otl.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 2014/02/17 21:21:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Famille COLLE\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16518)
Locale: 0000040C | Country: France | Language: FRA | Date Format: yyyy/MM/dd

3,73 Gb Total Physical Memory | 2,03 Gb Available Physical Memory | 54,43% Memory free
7,46 Gb Paging File | 5,49 Gb Available in Paging File | 73,64% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451,16 Gb Total Space | 309,92 Gb Free Space | 68,69% Space Free | Partition Type: NTFS

Computer Name: PORTABLECOLLE | User Name: Famille COLLE | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Users\Famille COLLE\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\Allmyapps.exe (Allmyapps)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Users\Famille COLLE\AppData\Roaming\SkypEmoticons\SE.exe (SkypEmoticons)
PRC - C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\PDF Architect\HelperService.exe (pdfforge GmbH)
PRC - C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe ()
PRC - C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Gadwin Systems, Inc)
PRC - C:\Program Files\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated)
PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation)
PRC - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe (CyberLink Corp.)
PRC - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe ()
PRC - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe (CyberLink Corp.)
PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)

[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppgooglenaclpluginchrome.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll ()
MOD - C:\Program Files\Microsoft Office 15\Root\Office15\c2r32.dll ()
MOD - C:\Program Files\AVAST Software\Avast\libcef.dll ()
MOD - C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll ()
MOD - C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\qjson.dll ()
MOD - C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\CrashRpt1301.dll ()
MOD - C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll ()
MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll ()
MOD - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe ()
MOD - C:\Program Files (x86)\Orange\Orange Installer\libstdc++-6.dll ()
MOD - C:\Program Files (x86)\Orange\Orange Installer\libgcc_s_dw2-1.dll ()

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - (ePowerSvc) -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe File not found
SRV:[b]64bit:[/b] - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV:[b]64bit:[/b] - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (OfficeSvc) -- C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe (Microsoft Corporation)
SRV:[b]64bit:[/b] - (EvoSvc) -- C:\Program Files\Echobit\Evolve\EvoSvc.exe (Echobit LLC)
SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV:[b]64bit:[/b] - (Live Updater Service) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe (Acer Incorporated)
SRV:[b]64bit:[/b] - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:[b]64bit:[/b] - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (PDF Architect Helper Service) -- C:\Program Files (x86)\PDF Architect\HelperService.exe (pdfforge GmbH)
SRV - (npggsvc) -- C:\Windows\SysWOW64\GameMon.des (INCA Internet Co., Ltd.)
SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (NTI IScheduleSvc) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NTI Corporation)
SRV - (EgisTec Ticket Service) -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe (Egis Technology Inc. )
SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - (aswStm) -- C:\Windows\SysNative\drivers\aswstm.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswVmm) -- C:\Windows\SysNative\drivers\aswVmm.sys ()
DRV:[b]64bit:[/b] - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
DRV:[b]64bit:[/b] - (aswRvrt) -- C:\Windows\SysNative\drivers\aswRvrt.sys ()
DRV:[b]64bit:[/b] - (EvolveVirtualAdapter) -- C:\Windows\SysNative\drivers\evolve.sys (Echobit, LLC)
DRV:[b]64bit:[/b] - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:[b]64bit:[/b] - (mwlPSDVDisk) -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.)
DRV:[b]64bit:[/b] - (mwlPSDFilter) -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.)
DRV:[b]64bit:[/b] - (mwlPSDNServ) -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.)
DRV:[b]64bit:[/b] - (libusb0) -- C:\Windows\SysNative\drivers\libusb0.sys (http://libusb-win32.sourceforge.net)
DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (NTIDrvr) -- C:\Windows\SysNative\drivers\NTIDrvr.sys (NTI Corporation)
DRV:[b]64bit:[/b] - (UBHelper) -- C:\Windows\SysNative\drivers\UBHelper.sys (NTI Corporation)
DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
DRV:[b]64bit:[/b] - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:[b]64bit:[/b] - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:[b]64bit:[/b] - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:[b]64bit:[/b] - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
DRV:[b]64bit:[/b] - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:[b]64bit:[/b] - (usbfilter) -- C:\Windows\SysNative\drivers\usbfilter.sys (Advanced Micro Devices)
DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:[b]64bit:[/b] - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:[b]64bit:[/b] - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:[b]64bit:[/b] - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:[b]64bit:[/b] - (mod7700) -- C:\Windows\SysNative\drivers\mod7700.sys (DiBcom)
DRV:[b]64bit:[/b] - (MODRC) -- C:\Windows\SysNative\drivers\modrc.sys (DiBcom S.A.)
DRV - (libusb0) -- C:\Windows\SysWOW64\drivers\libusb0.sys (http://libusb-win32.sourceforge.net)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche-webs.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://recherche-webs.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{36639A68-00B5-460C-A586-4FAC2886711B}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=fr_FR&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^FR&apn_uid=3DC6BCD9-F7D1-4E94-B67F-A69A7036CFC3&apn_sauid=7A815CEB-79CF-4B3B-9D5E-7D2C26C6BEB0
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searcices\mwlPSDNServ\Parameters
IE - HKCU\..\SearchScopes\{814C76CB-2623-43F4-AAD0-58A0E5190A20}: "URL" = http://r.orange.fr/r?ref=O_OI_hook_openSearchIE&url=http%3A//rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
IE - HKCU\..\SearchScopes\{D7E36A54-54EF-4D33-B233-869015456A86}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\10\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Famille COLLE\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013/05/01 09:41:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/08/22 18:56:49 | 000,000,000 | ---D | M]

[2013/04/06 16:59:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.fr/ig
CHR - Extension: Angry Birds = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Forge of Empires = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\anaphblkfplenhkephgneolhnmjminjg\1.2_0\
CHR - Extension: Documents Google = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google\u00A0Drive = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\
CHR - Extension: Kingdom Rush = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmfhhjalnddapegkbbohfaodgbnocim\1.1.0.1_0\
CHR - Extension: Recherche Google = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Pirates: Tides of Fortune = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\djlmofcgpnpnhlbkgbpenbecfboohcka\0.88_0\
CHR - Extension: Powered by Redstone = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\eaafagdemifnmjbmblhleneomcfdmofm\5.0_0\
CHR - Extension: Netcetera Hosting Control Panel = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\eddegidamgjkaihplgdddmjbepgiaifn\1.0.5_0\
CHR - Extension: Football Champions = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\eehpibjfkijipalplliffcgkhhmecjgi\0.56_0\
CHR - Extension: Polycraft = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\eopfmbpfhhfnklgmjpoehcjaajhpbhbl\1.0.0.16_0\
CHR - Extension: Gangnam Style Game = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdbdhcafljkcahgefanhpdahdnpfkaok\1.0.0_0\
CHR - Extension: Pockie Ninja = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnllmdekhoodfjggoncakndldjihiiol\1.71_0\
CHR - Extension: AdBlock = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.18_0\
CHR - Extension: Crimson: Steam Pirates = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\glfbkgkceahodalogdpenjoekbacjfcj\1.0_0\
CHR - Extension: avast! Online Security = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2013.75_0\
CHR - Extension: LEGO Star Wars - The Quest for R2-D2 = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcjbcgfmgdinmcljnafppclcmckchoca\1.0_0\
CHR - Extension: Autodesk Homestyler = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb\2.6_0\
CHR - Extension: Dragon Ball Z MMORPG ! = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\kljhjkncoceojjbadalclgdinmijjien\1.1_0\
CHR - Extension: Soccer Manager = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpemkngoajegcbamebdmnkjoalpofpbj\1.1.6.2_0\
CHR - Extension: Tennis live = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\lckkkofifdlkmbckfboekglggpakbmif\0.0.0.3_0\
CHR - Extension: Planificateur de logements = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna\1.2.0.4_0\
CHR - Extension: Plants vs Zombies = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcegpfdgcoclcdfkjahiimlikdpnina\1.0.5_0\
CHR - Extension: Infectonator: Dominateur du Monde = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\molaaggdgdhfdkbjljdjohccdbicagej\2.0.0.25_0\
CHR - Extension: Discount Dragon = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikdaiaidiiiogaidkkekcmokcgcdeac\1.0_0\
CHR - Extension: Google\u00A0Wallet = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_4\
CHR - Extension: Gmail = C:\Users\Famille COLLE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2014/02/15 15:39:36 | 000,000,871 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 54.204.28.26 nikdaiaidiiiogaidkkekcmokcgcdeac
O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (SearchNewTab) - {8B1C73B8-38C0-75F4-8CAC-903645AFB4D4} - C:\Program Files (x86)\SearchNewTab\Fi9k.x64.dll ()
O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:[b]64bit:[/b] - BHO: (YoutubeAdblocker) - {92AE0D41-94EC-76F8-0136-A8A6713D3362} - C:\Program Files (x86)\YoutubeAdblocker\8ny.x64.dll ()
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (seuarfo, and kEep) - {D64BFCCA-2CC8-CE4B-4A14-2C097EC79B9F} - C:\Program Files (x86)\seuarfo, and kEep\G3s.x64.dll ()
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Discount Dragon BHO) - {EA34C851-D481-49F5-A356-3A8B0A8F3B7E} - C:\Program Files (x86)\Discount Dragon\FrameworkBHO64.dll ()
O2 - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (SearchNewTab) - {8B1C73B8-38C0-75F4-8CAC-903645AFB4D4} - C:\Program Files (x86)\SearchNewTab\Fi9k.dll ()
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (YoutubeAdblocker) - {92AE0D41-94EC-76F8-0136-A8A6713D3362} - C:\Program Files (x86)\YoutubeAdblocker\8ny.dll ()
O2 - BHO: (Evernote extension) - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (seuarfo, and kEep) - {D64BFCCA-2CC8-CE4B-4A14-2C097EC79B9F} - C:\Program Files (x86)\seuarfo, and kEep\G3s.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Discount Dragon BHO) - {EA34C851-D481-49F5-A356-3A8B0A8F3B7E} - C:\Program Files (x86)\Discount Dragon\FrameworkBHO.dll ()
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ArcadeMovieService] C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [fst_fr_80] File not found
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Allmyapps] C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\Allmyapps.exe (Allmyapps)
O4 - HKCU..\Run: [Allmyapps Update] C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\AllmyappsUpdater.exe (Allmyapps)
O4 - HKCU..\Run: [Gadwin PrintScreen] C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Gadwin Systems, Inc)
O4 - HKCU..\Run: [Orange Installer] C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe ()
O4 - HKCU..\Run: [se] C:\Users\Famille COLLE\AppData\Roaming\SkypEmoticons\SE.exe (SkypEmoticons)
O4 - HKLM..\RunOnce: [Discount Dragon-repairJob] C:\Users\Famille COLLE\AppData\Local\Discount Dragon\repair.js ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:[b]64bit:[/b] - Extra context menu item: Ajouter à vos favoris Orange - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html ()
O8:[b]64bit:[/b] - Extra context menu item: Capture la sélection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O8:[b]64bit:[/b] - Extra context menu item: Capturer cette page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8:[b]64bit:[/b] - Extra context menu item: Capturer l'image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8:[b]64bit:[/b] - Extra context menu item: Capturer l'URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Envoyer le texte sélectionné par sms - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8:[b]64bit:[/b] - Extra context menu item: Envoyer par sms - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8:[b]64bit:[/b] - Extra context menu item: Envoyer un mail - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8:[b]64bit:[/b] - Extra context menu item: Nouvelle note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8:[b]64bit:[/b] - Extra context menu item: orange.fr - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8:[b]64bit:[/b] - Extra context menu item: Rechercher le texte sélectionné - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8:[b]64bit:[/b] - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Traduire le texte sélectionné - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Ajouter à vos favoris Orange - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html ()
O8 - Extra context menu item: Capture la sélection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O8 - Extra context menu item: Capturer cette page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8 - Extra context menu item: Capturer l'image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8 - Extra context menu item: Capturer l'URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Envoyer le texte sélectionné par sms - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8 - Extra context menu item: Envoyer par sms - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8 - Extra context menu item: Envoyer un mail - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8 - Extra context menu item: Nouvelle note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8 - Extra context menu item: orange.fr - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8 - Extra context menu item: Rechercher le texte sélectionné - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Traduire le texte sélectionné - C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{940C3F92-B2F4-46BE-A88C-2068007803BA}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CBC1A804-F792-4A2A-A942-E93B1AF9C53E}: DhcpNameServer = 172.22.1.1
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (c:\progra~2\sshelp~1\psupport.dll) - File not found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

MsConfig:64bit - StartUpFolder: C:^Users^Famille COLLE^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe - (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
MsConfig:64bit - StartUpReg: [b]Adobe ARM[/b] - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: [b]APSDaemon[/b] - hkey= - key= - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
MsConfig:64bit - StartUpReg: [b]EvolveClient[/b] - hkey= - key= - C:\Program Files\Echobit\Evolve\EvolveClient.exe (Echobit LLC)
MsConfig:64bit - StartUpReg: [b]iTunesHelper[/b] - hkey= - key= - C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc.)
MsConfig:64bit - StartUpReg: [b]Lync[/b] - hkey= - key= - C:\Program Files\Microsoft Office 15\Root\Office15\lync.exe (Microsoft Corporation)
MsConfig:64bit - StartUpReg: [b]MailNotifier[/b] - hkey= - key= - C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe (Orange)
MsConfig:64bit - StartUpReg: [b]msnmsgr[/b] - hkey= - key= - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
MsConfig:64bit - StartUpReg: [b]Norton Online Backup[/b] - hkey= - key= - File not found
MsConfig:64bit - StartUpReg: [b]Skype[/b] - hkey= - key= - C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
MsConfig:64bit - StartUpReg: [b]Spotify Web Helper[/b] - hkey= - key= - C:\Users\Famille COLLE\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:[b]64bit:[/b] {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 9.0
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 9.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:[b]64bit:[/b] VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:[b]64bit:[/b] vidc.XVID - xvidvfw.dll ()
Drivers32: msacm.l3acm - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2014/02/17 21:17:23 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{E07EC312-AEB9-4F3C-9FE0-AF07549E04FD}
[2014/02/17 07:20:40 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{B58B6CEF-7625-49A4-90EA-DDEDF392C708}
[2014/02/16 18:59:20 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{30988585-4293-42CF-8BC4-9737E10DF731}
[2014/02/15 09:50:02 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\BenchUpdater
[2014/02/15 09:49:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Discount Dragon
[2014/02/15 09:49:49 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\Discount Dragon
[2014/02/15 09:49:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\predm
[2014/02/14 22:57:28 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{167CD1A7-3334-47AB-97B0-81826FA0A71E}
[2014/02/14 07:27:00 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{DAC2FE2E-276F-4744-8E4E-2CD39CADCE9D}
[2014/02/13 07:59:07 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{BEB6CEC6-D18C-4701-BF55-5BBB9795B258}
[2014/02/12 08:48:26 | 000,548,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2014/02/12 08:46:57 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2014/02/12 08:46:56 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2014/02/12 08:46:55 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2014/02/12 08:46:55 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2014/02/12 08:46:53 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2014/02/12 08:46:53 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2014/02/12 08:46:53 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2014/02/12 08:46:50 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2014/02/12 08:46:49 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2014/02/12 08:46:49 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2014/02/12 08:46:49 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2014/02/12 08:46:49 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2014/02/12 08:46:49 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2014/02/12 08:46:48 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2014/02/12 08:46:48 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2014/02/12 08:46:48 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2014/02/12 08:46:46 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2014/02/12 08:46:46 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2014/02/12 08:46:45 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2014/02/12 08:46:45 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2014/02/12 08:46:41 | 002,041,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2014/02/12 08:46:41 | 001,964,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2014/02/12 08:46:35 | 005,768,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2014/02/12 07:42:15 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{50F489D9-AFEC-434A-B6D2-CA4FDDD9E16A}
[2014/02/12 07:14:38 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2014/02/12 07:14:37 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2014/02/12 07:14:23 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2014/02/12 07:14:22 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2014/02/12 07:14:22 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2014/02/12 07:14:22 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2014/02/12 07:14:22 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2014/02/12 07:14:21 | 000,553,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2014/02/12 07:14:21 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2014/02/12 07:14:21 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2014/02/12 07:14:21 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2014/02/12 07:14:21 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2014/02/12 07:14:20 | 000,528,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2014/02/12 07:14:20 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2014/02/12 07:14:20 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2014/02/12 07:14:20 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2014/02/12 07:14:20 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2014/02/12 07:14:20 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2014/02/12 07:14:20 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2014/02/12 07:14:07 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2014/02/12 07:14:06 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2014/02/12 06:56:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bench
[2014/02/11 17:27:21 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Roaming\Hive Cluster
[2014/02/11 17:26:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Meat Boy
[2014/02/11 17:25:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Super Meat Boy
[2014/02/11 17:25:05 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Super Meat Boy
[2014/02/11 15:23:07 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Roaming\DAEMON Tools Lite
[2014/02/11 15:21:28 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014/02/11 11:34:15 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Roaming\.mono
[2014/02/11 07:24:53 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{A691B808-9EE3-4644-BE23-DB91187DAA39}
[2014/02/10 18:59:18 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\Desktop\starwars
[2014/02/10 16:29:45 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\Castle Story Prototype
[2014/02/10 16:26:47 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\Desktop\Castel Story
[2014/02/10 07:50:59 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{A7E1439B-8FF3-4715-8E4D-5FD6CA6F029A}
[2014/02/09 10:23:14 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Roaming\uTorrent
[2014/02/09 08:35:00 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{71CF41BA-2734-4EF4-BB1B-41BD2E731A32}
[2014/02/08 16:19:48 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\Introversion
[2014/02/08 16:17:29 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\Desktop\Prison architect (ne pas enlever)
[2014/02/08 09:00:22 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\Documents\tex
[2014/02/08 08:10:58 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{E7669BDB-E082-4B46-B8A1-113178C534B2}
[2014/02/07 07:58:53 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{CE4AA5C9-9ADB-4C52-9B5B-8862183ED8C0}
[2014/02/06 17:31:28 | 012,710,600 | ---- | C] (MAXON Computer GmbH) -- C:\Users\Famille COLLE\Desktop\CINEMA 4D.exe
[2014/02/06 17:24:40 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Roaming\MAXON
[2014/02/06 08:51:14 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{BA9DA75F-2FEF-42E3-96C7-BA3C9E66B8FB}
[2014/02/05 20:50:44 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{FC8D4C79-ED9C-4453-AABC-322EE2E58E58}
[2014/02/05 14:47:44 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\Documents\AA Speed Art
[2014/02/05 08:48:45 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{528B420C-D05C-4DB3-B1EF-1624E6026828}
[2014/02/04 20:48:06 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{537CEFA2-FEB0-40CB-8725-941568BD1BDE}
[2014/02/04 08:01:40 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{52619DD2-5A11-4E30-8BFB-79ADBC253338}
[2014/02/03 08:19:03 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{FFC7C97A-83C0-4E25-B026-3234257730EA}
[2014/02/02 10:11:30 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{39ACFE6A-004A-4116-8803-C3CF40011E90}
[2014/02/01 11:23:03 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{E3E8E5C9-EF1C-47CD-BAE4-72CAD4C65F1D}
[2014/01/31 13:39:21 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{7DF8A4CA-B228-4900-ADF9-A55F5600C4EB}
[2014/01/30 20:57:25 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{8962DFF9-EAB7-43D6-95BB-AB9ACC6079DA}
[2014/01/30 07:25:18 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{CAF9FB03-2733-4F52-9DBE-3D096E2DB8D2}
[2014/01/29 11:25:20 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{E1B309FC-7883-4C48-B298-349DE28013DA}
[2014/01/28 20:49:44 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{E17E0F4C-00B0-4918-B335-9E76E9E68FA1}
[2014/01/28 08:45:29 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{71BDB36D-FBAE-46CF-9362-EC7ECB08AAAA}
[2014/01/27 20:05:37 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{29B44949-9C99-4E44-A33C-C58BC0DC686F}
[2014/01/27 08:05:06 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{4AF17DE5-0083-4C2F-B7A5-3B02D8B17AD9}
[2014/01/25 10:00:08 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{504D47B3-38DD-4BD1-A8EB-E4CFB138CDE2}
[2014/01/24 07:56:58 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{52AF2BA0-5502-4F78-95FC-0D420F593511}
[2014/01/23 07:53:14 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{D1E553FF-4A29-4F1D-B507-B6C3C2BB7FCF}
[2014/01/22 07:19:39 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{5E5D9CA4-4981-4457-A21F-FD7601DEFABA}
[2014/01/21 07:23:04 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{5474EA5D-FC6B-4EE1-BC5A-5160FE1674D5}
[2014/01/20 07:40:48 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{A2D49BE0-0CC0-452B-B63A-82A7F353F65D}
[2014/01/19 18:46:06 | 000,000,000 | ---D | C] -- C:\Users\Famille COLLE\AppData\Local\{F96375B6-1E25-4A2F-B110-53030F6E768F}
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2014/02/17 21:27:04 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/02/17 21:14:04 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/02/17 21:14:04 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/02/17 21:05:53 | 000,000,348 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize 4.job
[2014/02/17 21:05:52 | 000,001,078 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/02/17 21:05:38 | 000,067,584 | -H-- | M] () -- C:\Windows\bootstat.dat
[2014/02/17 21:05:34 | 3002,519,552 | -HS- | M] () -- C:\hiberfil.sys
[2014/02/17 09:02:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/02/17 08:43:00 | 000,001,082 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/02/15 17:52:18 | 000,002,594 | ---- | M] () -- C:\Users\Public\Desktop\WildTangent Games App - acer.lnk
[2014/02/15 17:46:28 | 000,000,360 | ---- | M] () -- C:\Windows\tasks\bench-S-1-5-21-4239840686-2984048436-2522506010-1000.job
[2014/02/15 10:10:00 | 000,000,360 | ---- | M] () -- C:\Windows\tasks\bench-sys.job
[2014/02/15 09:49:56 | 000,000,290 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2014/02/15 09:45:00 | 000,000,826 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/02/14 07:25:26 | 000,000,428 | ---- | M] () -- C:\Windows\tasks\AllmyappsUpdateTask.job
[2014/02/12 09:05:41 | 001,610,596 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/02/12 09:05:41 | 000,722,464 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2014/02/12 09:05:41 | 000,624,098 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/02/12 09:05:41 | 000,137,086 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2014/02/12 09:05:41 | 000,111,968 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/02/12 06:58:20 | 000,001,970 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/02/12 06:56:43 | 000,080,184 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswstm.sys
[2014/02/12 06:56:41 | 001,038,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014/02/12 06:56:40 | 000,421,704 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2014/02/12 06:56:40 | 000,334,136 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014/02/12 06:56:40 | 000,078,648 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014/02/12 06:56:38 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014/02/11 17:26:52 | 000,001,077 | ---- | M] () -- C:\Users\Famille COLLE\Desktop\Super Meat Boy.lnk
[2014/02/11 15:25:07 | 000,001,958 | ---- | M] () -- C:\Users\Famille COLLE\Documents\DAEMON Tools Lite.lnk
[2014/02/06 19:46:10 | 045,639,108 | ---- | M] () -- C:\Users\Famille COLLE\Documents\AAA speed art the best.c4d
[2014/02/06 18:44:36 | 000,037,759 | ---- | M] () -- C:\Users\Famille COLLE\Documents\AAA speed art.c4d
[2014/02/06 12:30:12 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2014/02/06 12:07:39 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2014/02/06 12:06:47 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2014/02/06 11:56:03 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2014/02/06 11:52:11 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2014/02/06 11:49:03 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2014/02/06 11:48:45 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2014/02/06 11:48:11 | 000,708,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2014/02/06 11:32:49 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2014/02/06 11:17:15 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2014/02/06 11:11:37 | 005,768,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2014/02/06 11:01:36 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2014/02/06 11:00:46 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2014/02/06 10:57:13 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2014/02/06 10:52:21 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2014/02/06 10:50:32 | 002,041,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2014/02/06 10:49:22 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2014/02/06 10:47:22 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2014/02/06 10:46:27 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2014/02/06 10:25:43 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2014/02/06 10:09:30 | 001,964,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2014/02/06 09:40:06 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2014/02/06 09:34:31 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2014/02/06 08:02:46 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014/02/06 08:02:45 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014/02/04 08:20:01 | 505,346,766 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014/02/03 17:22:08 | 001,750,528 | ---- | M] () -- C:\Users\Famille COLLE\lois_intensités_révisions.pps
[2014/01/25 13:06:44 | 000,000,210 | ---- | M] () -- C:\Windows\wininit.ini
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2014/02/15 17:52:01 | 000,002,594 | ---- | C] () -- C:\Users\Public\Desktop\WildTangent Games App - acer.lnk
[2014/02/15 09:49:52 | 000,000,360 | ---- | C] () -- C:\Windows\tasks\bench-S-1-5-21-4239840686-2984048436-2522506010-1000.job
[2014/02/12 06:56:23 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014/02/12 06:56:11 | 000,000,360 | ---- | C] () -- C:\Windows\tasks\bench-sys.job
[2014/02/11 17:25:05 | 000,001,077 | ---- | C] () -- C:\Users\Famille COLLE\Desktop\Super Meat Boy.lnk
[2014/02/11 15:25:07 | 000,001,958 | ---- | C] () -- C:\Users\Famille COLLE\Documents\DAEMON Tools Lite.lnk
[2014/02/06 19:46:08 | 045,639,108 | ---- | C] () -- C:\Users\Famille COLLE\Documents\AAA speed art the best.c4d
[2014/02/06 18:44:36 | 000,037,759 | ---- | C] () -- C:\Users\Famille COLLE\Documents\AAA speed art.c4d
[2014/02/03 17:22:07 | 001,750,528 | ---- | C] () -- C:\Users\Famille COLLE\lois_intensités_révisions.pps
[2014/01/23 13:19:45 | 505,346,766 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2014/01/18 17:09:54 | 000,197,120 | ---- | C] () -- C:\Windows\patchw32.dll
[2013/12/26 22:05:48 | 000,351,124 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Local\mysearchdial-speeddial.crx
[2013/08/23 08:54:00 | 000,000,210 | ---- | C] () -- C:\Windows\wininit.ini
[2013/08/22 18:49:36 | 000,645,632 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2013/08/22 18:49:35 | 000,240,640 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2013/08/07 06:45:37 | 000,000,008 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\DofusAppId0_2
[2013/08/06 21:23:57 | 000,000,125 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\D2Info0
[2013/08/06 21:23:57 | 000,000,008 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\DofusAppId0_1
[2013/07/30 07:43:17 | 000,000,005 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\WBPU-Q5-TTL.DAT
[2013/07/29 21:13:17 | 000,000,075 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\WB.CFG
[2013/07/05 07:39:04 | 000,000,005 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\WBPU-Q3-TTL.DAT
[2013/06/19 08:46:41 | 000,000,005 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\WBPU-Q2-TTL.DAT
[2013/06/18 07:11:05 | 000,000,005 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Roaming\WBPU-TTL.DAT
[2013/01/31 20:44:27 | 000,428,553 | ---- | C] () -- C:\Windows\Enjoy 6e Uninstaller.exe
[2012/11/21 14:36:19 | 000,000,017 | ---- | C] () -- C:\Windows\SysWow64\shortcut_ex.dat
[2012/10/27 19:37:22 | 000,000,019 | ---- | C] () -- C:\Windows\popcinfo.dat
[2012/09/23 14:41:45 | 000,003,584 | ---- | C] () -- C:\Users\Famille COLLE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/23 13:52:03 | 001,580,526 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/11 16:32:05 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/03/22 12:41:39 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2012/03/22 12:40:44 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2014/02/13 13:35:28 | 000,000,642 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$R902CEZ\minimap\n.png
[2014/02/13 13:35:29 | 000,000,268 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$R902CEZ\minimap\zantextures\n.png
[2004/09/29 12:41:58 | 000,037,464 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\AccessoryProperties.u
[2004/09/20 16:24:52 | 000,006,519 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\AnimPropProperties.u
[2004/10/25 15:57:38 | 000,041,872 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\AudioEnv.u
[2004/11/01 18:38:32 | 001,454,922 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\CTEffects.u
[2004/09/21 02:11:00 | 000,005,914 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\DeathProperties.u
[2004/09/23 21:20:34 | 000,010,048 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\FootstepProps.u
[2004/11/01 15:14:04 | 000,039,228 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\KarmaPropProperties.u
[2003/12/12 00:11:46 | 000,000,757 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\LightObjectProperties.u
[2004/10/11 07:44:20 | 000,022,449 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\MarkerProperties.u
[2004/05/17 16:15:10 | 000,001,015 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\MoverProperties.u
[2004/09/30 23:35:22 | 000,012,471 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\PhysicalMaterials.u
[2004/11/02 16:12:46 | 000,183,156 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\Properties.u
[2003/07/24 13:23:30 | 000,056,457 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\Reverb.u
[2004/10/11 14:37:00 | 000,011,163 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\StaticPropProperties.u
[2004/08/03 09:41:06 | 000,002,342 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\Properties\VoicePacks.u
[2005/01/25 19:13:12 | 000,061,136 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\Core.u
[2005/01/25 19:13:36 | 000,030,732 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\CTAudio.u
[2005/01/25 19:14:24 | 000,167,452 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\CTCharacters.u
[2005/01/25 19:13:44 | 000,383,873 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\CTGame.u
[2005/01/25 19:14:16 | 000,265,908 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\CTInventory.u
[2005/01/25 19:14:26 | 000,055,841 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\CTMarkers.u
[2005/01/25 19:13:22 | 000,281,936 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\Editor.u
[2005/01/25 19:13:22 | 002,241,853 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\Engine.u
[2005/01/25 19:13:36 | 000,181,571 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\GamePlay.u
[2005/01/25 19:13:26 | 000,045,806 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\IpDrv.u
[2005/01/25 19:14:08 | 000,439,514 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\MPGame.u
[2005/01/25 19:13:30 | 000,405,948 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\UDebugMenu.u
[2005/01/25 19:13:26 | 000,012,881 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\UnrealEd.u
[2005/01/25 19:13:26 | 000,645,460 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\UWindow.u
[2005/01/25 19:14:32 | 000,014,700 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\XGame.u
[2005/01/25 19:14:40 | 000,154,639 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\XInterface.u
[2005/01/25 19:14:48 | 000,369,338 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\XInterfaceCommon.u
[2005/01/25 19:15:02 | 000,773,162 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\XInterfaceCTMenus.u
[2005/01/25 19:15:02 | 000,110,572 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\XInterfaceGamespy.u
[2005/01/25 19:14:50 | 000,396,168 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\XInterfaceLive.u
[2005/01/25 19:14:58 | 000,109,165 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4239840686-2984048436-2522506010-1000\$REPD20K\Star Wars Republic Commando\GameData\System\XInterfaceMP.u
[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

[color=#A23BEC]< %systemroot%\system32\drivers\ *.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile

[color=#A23BEC]< %appdata%\*. >[/color]
[2013/12/26 21:22:32 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.aethericcrusade
[2013/12/25 18:20:59 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.beta-jurassiccraft
[2014/01/03 20:40:20 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.beta-pokepack
[2014/01/04 21:12:35 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.crazycraft
[2013/12/26 21:22:24 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.electriciansjourney
[2013/12/26 21:22:23 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.medieval
[2014/02/15 16:22:08 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.minecraft
[2014/02/11 11:34:15 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\.mono
[2013/02/28 20:03:24 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Adobe
[2014/02/17 21:21:35 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Allmyapps
[2013/08/06 21:24:57 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\AnkamaCertificates
[2013/08/06 21:24:03 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\app
[2013/01/24 21:27:04 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Apple Computer
[2014/01/18 17:11:35 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Atari
[2013/11/16 16:32:36 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\AVAST Software
[2013/06/17 19:13:48 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\CDXReader
[2012/07/13 17:33:27 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\CyberLink
[2014/02/11 15:26:29 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\DAEMON Tools Lite
[2013/12/26 22:06:56 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\DigitalVolcano
[2013/08/22 18:57:19 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\DivX
[2013/12/25 18:20:54 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Dofus
[2013/08/07 06:45:37 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Dofus-2
[2013/12/25 13:07:54 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Dofus2
[2013/11/22 18:00:14 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\DragonicaECB
[2012/09/22 15:55:39 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\dvdcss
[2013/01/14 18:17:20 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\eTeks
[2013/12/30 17:52:20 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Glarysoft
[2012/12/06 18:04:40 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Google
[2014/02/11 17:27:21 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Hive Cluster
[2012/07/13 17:38:42 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Identities
[2013/06/17 19:13:52 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\LavFilters
[2013/08/20 11:42:02 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\LolClient
[2012/03/22 13:47:42 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Macromedia
[2014/02/08 12:23:44 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\MAXON
[2010/11/21 08:16:41 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Media Center Programs
[2013/10/27 09:39:41 | 000,000,000 | --SD | M] -- C:\Users\Famille COLLE\AppData\Roaming\Microsoft
[2013/12/28 19:07:11 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Notepad++
[2013/09/21 21:13:46 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Orange
[2013/05/01 12:21:46 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\PDF Architect
[2013/08/21 08:42:13 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\pdfqr
[2012/12/08 12:14:02 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\PowerCinema
[2013/12/25 18:20:54 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Reg
[2013/08/06 21:24:03 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2013/08/20 07:33:23 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Riot Games
[2014/02/15 09:20:30 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Skype
[2014/01/31 07:01:45 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\SkypEmoticons
[2012/12/18 21:57:13 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\SoftGrid Client
[2013/12/28 19:02:12 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Spotify
[2012/09/23 13:53:17 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\TP
[2013/12/25 12:12:57 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\TuneUp Software
[2013/03/29 13:26:17 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Unity
[2014/02/15 09:49:15 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\uTorrent
[2014/01/29 15:10:28 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\vlc
[2013/12/25 12:00:33 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\VSRevoGroup
[2012/08/30 19:30:17 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\WildTangent
[2012/07/19 14:49:27 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\Windows Live Writer
[2013/08/16 07:13:43 | 000,000,000 | ---D | M] -- C:\Users\Famille COLLE\AppData\Roaming\WinRAR

[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2014/02/14 07:25:24 | 006,885,752 | ---- | M] (Allmyapps) -- C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\Allmyapps.exe
[2014/02/14 07:25:26 | 000,621,432 | ---- | M] (Allmyapps) -- C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\AllmyappsManager.exe
[2014/02/14 07:25:26 | 000,316,280 | ---- | M] (Allmyapps) -- C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\AllmyappsUpdater.exe
[2013/10/14 18:30:51 | 000,654,336 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\CrashSender1301.exe
[2013/04/18 12:26:47 | 002,503,448 | ---- | M] (Pokki) -- C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\install\206897.exe
[2013/05/01 08:45:40 | 017,502,040 | ---- | M] (pdfforge GbR) -- C:\Users\Famille COLLE\AppData\Roaming\Allmyapps\install\207060.exe
[2013/05/30 13:26:40 | 000,202,752 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\LavFilters\UltimateCodec.exe
[2013/12/30 12:36:39 | 000,054,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Famille COLLE\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2013/06/17 19:13:10 | 000,069,632 | R--- | M] (Flexera Software LLC) -- C:\Users\Famille COLLE\AppData\Roaming\Microsoft\Installer\{5D34141D-B287-48EE-A254-02B8368A4E56}\ARPPRODUCTICON.exe
[2013/06/17 19:13:10 | 000,049,152 | R--- | M] (Flexera Software LLC) -- C:\Users\Famille COLLE\AppData\Roaming\Microsoft\Installer\{5D34141D-B287-48EE-A254-02B8368A4E56}\UNINST_Uninstall_Q_336D8C9DB2424DE5BC518E574B25652F.exe
[2013/05/28 17:21:49 | 000,069,632 | R--- | M] (Flexera Software LLC) -- C:\Users\Famille COLLE\AppData\Roaming\Microsoft\Installer\{89505A66-35F0-4401-B3AD-D077051F8698}\ARPPRODUCTICON.exe
[2013/05/28 17:21:49 | 000,049,152 | R--- | M] (Flexera Software LLC) -- C:\Users\Famille COLLE\AppData\Roaming\Microsoft\Installer\{89505A66-35F0-4401-B3AD-D077051F8698}\UNINST_Uninstall_Q_336D8C9DB2424DE5BC518E574B25652F.exe
[2014/01/01 18:51:44 | 000,071,894 | R--- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\Microsoft\Installer\{D4C4A751-F7F3-4DCA-B825-9AC391BFFC3F}\GPUploader.exe
[2013/08/01 08:59:44 | 000,607,600 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\OrangeInstall.exe
[2013/09/21 21:13:24 | 000,162,482 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\uninstall.exe
[2012/11/16 08:57:12 | 000,175,104 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\install\Launch.exe
[2012/11/16 08:57:12 | 000,222,208 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\install\Uninstall.exe
[2013/09/11 08:28:34 | 001,530,008 | ---- | M] (Orange) -- C:\Users\Famille COLLE\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
[2013/02/26 15:20:52 | 002,176,328 | ---- | M] (soft Xpansion) -- C:\Users\Famille COLLE\AppData\Roaming\pdfqr\setup.exe
[2011/09/13 14:08:56 | 005,673,816 | ---- | M] (Microsoft Corporation) -- C:\Users\Famille COLLE\AppData\Roaming\pdfqr\vcredist_x64.exe
[2011/09/13 14:08:56 | 004,995,416 | ---- | M] (Microsoft Corporation) -- C:\Users\Famille COLLE\AppData\Roaming\pdfqr\vcredist_x86.exe
[2014/01/31 07:01:09 | 005,665,696 | ---- | M] (SkypEmoticons) -- C:\Users\Famille COLLE\AppData\Roaming\SkypEmoticons\SE.exe
[2013/12/09 17:08:10 | 001,193,161 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\SkypEmoticons\unins000.exe
[2013/12/28 18:41:36 | 005,951,488 | ---- | M] (Spotify Ltd) -- C:\Users\Famille COLLE\AppData\Roaming\Spotify\spotify.exe
[2013/12/28 18:41:36 | 000,062,464 | ---- | M] (Spotify Ltd) -- C:\Users\Famille COLLE\AppData\Roaming\Spotify\SpotifyLauncher.exe
[2013/12/28 18:41:34 | 000,610,304 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
[2013/12/28 18:41:34 | 001,168,896 | ---- | M] (Spotify Ltd) -- C:\Users\Famille COLLE\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
[2012/10/19 08:48:56 | 001,007,720 | ---- | M] (WildTangent) -- C:\Users\Famille COLLE\AppData\Roaming\WildTangent\WildTangent Games\App\DPConfig\InstallTouchpoints-wildgames.exe
[2012/10/19 08:48:52 | 000,000,179 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\WildTangent\WildTangent Games\App\DPConfig\InstallTouchpoints-wildgames.exe_filedata
[2012/11/29 16:58:12 | 000,000,174 | ---- | M] () -- C:\Users\Famille COLLE\AppData\Roaming\WildTangent\WildTangent Games\App\DPConfig\InstallTouchpoints-acer.exe_filedata
[2012/11/29 02:52:32 | 000,572,064 | ---- | M] (WildTangent, Inc.) -- C:\Users\Famille COLLE\AppData\Roaming\WildTangent\WildTangent Games\App\Update\Updater.exe

[color=#A23BEC]< %systemdrive%\*. >[/color]
[2012/07/15 10:56:30 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2013/04/12 07:30:12 | 000,000,000 | ---D | M] -- C:\274b38d22bb36533b0cc965876e5aeb9
[2013/10/10 09:18:34 | 000,000,000 | ---D | M] -- C:\75d535d7cd8d43a473c79c22be5c
[2014/02/16 20:55:54 | 000,000,000 | ---D | M] -- C:\AdwCleaner
[2012/04/11 16:20:31 | 000,000,000 | -H-D | M] -- C:\book
[2014/02/17 21:09:34 | 000,000,000 | -HSD | M] -- C:\Config.Msi
[2009/07/14 06:08:56 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2013/07/05 20:44:24 | 000,000,000 | ---D | M] -- C:\Firefox
[2013/11/23 10:01:09 | 000,000,000 | ---D | M] -- C:\Fraps
[2013/08/23 19:23:14 | 000,000,000 | ---D | M] -- C:\Games
[2013/11/22 17:40:43 | 000,000,000 | ---D | M] -- C:\gPotato.eu
[2012/10/08 17:00:13 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2012/07/13 17:37:38 | 000,000,000 | -H-D | M] -- C:\OEM
[2009/07/14 04:20:08 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2013/12/28 19:02:27 | 000,000,000 | R--D | M] -- C:\Program Files
[2014/02/16 20:54:28 | 000,000,000 | R--D | M] -- C:\Program Files (x86)
[2014/02/16 20:54:28 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2012/07/13 17:32:01 | 000,000,000 | -HSD | M] -- C:\Recovery
[2013/08/20 07:32:32 | 000,000,000 | ---D | M] -- C:\Riot Games
[2014/02/17 21:27:51 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2013/07/21 11:04:06 | 000,000,000 | ---D | M] -- C:\Temp
[2013/08/25 09:37:45 | 000,000,000 | R--D | M] -- C:\Users
[2014/01/04 20:34:43 | 000,000,000 | ---D | M] -- C:\VoidLauncher
[2014/02/12 06:56:46 | 000,000,000 | ---D | M] -- C:\Windows

[color=#A23BEC]< %systemdrive%\*.exe >[/color]

[color=#A23BEC]< %programfiles%\*. >[/color]
[2012/04/11 16:56:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Acer
[2012/03/22 12:48:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Acer Games
[2013/02/28 20:08:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe
[2013/07/05 20:36:25 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Amazon
[2012/04/11 16:27:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\AMD APP
[2013/01/24 21:22:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Apple Software Update
[2014/01/18 17:02:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Atari
[2012/04/11 16:26:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ATI Technologies
[2014/02/15 09:49:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bench
[2013/01/24 21:21:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bonjour
[2013/04/06 16:59:29 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bridge Builder
[2014/01/18 17:09:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files
[2012/04/11 16:44:04 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Cyberlink
[2014/02/15 09:50:00 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Discount Dragon
[2013/08/22 18:56:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DivX
[2013/08/06 20:41:10 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Dofus2
[2013/10/09 11:03:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Drakensang Online
[2013/08/22 18:48:15 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DSP-worx
[2013/12/26 22:06:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Duplicate Cleaner
[2013/12/28 18:03:20 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EA Games
[2013/12/28 18:08:02 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EA SPORTS
[2012/03/22 13:35:20 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EgisTec IPS
[2012/03/22 13:35:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EgisTec MyWinLocker
[2012/03/22 13:33:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EgisTec MyWinLockerSuite
[2012/03/22 13:36:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EgisTec Shredder
[2013/11/17 11:56:25 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Electronic Arts
[2013/01/31 20:43:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Enjoy 6e
[2013/12/27 19:41:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Euro Truck Simulator 2
[2013/11/16 16:10:43 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Evernote
[2014/01/01 19:00:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Gadwin Systems
[2013/12/30 17:52:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Glary Utilities 4
[2013/12/27 14:56:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Google
[2013/07/29 18:13:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Image Converter
[2014/02/09 15:58:24 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2014/02/12 12:23:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer
[2013/12/28 18:59:30 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\iTunes
[2013/07/20 21:01:32 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Java
[2013/12/27 14:43:17 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Launch Manager
[2014/01/20 16:14:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LogMeIn Hamachi
[2013/11/01 13:21:29 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LucasArts
[2012/08/27 17:45:36 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\McAfee
[2013/07/05 20:45:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft
[2013/09/11 08:16:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Application Virtualization Client
[2013/09/12 20:28:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office
[2013/10/11 06:35:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Silverlight
[2012/03/22 13:19:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2013/02/21 22:32:25 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET
[2013/04/06 16:59:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox
[2009/07/14 06:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild
[2013/09/12 20:27:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSECache
[2012/07/22 07:38:22 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSXML 4.0
[2012/03/22 13:49:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\newsXpresso
[2013/11/22 21:20:04 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Notepad++
[2012/04/11 16:38:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\NTI
[2012/07/13 17:34:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\OEM
[2013/09/21 21:11:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Orange
[2013/05/10 14:44:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Panasonic
[2012/10/03 05:53:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Pando Networks
[2013/12/28 17:51:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PDF Architect
[2013/07/30 07:54:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PDFCreator
[2013/08/20 18:01:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Pipix
[2014/02/15 09:49:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\predm
[2012/04/11 16:29:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Realtek
[2009/07/14 06:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies
[2013/12/26 21:23:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SearchNewTab
[2013/12/26 21:23:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\seuarfo, and kEep
[2013/11/28 12:48:08 | 000,000,000 | R--D | M] -- C:\Program Files (x86)\Skype
[2014/02/11 17:26:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Super Meat Boy
[2013/12/28 19:06:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Sweet Home 3D
[2012/04/11 16:30:28 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2013/11/01 19:56:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Ubisoft
[2013/12/26 21:59:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Ultima
[2009/07/14 05:57:06 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Uninstall Information
[2012/07/13 18:41:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VideoLAN
[2013/12/25 11:58:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VS Revo Group
[2013/08/22 18:58:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\WildTangent Games
[2013/07/12 10:26:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender
[2013/12/28 18:51:04 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Live
[2012/04/12 02:06:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail
[2013/12/27 01:54:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player
[2009/07/14 06:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT
[2012/04/12 02:06:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer
[2010/11/21 04:31:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices
[2012/04/12 02:06:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Sidebar
[2013/12/26 21:22:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\World of Warcraft
[2013/08/22 18:51:17 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Xvid
[2013/12/26 21:23:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\YoutubeAdblocker

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2011/07/14 06:30:29 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/07/14 06:30:29 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/07/14 06:30:29 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/07/14 06:30:29 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/07/14 06:30:29 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/07/14 06:30:29 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2010/11/21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010/11/21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010/11/21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010/11/21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2010/11/21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2010/11/21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< End of report >

Signaler le contenu de ce document