43 - CFD: 08/11/2012 - 20:34:38 - [4,589] ----D C:\Program Files\AIDA32 - Personal System Information
O43 - CFD: 02/06/2012 - 21:29:37 - [0,000] ----D C:\Program Files\Alice
O43 - CFD: 04/07/2010 - 17:11:58 - [286,554] ----D C:\Program Files\Alwil Software
O43 - CFD: 20/03/2012 - 20:20:17 - [0,208] ----D C:\Program Files\AMD
O43 - CFD: 03/09/2012 - 10:24:57 - [1,711] ----D C:\Program Files\AMD APP
O43 - CFD: 01/05/2012 - 12:42:29 - [0,378] ----D C:\Program Files\AMD AVT
O43 - CFD: 30/03/2011 - 11:56:01 - [20,504] ----D C:\Program Files\ATI
O43 - CFD: 03/09/2012 - 10:24:34 - [66,559] ----D C:\Program Files\ATI Technologies
O43 - CFD: 30/06/2012 - 21:08:42 - [42,369] ----D C:\Program Files\Audacity
O43 - CFD: 25/10/2012 - 18:15:18 - [-2038,213] ----D C:\Program Files\Bethesda Softworks
O43 - CFD: 11/02/2012 - 16:34:46 - [1179,855] ----D C:\Program Files\Call of Duty
O43 - CFD: 11/11/2012 - 21:02:42 - [4,862] ----D C:\Program Files\CCleaner
O43 - CFD: 02/10/2012 - 20:24:11 - [-1348,383] ----D C:\Program Files\Civilisation V
O43 - CFD: 16/10/2012 - 20:47:53 - [592,979] ----D C:\Program Files\Common Files
O43 - CFD: 25/10/2012 - 17:12:51 - [28,389] ----D C:\Program Files\Creative
O43 - CFD: 25/10/2012 - 05:36:40 - [25,681] ----D C:\Program Files\DAEMON Tools Lite
O43 - CFD: 13/11/2011 - 16:57:13 - [0,001] ----D C:\Program Files\Dialup
O43 - CFD: 08/07/2010 - 21:35:27 - [0,758] ----D C:\Program Files\DIFX
O43 - CFD: 12/07/2010 - 11:47:14 - [0] ----D C:\Program Files\directx
O43 - CFD: 23/10/2010 - 17:18:54 - [-953,514] ----D C:\Program Files\EA SPORTS
O43 - CFD: 01/10/2012 - 17:13:45 - [-523,104] ----D C:\Program Files\Electronic Arts
O43 - CFD: 04/07/2010 - 13:27:21 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 23/03/2012 - 18:11:03 - [18,568] ----D C:\Program Files\Free CD Ripper
O43 - CFD: 27/04/2012 - 16:54:26 - [10,901] ----D C:\Program Files\Free Video Converter
O43 - CFD: 03/02/2012 - 23:45:33 - [113,250] ----D C:\Program Files\FreeTime
O43 - CFD: 24/09/2012 - 15:53:55 - [168,736] ----D C:\Program Files\Google
O43 - CFD: 15/03/2012 - 19:32:27 - [768,536] ----D C:\Program Files\Grand theft auto San andreas
O43 - CFD: 03/02/2012 - 23:27:18 - [165,966] ----D C:\Program Files\HP
O43 - CFD: 22/10/2012 - 22:14:35 - [115,631] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 21/11/2012 - 06:01:04 - [6,441] ----D C:\Program Files\Internet Explorer
O43 - CFD: 25/10/2012 - 17:48:57 - [122,056] ----D C:\Program Files\Java
O43 - CFD: 25/11/2012 - 11:22:48 - [139,759] ----D C:\Program Files\Kaspersky Lab
O43 - CFD: 08/07/2010 - 22:33:08 - [2025,582] ----D C:\Program Files\KONAMI
O43 - CFD: 20/09/2012 - 21:26:57 - [1,540] ----D C:\Program Files\Lame For Audacity
O43 - CFD: 09/11/2012 - 10:19:10 - [15,945] ----D C:\Program Files\Lavalys
O43 - CFD: 08/07/2010 - 16:38:44 - [10,377] ----D C:\Program Files\Logitech
O43 - CFD: 09/12/2011 - 23:51:17 - [628,786] ----D C:\Program Files\LucasArts
O43 - CFD: 25/11/2012 - 15:57:05 - [12,631] ----D C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 01/01/2012 - 13:28:29 - [2,414] ----D C:\Program Files\MarkAny
O43 - CFD: 08/07/2010 - 23:13:50 - [0,211] ----D C:\Program Files\MarkAnyContentSAFER
O43 - CFD: 27/08/2012 - 22:27:57 - [2,464] ----D C:\Program Files\Mattgo27 Apps
O43 - CFD: 30/05/2012 - 21:04:25 - [909,763] ----D C:\Program Files\Microsoft Games
O43 - CFD: 28/07/2011 - 18:04:18 - [564,208] ----D C:\Program Files\Microsoft Office
O43 - CFD: 13/05/2012 - 01:42:19 - [40,838] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 03/08/2012 - 10:10:51 - [5,267] ----D C:\Program Files\Microsoft SkyDrive
O43 - CFD: 08/07/2010 - 13:01:26 - [0,014] ----D C:\Program Files\Microsoft Visual Studio
O43 - CFD: 08/07/2010 - 12:59:43 - [1,323] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 08/07/2010 - 22:16:32 - [3,554] ----D C:\Program Files\Microsoft Works
O43 - CFD: 09/07/2010 - 09:09:46 - [7,789] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 31/07/2012 - 13:36:59 - [8,325] ----D C:\Program Files\Mp3tag
O43 - CFD: 08/07/2010 - 13:01:31 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 29/09/2011 - 21:46:34 - [26,527] ----D C:\Program Files\MSECache
O43 - CFD: 08/07/2010 - 22:13:13 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 22/01/2012 - 23:34:32 - [10,467] ----D C:\Program Files\MyFree Codec
O43 - CFD: 05/05/2012 - 23:05:23 - [0] ----D C:\Program Files\NeoSmart Technologies
O43 - CFD: 29/08/2012 - 09:46:20 - [282,358] ----D C:\Program Files\Nero
O43 - CFD: 23/08/2012 - 14:02:11 - [13,634] ----D C:\Program Files\Norton Security Scan
O43 - CFD: 23/08/2012 - 14:02:07 - [8,216] ----D C:\Program Files\NortonInstaller
O43 - CFD: 23/02/2011 - 20:24:37 - [308,312] ----D C:\Program Files\NVIDIA Corporation
O43 - CFD: 20/06/2012 - 11:22:49 - [303,986] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 23/01/2012 - 22:39:19 - [49,203] ----D C:\Program Files\PC Suite
O43 - CFD: 18/03/2012 - 20:12:43 - [2,949] ----D C:\Program Files\PDFCreator
O43 - CFD: 11/06/2012 - 20:55:26 - [7,801] ----D C:\Program Files\PhotoFiltre 7
O43 - CFD: 02/06/2012 - 15:54:54 - [72,431] ----D C:\Program Files\QuickTime
O43 - CFD: 23/08/2012 - 13:56:30 - [94,351] ----D C:\Program Files\Real
O43 - CFD: 23/08/2012 - 14:02:07 - [2,688] ----D C:\Program Files\Recuva
O43 - CFD: 14/07/2009 - 05:51:09 - [39,430] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 11/11/2011 - 14:00:33 - [5,187] ----D C:\Program Files\Rip It !
O43 - CFD: 01/01/2012 - 13:29:36 - [42,151] ----D C:\Program Files\Samsung
O43 - CFD: 08/07/2010 - 22:37:54 - [-986,405] ----D C:\Program Files\SEGA
O43 - CFD: 09/04/2011 - 18:34:47 - [26,573] ----D C:\Program Files\SightSpeed
O43 - CFD: 29/11/2012 - 18:20:03 - [-434,445] ----D C:\Program Files\Steam
O43 - CFD: 12/12/2010 - 21:24:47 - [2,763] ----D C:\Program Files\Sytexis Software
O43 - CFD: 10/11/2011 - 22:35:00 - [-1384,139] ----D C:\Program Files\Ubisoft
O43 - CFD: 14/07/2009 - 05:17:15 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 20/11/2012 - 20:15:01 - [0,855] ----D C:\Program Files\uTorrent
O43 - CFD: 29/08/2012 - 09:20:26 - [40,051] ----D C:\Program Files\VDownloader
O43 - CFD: 17/03/2012 - 19:20:33 - [0] ----D C:\Program Files\Video Codec
O43 - CFD: 07/07/2010 - 11:26:56 - [98,122] ----D C:\Program Files\VideoLAN
O43 - CFD: 03/12/2010 - 18:46:31 - [0,285] ----D C:\Program Files\VID_11FF&PID_3341
O43 - CFD: 08/11/2012 - 22:54:52 - [597,738] ----D C:\Program Files\Warcraft III
O43 - CFD: 23/02/2011 - 17:44:21 - [3,112] ----D C:\Program Files\Windows Defender
O43 - CFD: 11/05/2012 - 17:13:20 - [6,906] ----D C:\Program Files\Windows Journal
O43 - CFD: 16/04/2012 - 12:24:47 - [90,868] ----D C:\Program Files\Windows Live
O43 - CFD: 23/02/2011 - 17:44:22 - [6,948] ----D C:\Program Files\Windows Mail
O43 - CFD: 31/10/2011 - 14:10:42 - [0,168] ----D C:\Program Files\Windows Media Player
O43 - CFD: 04/07/2010 - 13:27:21 - [11,875] ----D C:\Program Files\Windows NT
O43 - CFD: 23/02/2011 - 17:44:22 - [4,309] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 01/01/2012 - 13:31:46 - [0,181] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 23/02/2011 - 17:44:22 - [8,249] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 23/11/2011 - 16:09:18 - [0,182] ----D C:\Program Files\WinPcap
O43 - CFD: 12/07/2012 - 21:13:31 - [3,882] ----D C:\Program Files\WinRAR
O43 - CFD: 29/11/2012 - 18:24:51 - [9,965] ----D C:\Program Files\ZHPDiag
O43 - CFD: 20/06/2011 - 12:28:16 - [3,847] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 23/05/2012 - 12:35:19 - [38,049] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 01/04/2012 - 19:08:57 - [60,279] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 01/05/2012 - 12:42:29 - [2,258] ----D C:\Program Files\Common Files\ATI Technologies
O43 - CFD: 08/07/2010 - 13:01:26 - [0,089] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 11/01/2012 - 21:13:13 - [0,167] ----D C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 11/01/2012 - 21:10:19 - [35,024] ----D C:\Program Files\Common Files\HP
O43 - CFD: 08/07/2010 - 22:32:28 - [15,593] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 24/09/2012 - 19:39:55 - [1,184] ----D C:\Program Files\Common Files\Java
O43 - CFD: 08/07/2010 - 16:38:52 - [0,992] ----D C:\Program Files\Common Files\Logitech
O43 - CFD: 25/02/2012 - 18:55:11 - [285,011] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 29/08/2012 - 09:44:59 - [59,787] ----D C:\Program Files\Common Files\Nero
O43 - CFD: 14/07/2009 - 03:37:05 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 03:37:05 - [39,205] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 13/11/2012 - 19:30:37 - [0,505] ----D C:\Program Files\Common Files\Steam
O43 - CFD: 20/11/2012 - 22:45:57 - [0] ----D C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 11/11/2011 - 01:44:36 - [42,830] ----D C:\Program Files\Common Files\System
O43 - CFD: 19/09/2011 - 18:45:15 - [7,397] ----D C:\Program Files\Common Files\Tomato
O43 - CFD: 08/07/2010 - 21:54:38 - [0] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 23/08/2012 - 13:56:27 - [0,336] ----D C:\Program Files\Common Files\xing shared
O43 - CFD: 09/11/2012 - 09:45:29 - [30,101] ----D C:\ProgramData\Adobe
O43 - CFD: 04/07/2010 - 17:11:58 - [2,873] ----D C:\ProgramData\Alwil Software
O43 - CFD: 03/09/2012 - 10:24:03 - [0,832] ----D C:\ProgramData\AMD
O43 - CFD: 19/03/2012 - 21:56:56 - [38,821] ----D C:\ProgramData\Apple
O43 - CFD: 02/06/2012 - 15:54:31 - [25,578] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 05:17:42 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 21/10/2011 - 20:48:05 - [0] ----D C:\ProgramData\Ask
O43 - CFD: 10/12/2011 - 00:16:12 - [0,001] ----D C:\ProgramData\Astroburn Pro
O43 - CFD: 03/09/2012 - 10:24:59 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 01/12/2011 - 21:01:19 - [687,639] ----D C:\ProgramData\AVAST Software
O43 - CFD: 17/03/2012 - 19:21:49 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 23/03/2012 - 18:11:01 - [0,000] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 09/09/2012 - 20:14:48 - [5,433] ----D C:\ProgramData\Browser Manager
O43 - CFD: 04/07/2010 - 13:27:21 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 20/11/2012 - 20:15:01 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 17/09/2010 - 19:57:11 - [0,001] ----D C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 14/07/2009 - 05:17:42 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 21/12/2010 - 23:54:40 - [0,172] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 05:17:42 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 22/03/2012 - 19:20:13 - [0,000] ----D C:\ProgramData\Driver Manager
O43 - CFD: 01/10/2012 - 17:22:08 - [0,115] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 04/07/2010 - 13:27:21 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 05:17:42 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 01/12/2011 - 21:42:43 - [7,439] ----D C:\ProgramData\Google
O43 - CFD: 10/06/2011 - 22:31:12 - [1,357] ----D C:\ProgramData\HBLiteSA
O43 - CFD: 23/01/2012 - 21:55:56 - [0,002] ----D C:\ProgramData\IBUpdaterService
O43 - CFD: 29/11/2012 - 18:20:20 - [203,646] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 25/11/2012 - 15:56:59 - [6,807] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 09/04/2011 - 13:27:40 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 04/07/2010 - 13:27:21 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 11/11/2012 - 20:34:30 - [373,026] -S--D C:\ProgramData\Microsoft
O43 - CFD: 10/07/2011 - 19:49:29 - [0] ----D C:\ProgramData\Microsoft Games
O43 - CFD: 20/11/2012 - 23:43:24 - [0,402] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 03/08/2012 - 10:10:32 - [0] ----D C:\ProgramData\Microsoft SkyDrive
O43 - CFD: 04/07/2010 - 13:27:21 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 01/11/2011 - 15:23:17 - [2,527] ----D C:\ProgramData\Nero
O43 - CFD: 23/08/2012 - 14:02:11 - [0,003] ----D C:\ProgramData\Norton
O43 - CFD: 23/08/2012 - 14:02:07 - [0,325] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 29/11/2012 - 18:18:14 - [1,958] ----D C:\ProgramData\NVIDIA
O43 - CFD: 23/02/2011 - 20:23:05 - [0,537] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 08/07/2010 - 21:53:02 - [0] ----D C:\ProgramData\PC Suite
O43 - CFD: 20/11/2012 - 20:13:16 - [2,892] ----D C:\ProgramData\Real
O43 - CFD: 03/02/2012 - 23:42:41 - [2,722] ----D C:\ProgramData\Samsung
O43 - CFD: 14/07/2009 - 05:17:42 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 08/07/2010 - 16:00:44 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 23/08/2012 - 14:02:17 - [405,837] ----D C:\ProgramData\Symantec
O43 - CFD: 02/05/2012 - 14:06:54 - [0,280] ----D C:\ProgramData\Tarma Installer
O43 - CFD: 14/07/2009 - 05:17:42 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 10/11/2011 - 23:20:29 - [0,000] ----D C:\ProgramData\Ubisoft
O43 - CFD: 22/02/2012 - 15:23:34 - [0,000] ----D C:\ProgramData\Web Installer
O43 - CFD: 31/10/2011 - 14:09:15 - [0,002] ----D C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 23/05/2012 - 12:34:52 - [8,255] ----D C:\Users\johan\AppData\Roaming\Adobe
O43 - CFD: 02/04/2012 - 10:22:43 - [0,020] ----D C:\Users\johan\AppData\Roaming\Apple Computer
O43 - CFD: 06/05/2012 - 17:20:11 - [0] ----D C:\Users\johan\AppData\Roaming\ARA
O43 - CFD: 10/12/2011 - 00:16:07 - [0] ----D C:\Users\johan\AppData\Roaming\Astroburn Pro
O43 - CFD: 30/03/2011 - 12:19:25 - [0] ----D C:\Users\johan\AppData\Roaming\ATI
O43 - CFD: 20/09/2012 - 21:29:52 - [0,001] ----D C:\Users\johan\AppData\Roaming\Audacity
O43 - CFD: 17/03/2012 - 19:21:49 - [0,025] ----D C:\Users\johan\AppData\Roaming\Babylon
O43 - CFD: 23/05/2012 - 12:35:29 - [0,001] ----D C:\Users\johan\AppData\Roaming\com.adobe.example.widget.F826D533138FC008516DC0DE4625BA08DCDBC443.1
O43 - CFD: 08/07/2010 - 21:19:55 - [0,219] ----D C:\Users\johan\AppData\Roaming\Creative
O43 - CFD: 20/11/2012 - 22:48:45 - [1,223] ----D C:\Users\johan\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 08/09/2011 - 18:31:16 - [0,008] ----D C:\Users\johan\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 12/09/2012 - 21:34:18 - [0,000] ----D C:\Users\johan\AppData\Roaming\dvdcss
O43 - CFD: 23/03/2012 - 18:11:17 - [0,003] ----D C:\Users\johan\AppData\Roaming\FreeCDRipper
O43 - CFD: 23/08/2012 - 13:50:46 - [0,001] ----D C:\Users\johan\AppData\Roaming\FreeVideoConverter
O43 - CFD: 30/06/2012 - 21:08:22 - [0] ----D C:\Users\johan\AppData\Roaming\GetRightToGo
O43 - CFD: 01/11/2011 - 16:09:25 - [0,974] ----D C:\Users\johan\AppData\Roaming\Google
O43 - CFD: 10/06/2011 - 22:30:03 - [0] ----D C:\Users\johan\AppData\Roaming\HBLite
O43 - CFD: 04/07/2010 - 13:27:33 - [0] ----D C:\Users\johan\AppData\Roaming\Identities
O43 - CFD: 25/11/2011 - 23:22:03 - [0] ----D C:\Users\johan\AppData\Roaming\InstallShield
O43 - CFD: 23/10/2010 - 17:35:38 - [0,001] ----D C:\Users\johan\AppData\Roaming\Leadertech
O43 - CFD: 08/07/2010 - 21:49:02 - [14,222] ----D C:\Users\johan\AppData\Roaming\Macromedia
O43 - CFD: 25/11/2012 - 15:58:02 - [0] ----D C:\Users\johan\AppData\Roaming\Malwarebytes
O43 - CFD: 20/06/2012 - 10:39:58 - [4,656] -S--D C:\Users\johan\AppData\Roaming\Microsoft
O43 - CFD: 10/07/2011 - 19:49:29 - [2,208] ----D C:\Users\johan\AppData\Roaming\Microsoft Games
O43 - CFD: 08/09/2011 - 20:29:13 - [0] ----D C:\Users\johan\AppData\Roaming\ML
O43 - CFD: 24/09/2012 - 18:59:39 - [0,065] ----D C:\Users\johan\AppData\Roaming\Mp3tag
O43 - CFD: 01/11/2011 - 15:32:20 - [0,054] ----D C:\Users\johan\AppData\Roaming\Nero
O43 - CFD: 08/07/2010 - 16:13:09 - [22,625] ----D C:\Users\johan\AppData\Roaming\OpenOffice.org
O43 - CFD: 08/07/2010 - 21:53:02 - [0,000] ----D C:\Users\johan\AppData\Roaming\PC Suite
O43 - CFD: 11/06/2012 - 21:35:36 - [0,002] ----D C:\Users\johan\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 10/07/2012 - 18:47:53 - [55,866] ----D C:\Users\johan\AppData\Roaming\Real
O43 - CFD: 01/01/2012 - 13:38:25 - [174,320] ----D C:\Users\johan\AppData\Roaming\Samsung
O43 - CFD: 12/12/2010 - 21:24:53 - [0,004] ----D C:\Users\johan\AppData\Roaming\Sytexis Software
O43 - CFD: 03/01/2012 - 20:23:21 - [0] ----D C:\Users\johan\AppData\Roaming\Temp
O43 - CFD: 28/09/2011 - 11:39:18 - [618,681] ----D C:\Users\johan\AppData\Roaming\The Creative Assembly
O43 - CFD: 29/09/2011 - 21:25:30 - [0,052] ----D C:\Users\johan\AppData\Roaming\Tomato
O43 - CFD: 10/11/2011 - 23:20:49 - [0,173] ----D C:\Users\johan\AppData\Roaming\Ubisoft
O43 - CFD: 20/11/2012 - 22:41:17 - [1,525] ----D C:\Users\johan\AppData\Roaming\uTorrent
O43 - CFD: 29/08/2012 - 09:31:31 - [0,281] ----D C:\Users\johan\AppData\Roaming\VDownloader
O43 - CFD: 28/11/2012 - 21:35:46 - [0,081] ----D C:\Users\johan\AppData\Roaming\vlc
O43 - CFD: 16/10/2012 - 20:52:35 - [0,039] ----D C:\Users\johan\AppData\Roaming\WebPlayerBdd
O43 - CFD: 29/02/2012 - 15:03:21 - [0,000] ----D C:\Users\johan\AppData\Roaming\Windows Live Writer
O43 - CFD: 08/07/2010 - 19:05:35 - [0,000] ----D C:\Users\johan\AppData\Roaming\WinRAR
O43 - CFD: 23/05/2012 - 12:34:48 - [14,846] ----D C:\Users\johan\AppData\Local\Adobe
O43 - CFD: 06/07/2011 - 20:30:46 - [13,348] ----D C:\Users\johan\AppData\Local\adslTV
O43 - CFD: 30/03/2011 - 19:52:00 - [3,004] ----D C:\Users\johan\AppData\Local\AliensVsPredator
O43 - CFD: 30/03/2011 - 12:19:36 - [0,000] ----D C:\Users\johan\AppData\Local\AMD
O43 - CFD: 19/03/2012 - 21:56:59 - [0] ----D C:\Users\johan\AppData\Local\Apple
O43 - CFD: 30/05/2012 - 19:25:45 - [0] ----D C:\Users\johan\AppData\Local\Apple Computer
O43 - CFD: 04/07/2010 - 13:27:27 - [0] ----D C:\Users\johan\AppData\Local\Application Data
O43 - CFD: 03/02/2012 - 22:28:26 - [0,027] ----D C:\Users\johan\AppData\Local\ApplicationHistory
O43 - CFD: 30/03/2011 - 12:19:25 - [0,060] ----D C:\Users\johan\AppData\Local\ATI
O43 - CFD: 01/10/2012 - 17:21:30 - [0,486] ----D C:\Users\johan\AppData\Local\Criterion Games
O43 - CFD: 17/10/2011 - 20:41:50 - [0] ----D C:\Users\johan\AppData\Local\Diagnostics
O43 - CFD: 01/10/2012 - 17:17:50 - [98,571] ----D C:\Users\johan\AppData\Local\Downloaded Installations
O43 - CFD: 29/01/2011 - 23:12:25 - [2,621] ----D C:\Users\johan\AppData\Local\Electronic Arts
O43 - CFD: 14/10/2012 - 20:59:28 - [0] ----D C:\Users\johan\AppData\Local\ElevatedDiagnostics
O43 - CFD: 24/09/2012 - 15:56:28 - [0,156] ----D C:\Users\johan\AppData\Local\Google
O43 - CFD: 04/07/2010 - 13:27:27 - [0] ----D C:\Users\johan\AppData\Local\Historique
O43 - CFD: 11/01/2012 - 21:21:19 - [5,572] ----D C:\Users\johan\AppData\Local\HP
O43 - CFD: 14/01/2012 - 21:35:23 - [0,002] ----D C:\Users\johan\AppData\Local\IsolatedStorage
O43 - CFD: 16/10/2012 - 20:52:43 - [0,000] ----D C:\Users\johan\AppData\Local\Kreapixel
O43 - CFD: 03/08/2012 - 10:10:32 - [972,006] ----D C:\Users\johan\AppData\Local\Microsoft
O43 - CFD: 03/02/2012 - 23:54:37 - [0,349] ----D C:\Users\johan\AppData\Local\Microsoft Games
O43 - CFD: 03/08/2011 - 14:09:58 - [0,194] ----D C:\Users\johan\AppData\Local\Microsoft Help
O43 - CFD: 02/05/2012 - 14:04:16 - [0,002] ----D C:\Users\johan\AppData\Local\NeoSmart_Technologies
O43 - CFD: 24/09/2012 - 16:38:40 - [64,781] ----D C:\Users\johan\AppData\Local\Nero
O43 - CFD: 29/08/2012 - 10:07:51 - [0,010] ----D C:\Users\johan\AppData\Local\Nero_AG
O43 - CFD: 23/08/2012 - 13:54:39 - [0] ----D C:\Users\johan\AppData\Local\Real
O43 - CFD: 03/02/2012 - 23:42:41 - [0] ----D C:\Users\johan\AppData\Local\Samsung
O43 - CFD: 29/11/2012 - 18:23:51 - [4,163] ----D C:\Users\johan\AppData\Local\Temp
O43 - CFD: 04/07/2010 - 13:27:27 - [0] ----D C:\Users\johan\AppData\Local\Temporary Internet Files
O43 - CFD: 21/02/2012 - 20:11:36 - [0,007] ----D C:\Users\johan\AppData\Local\VDownloader
O43 - CFD: 06/10/2010 - 14:51:09 - [1016,220] ----D C:\Users\johan\AppData\Local\VirtualStore
O43 - CFD: 04/10/2012 - 19:31:18 - [0,051] ----D C:\Users\johan\AppData\Local\Windows Live
O43 - CFD: 26/02/2012 - 19:53:08 - [0,618] ----D C:\Users\johan\AppData\Local\Windows Live Writer
O43 - CFD: 11/01/2012 - 21:50:21 - [0,000] ----D C:\Users\johan\AppData\Local\WinMHR
O43 - CFD: 16/10/2012 - 21:20:20 - [0] ----D C:\Users\johan\AppData\Local\{02FEF6FC-05C0-4A1C-B914-728B92FE9E0B}
O43 - CFD: 26/04/2012 - 17:14:01 - [0] ----D C:\Users\johan\AppData\Local\{0743C94C-F39F-492B-BBF7-B3F26F0637D7}
O43 - CFD: 28/02/2012 - 19:52:20 - [0] ----D C:\Users\johan\AppData\Local\{088F5FEE-845F-4418-AA38-B71C6416E13D}
O43 - CFD: 28/06/2012 - 12:25:19 - [0] ----D C:\Users\johan\AppData\Local\{0CD23F26-27FF-45C2-9A6D-35C4F10B917E}
O43 - CFD: 26/02/2012 - 19:52:15 - [0] ----D C:\Users\johan\AppData\Local\{0FD8C4D7-0DB6-4E0D-B460-81A993D650F0}
O43 - CFD: 04/06/2012 - 17:18:10 - [0] ----D C:\Users\johan\AppData\Local\{1035262E-99DC-4D88-B807-7C35810C1618}
O43 - CFD: 23/08/2012 - 13:04:41 - [0] ----D C:\Users\johan\AppData\Local\{10AAC2EA-7EA5-49BC-A87F-7501F86AF84A}
O43 - CFD: 13/05/2012 - 16:34:52 - [0] ----D C:\Users\johan\AppData\Local\{116043D5-EB47-41F4-AF25-4C2911852986}
O43 - CFD: 04/03/2012 - 16:29:42 - [0] ----D C:\Users\johan\AppData\Local\{132C9B9F-ABB2-4956-9014-CEC6F9C7CE7D}
O43 - CFD: 04/03/2012 - 20:53:49 - [0] ----D C:\Users\johan\AppData\Local\{1337581D-1936-4AF1-A43C-792B84D15F97}
O43 - CFD: 01/03/2012 - 19:05:19 - [0] ----D C:\Users\johan\AppData\Local\{147C873E-82AC-4293-8CEA-2C05E4AF7219}
O43 - CFD: 02/06/2012 - 18:09:35 - [0] ----D C:\Users\johan\AppData\Local\{1581573E-2816-43F1-86F3-08DFA0852E3F}
O43 - CFD: 14/10/2012 - 18:49:42 - [0] ----D C:\Users\johan\AppData\Local\{1741F25F-205F-4E1A-9E39-51121D4D9C73}
O43 - CFD: 27/09/2012 - 17:41:48 - [0] ----D C:\Users\johan\AppData\Local\{186CD707-DAB7-4950-9B73-7C0AA13F1981}
O43 - CFD: 06/05/2012 - 12:14:07 - [0] ----D C:\Users\johan\AppData\Local\{189DF851-0D7E-4163-A7E1-5C738E2425DC}
O43 - CFD: 23/04/2012 - 17:42:30 - [0] ----D C:\Users\johan\AppData\Local\{196A9331-A96F-4992-A31B-284DD97A6BCE}
O43 - CFD: 27/03/2012 - 21:25:57 - [0] ----D C:\Users\johan\AppData\Local\{1B02F34F-AE05-4BD9-8B3B-1F2E9D5B4D99}
O43 - CFD: 16/04/2012 - 12:41:46 - [0] ----D C:\Users\johan\AppData\Local\{1CC85D42-B979-46FA-8400-49F2FEA1B0AA}
O43 - CFD: 16/05/2012 - 17:06:46 - [0] ----D C:\Users\johan\AppData\Local\{1D464B2E-3E47-4C71-ABBD-C02FA26DB64F}
O43 - CFD: 16/06/2012 - 11:52:57 - [0] ----D C:\Users\johan\AppData\Local\{1D965FA0-759A-4089-946D-FA1FA12492F1}
O43 - CFD: 26/06/2012 - 11:38:18 - [0] ----D C:\Users\johan\AppData\Local\{1F9EA7A5-0667-4001-BC51-6131A5BED161}
O43 - CFD: 01/05/2012 - 12:24:36 - [0] ----D C:\Users\johan\AppData\Local\{228F0C52-6309-4A30-94EC-BD8C255967C0}
O43 - CFD: 25/02/2012 - 19:09:14 - [0] ----D C:\Users\johan\AppData\Local\{25A24399-0C0D-47E1-97F8-F4319634F283}
O43 - CFD: 29/08/2012 - 17:55:26 - [0] ----D C:\Users\johan\AppData\Local\{27409E5C-05AD-4DF1-9EEC-352C37E59D52}
O43 - CFD: 03/09/2012 - 10:11:01 - [0] ----D C:\Users\johan\AppData\Local\{2754075B-506B-4B7C-B440-26C368CB85F3}
O43 - CFD: 28/03/2012 - 17:22:14 - [0] ----D C:\Users\johan\AppData\Local\{2881C8F1-65A6-45CE-8628-92CBE2450199}
O43 - CFD: 13/06/2012 - 11:03:13 - [0] ----D C:\Users\johan\AppData\Local\{296D7B4C-3972-49CE-9671-DE74D375751A}
O43 - CFD: 21/05/2012 - 17:53:44 - [0] ----D C:\Users\johan\AppData\Local\{296D896B-D5EA-4B16-8D2B-28B73A271E1C}
O43 - CFD: 25/04/2012 - 12:53:44 - [0] ----D C:\Users\johan\AppData\Local\{29710CB8-C49F-433B-9E08-344BFEB1CB42}
O43 - CFD: 19/04/2012 - 10:39:05 - [0] ----D C:\Users\johan\AppData\Local\{2D247FFD-CD5A-4CC4-9B6D-233C449BB9D7}
O43 - CFD: 04/05/2012 - 20:36:16 - [0] ----D C:\Users\johan\AppData\Local\{304648A9-AF19-4D1F-A1B0-619E6FC019C3}
O43 - CFD: 16/04/2012 - 12:16:05 - [0] ----D C:\Users\johan\AppData\Local\{3082A355-10E6-4D01-A733-084B12E3DFEE}
O43 - CFD: 01/07/2012 - 11:24:38 - [0] ----D C:\Users\johan\AppData\Local\{30FF257B-E20A-47A9-B24E-6C2B739291BC}
O43 - CFD: 20/05/2012 - 20:36:06 - [0] ----D C:\Users\johan\AppData\Local\{31A9781E-CDDB-44BD-8AE9-F99DACC5D7D9}
O43 - CFD: 04/03/2012 - 20:54:00 - [0] ----D C:\Users\johan\AppData\Local\{31EDD6C1-7115-40EE-8AFE-01FED723D2D0}
O43 - CFD: 14/06/2012 - 10:09:39 - [0] ----D C:\Users\johan\AppData\Local\{33DD5057-5DE2-423B-B917-F16528D1FDFE}
O43 - CFD: 04/06/2012 - 17:18:22 - [0] ----D C:\Users\johan\AppData\Local\{35420C72-9262-4F23-9846-2327714762B3}
O43 - CFD: 06/08/2012 - 12:03:35 - [0] ----D C:\Users\johan\AppData\Local\{35FB4A71-C9C3-462C-823E-D6EE7FF5D96C}
O43 - CFD: 22/04/2012 - 12:00:19 - [0] ----D C:\Users\johan\AppData\Local\{361D0971-FC37-4F8E-BE5F-1ACE43727ABB}
O43 - CFD: 11/06/2012 - 14:13:04 - [0] ----D C:\Users\johan\AppData\Local\{37F0243F-E198-4DA6-B231-2E4A48386986}
O43 - CFD: 07/06/2012 - 14:48:17 - [0] ----D C:\Users\johan\AppData\Local\{39E4C191-1050-4A4E-8CBC-91DCC0D57167}
O43 - CFD: 12/09/2012 - 22:34:23 - [0] ----D C:\Users\johan\AppData\Local\{39F4F76E-C697-462D-8DCB-839431AA8C9C}
O43 - CFD: 24/05/2012 - 21:44:12 - [0] ----D C:\Users\johan\AppData\Local\{3A6FEC89-66C7-4301-BE6B-56086A7AFBD4}
O43 - CFD: 06/03/2012 - 19:00:28 - [0] ----D C:\Users\johan\AppData\Local\{3E7FDC3C-A8CC-4758-ADEC-CC7EFB943093}
O43 - CFD: 20/09/2012 - 18:13:55 - [0] ----D C:\Users\johan\AppData\Local\{3EDC050C-5DBD-42EE-A0A5-0AEF47D779C8}
O43 - CFD: 30/07/2012 - 23:30:08 - [0] ----D C:\Users\johan\AppData\Local\{3EEE4967-7CB1-4768-91B8-B99A6659D1C4}
O43 - CFD: 08/05/2012 - 17:03:13 - [0] ----D C:\Users\johan\AppData\Local\{3F62BD9A-5049-4691-86E2-BF5859F27FB3}
O43 - CFD: 14/06/2012 - 10:09:28 - [0] ----D C:\Users\johan\AppData\Local\{40153366-BBFD-4E45-8606-9321A88F973F}
O43 - CFD: 25/10/2012 - 17:52:01 - [0] ----D C:\Users\johan\AppData\Local\{4019B364-1337-49A0-BD7D-3289B7B048DA}
O43 - CFD: 17/03/2012 - 13:16:51 - [0] ----D C:\Users\johan\AppData\Local\{40A8412F-7B6A-4365-BB0E-3A0261FF2BCC}
O43 - CFD: 29/06/2012 - 09:47:00 - [0] ----D C:\Users\johan\AppData\Local\{41E66893-F08E-4700-A598-1A94D96BD860}
O43 - CFD: 14/07/2012 - 11:58:32 - [0] ----D C:\Users\johan\AppData\Local\{42215BB9-F800-463C-A1E6-AA578E04638E}
O43 - CFD: 22/04/2012 - 12:00:30 - [0] ----D C:\Users\johan\AppData\Local\{44640CE6-0734-4F19-AAA3-584401D003B2}
O43 - CFD: 02/03/2012 - 16:36:08 - [0] ----D C:\Users\johan\AppData\Local\{4A272C0F-27E5-422E-B2CC-9BFBA92BFD9F}
O43 - CFD: 28/02/2012 - 19:53:18 - [0] ----D C:\Users\johan\AppData\Local\{4A68D9F8-3120-47B9-B28C-0BCAF392EDD5}
O43 - CFD: 19/04/2012 - 10:39:16 - [0] ----D C:\Users\johan\AppData\Local\{4BF211C5-CC05-4E63-8079-A63C67C0A03B}
O43 - CFD: 13/03/2012 - 10:05:50 - [0] ----D C:\Users\johan\AppData\Local\{4C639A90-247A-48EF-995E-88486E908E05}
O43 - CFD: 03/08/2012 - 10:05:24 - [0] ----D C:\Users\johan\AppData\Local\{4CF3E15D-2FF9-4925-B956-B1948310A408}
O43 - CFD: 17/04/2012 - 19:21:10 - [0] ----D C:\Users\johan\AppData\Local\{4D7DE93A-58A1-44F5-9993-3A68633AC474}
O43 - CFD: 26/06/2012 - 11:38:05 - [0] ----D C:\Users\johan\AppData\Local\{4E241008-4079-49A0-96AD-E5BE24DC9FFA}
O43 - CFD: 16/05/2012 - 17:06:57 - [0] ----D C:\Users\johan\AppData\Local\{4E44BE0B-D4D5-451F-91AE-62AED13B21AA}
O43 - CFD: 12/06/2012 - 22:44:56 - [0] ----D C:\Users\johan\AppData\Local\{4F41000E-F316-4947-B79E-339AA3F7FB19}
O43 - CFD: 14/03/2012 - 12:36:46 - [0] ----D C:\Users\johan\AppData\Local\{4F695D37-2506-4209-9318-80CB702DA534}
O43 - CFD: 21/11/2012 - 07:27:11 - [0] ----D C:\Users\johan\AppData\Local\{50491C5E-CCC3-4647-B81F-A737BE06DE12}
O43 - CFD: 15/07/2012 - 10:53:08 - [0] ----D C:\Users\johan\AppData\Local\{5246D708-8C1F-452C-86C3-6A864FBE15DD}
O43 - CFD: 24/08/2012 - 09:56:35 - [0] ----D C:\Users\johan\AppData\Local\{532BE69E-1356-4B2D-BBFB-FC090DD25102}
O43 - CFD: 29/06/2012 - 09:46:48 - [0] ----D C:\Users\johan\AppData\Local\{539F41B0-EF7E-44AE-BFB2-7C5CC91B5535}
O43 - CFD: 30/07/2012 - 11:29:12 - [0] ----D C:\Users\johan\AppData\Local\{557C26A9-7878-4BAA-A21B-195B217AADB1}
O43 - CFD: 18/10/2012 - 17:50:02 - [0] ----D C:\Users\johan\AppData\Local\{560CB015-60B1-4327-808D-96DAD64E0322}
O43 - CFD: 08/11/2012 - 15:32:26 - [0] ----D C:\Users\johan\AppData\Local\{5656AB63-6D90-4E57-9A8C-B3DD05A18F34}
O43 - CFD: 01/03/2012 - 07:47:51 - [0] ----D C:\Users\johan\AppData\Local\{57DCE459-2997-4FCA-8A00-E97EA8C18979}
O43 - CFD: 12/03/2012 - 19:11:43 - [0] ----D C:\Users\johan\AppData\Local\{594DA3F1-0E41-447E-A442-EBD1E456D5D2}
O43 - CFD: 13/07/2012 - 23:40:07 - [0] ----D C:\Users\johan\AppData\Local\{5A1DAB0E-153A-417B-88AB-ADF351D6288D}
O43 - CFD: 12/06/2012 - 09:04:17 - [0] ----D C:\Users\johan\AppData\Local\{5CD1CC9C-32EF-4BAD-B454-1FD4A8AEFB7C}
O43 - CFD: 27/06/2012 - 11:04:52 - [0] ----D C:\Users\johan\AppData\Local\{5DF30EBE-8D1A-476D-A618-B43C234821E7}
O43 - CFD: 23/04/2012 - 17:42:31 - [0] ----D C:\Users\johan\AppData\Local\{6168A9DF-2140-4345-8CBB-B18E97238C91}
O43 - CFD: 03/07/2012 - 23:53:00 - [0] ----D C:\Users\johan\AppData\Local\{61B51F51-72F9-4C13-A546-1B0AD4446CA1}
O43 - CFD: 13/03/2012 - 10:06:03 - [0] ----D C:\Users\johan\AppData\Local\{62AC657F-F850-468B-8367-62B051005C3C}
O43 - CFD: 12/03/2012 - 19:11:57 - [0] ----D C:\Users\johan\AppData\Local\{63D2B293-93A3-4D9E-9931-65D38D893C72}
O43 - CFD: 18/04/2012 - 12:38:10 - [0] ----D C:\Users\johan\AppData\Local\{64F9FD52-E58B-4CA9-AB0E-211FA3DACC97}
O43 - CFD: 28/06/2012 - 12:25:07 - [0] ----D C:\Users\johan\AppData\Local\{66F2F3B7-974E-46BF-A32C-133134221AC7}
O43 - CFD: 16/04/2012 - 12:41:35 - [0] ----D C:\Users\johan\AppData\Local\{67E94224-1479-41EF-BE9B-8F145A41F2C9}
O43 - CFD: 02/08/2012 - 07:33:28 - [0] ----D C:\Users\johan\AppData\Local\{6A3DAA7E-F8EC-43A0-B7A7-2A13B26F21B7}
O43 - CFD: 29/02/2012 - 13:33:22 - [0] ----D C:\Users\johan\AppData\Local\{6B715B38-5C6C-4A96-8607-98774873015B}
O43 - CFD: 17/03/2012 - 13:16:39 - [0] ----D C:\Users\johan\AppData\Local\{6C92F4F2-483D-459D-8A63-CC77B00499D9}
O43 - CFD: 20/06/2012 - 10:29:52 - [0] ----D C:\Users\johan\AppData\Local\{6D9B52B1-1B99-4EE8-8BC2-1A0AD05D51F1}
O43 - CFD: 06/05/2012 - 12:14:18 - [0] ----D C:\Users\johan\AppData\Local\{6DB454C0-94E6-4C9A-A5B8-045C308AB767}
O43 - CFD: 30/07/2012 - 23:30:34 - [0] ----D C:\Users\johan\AppData\Local\{6FDF3EED-3995-436F-8A6D-905C99665E3B}
O43 - CFD: 13/07/2012 - 11:03:27 - [0] ----D C:\Users\johan\AppData\Local\{712CAFE2-AAF2-4F66-ABC7-C73B6028DD94}
O43 - CFD: 25/04/2012 - 12:53:33 - [0] ----D C:\Users\johan\AppData\Local\{71F952A0-5D03-4DF3-B083-B919287810DE}
O43 - CFD: 19/09/2012 - 16:40:46 - [0] ----D C:\Users\johan\AppData\Local\{7292CE2B-9BF4-4633-B854-B221177AB50F}
O43 - CFD: 29/02/2012 - 13:33:34 - [0] ----D C:\Users\johan\AppData\Local\{73D8C75B-D2A4-4362-8C93-AAB9B2BDAE3C}
O43 - CFD: 30/05/2012 - 15:17:32 - [0] ----D C:\Users\johan\AppData\Local\{74B8C188-07FF-4D1A-9655-3AE65D55F28C}
O43 - CFD: 18/04/2012 - 12:38:09 - [0] ----D C:\Users\johan\AppData\Local\{75E4359D-8693-48A6-B358-0F0C8C35EB51}
O43 - CFD: 24/04/2012 - 16:47:14 - [0] ----D C:\Users\johan\AppData\Local\{763E73AD-8DCE-4450-8A73-04E2963EC4B5}
O43 - CFD: 02/03/2012 - 16:35:56 - [0] ----D C:\Users\johan\AppData\Local\{767A9DA8-FD12-43BC-BD8A-2310A055666D}
O43 - CFD: 07/04/2012 - 08:34:14 - [0] ----D C:\Users\johan\AppData\Local\{772F07E3-88DB-4DC2-A774-D11AF315C721}
O43 - CFD: 28/02/2012 - 20:04:42 - [0] ----D C:\Users\johan\AppData\Local\{7A05CED1-9FBA-49B1-88AC-C2D6D5BF8570}
O43 - CFD: 03/06/2012 - 11:36:46 - [0] ----D C:\Users\johan\AppData\Local\{7ADF7B52-0F12-4B30-A5E5-C611E13BBEBC}
O43 - CFD: 16/04/2012 - 12:15:52 - [0] ----D C:\Users\johan\AppData\Local\{7BAC2D7C-9449-4777-87E3-8B637081F2DD}
O43 - CFD: 31/03/2012 - 13:52:27 - [0] ----D C:\Users\johan\AppData\Local\{7CDAA8E4-F3F1-4572-95A1-C19350F28110}
O43 - CFD: 13/07/2012 - 23:39:55 - [0] ----D C:\Users\johan\AppData\Local\{7D6D4BDF-9B08-4F43-A7AC-3199F4091328}
O43 - CFD: 01/07/2012 - 11:24:50 - [0] ----D C:\Users\johan\AppData\Local\{7F6D90A4-CE8E-4AB7-AD14-E18FC6F2BD89}
O43 - CFD: 08/05/2012 - 17:03:14 - [0] ----D C:\Users\johan\AppData\Local\{83B84381-A795-48A6-A341-9B132AB799E7}
O43 - CFD: 07/06/2012 - 14:48:29 - [0] ----D C:\Users\johan\AppData\Local\{84D928E7-CB91-4C97-9CAF-FD98B3949CE1}
O43 - CFD: 15/03/2012 - 18:49:13 - [0] ----D C:\Users\johan\AppData\Local\{84EE3A2C-4FC6-4BC2-9CF6-6F7F53989E40}
O43 - CFD: 24/09/2012 - 10:59:17 - [0] ----D C:\Users\johan\AppData\Local\{8559269B-6FE8-4B38-ACDC-E39A59FBAAF9}
O43 - CFD: 29/05/2012 - 20:01:49 - [0] ----D C:\Users\johan\AppData\Local\{85F4D010-A521-4E32-B467-F2065E0323BB}
O43 - CFD: 01/05/2012 - 12:24:52 - [0] ----D C:\Users\johan\AppData\Local\{87574971-A001-4E8A-B197-F99C762D667C}
O43 - CFD: 02/06/2012 - 18:09:46 - [0] ----D C:\Users\johan\AppData\Local\{882728B7-34CE-4D54-8637-1C320146EC30}
O43 - CFD: 23/05/2012 - 18:33:01 - [0] ----D C:\Users\johan\AppData\Local\{893A3685-69CC-40EE-816B-22416E5D283C}
O43 - CFD: 16/03/2012 - 17:28:44 - [0] ----D C:\Users\johan\AppData\Local\{8A8A00C3-6D9B-43A2-A07B-F2085F32BC92}
O43 - CFD: 02/05/2012 - 11:06:38 - [0] ----D C:\Users\johan\AppData\Local\{8B752C8F-2AA3-4C4E-82A6-7A4B0C1BFC70}
O43 - CFD: 30/07/2012 - 11:29:24 - [0] ----D C:\Users\johan\AppData\Local\{8D7F2BE4-03C3-4094-B58A-1E4D8B1FC3F7}
O43 - CFD: 25/06/2012 - 15:07:10 - [0] ----D C:\Users\johan\AppData\Local\{8D895E87-A43C-4CDC-86BC-CF0E2DFAB5D7}
O43 - CFD: 06/05/2012 - 12:13:55 - [0] ----D C:\Users\johan\AppData\Local\{8FF257FC-A418-460A-9FFE-414B73A9753B}
O43 - CFD: 12/03/2012 - 09:31:01 - [0] ----D C:\Users\johan\AppData\Local\{90BC0726-9EB7-4CE2-9EB1-068A1210380F}
O43 - CFD: 02/08/2012 - 07:33:08 - [0] ----D C:\Users\johan\AppData\Local\{918BF42E-1ECF-452B-BDB0-ACA6D5EF153A}
O43 - CFD: 26/04/2012 - 17:13:44 - [0] ----D C:\Users\johan\AppData\Local\{92CAF7B2-B7DE-4306-AD27-4F098CB80236}
O43 - CFD: 21/05/2012 - 17:53:33 - [0] ----D C:\Users\johan\AppData\Local\{94B43241-17D1-4CEF-BBE6-C765CE1CA1ED}
O43 - CFD: 03/05/2012 - 17:45:17 - [0] ----D C:\Users\johan\AppData\Local\{98ED46E0-5D5D-42E5-98D7-EFD568C214EA}
O43 - CFD: 12/03/2012 - 09:31:00 - [0] ----D C:\Users\johan\AppData\Local\{9A202DB4-D635-4E13-94FE-844A55357888}
O43 - CFD: 05/05/2012 - 18:00:55 - [0] ----D C:\Users\johan\AppData\Local\{9D820014-89ED-4732-ABF7-11EAE5654EBC}
O43 - CFD: 18/03/2012 - 19:52:38 - [0] ----D C:\Users\johan\AppData\Local\{9F1C4853-4044-4E80-B59E-B826A40DC930}
O43 - CFD: 15/07/2012 - 10:52:56 - [0] ----D C:\Users\johan\AppData\Local\{A1388399-6335-4E68-8801-E8FA80686E7D}
O43 - CFD: 11/03/2012 - 11:45:35 - [0] ----D C:\Users\johan\AppData\Local\{A1A9CA50-C9A7-4D6D-8EF3-62B38CCEFA73}
O43 - CFD: 12/06/2012 - 09:04:31 - [0] ----D C:\Users\johan\AppData\Local\{A4343746-4FA9-4FD2-82DE-0B49ECD87B16}
O43 - CFD: 28/03/2012 - 17:22:26 - [0] ----D C:\Users\johan\AppData\Local\{A4E2919F-61E9-4B69-8D7F-2826DCADFD99}
O43 - CFD: 08/06/2012 - 20:51:27 - [0] ----D C:\Users\johan\AppData\Local\{A561683F-89E4-41FC-B369-AFE92C1CA680}
O43 - CFD: 03/07/2012 - 23:52:48 - [0] ----D C:\Users\johan\AppData\Local\{A6627C43-DB0F-45EC-99A5-8B2C5BEAAE52}
O43 - CFD: 19/03/2012 - 19:21:06 - [0] ----D C:\Users\johan\AppData\Local\{A7852EEF-C1C1-4CDC-9B6D-18F32EDA6E3F}
O43 - CFD: 03/08/2012 - 10:05:12 - [0] ----D C:\Users\johan\AppData\Local\{ACC3E6B5-D9AC-40B4-A5E5-9577F6E12B7A}
O43 - CFD: 13/07/2012 - 11:03:15 - [0] ----D C:\Users\johan\AppData\Local\{B0C5E992-5DBE-4EB1-9DD0-406C1582211D}
O43 - CFD: 17/04/2012 - 19:21:21 - [0] ----D C:\Users\johan\AppData\Local\{B1071E79-735B-4197-B75C-4B4C003558FD}
O43 - CFD: 21/08/2012 - 19:17:31 - [0] ----D C:\Users\johan\AppData\Local\{B2CDFB96-C9F6-49CC-884F-BD36E2171CC5}
O43 - CFD: 23/05/2012 - 18:32:49 - [0] ----D C:\Users\johan\AppData\Local\{B4F334D2-7854-41A0-9ECA-DDCF963863A6}
O43 - CFD: 20/04/2012 - 18:01:55 - [0] ----D C:\Users\johan\AppData\Local\{B5D974AF-C5E5-421A-9C4C-24D3CB847AA3}
O43 - CFD: 10/03/2012 - 14:00:35 - [0] ----D C:\Users\johan\AppData\Local\{B6AE7355-C8AB-4823-AA61-E903AC2C7889}
O43 - CFD: 16/04/2012 - 12:41:23 - [0] ----D C:\Users\johan\AppData\Local\{B7060675-514E-4746-8C66-5DD99E9221C4}
O43 - CFD: 08/06/2012 - 20:51:39 - [0] ----D C:\Users\johan\AppData\Local\{B72C4D86-DEEB-411A-AB6C-3C5A7D568368}
O43 - CFD: 24/10/2012 - 22:07:34 - [0] ----D C:\Users\johan\AppData\Local\{BA5157B0-6286-40A0-A5D8-1A72C6B10342}
O43 - CFD: 24/04/2012 - 16:47:28 - [0] ----D C:\Users\johan\AppData\Local\{BB0BE314-C524-4670-8DE4-78CAF80435D8}
O43 - CFD: 11/07/2012 - 11:23:21 - [0] ----D C:\Users\johan\AppData\Local\{BB8D6D4E-3848-4F62-8A9D-DC3C0F51CA7A}
O43 - CFD: 07/03/2012 - 12:42:36 - [0] ----D C:\Users\johan\AppData\Local\{BD0378D9-C977-441D-8F19-5A00C2899F0E}
O43 - CFD: 02/05/2012 - 11:06:49 - [0] ----D C:\Users\johan\AppData\Local\{BF2EE3A9-6AC7-4675-BC83-06BB2FBDA56C}
O43 - CFD: 11/03/2012 - 11:45:47 - [0] ----D C:\Users\johan\AppData\Local\{C01F1AF0-D1FA-4864-B55A-A1FA29E5F922}
O43 - CFD: 09/10/2012 - 17:44:34 - [0] ----D C:\Users\johan\AppData\Local\{C06F8A96-36AA-4467-BC56-F1CDF6BC07FD}
O43 - CFD: 14/03/2012 - 12:36:57 - [0] ----D C:\Users\johan\AppData\Local\{C37EB871-95A8-48ED-B2BE-6D99BE8DC754}
O43 - CFD: 19/06/2012 - 18:05:53 - [0] ----D C:\Users\johan\AppData\Local\{C419360D-FE3B-41D6-AE37-47E4C3098857}
O43 - CFD: 01/03/2012 - 19:05:31 - [0] ----D C:\Users\johan\AppData\Local\{C487B5E8-96F6-4A76-A314-A9744359E11D}
O43 - CFD: 19/03/2012 - 19:21:06 - [0] ----D C:\Users\johan\AppData\Local\{C5B40005-0117-495B-814E-D702C7491C59}
O43 - CFD: 03/06/2012 - 11:36:57 - [0] ----D C:\Users\johan\AppData\Local\{C5C79C7D-A61E-44BA-B5A8-DF4643FFE376}
O43 - CFD: 19/03/2012 - 22:38:30 - [0] ----D C:\Users\johan\AppData\Local\{C5FC63D2-02F8-45E8-AB6D-6C50330BB4AB}
O43 - CFD: 29/05/2012 - 20:01:38 - [0] ----D C:\Users\johan\AppData\Local\{C62D54BD-6276-43FC-8459-9C9C146D79B8}
O43 - CFD: 06/08/2012 - 12:03:46 - [0] ----D C:\Users\johan\AppData\Local\{C69EEA4B-201B-4818-B2E8-64ED773C4FEB}
O43 - CFD: 24/05/2012 - 21:44:13 - [0] ----D C:\Users\johan\AppData\Local\{C93B75BD-48BE-46B2-B015-6E5C5F096544}
O43 - CFD: 12/07/2012 - 11:05:50 - [0] ----D C:\Users\johan\AppData\Local\{CA64496C-DC86-4DA9-A231-B802AB6A9182}
O43 - CFD: 11/06/2012 - 14:13:16 - [0] ----D C:\Users\johan\AppData\Local\{CC462737-9BCD-4698-835D-D1171B1C698F}
O43 - CFD: 12/06/2012 - 22:45:08 - [0] ----D C:\Users\johan\AppData\Local\{CCA6F2B1-7CE7-4DDC-B904-E2BDBA593F68}
O43 - CFD: 19/06/2012 - 18:06:18 - [0] ----D C:\Users\johan\AppData\Local\{CCB9F04B-CAAD-4185-B9A3-7BBE84C412A3}
O43 - CFD: 11/09/2012 - 17:04:27 - [0] ----D C:\Users\johan\AppData\Local\{CD721AA7-5191-4C85-B85B-0EBC93BF6EA2}
O43 - CFD: 20/05/2012 - 20:36:18 - [0] ----D C:\Users\johan\AppData\Local\{CF8AF3EC-938E-4C88-B313-0BBDBB0FAB45}
O43 - CFD: 09/03/2012 - 16:33:30 - [0] ----D C:\Users\johan\AppData\Local\{CFB411C2-F53F-4D68-8886-37D8A7A4FDD8}
O43 - CFD: 30/05/2012 - 15:17:20 - [0] ----D C:\Users\johan\AppData\Local\{D052AD49-22BA-48E8-9ABB-67D8B61B0550}
O43 - CFD: 12/07/2012 - 11:05:38 - [0] ----D C:\Users\johan\AppData\Local\{D11938B3-E0CE-4999-92B1-22C3CB0CB63A}
O43 - CFD: 16/04/2012 - 12:22:55 - [0] ----D C:\Users\johan\AppData\Local\{D26FCF7E-A4B4-4453-8D1C-7BDA8855CEEF}
O43 - CFD: 01/06/2012 - 17:31:22 - [0] ----D C:\Users\johan\AppData\Local\{D274E620-3CC4-496F-8A33-AF9AB8D99576}
O43 - CFD: 27/06/2012 - 11:05:04 - [0] ----D C:\Users\johan\AppData\Local\{D307360F-28AC-4D91-ACB8-A8FFCB508FCA}
O43 - CFD: 26/02/2012 - 19:52:26 - [0] ----D C:\Users\johan\AppData\Local\{D4FB99D8-1244-447B-9F03-64EC7128ADF3}
O43 - CFD: 11/10/2012 - 17:23:58 - [0] ----D C:\Users\johan\AppData\Local\{D4FF83C7-0B7D-4F27-A8FB-0E75347E8963}
O43 - CFD: 28/02/2012 - 20:04:56 - [0] ----D C:\Users\johan\AppData\Local\{D56208B9-F09D-45C5-8892-96804A194141}
O43 - CFD: 04/10/2012 - 19:14:30 - [0] ----D C:\Users\johan\AppData\Local\{D5B236DB-D145-457E-9501-B9201C7AC5C8}
O43 - CFD: 13/09/2012 - 19:23:49 - [0] ----D C:\Users\johan\AppData\Local\{D62BF0B4-4CC2-4408-87E6-A6ED0A15DB86}
O43 - CFD: 06/09/2012 - 17:03:19 - [0] ----D C:\Users\johan\AppData\Local\{D64B0BB4-24DE-4575-9D39-0112C48F9F97}
O43 - CFD: 16/03/2012 - 17:28:33 - [0] ----D C:\Users\johan\AppData\Local\{D6F2FB68-B9C0-427D-BAD6-2FE95D1662F1}
O43 - CFD: 10/09/2012 - 17:20:55 - [0] ----D C:\Users\johan\AppData\Local\{D9292DAD-F4FB-4097-B903-8396F4107237}
O43 - CFD: 13/11/2012 - 20:45:26 - [0] ----D C:\Users\johan\AppData\Local\{D9B72CCB-1E9D-4022-A9C8-D178F1A2CDE6}
O43 - CFD: 15/03/2012 - 18:49:25 - [0] ----D C:\Users\johan\AppData\Local\{DAC4E3A1-889E-4C3C-8FBD-364FDB52EEA1}
O43 - CFD: 25/02/2012 - 18:52:19 - [0] ----D C:\Users\johan\AppData\Local\{DAF8198F-A662-433E-A141-FD92AE23B1C2}
O43 - CFD: 13/06/2012 - 11:03:01 - [0] ----D C:\Users\johan\AppData\Local\{DF2AB4F3-FBE8-41E4-A36B-63931845B4EE}
O43 - CFD: 25/06/2012 - 15:07:25 - [0] ----D C:\Users\johan\AppData\Local\{E03EA0C4-561C-41D9-9168-88E926F8E486}
O43 - CFD: 14/07/2012 - 11:58:20 - [0] ----D C:\Users\johan\AppData\Local\{E1BC8E4E-5CDA-4B3A-9034-9B5216F26D37}
O43 - CFD: 16/04/2012 - 12:22:43 - [0] ----D C:\Users\johan\AppData\Local\{E56E1B08-9CB8-40F4-89E3-2592F609CFE6}
O43 - CFD: 04/04/2012 - 11:45:34 - [0] ----D C:\Users\johan\AppData\Local\{E5D2D1D2-B280-461D-B8F5-ABBC6670542B}
O43 - CFD: 10/07/2012 - 11:12:21 - [0] ----D C:\Users\johan\AppData\Local\{E677E046-FBED-450B-9A1F-4F13C36E5840}
O43 - CFD: 27/06/2012 - 23:47:10 - [0] ----D C:\Users\johan\AppData\Local\{E7BC660B-82B3-4251-8E84-CA30787C7294}
O43 - CFD: 20/04/2012 - 18:01:42 - [0] ----D C:\Users\johan\AppData\Local\{E89F0532-C979-401B-AB4F-6875E98D995D}
O43 - CFD: 21/10/2012 - 22:34:02 - [0] ----D C:\Users\johan\AppData\Local\{E8EF27DC-784A-40FA-B41B-1E128C261C7B}
O43 - CFD: 01/04/2012 - 19:06:24 - [0] ----D C:\Users\johan\AppData\Local\{E9AC96F6-E872-4D8C-9224-41BF323692C0}
O43 - CFD: 30/03/2012 - 09:25:01 - [0] ----D C:\Users\johan\AppData\Local\{EBB51879-BF8B-4F7E-BE6C-280048B4A3BE}
O43 - CFD: 19/03/2012 - 22:38:42 - [0] ----D C:\Users\johan\AppData\Local\{ED555BC5-6EEA-4EBC-A54F-BC860B99E0A3}
O43 - CFD: 17/08/2012 - 11:15:19 - [0] ----D C:\Users\johan\AppData\Local\{EF0C946A-2DFA-41FF-8B27-6A36226CBE5D}
O43 - CFD: 01/10/2012 - 18:14:21 - [0] ----D C:\Users\johan\AppData\Local\{EF30CA39-ADC7-41BF-8FEF-0A5375B6A390}
O43 - CFD: 03/05/2012 - 17:45:05 - [0] ----D C:\Users\johan\AppData\Local\{F0AEDAD4-7971-48F5-9C07-3CA31E779C40}
O43 - CFD: 06/03/2012 - 19:00:16 - [0] ----D C:\Users\johan\AppData\Local\{F2457254-E2DB-46CF-9ACF-334F90628F22}
O43 - CFD: 01/06/2012 - 17:31:34 - [0] ----D C:\Users\johan\AppData\Local\{F26A3FB5-628F-4E59-A40F-9AF1D0F0B90D}
O43 - CFD: 04/05/2012 - 20:36:28 - [0] ----D C:\Users\johan\AppData\Local\{F2A2E6C0-30F9-46D1-845C-D2403E3606FA}
O43 - CFD: 05/05/2012 - 18:00:43 - [0] ----D C:\Users\johan\AppData\Local\{F2F1F7FA-6AB2-48D5-815C-A9BFBDEBF7B1}
O43 - CFD: 27/08/2012 - 13:07:50 - [0] ----D C:\Users\johan\AppData\Local\{F5A2C77B-80A6-4F3A-86BA-1DC6C2CC74DB}
O43 - CFD: 27/03/2012 - 21:25:45 - [0] ----D C:\Users\johan\AppData\Local\{F63C58E5-15CE-4F64-A3F8-F862D37ECABE}
O43 - CFD: 13/05/2012 - 16:35:04 - [0] ----D C:\Users\johan\AppData\Local\{F7117332-9031-48E9-9209-C7BC948E090B}
O43 - CFD: 17/08/2012 - 11:15:04 - [0] ----D C:\Users\johan\AppData\Local\{F83F018F-D960-4A2C-9FAF-8BAB965FD53F}
O43 - CFD: 09/03/2012 - 16:33:46 - [0] ----D C:\Users\johan\AppData\Local\{FA38EDF3-B9C0-4FCE-896F-762FA98D83C3}
O43 - CFD: 25/02/2012 - 19:08:45 - [0] ----D C:\Users\johan\AppData\Local\{FBDCA450-779A-462E-8460-B8107370A884}
O43 - CFD: 22/08/2012 - 20:51:51 - [0] ----D C:\Users\johan\AppData\Local\{FC1644AD-0DA3-4C56-9218-7069251A44C5}
O43 - CFD: 07/03/2012 - 12:42:20 - [0] ----D C:\Users\johan\AppData\Local\{FC3CB0F2-90CB-42C7-AD9D-58E460D5212F}
O43 - CFD: 10/07/2012 - 11:12:33 - [0] ----D C:\Users\johan\AppData\Local\{FCD47A86-A6FF-45DA-BA03-BB873B9F0974}
O43 - CFD: 10/03/2012 - 14:00:47 - [0] ----D C:\Users\johan\AppData\Local\{FD31EDA6-4E72-486E-B004-8C082FA210DD}
O43 - CFD: 20/06/2012 - 10:30:05 - [0] ----D C:\Users\johan\AppData\Local\{FD924170-DAD1-40A6-9FCE-7D96242C8793}
O43 - CFD: 18/06/2012 - 16:07:00 - [0] ----D C:\Users\johan\AppData\Local\{FF814F15-5959-47C2-9DE1-7F5014F82EA9}
O43 - CFD: 14/07/2009 - 05:09:04 - [0,014] R---D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/07/2012 - 20:02:18 - [0,000] R---D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27/02/2011 - 15:48:56 - [0] ----D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Call of Duty
O43 - CFD: 23/08/2012 - 13:42:19 - [0,004] ----D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 11/12/2010 - 15:23:57 - [0,003] ----D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
O43 - CFD: 30/05/2012 - 21:04:26 - [0,004] ----D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/07/2009 - 05:06:22 - [0,001] R---D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/06/2012 - 20:55:26 - [0] ----D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 11/07/2012 - 20:02:18 - [0,000] R---D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 12/12/2010 - 21:24:49 - [0,004] ----D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sytexis Software
O43 - CFD: 12/07/2010 - 11:54:38 - [0,000] ----D C:\Users\johan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warcraft III
~ Scan Program Folder in 00mn 32s


---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.B624E175804D8C3CC302E0D3F695C72A] - 29/11/2012 - 18:22:11 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [0]
O44 - LFC:[MD5.1E63F1C63FE19C4C3A80E22413994D52] - 29/11/2012 - 18:18:09 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.0DB7527DB188C7D967A37BB51BBF3963] - 28/11/2012 - 19:14:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\Drivers\mbamswissarmy.sys   [40776]
O44 - LFC:[MD5.500D089CE760D83DA2B6CBA681AA9949] - 25/11/2012 - 15:56:47 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys   [22856]
O44 - LFC:[MD5.4DB45EC5EE64C3194D4DCE05D4294562] - 25/11/2012 - 11:22:37 ---A- . (.Kaspersky Lab - Filter Core [fre_wlh_x86].) -- C:\Windows\System32\Drivers\klflt.sys   [75096]
O44 - LFC:[MD5.93F9AE67E3BFFB9F3F8F85851F83C35B] - 25/11/2012 - 11:22:37 ---A- . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) -- C:\Windows\System32\Drivers\klif.sys   [587096]
O44 - LFC:[MD5.CCBC9C5FA947A37224EFA0400293A075] - 21/11/2012 - 06:50:46 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [451888]
O44 - LFC:[MD5.A0015B64698709005C9342185A779641] - 20/11/2012 - 23:26:08 ---A- . (...) -- C:\Windows\win.ini   [385]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 20/11/2012 - 23:13:48 ---A- . (...) -- C:\Windows\System32\config.nt   [2577]
O44 - LFC:[MD5.A1DAEE52AA7497ADF889FEDF1E42DF28] - 12/11/2012 - 00:33:46 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [5832]
O44 - LFC:[MD5.93B8B6D39085607F6761BEA559CB3975] - 12/11/2012 - 00:33:46 ---A- . (...) -- C:\Windows\System32\perfc007.dat   [3167874]
O44 - LFC:[MD5.F2519F8BAF6CBD053E5ABD0CB4B3EB1E] - 12/11/2012 - 00:33:46 ---A- . (...) -- C:\Windows\System32\perfc009.dat   [3143984]
O44 - LFC:[MD5.6D779A85FB607F5E4C5B32726CF13074] - 12/11/2012 - 00:33:46 ---A- . (...) -- C:\Windows\System32\perfc00C.dat   [3617652]
O44 - LFC:[MD5.64ED8D3AD1231410EB906BEC17AAA6D6] - 12/11/2012 - 00:33:46 ---A- . (...) -- C:\Windows\System32\perfh007.dat   [3832014]
O44 - LFC:[MD5.93056BD7663D77C2F5FAE92BCA072B8A] - 12/11/2012 - 00:33:46 ---A- . (...) -- C:\Windows\System32\perfh009.dat   [3802486]
O44 - LFC:[MD5.AE6D104E2DE91A3B3872E34EC5F3C695] - 12/11/2012 - 00:33:46 ---A- . (...) -- C:\Windows\System32\perfh00C.dat   [11284824]
O44 - LFC:[MD5.6882F6C622247987AC96A55CCA3F2D94] - 09/11/2012 - 09:44:59 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe   [697272]
O44 - LFC:[MD5.F8100E6EFCBD8FFEDD6C7A4264CC0463] - 09/11/2012 - 09:44:59 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl   [73656]
O44 - LFC:[MD5.D1E75542EC8D1B4851765A57AC63618E] - 08/11/2012 - 20:08:40 ---A- . (...) -- C:\Windows\diagerr.xml   [1908]
O44 - LFC:[MD5.BAFD56A9D66E068DF8ACC68EBB623524] - 08/11/2012 - 20:08:40 ---A- . (...) -- C:\Windows\diagwrn.xml   [2562]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 15:57:50 ---A- . (...) -- C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf   [3]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 15:34:21 ---A- . (...) -- C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf   [3]
~ Scan Files in 00mn 20s


---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.824077E7800ED074E329076D62F0456D] - 08/11/2012 - 19:53:38 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6202E8F2.pf
O45 - LFCP:[MD5.A37D896485CEEABD22B21334A97014C2] - 11/11/2012 - 21:42:30 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-EB1B961A.pf
O45 - LFCP:[MD5.A6E8FACE1A3118E9713778A46399FD4D] - 16/11/2012 - 06:48:20 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-893DDF55.pf
O45 - LFCP:[MD5.D31D3BEDD7BA26BA9C51E65F730CCAB4] - 16/11/2012 - 18:55:22 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-7C60A359.pf
O45 - LFCP:[MD5.17468F703C9751E512D2A23D710ED275] - 19/11/2012 - 23:02:23 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-783DCB11.pf
O45 - LFCP:[MD5.7388C08A36C42001EC0EABECBB008A35] - 19/11/2012 - 23:15:26 ---A- - C:\Windows\Prefetch\MINESWEEPER.EXE-64897C84.pf
O45 - LFCP:[MD5.54AFBDC7F4D97F828E13FFBBA32A5EA5] - 20/11/2012 - 18:37:19 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-BB72ED6F.pf
O45 - LFCP:[MD5.82C395590006FDCFD9201637968FAFAB] - 21/11/2012 - 07:22:07 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-830BCC14.pf
O45 - LFCP:[MD5.AB1C391FBE757EA0348D0CD2F21B2442] - 21/11/2012 - 07:26:28 ---A- - C:\Windows\Prefetch\WLMAIL.EXE-718CF2A1.pf
O45 - LFCP:[MD5.CC727399104CFB6D3817C53F8556EE10] - 21/11/2012 - 07:26:54 ---A- - C:\Windows\Prefetch\WLCOMM.EXE-648065CA.pf
O45 - LFCP:[MD5.D961171F7CF4B6579D0B212E6C029B89] - 21/11/2012 - 07:46:14 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.27AAC1687DB45DB0B8CE5066230C70F0] - 21/11/2012 - 07:48:49 ---A- - C:\Windows\Prefetch\IW5MP.EXE-C74383FF.pf
O45 - LFCP:[MD5.7BD549B7C1D9A3C6C3AB2DD31920141F] - 21/11/2012 - 07:49:12 ---A- - C:\Windows\Prefetch\GAMEOVERLAYUI.EXE-B60F837D.pf
O45 - LFCP:[MD5.7616118B5AF47FA65BCEC2D748FD1A4A] - 21/11/2012 - 08:12:04 ---A- - C:\Windows\Prefetch\REALSCHED.EXE-89156BB8.pf
O45 - LFCP:[MD5.0561E25CC61AC0B292A603B9E1992EC8] - 22/11/2012 - 22:53:46 ---A- - C:\Windows\Prefetch\STEAM.EXE-5C60CE15.pf
O45 - LFCP:[MD5.D6AED21AFC86D645055C878AC36FB774] - 25/11/2012 - 11:13:19 ---A- - C:\Windows\Prefetch\DTSHELLHLP.EXE-AA1B6C94.pf
O45 - LFCP:[MD5.C13B2EAD4303A6353CAF2CA35DEFEB9A] - 25/11/2012 - 11:22:23 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-B5AFA339.pf
O45 - LFCP:[MD5.B295B4DDF467BC517D2F943345809B2F] - 25/11/2012 - 15:57:53 ---A- - C:\Windows\Prefetch\SC.EXE-BC6DAF49.pf
O45 - LFCP:[MD5.DF960058C5C2A657AE8F4E05CD74D0C0] - 25/11/2012 - 16:07:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-752665EB.pf
O45 - LFCP:[MD5.607C58DACB4D4448A55622E5FD5465A4] - 27/11/2012 - 20:48:23 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-ACA00A4A.pf
O45 - LFCP:[MD5.A78FDFA73A21C52BD4C4A300A9E6A7C0] - 27/11/2012 - 20:49:26 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-81420B07.pf
O45 - LFCP:[MD5.B1536B6567DF810B66863EFE2ABA178D] - 28/11/2012 - 19:15:53 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-F59CA9BD.pf
O45 - LFCP:[MD5.6FD9EAA13B6945CC18E912BDAD030B30] - 28/11/2012 - 19:24:55 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-72398DC0.pf
O45 - LFCP:[MD5.84E37B683514BB55887C8DFD038C75EF] - 28/11/2012 - 19:24:59 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-2D2EC75A.pf
O45 - LFCP:[MD5.495096C4B5B4232BF0A7834729AE1510] - 28/11/2012 - 19:26:00 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-8FD92526.pf
O45 - LFCP:[MD5.81DA698512F6720C70FFC4364F61A843] - 28/11/2012 - 19:26:00 ---A- - C:\Windows\Prefetch\VSSVC.EXE-04D079CC.pf
O45 - LFCP:[MD5.E1F4204F20424D4E1BC2F8794FBE422B] - 28/11/2012 - 19:28:13 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E2054E7F.pf
O45 - LFCP:[MD5.B035080AD12F02CA10FA547FC0CB0FD9] - 28/11/2012 - 19:35:18 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-D8BC6ED2.pf
O45 - LFCP:[MD5.46F014FF28EA59342E61AFFB3FA27FA5] - 28/11/2012 - 19:43:18 ---A- - C:\Windows\Prefetch\CLI.EXE-F1DD176A.pf
O45 - LFCP:[MD5.7D04DD2F319DBCAA0C7EE5FE866CE6A4] - 28/11/2012 - 19:43:43 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.7277554C43F857FD37A2191FF274DEF3] - 28/11/2012 - 19:43:43 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.A47A14FA705A6E6451C4BCE76F0C2AB8] - 28/11/2012 - 19:43:44 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.C9E83C0C095B1DB2E8621D2FB218FEF6] - 28/11/2012 - 19:43:44 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.00AE06F0238E54960A623EE0A4C14D04] - 28/11/2012 - 19:43:44 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.1DC5E34D83D0AEF8F8EE845143529A8C] - 28/11/2012 - 19:56:02 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-7A3328DA.pf
O45 - LFCP:[MD5.6F78AB1D48E5216B78656EBC9235A7A9] - 28/11/2012 - 19:57:50 ---A- - C:\Windows\Prefetch\VLC.EXE-CE8E9BE1.pf
O45 - LFCP:[MD5.E488DC98C282FA9DD963A2BDFF8DE678] - 28/11/2012 - 19:59:28 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf
O45 - LFCP:[MD5.E43872F0B967C2EC2E9DC1FD76BC3104] - 28/11/2012 - 20:07:37 ---A- - C:\Windows\Prefetch\WERMGR.EXE-2A1BCBC7.pf
O45 - LFCP:[MD5.85ECCF5250B72EEDFCF9AC81688CA023] - 28/11/2012 - 20:13:05 ---A- - C:\Windows\Prefetch\JAVAW.EXE-59CBCAE5.pf
O45 - LFCP:[MD5.96C361AE4B1CAF89A0AD58418B5469E0] - 28/11/2012 - 20:13:05 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-50F8773C.pf
O45 - LFCP:[MD5.3F06AD5C76A37DA0BFE0AF2BA53FE86A] - 28/11/2012 - 21:39:56 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-3026010304-3200845865-1493322001-1000.db
O45 - LFCP:[MD5.28FDBB7FD81D88A656FDEBD1619DA935] - 28/11/2012 - 21:39:57 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3026010304-3200845865-1493322001-1000.db
O45 - LFCP:[MD5.29368F0324C59E769D1BB76CC430F58A] - 28/11/2012 - 22:18:06 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-0CF170F4.pf
O45 - LFCP:[MD5.7A315540A52F6CE88162915623C0F088] - 28/11/2012 - 22:24:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-5BAF290C.pf
O45 - LFCP:[MD5.369BD67E0D9194384CE3A8A95CA618EE] - 28/11/2012 - 22:34:19 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf
O45 - LFCP:[MD5.E84783240039DA966D7B65D9513F9FA0] - 28/11/2012 - 22:34:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-AFD98684.pf
O45 - LFCP:[MD5.D9B3DD76B37282B9C8E47341CBABCD67] - 28/11/2012 - 22:34:26 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.5113718CF1A45B4BB482E5C8C0B383F4] - 28/11/2012 - 22:34:34 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-D0D776AC.pf
O45 - LFCP:[MD5.CAD19E5415A6059DC31A83EAEA15BEDC] - 28/11/2012 - 22:34:40 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-1B894AFB.pf
O45 - LFCP:[MD5.C29C4537EFC4C73B547555A1DD5225E7] - 28/11/2012 - 22:35:26 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.94462CCC8B47E1BB1BAFD1E03A3A2D06] - 29/11/2012 - 18:19:16 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-33939BD1.pf
O45 - LFCP:[MD5.EA93C57AA45A9F9819558E47145EE638] - 29/11/2012 - 18:19:16 ---A- - C:\Windows\Prefetch\CCLEANER.EXE-CC440CDB.pf
O45 - LFCP:[MD5.A3168C457A951F205CBB41DC838F86CB] - 29/11/2012 - 18:19:16 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-77D27BAC.pf
O45 - LFCP:[MD5.F5E1EC23EC4DDC0319912D4297F935B2] - 29/11/2012 - 18:19:16 ---A- - C:\Windows\Prefetch\SKYDRIVE.EXE-D41B94EA.pf
O45 - LFCP:[MD5.41C0725BFD299CF9CD344D3FA6971DDA] - 29/11/2012 - 18:19:27 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-71214090.pf
O45 - LFCP:[MD5.02C42DAFFED9722E5E2957E148E26A1B] - 29/11/2012 - 18:19:41 ---A- - C:\Windows\Prefetch\REALPLAY.EXE-FD224278.pf
O45 - LFCP:[MD5.3ADC4254E96D8A6BE073E012FF836447] - 29/11/2012 - 18:19:43 ---A- - C:\Windows\Prefetch\CCC.EXE-ECD4BD27.pf
O45 - LFCP:[MD5.472F6CA88694461753CFBD103188BC26] - 29/11/2012 - 18:19:48 ---A- - C:\Windows\Prefetch\MMLOADDRV.EXE-B91223A0.pf
O45 - LFCP:[MD5.76AF76D998C2E3511BF27687CE3C8B00] - 29/11/2012 - 18:20:00 ---A- - C:\Windows\Prefetch\AVAST.SETUP-78AEAC94.pf
O45 - LFCP:[MD5.48D6C58EDC3D0FC7D1C34AB8E5F15B52] - 29/11/2012 - 18:20:55 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-FAA88858.pf
O45 - LFCP:[MD5.DF6F33687728A7F7C137020426E4F45F] - 29/11/2012 - 18:21:01 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-35CCFD11.pf
O45 - LFCP:[MD5.3FC37920E02A56776E5AFE05287A6353] - 29/11/2012 - 18:21:07 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-CBE91656.pf
O45 - LFCP:[MD5.A8905579EF21F8E422AF2891F57776BE] - 29/11/2012 - 18:21:08 ---A- - C:\Windows\Prefetch\PRESENTATIONFONTCACHE.EXE-42767AE9.pf
O45 - LFCP:[MD5.D75C18960F637A8E2219A0B374765167] - 29/11/2012 - 18:21:08 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-18D06B2E.pf
O45 - LFCP:[MD5.D3964949E6F926F5BAEBC0E5AD3542AC] - 29/11/2012 - 18:21:23 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-55A4EE79.pf
O45 - LFCP:[MD5.23EA9D21C4A05BDE8FBDDD867AEF6343] - 29/11/2012 - 18:21:23 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-437C05A8.pf
O45 - LFCP:[MD5.9F32A39E08584C1F38DB3F120CA40894] - 29/11/2012 - 18:22:14 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-369DF1CD.pf
O45 - LFCP:[MD5.B57B12FEA888CC6EFE2EA8A8D8389346] - 29/11/2012 - 18:23:51 ---A- - C:\Windows\Prefetch\JAVA.EXE-872FBD82.pf
O45 - LFCP:[MD5.46E106D9194611C3C8E7566380F9532F] - 29/11/2012 - 18:24:03 ---A- - C:\Windows\Prefetch\CMD.EXE-89305D47.pf
O45 - LFCP:[MD5.E9A175F9A605BD8E897D1F0E13EB9CA0] - 29/11/2012 - 18:24:03 ---A- - C:\Windows\Prefetch\CONHOST.EXE-3218E401.pf
O45 - LFCP:[MD5.AEE3E989DC51B960A302FECAC529DBEE] - 29/11/2012 - 18:24:03 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-E4C98DEB.pf
O45 - LFCP:[MD5.DE4959135FEEEA96F86D2BF649B693CA] - 29/11/2012 - 18:24:11 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-8973CEDD.pf
O45 - LFCP:[MD5.46EB92D93ABDEA5A41E5E2C017050701] - 29/11/2012 - 18:24:11 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf
O45 - LFCP:[MD5.AB96498485CFA7EBB8DD7B3DE59A04BE] - 29/11/2012 - 18:24:19 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-93CEEE07.pf
O45 - LFCP:[MD5.B4BF4EB9BD96FC749020D896D17F2A9D] - 29/11/2012 - 18:25:00 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-2DE769BF.pf
O45 - LFCP:[MD5.3BE2D7734F184EFBD531B06495FCF54E] - 29/11/2012 - 18:25:13 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-AA7A1FDD.pf
O45 - LFCP:[MD5.7CC281D2DC0C548F200AE600DBC6BE08] - 29/11/2012 - 18:25:13 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-AFAD3EF9.pf
~ Scan Prefetcher in 00mn 02s


---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s


---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s


---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{0f2d7e29-1e5c-11e2-b93c-0021853bae6d}\AutoRun\command. (.Microsoft Corporation - Windows Installer.) -- G:\setup.exe
O51 - MPSK:{d73869a0-c28d-11df-8839-806e6f6e6963}\AutoRun\command. (...) -- E:\Launch.exe (.not file.)
O51 - MPSK:{d7386b2c-c28d-11df-8839-0021853bae6d}\AutoRun\command. (...) -- E:\setup.exe (.not file.)
~ Scan Keys in 00mn 00s


---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsvid.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll
O52 - TDSD: \Drivers32\"VIDC.TMB0"="tmbvcm32.dll" . (...) -- C:\Windows\System32\tmbvcm32.dll
O52 - TDSD: \drivers.desc\"frapsvid.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll
O52 - TDSD: \drivers.desc\"tmbvcm32.dll"="PlayClaw video decoder" . (...) -- C:\Windows\System32\tmbvcm32.dll
~ Scan Keys in 00mn 00s


---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\APSDaemon  [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\AVFX Engine  [Key] . (.Creative Technology Ltd. - Start Advanced Video FX Engine Application.) -- C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite  [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task  [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O53 - SMSR:HKLM\...\startupreg\VDownloader  [Key] . (.Vitzo - VDownloader.) -- C:\Program Files\VDownloader\VDownloader.exe
~ Scan SMSR Keys in 00mn 00s


---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s


---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s


---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
~ Scan Keys in 00mn 00s


---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [422976]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
~ Scan Drivers in 00mn 00s


---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC:Last File Created 27/11/2012 - 20:49:03 ---A- C:\Users\johan\AppData\Local\AMD\Fuel\ClientProxyLog_3.txt   [2]
O61 - LFC:Last File Created 28/11/2012 - 19:14:24 ---A- C:\Users\johan\AppData\Roaming\Real\RealPlayer\db\dbdata.txt   [40]
O61 - LFC:Last File Created 28/11/2012 - 19:14:45 ---A- C:\Users\johan\AppData\Local\Temp\~DF5BC571BBF352CF7F.TMP   [245760]
O61 - LFC:Last File Created 28/11/2012 - 19:15:19 ---A- C:\Users\johan\AppData\Local\AMD\Fuel\ClientProxyLog_2.txt   [2]
O61 - LFC:Last File Created 28/11/2012 - 19:17:35 ---A- C:\Users\johan\AppData\Roaming\Real\Msg\1_1352253014\20121114.smil   [645]
O61 - LFC:Last File Created 28/11/2012 - 19:17:35 ---A- C:\Users\johan\AppData\Roaming\Real\Msg\1_1352253014\Barker.txt   [47]
O61 - LFC:Last File Created 28/11/2012 - 19:17:35 ---A- C:\Users\johan\AppData\Roaming\Real\Msg\1_1352253014\saleipm_FR_201210.jpg   [65587]
O61 - LFC:Last File Created 28/11/2012 - 19:17:35 ---A- C:\Users\johan\AppData\Roaming\Real\Msg\Category.dat   [416]
O61 - LFC:Last File Created 28/11/2012 - 19:17:44 ---A- C:\Users\johan\AppData\Roaming\Real\Msg\Messages.dat   [311]
O61 - LFC:Last File Created 28/11/2012 - 19:19:58 ---A- C:\Users\johan\AppData\Local\Temp\nsx338E.tmp\System.dll   [16712]
O61 - LFC:Last File Created 28/11/2012 - 19:20:00 ---A- C:\Users\johan\AppData\Local\Temp\nsx338E.tmp\webapphost.dll   [632648]
O61 - LFC:Last File Created 28/11/2012 - 19:20:01 ---A- C:\Users\johan\AppData\Local\Temp\nsx338E.tmp\inetc.dll   [29512]
O61 - LFC:Last File Created 28/11/2012 - 19:22:16 ---A- C:\Users\johan\AppData\Local\Temp\tmp4FD4.url   [408]
O61 - LFC:Last File Created 28/11/2012 - 19:22:16 ---A- C:\Users\johan\AppData\Local\Temp\tmp4FF4.vbs   [210]
O61 - LFC:Last File Created 28/11/2012 - 19:23:04 ---A- C:\Users\johan\AppData\Local\Temp\nseB95.tmp\System.dll   [16712]
O61 - LFC:Last File Created 28/11/2012 - 19:23:07 ---A- C:\Users\johan\AppData\Local\Temp\nseB95.tmp\inetc.dll   [29512]
O61 - LFC:Last File Created 28/11/2012 - 19:23:07 ---A- C:\Users\johan\AppData\Local\Temp\nseB95.tmp\webapphost.dll   [632648]
O61 - LFC:Last File Created 28/11/2012 - 19:42:29 ---A- C:\Users\johan\AppData\Roaming\Microsoft\MMC\eventvwr   [145791]
O61 - LFC:Last File Created 28/11/2012 - 19:56:19 ---A- C:\Users\johan\AppData\Roaming\DAEMON Tools Lite\ImgStats.dat   [660]
O61 - LFC:Last File Created 28/11/2012 - 19:57:48 ---A- C:\Users\johan\AppData\Local\AMD\Fuel\ClientProxyLog_1.txt   [2]
O61 - LFC:Last File Created 28/11/2012 - 22:34:31 ---A- C:\Users\johan\AppData\Local\Temp\~DFB6B422B727DA5FBC.TMP   [0]
O61 - LFC:Last File Created 28/11/2012 - 22:34:31 ---A- C:\Users\johan\AppData\Local\Temp\~DFCCA362D53408F880.TMP   [0]
O61 - LFC:Last File Created 28/11/2012 - 22:34:32 ---A- C:\Users\johan\AppData\Local\Temp\~DF1A80D700F988EABA.TMP   [0]
O61 - LFC:Last File Created 28/11/2012 - 22:34:32 ---A- C:\Users\johan\AppData\Local\Temp\~DF99C47C1D4245F19C.TMP   [0]
O61 - LFC:Last File Created 28/11/2012 - 22:34:38 ---A- C:\Users\johan\AppData\Local\Temp\~DFB9DC930EE0A5C0BA.TMP   [0]
O61 - LFC:Last File Created 28/11/2012 - 22:34:38 ---A- C:\Users\johan\AppData\Local\Temp\~DFE0451C009D808274.TMP   [0]
O61 - LFC:Last File Created 28/11/2012 - 22:42:57 ---A- C:\Users\johan\AppData\Local\Temp\nsm5D7B.tmp\System.dll   [16712]
O61 - LFC:Last File Created 28/11/2012 - 22:42:58 ---A- C:\Users\johan\AppData\Local\Temp\nsm5D7B.tmp\inetc.dll   [29512]
O61 - LFC:Last File Created 28/11/2012 - 22:42:58 ---A- C:\Users\johan\AppData\Local\Temp\nsm5D7B.tmp\webapphost.dll   [632648]
O61 - LFC:Last File Created 29/11/2012 - 18:19:38 ---A- C:\Users\johan\AppData\Local\ATI\ACE\Manifest.Bin   [28165]
O61 - LFC:Last File Created 29/11/2012 - 18:19:38 ---A- C:\Users\johan\AppData\Local\ATI\ACE\Manifest.xml   [20325]
O61 - LFC:Last File Created 29/11/2012 - 18:19:57 ---A- C:\Users\johan\AppData\Local\AMD\Fuel\ClientProxyLog.txt   [2]
O61 - LFC:Last File Created 29/11/2012 - 18:21:01 ---A- C:\Users\johan\AppData\Local\ATI\ACE\Profiles.xml   [14635]
O61 - LFC:Last File Created 30/12/1899 - 19:43:11 --HA- C:\Users\johan\AppData\Local\IconCache.db   [1624013]
~ Scan Files in 11mn 13s


---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.31 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s


---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\AFS.sys (AFS)  .(.Oak Technology Inc. - Audio File System.) - LEGACY_AFS
O64 - Services: CurCS - 28/07/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag)  .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 21/08/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 21/08/2012 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 31/03/2010 - C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt - Lavalys EVEREST Kernel Driver (EverestDriver)  .(...) - LEGACY_EVERESTDRIVER
O64 - Services: CurCS - 19/06/2012 - C:\Windows\System32\DRIVERS\kl1.sys (kl1)  .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL1
O64 - Services: CurCS - 13/08/2012 - C:\Windows\System32\DRIVERS\klif.sys (KLIF)  .(.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) - LEGACY_KLIF
O64 - Services: CurCS - 02/08/2012 - C:\Windows\System32\DRIVERS\klim6.sys (KLIM6)  .(.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - LEGACY_KLIM6
O64 - Services: CurCS - 08/06/2012 - C:\Windows\System32\DRIVERS\kltdi.sys (kltdi)  .(.Kaspersky Lab - Network filtering component.) - LEGACY_KLTDI
O64 - Services: CurCS - 13/08/2012 - C:\Windows\System32\DRIVERS\kneps.sys (kneps)  .(.Kaspersky Lab - KNEPS Power.) - LEGACY_KNEPS
O64 - Services: CurCS - 29/09/2012 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector)  .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 28/11/2012 - C:\Windows\system32\drivers\mbamswissarmy.sys (MBAMSwissArmy)  .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMSWISSARMY
O64 - Services: CurCS - 27/01/2010 - C:\Windows\System32\drivers\npf.sys (npf)  .(.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) - LEGACY_NPF
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 07/10/2012 - C:\Windows\system32\Drivers\sptd.sys (sptd)  .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD
~ Scan Services in 00mn 01s


---\\ Liste des fichiers non signés (O65) (None)

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s


---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
~ Scan Keys in 00mn 00s


---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {D3D1082C-3659-4BF0-99CF-FF59146A0B02} - (Wikipédia (fr)) - http://fr.wikipedia.org
~ Scan Keys in 00mn 00s


---\\ Crack & Keygen Files (O82)
C:\Users\johan\Documents\jeux téléchargés johan\burnout paradis\BP The Ultimate Box\rld-burp\Crack\burnout keygen.exe
C:\Users\johan\Documents\jeux téléchargés johan\burnout paradis\BP The Ultimate Box\rld-burp\Crack\burnout keygen.exe
~ Scan Files in 02mn 30s


---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [674304]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [473600]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [521216]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [164352]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [102912]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [76800]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [37376]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll   [149504]
~ Scan Services in 00mn 00s


---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.FB5C1F9D6536737AF31AD3FE5956F2F6] [SPRF][11/01/2012] (...) -- C:\Users\johan\AppData\Local\fusioncache.dat   [93]
[MD5.898AD7D508F6ADE242D94752E09F4152] [SPRF][31/03/2010] (...) -- C:\Users\johan\AppData\Local\Temp\EverestDriver.sys   [27760]
[MD5.EE652F2889EC30B778DBF627229CEA8B] [SPRF][05/11/2012] (.Conduit -  generic DM.) -- C:\Users\johan\Desktop\01net_AVG_Antivirus_Free_Edition.exe   [810878]
[MD5.FB9F6F5C7BE3F439DB758D0D7B71F146] [SPRF][05/09/2009] (...) -- C:\Users\johan\Desktop\AIDA_32_3.93_Personnal_Edition.exe   [3300289]
[MD5.841240279F6B14E81C1DD40AFD98A3B4] [SPRF][11/10/2012] (...) -- C:\Users\johan\Desktop\Autosave.sav   [2163240]
[MD5.94E28010255D126FE7BFE4E55C06492C] [SPRF][05/11/2012] (.Pas de propriétaire - AVAST Software Setup Engine.) -- C:\Users\johan\Desktop\avast_free_antivirus_setup.exe   [97495576]
[MD5.CCE61FDE6355F5086FDE8CFA55E1563A] [SPRF][11/10/2012] (...) -- C:\Users\johan\Desktop\carriere.sav   [2126046]
[MD5.4774480869AFD209CE8D6F8A69C847D1] [SPRF][09/11/2012] (.Lavalys, Inc. - EVEREST Ultimate Edition.) -- C:\Users\johan\Desktop\everest-ultimate_everest_ultimate_5.50.2100_francais_12281.exe   [10255080]
[MD5.F28527F9B30E6422B12E11490FEC080B] [SPRF][24/10/2012] (...) -- C:\Users\johan\Desktop\France.sav   [2313938]
[MD5.D5491DE1AA85BFC7FB4303F963857944] [SPRF][28/02/2010] (...) -- C:\Users\johan\Desktop\Quicksave.sav   [1692203]
[MD5.2CF83C80B611AA8AA97490BA59E0455E] [SPRF][24/10/2012] (...) -- C:\Users\johan\Desktop\Sauvegarde.sav   [2310392]
[MD5.245E2761D02D2FC40B857D71F8A96616] [SPRF][08/06/2010] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.1 r53.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe   [2605008]
~ Scan Files in 00mn 01s


---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{10925DB0-B17A-40CA-9875-8B2FAC4B77B1}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (.not file.)
O87 - FAEL: "{45484861-0A51-4E0E-81C0-5F0FF73D175E}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe (.not file.)
O87 - FAEL: "{0D7E37F1-7ED3-4A77-9382-05FFE82EE016}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (.not file.)
O87 - FAEL: "{183C66C4-9E8D-477B-B3DA-156D9A80E9D4}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe (.not file.)
O87 - FAEL: "TCP Query User{262FDBB5-B914-4894-A24C-0CAA9E6BB094}C:\program files\warcraft iii\war3.exe" | In - Public - P6 - TRUE | .(.Blizzard Entertainment - Warcraft III.) -- C:\program files\warcraft iii\war3.exe
O87 - FAEL: "UDP Query User{207B5B01-1F77-4FA5-B31C-1C131254D291}C:\program files\warcraft iii\war3.exe" | In - Public - P17 - TRUE | .(.Blizzard Entertainment - Warcraft III.) -- C:\program files\warcraft iii\war3.exe
O87 - FAEL: "TCP Query User{DE2CD279-0CAD-4776-A675-EDA4DC016422}C:\program files\ea sports\fifa 11\game\fifa.exe" | In - Private - P6 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files\ea sports\fifa 11\game\fifa.exe
O87 - FAEL: "UDP Query User{5F678B59-D07E-4195-9FC5-AD18A7BA6562}C:\program files\ea sports\fifa 11\game\fifa.exe" | In - Private - P17 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files\ea sports\fifa 11\game\fifa.exe
O87 - FAEL: "{8EB5DA6C-14AB-4333-998B-A81311CDC8AF}" | In - Public - P17 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files\ea sports\fifa 11\game\fifa.exe
O87 - FAEL: "{34128630-0350-4CD1-BAC3-4DA4425C44CA}" | In - Public - P6 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files\ea sports\fifa 11\game\fifa.exe
O87 - FAEL: "TCP Query User{7BD4BB74-0D68-4AB9-BC7F-861CBFA895A9}C:\program files\google\google earth\client\googleearth.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\google\google earth\client\googleearth.exe (.not file.)
O87 - FAEL: "UDP Query User{E8705DCF-B3A8-465A-831B-2EEF11B88FF9}C:\program files\google\google earth\client\googleearth.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\google\google earth\client\googleearth.exe (.not file.)
O87 - FAEL: "TCP Query User{205EC02C-E800-4D7C-A8E2-E57A2A694693}C:\program files\call of duty\codmp.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\call of duty\codmp.exe
O87 - FAEL: "UDP Query User{4AD532E2-06BD-47E5-A05F-B9613915E660}C:\program files\call of duty\codmp.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\call of duty\codmp.exe
O87 - FAEL: "TCP Query User{48976BD9-67DC-40BB-BDD8-3F44C76AC4F9}C:\program files\videolan\vlc\vlc.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\videolan\vlc\vlc.exe
O87 - FAEL: "UDP Query User{20C12255-63DD-4E70-A89B-21D9F6988481}C:\program files\videolan\vlc\vlc.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\videolan\vlc\vlc.exe
O87 - FAEL: "TCP Query User{23238332-9367-4B88-AD11-A6DD39D2EC73}C:\program files\sightspeed\sightspeed.exe" | In - Private - P6 - TRUE | .(.SightSpeed Inc. - SightSpeed Video Calling.) -- C:\program files\sightspeed\sightspeed.exe
O87 - FAEL: "UDP Query User{DEC8A0D1-A88E-4A6C-A367-2107C5313517}C:\program files\sightspeed\sightspeed.exe" | In - Private - P17 - TRUE | .(.SightSpeed Inc. - SightSpeed Video Calling.) -- C:\program files\sightspeed\sightspeed.exe
O87 - FAEL: "TCP Query User{AF4B56A8-B92E-4DA4-8B11-CF908103ADE7}C:\program files\steam\steam.exe" | In - Public - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\program files\steam\steam.exe
O87 - FAEL: "UDP Query User{32D2DDB2-AB2D-4519-8E7E-F466B1B926E3}C:\program files\steam\steam.exe" | In - Public - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\program files\steam\steam.exe
O87 - FAEL: "TCP Query User{5003DC55-702A-46FE-8EFB-D57178356A60}C:\program files\electronic arts\sports car gt\spcar.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\electronic arts\sports car gt\spcar.exe (.not file.)
O87 - FAEL: "UDP Query User{C83F7BFB-0073-4374-A80C-78DB2507EC30}C:\program files\electronic arts\sports car gt\spcar.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\electronic arts\sports car gt\spcar.exe (.not file.)
O87 - FAEL: "TCP Query User{E9F49058-D10C-44FC-9536-0F8F1FD34416}C:\program files\microprose\grand prix 3\gp3.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\microprose\grand prix 3\gp3.exe (.not file.)
O87 - FAEL: "UDP Query User{AB566083-FB6D-461F-B7F3-9C3A80A31758}C:\program files\microprose\grand prix 3\gp3.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\microprose\grand prix 3\gp3.exe (.not file.)
O87 - FAEL: "{43C444C8-75A3-4FF7-8E9B-71150C2C27C1}" |In - Public - P17 - TRUE | .(...) -- C:\program files\microprose\grand prix 3\gp3.exe (.not file.)
O87 - FAEL: "{EE9E18E0-D6CE-47E3-92AF-968EECB46387}" |In - Public - P6 - TRUE | .(...) -- C:\program files\microprose\grand prix 3\gp3.exe (.not file.)
O87 - FAEL: "TCP Query User{A72CD1E7-ED6A-4E00-9942-D625EBFFCA35}C:\program files\google\google earth\plugin\geplugin.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\google\google earth\plugin\geplugin.exe (.not file.)
O87 - FAEL: "UDP Query User{5798A20C-A5B5-455F-9817-2D91E2EAAC30}C:\program files\google\google earth\plugin\geplugin.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\google\google earth\plugin\geplugin.exe (.not file.)
O87 - FAEL: "TCP Query User{C6AF7E0C-CAEF-4352-9B01-807840A5358F}C:\sierra\viper racing\data\race.bin" |In - Public - P6 - TRUE | .(...) -- C:\sierra\viper racing\data\race.bin (.not file.)
O87 - FAEL: "UDP Query User{BB6348D1-A9C2-4A72-800E-256668896D0A}C:\sierra\viper racing\data\race.bin" |In - Public - P17 - TRUE | .(...) -- C:\sierra\viper racing\data\race.bin (.not file.)
O87 - FAEL: "{0BAE2332-9B48-4F35-A4C5-083123458E13}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{A708D13E-707D-4FB4-8C6B-B999ED7237FE}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{2589AE03-0D83-49C5-9A71-5DB8F49DFD4B}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\adslTV\VLC\vlc.exe (.not file.)
O87 - FAEL: "{D7B7BDA8-0836-4C87-883D-23FAA4B06828}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\adslTV\VLC\vlc.exe (.not file.)
O87 - FAEL: "{CF5E5BA6-8FE3-4CE5-802D-B4F33C399A5A}" | In - Public - P6 - TRUE | .(.The Creative Assembly Ltd - Empire: Total War.) -- C:\Program Files\Steam\SteamApps\common\empire total war\Empire.exe
O87 - FAEL: "{2DC583A6-78ED-4BEA-B528-CF91632F3E24}" | In - Public - P17 - TRUE | .(.The Creative Assembly Ltd - Empire: Total War.) -- C:\Program Files\Steam\SteamApps\common\empire total war\Empire.exe
O87 - FAEL: "{18A63800-DBB1-4BB2-9D66-30FA479AFE83}" | In - Public - P6 - TRUE | .(.Sega Europe Limited - Pas de description.) -- C:\Program Files\Steam\SteamApps\common\aliens vs predator\AvP_Launcher.exe
O87 - FAEL: "{513B29CB-E306-4346-881B-D58FB7EB8E3D}" | In - Public - P17 - TRUE | .(.Sega Europe Limited - Pas de description.) -- C:\Program Files\Steam\SteamApps\common\aliens vs predator\AvP_Launcher.exe
O87 - FAEL: "{3E7059D7-133C-4CA5-A1A2-0D05FADCE01D}" | In - Public - P6 - TRUE | .(.Sega Europe Limited - Pas de description.) -- C:\Program Files\Steam\SteamApps\common\aliens vs predator\AvP_DX11.exe
O87 - FAEL: "{45E72279-CBCD-4FE6-B7F8-6E8F4D7D17A9}" | In - Public - P17 - TRUE | .(.Sega Europe Limited - Pas de description.) -- C:\Program Files\Steam\SteamApps\common\aliens vs predator\AvP_DX11.exe
O87 - FAEL: "{1A1377D0-A385-4A10-A4F8-9E4F6669AC42}" | In - Public - P6 - TRUE | .(.Sega Europe Limited - Pas de description.) -- C:\Program Files\Steam\SteamApps\common\aliens vs predator\AvP.exe
O87 - FAEL: "{DD78B365-7A51-49ED-842A-58A826654F9E}" | In - Public - P17 - TRUE | .(.Sega Europe Limited - Pas de description.) -- C:\Program Files\Steam\SteamApps\common\aliens vs predator\AvP.exe
O87 - FAEL: "{8F399D24-46F6-458E-8F8A-DC28D65CB4AD}" | In - Public - P6 - TRUE | .(.The Creative Assembly Ltd - Napoleon: Total War.) -- C:\Program Files\Steam\SteamApps\common\napoleon total war\Napoleon.exe
O87 - FAEL: "{7448B8C3-7FCB-49CE-A2F5-D4457127C410}" | In - Public - P17 - TRUE | .(.The Creative Assembly Ltd - Napoleon: Total War.) -- C:\Program Files\Steam\SteamApps\common\napoleon total war\Napoleon.exe
O87 - FAEL: "{5A7D72DB-182D-4AEE-810C-AA365A18FBF1}" | In - Public - P6 - TRUE | .(.Ubisoft - Assassin's Creed Game.) -- C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx9.exe
O87 - FAEL: "{82900942-AA08-4D7D-9DFA-A61FC95DF27B}" | In - Public - P17 - TRUE | .(.Ubisoft - Assassin's Creed Game.) -- C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx9.exe
O87 - FAEL: "{C72B1F1B-AA7B-4720-8536-EA1E09F12048}" | In - Public - P6 - TRUE | .(.Ubisoft - Assassin's Creed Game.) -- C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx10.exe
O87 - FAEL: "{0D7F406D-DB70-4C0F-8080-A4BA1DF25161}" | In - Public - P17 - TRUE | .(.Ubisoft - Assassin's Creed Game.) -- C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx10.exe
O87 - FAEL: "{38813DE8-0B37-443C-8E1D-50E938EBAA56}" | In - Public - P6 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Launcher.exe
O87 - FAEL: "{8B9FC3D9-ECBE-4199-BCD5-5163A05D31DA}" | In - Public - P17 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Launcher.exe
O87 - FAEL: "TCP Query User{08BAC214-8620-4C62-9863-E43B9CB81B8B}C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.ex
O87 - FAEL: "UDP Query User{55D3F281-153C-403D-A700-D4A1BB8A1B49}C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.e
O87 - FAEL: "{CB8DEAEF-26A5-4389-8E83-5863F962B794}" | In - Public - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\System32\muzapp.exe
O87 - FAEL: "{00A3BF2C-C3B1-48C1-B392-0E2C5BEF9F21}" | In - Public - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\System32\muzapp.exe
O87 - FAEL: "{3C094CAF-36CA-4730-A19A-4E964F0F3DAE}" | In - Public - P6 - TRUE | .(.SightSpeed Inc. - SightSpeed Video Calling.) -- C:\Program Files\SightSpeed\SightSpeed.exe
O87 - FAEL: "{42C6101E-5600-4C78-9066-ABB62E0FD226}" | In - Public - P17 - TRUE | .(.SightSpeed Inc. - SightSpeed Video Calling.) -- C:\Program Files\SightSpeed\SightSpeed.exe
O87 - FAEL: "TCP Query User{D3D711C4-9D07-4487-B69D-60E224EC919A}C:\users\johan\appdata\local\temp\rarsfx0\hl.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx0\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{6E87B4A5-4A1A-4374-B732-3A9A5EF5A2BF}C:\users\johan\appdata\local\temp\rarsfx0\hl.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx0\hl.exe (.not file.)
O87 - FAEL: "TCP Query User{0CF87845-633F-4555-9B20-89C74F6EAFBE}C:\users\johan\appdata\local\temp\rarsfx1\hl.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx1\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{B6024543-E5CF-4CC7-BBE0-254A60BC06F9}C:\users\johan\appdata\local\temp\rarsfx1\hl.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx1\hl.exe (.not file.)
O87 - FAEL: "{D4BB5DE1-1BF3-416C-BBC1-723FE4FE7DC9}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\ma-config.com\maconfservice.exe (.not file.)
O87 - FAEL: "{ED37A410-1005-4D0A-999C-51FCB4DE1CAF}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\ma-config.com\maconfservice.exe (.not file.)
O87 - FAEL: "{20F33A4B-2D98-4057-A1B8-872F3F34682F}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)
O87 - FAEL: "{4BD8D428-7B5E-4FE1-A423-31FDD9D0839F}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)
O87 - FAEL: "TCP Query User{1459EDFF-0A84-437A-A38F-F87B476CF805}C:\users\johan\appdata\local\temp\rarsfx0\hl.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx0\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{FF34267B-A9C7-45FB-9C69-5130D6AF3DDD}C:\users\johan\appdata\local\temp\rarsfx0\hl.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx0\hl.exe (.not file.)
O87 - FAEL: "TCP Query User{CF14C215-8D68-4287-97A7-3151953DEE34}C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.e
O87 - FAEL: "UDP Query User{191673A1-9D01-4DD3-B4AE-E5F55DFA039B}C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files\lucasarts\star wars battlefront ii\gamedata\launchbfii.
O87 - FAEL: "TCP Query User{5CB84178-D2CC-431B-B3F6-25662CB42391}C:\users\johan\appdata\local\temp\rarsfx1\hl.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx1\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{87053E7F-3D8C-4F15-B499-39AA56C88C80}C:\users\johan\appdata\local\temp\rarsfx1\hl.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx1\hl.exe (.not file.)
O87 - FAEL: "TCP Query User{57A9A573-D7D2-4E36-8D88-342363596DF4}C:\users\johan\appdata\local\temp\rarsfx2\hl.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx2\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{7B358AF4-4E04-4142-80F1-3F96D7B6C81C}C:\users\johan\appdata\local\temp\rarsfx2\hl.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx2\hl.exe (.not file.)
O87 - FAEL: "{8727C4A4-86B7-4A1B-BCBE-7B7592FC6D36}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "TCP Query User{74C169F6-F78C-4F06-9054-9E4B15BE202E}C:\users\johan\appdata\local\temp\rarsfx3\hl.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx3\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{8378BFD8-1A05-4297-B936-693B51BFE367}C:\users\johan\appdata\local\temp\rarsfx3\hl.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx3\hl.exe (.not file.)
O87 - FAEL: "TCP Query User{157A7A23-80EB-4ADB-B787-D70012F7FE79}C:\users\johan\appdata\local\temp\rarsfx4\hl.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx4\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{989BE3B7-BFBA-4BDB-A3D3-375498A3365D}C:\users\johan\appdata\local\temp\rarsfx4\hl.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\johan\appdata\local\temp\rarsfx4\hl.exe (.not file.)
O87 - FAEL: "{85D1FD2E-D4F9-4CE4-966F-CCC7CB552DEC}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp_server.exe
O87 - FAEL: "{5DD5B1E7-D67B-4233-B55A-71F54DBA0D0B}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp_server.exe
O87 - FAEL: "TCP Query User{DF647CDC-6608-4698-AA28-C7186B3194BD}C:\program files\steam\steam.exe" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\program files\steam\steam.exe
O87 - FAEL: "UDP Query User{9A2315A9-CDF7-49D8-859F-9F67AD777FC9}C:\program files\steam\steam.exe" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\program files\steam\steam.exe
O87 - FAEL: "TCP Query User{6A54EE6E-BC63-4712-AF06-6E622D78BCED}C:\users\johan\documents\jeux téléchargés johan\urbanterror\iourbanterror.exe" | In - Private - P6 - TRUE | .(...) -- C:\users\johan\documents\jeux téléchargés johan\urbanterror\iourbanterr
O87 - FAEL: "UDP Query User{77DC40B5-B2A6-45B8-8ED2-89A03657E7D6}C:\users\johan\documents\jeux téléchargés johan\urbanterror\iourbanterror.exe" | In - Private - P17 - TRUE | .(...) -- C:\users\johan\documents\jeux téléchargés johan\urbanterror\iourbanter
O87 - FAEL: "{FA777475-800D-438C-AC9C-5007156C3270}" | In - Private - P6 - TRUE | .(.The Creative Assembly Ltd - Empire: Total War.) -- C:\Program Files\Steam\SteamApps\common\empire total war\Empire.exe
O87 - FAEL: "{8AFC86DF-BB53-4F4A-BAA8-23B73B98E3C7}" | In - Private - P17 - TRUE | .(.The Creative Assembly Ltd - Empire: Total War.) -- C:\Program Files\Steam\SteamApps\common\empire total war\Empire.exe
O87 - FAEL: "{8FA31492-9220-4308-AFC0-49A113E09D4A}" | In - Private - P6 - TRUE | .(.The Creative Assembly Ltd - Napoleon: Total War.) -- C:\Program Files\Steam\SteamApps\common\napoleon total war\Napoleon.exe
O87 - FAEL: "{61D42A01-7CE0-490E-B6C6-BEE16EB92F80}" | In - Private - P17 - TRUE | .(.The Creative Assembly Ltd - Napoleon: Total War.) -- C:\Program Files\Steam\SteamApps\common\napoleon total war\Napoleon.exe
O87 - FAEL: "{758B1954-284C-4316-A832-66F975D1FC8E}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5sp.exe
O87 - FAEL: "{A640B071-D346-437C-9BE7-4098551E9101}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5sp.exe
O87 - FAEL: "{ACCD5231-65BC-4DD7-96C3-1687F52F4B45}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
O87 - FAEL: "{3300F165-1428-4DDF-A3BB-9F7D5638184F}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
O87 - FAEL: "{DB52D7FD-7932-4D59-BEEF-30D16FDBE3FF}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O87 - FAEL: "{7319C77A-60E7-4121-9DE6-9CF79CE94B3A}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O87 - FAEL: "{F9CD915B-AFAF-43AE-B448-130688942EC3}" | In - Public - P6 - TRUE | .(.Advanced Micro Devices, Inc. - CATALYST™ Install Manager.) -- C:\Program Files\Steam\SteamApps\common\amd driver updater, vista and 7, 32 bit\Setup.exe
O87 - FAEL: "{DCF178C2-0CA9-4112-B41A-592D1DE66DC0}" | In - Public - P17 - TRUE | .(.Advanced Micro Devices, Inc. - CATALYST™ Install Manager.) -- C:\Program Files\Steam\SteamApps\common\amd driver updater, vista and 7, 32 bit\Setup.exe
O87 - FAEL: "{A986296E-21B9-4F3B-8213-9EACDB884DA5}" | In - Public - P6 - TRUE | .(.Electronic Arts - Burnout(TM) Paradise Launcher.) -- C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutLauncher.exe
O87 - FAEL: "{D6482736-3C13-4BEA-B80F-D85433314982}" | In - Public - P17 - TRUE | .(.Electronic Arts - Burnout(TM) Paradise Launcher.) -- C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutLauncher.exe
O87 - FAEL: "{1D5CAE9D-6B3C-4899-B7FF-51B334E713AC}" | In - Public - P6 - TRUE | .(.Electronic Arts - Burnout(TM) Paradise Configuration Tool.) -- C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
O87 - FAEL: "{297E49B0-3BA5-43FE-A851-80236F303DB5}" | In - Public - P17 - TRUE | .(.Electronic Arts - Burnout(TM) Paradise Configuration Tool.) -- C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
O87 - FAEL: "{CBC9491A-58F3-4A74-BE69-857CF655AFB1}" | In - Public - P6 - TRUE | .(.Electronic Arts - Burnout(TM) Paradise Application.) -- C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
O87 - FAEL: "{594EC849-E939-4853-999D-6F616EF69FC5}" | In - Public - P17 - TRUE | .(.Electronic Arts - Burnout(TM) Paradise Application.) -- C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
O87 - FAEL: "{A193DA74-F06E-45D8-88D5-2B9272C175DE}" |Out - Public - P6 - TRUE | .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe (.not file.)
O87 - FAEL: "{8B473EC4-77BB-4C53-8719-1F8B69DC97FF}" |Out - Public - P6 - TRUE | .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe (.not file.)
O87 - FAEL: "{4493BF43-3959-4A26-A5B4-A9C6C06A40F4}" |Out - Public - P6 - TRUE | .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe (.not file.)
O87 - FAEL: "TCP Query User{3763AF28-58FF-4B1D-9A72-9495522B1F72}C:\program files\steam\steamapps\jore85130\team fortress 2\hl2.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\steam\steamapps\jore85130\team fortress 2\hl2.exe (.not file.)
O87 - FAEL: "UDP Query User{AB31AD99-F098-4746-B595-37AA996A127B}C:\program files\steam\steamapps\jore85130\team fortress 2\hl2.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\steam\steamapps\jore85130\team fortress 2\hl2.exe (.not file.)
O87 - FAEL: "{9AF2A2BF-0D1D-4176-9C63-A3AAAF425928}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5sp.exe
O87 - FAEL: "{BB6F25FE-146D-4AD0-9EFA-3BD7320D5825}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5sp.exe
O87 - FAEL: "{8E9EE879-82B0-496A-B107-CBEF51A9BE46}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
O87 - FAEL: "{DA635746-29AA-440F-B589-C7DF45AA0D5F}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
~ Scan Firewall in 00mn 06s


---\\ Scan Additionnel (O88)
Database Version : 9653 - (22/11/2012)
Clés trouvées (Keys found) : 117
Valeurs trouvées (Values found) : 2
Dossiers trouvés  (Folders found) : 8
Fichiers trouvés  (Files found) : 0

[HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn]   =>
[HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32]   =>Adware.Bandoo
[HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS]   =>Adware.Bandoo
[HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32]   =>Toolbar.Babylon
[HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS]   =>Toolbar.Babylon
[HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32]   =>Adware.Bandoo
[HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS]   =>Adware.Bandoo
[HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32]   =>Adware.Bandoo
[HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS]   =>Adware.Bandoo
[HKLM\Software\Classes\HBLiteAx.Info]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\HBLiteAx.Info.1]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\HBLiteAX.UserProfiles]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\HBLiteAX.UserProfiles.1]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.HbAx]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.HbAx.1]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.HbInfoBand]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.HbInfoBand.1]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.IEButton]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.IEButton.1]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.IEButtonA]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.IEButtonA.1]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.RprtCtrl]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\ShoppingReport2.RprtCtrl.1]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}]   =>Adware.Agent
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}]   =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]   =>Adware.Agent
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC}]   =>Adware.ClickPotato
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}]   =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}]   =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}]   =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}]   =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}]   =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}]   =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}]   =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}]   =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-cd68-4f36-8d02-8c43722ee5da}]   =>Adware.Hotbar
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}]   =>Toolbar.Alot
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}]   =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}]   =>Adware.Softomate
[HKLM\Software\Classes\Interface\{a1f1ecd3-4806-44c6-a869-f0dadf11c57c}]   =>Adware.SmartShopper
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{b035ba6b-57cd-4f72-b545-65be465fcaf6}]   =>Adware.SmartShopper
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE}]   =>Adware.ClickPotato
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}]   =>Adware.CDNHelper
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}]   =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{D44FD6F0-9746-484E-B5C4-C66688393872}]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DB38E21A-0133-419d-92AD-ECDFD5244D6D}]   =>Adware.ShoppingReport2
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]   =>Toolbar.Alot
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{E46C8196-B634-44a1-AF6E-957C64278AB1}]   =>Toolbar.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}]   =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EB620C54-E229-4942-87CE-E717109FC8C6}]   =>Adware.ShopperReports
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}]   =>PUP.RewardsArcade
[HKLM\Software\AedgePerformanceBCN]   =>Adware.SPointer
[HKLM\Software\BrowserMngr]   =>Toolbar.Babylon
[HKCU\Software\Cr_Installer]   =>
[HKCU\Software\DataMngr]   =>Adware.Bandoo
[HKLM\Software\DataMngr]   =>Adware.Bandoo
[HKCU\Software\Iminent]   =>Adware.IMBooster
[HKLM\Software\Iminent]   =>Adware.IMBooster
[HKCU\Software\Softonic]   =>Toolbar.Conduit
[HKCU\Software\SweetIM]   =>Toolbar.SweetIM
[HKLM\Software\SweetIM]   =>Toolbar.SweetIM
[HKLM\Software\Tarma Installer]   =>Toolbar.Agent
[HKCU\Software\Tutorials]   =>Spyware.AgenceExclusive
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP]   =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShoppingReport2]   =>Adware.ShoppingReport2
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440}   =>Toolbar.AskSBar
[HKLM\Software\Mozilla\Firefox\Extensions]:HBLite@HBLite.com   =>Adware.Hotbar
C:\ProgramData\Babylon   =>Toolbar.Babylon
C:\ProgramData\Browser Manager   =>Toolbar.Babylon
C:\ProgramData\HBLiteSA   =>Adware.Hotbar
C:\Users\johan\AppData\Roaming\Babylon   =>Toolbar.Babylon
C:\Users\johan\AppData\Roaming\HBLite   =>Adware.Hotbar
C:\Users\johan\AppData\Roaming\WebPlayerBdd   =>Toolbar.Agent
C:\Users\johan\AppData\LocalLow\ShoppingReport2   =>Adware.ShoppingReport2
~ Scan Additionnel in 00mn 07s


---\\ Recherche détournement de DNS routeur (O89) (None)

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 27/07/2012 63960 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 09/11/2012 250808 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 28/07/2012 217600 |  (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 06/08/2012 291840 |  (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
SR - | Auto 21/08/2012 44808 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SR - | Auto 17/08/2012 218880 |  (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
SR - | Demand  27760 |  (EverestDriver) . (...) - C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt
SS - | Auto 04/07/2010 136176 |  (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 04/07/2010 136176 |  (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 03/04/2005 69632 |  (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 29/09/2012 399432 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 29/09/2012 676936 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
SR - | Auto 25/11/2011 687400 |  (NAUpdate) . (.Nero AG.) - C:\Program Files\Nero\Update\NASvc.exe
SR - | Auto 07/01/2011 608872 |  (NVSvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe
SS - | Demand 12/11/2012 529744 |  (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe
SR - | Auto 07/01/2011 378984 |  (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 04s


---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by johan at 29/11/2012 18:41:35

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll >>UNKNOWN [0x8636C1E8]<<
1 ntkrnlpa!IofCallDriver[0x83246BC5] -> \Device\Harddisk0\DR0[0x873C4030]
3 CLASSPNP[0x8CC1459E] -> ntkrnlpa!IofCallDriver[0x83246BC5] -> [0x863EB700]
5 ACPI[0x8BF5B3D4] -> ntkrnlpa!IofCallDriver[0x83246BC5] -> \Device\00000068[0x87094658]
\Driver\nvstor[0x870C21F0] -> IRP_MJ_CREATE -> 0x8636C1E8
kernel: MBR read successfully
user & kernel MBR OK
~ Scan MBR in 00mn 02s


---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by johan at 29/11/2012 18:41:37

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s


---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
~ Scan Emulateurs in 00mn 04s


End of the scan (2066 lines in 17mn 37s)(2)