Ordinateur vérole ou pas?

Fermé
Utilisateur anonyme - 10 avril 2013 à 20:08
Bonjour,

Voilà, j'étais sur un réseau, mais il semblerait que le réseau ait été hacké, je me demande donc après avoir formaté la partition système et en laissant intacte la partition Data, si mon ordinateur est encore vérole, ci dessous un rapport de ZHPDiag

Rapport de ZHPDiag v2013.4.9.53 par Nicolas Coolman, Update du 09/04/2013
Run by Bryan at 10/04/2013 22:04:39
State :
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
MFIE: Mozilla Firefox 20.0 v20.0 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Business Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : PW487
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Protection
Avira Internet Security 2012 v12.0.0.183
Firewall : Windows Defender

---\\ System Information
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6002 MB (72% free)
System Restore: Activé (Enable)
System drive C: has 340 GB (92%) free of 367 GB

---\\ Logged in mode
~ Computer Name: R0X0UED-PC
~ User Name: Bryan
~ All Users Names: Bryan, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Bryan\AppData\Roaming\
~ %Desktop% : C:\Users\Bryan\Desktop\
~ %Favorites% : C:\Users\Bryan\Favorites\
~ %LocalAppData% : C:\Users\Bryan\AppData\Local\
~ %StartMenu% : C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 340 Go of 367 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 244 Go of 332 Go)
E:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Explorateur Windows.) (.21/11/2010 - 07:24:11.) -- C:\Windows\Explorer.exe [2872320]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 05:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.F6C5302E1F4813D552F41A0AC82455E5] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/11/2010 - 07:23:55.) -- C:\Windows\System32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/11/2010 - 07:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 07:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.D31DC7A16DEA4A9BAF179F3D6FBDB38C] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/11/2010 - 07:24:08.) -- C:\Windows\system32\Drivers\AFD.sys [499712]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 05:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 03:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 07:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 07:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 07:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 03:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 04:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.FAF015B07E3A2874A790A39B7D2C579F] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.21/11/2010 - 07:24:03.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 07:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.05D78AA5CB5F3F5C31160BDB955D0B7C] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.21/11/2010 - 07:23:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 04:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 07:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 07:25:07.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 04:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 07:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 07:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/18
~ Mes musiques (My Musics) : 17/303
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/1263
~ Mon Bureau (My Desktop) : 1/4
~ Menu demarrer (Programs) : 1/23
~ Hidden Files: Scanned in 00mn 03s



---\\ Processus lancés
[MD5.4D241A6A8F6BA9FA32FF836551FFDCEA] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.4244]
[MD5.DEBF34BCF45FC4764CFF6F4CEBD1E03C] - (.FUJITSU LIMITED - IndicatorUty.exe.) -- C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe [48752] [PID.4256]
[MD5.67DDC56D7C71288B0F228006F8D75CD0] - (.Sierra Wireless, Inc. - Sierra Wireless AirCard Updates.) -- C:\Program Files (x86)\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe [329072] [PID.4296]
[MD5.DF59A96858BB850C05D76EF22E13B77D] - (.Sierra Wireless Inc. - WatcherHelper Application.) -- C:\Program Files (x86)\Sierra Wireless Inc\3G Watcher\WaHelper.exe [140656] [PID.4424]
[MD5.938DC332EB5A1A2698F2FFB14FE8A805] - (.CyberLink Corp. - CyberLink YouCam Service.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [255208] [PID.4476]
[MD5.28B64BF1F90F92FF7EE38467A9A08706] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [258512] [PID.4484]
[MD5.74A921A3820CA3139D0D30F453FDEB58] - (.Intel Corporation - Bluetooth Media Player Controller.) -- C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe [936272] [PID.4536]
[MD5.6CDC2F3A10FE7D95EDCC7E5D0C3E0B06] - (.Avira Operations GmbH & Co. KG - Avira Control Center.) -- C:\program files (x86)\avira\antivir desktop\avcenter.exe [306128] [PID.5024]
[MD5.339CF529AD9004F8748212613CE050DF] - (.Avira Operations GmbH & Co. KG - Avira Updater remote GUI.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\updrgui.exe [47824] [PID.3040]
[MD5.312FC312F84305E10828FDBF92CE4300] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472] [PID.5576]
[MD5.B588979D6910F9BE2D244FCBE2111DBF] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [6620160] [PID.5660]
[MD5.36AB0187EA15A4E8A86C08FC67FFDF85] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86224] [PID.1672]
[MD5.E09BB638B7B46DF053ACCE212EA3D6F4] - (.Avira Operations GmbH & Co. KG - Avira Firewall Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [616400] [PID.1856]
[MD5.0B0ED25051DCD25852164E25B657086B] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110032] [PID.1988]
[MD5.05981C3E51D827ED6B8101A54B05E392] - (.Intel Corporation - Bluetooth Device Monitor.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [1014096] [PID.2016]
[MD5.3628933AF5305EAB8173949BFF912F04] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.2168]
[MD5.41D8F56E6BBE0111244D87BE2FA90374] - (.Intel Corporation - Bluetooth OBEX Service.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [1104208] [PID.2584]
[MD5.991FB8163B54298C7A48CC8DC510C44E] - (.Avira Operations GmbH & Co. KG - Avira MailGuard Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe [342480] [PID.2220]
[MD5.21A95FAB12717A4D847966F739244629] - (.Avira Operations GmbH & Co. KG - Avira WebGuard Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.exe [463824] [PID.2300]
[MD5.BBFAF63BF768047FE2441B4139E803E3] - (.Intel Corporation - Bluetooth Media Service.) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1304912] [PID.4308]
[MD5.F1382BD24BF7BFD4BB17DB3EE4BB479B] - (.Avira Operations GmbH & Co. KG - Avira Updater.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\update.exe [577488] [PID.736]
[MD5.BF22ACF4CF3734D61357E67F0521BC03] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.5240]
[MD5.B097EBA0E3FEB020BB65FE43AF5ECCFF] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.5480]
~ Processes Running: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\6jql1688.default\prefs.js
M2 - MFEP: prefs.js [Bryan - 6jql1688.default\{e001c731-5e37-4538-a5cb-8168736a2360}] [] Bitdefender QuickScan v0.9.9.119 (.Echipa R&D Bitdefender.)
~ Firefox Browser: 9 Legitimates Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 12 Legitimates Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [RtHDVBg_DTS] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [BTMTrayAgent] . (.Intel Corporation - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
O4 - HKLM\..\Run: [FDM8] . (.FUJITSU LIMITED - Fujitsu Display Manager.) -- C:\Program Files\Fujitsu\FDM8\FdmDaemon.exe
O4 - HKLM\..\Run: [FJBATAID2] . (.FUJITSU LIMITED - Battery Daemon - Battery Utility.) -- C:\Program Files\Fujitsu\BatteryAid2\BatteryDaemon.exe
O4 - HKLM\..\Run: [LoadFUJ02E3] . (.FUJITSU LIMITED - Fujitsu System Extension Utility / FUJ02E3.) -- C:\Program Files\Fujitsu\FUJ02E3\fuj02e3.exe
O4 - HKLM\..\Run: [PSUTility] . (.FUJITSU LIMITED - TrayManager.) -- C:\Program Files\Fujitsu\PSUtility\TrayManager.exe
O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] . (.FUJITSU LIMITED - Tableau d'applications LIFEBOOK / Core.) -- C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
O4 - HKLM\..\Run: [LoadBtnHnd] . (.FUJITSU LIMITED - Button handler.) -- C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [IndicatorUtility] . (.FUJITSU LIMITED - IndicatorUty.exe.) -- C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
O4 - HKLM\..\Wow6432Node\Run: [TRUUpdater] . (.Sierra Wireless, Inc. - Sierra Wireless AirCard Updates.) -- C:\Program Files (x86)\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe
O4 - HKLM\..\Wow6432Node\Run: [WatcherHelper] . (.Sierra Wireless Inc. - WatcherHelper Application.) -- C:\Program Files (x86)\Sierra Wireless Inc\3G Watcher\WaHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [YouCam Service] . (.CyberLink Corp. - CyberLink YouCam Service.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\Run: [ZoneAlarm Installer] . (.Check Point Software Technologies LTD - Check Point Launcher Utility.) -- C:\Program Files (x86)\CheckPoint\Install\Launcher.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-3463943186-1522605302-4247770853-1000\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Desktop: Reprendre l'installation de ZoneAlarm Security.lnk . (.Check Point Software Technologies LTD - Check Point Install Utility.) -- C:\Program Files (x86)\CheckPoint\Install\Install.exe
~ Global Startup: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
~ IE Control Panel: 1 Legitimates Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 7 Legitimates Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A18740E8-0A1C-4FD3-BCE6-1602D88805FE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A18740E8-0A1C-4FD3-BCE6-1602D88805FE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{A18740E8-0A1C-4FD3-BCE6-1602D88805FE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
~ SSODL: 1 Legitimates Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: FUJ02E3Service (FUJ02E3Service) . (.FUJITSU LIMITED - Fujitsu System Extension Utility / FUJ02E3.) - C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O23 - Service: PFNService (PFNService) . (.FUJITSU LIMITED - Plugfree NETWORK.) - C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
O23 - Service: PowerSavingUtilityService (PowerSavingUtilityService) . (.FUJITSU LIMITED - PSUService.) - C:\Program Files\Fujitsu\PSUtility\PSUService.exe
O23 - Service: Sierra Wireless Card Detection Service (SwiCardDetectSvc) . (.Sierra Wireless, Inc. - Sierra Wireless Inc Card Detect Service.) - C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configurat (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
~ Services: 21 Legitimates Scanned in 00mn 04s



---\\ Enumération Active Desktop & MHTML Editor (O24)
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s



---\\ BootExecute (O34)
~ BEX: 1 Legitimates Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
~ Scheduled Task: 2 Legitimates Scanned in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
~ Active Setup: 11 Legitimates Scanned in 00mn 01s



---\\ Pilotes lancés au démarrage (O41)
~ Drivers: 75 Legitimates Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Anytime USB Charge Utility - (.FUJITSU LIMITED.) [HKLM][64Bits] -- {549BF60D-FDDA-4E4C-ABE3-9E897BC09E79}
O42 - Logiciel: Battery Utility - (.FUJITSU LIMITED.) [HKLM][64Bits] -- {D6C5A4CA-1EE8-4C73-9679-0BC2946D1353}
O42 - Logiciel: FJ Camera - (.Sonix.) [HKLM][64Bits] -- {399C37FB-08AF-493B-BFED-20FBD85EDF7F}
O42 - Logiciel: LIFEBOOK Application Panel - (.FUJITSU LIMITED.) [HKLM][64Bits] -- InstallShield_{6226477E-444F-4DFE-BA19-9F4F7D4565BC}
O42 - Logiciel: LIFEBOOK Application Panel - (.FUJITSU LIMITED.) [HKLM][64Bits] -- {6226477E-444F-4DFE-BA19-9F4F7D4565BC}
O42 - Logiciel: Plugfree NETWORK - (.FUJITSU LIMITED.) [HKLM][64Bits] -- {7BA64D21-EE46-4a9a-8145-52B0175C3F86}
O42 - Logiciel: Plugfree NETWORK - (.FUJITSU LIMITED.) [HKLM][64Bits] -- {E1C056BE-ACC9-4FCF-B37D-55A46648B369}
O42 - Logiciel: Power Saving Utility - (.FUJITSU LIMITED.) [HKLM][64Bits] -- {49A588CF-5FD4-4774-BFBF-0764287DE82B}
O42 - Logiciel: ZoneAlarm Free - (.Check Point.) [HKLM][64Bits] -- ZoneAlarm Free
~ Logic: 70 Legitimates Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ToolBoxDebug]
[HKLM\Software\ToolBoxDebug]
[HKLM\Software\Wow6432Node\RaiderZ]
[HKLM\Software\Wow6432Node\ToolBoxDebug]
~ Key Software: 113 Legitimates Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/04/2013 - 19:22:57 - [0] ----D C:\ProgramData\FDM8
~ Program Folder: 85 Legitimates Scanned in 00mn 10s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.471496FF62A636BB2AA51C0334634B9E] - 10/04/2013 - 21:59:43 ---A- . (...) -- C:\AdwCleaner[S1].txt [960]
O44 - LFC:[MD5.4EC6C7AC6A7CEEA70BEC3C1A44CECF30] - 10/04/2013 - 21:59:30 ---A- . (...) -- C:\AdwCleaner[R1].txt [899]
O44 - LFC:[MD5.57220164ABB44A5D54BCBE5601D0C96C] - 10/04/2013 - 21:15:35 ---A- . (...) -- C:\Windows\DirectX.log [10009]
O44 - LFC:[MD5.02323548638DA66CE142DF9C500D4232] - 10/04/2013 - 20:45:15 ---A- . (...) -- C:\Windows\DtcInstall.log [2790]
O44 - LFC:[MD5.9932CD4D86B7BA5299A7649AF40566C5] - 10/04/2013 - 20:45:00 ---A- . (...) -- C:\Windows\TSSysprep.log [1355]
O44 - LFC:[MD5.369C88F6F195694A018CECCECD330A8C] - 10/04/2013 - 19:26:24 ---A- . (.FUJITSU LIMITED - CPApplet.) -- C:\Windows\SysNative\PSUtilApplt.dll [198000]
O44 - LFC:[MD5.369C88F6F195694A018CECCECD330A8C] - 10/04/2013 - 19:26:24 RSHAD . (.FUJITSU LIMITED - CPApplet.) -- C:\Windows\System32\PSUtilApplt.dll [198000]
O44 - LFC:[MD5.561ED08FB266E688B5EBA94DFC30BA3B] - 10/04/2013 - 19:24:18 ---A- . (.FUJITSU LIMITED - Battery Set Cpl - Battery Utility.) -- C:\Windows\SysNative\BatterySetCpl.cpl [107888]
O44 - LFC:[MD5.561ED08FB266E688B5EBA94DFC30BA3B] - 10/04/2013 - 19:24:18 RSHAD . (.FUJITSU LIMITED - Battery Set Cpl - Battery Utility.) -- C:\Windows\System32\BatterySetCpl.cpl [107888]
O44 - LFC:[MD5.F01A0F1FE0D1ED2C2A5729E740150FD1] - 10/04/2013 - 19:22:14 ---A- . (.Pas de propriétaire - DisplaySettingMonitor MFC Application.) -- C:\Windows\snuvcdsm.exe [24576]
O44 - LFC:[MD5.41BE69AF227FEFB8E5A3BF0F69D1AF51] - 10/04/2013 - 19:22:14 ---A- . (.Sonix Technology Co., Ltd. - ResourceDLL.) -- C:\Windows\SysNative\rsnp2uvc.dll [272896]
O44 - LFC:[MD5.41BE69AF227FEFB8E5A3BF0F69D1AF51] - 10/04/2013 - 19:22:14 ---A- . (.Sonix Technology Co., Ltd. - ResourceDLL.) -- C:\Windows\System32\rsnp2uvc.dll [272896]
O44 - LFC:[MD5.EB98C67747B4406D79F25B0EFF0F906F] - 10/04/2013 - 19:22:14 ---A- . (.Sonix Technology Co., Ltd. - The utilities for device installation.) -- C:\Windows\SysNative\csnp2uvc.dll [243712]
O44 - LFC:[MD5.86493082A25710942FF82FEA3F4BAA5B] - 10/04/2013 - 19:22:14 ---A- . (.Sonix Technology Co., Ltd. - camext20.) -- C:\Windows\SysNative\vsnp2uvc.dll [374784]
O44 - LFC:[MD5.86493082A25710942FF82FEA3F4BAA5B] - 10/04/2013 - 19:22:14 ---A- . (.Sonix Technology Co., Ltd. - camext20.) -- C:\Windows\System32\vsnp2uvc.dll [374784]
O44 - LFC:[MD5.3B39BC0A15CB630A3CE2F6B732EA8B8E] - 10/04/2013 - 19:22:14 RSHAD . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\Windows\System32\Drivers\snp2uvc.sys [1812608]
O44 - LFC:[MD5.EB98C67747B4406D79F25B0EFF0F906F] - 10/04/2013 - 19:22:14 RSHAD . (.Sonix Technology Co., Ltd. - The utilities for device installation.) -- C:\Windows\System32\csnp2uvc.dll [243712]
O44 - LFC:[MD5.AFE8D2DE5C68DEB24286F9E76F1FC135] - 10/04/2013 - 19:21:25 ---A- . (...) -- C:\Windows\DPINST.LOG [13420]
O44 - LFC:[MD5.C74F37177A69090481115B5B82EBCBC7] - 10/04/2013 - 19:02:45 RSHAD . (.Pas de propriétaire - Intel® Manageability Engine Firmware Dynami.) -- C:\Windows\System32\Drivers\IntelMEFWVer.dll [15128]
O44 - LFC:[MD5.92C704590FCEDDA971B7A77945DCCDA4] - 10/04/2013 - 18:59:34 ---A- . (.Pas de propriétaire - About Page.) -- C:\Windows\SysNative\RtNicProp64.dll [74272]
O44 - LFC:[MD5.92C704590FCEDDA971B7A77945DCCDA4] - 10/04/2013 - 18:59:34 RSHAD . (.Pas de propriétaire - About Page.) -- C:\Windows\System32\RtNicProp64.dll [74272]
O44 - LFC:[MD5.05945324CF002D0BA9900C08863215C0] - 10/04/2013 - 18:58:28 ---A- . (...) -- C:\RHDSetup.log [2200]
O44 - LFC:[MD5.366FEA42402E7BAEC68C061B8FE57A97] - 17/01/2012 - 15:59:02 RSHAD . (...) -- C:\Windows\System32\Drivers\DTSU2P.DAT [1324]
O44 - LFC:[MD5.25315EE8B9DF09124FF49E23FE4CB424] - 17/01/2012 - 15:57:40 RSHAD . (...) -- C:\Windows\System32\Drivers\DTSU2PParamEQ.DAT [991]
O44 - LFC:[MD5.1B1EF3EA3519B8B55981D2FA1D28EF8F] - 13/12/2011 - 08:25:44 RSHAD . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [200468]
O44 - LFC:[MD5.67FAEAC1D6FD7B0FD0D5B5421AD82630] - 22/07/2009 - 03:08:00 ---A- . (...) -- C:\Windows\snp2uvc.src [13021]
O44 - LFC:[MD5.4E2B440764F79BC57438F8824737D9F2] - 09/09/2008 - 05:35:00 RSHAD . (...) -- C:\Windows\System32\Drivers\rtkhdaud.dat [8]
O44 - LFC:[MD5.28CBE9DE37E1A99BDD05441A4B208EAB] - 20/05/2006 - 17:39:58 ---A- . (...) -- C:\Windows\snp2uvc.ini [15497]
~ Files: 393 Legitimates Scanned in 00mn 42s



---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Sierra Wireless Inc\3G Watcher\TRUUpdater.exe" [Enabled] .(.Sierra Wireless, Inc..) -- C:\Program Files (x86)\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe
~ Keys Export: 1 Legitimates Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
~ LSA: 8 Legitimates Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
~ CBS: 15 Legitimates Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 2 Legitimates Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
~ MSCP: 2 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 3 Legitimates Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 05:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
~ Drivers: Scanned in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 11/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
~ Legacy: 111 Legitimates Scanned in 00mn 00s



---\\ File Associations Shell Spawning (O67)
~ FASS Keys: 19 Legitimates Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
~ Services: 33 Legitimates Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.AE1545E3CD5C72B1EC1118C404262484] [SPRF][10/04/2013] (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller 11.7 r700.) -- C:\Users\Bryan\AppData\Local\Temp\fp_pl_pfs_installer.exe [17605512]
[MD5.251743DFD3FDA414570524BAC9E55381] [SPRF][22/03/2011] (.Microsoft Corporation - Microsoft .NET Framework 4 Setup.) -- C:\Users\Bryan\Desktop\dotNetFx40_Full_x86_x64.exe [50449456]
~ Files: Scanned in 00mn 02s



---\\ Firewall Active Exception List (FirewallRules) (O87)
~ Firewall: 177 Legitimates Scanned in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.11497 - (09/04/2013)
Clés trouvées (Keys found) : 4
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0

[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Setup_RASAPI32] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Setup_RASMANCS] =>Toolbar.Conduit
~ Additionnel: Scanned in 00mn 09s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "4D9919C0BD528E44D984F578699376CB" . (.Sierra Wireless AirCard Watcher.) -- C:\Windows\Installer\{0C9199D4-25DB-44E8-9D48-5F87963967BC}\FujitsuDesktop_B6B66F9F9BA240ED9E559293A8302FF6.exe
O90 - PUC: "E7746226F444EFD4AB91F9F4D75456CB" . (.LIFEBOOK Application Panel.) -- C:\Windows\Installer\{6226477E-444F-4DFE-BA19-9F4F7D4565BC}\ARPPRODUCTICON.exe
~ Update Products: 17 Legitimates Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 10/04/2013 256904 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 05/12/2011 659968 | (AMPPALR3) . (.Intel Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
SR - | Auto 06/12/2011 616400 | (AntiVirFirewallService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe
SR - | Auto 06/12/2011 342480 | (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
SR - | Auto 06/12/2011 86224 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
SR - | Auto 06/12/2011 110032 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 06/12/2011 463824 | (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.exe
SR - | Auto 19/12/2011 1014096 | (Bluetooth Device Monitor) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
SR - | Demand 19/12/2011 1304912 | (Bluetooth Media Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
SR - | Auto 19/12/2011 1104208 | (Bluetooth OBEX Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
SR - | Auto 05/12/2011 135952 | (BTHSSecurityMgr) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
SS - | Demand 25/03/2012 276248 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 05/08/2011 225280 | (DTSAudioSvc) . (.DTS, Inc.) - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
SR - | Auto 08/12/2011 618256 | (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
SR - | Auto 23/11/2011 76104 | (FUJ02E3Service) . (.FUJITSU LIMITED.) - C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
SR - | Auto 08/12/2011 607456 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 16/12/2011 161560 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 16/12/2011 277784 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Demand 27/03/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 273168 | (MyWiFiDHCPDNS) . (...) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
SR - | Auto 22/12/2011 2213376 | (PFNService) . (.FUJITSU LIMITED.) - C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
SR - | Auto 03/10/2011 63856 | (PowerSavingUtilityService) . (.FUJITSU LIMITED.) - C:\Program Files\Fujitsu\PSUtility\PSUService.exe
SR - | Auto 08/12/2011 148752 | (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SR - | Auto 06/01/2012 323952 | (SwiCardDetectSvc) . (.Sierra Wireless, Inc..) - C:\Program Files (x86)\Sierra Wireless Inc\Common\SwiCardDetect64.exe
SR - | Auto 16/12/2011 363800 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 08/12/2011 594704 | (ZeroConfigService) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
~ Services: Scanned in 00mn 01s



~ 1124 Legitimates filtered by white list
End of the scan (517 lines in 01mn 36s)(0)


Merci, de votre aide