~ Rapport de NCDiag v2014.6.5.84 - Copyright ©2014 - Nicolas Coolman, Tous droits réservés
~ Emplacement rapport : C:\Users\Babysoul\AppData\Roaming\ZHP\NCDiag.txt
~ Lancé par Babysoul (28/06/2014 - 10:33:54)
~ Adresse du Site Web : http://nicolascoolman.fr
~ Etat de la version : OK
~ Liste blanche : Désactivée par le programme
~ User Account Control (UAC): Activé par l'utilisateur
~ Elévation des Privilèges : OK

---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17126
OBIE: Opera 22.0.1471.70 (Default)


---\\ Informations sur les produits Windows
~ Langage: Français
Microsoft Windows 7 Home Premium Edition Service Pack 1 (build 7601), 64-bit
Windows Server License Manager Script : OK
~  Windows Operating System - Windows(R) 7, OEM_SLP channel
Windows ID Activation : OK
~ Windows Partial Key :  3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number :  3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK


---\\ Informations sur le système
~ Operating System: 64 Bits
~ Boot Mode: Normal (Normal boot)
System Restore: Activé (Enable)
Total RAM: 2815 MB (70% free)


---\\ Mode de connexion au système
~ Nom d'Ordinateur: BABYSOUL-HP
~ Nom d'utilisateur: Babysoul
~ Nom des utilisateurs: Babysoul,Public,
~ Connecté en administrateur


---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (System) ( Free 391 Go of 456 Go)
D: Hard drive, Flash drive, Thumb drive ( Free 0 Go of 9 Go)


---\\ Logiciels de protection du système
Windows Defender W7 (Activate)
Malwarebytes Anti-Malware version 2.0.2.1012
Microsoft Security Client FR-FR Language Pack v2.1.1116.0


---\\ Variables d'environnement
~ %SYSTEMDRIVE% = C:
~ %USERPROFILE% = C:\Users\Babysoul
~ %APPDATA% = C:\Users\Babysoul\AppData\Roaming
~ %DESKTOP% = C:\Users\Babysoul\Desktop
~ %FAVORITES% = C:\Users\Babysoul\Favorites
~ %LOCALAPPDATA% = C:\Users\Babysoul\AppData\Local
~ %STARTMENU% = C:\Users\Babysoul\AppData\Roaming\Microsoft\Windows\Start Menu
~ %WINDIR% = C:\Windows
~ %SYSTEM% = C:\Windows\System32
~ %PROGRAMFILES% = C:\Program Files (x86)


---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]  DisableTaskMgr: OK
[HKLM\SOFTWARE\Microsoft\Security Center\svc]  AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\svc]  AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\svc]  FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer]  NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN]  CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK


---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2871808]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.771CDBC3D62437D6DB070820BB1EDCCF] - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1790976]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]


---\\ Processus lancés
[MD5.3E364978E4C74D3BCEA29FB41743CB5A] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336]
[MD5.00000000000000000000000000000000] - (...) --C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [0]
[MD5.00000000000000000000000000000000] - (...) --C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [0]
[MD5.00000000000000000000000000000000] - (...) --C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [0]
[MD5.00000000000000000000000000000000] - (...) --C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [0]
[MD5.00000000000000000000000000000000] - (...) --C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [0]
[MD5.00000000000000000000000000000000] - (...) --C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [0]
[MD5.37D17AE2936867F88EB3C4CBCBC6B8A1] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344]
[MD5.AEF20F3D9A87A3F7B7F600605334876F] - (.Microsoft Corporation. - BingBar Service.) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.126.0\BBSvc.exe [193696]  =>Toolbar.Bing
[MD5.00000000000000000000000000000000] - (.Microsoft Corporation - Service d’indexation du contenu.) -- C:\Windows\system32\CISVC.EXE [0]
[MD5.E87213F37A13E2B54391E40934F071D0] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [105144]
[MD5.4AEDAB50F83580D0B4D6CF78191F92AA] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [124088]
[MD5.28DDEEEC44E988657B732CF404D504CB] - (.Microsoft Corporation - Windows Live Family Safety Service.) -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [1492840]
[MD5.00000000000000000000000000000000] - (.Microsoft Corporation - Internet Information Services.) -- C:\Windows\system32\inetsrv\inetinfo.exe [0]
[MD5.89F2AEDC2788696702141AB82C3E7866] - (.Microsoft Corporation - Antimalware Service Executable.) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808]
[MD5.00000000000000000000000000000000] - (.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe [0]
[MD5.00000000000000000000000000000000] - (...) - %Systemroot%\system32\mqtgsvc.exe [0]
[MD5.F5AAA8CDDA25B6387AF590D676D25BAD] - (.Microsoft Corporation - TCP/IP Services Application.) -- C:\Windows\System32\tcpsvcs.exe [9216]
[MD5.8F5171C837E64FF0AC48F0A29DD9E180] - (.Microsoft Corporation - Service SNMP.) -- C:\Windows\System32\snmp.exe [47616]
[MD5.06C8FA1CF39DE6A735B54D906BA791C6] - (.Microsoft Corporation - Windows Live Mesh Remote Desktop Service.) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [57184]


---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\systempropertiesperformance.exe
~ 3  Internet Explorer Management found in 0 second(s)


---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Babysoul\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.bing.com
G0 - GCSP: Preference [User Data\Default] http://www.bing.com
G1 - GCS: Preference [User Data\Default]  http://www.bing.com
G2 - GCE: Preference [User Data\Default] [eahpcpckmhaneflmhiegmedhiegncgnf] Webplayer v.10.22.5.510, ( Activé )
~ 5  Google Chrome Management found in 0 second(s)


---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
M0 - MFSP: prefs.js [Babysoul - 08ds5oug.default] http://www.bing.com
M3 - MFPP: Plugins - [Babysoul] -- C:\Users\Babysoul\AppData\Roaming\Mozilla\Firefox\Profiles\08ds5oug.default\searchplugins
M3 - MFPP: Plugins - [Babysoul] -- C:\Users\Babysoul\AppData\Roaming\Mozilla\Firefox\Profiles\08ds5oug.default\searchplugins\Bing.xml
M3 - MFPP: Plugins - [Babysoul] -- C:\Users\Babysoul\AppData\Roaming\Mozilla\Firefox\Profiles\08ds5oug.default\searchplugins\Google.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (Adobe® Flash® Player 13.0.0.214 Plugin) -- C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (Ag Player) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (Facebook Video Calling 2.0.0.447) -- C:\Users\Babysoul\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
~ 7  Mozilla Firefox Preference found in 0 second(s)


---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com  =>.© Microsoft Corp.
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com  =>.© Microsoft Corp.
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com  =>.© Microsoft Corp.
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) - C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0
~ 17  Internet Explorer Management found in 0 second(s)


---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>
~ 5  Proxy Management found in 0 second(s)


---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File Scanned in 0 seconds
~ Nombre de lignes malwares (Malware Number Lines) : 0/21


---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar [Babysoul]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe 
O4 - GS\Desktop [Babysoul]: ib.lnk . (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe 
O4 - GS\TaskBar [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe 
O4 - GS\Desktop [Public]: ib.lnk . (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe 
O4 - GS\Programs [Public]: Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation - Microsoft® Works.) -- C:\Program Files (x86)\Microsoft Works\MSWorks.exe 
O4 - GS\Programs [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe 
O4 - GS\Programs [Public]: Switch Sound File Converter.lnk . (.NCH Software - Switch Sound File Converter.) -- C:\Program Files (x86)\NCH Swift Sound\Switch\switch.exe 
O4 - GS\Programs [Public]: WavePad Sound Editor.lnk . (.NCH Software - WavePad Sound Editor.) -- C:\Program Files (x86)\NCH Swift Sound\WavePad\wavepad.exe 
O4 - GS\Programs [Public]: Windows Mobile Device Center.lnk . (.Microsoft Corporation - Windows Mobile Device Center.) -- C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe 
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe 
O4 - GS\Desktop [Public]: Choix de navigateur .lnk . (.Microsoft Corporation - Choix de navigateur .) -- C:\Windows\System32\browserchoice.exe 
O4 - GS\Desktop [Public]: FE47_X43 Manuel d’instructions.lnk . (...) -- C:\Users\Public\Documents\OLYMPUS\Camera Manual\FE47_X43\FRA.pdf 
O4 - GS\Desktop [Public]: FinePixViewer.lnk . (.FUJI PHOTO FILM CO.,LTD. - FinePixViewer Ver.4.0.) -- C:\Program Files\FinePixViewer\FinePixViewer.exe 
O4 - GS\Desktop [Public]: HP Support Assistant.lnk . (.Hewlett-Packard Company - HP Support Assistant.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe 
O4 - GS\Desktop [Public]: ImageMixer VCD for FinePix 1.0.lnk . (.PIXELA Corporation - ImageMixerVCD ?????????.) -- C:\Program Files (x86)\PIXELA\ImageMixer\ImageMixerVCD.exe 
O4 - GS\Desktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe 
O4 - GS\Desktop [Public]: Panorama Maker 5.lnk . (.ArcSoft Inc. - ArcSoft Panorama Maker.) -- C:\Program Files (x86)\ArcSoft\Panorama Maker 5\PMK.exe 
O4 - GS\Desktop [Public]: ViewNX 2.lnk . (.Nikon Corporation - ViewNX 2.) -- C:\Program Files (x86)\Nikon\ViewNX 2\ViewNX2.exe 
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe 
~ 19  Browser Shortcut Redirection found in 0 second(s)


---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (...) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [mctadmin] . (...) -- C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (...) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)
O4 - HKUS\S-1-5-20\..\Run: [mctadmin] . (...) -- C:\Windows\System32\mctadmin.exe (.not file.)
~ 6  Running Process found in 0 second(s)


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de m.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\Windows\System32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll
~ 6  Winsock hijacker scanned in 0 second(s)


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{42FB83E5-8835-4A38-8917-3D05781674F3}: DhcpNameServer = 192.168.5.1
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{42FB83E5-8835-4A38-8917-3D05781674F3}: DhcpDomain = bewan
O17 - HKLM\SYSTEM\CS1\Services\Tcpip\..\{42FB83E5-8835-4A38-8917-3D05781674F3}: DhcpNameServer = 192.168.5.1
O17 - HKLM\SYSTEM\CS1\Services\Tcpip\..\{42FB83E5-8835-4A38-8917-3D05781674F3}: DhcpDomain = bewan
O17 - HKLM\SYSTEM\CS2\Services\Tcpip\..\{42FB83E5-8835-4A38-8917-3D05781674F3}: DhcpNameServer = 192.168.5.1
O17 - HKLM\SYSTEM\CS2\Services\Tcpip\..\{42FB83E5-8835-4A38-8917-3D05781674F3}: DhcpDomain = bewan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.5.1
~ 7  DNS scanned in 1 second(s)


---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.© Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll  =>.© Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll  =>.© Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll  =>.© Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll  =>.© Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll  =>.© Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll  =>.© Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll  =>.© Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.© Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll  =>.© Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.© Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll  =>.© Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll  =>.© Microsoft Corporation
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll  =>.© Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.© Microsoft Corporation
O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL  =>.© Skype Technologies
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll  =>.© Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.© Microsoft Corporation
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll  =>.© Microsoft Corporation
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll  =>.© Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.© Microsoft Corporation
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.© Microsoft Corporation
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.© Microsoft Corporation
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL  =>.© Microsoft Corporation
~ 24  Protocols scanned in 0 second(s)


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.... -- Clé orphelineWebCheck Contrôleur de site Web  =>.WebCheck Contrôleur de site Web
O21 - SSO: Bluetooth Authentication Agent SSO - {F08C5AC2-E722-4116-ADB7-CE41B527994B} . (.Microsoft Corporation - Applet Panneau de configuration Bluetooth.) -- C:\Windows\System32\bthprops.cpl  =>.Bluetooth Authentication
O21 - SSO: HomeGroup SSO - {ff363bfe-4941-4179-a81c-f3f1ca72d820} . (.Microsoft Corporation - Panneau de configuration HomeGroup.) -- C:\Windows\System32\hgcpl.dll  =>.HomeGroup ShellServiceObject
~ 3  SSODL/SSO scanned in 0 second(s)


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) . (...) - C:\Windows\system32\CISVC.EXE (.not file.)
O23 - Service: Windows Live Family Safety Service (fsssvc) . (.Microsoft Corporation - Windows Live Family Safety Service.) -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) . (...) - C:\Windows\system32\inetsrv\inetinfo.exe (.not file.)
O23 - Service: @mqutil.dll,-6102 (MSMQ) . (...) - C:\Windows\system32\mqsvc.exe (.not file.)
O23 - Service: @mqutil.dll,-6203 (MSMQTriggers) . (...) - %Systemroot%\system32\mqtgsvc.exe (.not file.)
O23 - Service: @%SystemRoot%\system32\simptcp.dll,-200 (simptcp) . (.Microsoft Corporation - TCP/IP Services Application.) -- C:\Windows\System32\tcpsvcs.exe
O23 - Service: @%SystemRoot%\system32\snmp.exe,-3 (SNMP) . (.Microsoft Corporation - Service SNMP.) -- C:\Windows\System32\snmp.exe
O23 - Service: Windows Live Mesh remote connections service (wlcrasvc) . (.Microsoft Corporation - Windows Live Mesh Remote Desktop Service.) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
~ 9  Services found in 0 second(s)


---\\ Clés Session Manager (AppCertDlls,KnownDLLs) (O36)
O36 - KnownDLLs: (clbcatq) . (.Microsoft Corporation - COM+ Configuration Catalog.) -- C:\Windows\System32\clbcatq.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (ole32) . (.Microsoft Corporation - Microsoft OLE pour Windows.) -- C:\Windows\System32\ole32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (advapi32) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\Windows\System32\advapi32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (COMDLG32) . (.Microsoft Corporation - DLL commune de boîtes de dialogues.) -- C:\Windows\System32\COMDLG32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (gdi32) . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (IERTUTIL) . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\IERTUTIL.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (IMAGEHLP) . (.Microsoft Corporation - Windows NT Image Helper.) -- C:\Windows\System32\IMAGEHLP.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (IMM32) . (.Microsoft Corporation - Multi-User Windows IMM32 API Client DLL.) -- C:\Windows\System32\IMM32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (kernel32) . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (LPK) . (.Microsoft Corporation - Language Pack.) -- C:\Windows\System32\LPK.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (MSCTF) . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\System32\MSCTF.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (MSVCRT) . (.Microsoft Corporation - Windows NT CRT DLL.) -- C:\Windows\System32\MSVCRT.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (NORMALIZ) . (.Microsoft Corporation - Unicode Normalization DLL.) -- C:\Windows\System32\NORMALIZ.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (NSI) . (.Microsoft Corporation - NSI User-mode interface DLL.) -- C:\Windows\System32\NSI.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (OLEAUT32) . (...) -- C:\Windows\System32\OLEAUT32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (rpcrt4) . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (sechost) . (.Microsoft Corporation - Host for SCM/SDDL/LSA Lookup APIs.) -- C:\Windows\System32\sechost.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (Setupapi) . (.Microsoft Corporation - Installation de L’API Windows.) -- C:\Windows\System32\Setupapi.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (SHELL32) . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\SHELL32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (SHLWAPI) . (.Microsoft Corporation - Bibliothèque d’utilitaires légers du Shell.) -- C:\Windows\System32\SHLWAPI.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (URLMON) . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\URLMON.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (user32) . (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\user32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (USP10) . (.Microsoft Corporation - Uniscribe Unicode script processor.) -- C:\Windows\System32\USP10.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (WININET) . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\WININET.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (WLDAP32) . (.Microsoft Corporation - DLL API LDAP Win32.) -- C:\Windows\System32\WLDAP32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (WS2_32) . (.Microsoft Corporation - Windows Socket 2.0 32-Bit DLL.) -- C:\Windows\System32\WS2_32.dll  =>.© Microsoft Corporation
O36 - KnownDLLs: (DifxApi) . (.Microsoft Corporation - Driver Install Frameworks for API library m.) -- C:\Windows\System32\difxapi.dll  =>.© Microsoft Corporation
~ 27  Session Manager Keys scanned in 0 second(s)


---\\ Tâches planifiées en automatique (O39)
[MD5.09E7C37DF4A911C8A9AA8BF88ACD10AA] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 13.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [257712]  =>.Adobe Systems Inc.
[MD5.A7810B302294793DE88542AAE177D1B1] [APT] [ArcSoft Connect Daemon] (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe   [207424]
[MD5.F498F9A6044DE57744BD465662E6AD77] [APT] [BHO updater] (...) -- C:\Program Files (x86)\Internet Explorer\Updater.exe   [117760]
[MD5.13ECAC1C51CC00147BD06B5ABF142956] [APT] [CCleanerSkipUAC] (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe   [4529944]
[MD5.00000000000000000000000000000000] [APT] [CreateChoiceProcessTask] (.Microsoft Corporation - Choix de navigateur .) -- C:\Windows\System32\browserchoice.exe   [0]
[MD5.E7FAF17B920ACCE36C191B9151B10AB4] [APT] [Epson Printer Software Downloader] (.SEIKO EPSON CORPORATION - Epson Printer Software Downloader.) -- C:\Program Files (x86)\EPSON\EPAPDL\E_SAPDL2.EXE   [395160]
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000Core] (...) -- C:\Users\Babysoul\AppData\Local\Facebook\Update\FacebookUpdate.exe   [0]  =>.Facebook Inc
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000UA] (...) -- C:\Users\Babysoul\AppData\Local\Facebook\Update\FacebookUpdate.exe   [0]  =>.Facebook Inc
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [136176]  =>.Google Inc
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [136176]  =>.Google Inc
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] [APT] [Java Update Scheduler] (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [254336]
[MD5.1C0C05E56A8C306E53F90602E9D79351] [APT] [Opera scheduled Autoupdate 1403638765] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe   [468088]
[MD5.F05DBDB807DE2DB50CA2C7B0286FE7B5] [APT] [PCDRScheduledMaintenance] (.PC-Doctor, Inc. - Hardware Diagnostic Tools.) -- C:\Program Files\PC-Doctor for Windows\pcdrcui.exe   [156144]
[MD5.048EA4B978851788E9F5E8E4F081DF7A] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   [959904]
[MD5.28A9D2797588D15B825609B3DFF95814] [APT] [{06A4A8E9-B209-4616-97A2-8BDEC6498683}] (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe   [163008]
[MD5.28A9D2797588D15B825609B3DFF95814] [APT] [{16AC746B-305E-4E54-A3E7-F0FCD9D2FAD7}] (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe   [163008]
[MD5.28A9D2797588D15B825609B3DFF95814] [APT] [{18018712-E38D-4CA8-B171-1E085337212A}] (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe   [163008]
[MD5.28A9D2797588D15B825609B3DFF95814] [APT] [{21215AFA-D3FF-4082-9DC9-13C986B5FC42}] (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe   [163008]
[MD5.00000000000000000000000000000000] [APT] [{236DA16F-5EDD-4EDE-8992-10AE930FFF3F}] (...) -- C:\Users\Babysoul\AppData\Roaming\Spotify\spotify.exe   [0]
[MD5.28A9D2797588D15B825609B3DFF95814] [APT] [{24F5B88E-1C8C-4024-BE7C-2B7B9EF003E3}] (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe   [163008]
[MD5.00000000000000000000000000000000] [APT] [{2E599B04-4B87-4E10-9706-2C2425FA7860}] (.Microsoft Corporation - Assistant Compatibilité des programmes.) -- C:\Windows\system32\pcalua.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{31D9A5AA-49AC-4D93-94AA-583A58871167}] (.Microsoft Corporation - Assistant Compatibilité des programmes.) -- C:\Windows\system32\pcalua.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{34E4ED93-95D4-4E46-8C2F-02FE15B6C2DF}] (...) -- C:\Users\Babysoul\Downloads\SpotifySetup.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{59E96DA6-7089-43C2-9C72-FFA409684251}] (...) -- C:\Users\Babysoul\AppData\Roaming\Spotify\spotify.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{5F8BDA86-75A6-4B8F-A660-D938BE4BFE9F}] (...) -- C:\Users\Babysoul\Downloads\SpotifySetup.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{5F92B504-3AD5-41DC-97B0-CF2F05D2DB10}] (...) -- C:\Users\Babysoul\Downloads\SpotifySetup.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{62781482-D035-4840-9B3F-532BE9B28307}] (...) -- C:\Program Files (x86)\Dofus 2\uninstaller.exe   [0]
[MD5.DFB13D3470844B6770FFB87DFC9FD340] [APT] [{64441F84-6488-4153-9685-433D606DC3FA}] (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe   [884744]
[MD5.00000000000000000000000000000000] [APT] [{6BEF6878-0D35-4FA2-9553-F59A6F287F42}] (...) -- C:\Users\Babysoul\Downloads\SpotifySetup.exe   [0]
[MD5.60F88F6CA6303E8273AF7AAA9AAFECAC] [APT] [{7D26368A-EE3A-4369-BBAC-43BBFB993357}] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe   [812248]
[MD5.00000000000000000000000000000000] [APT] [{8B24ACEF-6DFD-429A-91E2-1DA38F0D6170}] (...) -- C:\Program Files (x86)\Steam\Steam.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{99D5C6EE-9657-4536-9B1D-82633BDB60FC}] (...) -- c:\program files (x86)\google\chrome\application\chrome.exe   [0]
[MD5.28A9D2797588D15B825609B3DFF95814] [APT] [{A0B25534-CC93-4BFF-B2F6-27D7879606AF}] (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe   [163008]
[MD5.28A9D2797588D15B825609B3DFF95814] [APT] [{BB294A3B-9F7C-44ED-B1FF-15DA07D0A4B6}] (.OLYMPUS IMAGING CORP. - OLYMPUS ib Main Program.) -- C:\Program Files (x86)\Olympus\ib\ib.exe   [163008]
[MD5.00000000000000000000000000000000] [APT] [{CB612032-798A-4F18-A7CE-D8939E579CBD}] (.Microsoft Corporation - Assistant Compatibilité des programmes.) -- C:\Windows\system32\pcalua.exe   [0]
[MD5.5C832661F6AF6FBC7EDD5778294F6576] [APT] [{CE2B6488-E050-4FA4-8C10-A365BF8CD51B}] (.Adobe Systems Incorporated - Adobe Reader .) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe   [1518968]
[MD5.00000000000000000000000000000000] [APT] [{DBACE872-50B2-4E3B-88F1-F68CF07A0897}] (...) -- C:\Users\Babysoul\Downloads\SpotifySetup.exe   [0]
[MD5.00000000000000000000000000000000] [APT] [{E78A4EDE-F3D4-495E-847F-A73931745EB2}] (...) -- C:\Users\Babysoul\Downloads\SpotifySetup.exe   [0]
[MD5.C155A13687144076286989EF078112C2] [APT] [{E895D0C4-E5FA-4968-AB09-FF5F4A5A51B9}] (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe   [1917440]
[MD5.00000000000000000000000000000000] [APT] [{FCF60B6B-4D7D-4760-B4C6-579E7425FEC0}] (...) -- C:\Users\Babysoul\AppData\Roaming\Spotify\spotify.exe   [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc. - Apple Software Update.) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe   [561984]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 13.0 r0.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 13.0 r0.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater   [1002]
O39 - APT: Epson Printer Software Downloader - (.SEIKO EPSON CORPORATION - Epson Printer Software Downloader.) -- C:\Windows\Tasks\Epson Printer Software Downloader.job   [258]
O39 - APT: Epson Printer Software Downloader - (.SEIKO EPSON CORPORATION - Epson Printer Software Downloader.) -- C:\Windows\System32\Tasks\Epson Printer Software Downloader   [258]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000Core - (...) -- C:\Users\Babysoul\AppData\Local\Facebook\Update\FacebookUpdate.exe   [0]  =>.Facebook Inc.) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000Core.job   [918]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000Core - (...) -- C:\Users\Babysoul\AppData\Local\Facebook\Update\FacebookUpdate.exe   [0]  =>.Facebook Inc.) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000Core   [918]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000UA - (...) -- C:\Users\Babysoul\AppData\Local\Facebook\Update\FacebookUpdate.exe   [0]  =>.Facebook Inc.) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000UA.job   [940]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000UA - (...) -- C:\Users\Babysoul\AppData\Local\Facebook\Update\FacebookUpdate.exe   [0]  =>.Facebook Inc.) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-597666177-1702585976-926873107-1000UA   [940]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1068]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore   [1068]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1072]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA   [1072]
O39 - APT: PCDRScheduledMaintenance - (.PC-Doctor, Inc. - Hardware Diagnostic Tools.) -- C:\Windows\Tasks\PCDRScheduledMaintenance.job   [448]
O39 - APT: PCDRScheduledMaintenance - (.PC-Doctor, Inc. - Hardware Diagnostic Tools.) -- C:\Windows\System32\Tasks\PCDRScheduledMaintenance   [448]
~ 55  Scheduled Tasks found in 1 second(s)


---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bit] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\system32\wmploc.dll  =>.© Microsoft Corporation
O40 - ASIC: Themes Setup [64Bit] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\system32\themeui.dll  =>.© Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bit] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\system32\wmploc.dll  =>.© Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bit] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\system32\shell32.dll  =>.© Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bit] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe  =>.© Microsoft Corporation
~ 5  ActiveSetup scanned in 0 second(s)


---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys  =>.© Microsoft
O41 - Driver: avast! HardwareID (aswHwid) . (...) - C:\Windows\system32\drivers\aswHwid.sys
O41 - Driver: aswMonFlt (aswMonFlt) . (.AVAST Software - avast! File System Minifilter for Windows 2.) - C:\Windows\system32\drivers\aswMonFlt.sys  =>.© Avira Software  =>.© AVAST Software
O41 - Driver: aswRdr (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: aswSnx (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys  =>.© Avira Software  =>.© AVAST Software
O41 - Driver: aswSP (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys  =>.© Avira Software  =>.© AVAST Software
O41 - Driver: aswStm (aswStm) . (.AVAST Software - Stream Filter.) - C:\Windows\system32\drivers\aswStm.sys
O41 - Driver:  (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys  =>.© Microsoft
O41 - Driver: Pilote de CD-ROM (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys  =>.© Microsoft
O41 - Driver: FssFltr (fssfltr) . (.Microsoft Corporation - Family Safety Filter Driver (WFP Callout).) - C:\Windows\system32\DRIVERS\fssfltr.sys
O41 - Driver: Link-Layer Topology Discovery Mapper I/O Driver (lltdio) . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - C:\Windows\system32\DRIVERS\lltdio.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\drivers\luafv.sys (luafv) . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - C:\Windows\system32\drivers\luafv.sys  =>.© Microsoft
O41 - Driver: Pilote BIOS de gestion de systèmes Microsoft (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys  =>.© Microsoft
O41 - Driver: NetBIOS Interface (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys  =>.© Microsoft
O41 - Driver: PEAUTH (PEAUTH) . (.Microsoft Corporation - Protected Environment Authentication and Au.) - C:\Windows\system32\drivers\peauth.sys  =>.© Microsoft
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\wshrm.dll (RMCAST) . (.Microsoft Corporation - Reliable Multicast Transport.) - C:\Windows\system32\DRIVERS\RMCAST.sys
O41 - Driver: Link-Layer Topology Discovery Responder (rspndr) . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - C:\Windows\system32\DRIVERS\rspndr.sys  =>.© Microsoft
O41 - Driver: TCP/IP Registry Compatibility (tcpipreg) . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - C:\Windows\system32\drivers\tcpipreg.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys  =>.© Microsoft
O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys  =>.© Microsoft
O41 - Driver:  (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\System32\drivers\vga.sys  =>.© Microsoft
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys  =>.© Microsoft
O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys  =>.© Microsoft
~ 32  Running Drivers scanned in 0 second(s)


---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 13 ActiveX - (.Adobe Systems Incorporated.)  [HKLM] [64Bits] -- Adobe Flash Player ActiveX  =>.© Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 13 Plugin - (.Adobe Systems Incorporated.)  [HKLM] [64Bits] -- Adobe Flash Player Plugin  =>.© Adobe Systems Incorporated
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.2.1012 - (.Malwarebytes Corporation.)  [HKLM] [64Bits] -- Malwarebytes Anti-Malware_is1  =>.© Malwarebytes Corporation
O42 - Logiciel: Opera Stable 22.0.1471.70 - (.Opera Software ASA.)  [HKLM] [64Bits] -- Opera 22.0.1471.70  =>.© Opera Software ASA
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.)  [HKLM] [64Bits] -- VLC media player  =>.© VideoLAN
O42 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.)  [HKLM] [64Bits] -- ZHPDiag_is1  =>.© Nicolas Coolman
O42 - Logiciel: LWS Pictures And Video - (.Logitech.)  [HKLM] [64Bits] -- {08610298-29AE-445B-B37D-EFBE05802967}
O42 - Logiciel: CameraHelperMsi - (.Logitech.)  [HKLM] [64Bits] -- {15634701-BACE-4449-8B25-1567DA8C9FD3}
O42 - Logiciel: LWS Help_main - (.Logitech.)  [HKLM] [64Bits] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9}
O42 - Logiciel: Java 7 Update 55 - (.Oracle.)  [HKLM] [64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217055FF}  =>.© Oracle
O42 - Logiciel: barre d'outils Bing  - (.Microsoft Corporation.)  [HKLM] [64Bits] -- {393D4377-80F3-4BEB-AF88-4FFA64224ADA}  =>.© Microsoft Corporation
O42 - Logiciel: Java Auto Updater - (.Sun Microsystems, Inc..)  [HKLM] [64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10}  =>.© Sun Microsystems, Inc.
O42 - Logiciel: LWS Gallery - (.Logitech.)  [HKLM] [64Bits] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}
O42 - Logiciel: Apple Software Update - (...)  [HKLM] [64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: LWS Launcher - (.Logitech.)  [HKLM] [64Bits] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.)  [HKLM] [64Bits] -- {90140000-2005-0000-0000-0000000FF1CE}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.)  [HKLM] [64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}  =>.© Microsoft Corporation
O42 - Logiciel: Adobe Reader X (10.1.10) - Français - (.Adobe Systems Incorporated.)  [HKLM] [64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}  =>.© Adobe Systems Incorporated
O42 - Logiciel: LWS Facebook - (.Logitech.)  [HKLM] [64Bits] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB}
O42 - Logiciel: CCleaner - (.Piriform.)  [HKLM]-- CCleaner  =>.© Piriform
O42 - Logiciel: EPSON SX210 Series Printer Uninstall - (.SEIKO EPSON Corporation.)  [HKLM]-- EPSON SX210 Series
O42 - Logiciel: Microsoft IntelliPoint 8.2 - (.Microsoft Corporation.)  [HKLM]-- Microsoft IntelliPoint 8.2  =>.© Microsoft Corporation
O42 - Logiciel: Outils de diagnostic du matériel - (.PC-Doctor, Inc..)  [HKLM]-- PC-Doctor for Windows
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.)  [HKLM]-- Unlocker
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.)  [HKLM]-- {027E5FAB-1476-4C59-AAB4-32EF28520399}  =>.© Microsoft Corporation
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.)  [HKLM]-- {0D87AE67-14EB-4C10-88A5-DA6C3181EB18}  =>.© Microsoft Corporation
O42 - Logiciel: LWS VideoEffects - (.Logitech.)  [HKLM]-- {138A4072-9E64-46BD-B5F9-DB2BB395391F}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.)  [HKLM]-- {1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}  =>.© Microsoft Corporation
O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.)  [HKLM]-- {5E2CD4FB-4538-4831-8176-05D653C3E6D4}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.)  [HKLM]-- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft IntelliPoint 8.2 - (.Microsoft Corporation.)  [HKLM]-- {624C7F0A-89B2-4C49-9CAB-9D69613EC95A}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 4.5.1 - (.Microsoft Corporation.)  [HKLM]-- {7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.)  [HKLM]-- {8220EEFE-38CD-377E-8595-13398D740ACE}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.)  [HKLM]-- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.)  [HKLM]-- {90120000-002A-0000-1000-0000000FF1CE}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.)  [HKLM]-- {90120000-002A-040C-1000-0000000FF1CE}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 4.5.1 - (.Microsoft Corporation.)  [HKLM]-- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 4.5.1 (Français) - (.Microsoft Corporation.)  [HKLM]-- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036  =>.© Microsoft Corporation
O42 - Logiciel: ccc-utility64 - (.ATI.)  [HKLM]-- {948B1FD6-9F98-47EE-AABF-8697F2FD44B0}
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.)  [HKLM]-- {95120000-00B9-0409-1000-0000000FF1CE}  =>.© Microsoft Corporation
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..)  [HKLM]-- {963BFE7E-C350-4346-B43C-B02358306A45}  =>.© Apple Inc.
O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.)  [HKLM]-- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.)  [HKLM]-- {BFAE8D5B-F918-486F-B74E-90762DF11C5C}  =>.© Microsoft Corporation
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.)  [HKLM]-- {BFBE6E95-5724-47EC-85A0-74D436AD938F}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 4.5.1 (FRA) - (.Microsoft Corporation.)  [HKLM]-- {C22759DB-BA8B-30E7-99EE-8B47DB43AE56}  =>.© Microsoft Corporation
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.)  [HKLM]-- {DA54F80E-261C-41A2-A855-549A144F2F59}  =>.© Microsoft Corporation
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.)  [HKLM]-- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}  =>.© Microsoft Corporation
O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.)  [HKLM]-- {DF6D988A-EEA0-4277-AAB8-158E086E439B}  =>.© Microsoft Corporation
O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.)  [HKLM]-- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F}  =>.© Microsoft Corporation
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..)  [HKLM]-- {E50A5077-1654-BEAE-986B-7B7133DA7C48}  =>.© ATI Technologies, Inc.
O42 - Logiciel: Microsoft SQL Server Compact 3.5 SP1 x64 English - (.Microsoft Corporation.)  [HKLM]-- {F83779DF-E1F5-43A2-A7BE-732F856FADB7}  =>.© Microsoft Corporation
~ 51  Softwares scanned in 0 second(s)


---\\ Clés de registre software HKCU & HKLM
HKLM\SOFTWARE\AMD  =>.© AMD
HKLM\SOFTWARE\Apple Computer, Inc.  =>.© Apple Computer, Inc.
HKLM\SOFTWARE\ATI
HKLM\SOFTWARE\ATI Technologies  =>.© ATI Technologies
HKLM\SOFTWARE\AVS4YOU
HKLM\SOFTWARE\BrowserChoice
HKLM\SOFTWARE\Cyberlink  =>.© Cyberlink
HKLM\SOFTWARE\EPSON
HKLM\SOFTWARE\Hewlett-Packard  =>.© Hewlett-Packard
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Intel  =>.© Intel
HKLM\SOFTWARE\Logitech
HKLM\SOFTWARE\Macromedia  =>.© Macromedia
HKLM\SOFTWARE\Microsoft  =>.© Microsoft
HKLM\SOFTWARE\Mozilla  =>.© Mozilla
HKLM\SOFTWARE\MozillaPlugins  =>.© MozillaPlugins
HKLM\SOFTWARE\Nikon
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\PC-Doctor
HKLM\SOFTWARE\Piriform  =>.© Piriform
HKLM\SOFTWARE\Realtek  =>.© Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.  =>.© Realtek Semiconductor Corp.
HKLM\SOFTWARE\Safer Networking Limited
HKLM\SOFTWARE\SMR
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SRS Labs  =>.© SRS Labs
HKLM\SOFTWARE\TuneUp
HKLM\SOFTWARE\WildTangent  =>.© WildTangent
HKLM\SOFTWARE\Wow6432Node\ABBYY
HKLM\SOFTWARE\Wow6432Node\Adobe  =>.© Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\anset
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.  =>.© Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.  =>.© Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArcSoft
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies  =>.© ATI Technologies
HKLM\SOFTWARE\Wow6432Node\AVS4YOU
HKLM\SOFTWARE\Wow6432Node\Bubble Noise
HKLM\SOFTWARE\Wow6432Node\Carbon
HKLM\SOFTWARE\Wow6432Node\CMMs
HKLM\SOFTWARE\Wow6432Node\Contrôle Parental
HKLM\SOFTWARE\Wow6432Node\CyberLink  =>.© CyberLink
HKLM\SOFTWARE\Wow6432Node\Data Fellows
HKLM\SOFTWARE\Wow6432Node\DesktopSearch
HKLM\SOFTWARE\Wow6432Node\DesktopSearch2
HKLM\SOFTWARE\Wow6432Node\Digital River
HKLM\SOFTWARE\Wow6432Node\Dofus 2
HKLM\SOFTWARE\Wow6432Node\EasyBits  =>.© EasyBits
HKLM\SOFTWARE\Wow6432Node\EPSON
HKLM\SOFTWARE\Wow6432Node\Filseclab
HKLM\SOFTWARE\Wow6432Node\FUJI PHOTO FILM CO.,LTD.
HKLM\SOFTWARE\Wow6432Node\FUJIFILM
HKLM\SOFTWARE\Wow6432Node\Google  =>.© Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard  =>.© Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield  =>.© InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel  =>.© Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft  =>.© JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LightScribe  =>.© LightScribe
HKLM\SOFTWARE\Wow6432Node\logishrd
HKLM\SOFTWARE\Wow6432Node\Logitech
HKLM\SOFTWARE\Wow6432Node\Macromedia  =>.© Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware  =>.© Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware (Trial)  =>.© Malwarebytes' Anti-Malware (Trial)
HKLM\SOFTWARE\Wow6432Node\Microsoft  =>.© Microsoft
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla  =>.© Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org  =>.© mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins  =>.© MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NCH Swift Sound
HKLM\SOFTWARE\Wow6432Node\Nikon
HKLM\SOFTWARE\Wow6432Node\Norton
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OLYMPUS
HKLM\SOFTWARE\Wow6432Node\OpenOffice.org
HKLM\SOFTWARE\Wow6432Node\Orange
HKLM\SOFTWARE\Wow6432Node\PC-Doctor
HKLM\SOFTWARE\Wow6432Node\PDFComplete
HKLM\SOFTWARE\Wow6432Node\PIXELA
HKLM\SOFTWARE\Wow6432Node\PopCap
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.  =>.© Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\SECURITOO
HKLM\SOFTWARE\Wow6432Node\Skype  =>.© Skype
HKLM\SOFTWARE\Wow6432Node\Sony Corporation  =>.© Sony Corporation
HKLM\SOFTWARE\Wow6432Node\SymNRT
HKLM\SOFTWARE\Wow6432Node\Taronja
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\Valve  =>.© Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN  =>.© VideoLAN
HKLM\SOFTWARE\Wow6432Node\webtogo
HKLM\SOFTWARE\Wow6432Node\WildTangent  =>.© WildTangent
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\Xvid Team  =>.© Xvid Team
HKLM\SOFTWARE\Wow6432Node\Yahoo
HKCU\Software\ABBYY
HKCU\Software\Adobe  =>.© Adobe
HKCU\Software\Apple Computer, Inc.  =>.© Apple Computer, Inc.
HKCU\Software\Apple Inc.  =>.© Apple Inc.
HKCU\Software\ArcSoft
HKCU\Software\ATI
HKCU\Software\Automatic Filter
HKCU\Software\Basic Synth
HKCU\Software\Bass
HKCU\Software\CyberLink  =>.© CyberLink
HKCU\Software\EasyBits  =>.© EasyBits
HKCU\Software\EPSON
HKCU\Software\FUJIFILM
HKCU\Software\Gabest
HKCU\Software\Google  =>.© Google
HKCU\Software\Hewlett-Packard  =>.© Hewlett-Packard
HKCU\Software\HookNetwork
HKCU\Software\IM Providers
HKCU\Software\JavaSoft  =>.© JavaSoft
HKCU\Software\KasperskyLab
HKCU\Software\kde.org
HKCU\Software\LogiShrd
HKCU\Software\Logitech
HKCU\Software\Macromedia  =>.© Macromedia
HKCU\Software\Malwarebytes' Anti-Malware  =>.© Malwarebytes' Anti-Malware
HKCU\Software\Microsoft  =>.© Microsoft
HKCU\Software\mozilla  =>.© mozilla
HKCU\Software\MozillaPlugins  =>.© MozillaPlugins
HKCU\Software\NCH Swift Sound
HKCU\Software\Netscape  =>.© Netscape
HKCU\Software\Nikon
HKCU\Software\Norton
HKCU\Software\ODBC
HKCU\Software\OLYMPUS
HKCU\Software\OpenOffice.org
HKCU\Software\Orange
HKCU\Software\PDFComplete
HKCU\Software\Piriform  =>.© Piriform
HKCU\Software\PIXELA
HKCU\Software\Realtek  =>.© Realtek
HKCU\Software\Safer Networking Limited
HKCU\Software\SEIKO EPSON
HKCU\Software\Skype  =>.© Skype
HKCU\Software\SkypeRS  =>.© SkypeRS
HKCU\Software\Sony  =>.© Sony
HKCU\Software\Tific
HKCU\Software\Trolltech
HKCU\Software\TuneUp
HKCU\Software\Unity
HKCU\Software\Valve  =>.© Valve
HKCU\Software\VB and VBA Program Settings
HKCU\Software\videofutur
HKCU\Software\WinRAR SFX
HKCU\Software\Yahoo
HKCU\Software\YesMessenger
HKCU\Software\ZebHelpProcess Helper
HKCU\Software\AppDataLow\Software\Microsoft  =>.© Microsoft
~ 154  Software Keys scanned in 1 second(s)


---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 11/06/2010 - 01:31:35 - [] ----D- C:\Program Files (x86)\Activation Assistant for the 2007 Microsoft Office suites  =>.© Microsoft
O43 - CFD: 30/07/2011 - 14:07:01 - [] ----D- C:\Program Files (x86)\Adobe  =>.©
O43 - CFD: 26/07/2011 - 07:49:51 - [] ----D- C:\Program Files (x86)\Apple Software Update  =>.©
O43 - CFD: 07/04/2012 - 22:36:58 - [] ----D- C:\Program Files (x86)\ArcSoft
O43 - CFD: 11/06/2010 - 01:26:36 - [] ----D- C:\Program Files (x86)\ATI Technologies  =>.©
O43 - CFD: 18/06/2011 - 14:48:34 - [] ----D- C:\Program Files (x86)\AVS4YOU  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 11/06/2010 - 01:44:58 - [] ----D- C:\Program Files (x86)\Cyberlink  =>.©
O43 - CFD: 23/12/2010 - 13:41:05 - [] ----D- C:\Program Files (x86)\epson  =>.©
O43 - CFD: 23/12/2010 - 13:46:29 - [] ----D- C:\Program Files (x86)\Epson Software  =>.©
O43 - CFD: 07/10/2010 - 12:38:48 - [] ----D- C:\Program Files (x86)\Feedback Tool  =>.©
O43 - CFD: 18/06/2011 - 14:29:53 - [] ----D- C:\Program Files (x86)\FoxTabMP3Converter
O43 - CFD: 02/05/2011 - 01:39:46 - [] ----D- C:\Program Files (x86)\GetMore
O43 - CFD: 19/02/2011 - 16:11:14 - [] ----D- C:\Program Files (x86)\Google
O43 - CFD: 02/05/2011 - 01:39:43 - [] ----D- C:\Program Files (x86)\Help
O43 - CFD: 11/06/2010 - 01:26:04 - [] ----D- C:\Program Files (x86)\Hewlett-Packard  =>.©
O43 - CFD: 11/06/2010 - 01:35:08 - [] ----D- C:\Program Files (x86)\Hp
O43 - CFD: 11/06/2010 - 01:38:26 - [] ----D- C:\Program Files (x86)\HP Games  =>.©
O43 - CFD: 11/06/2010 - 01:27:45 - [] ----D- C:\Program Files (x86)\InstallShield Installation Information  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D- C:\Program Files (x86)\Internet Explorer  =>.©
O43 - CFD: 23/10/2011 - 12:20:58 - [] ----D- C:\Program Files (x86)\Java
O43 - CFD: 14/01/2012 - 13:39:50 - [] ----D- C:\Program Files (x86)\LogiShrd  =>.©
O43 - CFD: 22/04/2011 - 15:33:25 - [] ----D- C:\Program Files (x86)\Logitech  =>.©
O43 - CFD: 22/06/2014 - 20:56:50 - [] ----D- C:\Program Files (x86)\Malwarebytes Anti-Malware  =>.©
O43 - CFD: 11/06/2010 - 01:35:53 - [] ----D- C:\Program Files (x86)\Microsoft  =>.© Microsoft
O43 - CFD: 28/09/2010 - 22:39:31 - [] ----D- C:\Program Files (x86)\Microsoft Office  =>.© Microsoft
O43 - CFD: 04/10/2010 - 11:36:20 - [] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant  =>.© Microsoft
O43 - CFD: 02/06/2014 - 12:02:29 - [] ----D- C:\Program Files (x86)\Microsoft Security Client  =>.© Microsoft
O43 - CFD: 22/06/2014 - 11:06:29 - [] ----D- C:\Program Files (x86)\Microsoft Silverlight  =>.© Microsoft
O43 - CFD: 28/09/2010 - 22:37:21 - [] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition  =>.© Microsoft
O43 - CFD: 14/01/2011 - 01:06:15 - [] ----D- C:\Program Files (x86)\Microsoft Synchronization Services  =>.© Microsoft
O43 - CFD: 28/09/2010 - 22:39:07 - [] ----D- C:\Program Files (x86)\Microsoft Works  =>.© Microsoft
O43 - CFD: 14/06/2014 - 19:32:16 - [] ----D- C:\Program Files (x86)\MSBuild  =>.©
O43 - CFD: 23/10/2010 - 14:55:21 - [] ----D- C:\Program Files (x86)\MSECache
O43 - CFD: 18/06/2011 - 15:19:42 - [] ----D- C:\Program Files (x86)\NCH Swift Sound
O43 - CFD: 07/04/2012 - 18:17:24 - [] ----D- C:\Program Files (x86)\Nikon  =>.©
O43 - CFD: 11/06/2010 - 01:33:59 - [] ----D- C:\Program Files (x86)\NortonInstaller  =>.©
O43 - CFD: 09/10/2010 - 20:10:59 - [] ----D- C:\Program Files (x86)\Olympus
O43 - CFD: 11/06/2010 - 01:31:15 - [] R---D- C:\Program Files (x86)\Online Services
O43 - CFD: 24/06/2014 - 21:39:25 - [] ----D- C:\Program Files (x86)\Opera
O43 - CFD: 05/10/2010 - 14:16:54 - [] ----D- C:\Program Files (x86)\Orange
O43 - CFD: 11/06/2010 - 01:31:18 - [] ----D- C:\Program Files (x86)\PDF Complete  =>.©
O43 - CFD: 26/12/2011 - 17:24:16 - [] ----D- C:\Program Files (x86)\PIXELA
O43 - CFD: 02/03/2014 - 11:24:36 - [] ----D- C:\Program Files (x86)\QuickTime  =>.©
O43 - CFD: 11/06/2010 - 01:27:45 - [] ----D- C:\Program Files (x86)\Realtek  =>.©
O43 - CFD: 07/06/2014 - 22:47:57 - [] ----D- C:\Program Files (x86)\Reference Assemblies  =>.©
O43 - CFD: 26/12/2011 - 17:16:56 - [] ----D- C:\Program Files (x86)\REGSHAVE
O43 - CFD: 30/06/2013 - 22:31:04 - [] ----D- C:\Program Files (x86)\Sony  =>.©
O43 - CFD: 30/06/2013 - 22:59:57 - [] ----D- C:\Program Files (x86)\Sony Ericsson  =>.©
O43 - CFD: 21/09/2013 - 14:30:51 - [] ----D- C:\Program Files (x86)\Sony Media Go Install  =>.©
O43 - CFD: 04/06/2014 - 20:18:11 - [] ----D- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 09/12/2013 - 23:17:49 - [] ----D- C:\Program Files (x86)\Steam
O43 - CFD: 11/06/2010 - 01:35:05 - [] ----D- C:\Program Files (x86)\Symantec  =>.©
O43 - CFD: 11/06/2010 - 01:27:44 - [0] ----D- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] ----D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 27/04/2014 - 11:44:40 - [] ----D- C:\Program Files (x86)\Veetle
O43 - CFD: 20/02/2011 - 15:41:38 - [] ----D- C:\Program Files (x86)\VideoLAN  =>.©
O43 - CFD: 29/09/2012 - 14:56:48 - [] ----D- C:\Program Files (x86)\WildGames
O43 - CFD: 29/09/2012 - 14:49:57 - [] ----D- C:\Program Files (x86)\WildTangent Games  =>.©
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D- C:\Program Files (x86)\Windows Defender  =>.©
O43 - CFD: 11/06/2010 - 01:35:17 - [] ----D- C:\Program Files (x86)\Windows Live  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D- C:\Program Files (x86)\Windows Mail  =>.©
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D- C:\Program Files (x86)\Windows Media Player  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D- C:\Program Files (x86)\Windows Photo Viewer  =>.©
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D- C:\Program Files (x86)\Windows Portable Devices  =>.©
O43 - CFD: 01/06/2014 - 19:20:41 - [] ----D- C:\Program Files (x86)\Windows Sidebar  =>.©
O43 - CFD: 23/10/2011 - 12:17:55 - [] ----D- C:\Program Files (x86)\WordBiz
O43 - CFD: 09/12/2012 - 04:35:26 - [] ----D- C:\Program Files (x86)\Yahoo!  =>.©
O43 - CFD: 27/11/2010 - 12:43:38 - [] ----D- C:\Program Files (x86)\Zero G Registry
O43 - CFD: 09/06/2014 - 03:55:17 - [] ----D- C:\Program Files (x86)\ZHPDiag  =>.©
O43 - CFD: 30/07/2011 - 14:07:01 - [] ----D- C:\Program Files (x86)\Common Files\Adobe  =>.©
O43 - CFD: 12/12/2010 - 02:23:49 - [] ----D- C:\Program Files (x86)\Common Files\Apple  =>.©
O43 - CFD: 07/04/2012 - 22:36:58 - [] ----D- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 18/06/2011 - 14:48:53 - [] ----D- C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 18/05/2014 - 13:07:40 - [] ----D- C:\Program Files (x86)\Common Files\DESIGNER  =>.©
O43 - CFD: 17/06/2012 - 13:07:48 - [] ----D- C:\Program Files (x86)\Common Files\Glowria
O43 - CFD: 11/06/2010 - 01:27:41 - [] ----D- C:\Program Files (x86)\Common Files\InstallShield  =>.©
O43 - CFD: 09/06/2013 - 12:52:32 - [] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 11/06/2010 - 01:46:12 - [] ---AD- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 22/04/2011 - 15:33:22 - [] ----D- C:\Program Files (x86)\Common Files\LogiShrd  =>.©
O43 - CFD: 11/06/2010 - 01:46:12 - [] ---AD- C:\Program Files (x86)\Common Files\LS Getting Started
O43 - CFD: 22/04/2011 - 15:34:36 - [] ----D- C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 11/06/2014 - 00:34:28 - [] ----D- C:\Program Files (x86)\Common Files\Microsoft Shared  =>.© Microsoft
O43 - CFD: 07/04/2012 - 22:33:17 - [] ----D- C:\Program Files (x86)\Common Files\Nikon  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 15/04/2013 - 20:48:07 - [] ----D- C:\Program Files (x86)\Common Files\Skype  =>.©
O43 - CFD: 30/06/2013 - 22:43:20 - [] ----D- C:\Program Files (x86)\Common Files\Sony Shared  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D- C:\Program Files (x86)\Common Files\SpeechEngines  =>.©
O43 - CFD: 08/12/2013 - 04:26:22 - [] ----D- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 26/12/2011 - 17:19:59 - [0] ----D- C:\Program Files (x86)\Common Files\SWF Studio
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 14/07/2009 - 05:20:08 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/07/2009 - 07:32:38 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools  =>.©
O43 - CFD: 07/04/2012 - 22:37:24 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
O43 - CFD: 07/04/2012 - 22:37:18 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Panorama Maker 5
O43 - CFD: 18/06/2011 - 15:20:16 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs  =>.©
O43 - CFD: 18/06/2011 - 14:49:00 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU  =>.©
O43 - CFD: 11/06/2010 - 01:27:29 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center  =>.©
O43 - CFD: 22/06/2014 - 12:06:42 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 23/12/2010 - 13:41:09 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON  =>.©
O43 - CFD: 23/12/2010 - 13:48:25 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software  =>.©
O43 - CFD: 26/12/2011 - 17:18:31 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinePixViewer
O43 - CFD: 14/07/2009 - 07:32:38 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 08/09/2012 - 11:40:13 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 11/06/2010 - 01:29:44 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 24/12/2012 - 19:27:52 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
O43 - CFD: 01/11/2013 - 10:52:19 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 28/09/2010 - 22:38:21 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les manuels de l'utilisateur
O43 - CFD: 11/06/2010 - 01:47:09 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
O43 - CFD: 04/09/2012 - 21:23:05 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/06/2014 - 20:56:55 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware  =>.©
O43 - CFD: 22/06/2014 - 11:07:32 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight  =>.© Microsoft
O43 - CFD: 28/09/2010 - 22:39:20 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works  =>.© Microsoft
O43 - CFD: 18/06/2011 - 15:19:44 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
O43 - CFD: 11/06/2010 - 01:35:05 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup  =>.©
O43 - CFD: 04/10/2010 - 10:55:24 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OLYMPUS Camera
O43 - CFD: 11/06/2010 - 01:26:01 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Help & Tools
O43 - CFD: 11/06/2010 - 01:31:20 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Complete  =>.©
O43 - CFD: 02/03/2014 - 11:24:46 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime  =>.©
O43 - CFD: 11/06/2010 - 01:37:44 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Manager  =>.©
O43 - CFD: 10/01/2013 - 23:43:16 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype  =>.©
O43 - CFD: 19/12/2011 - 14:19:27 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Souris Microsoft  =>.© Microsoft
O43 - CFD: 14/07/2009 - 09:44:38 - [0] R-H-D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 21/06/2014 - 16:31:10 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN  =>.©
O43 - CFD: 07/04/2012 - 22:33:18 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX 2
O43 - CFD: 28/09/2010 - 22:36:24 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live  =>.©
O43 - CFD: 28/06/2014 - 10:20:49 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP  =>.©
O43 - CFD: 19/11/2011 - 21:15:00 - [] ----D- C:\ProgramData\02A5
O43 - CFD: 14/01/2011 - 01:59:31 - [] ----D- C:\ProgramData\1F3C9
O43 - CFD: 26/12/2011 - 14:31:43 - [] ----D- C:\ProgramData\2B36E
O43 - CFD: 08/08/2011 - 21:40:17 - [0] ---A-- C:\ProgramData\a697fb49b4e715c327b8977648a38b30_c
O43 - CFD: 30/07/2011 - 14:06:02 - [] ----D- C:\ProgramData\Adobe  =>.©
O43 - CFD: 12/12/2010 - 02:23:49 - [] ----D- C:\ProgramData\Apple  =>.©
O43 - CFD: 02/03/2014 - 11:24:36 - [] ----D- C:\ProgramData\Apple Computer  =>.©
O43 - CFD: 14/07/2009 - 07:08:56 - [?] -SH-D- C:\ProgramData\Application Data  =>.©
O43 - CFD: 07/04/2012 - 22:37:25 - [] --H-D- C:\ProgramData\ArcSoft
O43 - CFD: 11/06/2010 - 01:27:35 - [] ----D- C:\ProgramData\ATI
O43 - CFD: 09/06/2014 - 03:19:11 - [] ----D- C:\ProgramData\AVAST Software  =>.©
O43 - CFD: 18/06/2011 - 14:51:48 - [] ----D- C:\ProgramData\AVS4YOU  =>.©
O43 - CFD: 07/06/2014 - 19:05:26 - [] ----D- C:\ProgramData\BDLogging
O43 - CFD: 28/09/2010 - 22:35:11 - [?] -SH-D- C:\ProgramData\Bureau  =>.©
O43 - CFD: 01/06/2014 - 19:15:46 - [] --H-D- C:\ProgramData\Common Files
O43 - CFD: 11/06/2010 - 01:45:26 - [] ----D- C:\ProgramData\CyberLink  =>.©
O43 - CFD: 14/07/2009 - 07:08:56 - [?] -SH-D- C:\ProgramData\Desktop  =>.©
O43 - CFD: 14/07/2009 - 07:08:56 - [?] -SH-D- C:\ProgramData\Documents  =>.©
O43 - CFD: 07/04/2012 - 18:18:16 - [] ----D- C:\ProgramData\EnterNHelp
O43 - CFD: 23/12/2010 - 13:41:28 - [] ----D- C:\ProgramData\EPSON  =>.©
O43 - CFD: 05/10/2010 - 14:23:15 - [] ----D- C:\ProgramData\f-secure
O43 - CFD: 28/09/2010 - 22:35:11 - [?] -SH-D- C:\ProgramData\Favoris  =>.©
O43 - CFD: 14/07/2009 - 07:08:56 - [?] -SH-D- C:\ProgramData\Favorites  =>.©
O43 - CFD: 01/10/2011 - 19:30:16 - [] ----D- C:\ProgramData\FloodLightGames
O43 - CFD: 05/10/2010 - 14:24:04 - [] ----D- C:\ProgramData\fssg
O43 - CFD: 01/10/2011 - 18:35:14 - [] ----D- C:\ProgramData\GameHouse
O43 - CFD: 11/06/2010 - 01:30:02 - [] ----D- C:\ProgramData\Hewlett-Packard  =>.©
O43 - CFD: 14/01/2011 - 17:50:21 - [] ----D- C:\ProgramData\LightScribe
O43 - CFD: 22/04/2011 - 15:44:53 - [] ----D- C:\ProgramData\LogiShrd  =>.©
O43 - CFD: 22/04/2011 - 15:34:51 - [] ----D- C:\ProgramData\Logitech  =>.©
O43 - CFD: 10/11/2012 - 23:48:39 - [] ----D- C:\ProgramData\Malwarebytes  =>.©
O43 - CFD: 30/07/2011 - 14:00:58 - [] ----D- C:\ProgramData\McAfee  =>.©
O43 - CFD: 28/09/2010 - 22:35:11 - [?] -SH-D- C:\ProgramData\Menu Démarrer  =>.©
O43 - CFD: 14/07/2009 - 05:20:08 - [] -S--D- C:\ProgramData\Microsoft  =>.© Microsoft
O43 - CFD: 04/10/2010 - 11:33:36 - [] ----D- C:\ProgramData\Microsoft Help  =>.© Microsoft
O43 - CFD: 28/09/2010 - 22:35:11 - [?] -SH-D- C:\ProgramData\Modèles  =>.©
O43 - CFD: 12/04/2014 - 18:08:13 - [] ----D- C:\ProgramData\Mozilla  =>.©
O43 - CFD: 31/10/2011 - 12:23:14 - [] ----D- C:\ProgramData\MumboJumbo
O43 - CFD: 14/01/2011 - 01:07:06 - [] ----D- C:\ProgramData\MusicStation
O43 - CFD: 18/06/2011 - 15:20:27 - [] ----D- C:\ProgramData\NCH Swift Sound
O43 - CFD: 08/04/2012 - 10:49:06 - [] ----D- C:\ProgramData\Nikon  =>.©
O43 - CFD: 11/06/2010 - 01:34:26 - [] ----D- C:\ProgramData\Norton  =>.©
O43 - CFD: 11/06/2010 - 01:33:59 - [] ----D- C:\ProgramData\NortonInstaller  =>.©
O43 - CFD: 01/11/2013 - 10:45:31 - [0] ----D- C:\ProgramData\Oracle  =>.©
O43 - CFD: 02/04/2011 - 08:01:32 - [] ----D- C:\ProgramData\Orange
O43 - CFD: 07/04/2012 - 18:18:17 - [0] R-H--- C:\ProgramData\PageLibraries  =>.©
O43 - CFD: 08/06/2014 - 16:04:56 - [] ----D- C:\ProgramData\PC-Doctor for Windows  =>.©
O43 - CFD: 25/01/2014 - 14:35:13 - [0] ----D- C:\ProgramData\PCSettings
O43 - CFD: 07/04/2012 - 18:18:17 - [0] R-H--- C:\ProgramData\PDEs
O43 - CFD: 11/06/2010 - 01:31:16 - [] ----D- C:\ProgramData\PDFC  =>.©
O43 - CFD: 07/04/2012 - 18:18:17 - [0] R-H--- C:\ProgramData\Pipe Organ
O43 - CFD: 07/04/2012 - 18:18:17 - [0] R-H--- C:\ProgramData\Plants
O43 - CFD: 27/11/2010 - 17:06:22 - [] ----D- C:\ProgramData\PlayFirst
O43 - CFD: 30/10/2011 - 12:30:59 - [] ----D- C:\ProgramData\Playrix Entertainment
O43 - CFD: 07/04/2012 - 18:18:17 - [0] R-H--- C:\ProgramData\Plug-Ins
O43 - CFD: 07/04/2012 - 18:18:17 - [0] R-H--- C:\ProgramData\PPD Plugins
O43 - CFD: 10/02/2013 - 18:19:40 - [] ----D- C:\ProgramData\Recovery  =>.©
O43 - CFD: 09/06/2014 - 04:32:53 - [] ----D- C:\ProgramData\RogueKiller
O43 - CFD: 21/04/2012 - 14:06:53 - [] ----D- C:\ProgramData\Skype  =>.©
O43 - CFD: 29/05/2014 - 23:16:23 - [] ----D- C:\ProgramData\SMR410
O43 - CFD: 20/05/2014 - 22:26:05 - [] ----D- C:\ProgramData\Sony  =>.©
O43 - CFD: 30/06/2013 - 22:43:20 - [] ----D- C:\ProgramData\Sony Corporation  =>.©
O43 - CFD: 30/06/2013 - 23:00:21 - [] ----D- C:\ProgramData\Sony Ericsson  =>.©
O43 - CFD: 28/11/2010 - 10:55:19 - [] ----D- C:\ProgramData\Sports Interactive
O43 - CFD: 04/06/2014 - 20:18:19 - [] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 07:08:56 - [?] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 23/10/2011 - 12:22:02 - [] ----D- C:\ProgramData\Sun
O43 - CFD: 11/06/2010 - 01:37:28 - [] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:56 - [?] -SH-D- C:\ProgramData\Templates  =>.©
O43 - CFD: 01/06/2014 - 19:17:04 - [] ----D- C:\ProgramData\TuneUp Software  =>.©
O43 - CFD: 23/12/2010 - 13:49:12 - [] ----D- C:\ProgramData\UDL
O43 - CFD: 07/04/2012 - 18:18:17 - [] ----D- C:\ProgramData\Ultima_T15
O43 - CFD: 29/09/2012 - 21:28:44 - [] ----D- C:\ProgramData\Wild Tangent  =>.©
O43 - CFD: 11/06/2010 - 01:38:25 - [] ----D- C:\ProgramData\WildTangent  =>.©
O43 - CFD: 31/05/2014 - 20:00:07 - [] ----D- C:\ProgramData\Yahoo!  =>.©
O43 - CFD: 31/05/2014 - 20:00:14 - [] ----D- C:\ProgramData\Yahoo! Companion  =>.©
O43 - CFD: 01/10/2011 - 17:53:23 - [] ----D- C:\ProgramData\Zylom
O43 - CFD: 12/12/2010 - 02:25:33 - [0] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 24/12/2012 - 19:22:57 - [0] ----D- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
O43 - CFD: 01/06/2014 - 19:15:47 - [?] -SH-D- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 28/09/2010 - 22:35:11 - [?] -SH-D- C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
O43 - CFD: 14/07/2009 - 05:20:08 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs  =>.©
O43 - CFD: 30/07/2011 - 14:18:40 - [] ----D- C:\Users\Babysoul\AppData\Local\Adobe  =>.©
O43 - CFD: 12/12/2010 - 02:24:20 - [] ----D- C:\Users\Babysoul\AppData\Local\Apple  =>.©
O43 - CFD: 12/12/2010 - 02:26:16 - [] ----D- C:\Users\Babysoul\AppData\Local\Apple Computer  =>.©
O43 - CFD: 28/09/2010 - 22:39:57 - [?] -SH-D- C:\Users\Babysoul\AppData\Local\Application Data  =>.©
O43 - CFD: 27/09/2012 - 23:38:51 - [] ----D- C:\Users\Babysoul\AppData\Local\Apps
O43 - CFD: 07/04/2012 - 22:37:27 - [] ----D- C:\Users\Babysoul\AppData\Local\ArcSoft
O43 - CFD: 28/09/2010 - 22:41:42 - [] ----D- C:\Users\Babysoul\AppData\Local\ATI
O43 - CFD: 27/02/2011 - 14:38:06 - [] ----D- C:\Users\Babysoul\AppData\Local\Chat Republic Games
O43 - CFD: 21/10/2010 - 07:26:06 - [] ----D- C:\Users\Babysoul\AppData\Local\CrashDumps  =>.©
O43 - CFD: 20/04/2012 - 10:43:04 - [] ----D- C:\Users\Babysoul\AppData\Local\CRE
O43 - CFD: 28/09/2010 - 22:46:27 - [] ----D- C:\Users\Babysoul\AppData\Local\Diagnostics
O43 - CFD: 14/01/2011 - 01:06:30 - [0] ----D- C:\Users\Babysoul\AppData\Local\Downloaded Installations
O43 - CFD: 08/06/2014 - 00:56:02 - [] ----D- C:\Users\Babysoul\AppData\Local\ElevatedDiagnostics  =>.©
O43 - CFD: 26/05/2014 - 23:08:55 - [?] -SH-D- C:\Users\Babysoul\AppData\Local\EmieSiteList
O43 - CFD: 26/05/2014 - 23:08:55 - [?] -SH-D- C:\Users\Babysoul\AppData\Local\EmieUserList
O43 - CFD: 17/06/2012 - 13:09:46 - [] ----D- C:\Users\Babysoul\AppData\Local\Glowria
O43 - CFD: 19/02/2011 - 16:11:16 - [] ----D- C:\Users\Babysoul\AppData\Local\Google
O43 - CFD: 28/09/2010 - 22:50:15 - [] ----D- C:\Users\Babysoul\AppData\Local\Hewlett-Packard  =>.©
O43 - CFD: 28/09/2010 - 22:39:57 - [?] -SH-D- C:\Users\Babysoul\AppData\Local\Historique  =>.©
O43 - CFD: 29/05/2014 - 13:05:06 - [] ----D- C:\Users\Babysoul\AppData\Local\Hook Network
O43 - CFD: 22/04/2011 - 15:42:57 - [] ----D- C:\Users\Babysoul\AppData\Local\LogiShrd  =>.©
O43 - CFD: 15/01/2012 - 00:57:49 - [] ----D- C:\Users\Babysoul\AppData\Local\Logitech® Webcam Software  =>.©
O43 - CFD: 12/04/2014 - 18:09:52 - [] ----D- C:\Users\Babysoul\AppData\Local\Macromedia  =>.©
O43 - CFD: 28/09/2010 - 22:39:57 - [] ----D- C:\Users\Babysoul\AppData\Local\Microsoft  =>.© Microsoft
O43 - CFD: 01/06/2014 - 12:11:10 - [] ----D- C:\Users\Babysoul\AppData\Local\Microsoft Corporation  =>.© Microsoft
O43 - CFD: 04/10/2010 - 11:33:38 - [0] ----D- C:\Users\Babysoul\AppData\Local\Microsoft Help  =>.© Microsoft
O43 - CFD: 08/06/2014 - 18:55:07 - [0] ----D- C:\Users\Babysoul\AppData\Local\MigWiz
O43 - CFD: 12/04/2014 - 18:08:25 - [] ----D- C:\Users\Babysoul\AppData\Local\Mozilla  =>.©
O43 - CFD: 06/05/2012 - 21:06:53 - [] ----D- C:\Users\Babysoul\AppData\Local\Nikon  =>.©
O43 - CFD: 14/03/2012 - 00:36:47 - [] ----D- C:\Users\Babysoul\AppData\Local\NPE
O43 - CFD: 04/10/2010 - 10:56:59 - [] ----D- C:\Users\Babysoul\AppData\Local\OLYMPUS
O43 - CFD: 24/06/2014 - 21:39:31 - [] ----D- C:\Users\Babysoul\AppData\Local\Opera Software  =>.©
O43 - CFD: 05/10/2010 - 14:17:05 - [] ----D- C:\Users\Babysoul\AppData\Local\Orange
O43 - CFD: 28/09/2010 - 22:40:41 - [0] ----D- C:\Users\Babysoul\AppData\Local\PDFC  =>.©
O43 - CFD: 01/11/2013 - 10:58:37 - [] ----D- C:\Users\Babysoul\AppData\Local\Programs  =>.©
O43 - CFD: 18/01/2014 - 23:47:38 - [] ----D- C:\Users\Babysoul\AppData\Local\rencontreshard
O43 - CFD: 18/09/2011 - 09:18:38 - [] ----D- C:\Users\Babysoul\AppData\Local\SecondLife
O43 - CFD: 30/06/2013 - 22:43:24 - [] ----D- C:\Users\Babysoul\AppData\Local\Sony  =>.©
O43 - CFD: 11/12/2010 - 13:04:52 - [] ----D- C:\Users\Babysoul\AppData\Local\Sports Interactive
O43 - CFD: 09/10/2010 - 11:00:43 - [] ----D- C:\Users\Babysoul\AppData\Local\Symantec  =>.©
O43 - CFD: 28/09/2010 - 22:39:57 - [] ----D- C:\Users\Babysoul\AppData\Local\Temp
O43 - CFD: 28/09/2010 - 22:39:57 - [?] -SH-D- C:\Users\Babysoul\AppData\Local\Temporary Internet Files  =>.©
O43 - CFD: 01/06/2014 - 19:19:58 - [] ----D- C:\Users\Babysoul\AppData\Local\TuneUp Software  =>.©
O43 - CFD: 29/03/2014 - 00:59:24 - [0] ----D- C:\Users\Babysoul\AppData\Local\Unity  =>.©
O43 - CFD: 28/09/2010 - 22:39:59 - [] ----D- C:\Users\Babysoul\AppData\Local\VirtualStore  =>.©
O43 - CFD: 30/10/2010 - 00:37:43 - [] ----D- C:\Users\Babysoul\AppData\Local\Windows Live  =>.©
O43 - CFD: 01/11/2010 - 23:09:06 - [] ----D- C:\Users\Babysoul\AppData\Local\Windows Live Writer  =>.©
O43 - CFD: 23/10/2012 - 09:41:38 - [] ----D- C:\Users\Babysoul\AppData\Local\yesmessenger
O43 - CFD: 28/09/2010 - 22:51:34 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Adobe  =>.©
O43 - CFD: 07/07/2012 - 23:37:28 - [] ----D- C:\Users\Babysoul\AppData\Roaming\app
O43 - CFD: 12/12/2010 - 02:26:16 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Apple Computer  =>.©
O43 - CFD: 07/04/2012 - 22:36:16 - [] ----D- C:\Users\Babysoul\AppData\Roaming\ArcSoft
O43 - CFD: 28/09/2010 - 22:41:42 - [] ----D- C:\Users\Babysoul\AppData\Roaming\ATI
O43 - CFD: 09/06/2014 - 05:03:31 - [] ----D- C:\Users\Babysoul\AppData\Roaming\AVAST Software  =>.©
O43 - CFD: 11/11/2011 - 14:14:58 - [] ----D- C:\Users\Babysoul\AppData\Roaming\CupidChat
O43 - CFD: 04/10/2010 - 11:21:22 - [] ----D- C:\Users\Babysoul\AppData\Roaming\CyberLink  =>.©
O43 - CFD: 07/07/2012 - 23:37:24 - [0] ---A-- C:\Users\Babysoul\AppData\Roaming\D2Info0
O43 - CFD: 07/07/2012 - 23:37:24 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Dofus 2
O43 - CFD: 07/07/2012 - 23:40:59 - [0] ---A-- C:\Users\Babysoul\AppData\Roaming\DofusAppId0_1
O43 - CFD: 07/07/2012 - 23:37:24 - [0] ---A-- C:\Users\Babysoul\AppData\Roaming\DofusAppId0_2
O43 - CFD: 08/07/2012 - 00:11:35 - [0] ---A-- C:\Users\Babysoul\AppData\Roaming\DofusAppId0_3
O43 - CFD: 22/11/2010 - 08:39:20 - [0] ----D- C:\Users\Babysoul\AppData\Roaming\Download Manager
O43 - CFD: 25/12/2010 - 10:36:13 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Epson  =>.©
O43 - CFD: 08/06/2014 - 13:58:35 - [] ----D- C:\Users\Babysoul\AppData\Roaming\FUJIFILM
O43 - CFD: 04/10/2010 - 11:23:02 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Hewlett-Packard  =>.©
O43 - CFD: 06/10/2010 - 17:53:31 - [] ----D- C:\Users\Babysoul\AppData\Roaming\HP Support Assistant
O43 - CFD: 13/10/2010 - 17:24:16 - [] ----D- C:\Users\Babysoul\AppData\Roaming\hpqLog
O43 - CFD: 04/10/2010 - 10:54:01 - [0] ----D- C:\Users\Babysoul\AppData\Roaming\HpUpdate
O43 - CFD: 28/09/2010 - 22:40:09 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Identities
O43 - CFD: 22/10/2013 - 20:36:06 - [] ----D- C:\Users\Babysoul\AppData\Roaming\IE Addon
O43 - CFD: 23/12/2010 - 13:42:48 - [] ----D- C:\Users\Babysoul\AppData\Roaming\InstallShield  =>.©
O43 - CFD: 22/04/2011 - 15:40:19 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Leadertech  =>.©
O43 - CFD: 28/09/2010 - 22:51:35 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Macromedia  =>.©
O43 - CFD: 11/11/2012 - 12:53:01 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Malwarebytes  =>.©
O43 - CFD: 28/09/2010 - 22:39:57 - [0] ----D- C:\Users\Babysoul\AppData\Roaming\Media Center Programs  =>.©
O43 - CFD: 28/09/2010 - 22:39:57 - [] -S--D- C:\Users\Babysoul\AppData\Roaming\Microsoft  =>.© Microsoft
O43 - CFD: 12/04/2014 - 18:08:25 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Mozilla  =>.©
O43 - CFD: 19/11/2011 - 21:15:01 - [] ----D- C:\Users\Babysoul\AppData\Roaming\MusicNet
O43 - CFD: 04/08/2012 - 11:20:24 - [] ----D- C:\Users\Babysoul\AppData\Roaming\NCH Swift Sound
O43 - CFD: 06/05/2012 - 19:40:20 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Nikon  =>.©
O43 - CFD: 07/04/2012 - 18:18:17 - [0] ------ C:\Users\Babysoul\AppData\Roaming\Noise Gate
O43 - CFD: 24/06/2014 - 21:39:30 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Opera Software  =>.©
O43 - CFD: 13/12/2010 - 20:50:35 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Orange
O43 - CFD: 07/04/2012 - 18:18:17 - [0] ------ C:\Users\Babysoul\AppData\Roaming\Organic
O43 - CFD: 07/04/2012 - 18:18:17 - [0] ------ C:\Users\Babysoul\AppData\Roaming\Organs
O43 - CFD: 25/05/2014 - 19:00:34 - [] ----D- C:\Users\Babysoul\AppData\Roaming\PCFix
O43 - CFD: 11/12/2010 - 16:44:19 - [] ----D- C:\Users\Babysoul\AppData\Roaming\PhotoScape
O43 - CFD: 08/06/2014 - 13:57:12 - [0] ----D- C:\Users\Babysoul\AppData\Roaming\QuickScan
O43 - CFD: 18/09/2011 - 09:18:40 - [] ----D- C:\Users\Babysoul\AppData\Roaming\SecondLife
O43 - CFD: 21/04/2012 - 14:07:32 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Skype  =>.©
O43 - CFD: 30/06/2013 - 22:38:14 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Sony  =>.©
O43 - CFD: 11/12/2010 - 13:04:52 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Sports Interactive
O43 - CFD: 13/01/2011 - 12:07:21 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Template
O43 - CFD: 09/10/2010 - 11:00:45 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Tific
O43 - CFD: 01/06/2014 - 19:19:58 - [] ----D- C:\Users\Babysoul\AppData\Roaming\TuneUp Software  =>.©
O43 - CFD: 20/02/2011 - 15:42:21 - [] ----D- C:\Users\Babysoul\AppData\Roaming\vlc  =>.©
O43 - CFD: 19/11/2012 - 00:08:26 - [] ----D- C:\Users\Babysoul\AppData\Roaming\WildTangent  =>.©
O43 - CFD: 13/10/2010 - 17:23:34 - [] ----D- C:\Users\Babysoul\AppData\Roaming\WinBatch
O43 - CFD: 01/11/2010 - 23:09:06 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Windows Live Writer  =>.©
O43 - CFD: 31/05/2014 - 19:59:54 - [] ----D- C:\Users\Babysoul\AppData\Roaming\Yahoo!  =>.©
O43 - CFD: 09/06/2014 - 03:55:17 - [] ----D- C:\Users\Babysoul\AppData\Roaming\ZHP  =>.©
O43 - CFD: 28/09/2010 - 22:52:45 - [] ----D- C:\Users\Babysoul\AppData\Roaming\_MDLogs
~ 313  Folders found in 2 second(s)


---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.4689243030C759BC6B37E2E91BCC065B] - 07/06/2014 - 19:04:12 ---A-- . (.BitDefender SRL - BitDefender SandBox User Interface Skinning.) -- C:\Windows\System32\bdsandboxuiskin32.dll   [74512]
O44 - LFC:[MD5.575C48C8F14745C36C58A24569EA31D7] - ---A-- . (...) -- C:\Windows\System32\collectionCache.bnk   [4571]
O44 - LFC:[MD5.017B99D09904DCA35D5F66AD79084B5F] - 21/06/2014 - 20:36:36 ---A-- . (.Microsoft Corporation - DirectX Media -- Image DirectX Transforms.) -- C:\Windows\System32\dxtmsft.dll   [368128]  =>.© Microsoft
O44 - LFC:[MD5.5B5815477A53ED92B89955FFE7EDCB2E] - 21/06/2014 - 20:36:32 ---A-- . (.Microsoft Corporation - DirectX Media -- DirectX Transform Core.) -- C:\Windows\System32\dxtrans.dll   [242688]  =>.© Microsoft
O44 - LFC:[MD5.22D7FFA4B94916F18EB1F1D107B86839] - 21/06/2014 - 20:36:28 ---A-- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll   [704512]  =>.© Microsoft
O44 - LFC:[MD5.BB9BADED14F0963498855AC28446CED5] - 21/06/2014 - 20:36:38 ---A-- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll   [51200]  =>.© Microsoft
O44 - LFC:[MD5.688227D38A6FF6403B293D0C50B454B9] - 21/06/2014 - 20:36:32 ---A-- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll   [11725312]  =>.© Microsoft
O44 - LFC:[MD5.D36574C287D0764C95AC777DFF367715] - 21/06/2014 - 20:36:32 ---A-- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll   [32768]  =>.© Microsoft
O44 - LFC:[MD5.9EAAB4305536829D6B7D9C3A47E92861] - 21/06/2014 - 20:36:34 ---A-- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll   [2179072]  =>.© Microsoft
O44 - LFC:[MD5.D9F5B424C307B195E16A9B0A21E53BCC] - 21/06/2014 - 20:36:34 ---A-- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll   [61952]  =>.© Microsoft
O44 - LFC:[MD5.814E0D53EF020BD93097F26B53B573F0] - 21/06/2014 - 20:36:32 ---A-- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll   [440832]  =>.© Microsoft
O44 - LFC:[MD5.CC0077F9C7ACD7E97707DFC763A4EA99] - 21/06/2014 - 20:36:29 ---A-- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe   [112128]  =>.© Microsoft
O44 - LFC:[MD5.C69FDD49AB9E8BCF2BAAC469CE0CC756] - 21/06/2014 - 20:36:34 ---A-- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl   [1964544]  =>.© Microsoft
O44 - LFC:[MD5.C1F5812F355D0C9495C1B2E7165DA2AF] - 21/06/2014 - 20:36:37 ---A-- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll   [32256]  =>.© Microsoft
O44 - LFC:[MD5.7EAB131EBF08F0E9E64C96285BD7D493] - 21/06/2014 - 16:28:40 ---A-- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe   [264616]
O44 - LFC:[MD5.C58E97EEB1CB80CE91D5E7FD5E78794F] - 21/06/2014 - 20:36:28 ---A-- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll   [4244992]  =>.© Microsoft
O44 - LFC:[MD5.6D8E6A9A524FFAAFA4D2F6C8EF38D0BB] - 21/06/2014 - 20:36:38 ---A-- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll   [592896]  =>.© Microsoft
O44 - LFC:[MD5.E0EA58834CD19FDFCD1BC37B22E1D3D8] - 21/06/2014 - 20:36:33 ---A-- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll   [43008]  =>.© Microsoft
O44 - LFC:[MD5.8DF06ACA017949D37C38B6A0EF747D4E] - 21/06/2014 - 20:36:36 ---A-- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll   [526336]  =>.© Microsoft
O44 - LFC:[MD5.D5ECBB3BFDC73A59440D9CA79AB3A342] - 21/06/2014 - 20:36:36 ---A-- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll   [17271296]  =>.© Microsoft
O44 - LFC:[MD5.4D3074AA172DCFD5D56BE764B671085A] - 21/06/2014 - 20:36:31 ---A-- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb   [2724864]  =>.© Microsoft
O44 - LFC:[MD5.7E27FB6AB8976897A530FB30F5FF7691] - 21/06/2014 - 20:36:38 ---A-- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll   [69632]  =>.© Microsoft
O44 - LFC:[MD5.0AC4E3C93D49E37D5B008ED99092115C] - 21/06/2014 - 20:36:29 ---A-- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll   [1068032]  =>.© Microsoft
O44 - LFC:[MD5.EB960643DC62832C88272573204B6DBA] - 21/06/2014 - 20:36:28 ---A-- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll   [164864]  =>.© Microsoft
O44 - LFC:[MD5.204882085A7D984D455AA4DE7B7074C6] - 01/06/2014 - 11:10:21 ---A-- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll   [5694464]  =>.© Microsoft
O44 - LFC:[MD5.8B8D1CEF498678CAB9DF17145D34BC64] - 21/06/2014 - 20:36:43 ---A-- . (.Microsoft Corporation - MSXML 3.0 SP11.) -- C:\Windows\System32\msxml3.dll   [1237504]  =>.© Microsoft
O44 - LFC:[MD5.0789F82BAE171323F74B8F175D406AB8] - 21/06/2014 - 20:36:42 ---A-- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml3r.dll   [2048]  =>.© Microsoft
O44 - LFC:[MD5.E227B810296AA27E6C69307A7B6456E5] - 21/06/2014 - 20:36:43 ---A-- . (.Microsoft Corporation - MSXML 6.0 SP3.) -- C:\Windows\System32\msxml6.dll   [1389056]  =>.© Microsoft
O44 - LFC:[MD5.2E673E776136354ECFB57BFD62E7EC3D] - 21/06/2014 - 20:36:42 ---A-- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml6r.dll   [2048]  =>.© Microsoft
O44 - LFC:[MD5.0AFCE8EEF3751810FE2101FD608FB8B3] - 21/06/2014 - 20:36:37 ---A-- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll   [1143296]  =>.© Microsoft
O44 - LFC:[MD5.A5F833506BF6A1B5D693E1499DEE2444] - 21/06/2014 - 20:36:46 ---A-- . (.Microsoft Corporation - Uniscribe Unicode script processor.) -- C:\Windows\System32\usp10.dll   [626688]  =>.© Microsoft
O44 - LFC:[MD5.09771ABC896D2A88370F3AB8BADC242E] - 21/06/2014 - 20:36:28 ---A-- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll   [455168]  =>.© Microsoft
O44 - LFC:[MD5.771CDBC3D62437D6DB070820BB1EDCCF] - 21/06/2014 - 20:36:28 ---A-- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll   [1790976]  =>.© Microsoft
O44 - LFC:[MD5.0B5A0005C0BDF4A05174576AF80DEA04] - 09/06/2014 - 03:20:31 ---A-- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr   [43152]
O44 - LFC:[MD5.9130CCE19B5DB3D2E31F9F789263FC4A] - 07/06/2014 - 19:04:12 ---A-- . (.Microsoft Corporation - CAPICOM Module.) -- C:\Windows\capicom.dll   [511328]  =>.© Microsoft
O44 - LFC:[MD5.7961CD0468457B52B18626367466CB6B] - ---A-- . (...) -- C:\Windows\ntbtlog.txt   [312062]
O44 - LFC:[MD5.9C44F67BBE3B5BF7F6B7EFE2454B5B54] - ---A-- . (...) -- C:\Windows\PFRO.log   [2878]
O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\Prefetch   [0]
O44 - LFC:[MD5.F4A33D12B74C17EED61143402808E76A] - ---A-- . (...) -- C:\Windows\setupact.log   [2576]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - ---A-- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\SoftwareDistribution   [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\softwaredistribution.bak2   [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\softwaredistribution.bak3   [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\softwaredistribution.bak4   [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\softwaredistribution.bak5   [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - ---A-- . (...) -- C:\Windows\WindowsUpdate.log   [1799458]
O44 - LFC:[MD5.11C4A0BED7637472F4A6DDF5B1CCB430] - ---A-- . (...) -- C:\Windows\wininit.ini   [434]
~ 47  Last Acceded System File scanned in 13 second(s)




---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configurat.) -- C:\Windows\System32\scecli.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll  =>.© Microsoft
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll  =>.© Microsoft
~ 9  Local Security Authority found in 0 second(s)


---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\drivers\sermouse.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\drivers\vgasave.sys (.not file.)  =>.©
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\drivers\volmgr.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) -- C:\Windows\System32\drivers\volmgrx.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\ipnat.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\drivers\nsiproxy.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\drivers\rdpencdd.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\drivers\sermouse.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\drivers\vgasave.sys (.not file.)  =>.©
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\drivers\volmgr.sys  =>.© Microsoft
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) -- C:\Windows\System32\drivers\volmgrx.sys  =>.© Microsoft
~ 13  Safe Boot Control scanned in 0 second(s)


---\\ MountPoints2 Shell Key (MPSK) (O51)
O51 - MPSK:{0f2c9175-e1a0-11e2-8a67-1cc1de649582}\Shell\Autorun\command. (...) -- E:\Startme.exe (.not file.)
O51 - MPSK:{e706b5b2-0503-11e0-a55e-1cc1de649582}\Shell\Autorun\command. (...) -- H:\LaunchU3.exe (.not file.)
~ 2  MountPoints2 Shell Key scanned in 0 second(s)


---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll  =>.© Microsoft
~ 1 Control Security Providers scanned in 0 second(s)


---\\ Liste des pilotes démarrés par le système (SDL) (O58)
O58 - SDL:[MD5.79059559E89D06E8B80CE2944BE20228] - 19/11/2013-00:47:34 . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\system32\drivers\afd.sys   [497152]  =>.© Microsoft
O58 - SDL:[MD5.340B0467E98A8C92697D73034DB4BCB7] - (aswHwid) . (...) -- C:\Windows\system32\drivers\aswHwid.sys   [29208]
O58 - SDL:[MD5.ED5B09937D559FFA53FC988D20031E98] - 09/06/2014-03:20:36 . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\system32\drivers\aswMonFlt.sys   [79184]  =>.©
O58 - SDL:[MD5.33C77DCB0AEC76E26BD6352A1A5281BB] - 09/06/2014-03:20:35 . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\system32\drivers\aswRdr2.sys   [93568]  =>.©
O58 - SDL:[MD5.1C159A357210CAB8974D5FBA068DC38F] - 09/06/2014-03:20:37 . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys   [1039096]  =>.©
O58 - SDL:[MD5.5545FB5B49268C903F311849DB1942ED] - 09/06/2014-03:20:36 . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys   [423240]  =>.©
O58 - SDL:[MD5.708689376A3FD6C6897C69D272E19F4B] - 09/06/2014-03:20:38 . (.AVAST Software - Stream Filter.) -- C:\Windows\system32\drivers\aswStm.sys   [85328]  =>.©
O58 - SDL:[MD5.61583EE3C3A17003C4ACD0475646B4D3] - 14/07/2009-01:35:59 . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\system32\DRIVERS\blbdrive.sys   [45056]  =>.© Microsoft
O58 - SDL:[MD5.83D2D75E1EFB81B3450C18131443F7DB] - 14/07/2009-01:19:54 . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\system32\DRIVERS\cdrom.sys   [147456]  =>.© Microsoft
O58 - SDL:[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/06/2011-22:16:39 . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\system32\Drivers\dfsc.sys   [102400]  =>.© Microsoft
O58 - SDL:[MD5.13096B05847EC78F0977F2C0F79E9AB3] - 14/07/2009-01:37:18 . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\system32\drivers\discache.sys   [40448]  =>.© Microsoft
O58 - SDL:[MD5.07DA62C960DDCCC2D35836AEAB4FC578] - 23/06/2012-17:24:54 . (.Microsoft Corporation - Family Safety Filter Driver (WFP Callout).) -- C:\Windows\system32\DRIVERS\fssfltr.sys   [48488]  =>.© Microsoft
O58 - SDL:[MD5.1538831CF8AD2979A04C423779465827] - 14/07/2009-02:08:51 . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\system32\DRIVERS\lltdio.sys   [60928]  =>.© Microsoft
O58 - SDL:[MD5.43D0F98E1D56CCDDB0D5254CFF7B356E] - 14/07/2009-01:26:13 . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) -- C:\Windows\system32\drivers\luafv.sys   [113152]  =>.© Microsoft
O58 - SDL:[MD5.0EED230E37515A0EAEE3C2E1BC97B288] - 14/07/2009-01:31:10 . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\system32\drivers\mssmbios.sys   [32320]  =>.© Microsoft
O58 - SDL:[MD5.86743D9F5D2B1048062B14B1D84501C4] - 14/07/2009-02:09:26 . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\system32\DRIVERS\netbios.sys   [44544]  =>.© Microsoft
O58 - SDL:[MD5.09594D1089C523423B32A4229263F068] - 21/06/2011-22:19:41 . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\system32\DRIVERS\netbt.sys   [261632]  =>.© Microsoft
O58 - SDL:[MD5.E7F5AE18AF4168178A642A9247C63001] - 14/07/2009-01:21:03 . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\drivers\nsiproxy.sys   [24576]  =>.© Microsoft
O58 - SDL:[MD5.68769C3356B3BE5D1C732C97B9A80D6E] - 14/07/2009-01:51:01 . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\system32\drivers\peauth.sys   [651264]  =>.© Microsoft
O58 - SDL:[MD5.0557CF5A2556BD58E26384169D72438D] - 21/06/2011-22:16:46 . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\system32\DRIVERS\pacer.sys   [131584]  =>.© Microsoft
O58 - SDL:[MD5.77F665941019A1594D887A74F301FA2F] - 21/06/2011-22:19:17 . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) -- C:\Windows\system32\DRIVERS\rdbss.sys   [309248]  =>.© Microsoft
O58 - SDL:[MD5.CEA6CC257FC9B7715F1C2B4849286D24] - 14/07/2009-02:16:34 . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\system32\DRIVERS\RDPCDD.sys   [7680]  =>.© Microsoft
O58 - SDL:[MD5.BB5971A4F00659529A5C44831AF22365] - 14/07/2009-02:16:34 . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\drivers\rdpencdd.sys   [7680]  =>.© Microsoft
O58 - SDL:[MD5.216F3FA57533D98E1F74DED70113177A] - 14/07/2009-02:16:35 . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\system32\drivers\rdprefmp.sys   [8192]  =>.© Microsoft
O58 - SDL:[MD5.CAF88D6573D21CD2AA27001DDBFDC74D] - 21/06/2011-22:17:01 . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\system32\DRIVERS\RMCAST.sys   [146432]  =>.© Microsoft
O58 - SDL:[MD5.DDC86E4F8E7456261E637E3552E804FF] - 14/07/2009-02:08:51 . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) -- C:\Windows\system32\DRIVERS\rspndr.sys   [76800]  =>.© Microsoft
O58 - SDL:[MD5.1B16D0BD9841794A6E0CDE0CEF744ABC] - 14/11/2012-02:51:39 . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\system32\drivers\tcpipreg.sys   [45568]  =>.© Microsoft
O58 - SDL:[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - 21/06/2011-22:19:42 . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\system32\DRIVERS\tdx.sys   [119296]  =>.© Microsoft
O58 - SDL:[MD5.561E7E1F06895D78DE991E01DD0FB6E5] - 21/06/2011-22:18:26 . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\system32\drivers\termdd.sys   [63360]  =>.© Microsoft
O58 - SDL:[MD5.53E92A310193CB3C03BEA963DE7D9CFC] - 14/07/2009-01:38:48 . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys   [29184]  =>.© Microsoft
O58 - SDL:[MD5.356AFD78A6ED4457169241AC3965230C] - 21/06/2011-22:18:07 . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\system32\DRIVERS\wanarp.sys   [88576]  =>.© Microsoft
O58 - SDL:[MD5.611B23304BF067451A9FDEE01FBDD725] - 14/07/2009-02:09:26 . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\system32\DRIVERS\wfplwf.sys   [12800]  =>.© Microsoft
~ 32  System Drivers scanned in 0 second(s)


---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 21/06/2014 - 14:02:35 ---A-- . (...) -- C:\Users\Babysoul\Downloads\adwcleaner_3.212.exe   [1333465]
O61 - LFC: 09/06/2014 - 03:29:30 ---A-- . (.AVAST Software - avast! Antivirus Installer.) -- C:\Users\Babysoul\Downloads\avast_free_antivirus_setup_online.exe   [4796856]
O61 - LFC: 22/06/2014 - 12:05:53 ---A-- . (.Piriform Ltd - CCleaner Installer.) -- C:\Users\Babysoul\Downloads\ccsetup414_slim.exe   [3673664]
O61 - LFC: 27/06/2014 - 20:10:00 ---A-- . (.Kaspersky Lab - Kaspersky Installer [12.0.1.808.6].) -- C:\Users\Babysoul\Downloads\fr-fr.setup.exe   [416576]
O61 - LFC: 11/06/2014 - 01:48:55 ---A-- . (...) -- C:\Users\Babysoul\Downloads\hijackthis.log   [20783]
O61 - LFC: 11/06/2014 - 21:32:26 ----D- . (...) -- C:\Users\Babysoul\Downloads\lspfix   [0]
O61 - LFC: 11/06/2014 - 21:29:24 ---A-- . (...) -- C:\Users\Babysoul\Downloads\lspfix.zip   [201030]
O61 - LFC: 21/06/2014 - 16:54:15 ---A-- . (...) -- C:\Users\Babysoul\Downloads\mbam-chameleon-3.1.4.0.zip   [4872677]
O61 - LFC: 22/06/2014 - 20:55:37 ---A-- . (.Malwarebytes Corporation                                     - Malwarebytes Anti-Malware                  .) -- C:\Users\Babysoul\Downloads\mbam-setup-2.0.2.1012 (1).exe   [17292760]
O61 - LFC: 21/06/2014 - 17:23:38 ---A-- . (.Malwarebytes Corporation                                     - Malwarebytes Anti-Malware                  .) -- C:\Users\Babysoul\Downloads\mbam-setup-2.0.2.1012.exe   [17292760]
O61 - LFC: 23/06/2014 - 22:11:16 ---A-- . (.Nicolas Coolman - Security Diagnostic Tool.) -- C:\Users\Babysoul\Downloads\ncdiag.exe   [1219584]
O61 - LFC: 24/06/2014 - 21:37:04 ---A-- . (.Opera Software ASA - 7z Setup SFX.) -- C:\Users\Babysoul\Downloads\Opera_22.0.1471.70_Setup.exe   [27641968]
O61 - LFC: 23/06/2014 - 20:53:58 ---A-- . (...) -- C:\Users\Babysoul\Downloads\RogueKiller.exe   [4721240]
O61 - LFC: 22/06/2014 - 12:27:23 ---A-- . (.Safer-Networking Ltd.                                        - Spybot - Search & Destroy                  .) -- C:\Users\Babysoul\Downloads\spybot-2.3.exe   [46392680]
O61 - LFC: 09/06/2014 - 02:32:40 ---A-- . (...) -- C:\Users\Babysoul\Downloads\Unlocker1.9.2.exe   [402911]
O61 - LFC: 28/06/2014 - 10:19:51 ---A-- . (.Nicolas Coolman                                              - ZHPDiag Setup                              .) -- C:\Users\Babysoul\Downloads\ZHPDiag2 (1).exe   [6854413]
O61 - LFC: 22/06/2014 - 20:08:23 ---A-- . (.Nicolas Coolman                                              - ZHPDiag Setup                              .) -- C:\Users\Babysoul\Downloads\ZHPDiag2.exe   [6854961]
~ 17  Last File Acceded scanned in 6 second(s)


---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - C:\Windows\system32\DRIVERS\atipmdag.sys (amdkmdag)  .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- LEGACY_AMDKMDAG
O64 - Services: CurCS - C:\Windows\system32\drivers\aswHwid.sys (aswHwid)  .(...) - LEGACY_ASWHWID
O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) -- LEGACY_ASWMONFLT
O64 - Services: CurCS - C:\Windows\system32\drivers\aswRdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) -- LEGACY_ASWRDR
O64 - Services: CurCS - avast! Revert (aswRvrt)  .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - C:\Windows\system32\drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) -- LEGACY_ASWSNX
O64 - Services: CurCS - C:\Windows\system32\drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) -- LEGACY_ASWSP
O64 - Services: CurCS - C:\Windows\system32\drivers\aswStm.sys (aswStm)  .(.AVAST Software - Stream Filter.) -- LEGACY_ASWSTM
O64 - Services: CurCS - avast! VM Monitor (aswVmm)  .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - Beep (Beep)  .(.Microsoft Corporation - Beep Driver.) -- LEGACY_BEEP  =>.© Microsoft Corporation
O64 - Services: CurCS - FAT12/16/32 File System Driver (fastfat)  .(...) - LEGACY_FASTFAT
O64 - Services: CurCS - C:\Windows\system32\DRIVERS\LVPr2M64.sys (LVPr2M64)  .(...) - LEGACY_LVPR2M64
O64 - Services: CurCS - Security Driver (secdrv)  .(...) - LEGACY_SECDRV
O64 - Services: CurCS - Security Processor Loader Driver (spldr)  .(...) - LEGACY_SPLDR
O64 - Services: CurCS - C:\Program Files\Unlocker\UnlockerDriver5.sys (UnlockerDriver5)  .(...) - LEGACY_UNLOCKERDRIVER5
~ 15  Legacy Keys found in 4 second(s)


---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\system32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <OperaStable>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\System32\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
~ 10  File Association Shell Spawning scanned in 0 second(s)


---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] . (...) -- c:\program files (x86)\mozilla firefox\firefox.exe  =>.© Mozilla
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] . (...) -- c:\program files (x86)\google\chrome\application\chrome.exe  =>.© Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] . (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe  =>.© Microsoft
O68 - StartMenuInternet: <OperaStable> <Opera Stable>[HKLM\..\Shell\open\Command] . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] . (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <OperaStable> <Opera Stable>[HKLM\..\InstallInfo\ShowIconsCommand] . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] . (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <OperaStable> <Opera Stable>[HKLM\..\InstallInfo\ReinstallCommand] . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] . (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <OperaStable> <Opera Stable>[HKLM\..\InstallInfo\HideIconsCommand] . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
~ 16  Start Menu Internet found in 0 second(s)


---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {A2FA8D66-A911-43FF-80AC-C328916A34F7} [DefaultScope] - (Yahoo! Search) - http://search.yahoo.com
~ 2  Search Browser Infection scanned in 0 second(s)


---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Disabled 09/04/2012-12:57:13 113152 || ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SS - | Disabled 17/01/2014-21:47:48 65432 || Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Disabled 10/11/2012-11:00:19 257712 || Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 01/01/1601-02:07:09 0 ||  (AMD External Events Utility) . (...) - C:\Windows\system32\atiesrxx.exe (.not file.)
SS - | Disabled 12/12/2010-02:24:07 37664 || Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 09/06/2014-03:20:30 50344 || avast! Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 01/01/1601-02:07:09 0 || @%systemroot%\system32\CISVC.EXE,-1 (CISVC) . (...) - C:\Windows\system32\CISVC.EXE (.not file.)
SS - | Demand 01/01/1601-02:07:09 0 || @%SystemRoot%\system32\efssvc.dll,-100 (EFS) . (...) - C:\Windows\System32\lsass.exe (.not file.)
SS - | Disabled 24/12/2010-18:22:56 163840 || EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
SS - | Disabled 24/12/2010-18:22:56 126464 || EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
SS - | Disabled 01/01/1601-02:07:09 0 || Télécopie (Fax) . (...) - C:\Windows\system32\fxssvc.exe (.not file.)
SS - | Auto 23/06/2012-17:24:52 1492840 || Windows Live Family Safety Service (fsssvc) . (.Microsoft Corporation.) - C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
SS - | Disabled 29/09/2012-14:50:43 206072 || GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SS - | Disabled 19/02/2011-16:11:20 136176 || Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 19/02/2011-16:11:20 136176 || Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 24/12/2012-19:26:46 86528 || HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
SS - | Disabled 24/12/2012-19:26:50 1001376 || HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SS - | Disabled 07/04/2012-22:34:05 69632 || InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 01/01/1601-02:07:09 0 || @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) . (...) - C:\Windows\system32\inetsrv\inetinfo.exe (.not file.)
SS - | Disabled 11/06/2010-01:47:10 73728 || LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company.) - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 01/01/1601-02:07:09 0 || @mqutil.dll,-6102 (MSMQ) . (...) - C:\Windows\system32\mqsvc.exe (.not file.)
SR - | Auto 01/01/1601-02:07:09 0 || @mqutil.dll,-6203 (MSMQTriggers) . (...) - %Systemroot%\system32\mqtgsvc.exe (.not file.)
SS - | Disabled 10/03/2014-20:48:41 699912 || Orange update Core Service (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
SS - | Disabled 11/06/2010-01:31:18 635416 || PDF Document Manager (pdfcDispatcher) . (.PDF Complete Inc.) - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
SR - | Auto 14/07/2009-01:55:14 9216 || @%SystemRoot%\system32\simptcp.dll,-200 (simptcp) . (.Microsoft Corporation.) - C:\Windows\System32\tcpsvcs.exe
SS - | Disabled 14/12/2012-12:24:39 3064000 || Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SR - | Auto 21/06/2011-22:17:08 47616 || @%SystemRoot%\system32\snmp.exe,-3 (SNMP) . (.Microsoft Corporation.) - C:\Windows\System32\snmp.exe
SS - | Disabled 01/01/1601-02:07:09 0 || @%SystemRoot%\system32\tlntsvr.exe,-119 (TlntSvr) . (...) - C:\Windows\System32\tlntsvr.exe (.not file.)
SS - | Disabled 18/01/2012-06:44:52 450848 ||  (UMVPFSrv) . (.Logitech Inc..) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
SS - | Demand 01/01/1601-02:07:09 0 || @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) . (...) - C:\Windows\system32\Wat\WatAdminSvc.exe (.not file.)
~ 30  Services scanned in 0 second(s)


---\\ Scan Additionnel (O88 )
Database Version : 13036 (30/03/2014)
Clés trouvées (Keys found) : 0
Dossiers trouvés  (Folders found) :  0
Fichiers trouvés  (Files found) :  0


~ Additionnal Scan: 154461 Items scanned in 5 seconds


---\\ Script de nettoyage avec ZHPFix
Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
~ ATTENTION, ce script est donné à titre indicatif, il doit étre validé  par un expert diplômé en désinfection.
~ 6  ZHPFix Script Files found in 0 second(s)



~ End of the scan (0/1161 lines) in 37 seconds)