cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.12.27.179 - Nicolas Coolman (2014-12-27)
~ Lancé par JEAN-GUY-PC (2015-03-16 23:08:05)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Alert Messages
WARNING : Hijacker Proxy found, Clean with ZHPCleaner Tool =>.Nicolas Coolman

---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17691
GCIE: Google Chrome v41.0.2272.89

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_COA_SLP channel
Windows ID Activation : OK
~ Windows Partial Key : W8YMX
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.0.4.1028
Windows Defender W7 (Deactivate)

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 16 ActiveX
Adobe Reader XI

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 23 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6138 MB (67% free)
System Restore: Activé (Enable)
System drive C: has 34 GB (14%) free of 233 GB

---\\ Mode de connexion au système
~ Computer Name: JEAN-GUY-PC
~ User Name: JEAN-GUY-PC
~ All Users Names: JEAN-GUY-PC, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\JEAN-GUY-PC\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\JEAN-GUY-PC\AppData\Roaming\
~ %Desktop% : C:\Users\JEAN-GUY-PC\Bureau\
~ %Favorites% : C:\Users\JEAN-GUY-PC\Favorites\
~ %LocalAppData% : C:\Users\JEAN-GUY-PC\AppData\Local\
~ %StartMenu% : C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 34 Go of 233 Go)
D: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
E: Hard drive, Flash drive, Thumb drive (Free 85 Go of 1843 Go)
F: Hard drive, Flash drive, Thumb drive (Free 2 Go of 2 Go)
G: CD-ROM drive (Free 0 Go of 0 Go)
H: Hard drive, Flash drive, Thumb drive (Free 198 Go of 203 Go)
I: Hard drive, Flash drive, Thumb drive (Free 647 Go of 699 Go)
J: Floppy drive, Flash card reader, USB Key (Not Inserted)
K: Floppy drive, Flash card reader, USB Key (Not Inserted)
L: Floppy drive, Flash card reader, USB Key (Not Inserted)
M: Floppy drive, Flash card reader, USB Key (Not Inserted)
P: Floppy drive, Flash card reader, USB Key (Free 4 Go of 4 Go)
S: Floppy drive, Flash card reader, USB Key (Free 1 Go of 15 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyGames: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
~ Security Center: 45 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.2011-02-25 - 01:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.2009-07-13 - 20:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.36F99BD8A0F09BDBB7850A138845A014] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.2015-02-19 - 20:28:25.) -- C:\Windows\System32\wininet.dll [2358784]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.2014-07-16 - 21:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.2010-11-20 - 22:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.2014-05-30 - 01:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.2009-07-13 - 20:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2009-07-13 - 18:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2010-11-20 - 22:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.2010-11-20 - 22:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.2010-11-20 - 22:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.2009-07-13 - 18:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.2009-07-13 - 19:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.2011-04-26 - 21:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.2010-11-20 - 22:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.2014-01-23 - 21:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.2009-07-13 - 19:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2010-11-20 - 22:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.2010-11-20 - 22:25:07.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.2009-07-13 - 19:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.2014-11-10 - 20:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.2010-11-20 - 22:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/52
~ Mes musiques (My Musics) : 2/46
~ Mes Videos (My Videos) : 2/22
~ Mes Favoris (My Favorites) : 1/216
~ Mes Documents (My Documents) : 3/13798
~ Mon Bureau (My Desktop) : 1/488
~ Menu demarrer (Programs) : 1/390
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.3138EF52DBE8C3826B0EA2797985FBC7] - (.Storage Appliance Corp. - Clickfree Monitor.) -- C:\ProgramData\Clickfree\cfagent.exe [354632] [PID.2504]
[MD5.716F5828497A7739B1BCCEE4D0E8A80F] - (.ZONER software - Zoner Photo Studio Autoupdate.) -- C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe [833240] [PID.2516]
[MD5.ACD929D8754B63BBBB68B48B96F8A99E] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2428704] [PID.2524]
[MD5.4949F0A3681650273DDF6C4017C55EA5] - (.iolo technologies, LLC - iolo LiveBoost.) -- C:\Program Files (x86)\iolo\System Mechanic Professional\LiveBoost.exe [5418768] [PID.3568]
[MD5.BE7498ABCAAF981D12DEA33CC17471A6] - (.Pas de propriétaire - M-Audio Delta Tray Application.) -- C:\Windows\SysWOW64\DeltaIITray.exe [237872] [PID.6080]
[MD5.E931C01E7DD7CEC0BD26CD1B9DA967A3] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [815272] [PID.4492]
[MD5.E47AC731D42B2452D4C0BF096DF3DD6E] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8145408] [PID.6324]
[MD5.2F442BAA7A739EDFB8CBF6BFBE8F5388] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392] [PID.1004]
[MD5.32B37DD6E7D423DF3CF3B196C8005F85] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.1068]
[MD5.08EDA3F921BC0C08E433BDD0FB3C03B1] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [344864] [PID.1916]
[MD5.C47D15FC2CA269DD2EC5946953C5BF03] - (...) -- C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe [1421216] [PID.2544]
[MD5.5E591851C531FE2957F71896FF409F8B] - (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\jnsb8156.tmp [97280] [PID.3088]
[MD5.1F79342D9EB530A48742F651E570983A] - (.Microsoft Corporation - Updates Skype Click to Call.) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176] [PID.3136]
[MD5.E4938E0A376CF0B9D989EE5C0A146891] - (.Microsoft Corporation - Phone Number Recognition (PNR) module.) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520] [PID.3184]
[MD5.CDCA791AFA0483F44BBA576DBFAFD04D] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.exe [102400] [PID.3300]
[MD5.1355EBE184F9DAB1718BC587F8A7E05E] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376] [PID.3332]
[MD5.DB557F4BB4E08E340D1C8B764602C4ED] - (.Foxit Software Inc. - Foxit Cloud Safe Update Service.) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [243880] [PID.3708]
[MD5.D7F74133CFF36E7A39F492FC8CAB1515] - (...) -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 3\HDDC3Service.exe [324456] [PID.3800]
[MD5.D937FB1AB8732C1667668702DC7CFBAF] - (.iolo technologies, LLC - iolo System component.) -- C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [4700872] [PID.3836]
[MD5.93C82F365F9C0A2058A211E305A5CCFA] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128] [PID.4028]
[MD5.3D1DD27FD5C5373A4CD21FC9A3898ED1] - (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\nsoFDF.tmp [123392] [PID.4340]
[MD5.4A4E956FE92879D2DBD1379AD77DBB1E] - (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5768992] [PID.5896]
[MD5.99FC1599F89A80216E41175B8CA44D89] - (.GFI Software - GFI Software Anti Malware Service.) -- C:\Program Files (x86)\ParetoLogic\ParetoLogic Internet Security\SBAMSvc.exe [3677000] [PID.5656] =>PUP.Paretologic
[MD5.6250CC260D6D35DCDB98CEA17378D1E2] - (.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [6856336] [PID.4012]
[MD5.E1C9B4919C4516A6ACFF528DA71FF291] - (.IObit - IObit Malware Fighter Tips.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe [2059552] [PID.3912]
~ Processes Running: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
~ Firefox Browser: 1 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://qc.yahoo.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://qc.search.yahoo.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://qc.yahoo.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://qc.search.yahoo.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17631 (winblue_r7.150111-1500)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 17 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>;*.local =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Ads Removal [64Bits] - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} Clé orpheline
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} Clé orpheline
O2 - BHO: Programme d’aide de l’Assistant de connexion au compte Microsoft [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Logitech SetPoint [64Bits] - {AF949550-9094-4807-95EC-D1C317803333} . (.Logitech, Inc. - Logitech SetPoint.) -- C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (.DVDVideoSoft Ltd. - DVDVideoSoft IE Extension.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
~ BHO: 16 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: PC Scan & Repair by Reimage.lnk . (...) -- C:\Program Files (x86)\Reimage\Reimage Repair\ReimageRepair.exe (.not file.) =>Rogue.ReimageRepair
O4 - GS\Desktop [Administrateur]: PepperZip.lnk . (...) -- C:\Program Files (x86)\PepperZip\PepperZip.exe (.not file.) =>PUP.PepperZip
~ Global Startup: 2 Scanned in 00mn 01s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
O4 - HKCU\..\Run: [ClickfreeMonitor] . (.Storage Appliance Corp. - Clickfree Monitor.) -- c:\programdata\Clickfree\cfagent.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] . (.ZONER software - Zoner Photo Studio Autoupdate.) -- C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\JEAN-GUY-PC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
O4 - HKLM\..\Wow6432Node\Run: [M-Audio Taskbar Icon] C:\Windows\system32\DeltaIITray.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-102123247-1126998415-167868594-1001\..\Run: [ClickfreeMonitor] . (.Storage Appliance Corp. - Clickfree Monitor.) -- c:\programdata\Clickfree\cfagent.exe
O4 - HKUS\S-1-5-21-102123247-1126998415-167868594-1001\..\Run: [Zoner Photo Studio Autoupdate] . (.ZONER software - Zoner Photo Studio Autoupdate.) -- C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.exe
O4 - HKUS\S-1-5-21-102123247-1126998415-167868594-1001\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKUS\S-1-5-21-102123247-1126998415-167868594-1001\..\RunOnce: [Uninstall C:\Users\JEAN-GUY-PC\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
O9 - Extra button: Free YouTube Download [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\dvdvideosoft.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 9 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3637AC6F-385E-4F6B-9D8E-80CDF5D75B26}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3637AC6F-385E-4F6B-9D8E-80CDF5D75B26}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{3637AC6F-385E-4F6B-9D8E-80CDF5D75B26}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Optimizer Pro Crash Monitor (51cdb72) . (...) - c:\Program Files (x86)\Optimizer Pro 3.11\OptProCrash.dll (.not file.) =>PUP.OptimizerPro
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Ashampoo Core Tuner 2 Service (ACT2_Service) . (...) - C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: AvanquestDiskOptimizer (AvanquestDiskOptimizer) . (.Avanquest Software, (www.avanquest.com) - Fix-It Disk Optimizer - Defrag Service.) - C:\Program Files (x86)\Fix-It Disk Optimizer\AvanquestDefragSrv64.exe
O23 - Service: Field Flip (bohihozy) . (...) - C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\jnsb8156.tmp
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Defragmentation-Service (DfSdkS) . (.mst software GmbH, Germany - mst Defrag SDK Service.) - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\DfsdkS64.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.exe =>.Epson Seiko Corporation
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: FibUacService (FibUacService) . (.Storage Appliance Corp. - Clickfree C6.) - C:\ProgramData\Clickfree\FullImagingBackup\FibUac.exe
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (.Foxit Software Inc. - Foxit Cloud Safe Update Service.) - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: FullImagingService (FullImagingService) . (...) - C:\programdata\Clickfree\FullImagingBackup\FullImagingService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Ashampoo HDD Control 3 Service (HDDC3Service) . (...) - C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 3\HDDC3Service.exe
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: iolo System Service (ioloSystemService) . (.iolo technologies, LLC - iolo System component.) - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: Leawo common service. (Leawo_service) . (.Pas de propriétaire - yytool Application.) - C:\Program Files (x86)\Common Files\Appkeys\yytool64.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: PRTG Core Server Service (PRTGCoreService) . (.Paessler AG - PRTG Server.) - C:\Program Files (x86)\PRTG Network Monitor\64 bit\PRTG Server.exe
O23 - Service: ParetoLogic Internet Security (SBAMSvc) . (.GFI Software - GFI Software Anti Malware Service.) - C:\Program Files (x86)\ParetoLogic\ParetoLogic Internet Security\SBAMSvc.exe =>PUP.Paretologic
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) . (.Acronis - TrueImage Sync Agent Service.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: Alt Port (wocyfyho) . (...) - C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\nsoFDF.tmp
~ Services: 26 Scanned in 00mn 07s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (native.exe) - File not found
~ BEX: 2 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152]
[MD5.887C79A2D1C790BC2DCFDA31DF9BAD65] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.92EEBEF2AB77D512D41AA8EC0077FAE0] [APT] [Driver Booster SkipUAC (SystŠme)] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [4363072]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.49F27270322537600CC0D47BC696F283] [APT] [iolo Process Governor] (.iolo technologies, LLC.) -- C:\Program Files (x86)\iolo\System Mechanic Professional\iologovernor64.exe [712128]
[MD5.00000000000000000000000000000000] [APT] [iolo System Checkup] (...) -- C:\ProgramData\iolo\scustask.lnk \toaster (.not file.) [0]
[MD5.6DEF3394D1EE006FAC1B4ABADC1D4793] [APT] [Java Platform SE Auto Updater] (.Oracle Corporation.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800]
[MD5.00000000000000000000000000000000] [APT] [KKSUP] (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\KKSUP.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [LaunchSignup] (...) -- C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe (.not file.) [0] =>PUP.MyPCBackup
[MD5.D0375D37F5450BF0C9CF78135CCE14EB] [APT] [One-Click Optimizer WO11] (.Ashampoo Development GmbH & Co. KG.) -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\WO11.exe [8703856]
[MD5.00000000000000000000000000000000] [APT] [Optimum_Daily] (...) -- C:\Program Files (x86)\Optimum PC Boost\OptimumPCBoost.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Optimum_LogOn] (...) -- C:\Program Files (x86)\Optimum PC Boost\OptimumPCBoost.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [PCShower2014] (...) -- C:\Program Files (x86)\PC Shower 2014\StartupShield.exe (.not file.) [0]
[MD5.5AEABFE56A5BAA8295001B00F45F30EC] [APT] [Process Lasso Core Engine Only] (.Bitsum LLC.) -- C:\Program Files\Process Lasso\processgovernor.exe [713512]
[MD5.53564AA1DF6C96C57517ACAFFC7B6156] [APT] [Process Lasso Management Console (GUI)] (.Bitsum LLC.) -- C:\Program Files\Process Lasso\processlasso.exe [1145640]
[MD5.00000000000000000000000000000000] [APT] [ProPCCleaner_Popup] (...) -- C:\Program Files (x86)\Pro PC Cleaner\Splash.exe (.not file.) [0] =>USP.PCCleaner
[MD5.00000000000000000000000000000000] [APT] [ProPCCleaner_Start] (...) -- C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe (.not file.) [0] =>USP.PCCleaner
[MD5.00000000000000000000000000000000] [APT] [Secure Fast PC Autorun] (...) -- C:\Program Files (x86)\Developerts LLC\Secure Fast PC\Secure Fast PC.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (...) -- C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe (.not file.) [0]
[MD5.A99EE70CE642633962F0EA91475D44AD] [APT] [{0AE0C9B3-63FE-43A4-AC58-8A2F0F54333A}] (.Ashampoo.) -- C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 14\burningstudio14.exe [4317040]
[MD5.00000000000000000000000000000000] [APT] [{0BBC7F30-95D2-41CB-A59D-9F4532D15FA9}] (...) -- Q:\Dossier pour Driver Booster PRO -1 Year 3 PCs\driverbooster_slim_setup_December2013.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{10C543FE-CB22-423C-9B9C-A17DF132C4BC}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\ashampoo_winoptimizer_2015_18603 (2).exe (.not file.) [0]
[MD5.3F75ADCDE5C3BAB315088DEEB5290BC7] [APT] [{1A08A905-D4FA-4025-BB44-086245D29557}] (.LogiScho.) -- E:\Kingston 8G\Anniversaire\Anniversaires.exe [2307395]
[MD5.00000000000000000000000000000000] [APT] [{3DAE3BBA-A187-4802-B49B-6440EB3C7CD6}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\FlowHeater\FlowHeater\BIN\FlowHeater.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{4046CC6D-8FE2-4FAD-AADE-ED2F269EE95B}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\ConnectivityFixerPro12\Setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{4689C479-16A0-4952-A3C0-024F9DB63753}] (...) -- C:\Program Files (x86)\Any DVD Cloner Express\dvdcloner_express.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{4F02B9D0-4839-45EF-A1CB-0E99241131E7}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\Nero_CoverDesigner_setup-12.0.02700_free (1)\Nero_CoverDesigner_setup-12.0.02700_free (1).exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{5277E2DE-F006-4560-A476-5F8F80AD34C5}] (...) -- C:\Program Files (x86)\MunSoft\MunSoft Data Recovery Suite\Easy Access Recovery\EasyAccessRecovery.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{5D64062A-3A7E-422E-B1FA-D1F5BA767F62}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\ashampoo_winoptimizersuite1326_sd (1).exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{70258D5D-DE8B-4831-BE8F-3F0BE99E5AB4}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\scanitto-pro.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{81C88D21-EDBA-44F5-9E63-43EF5E034A38}] (...) -- Q:\Nero8\Nero CoverDesigner\CoverDes.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{8294E890-C898-4258-9347-6AB55BF61300}] (...) -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer Suite\Uninstall\UNWISE.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{8757630A-FDC6-4195-847A-DAEE1CD402BA}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\AcronisTrueImage2015_web_fr-FR (1).exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{9C521428-E743-421F-85F9-E62CA5B78766}] (...) -- E:\Mes t‚l‚chargements avec Prog. exe et Cl‚s 2014\Mes dix logiciels Avanquest\PerfectImage11-FR.exe (.not file.) [0]
[MD5.74B81A458DF4098CE6FA8FF15EBD42B3] [APT] [{C86C1664-95CA-47E0-BF9C-7E76B44BE897}] (...) -- C:\Program Files (x86)\IncrediMail\Bin\ImSetup.exe [121256]
[MD5.B3FD01873BD5FD163AB465779271C58F] [APT] [{CF6E7367-D30D-47DC-83D4-17A78E4BF488}] (.InstallShield Software Corporation.) -- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe [614532]
[MD5.00000000000000000000000000000000] [APT] [{D71CF191-999E-4389-B91D-32CC9F306973}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\ashampoo_music_studio_4_4.1.2_17965.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{DE013D24-3D0E-43D0-A7AC-8235D0CA1A64}] (...) -- C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer Suite\Uninstall\UNWISE.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{E04E5589-00AC-4FB8-A49A-2D5E0710F9CA}] (...) -- C:\Program Files (x86)\WonderFox Soft\WonderFox DVD Video Converter\WonderFox DVD Video Converter.exe (.not file.) [0]
[MD5.D5CDEA452982FC61E21EE978AAB134DD] [APT] [{E3F2DCC9-4A5D-4E26-831E-BC2B8AB6DC45}] (.IncrediMail, Ltd..) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe [367016]
[MD5.00000000000000000000000000000000] [APT] [{F1E48C38-324E-4AD3-AAAF-F3B9636F2A23}] (...) -- Q:\Nero8\Nero CoverDesigner\CoverDes.exe (.not file.) [0]
[MD5.BC187401C35CF67F834278E3148B4F67] [APT] [{FAD35B78-E56D-4E2A-8A6D-1AC5573C1B1A}] (.watermark-software.com.) -- C:\Program Files (x86)\AoaoPhoto Digital Studio\Video to Picture\VideotoPicture.exe [2734792]
[MD5.00000000000000000000000000000000] [APT] [{FBBF9A0F-9D5C-48AB-8A8B-D6B6C7FAAE4F}] (...) -- C:\Users\JEAN-GUY-PC\Downloads\SWF2Video.exe (.not file.) [0]
[MD5.DBD1B083D5A40046B3F1C3EC24126B73] [APT] [CheckDriveBackgroundGuard] (.Abelssoft.) -- C:\Program Files (x86)\CheckDrive\CheckDriveBackgroundGuard.exe [522528]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
[MD5.CBDA873D80B478929C432BBE4029AD88] [APT] [Nero Info] (.Nero AG.) -- C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [3673424]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: - (..) -- C:\Windows\Tasks\Driver Booster Scan.job [294]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Driver Booster Scan [294]
O39 - APT: - (..) -- C:\Windows\Tasks\Driver Booster SkipUAC (JEAN-GUY-PC).job [260]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Driver Booster SkipUAC (JEAN-GUY-PC) [260]
O39 - APT: - (..) -- C:\Windows\Tasks\Driver Booster Update.job [296]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Driver Booster Update [296]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
O39 - APT: KKSUP - (...) -- C:\Windows\Tasks\KKSUP.job [1360]
O39 - APT: KKSUP - (...) -- C:\Windows\System32\Tasks\KKSUP [1360]
O39 - APT: One-Click Optimizer WO11 - (.Ashampoo Development GmbH & Co. KG.) -- C:\Windows\Tasks\One-Click Optimizer WO11.job [422]
O39 - APT: One-Click Optimizer WO11 - (.Ashampoo Development GmbH & Co. KG.) -- C:\Windows\System32\Tasks\One-Click Optimizer WO11 [422]
O39 - APT: - (..) -- C:\Windows\Tasks\ParetoLogic Internet Security Startup.job [698] =>PUP.Paretologic
O39 - APT: - (..) -- C:\Windows\System32\Tasks\ParetoLogic Internet Security Startup [698] =>PUP.Paretologic
O39 - APT: - (..) -- C:\Windows\Tasks\ParetoLogic Registration3.job [432] =>PUP.Paretologic
O39 - APT: - (..) -- C:\Windows\System32\Tasks\ParetoLogic Registration3 [432] =>PUP.Paretologic
O39 - APT: - (..) -- C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job [506] =>PUP.Paretologic
O39 - APT: - (..) -- C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task [506] =>PUP.Paretologic
O39 - APT: APT: - (..) -- C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job [506] - (..) -- C:\Windows\Tasks\ParetoLogic Update Version3.job [502] =>PUP.Paretologic
O39 - APT: APT: - (..) -- C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task [506] - (..) -- C:\Windows\System32\Tasks\ParetoLogic Update Version3 [502] =>PUP.Paretologic
O39 - APT: - (..) -- C:\Windows\Tasks\PC Health Advisor Defrag.job [412] =>Rogue.PCHealthAdvisor
O39 - APT: - (..) -- C:\Windows\System32\Tasks\PC Health Advisor Defrag [412] =>Rogue.PCHealthAdvisor
O39 - APT: APT: - (..) -- C:\Windows\Tasks\PC Health Advisor Defrag.job [412] - (..) -- C:\Windows\Tasks\PC Health Advisor.job [394] =>Rogue.PCHealthAdvisor
O39 - APT: APT: - (..) -- C:\Windows\System32\Tasks\PC Health Advisor Defrag [412] - (..) -- C:\Windows\System32\Tasks\PC Health Advisor [394] =>Rogue.PCHealthAdvisor
O39 - APT: - (..) -- C:\Windows\Tasks\ReimageUpdater.job [344] =>Rogue.ReimageRepair
O39 - APT: - (..) -- C:\Windows\Tasks\SparkTrust PC Cleaner Plus_sch_20F04C65-C74E-11E4-BB0E-001CC0650B7C.job [657] =>Rogue.PCCleanerPlus
O39 - APT: - (..) -- C:\Windows\Tasks\{3E4E96A3-087A-48E6-8BB1-5BF0784C41DE}.job [386]
O39 - APT: - (..) -- C:\Windows\Tasks\{64477790-3694-4EEA-AC4A-CFE062857A99}.job [386]
O39 - APT: - (..) -- C:\Windows\Tasks\{6CC9F25A-AB56-49E9-A979-4F569B43C48B}.job [386]
O39 - APT: - (..) -- C:\Windows\Tasks\{A19005F1-1CB1-4898-B4E3-C81012CA2462}.job [386]
~ Scheduled Task: 138 Scanned in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (ElbyCDIO) . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) - C:\Windows\System32\Drivers\ElbyCDIO.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RawDisk3) . (.EldoS Corporation - RawDisk Driver. Allows write access to file.) - C:\Windows\system32\drivers\rawdsk3.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SbFw) . (.GFI Software - GFI Firewall SDK TDI Firewall Driver.) - C:\Windows\System32\drivers\SbFw.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
O41 - Driver: (ZAM) . (.Zemana Ltd. - Zemana AntiMalware.) - C:\Windows\system32\drivers\zam64.sys
~ Drivers: 75 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: ACPsoft PDF Converter - (.ACPsoft.) [HKLM][64Bits] -- ACPsoft PDF Converter
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {F2A7CE36-57BF-5C86-952D-90DBF3746D82}
O42 - Logiciel: AOMEI Dynamic Disk Manager Pro Edition - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- AOMEI Dynamic Disk Manager Pro Edition_is1
O42 - Logiciel: AOMEI OneKey Recovery 1.1 - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {A83692F5-3E9B-4E95-9E7E-B5DF553690FD}_is1
O42 - Logiciel: AOMEI Partition Assistant Pro Edition 5.5 - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {02F850ED-FD0E-4ED1-BE0B-5498165BF300}_is1
O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM][64Bits] -- ASIO4ALL
O42 - Logiciel: AVS Video Converter 9.1 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1
O42 - Logiciel: AVS Video Editor 7.0 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Editor_is1
O42 - Logiciel: Acronis True Image 2015 - (.Acronis.) [HKLM][64Bits] -- {C3BEF360-4582-41EC-BEDA-59FA10613C39}
O42 - Logiciel: Acronis True Image 2015 - (.Acronis.) [HKLM][64Bits] -- {C3BEF360-4582-41EC-BEDA-59FA10613C39}Visible
O42 - Logiciel: Adobe Flash Player 16 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader XI (11.0.10) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130}
O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {07C5D2FF-2AA8-46D1-B9E8-BACCD34C8E01}
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 8_is1
O42 - Logiciel: AirMagnet Spectrum XT - (.AirMagnet Inc..) [HKLM][64Bits] -- {B722963A-096A-47CD-B913-B62E492D03EF}
O42 - Logiciel: Aiseesoft 3D Convertisseur 6.3.66 - (...) [HKLM][64Bits] -- {DBAFFECB-8062-4f19-9EFD-B7B53E922806}_is1
O42 - Logiciel: Aiseesoft Convertisseur Vidéo Total 7.1.52 - (.Aiseesoft Studio.) [HKLM][64Bits] -- {E09CEBAA-4435-4404-8D82-4C029F6391E4}_is1
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- AmUStor
O42 - Logiciel: Alternate Pic View 1.710 - (.Alternate Tools.) [HKLM][64Bits] -- Alternate Pic View_is1
O42 - Logiciel: Animated Screensaver Maker - (.DesktopPaints.com.) [HKLM][64Bits] -- Animated Screensaver Maker
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {447CDCE5-F555-429B-BFA6-642C3C6D684F}
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {0DF7096B-715A-4233-8633-C7A16ED6D616}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: ArcSoft PhotoImpression 5 - (.ArcSoft.) [HKLM][64Bits] -- {D433ABC3-0CD8-4BB0-B6A9-84501B4B47B7}
O42 - Logiciel: Ashampoo Burning Studio 14 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1
O42 - Logiciel: Ashampoo Core Tuner 2 v.2.0.1 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {4209F371-2541-6C11-55DB-6103A83FCB9B}_is1
O42 - Logiciel: Ashampoo GetBack Photo v.1.0.1 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {C92AB6F1-2490-D7C3-A45D-23F3C33ECFA5}_is1
O42 - Logiciel: Ashampoo HDD Control 3 v.3.00.50 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {4209F371-7505-A040-718A-C57DA1CB7247}_is1
O42 - Logiciel: Ashampoo Internet Accelerator 3 v.3.30 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {4209F371-C803-200D-89A4-5479B6569259}_is1
O42 - Logiciel: Ashampoo Music Studio 4 v.4.1.2 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-7650-0EB0-B6C7-DDBA2932B7B4}_is1
O42 - Logiciel: Ashampoo Music Studio 5 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-5BBE-576E-893B-711D4D8298ED}_is1
O42 - Logiciel: Ashampoo Photo Commander 12 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {C92AB6F1-691B-9629-9ECD-7291A9DF25A8}_is1
O42 - Logiciel: Ashampoo Photo Optimizer 5 v.5.7.0 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-9E02-D93E-656C-D2D81585F29B}_is1
O42 - Logiciel: Ashampoo Photo Optimizer 6 v.6.0.6 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-546E-E89A-9F44-0BB2D57DBE96}_is1
O42 - Logiciel: Ashampoo Slideshow Studio HD 3 v.3.0.6 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-0CE8-6ABD-1CF4-0DAF2CCF492A}_is1
O42 - Logiciel: Ashampoo Snap 7 v.7.0.10 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {C92AB6F1-9C93-0F51-ED50-15ABBCBDD142}_is1
O42 - Logiciel: Ashampoo UnInstaller 5 v.5.0.4 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {4209F371-ABC8-B772-DB8E-93F4772F58FA}_is1
O42 - Logiciel: Ashampoo WinOptimizer 11 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {4209F371-8D72-8119-66FA-897D2D41E27F}_is1
O42 - Logiciel: Avanquest message - (.Avanquest Software.) [HKLM][64Bits] -- {20573C69-4A68-4BEF-A23D-365CB66924CD}
O42 - Logiciel: Avanquest update - (.Avanquest Software.) [HKLM][64Bits] -- {76E41F43-59D2-4F30-BA42-9A762EE1E8DE}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CD Indexer - (...) [HKLM][64Bits] -- ST6UNST #2
O42 - Logiciel: CDRWIN10 - (.Engelmann Media GmbH.) [HKLM][64Bits] -- {083A3806-30F4-49A8-BEF6-5A1E3907D88F}
O42 - Logiciel: CDRWIN10 Free - (.Engelmann Media GmbH.) [HKLM][64Bits] -- {e4907608-f949-4e93-8910-021615fd09ef}
O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM][64Bits] -- {15634701-BACE-4449-8B25-1567DA8C9FD3}
O42 - Logiciel: CheckDrive - (.Abelssoft.) [HKLM][64Bits] -- {B83513EC-2E4D-4621-816D-4CCF397BE702}_is1
O42 - Logiciel: Clickfree Easy Image - (.Storage Appliance Corp..) [HKLM][64Bits] -- Clickfree Easy Image
O42 - Logiciel: CloneBD - (.Elaborate Bytes.) [HKLM][64Bits] -- CloneBD
O42 - Logiciel: Creative WaveStudio 7 - (.Creative Technology Limited.) [HKLM][64Bits] -- WaveStudio 7
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM][64Bits] -- Defraggler
O42 - Logiciel: DigiBand version 1.8 - (.AthTek Software.) [HKLM][64Bits] -- {BA3A4E83-7935-4939-A6FF-435423A416A9}_is1
O42 - Logiciel: Driver Booster 2.2 - (.IObit.) [HKLM][64Bits] -- Driver Booster_is1
O42 - Logiciel: Driver Genius Professional Edition - (.Driver-Soft Inc..) [HKLM][64Bits] -- Driver Genius Professional Edition_is1
O42 - Logiciel: Driver Magician 4.5 - (.GoldSolution Software, Inc..) [HKLM][64Bits] -- Driver Magician_is1
O42 - Logiciel: DxO Optics Pro 8 - (.DxO Labs.) [HKLM][64Bits] -- {2FB06E89-6F7D-4D42-8726-F302480C8EAB}
O42 - Logiciel: EPSON Print CD - (...) [HKLM][64Bits] -- {FF477885-5EA8-40D0-ADF3-D4C1B86FAEA4}
O42 - Logiciel: EPSON Printer Software - (...) [HKLM][64Bits] -- EPSON Printer and Utilities
O42 - Logiciel: EPSON Stylus Photo R260 User's Guide - (...) [HKLM][64Bits] -- Silent Package Run-Time Sample
O42 - Logiciel: Easy Drive Data Recovery - (.MunSoft.) [HKLM][64Bits] -- Easy Drive Data Recovery
O42 - Logiciel: Easy Macro Recorder 4.9 - (.GoldSolution Software, Inc..) [HKLM][64Bits] -- Easy Macro Recorder_is1
O42 - Logiciel: Enolsoft Video Converter 3.6.0.0 - (.Enolsoft Co., Ltd..) [HKLM][64Bits] -- {B0F97B00-8C18-4179-A50F-5C3853FFFD38}}_is1
O42 - Logiciel: Expert PDF 7 Reader - (.Avanquest software.) [HKLM][64Bits] -- {FC279721-37A6-4777-AFD8-7A56681EBA14}
O42 - Logiciel: Express Uninstaller v2.0 - (.Avanquest Software.) [HKLM][64Bits] -- Express Uninstaller_is1
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}
O42 - Logiciel: Fix-It Disk Optimizer - (.Avanquest Software.) [HKLM][64Bits] -- {C68459F7-64E0-4f3a-900A-128168213D68}_is1
O42 - Logiciel: Fix-It Registry Optimizer v2.0 - (.Avanquest Software.) [HKLM][64Bits] -- Fix-It Registry Optimizer_is1
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM][64Bits] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1
O42 - Logiciel: Free Spider Solitaire 2015 v5.1 - (.TreeCardGames.) [HKLM][64Bits] -- Free Spider_is1
O42 - Logiciel: Free YouTube to MP3 Converter version 3.12.54.128 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube to MP3 Converter_is1
O42 - Logiciel: FreeFileSync 6.13 - (.www.FreeFileSync.org.) [HKLM][64Bits] -- FreeFileSync_is1
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth Pro - (.Google.) [HKLM][64Bits] -- {44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}
O42 - Logiciel: HD Video Converter Factory Pro - (.WonderFox Soft, Inc. All Rights Reserved..) [HKCU][64Bits] -- HDVideoConverterFactoryPro =>.Xilisoft
O42 - Logiciel: Hetman Partition Recovery 2.2 - (...) [HKLM][64Bits] -- Hetman Partition Recovery
O42 - Logiciel: HippoEDIT 1.60.10 - (.HippoEDIT.com.) [HKLM][64Bits] -- HippoEDIT
O42 - Logiciel: IObit Malware Fighter 3 - (.IObit.) [HKLM][64Bits] -- IObit Malware Fighter_is1
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall
O42 - Logiciel: ImgTransformer (remove only) - (...) [HKLM][64Bits] -- ImgTransformer
O42 - Logiciel: InPixio Photo - (.Avanquest Software.) [HKLM][64Bits] -- {5F0C0CD8-77B1-4C3E-9F01-5AF10D85DBB4}
O42 - Logiciel: InPixio Photo Clip - (.Avanquest.) [HKLM][64Bits] -- {2FFE93F0-BB72-4E52-8761-354D1AAA9387}
O42 - Logiciel: InPixio Photo Clip Professional - (.Micro Application.) [HKLM][64Bits] -- {61CDE0F2-8BEC-475F-90E8-D700C2FAE1EF}
O42 - Logiciel: InPixio Photo Maximizer - (.Avanquest Software.) [HKLM][64Bits] -- {33DB8C17-40C9-4629-B6D4-05A4C7E8AA86}
O42 - Logiciel: IncrediBackup - (.Nom de votre société.) [HKLM][64Bits] -- {D44222FB-31A2-4D2B-B222-D0C5599F28D0}
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: Inpaint 6.0 - (.Teorex.) [HKLM][64Bits] -- {2AEDC172-479F-47AE-8A48-A0524D4AED5B}_is1
O42 - Logiciel: InstaCards - (.Avanquest Software.) [HKLM][64Bits] -- {58259C24-7B5E-4977-93B0-E9EEA1B884CE}
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {98841A35-1CBE-4EA3-BFF5-F3E3AD894666}
O42 - Logiciel: Intel(R) Network Connections 19.5.303.0 - (.Intel.) [HKLM][64Bits] -- PROSetDX
O42 - Logiciel: Intel(R) Network Connections 19.5.303.0 - (.Intel.) [HKLM][64Bits] -- {D8A3D01E-BCBB-491B-856F-61E3B8563E32}
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: KC Softwares PhotoToFilm - (.KC Softwares.) [HKLM][64Bits] -- KC Softwares PhotoToFilm_is1
O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM][64Bits] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB}
O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM][64Bits] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}
O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM][64Bits] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9}
O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM][64Bits] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6}
O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM][64Bits] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA}
O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM][64Bits] -- {08610298-29AE-445B-B37D-EFBE05802967}
O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM][64Bits] -- {174A3B31-4C43-43DD-866F-73C9DB887B48}
O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM][64Bits] -- {9DAEA76B-E50F-4272-A595-0124E826553D}
O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM][64Bits] -- {8937D274-C281-42E4-8CDB-A0B2DF979189}
O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM][64Bits] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}
O42 - Logiciel: Leawo Blu-ray Creator version 7.1.0.8 - (.Leawo Software.) [HKLM][64Bits] -- {F73E2159-E3DA-4B2F-BFE7-63D57141F5D0}_is1
O42 - Logiciel: Leawo Blu-ray Player version 1.8.1.8 - (.leawo Software.) [HKLM][64Bits] -- {CF7F52BF-DEE0-44CD-A7E1-AADD5CCECCDD}_is1
O42 - Logiciel: Leawo Blu-ray Ripper version 7.1.0.7 - (.Leawo Software.) [HKLM][64Bits] -- {E4DE90A2-418C-4690-963D-BB2EC5E87BB1}_is1
O42 - Logiciel: Leawo Blu-ray to MKV Converter version 2.1.0.0 - (.Leawo Software Co., Ltd..) [HKLM][64Bits] -- {60A931F1-4BB8-4272-B7B4-4750627E6829}_is1
O42 - Logiciel: Live 8.2.1 - (...) [HKLM][64Bits] -- Live 8.2.1
O42 - Logiciel: Live Aquarium HD - (.Ladislav Vojnic.) [HKLM][64Bits] -- Live Aquarium HD_is1
O42 - Logiciel: Logiciel pour périphérique à chipset Intel® - (.Intel(R) Corporation.) [HKLM][64Bits] -- {d370215a-d003-43ae-a3b6-1028af64d5a1}
O42 - Logiciel: Logitech SetPoint 6.65 - (.Logitech.) [HKLM][64Bits] -- sp6
O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM][64Bits] -- {D40EB009-0499-459c-A8AF-C9C110766215} =>.Logitech Inc
O42 - Logiciel: M-Audio Delta 6.0.8 (x64) - (.M-Audio.) [HKLM][64Bits] -- {16B2C43D-6C49-4A56-957D-E40CEAA2AC06}
O42 - Logiciel: MAGIX Music Maker 17 (Chansons démos) - (.MAGIX AG.) [HKLM][64Bits] -- {20AE2890-0B3E-4B1C-BC6C-AE79AD448C84}
O42 - Logiciel: MAGIX Music Maker 17 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_mm17
O42 - Logiciel: MAGIX Music Maker 17 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- {C1E27585-2AD0-4D5A-8693-0D2FFA276EF3}
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {3AC7AE25-A42F-440F-B0E7-96BAA3E7A520}
O42 - Logiciel: MAGIX Speed 2 (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {B2C4BE88-560B-404A-A9CB-CDE6AFA15CE1}
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {7C881F50-A689-490B-9305-18D01A6B0BBD}
O42 - Logiciel: MP3 Toolkit 1.0.5 - (.MP3Toolkit.com.) [HKLM][64Bits] -- MP3 Toolkit_is1
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}
O42 - Logiciel: Microsoft Fix it Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {B7588D45-AFDC-4C93-9E2E-A100F3554B64}
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: MusicExtractor - (.Abelssoft.) [HKLM][64Bits] -- MusicExtractor_is1
O42 - Logiciel: NVIDIA GeForce Experience 2.2.2 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B455E95A-B804-439F-B533-336B1635AE97}
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 340.50 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {79BB6415-00A7-413A-B278-A7EAE69F1753}
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {A822DC32-7625-411B-ABAC-BAE7CE0D816D}
O42 - Logiciel: Nero CoverDesigner Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {9C7C04AB-4B97-49DB-88A0-454795349008}
O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {B791E0AB-87A9-41A4-8D98-D13C2E37D928}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: PDF Compressor 3.0 - (.PDF Compressor.) [HKLM][64Bits] -- PDFCompressor_is1
O42 - Logiciel: PDF Impress 2014 - (.BinaryNow, Inc..) [HKLM][64Bits] -- {13348F93-58D4-4556-8F96-7421D51D09A6}
O42 - Logiciel: PRTG Network Monitor - (.Paessler AG.) [HKLM][64Bits] -- {5EC294B8-98F8-4C20-BE73-F11A04295CA5}_is1
O42 - Logiciel: ParetoLogic Internet Security - (.ParetoLogic, Inc..) [HKLM][64Bits] -- {ECDE73DC-27C4-4007-8BDB-D4A06D487233} =>PUP.Paretologic
O42 - Logiciel: ParetoLogic PC Health Advisor - (.ParetoLogic, Inc..) [HKLM][64Bits] -- {3CBF3EBB-235D-4c29-A68B-2BB1F428586E} =>Rogue.PCHealthAdvisor
O42 - Logiciel: Perfect Effects 9 - (.onOne Software.) [HKLM][64Bits] -- Perfect Effects 9 PE
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail.) [HKLM][64Bits] -- {788A0222-5690-4212-AA9C-C48FD0E1C9AE}
O42 - Logiciel: PhotoSpills4 - (...) [HKLM][64Bits] -- ST6UNST #1
O42 - Logiciel: PhotoTrans 1.8.0 - (.iMobie Inc..) [HKLM][64Bits] -- {E980ED1F-AOF8-PF7E-B174-59POS2BOIUVB}}_is1
O42 - Logiciel: Photomatix Essentials version 4.0 - (.HDRsoft Ltd.) [HKLM][64Bits] -- PhotomatixEssentials4x64_is1
O42 - Logiciel: Photomizer Retro - (.Engelmann Media GmbH.) [HKLM][64Bits] -- {41B5224D-7853-4EA5-0001-C8949A33B608}
O42 - Logiciel: Picture Collage Maker 4.1.2 - (.PearlMountain Technology Co., Ltd.) [HKLM][64Bits] -- {D53599B0-AA76-4CC6-B9EF-CC2F27B56F24}_is1
O42 - Logiciel: Plagiarism Checker X - (.Plagiarism Checker X, LLC.) [HKLM][64Bits] -- Plagiarism Checker X 5.0.0
O42 - Logiciel: Plagiarism Checker X - (.Plagiarism Checker X, LLC.) [HKLM][64Bits] -- {F8F82A57-511A-4170-B86F-7D931E0120DC}
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: Prism Video File Converter - (.NCH Software.) [HKLM][64Bits] -- Prism
O42 - Logiciel: Process Lasso - (.Bitsum.) [HKLM][64Bits] -- ProcessLasso
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva
O42 - Logiciel: Reimage Repair - (.Reimage.) [HKLM][64Bits] -- Reimage Repair =>Rogue.ReimageRepair
O42 - Logiciel: SFX Maker 2.5 SR-2d - (.David Cornish.) [HKLM][64Bits] -- SFX Maker_is1
O42 - Logiciel: SIW Pro Edition (GOTD) - (.Topala Software Solutions.) [HKLM][64Bits] -- {AB67580-257C-45FF-B8F4-C8C30682091A}_is1
O42 - Logiciel: Samplitude 11.5 Producer Download Version - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_Samplitude_115_Producer
O42 - Logiciel: Samplitude 11.5 Producer Download Version - (.MAGIX AG.) [HKLM][64Bits] -- {71A53652-B627-41A4-A8A6-55AA3A92EF47}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype™ 6.22 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: SlimPublisher - (.SlimPublisher Team.) [HKLM][64Bits] -- {E5EFA4D1-6283-4F10-997B-A45ECC0C6FDC}
O42 - Logiciel: Smart Defrag 3 - (.IObit.) [HKLM][64Bits] -- Smart Defrag 3 Pro_is1
O42 - Logiciel: SoftMaker Office 2010 (Trial) - (.SoftMaker Software GmbH.) [HKLM][64Bits] -- {8EBB8452-274B-465D-8324-00B0832FBB00}
O42 - Logiciel: SoftSkin Photo Makeup 2.0 - (.SoftOrbits.) [HKLM][64Bits] -- SoftSkin Photo Makeup_is1
O42 - Logiciel: Software Update Wizard (Redist) 4.5 - (.PowerProgrammer.) [HKLM][64Bits] -- Software Update Wizard (Redist)
O42 - Logiciel: SolveigMM Video Editing SDK - (.Solveig Multimedia.) [HKLM][64Bits] -- SolveigMM Video Editing SDK 3.0.1401.11
O42 - Logiciel: Stellar Phoenix Access Database Repair - (.Stellar Information Technology Pvt Ltd..) [HKLM][64Bits] -- Stellar Phoenix Access Database Repair_is1
O42 - Logiciel: SuperEasy Video Converter 2 v.2.1.2296 - (.SuperEasy Software GmbH & Co. KG.) [HKLM][64Bits] -- {039BC111-5D42-BD22-5D57-C7073E40209A}_is1
O42 - Logiciel: System Checkup 3.5 - (.iolo technologies, LLC.) [HKLM][64Bits] -- {4AC7B4E7-59B7-4E48-A60D-263C486FC33A}_is1
O42 - Logiciel: System Mechanic 14 Professional - (...) [HKLM][64Bits] -- {1E5E7177-5156-4541-B8D5-B0C7E9064329}
O42 - Logiciel: TEBookConverter version 1.8 - (.ozok.) [HKLM][64Bits] -- {D4DB8BAA-EB6B-443D-AD5F-BE80D90ED6F4}_is1
O42 - Logiciel: Texmaker - (...) [HKLM][64Bits] -- Texmaker
O42 - Logiciel: Text-To-Speech-Runtime - (.Magix Development GmbH.) [HKLM][64Bits] -- {7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
O42 - Logiciel: Tv-Plug-In - (.Orzilia Ltd..) [HKLM][64Bits] -- Tv-Plug-In
O42 - Logiciel: UltimateZip 7.0 - (.SWE von Schleusen.) [HKLM][64Bits] -- UltimateZip_is1
O42 - Logiciel: Unlimited Filters 1.2.1 - (.Picture Instruments.) [HKLM][64Bits] -- {8B775809-D58C-4351-ACBF-4ED5231514FA}_is1
O42 - Logiciel: Video Converter Genius - (.Adoreshare, Inc..) [HKLM][64Bits] -- Video Converter Genius
O42 - Logiciel: Video to Picture - (.Watermark Software. All Rights Reserved..) [HKCU][64Bits] -- VideoToPicture
O42 - Logiciel: Video to Picture 5.1 - (.AoaoPhoto Digital Studio..) [HKLM][64Bits] -- Video to Picture
O42 - Logiciel: Video to Picture version 5.0 - (.watermark-software.com.) [HKLM][64Bits] -- {3CE42A9D-F659-4FF0-87EB-A14699AB2D1C}_is1
O42 - Logiciel: VideoMizer - (.Micro Application.) [HKLM][64Bits] -- {EFE80A98-9565-49A5-0001-353B3268AA41}
O42 - Logiciel: VideoPad - Logiciel de montage vidéo - (.NCH Software.) [HKLM][64Bits] -- VideoPad
O42 - Logiciel: Vipre - (.Vipre.) [HKLM][64Bits] -- {7958A795-4364-4D57-B2C3-CFEEC8991323}
O42 - Logiciel: Virtual Audio Streaming 4.0 - (.ShiningMorning Inc..) [HKLM][64Bits] -- {B9FDEDF1-DD77-42BD-B2BD-ABCB30655C73}_is1
O42 - Logiciel: WavePad Sound Editor - (.NCH Software.) [HKLM][64Bits] -- WavePad
O42 - Logiciel: WinPDFEditor V2.3 - (.http://www.WinPDFEditor.com.) [HKLM][64Bits] -- WinPDFEditor_is1
O42 - Logiciel: WinUtilities Professional Edition 11.31 - (.YL Computing, Inc.) [HKLM][64Bits] -- {FC274982-5AAD-4C20-848D-4424A5043009}_is1
O42 - Logiciel: WinX HD Video Converter Deluxe 5.5.3 - (.Digiarty Software, Inc..) [HKLM][64Bits] -- WinX HD Video Converter Deluxe_is1 =>.Xilisoft
O42 - Logiciel: Windows Installer Clean Up - (.Microsoft Corporation.) [HKLM][64Bits] -- {121634B0-2F4B-11D3-ADA3-00C04F52DD52}
O42 - Logiciel: Wondershare Video Editor(Build 4.9.0) - (.Wondershare Software.) [HKLM][64Bits] -- Wondershare Video Editor_is1
O42 - Logiciel: Youtube Downloader HD v. 2.9.9.13 - (.YoutubeDownloaderHD.com.) [HKLM][64Bits] -- Youtube Downloader HD_is1
O42 - Logiciel: ZD Soft Screen Recorder - (.ZD Soft.) [HKLM][64Bits] -- {101CC777-634C-42AF-AF95-7A0282ABF247}
O42 - Logiciel: Zoner Photo Studio 16 - (.ZONER software.) [HKLM][64Bits] -- ZonerPhotoStudio16_EN_is1
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM][64Bits] -- {309768A4-A2BB-4930-A5A2-8169678C9B4C}
O42 - Logiciel: iPixSoft SWF to Video Converter (2.4.0.0) - (.iPixSoft.) [HKLM][64Bits] -- iPixSoft SWF to Video Converter_is1
O42 - Logiciel: iPixSoft Video Slideshow Maker (3.4.1.0) - (.iPixSoft.) [HKLM][64Bits] -- iPixSoft Video Slideshow Maker_is1
O42 - Logiciel: iolo technologies' System Mechanic Professional - (.iolo technologies, LLC.) [HKLM][64Bits] -- {BBD3F66B-1180-4785-B679-3F91572CD3B4}_is1
O42 - Logiciel: proDAD ProDRENALIN 1.0 (64bit) - (.proDAD GmbH.) [HKLM][64Bits] -- proDAD-ProDRENALIN-1.0
~ Logic: 89 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\4dots Software]
[HKCU\Software\AC3Filter]
[HKCU\Software\ACPsoft]
[HKCU\Software\AOMEI]
[HKCU\Software\ASIO4ALL v2 by Wuschel]
[HKCU\Software\ASProtect]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Ableton]
[HKCU\Software\Acronis]
[HKCU\Software\Adobe]
[HKCU\Software\AirMagnet Inc.]
[HKCU\Software\Aiseesoft Studio]
[HKCU\Software\AltrixSoft]
[HKCU\Software\AnyProtect] =>PUP.AnyProtect
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\Tv-Plug-In]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Arafasoft]
[HKCU\Software\ArcSoft]
[HKCU\Software\Ashampoo]
[HKCU\Software\Avanquest]
[HKCU\Software\BVRP Software]
[HKCU\Software\BinaryNow]
[HKCU\Software\CC]
[HKCU\Software\CORPUS]
[HKCU\Software\Classes]
[HKCU\Software\ClickConnect]
[HKCU\Software\Clients]
[HKCU\Software\CodeGear]
[HKCU\Software\CoinisRS]
[HKCU\Software\Corez]
[HKCU\Software\Creative Tech]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\David Cornish]
[HKCU\Software\Design Science]
[HKCU\Software\DesktopPaints.com]
[HKCU\Software\Driver Magician]
[HKCU\Software\DxOLabs]
[HKCU\Software\EPSON]
[HKCU\Software\ESET]
[HKCU\Software\EarthLink, Inc.]
[HKCU\Software\Elaborate Bytes]
[HKCU\Software\Embarcadero]
[HKCU\Software\Engelmann Media]
[HKCU\Software\Express Uninstaller]
[HKCU\Software\Foxit Software]
[HKCU\Software\GNU]
[HKCU\Software\GSNotes]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\HDRsoft]
[HKCU\Software\Haali]
[HKCU\Software\Hetman Software]
[HKCU\Software\HippoEDIT]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\Imobie]
[HKCU\Software\IncrediMail]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KC Softwares]
[HKCU\Software\KKSUP]
[HKCU\Software\Leadertech]
[HKCU\Software\Leawo Software]
[HKCU\Software\Leawo]
[HKCU\Software\Lenovo]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LogiShrd]
[HKCU\Software\Logitech]
[HKCU\Software\M-Audio]
[HKCU\Software\MCAFEE]
[HKCU\Software\MOVAVI]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\MainConcept]
[HKCU\Software\MakeMSI]
[HKCU\Software\Mozilla]
[HKCU\Software\MunSoft]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Nico Mak Computing]
[HKCU\Software\OB]
[HKCU\Software\Ocster]
[HKCU\Software\Opera Software]
[HKCU\Software\Ordinarysoft]
[HKCU\Software\Paessler]
[HKCU\Software\ParetoLogic] =>PUP.Paretologic
[HKCU\Software\PearlMountain]
[HKCU\Software\PerforMax Cleaner]
[HKCU\Software\Picture Instruments]
[HKCU\Software\Piriform]
[HKCU\Software\PlagiarismCheckerX]
[HKCU\Software\Policies]
[HKCU\Software\PowerISO]
[HKCU\Software\ProPCCleanerConfig] =>USP.PCCleaner
[HKCU\Software\ProcessLasso]
[HKCU\Software\QtProject]
[HKCU\Software\RecoveryMechanic]
[HKCU\Software\RegistryOptimizer]
[HKCU\Software\Reimage] =>Rogue.ReimageRepair
[HKCU\Software\ShiningMorning]
[HKCU\Software\Skype]
[HKCU\Software\SoftGold]
[HKCU\Software\SoftMaker Software GmbH]
[HKCU\Software\Solveig Multimedia]
[HKCU\Software\SparkTrust] =>Rogue.PCCleanerPlus
[HKCU\Software\SuperEasy Software]
[HKCU\Software\Teorex]
[HKCU\Software\Trolltech]
[HKCU\Software\Tv-Plug-In]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wondershare]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZD Soft]
[HKCU\Software\ZONER]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\abylon]
[HKCU\Software\ashampoo GmbH & Co. KG]
[HKCU\Software\giveawayoftheday.com]
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate
[HKCU\Software\hdd_mechanic]
[HKCU\Software\iolo]
[HKCU\Software\ioloinstallrestart]
[HKCU\Software\proDAD GmbH]
[HKCU\Software\rttasks]
[HKCU\Software\softorbits]
[HKCU\Software\xm1]
[HKLM\Software\4dots Software]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASIO]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVID]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Acronis]
[HKLM\Software\AdventNet, Inc.]
[HKLM\Software\Alienware]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Ashampoo]
[HKLM\Software\BinaryNow]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\DxOLabs]
[HKLM\Software\EPSON]
[HKLM\Software\ESET]
[HKLM\Software\Foxit Software]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\HitmanPro]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\IObit]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Lenovo]
[HKLM\Software\LexmarkLaser]
[HKLM\Software\Licenses]
[HKLM\Software\Logishrd]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nektra]
[HKLM\Software\ODBC]
[HKLM\Software\Ocster]
[HKLM\Software\Ordinarysoft]
[HKLM\Software\ParetoLogic] =>PUP.Paretologic
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\ProcessLasso]
[HKLM\Software\Propellerhead Software]
[HKLM\Software\RPC2]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Reimage] =>Rogue.ReimageRepair
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\ShiningMorning]
[HKLM\Software\Sonic]
[HKLM\Software\Stellar Data Recovery]
[HKLM\Software\SuperEasy Software]
[HKLM\Software\Synaptics]
[HKLM\Software\UVK - Ultra virus killer]
[HKLM\Software\Volatile]
[HKLM\Software\Wow6432Node\83b0e2d7-1d74-426a-a6db-3c1bacb4a0a2] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\ACPsoft]
[HKLM\Software\Wow6432Node\ADSRemoval]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\AVG]
[HKLM\Software\Wow6432Node\AVID]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Acronis]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AirMagnet Inc.]
[HKLM\Software\Wow6432Node\Anniversaires]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Arafasoft]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\Ashampoo]
[HKLM\Software\Wow6432Node\Avanquest]
[HKLM\Software\Wow6432Node\BVRP Software]
[HKLM\Software\Wow6432Node\BinaryNow]
[HKLM\Software\Wow6432Node\Business Objects]
[HKLM\Software\Wow6432Node\CORPUS]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\David Cornish]
[HKLM\Software\Wow6432Node\Design Science]
[HKLM\Software\Wow6432Node\Driver-Soft]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\ESET]
[HKLM\Software\Wow6432Node\Elaborate Bytes]
[HKLM\Software\Wow6432Node\Elecard]
[HKLM\Software\Wow6432Node\Engelmann Media]
[HKLM\Software\Wow6432Node\FD9B9BBD-BF82-4DC5-B66C-59242C9075C7] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Foxit Software]
[HKLM\Software\Wow6432Node\FreeFileSync]
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\IObit]
[HKLM\Software\Wow6432Node\ImInstaller]
[HKLM\Software\Wow6432Node\IncrediBackup]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\KC Softwares]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Leawo Software]
[HKLM\Software\Wow6432Node\Lenovo]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Live Aquarium HD]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MunSoft]
[HKLM\Software\Wow6432Node\NCH Software]
[HKLM\Software\Wow6432Node\NCH Swift Sound]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nektra]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nevron]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\Paessler]
[HKLM\Software\Wow6432Node\ParetoLogic] =>PUP.Paretologic
[HKLM\Software\Wow6432Node\Photo Notifier and Animation Creator]
[HKLM\Software\Wow6432Node\PlagiarismCheckerX]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Propellerhead Software]
[HKLM\Software\Wow6432Node\RPC2]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SBAMSvc]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SlimWare Utilities Inc]
[HKLM\Software\Wow6432Node\SoftMaker Software GmbH]
[HKLM\Software\Wow6432Node\Solveig Multimedia]
[HKLM\Software\Wow6432Node\SparkTrust] =>Rogue.PCCleanerPlus
[HKLM\Software\Wow6432Node\Stellar Data Recovery]
[HKLM\Software\Wow6432Node\SuperEasy Software]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\W4]
[HKLM\Software\Wow6432Node\WUW]
[HKLM\Software\Wow6432Node\WafCX]
[HKLM\Software\Wow6432Node\Web Update Wizard]
[HKLM\Software\Wow6432Node\Wondershare]
[HKLM\Software\Wow6432Node\ZONER]
[HKLM\Software\Wow6432Node\abylon]
[HKLM\Software\Wow6432Node\couponmonkey] =>PUP.CouponMonkey
[HKLM\Software\Wow6432Node\hdd_mechanic]
[HKLM\Software\Wow6432Node\iolo]
[HKLM\Software\Wow6432Node\logishrd]
[HKLM\Software\Wow6432Node\onOne Software]
[HKLM\Software\Wow6432Node]
[HKLM\Software\ZONER]
[HKLM\Software\Zemana AntiMalware]
[HKLM\Software\ZmnGlobalSDK]
[HKLM\Software\abylon]
[HKLM\Software\couponmonkey] =>PUP.CouponMonkey
[HKLM\Software\iolo]
[HKLM\Software\proDAD]
~ Key Software: 619 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 2015-03-14 - 11:26:52 - [] ----D C:\Program Files (x86)\43637e6f-cda2-49c8-96b6-b18a7e43dca1
O43 - CFD: 2015-01-17 - 09:33:02 - [] ----D C:\Program Files (x86)\4dots Software
O43 - CFD: 2012-07-26 - 19:18:42 - [] ----D C:\Program Files (x86)\Ableton
O43 - CFD: 2015-03-14 - 11:26:52 - [] ----D C:\Program Files (x86)\abylonsoft
O43 - CFD: 2015-03-01 - 23:33:17 - [] ----D C:\Program Files (x86)\ACPsoft
O43 - CFD: 2015-01-08 - 17:47:11 - [] ----D C:\Program Files (x86)\Acronis
O43 - CFD: 2014-12-27 - 21:46:49 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 2014-12-10 - 01:29:21 - [] ----D C:\Program Files (x86)\AdwareROI
O43 - CFD: 2015-03-13 - 23:42:08 - [] ----D C:\Program Files (x86)\AirMagnet Inc
O43 - CFD: 2015-02-19 - 12:15:29 - [] ----D C:\Program Files (x86)\Aiseesoft Studio
O43 - CFD: 2014-11-05 - 09:00:18 - [] ----D C:\Program Files (x86)\Alternate
O43 - CFD: 2015-02-03 - 18:55:43 - [] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 2015-03-08 - 23:23:52 - [] ----D C:\Program Files (x86)\Animated Screensaver Maker
O43 - CFD: 2014-12-06 - 23:01:05 - [] ----D C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 2015-02-10 - 14:26:43 - [] ----D C:\Program Files (x86)\AoaoPhoto Digital Studio
O43 - CFD: 2014-11-11 - 19:53:06 - [] ----D C:\Program Files (x86)\AOMEI DDM Pro Edition
O43 - CFD: 2015-02-19 - 10:47:50 - [] ----D C:\Program Files (x86)\AOMEI OneKey Recovery 1.1
O43 - CFD: 2014-11-11 - 19:53:16 - [] ----D C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 5.5
O43 - CFD: 2014-11-28 - 01:27:24 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 2014-11-05 - 20:52:29 - [] ----D C:\Program Files (x86)\ArcSoft
O43 - CFD: 2015-03-10 - 22:34:33 - [] ----D C:\Program Files (x86)\Ashampoo
O43 - CFD: 2012-07-26 - 19:20:36 - [] ----D C:\Program Files (x86)\ASIO4ALL v2
O43 - CFD: 2015-03-14 - 23:51:27 - [] ----D C:\Program Files (x86)\AthTek
O43 - CFD: 2015-02-21 - 13:52:42 - [] ----D C:\Program Files (x86)\Avanquest
O43 - CFD: 2015-02-12 - 23:51:37 - [] ----D C:\Program Files (x86)\Avanquest update
O43 - CFD: 2015-02-20 - 22:33:26 - [] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 2015-01-21 - 23:37:02 - [] ----D C:\Program Files (x86)\Badosoft
O43 - CFD: 2015-02-24 - 16:00:48 - [] ----D C:\Program Files (x86)\BinaryNow
O43 - CFD: 2014-11-28 - 01:27:00 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 2015-03-08 - 23:23:52 - [] ----D C:\Program Files (x86)\CD Indexer
O43 - CFD: 2015-02-06 - 01:02:27 - [] ----D C:\Program Files (x86)\CDRWIN10 Free
O43 - CFD: 2015-02-04 - 16:21:02 - [] ----D C:\Program Files (x86)\CheckDrive
O43 - CFD: 2015-03-14 - 23:23:51 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 2015-02-20 - 00:03:42 - [] ----D C:\Program Files (x86)\Corel
O43 - CFD: 2014-11-05 - 12:28:53 - [] ----D C:\Program Files (x86)\Creative
O43 - CFD: 2014-11-05 - 21:09:17 - [] ----D C:\Program Files (x86)\David Cornish
O43 - CFD: 2015-02-06 - 01:13:15 - [] ----D C:\Program Files (x86)\Digiarty
O43 - CFD: 2015-02-27 - 21:23:51 - [] ----D C:\Program Files (x86)\Driver Magician
O43 - CFD: 2014-11-04 - 10:07:23 - [] ----D C:\Program Files (x86)\Driver-Soft
O43 - CFD: 2015-03-09 - 11:21:45 - [] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 2014-12-17 - 15:11:37 - [] ----D C:\Program Files (x86)\Easy Macro Recorder
O43 - CFD: 2014-12-30 - 15:33:13 - [] ----D C:\Program Files (x86)\Elaborate Bytes
O43 - CFD: 2014-12-01 - 13:06:05 - [] ----D C:\Program Files (x86)\Engelmann Media
O43 - CFD: 2015-01-26 - 13:37:45 - [] ----D C:\Program Files (x86)\Enolsoft
O43 - CFD: 2014-11-05 - 20:57:10 - [] ----D C:\Program Files (x86)\EPSON
O43 - CFD: 2015-01-20 - 23:38:13 - [] ----D C:\Program Files (x86)\EPSON Print CD
O43 - CFD: 2015-03-12 - 16:35:37 - [] ----D C:\Program Files (x86)\Express Uninstaller
O43 - CFD: 2015-02-06 - 13:08:29 - [] ----D C:\Program Files (x86)\FD9B9BBD-BF82-4DC5-B66C-59242C9075C7
O43 - CFD: 2015-02-09 - 23:50:33 - [] ----D C:\Program Files (x86)\Fix-It Disk Optimizer
O43 - CFD: 2015-03-12 - 16:35:37 - [] ----D C:\Program Files (x86)\Fix-It Registry Optimizer
O43 - CFD: 2015-01-27 - 19:58:49 - [] ----D C:\Program Files (x86)\Foxit Software
O43 - CFD: 2015-03-09 - 11:21:25 - [] ----D C:\Program Files (x86)\Free Codec Pack
O43 - CFD: 2015-01-30 - 13:11:52 - [] ----D C:\Program Files (x86)\Free Spider Solitaire
O43 - CFD: 2015-03-14 - 16:10:15 - [] ----D C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 2015-03-16 - 22:46:16 - [] ----D C:\Program Files (x86)\GoldenSection Notes
O43 - CFD: 2012-07-26 - 19:05:13 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 2015-02-04 - 12:29:24 - [] ----D C:\Program Files (x86)\Hetman Software
O43 - CFD: 2015-01-30 - 12:06:25 - [] ----D C:\Program Files (x86)\HippoEDIT
O43 - CFD: 2015-01-25 - 02:02:42 - [] ----D C:\Program Files (x86)\iEasyLab
O43 - CFD: 2015-01-24 - 19:55:55 - [] ----D C:\Program Files (x86)\iMobie
O43 - CFD: 2014-11-14 - 02:15:39 - [] ----D C:\Program Files (x86)\IncrediBackup
O43 - CFD: 2014-11-24 - 22:31:37 - [] ----D C:\Program Files (x86)\IncrediMail
O43 - CFD: 2015-03-13 - 21:29:07 - [] ----D C:\Program Files (x86)\InPixio Photo Clip Professional
O43 - CFD: 2015-01-21 - 20:57:51 - [] ----D C:\Program Files (x86)\InPixio Photo Maximizer
O43 - CFD: 2015-03-16 - 22:43:48 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015-03-11 - 15:39:31 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015-03-14 - 20:40:42 - [] ----D C:\Program Files (x86)\IObit
O43 - CFD: 2015-03-11 - 11:26:34 - [] ----D C:\Program Files (x86)\iolo
O43 - CFD: 2015-02-26 - 11:38:52 - [] ----D C:\Program Files (x86)\iPixSoft
O43 - CFD: 2015-01-24 - 00:18:05 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 2015-03-16 - 14:25:06 - [] ----D C:\Program Files (x86)\KC Softwares
O43 - CFD: 2015-03-09 - 11:28:49 - [] ----D C:\Program Files (x86)\Leawo
O43 - CFD: 2015-03-09 - 11:22:27 - [] ----D C:\Program Files (x86)\Lenovo
O43 - CFD: 2015-01-22 - 09:40:25 - [] ----D C:\Program Files (x86)\Live Aquarium HD
O43 - CFD: 2014-11-04 - 15:25:11 - [] ----D C:\Program Files (x86)\Logitech
O43 - CFD: 2014-11-19 - 23:07:42 - [] ----D C:\Program Files (x86)\MAGIX
O43 - CFD: 2015-03-11 - 19:29:15 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2015-01-13 - 16:59:14 - [] ----D C:\Program Files (x86)\ManageEngine
O43 - CFD: 2015-02-19 - 11:15:03 - [] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 2014-11-04 - 15:09:35 - [] ----D C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 2014-11-03 - 21:03:46 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015-02-11 - 22:03:38 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2015-02-11 - 22:03:38 - [] ----D C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 2014-11-02 - 02:03:33 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015-03-09 - 11:21:21 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2009-07-14 - 01:32:38 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 2015-02-25 - 13:49:49 - [] ----D C:\Program Files (x86)\MSECACHE
O43 - CFD: 2015-01-12 - 00:15:00 - [] ----D C:\Program Files (x86)\MunSoft
O43 - CFD: 2014-11-23 - 21:05:24 - [] ----D C:\Program Files (x86)\MusicExtractor
O43 - CFD: 2015-03-16 - 22:38:14 - [] ----D C:\Program Files (x86)\NCH Software
O43 - CFD: 2015-01-20 - 00:30:37 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 2015-03-08 - 23:58:46 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015-03-01 - 14:56:20 - [] ----D C:\Program Files (x86)\onOne Software
O43 - CFD: 2015-03-14 - 23:25:05 - [] ----D C:\Program Files (x86)\Opera
O43 - CFD: 2015-02-18 - 20:59:47 - [] ----D C:\Program Files (x86)\ParetoLogic =>PUP.Paretologic
O43 - CFD: 2014-11-03 - 19:23:24 - [] ----D C:\Program Files (x86)\PDF Compressor
O43 - CFD: 2014-11-04 - 00:03:16 - [] ----D C:\Program Files (x86)\Photo Notifier and Animation Creator
O43 - CFD: 2015-01-20 - 14:34:10 - [] ----D C:\Program Files (x86)\PhotoSpills4
O43 - CFD: 2015-02-14 - 15:23:16 - [] ----D C:\Program Files (x86)\Picture Collage Maker
O43 - CFD: 2015-02-07 - 18:15:34 - [] ----D C:\Program Files (x86)\PlagiarismCheckerX
O43 - CFD: 2015-03-11 - 11:51:48 - [] ----D C:\Program Files (x86)\PRTG Network Monitor
O43 - CFD: 2015-01-22 - 09:40:31 - [] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 2015-03-10 - 13:07:01 - [] ----D C:\Program Files (x86)\RecoveryMechanic
O43 - CFD: 2009-07-14 - 01:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015-03-14 - 12:23:18 - [] ----D C:\Program Files (x86)\Reg Pro Cleaner
O43 - CFD: 2015-03-08 - 23:23:53 - [] ----D C:\Program Files (x86)\Search Extensions =>PUP.RocketTab
O43 - CFD: 2015-02-18 - 11:39:59 - [] ----D C:\Program Files (x86)\ShiningMorning
O43 - CFD: 2015-01-08 - 22:33:32 - [] ----D C:\Program Files (x86)\SIW 2015 GOTD
O43 - CFD: 2014-11-29 - 00:15:22 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 2015-02-25 - 00:55:33 - [] ----D C:\Program Files (x86)\SlimPublisher
O43 - CFD: 2015-02-16 - 12:19:17 - [] ----D C:\Program Files (x86)\SoftMaker Office 2010 (Trial)
O43 - CFD: 2014-11-04 - 19:17:36 - [] ----D C:\Program Files (x86)\SoftMaker Office 2012
O43 - CFD: 2014-11-05 - 08:44:55 - [] ----D C:\Program Files (x86)\SoftSkin Photo Makeup
O43 - CFD: 2014-12-14 - 00:08:00 - [] ----D C:\Program Files (x86)\Solid YouTube Downloader and Converter
O43 - CFD: 2015-02-25 - 01:00:06 - [] ----D C:\Program Files (x86)\Solveig Multimedia
O43 - CFD: 2014-11-04 - 09:44:35 - [] ----D C:\Program Files (x86)\SuperEasy Software
O43 - CFD: 2014-12-28 - 15:11:18 - [] ----D C:\Program Files (x86)\TEBookConverter
O43 - CFD: 2015-02-14 - 17:52:57 - [] ----D C:\Program Files (x86)\Texmaker
O43 - CFD: 2015-03-10 - 22:17:07 - [] ----D C:\Program Files (x86)\TuneUpMedia
O43 - CFD: 2015-01-31 - 11:53:00 - [] ----D C:\Program Files (x86)\Tv-Plug-In
O43 - CFD: 2015-02-27 - 23:23:58 - [] ----D C:\Program Files (x86)\UltimateZip
O43 - CFD: 2009-07-14 - 00:57:06 - [0] ----D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2015-02-06 - 00:45:33 - [] ----D C:\Program Files (x86)\Video Converter Genius
O43 - CFD: 2015-02-20 - 11:32:28 - [] ----D C:\Program Files (x86)\Video to Picture
O43 - CFD: 2014-11-02 - 23:22:57 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015-02-25 - 13:50:07 - [] ----D C:\Program Files (x86)\Windows Installer Clean Up
O43 - CFD: 2014-11-04 - 21:13:28 - [] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 2014-10-31 - 17:29:11 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 2015-03-11 - 15:39:33 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 2009-07-14 - 01:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 2014-10-31 - 17:29:11 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010-11-20 - 23:31:38 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2014-10-31 - 17:29:11 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015-01-04 - 22:39:55 - [] ----D C:\Program Files (x86)\WinPDFEditor
O43 - CFD: 2015-03-10 - 22:27:30 - [] ----D C:\Program Files (x86)\WinUtilities
O43 - CFD: 2015-02-13 - 23:52:24 - [] ----D C:\Program Files (x86)\WonderFox Soft
O43 - CFD: 2014-12-27 - 21:17:17 - [] ----D C:\Program Files (x86)\Wondershare
O43 - CFD: 2015-02-20 - 16:35:27 - [] ----D C:\Program Files (x86)\Youtube Downloader HD
O43 - CFD: 2014-12-22 - 15:26:32 - [] ----D C:\Program Files (x86)\ZD Soft
O43 - CFD: 2015-03-11 - 15:42:53 - [0] ----D C:\Program Files (x86)\Zemana AntiMalware
O43 - CFD: 2015-03-16 - 23:00:31 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 2015-01-08 - 17:47:40 - [] ----D C:\Program Files (x86)\Common Files\Acronis
O43 - CFD: 2015-03-01 - 14:56:22 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015-03-13 - 09:26:34 - [0] ----D C:\Program Files (x86)\Common Files\AltrixSoft
O43 - CFD: 2015-02-09 - 20:53:06 - [] ----D C:\Program Files (x86)\Common Files\AntiVirus
O43 - CFD: 2014-11-11 - 12:07:00 - [] ----D C:\Program Files (x86)\Common Files\Appkeys
O43 - CFD: 2015-02-04 - 12:43:03 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2014-12-18 - 21:31:59 - [] ----D C:\Program Files (x86)\Common Files\Avanquest Software
O43 - CFD: 2015-02-04 - 20:55:29 - [] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 2014-11-03 - 22:42:45 - [] ----D C:\Program Files (x86)\Common Files\Bcgsoft
O43 - CFD: 2015-01-20 - 14:43:05 - [] ----D C:\Program Files (x86)\Common Files\Crystal Decisions
O43 - CFD: 2015-03-09 - 11:21:31 - [] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 2014-11-04 - 09:44:37 - [] ----D C:\Program Files (x86)\Common Files\HDX4
O43 - CFD: 2014-11-05 - 20:51:14 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014-12-02 - 14:46:46 - [] ----D C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 2015-01-23 - 14:01:41 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2014-11-04 - 15:26:55 - [] ----D C:\Program Files (x86)\Common Files\logishrd
O43 - CFD: 2014-11-05 - 23:02:16 - [] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 2014-12-14 - 00:08:00 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2015-01-20 - 00:31:20 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 2014-11-15 - 11:21:14 - [] ----D C:\Program Files (x86)\Common Files\ParetoLogic =>PUP.Paretologic
O43 - CFD: 2009-07-13 - 23:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014-11-29 - 00:13:15 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015-02-25 - 01:00:32 - [] ----D C:\Program Files (x86)\Common Files\Solveig Multimedia
O43 - CFD: 2009-07-13 - 23:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2014-11-01 - 22:52:45 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 2014-11-04 - 15:07:51 - [] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2014-12-27 - 21:18:21 - [] ----D C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 2012-07-26 - 19:23:26 - [] ----D C:\ProgramData\Ableton
O43 - CFD: 2015-02-05 - 17:54:25 - [] ----D C:\ProgramData\Acronis
O43 - CFD: 2014-12-27 - 23:13:15 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 2015-02-19 - 12:15:29 - [] ----D C:\ProgramData\Aiseesoft Studio
O43 - CFD: 2014-11-05 - 09:14:42 - [] ----D C:\ProgramData\Alternate
O43 - CFD: 2015-03-13 - 00:15:25 - [] ----D C:\ProgramData\AltrixSoft
O43 - CFD: 2015-02-03 - 18:55:43 - [] ----D C:\ProgramData\AmUStor
O43 - CFD: 2015-02-19 - 11:06:04 - [] ----D C:\ProgramData\AomeiBR
O43 - CFD: 2015-01-31 - 00:54:38 - [0] ----D C:\ProgramData\APM
O43 - CFD: 2015-02-04 - 12:17:15 - [] ----D C:\ProgramData\Apple
O43 - CFD: 2014-11-28 - 01:28:12 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 2009-07-14 - 01:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 2015-03-10 - 22:34:36 - [] ----D C:\ProgramData\Ashampoo
O43 - CFD: 2015-02-12 - 23:51:36 - [] ----D C:\ProgramData\Avanquest
O43 - CFD: 2015-02-03 - 19:02:59 - [] ----D C:\ProgramData\Avanquest Software
O43 - CFD: 2015-02-09 - 21:01:03 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 2014-11-03 - 13:12:34 - [] ----D C:\ProgramData\AVID
O43 - CFD: 2015-02-04 - 20:56:10 - [] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 2015-02-24 - 16:00:02 - [] ----D C:\ProgramData\BinaryNow
O43 - CFD: 2014-10-31 - 14:44:23 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 2015-02-07 - 18:15:54 - [] ----D C:\ProgramData\Caphyon
O43 - CFD: 2015-02-06 - 01:02:36 - [] ----D C:\ProgramData\CDRWIN 10
O43 - CFD: 2014-12-27 - 22:42:37 - [] ----D C:\ProgramData\Clickfree
O43 - CFD: 2014-11-02 - 22:20:46 - [] --H-D C:\ProgramData\Common Files
O43 - CFD: 2015-02-11 - 22:00:23 - [] ----D C:\ProgramData\Configuration
O43 - CFD: 2015-03-10 - 22:23:54 - [] ----D C:\ProgramData\CrashPlan
O43 - CFD: 2015-02-06 - 10:36:48 - [0] ----D C:\ProgramData\dbg
O43 - CFD: 2009-07-14 - 01:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 2009-07-14 - 01:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 2015-03-16 - 16:17:59 - [] ----D C:\ProgramData\DriverGenius
O43 - CFD: 2014-11-28 - 21:57:39 - [] ----D C:\ProgramData\DxO Labs
O43 - CFD: 2015-03-16 - 22:36:57 - [] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 2015-02-19 - 11:15:03 - [] ----D C:\ProgramData\Engelmann Media
O43 - CFD: 2015-01-22 - 09:40:18 - [] ----D C:\ProgramData\EPSON
O43 - CFD: 2014-10-31 - 14:44:23 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 2009-07-14 - 01:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 2015-01-31 - 00:54:31 - [] ----D C:\ProgramData\HippoEDIT
O43 - CFD: 2015-02-16 - 12:59:56 - [] ----D C:\ProgramData\HitmanPro
O43 - CFD: 2014-10-31 - 23:12:46 - [] ----D C:\ProgramData\IM
O43 - CFD: 2014-10-31 - 23:12:14 - [] ----D C:\ProgramData\IncrediMail
O43 - CFD: 2015-03-08 - 23:23:53 - [] ----D C:\ProgramData\IObit
O43 - CFD: 2015-03-12 - 23:14:00 - [] ----D C:\ProgramData\iolo
O43 - CFD: 2015-02-25 - 00:56:26 - [0] ----D C:\ProgramData\Isolated Storage
O43 - CFD: 2015-03-09 - 12:53:26 - [] ----D C:\ProgramData\Leawo
O43 - CFD: 2015-03-10 - 02:22:34 - [] ----D C:\ProgramData\Licenses
O43 - CFD: 2015-01-22 - 09:40:18 - [] ----D C:\ProgramData\Live Aquarium HD
O43 - CFD: 2015-02-03 - 18:18:09 - [] ----D C:\ProgramData\LogiShrd
O43 - CFD: 2015-01-23 - 22:34:13 - [] ----D C:\ProgramData\Logitech
O43 - CFD: 2014-11-14 - 13:10:36 - [] ----D C:\ProgramData\Logs
O43 - CFD: 2015-01-22 - 09:40:17 - [] ----D C:\ProgramData\MAGIX
O43 - CFD: 2015-03-08 - 21:25:41 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 2014-12-27 - 21:48:01 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 2014-10-31 - 14:44:23 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 2015-01-12 - 00:28:46 - [] ----D C:\ProgramData\MFAData
O43 - CFD: 2015-03-11 - 11:28:32 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 2014-10-31 - 14:44:23 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 2014-12-21 - 14:13:20 - [] ----D C:\ProgramData\Movavi
O43 - CFD: 2015-03-01 - 14:57:00 - [0] ----D C:\ProgramData\Nalpeiron
O43 - CFD: 2015-02-13 - 20:11:09 - [] ----D C:\ProgramData\NCH Software
O43 - CFD: 2015-01-18 - 02:36:42 - [] ----D C:\ProgramData\Nero
O43 - CFD: 2015-03-16 - 22:24:13 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 2015-03-09 - 00:00:18 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015-03-01 - 14:56:26 - [] ----D C:\ProgramData\onOne Software
O43 - CFD: 2015-01-24 - 00:19:40 - [] ----D C:\ProgramData\Oracle
O43 - CFD: 2015-03-11 - 23:42:28 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 2014-11-14 - 13:15:32 - [] ----D C:\ProgramData\Paessler
O43 - CFD: 2015-02-18 - 21:00:49 - [] ----D C:\ProgramData\ParetoLogic =>PUP.Paretologic
O43 - CFD: 2015-03-13 - 23:44:49 - [] ----D C:\ProgramData\PC1Data
O43 - CFD: 2014-12-10 - 01:39:25 - [] ----D C:\ProgramData\PCRx =>PUP.PCRx
O43 - CFD: 2014-11-03 - 22:42:38 - [] ----D C:\ProgramData\PearlMountain
O43 - CFD: 2014-11-04 - 00:03:16 - [] ----D C:\ProgramData\Photo Notifier and Animation Creator
O43 - CFD: 2015-03-16 - 14:50:32 - [] ----D C:\ProgramData\ProductData
O43 - CFD: 2014-11-29 - 00:13:21 - [] ----D C:\ProgramData\Skype
O43 - CFD: 2015-03-14 - 23:23:51 - [] ----D C:\ProgramData\SparkTrust =>Rogue.PCCleanerPlus
O43 - CFD: 2009-07-14 - 01:08:56 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 2014-11-12 - 23:21:40 - [] ----D C:\ProgramData\Sun
O43 - CFD: 2014-11-04 - 09:44:36 - [] ----D C:\ProgramData\Supereasy
O43 - CFD: 2014-11-04 - 09:44:44 - [] ----D C:\ProgramData\SuperEasy Software
O43 - CFD: 2015-03-16 - 22:25:35 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 2009-07-14 - 01:08:56 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 2015-02-26 - 01:44:37 - [] ----D C:\ProgramData\TuneUpMedia
O43 - CFD: 2015-02-01 - 23:56:54 - [] ----D C:\ProgramData\Wondershare
O43 - CFD: 2015-01-22 - 09:40:16 - [] ----D C:\ProgramData\XDMessagingv4
O43 - CFD: 2015-02-02 - 00:17:53 - [] ----D C:\ProgramData\Zemana AntiMalware
O43 - CFD: 2015-01-29 - 02:59:40 - [] ----D C:\ProgramData\Zoner
O43 - CFD: 2015-03-14 - 12:42:57 - [] ----D C:\ProgramData\{930acc5d-386f-901c-930a-acc5d3863174}
O43 - CFD: 2012-07-26 - 19:21:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ableton
O43 - CFD: 2014-11-03 - 08:58:03 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015-03-01 - 23:33:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ACPsoft PDF Converter
O43 - CFD: 2015-01-08 - 17:47:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
O43 - CFD: 2014-12-14 - 00:08:06 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015-03-14 - 20:40:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
O43 - CFD: 2015-02-27 - 23:53:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirMagnet Spectrum XT
O43 - CFD: 2015-02-19 - 12:15:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft
O43 - CFD: 2014-11-05 - 09:00:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alternate
O43 - CFD: 2015-02-07 - 19:20:56 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Any DVD Cloner Express
O43 - CFD: 2015-02-07 - 19:28:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AoaoPhoto Digital Studio
O43 - CFD: 2014-11-10 - 10:11:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Dynamic Disk Manager
O43 - CFD: 2015-02-19 - 10:47:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI OneKey Recovery 1.1
O43 - CFD: 2014-11-10 - 10:10:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant Pro Edition 5.5
O43 - CFD: 2014-11-05 - 20:53:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoImpression 5
O43 - CFD: 2015-03-10 - 22:34:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 2015-02-11 - 22:02:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avanquest
O43 - CFD: 2015-02-20 - 22:33:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2015-03-09 - 01:12:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD Indexer
O43 - CFD: 2014-12-21 - 02:37:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDRWIN10
O43 - CFD: 2015-02-04 - 16:20:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CheckDrive
O43 - CFD: 2014-11-05 - 12:29:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
O43 - CFD: 2015-02-07 - 19:16:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
O43 - CFD: 2015-02-06 - 01:13:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
O43 - CFD: 2015-03-14 - 23:51:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DigiBand
O43 - CFD: 2015-03-14 - 20:37:49 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
O43 - CFD: 2014-11-04 - 10:07:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius Professional Edition
O43 - CFD: 2015-02-28 - 00:15:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Magician
O43 - CFD: 2015-03-09 - 11:21:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 2014-12-14 - 00:08:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO Optics Pro 8
O43 - CFD: 2014-12-01 - 15:35:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Drive Data Recovery
O43 - CFD: 2014-12-17 - 15:11:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Macro Recorder
O43 - CFD: 2014-12-30 - 15:33:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
O43 - CFD: 2014-12-01 - 13:06:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Engelmann Media
O43 - CFD: 2015-01-26 - 13:37:49 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enolsoft
O43 - CFD: 2014-11-05 - 19:37:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 2014-11-05 - 20:50:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Print CD
O43 - CFD: 2014-11-05 - 09:13:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Uninstaller
O43 - CFD: 2015-01-21 - 21:38:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix-It Disk Optimizer
O43 - CFD: 2015-01-26 - 12:15:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix-It Registry Optimizer
O43 - CFD: 2015-01-29 - 03:04:17 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 2015-01-30 - 13:11:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Spider Solitaire
O43 - CFD: 2014-11-24 - 21:33:15 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015-03-16 - 22:46:15 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoldenSection Notes
O43 - CFD: 2014-11-03 - 13:46:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015-01-31 - 13:46:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro =>.Google Inc
O43 - CFD: 2015-02-04 - 12:29:29 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hetman Software
O43 - CFD: 2015-01-30 - 12:06:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HippoEDIT
O43 - CFD: 2015-02-04 - 12:43:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
O43 - CFD: 2014-12-06 - 20:52:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgTransformer
O43 - CFD: 2015-01-24 - 19:53:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
O43 - CFD: 2014-11-14 - 02:15:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediBackup
O43 - CFD: 2014-11-28 - 21:55:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail
O43 - CFD: 2015-01-16 - 00:41:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inpaint
O43 - CFD: 2015-02-03 - 18:26:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InPixio Photo Clip Professional
O43 - CFD: 2015-01-21 - 20:58:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InPixio Photo Maximizer
O43 - CFD: 2015-03-14 - 21:16:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
O43 - CFD: 2015-02-11 - 11:41:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 2015-02-26 - 11:38:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iPixSoft
O43 - CFD: 2014-11-12 - 23:21:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015-03-09 - 12:53:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Leawo
O43 - CFD: 2014-12-25 - 13:44:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Live Aquarium HD
O43 - CFD: 2015-02-03 - 18:18:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 2015-03-08 - 23:23:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio
O43 - CFD: 2014-11-19 - 23:07:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
O43 - CFD: 2009-07-14 - 00:57:09 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015-03-11 - 19:29:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2015-02-19 - 11:15:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application
O43 - CFD: 2014-11-03 - 21:05:17 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2014-12-06 - 20:32:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3 Toolkit
O43 - CFD: 2015-01-20 - 00:30:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 2015-03-14 - 23:02:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2015-03-01 - 14:57:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\onOne Software
O43 - CFD: 2015-02-18 - 21:00:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParetoLogic =>PUP.Paretologic
O43 - CFD: 2014-11-03 - 19:23:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Compressor
O43 - CFD: 2015-03-14 - 20:43:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip =>PUP.PepperZip
O43 - CFD: 2014-11-23 - 12:28:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photomatix Essentials 4
O43 - CFD: 2015-01-20 - 14:34:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\photospills
O43 - CFD: 2015-02-14 - 15:23:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Collage Maker
O43 - CFD: 2015-02-28 - 13:37:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Instruments
O43 - CFD: 2015-02-07 - 18:15:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plagiarism Checker X
O43 - CFD: 2015-03-09 - 01:12:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 2014-11-07 - 11:22:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Lasso
O43 - CFD: 2015-02-13 - 11:35:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de vidéo
O43 - CFD: 2015-03-08 - 23:23:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PRTG Network Monitor
O43 - CFD: 2014-12-14 - 00:08:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2015-03-10 - 13:07:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RecoveryMechanic
O43 - CFD: 2014-11-04 - 22:11:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 2015-03-10 - 02:22:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>Rogue.ReimageRepair
O43 - CFD: 2014-11-05 - 21:09:20 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SFX Maker
O43 - CFD: 2015-01-08 - 22:33:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIW 2015
O43 - CFD: 2014-11-29 - 00:13:17 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015-02-25 - 00:55:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimPublisher
O43 - CFD: 2014-12-04 - 11:38:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3
O43 - CFD: 2015-02-16 - 12:20:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftMaker Office 2010 (Trial)
O43 - CFD: 2014-12-14 - 00:07:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solid YouTube Downloader and Converter
O43 - CFD: 2015-02-27 - 23:16:39 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014-11-01 - 23:23:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellar Phoenix Access Database Repair
O43 - CFD: 2014-11-05 - 20:54:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stylus Photo R260 User's Guide
O43 - CFD: 2014-11-04 - 09:44:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SuperEasy Software
O43 - CFD: 2015-03-11 - 11:26:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Mechanic Professional
O43 - CFD: 2010-11-21 - 03:16:58 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014-12-28 - 15:11:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TEBookConverter
O43 - CFD: 2015-02-04 - 21:49:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Texmaker
O43 - CFD: 2015-02-26 - 01:44:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Companion
O43 - CFD: 2015-01-31 - 11:53:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tv-Plug-In
O43 - CFD: 2015-02-24 - 16:16:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Related Programs
O43 - CFD: 2015-02-18 - 11:40:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Streaming
O43 - CFD: 2014-11-04 - 15:17:06 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2015-01-04 - 22:39:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPDFEditor
O43 - CFD: 2015-01-01 - 17:43:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
O43 - CFD: 2014-12-27 - 21:18:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
O43 - CFD: 2015-02-20 - 16:35:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader HD
O43 - CFD: 2014-12-22 - 15:26:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZD Soft
O43 - CFD: 2015-03-16 - 23:00:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 2015-01-29 - 02:59:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoner Photo Studio 16
O43 - CFD: 2015-03-15 - 03:21:42 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3
O43 - CFD: 2014-11-23 - 21:05:39 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Abelssoft
O43 - CFD: 2012-07-26 - 19:23:26 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Ableton
O43 - CFD: 2015-03-01 - 14:56:57 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Adobe
O43 - CFD: 2015-01-22 - 09:40:06 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 2015-02-04 - 13:07:35 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Apple Computer
O43 - CFD: 2015-01-21 - 16:19:12 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ArcSoft
O43 - CFD: 2014-12-25 - 23:58:44 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Ashampoo
O43 - CFD: 2015-02-03 - 20:38:09 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\autosave
O43 - CFD: 2015-02-04 - 23:32:36 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Avanquest
O43 - CFD: 2015-02-14 - 00:06:48 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\AVS4YOU
O43 - CFD: 2015-01-22 - 09:40:06 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\calibre
O43 - CFD: 2015-01-01 - 18:07:05 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\CrashPlan
O43 - CFD: 2014-11-05 - 20:04:49 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Developerts LLC USA
O43 - CFD: 2015-02-06 - 01:13:22 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Digiarty
O43 - CFD: 2015-02-24 - 16:00:02 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Downloaded Installations
O43 - CFD: 2015-02-27 - 21:23:12 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Driver Magician
O43 - CFD: 2014-11-15 - 11:21:27 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\DriverCure
O43 - CFD: 2015-02-13 - 23:32:07 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\dvdcss
O43 - CFD: 2015-03-09 - 11:21:57 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\DVDVideoSoft
O43 - CFD: 2014-11-28 - 21:57:49 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\DxO Labs
O43 - CFD: 2014-12-17 - 15:16:47 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Easy Macro Recorder
O43 - CFD: 2015-01-31 - 00:54:11 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Elaborate Bytes
O43 - CFD: 2015-02-19 - 11:15:28 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Engelmann Media
O43 - CFD: 2015-03-09 - 12:35:43 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\EurekaLog
O43 - CFD: 2014-11-06 - 10:42:43 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Expert PDF 7
O43 - CFD: 2014-11-05 - 09:13:18 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Express Uninstaller
O43 - CFD: 2015-02-24 - 13:05:40 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Foxit Software
O43 - CFD: 2015-01-28 - 12:20:43 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\FreeFileSync
O43 - CFD: 2015-03-10 - 13:44:20 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Google
O43 - CFD: 2014-11-23 - 12:29:56 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\HDRsoft
O43 - CFD: 2014-12-09 - 13:07:55 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\HDX4 GmbH
O43 - CFD: 2015-03-09 - 11:05:57 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Identities
O43 - CFD: 2014-12-07 - 12:26:44 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ImgTransformer
O43 - CFD: 2015-01-24 - 19:53:50 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\iMobie
O43 - CFD: 2015-02-19 - 23:43:29 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\InstallShield
O43 - CFD: 2015-01-22 - 09:40:06 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\IObit
O43 - CFD: 2015-03-11 - 15:51:27 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\iolo
O43 - CFD: 2015-03-11 - 11:26:35 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ioloGovernor
O43 - CFD: 2015-02-26 - 11:38:59 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\iPixSoft
O43 - CFD: 2015-03-16 - 14:25:08 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\KC Softwares
O43 - CFD: 2014-11-04 - 15:25:13 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Leadertech
O43 - CFD: 2015-03-09 - 11:32:03 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Leawo
O43 - CFD: 2015-02-03 - 18:16:38 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Logishrd
O43 - CFD: 2015-02-03 - 18:16:23 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Logitech
O43 - CFD: 2015-02-08 - 00:19:39 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Macromedia
O43 - CFD: 2015-01-31 - 00:54:10 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\MAGIX
O43 - CFD: 2015-03-08 - 11:43:06 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Malwarebytes
O43 - CFD: 2014-11-11 - 12:08:12 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\MenuTemplate
O43 - CFD: 2015-01-31 - 00:54:10 - [] -S--D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft
O43 - CFD: 2014-11-07 - 10:58:29 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Mozilla
O43 - CFD: 2015-03-16 - 22:27:54 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\NCH Software
O43 - CFD: 2014-12-18 - 23:12:39 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Nero
O43 - CFD: 2014-12-10 - 01:46:17 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\NVIDIA
O43 - CFD: 2015-03-01 - 15:12:51 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\onOne Software
O43 - CFD: 2015-02-23 - 11:56:48 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Opera Software
O43 - CFD: 2014-11-15 - 11:21:27 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ParetoLogic =>PUP.Paretologic
O43 - CFD: 2014-12-10 - 00:51:49 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\PCRx =>PUP.PCRx
O43 - CFD: 2014-11-03 - 22:42:38 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\PearlMountain
O43 - CFD: 2015-02-07 - 18:09:30 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Plagiarism Checker X, LLC
O43 - CFD: 2014-12-14 - 00:08:07 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\PowerISO
O43 - CFD: 2014-11-07 - 11:22:42 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ProcessLasso
O43 - CFD: 2015-01-22 - 09:40:05 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\proDAD
O43 - CFD: 2015-03-10 - 02:22:34 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ProductData
O43 - CFD: 2014-12-07 - 14:04:20 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\RegistryKeys
O43 - CFD: 2015-01-31 - 00:54:10 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\RegistryOptimizer
O43 - CFD: 2015-03-09 - 11:21:15 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\RHEng
O43 - CFD: 2014-11-15 - 12:28:29 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ShareLock
O43 - CFD: 2015-02-26 - 02:08:56 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Skype
O43 - CFD: 2015-02-16 - 12:20:52 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\SoftMaker
O43 - CFD: 2015-03-10 - 13:51:52 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\SparkTrust =>Rogue.PCCleanerPlus
O43 - CFD: 2015-02-25 - 00:56:42 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\SpringPublisher
O43 - CFD: 2014-11-04 - 09:44:53 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\SuperEasy Software
O43 - CFD: 2015-01-04 - 21:05:13 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\TEBookConverter
O43 - CFD: 2015-02-16 - 14:48:12 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\tiger-k
O43 - CFD: 2015-01-30 - 13:11:58 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\TreeCardGames
O43 - CFD: 2015-02-26 - 01:59:46 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\TuneUpMedia
O43 - CFD: 2015-01-31 - 12:52:30 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Tv-Plug-In
O43 - CFD: 2015-01-16 - 22:43:38 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\UltimateZip
O43 - CFD: 2015-01-26 - 13:56:36 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Video Converter
O43 - CFD: 2015-02-20 - 22:15:17 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\vlc
O43 - CFD: 2015-02-21 - 15:25:39 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\xm1
O43 - CFD: 2015-02-20 - 16:41:38 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 2014-12-22 - 15:34:20 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ZD Soft
O43 - CFD: 2015-03-16 - 23:08:24 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 2015-01-29 - 02:59:46 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Zoner
O43 - CFD: 2014-12-09 - 22:53:18 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\4kdownload.com
O43 - CFD: 2015-02-04 - 16:21:02 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Abelssoft
O43 - CFD: 2015-02-25 - 12:03:13 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Adobe
O43 - CFD: 2015-02-19 - 12:15:47 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Aiseesoft Studio
O43 - CFD: 2014-11-05 - 09:14:42 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Alternate
O43 - CFD: 2015-02-02 - 11:59:03 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Apple
O43 - CFD: 2015-02-02 - 12:53:54 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Apple Computer
O43 - CFD: 2014-10-31 - 14:44:36 - [] -SH-D C:\Users\JEAN-GUY-PC\AppData\Local\Application Data
O43 - CFD: 2014-12-27 - 17:36:06 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Apps
O43 - CFD: 2014-11-11 - 16:22:40 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\ashampoo
O43 - CFD: 2015-01-10 - 00:18:55 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Ashampoo Music Studio 5
O43 - CFD: 2015-02-13 - 00:04:52 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Avanquest
O43 - CFD: 2014-11-02 - 22:21:02 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Avg
O43 - CFD: 2015-03-15 - 03:21:43 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Local\CrashDumps
O43 - CFD: 2014-12-06 - 20:48:22 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\CrashRpt
O43 - CFD: 2014-11-03 - 13:38:58 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Developerts_LLC =>PUP.WinRST
O43 - CFD: 2014-12-12 - 11:28:27 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Diagnostics
O43 - CFD: 2014-11-28 - 21:57:49 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\DxO_Labs
O43 - CFD: 2015-01-22 - 09:40:13 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2014-11-12 - 20:41:04 - [] -SH-D C:\Users\JEAN-GUY-PC\AppData\Local\EmieBrowserModeList
O43 - CFD: 2014-11-03 - 08:43:34 - [] -SH-D C:\Users\JEAN-GUY-PC\AppData\Local\EmieSiteList
O43 - CFD: 2014-11-03 - 08:43:34 - [] -SH-D C:\Users\JEAN-GUY-PC\AppData\Local\EmieUserList
O43 - CFD: 2015-02-09 - 23:55:52 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\ESET
O43 - CFD: 2015-03-14 - 11:26:13 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 2015-03-14 - 23:27:53 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Google
O43 - CFD: 2014-10-31 - 14:44:36 - [] -SH-D C:\Users\JEAN-GUY-PC\AppData\Local\Historique
O43 - CFD: 2014-11-25 - 10:25:11 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\IM
O43 - CFD: 2015-02-21 - 14:46:42 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\ImpressionFacile
O43 - CFD: 2014-11-03 - 17:41:36 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\IsolatedStorage
O43 - CFD: 2015-02-28 - 10:45:23 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Leawo
O43 - CFD: 2015-02-10 - 14:15:52 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Leawo Blu-ray Creator
O43 - CFD: 2015-03-10 - 00:16:35 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Lenovo
O43 - CFD: 2015-02-03 - 18:18:05 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Logishrd
O43 - CFD: 2014-11-04 - 15:34:17 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Logitech® Webcam Software
O43 - CFD: 2014-11-03 - 12:34:40 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\MFAData
O43 - CFD: 2015-02-17 - 22:20:31 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Microsoft
O43 - CFD: 2015-03-08 - 12:25:02 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Local\MigWiz
O43 - CFD: 2014-12-21 - 14:14:13 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Movavi
O43 - CFD: 2015-01-22 - 09:40:07 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Nero
O43 - CFD: 2015-01-21 - 20:57:51 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\NGPR
O43 - CFD: 2015-03-09 - 00:01:09 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\NVIDIA
O43 - CFD: 2015-03-09 - 00:10:57 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\NVIDIA Corporation
O43 - CFD: 2014-11-07 - 10:58:34 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\ObviousIdea
O43 - CFD: 2015-02-23 - 11:56:48 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Opera Software
O43 - CFD: 2015-03-12 - 22:46:35 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Photo Explosion
O43 - CFD: 2015-01-11 - 21:26:45 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\photoOptimizeHistoryDataBase
O43 - CFD: 2015-02-28 - 13:41:49 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Picture Instruments
O43 - CFD: 2014-12-28 - 14:55:42 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\proDAD_GmbH
O43 - CFD: 2015-02-04 - 16:20:50 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Programs
O43 - CFD: 2014-11-03 - 15:00:27 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\SFPC_Auto_Updater
O43 - CFD: 2014-11-29 - 00:13:24 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Skype
O43 - CFD: 2015-03-14 - 16:10:15 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Local\SmartWeb
O43 - CFD: 2015-03-16 - 23:07:38 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Temp
O43 - CFD: 2014-10-31 - 14:44:36 - [] -SH-D C:\Users\JEAN-GUY-PC\AppData\Local\Temporary Internet Files
O43 - CFD: 2015-02-23 - 11:52:18 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\TuneUp Software
O43 - CFD: 2014-12-26 - 16:55:01 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\VirtualStore
O43 - CFD: 2015-01-22 - 09:40:07 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Windows Live
O43 - CFD: 2014-11-04 - 18:32:09 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Windows Live Writer
O43 - CFD: 2014-12-27 - 21:18:27 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Wondershare
O43 - CFD: 2015-02-05 - 15:25:48 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Zemana
O43 - CFD: 2015-01-29 - 02:59:48 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Local\Zoner
O43 - CFD: 2009-07-14 - 00:54:32 - [] R---D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015-03-11 - 15:50:08 - [] R---D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015-03-09 - 01:12:16 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Animated Screensaver Maker
O43 - CFD: 2015-02-10 - 14:26:43 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AoaoPhoto Digital Studio
O43 - CFD: 2014-11-23 - 11:49:40 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 2012-07-26 - 19:20:37 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
O43 - CFD: 2015-02-21 - 13:52:42 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avanquest
O43 - CFD: 2015-02-20 - 22:33:26 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2015-02-04 - 12:29:29 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hetman Software
O43 - CFD: 2015-02-16 - 17:20:28 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\M-Audio-Delta-44
O43 - CFD: 2009-07-14 - 00:49:38 - [] R---D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014-11-15 - 11:21:20 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic =>PUP.Paretologic
O43 - CFD: 2015-03-10 - 13:07:01 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RecoveryMechanic
O43 - CFD: 2015-02-25 - 01:00:37 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Solveig Multimedia
O43 - CFD: 2015-03-14 - 23:21:27 - [] R---D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015-02-04 - 21:49:34 - [0] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Texmaker
O43 - CFD: 2015-02-05 - 18:45:57 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Converter Genius
O43 - CFD: 2015-02-20 - 11:32:28 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video to Picture
O43 - CFD: 2015-02-05 - 01:11:39 - [] ----D C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WonderFox Soft
~ Program Folder: 536 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.65CF54B1D8CB1B085B6D8BC210E2C45F] - 2015-03-06 - 00:36:56 ---A- . (.Microsoft Corporation - DLL du schéma d’audit de sécurité.) -- C:\Windows\System32\adtschema.dll [686080]
O44 - LFC:[MD5.378B175D0F0A1C38026F280BF6C8D0C6] - 2015-03-06 - 00:38:57 ---A- . (.Microsoft Corporation - DLL des événements d’audit de la sécurité.) -- C:\Windows\System32\msaudite.dll [146432]
O44 - LFC:[MD5.543553AD3E30CB261C8B436DF644F23E] - 2015-03-06 - 00:39:16 ---A- . (.Microsoft Corporation - Nom d’audit des objets système.) -- C:\Windows\System32\msobjs.dll [60416]
O44 - LFC:[MD5.FB95F6E11AAD62F24C2DB01E6E9D7BE7] - 2015-03-06 - 00:41:31 ---A- . (.Microsoft Corporation - Programme de stratégie d’audit.) -- C:\Windows\System32\auditpol.exe [64000]
O44 - LFC:[MD5.B6C7729936AAF8E0697F0A7DCA82CED8] - 2015-03-06 - 00:41:46 ---A- . (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe [31232]
O44 - LFC:[MD5.92F920EE9EAF7306B4AB8124D474AB52] - 2015-03-06 - 00:42:20 ---A- . (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll [22016]
O44 - LFC:[MD5.DB2904A4CEBC39DF8892A613BEC71512] - 2015-03-06 - 00:42:27 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1461760]
O44 - LFC:[MD5.1DB278E5834B08F9A184F953F2D31FF7] - 2015-03-06 - 00:42:27 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [728064]
O44 - LFC:[MD5.28CC69865D5DC458EDDCEA35F01D71DA] - 2015-03-06 - 00:42:29 ---A- . (.Microsoft Corporation - Bibliothèque de chiffrement Windows.) -- C:\Windows\System32\ncrypt.dll [309760]
O44 - LFC:[MD5.6536829F6EA1149527728A210F493B79] - 2015-03-06 - 00:42:29 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [314880]
O44 - LFC:[MD5.473BCBFFC55C9FE33D502035322E759D] - 2015-03-06 - 00:42:33 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\secur32.dll [28160]
O44 - LFC:[MD5.3807605BDA83C0DA729A5219CEBB9041] - 2015-03-06 - 00:42:33 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll [341504]
O44 - LFC:[MD5.54CD467B3A6DA02E9449DB7FB1830612] - 2015-03-06 - 00:42:35 ---A- . (.Microsoft Corporation - LSA SSPI RPC interface DLL.) -- C:\Windows\System32\sspisrv.dll [29184]
O44 - LFC:[MD5.7BC39275661EA7DEE54135AA26DF733E] - 2015-03-06 - 00:42:35 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\sspicli.dll [136192]
O44 - LFC:[MD5.E1404987DCD392AF9D67F6A26CE21175] - 2015-03-06 - 00:42:36 ---A- . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll [86528]
O44 - LFC:[MD5.9B644AC070576AAE701910874C241DBD] - 2015-03-06 - 00:42:39 ---A- . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll [210944]
O44 - LFC:[MD5.56ED3EE5FED6BF2FC1305CF872042868] - 2015-03-06 - 00:56:10 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [95680]
O44 - LFC:[MD5.8BA90F480705D7153AD0060CCA62222A] - 2015-03-06 - 00:56:10 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys [155576]
O44 - LFC:[MD5.EF62A1D0A9EA4EB8A9A48A0FBCE77AB1] - 2015-03-08 - 22:30:19 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco6434144.dll [1907400]
O44 - LFC:[MD5.0B17C1499F6CF7F852B9CC94CFDBF102] - 2015-03-08 - 22:30:19 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco6434144.dll [1555656]
O44 - LFC:[MD5.DBFE7B2DF103F74AE51840B3C5F25FE9] - 2015-03-08 - 22:58:25 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [38032]
O44 - LFC:[MD5.8D852A7D6148957413420AF6081EE6C4] - 2015-03-08 - 22:58:25 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\nvaudcap64v.dll [35472]
O44 - LFC:[MD5.BE2C89FB061849265EE3C35DAFC59775] - 2015-03-08 - 22:58:46 ---A- . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\System32\nvspcap64.dll [1514528]
O44 - LFC:[MD5.CA60B4ADEB23406BAAB4CFCE11592DB9] - 2015-03-08 - 22:58:46 ---A- . (.NVIDIA Corporation - NVIDIA GFE - Notification Bridge.) -- C:\Windows\System32\nvspbridge64.dll [1756424]
O44 - LFC:[MD5.7160FC226391C0B50C85571FA1A546E5] - 2015-03-08 - 22:58:58 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_43.dll [2401112]
O44 - LFC:[MD5.AD7FA9485059F4DC53C98B49CAB13F0B] - 2015-03-08 - 22:59:02 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_43.dll [511328]
O44 - LFC:[MD5.5CE5144649217ADA3A56EAFD6A10D867] - 2015-03-09 - 08:23:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 341.44.) -- C:\Windows\System32\nvcuda.dll [13828032]
O44 - LFC:[MD5.F4599D1757E6ED1E2D87C162D004781C] - 2015-03-09 - 08:23:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 341.4.) -- C:\Windows\System32\nvcuvid.dll [4244680]
O44 - LFC:[MD5.DA068F983BDDCCB773046564EC110920] - 2015-03-09 - 08:23:24 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 341.44.) -- C:\Windows\System32\nvcompiler.dll [22993224]
O44 - LFC:[MD5.25BF99C01B5B14BC1E241B34A7041F2E] - 2015-03-09 - 08:23:24 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 341.44.) -- C:\Windows\System32\nvd3dumx.dll [17559432]
O44 - LFC:[MD5.665A0CFCC00BBD0F7BB4D38F1BAAFB27] - 2015-03-09 - 08:23:25 ---A- . (.NVIDIA Corporation - NVIDIA CUDA 6.5.45 OpenCL 1.1 Driver, Versi.) -- C:\Windows\System32\nvopencl.dll [13916280]
O44 - LFC:[MD5.30AC3C555E25045447876DB957A72109] - 2015-03-09 - 08:23:25 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv64.dll [31515280]
O44 - LFC:[MD5.710F79B9130FE241494F27A686391A1E] - 2015-03-09 - 08:23:25 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 341.44.) -- C:\Windows\System32\nvwgf2umx.dll [18634072]
O44 - LFC:[MD5.EBB6A74A689929DE5D4E527615E79807] - 2015-03-09 - 08:23:25 ---A- . (.NVIDIA Corporation - NVIDIA Front Buffer Capture Library, Versio.) -- C:\Windows\System32\NvFBC64.dll [902344]
O44 - LFC:[MD5.16D8B604EE4B8AAFD7A582863B2492DF] - 2015-03-09 - 08:23:25 ---A- . (.NVIDIA Corporation - NVIDIA In-band Frame Rendering Library, Ver.) -- C:\Windows\System32\NvIFR64.dll [944328]
O44 - LFC:[MD5.5D89C0070BC2643117CF33D0367AFABA] - 2015-03-09 - 08:23:25 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12894024]
O44 - LFC:[MD5.CBA2694BFC61F371181F2BE2BCD66C40] - 2015-03-10 - 19:16:21 ---A- . (.Microsoft Corporation - Codec pour photographie Windows Media Photo.) -- C:\Windows\System32\WMPhoto.dll [465920]
O44 - LFC:[MD5.E88A78273D429554B6B2D2BDA945ED9B] - 2015-03-10 - 19:16:23 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\System32\msctf.dll [1067520]
O44 - LFC:[MD5.A0DEE06D68F210CA090FD4D9A33CDC12] - 2015-03-10 - 19:16:24 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3204096]
O44 - LFC:[MD5.0A4D03A4C0F908B15B8A4C48FB18F197] - 2015-03-10 - 19:16:27 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll [1424896]
O44 - LFC:[MD5.01F9FEB7F0C84EA1AC6A9B4D7C6B0435] - 2015-03-10 - 19:16:29 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [14177280]
O44 - LFC:[MD5.27667A788130A7F7A5858DE27572E6D7] - 2015-03-10 - 19:16:48 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [459336]
O44 - LFC:[MD5.1193400D8E29A5A010135FB09A4EB1E8] - 2015-03-10 - 19:16:50 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [25021440]
O44 - LFC:[MD5.1C393E42928BF55B3796E732B678CD5B] - 2015-03-10 - 19:16:51 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [88064]
O44 - LFC:[MD5.667229C8F194D619D12F05943D7F61F0] - 2015-03-10 - 19:16:51 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [199680]
O44 - LFC:[MD5.36F99BD8A0F09BDBB7850A138845A014] - 2015-03-10 - 19:16:51 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2358784]
O44 - LFC:[MD5.687E11F36832BFF65EF0CD2FA3DB1966] - 2015-03-10 - 19:16:51 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [584192]
O44 - LFC:[MD5.4870B24EA7D4EEF5E1C4675AC47796B8] - 2015-03-10 - 19:16:52 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll [1359360]
O44 - LFC:[MD5.40DF85D8B2B0171EF5F23AA1B5CD9A62] - 2015-03-10 - 19:16:52 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [6035456]
O44 - LFC:[MD5.A9190899A35431CF8ABBEF5E1BB0C8F9] - 2015-03-10 - 19:16:52 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [814080]
O44 - LFC:[MD5.D373113A84C12BA7F07CE1E9CAF4747F] - 2015-03-10 - 19:16:52 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [92160]
O44 - LFC:[MD5.FB8C4EE9889790466A0174923410649E] - 2015-03-10 - 19:16:52 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [633856]
O44 - LFC:[MD5.2335F6BF8A127E31EB0E2D9A82F188A0] - 2015-03-10 - 19:16:52 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [14398976]
O44 - LFC:[MD5.A1264D16AF506125C974775C833A063C] - 2015-03-10 - 19:16:53 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [54784]
O44 - LFC:[MD5.1EC0BF321D3B14D02B9A8BAC134570F4] - 2015-03-10 - 19:16:53 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe [144384]
O44 - LFC:[MD5.D0767EA3A59FA70C7ACF59EE0C8CD42A] - 2015-03-10 - 19:16:54 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [66560]
O44 - LFC:[MD5.9E9B757A677927110393A505822D9174] - 2015-03-10 - 19:16:54 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [800768]
O44 - LFC:[MD5.22C4867C690C38B18B2C1A0B072CD0C4] - 2015-03-10 - 19:16:54 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2125824]
O44 - LFC:[MD5.62269DEFF17AB006217330A24EA8577B] - 2015-03-10 - 19:16:54 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2886144]
O44 - LFC:[MD5.501A38B72FA264605123B4FACF53F057] - 2015-03-10 - 19:16:55 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1548288]
O44 - LFC:[MD5.F5E5E96E188934BAB22C0916C91F46B3] - 2015-03-10 - 19:16:55 ---A- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll [4096]
O44 - LFC:[MD5.5443F21A33DB376734DBE47F7635542C] - 2015-03-10 - 19:16:55 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [801280]
O44 - LFC:[MD5.132862B0FC4A1B7CB45C274DE169DBB2] - 2015-03-10 - 19:16:55 ---A- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe [968704]
O44 - LFC:[MD5.585B29EFB4954902FD53C4F8F9A0D39F] - 2015-03-10 - 19:16:55 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll [389800]
O44 - LFC:[MD5.D3EA5B5E606EF17804B5BF565BEAD937] - 2015-03-10 - 19:16:56 ---A- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [77824]
O44 - LFC:[MD5.D2BF72C0A9E26BE91C1DEEACF7C430E0] - 2015-03-10 - 19:16:56 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [34304]
O44 - LFC:[MD5.7FA2B43D940DF41E46B8049B59AB6639] - 2015-03-10 - 19:16:56 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [718848]
O44 - LFC:[MD5.289581F0FDA6B93A0FAFE979486AD6FA] - 2015-03-10 - 19:16:57 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640]
O44 - LFC:[MD5.2CA6A98547E799812489E5ADF2774D97] - 2015-03-10 - 19:16:57 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [114688]
O44 - LFC:[MD5.08892A4ED848386E6B901723C1EF611B] - 2015-03-10 - 19:16:57 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864]
O44 - LFC:[MD5.1FB81632476857E8451DDA8A456EF3CE] - 2015-03-10 - 19:16:58 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de processus d’arrière-.) -- C:\Windows\System32\ubpm.dll [215552]
O44 - LFC:[MD5.B5CBA15C9DEDBE914D24AA1494A82DF5] - 2015-03-10 - 19:17:14 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll [3179520]
O44 - LFC:[MD5.35308B0F821CE1E8EDC2FAB96F3073F3] - 2015-03-10 - 19:17:14 ---A- . (.Microsoft Corporation - Remote Desktop Protocol Group Policy Extens.) -- C:\Windows\System32\RdpGroupPolicyExtension.dll [16384]
O44 - LFC:[MD5.15C3986C015EA186BCB4E6096528D656] - 2015-03-10 - 19:17:14 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll [243200]
O44 - LFC:[MD5.8364A0F7633414DC5C50A37295B1FAFF] - 2015-03-10 - 19:19:30 ---A- . (.Microsoft Corporation - DLL d’erreur Media Foundation.) -- C:\Windows\System32\mferror.dll [2048]
O44 - LFC:[MD5.DBCD54B841F2B216B2F0F86E18205C22] - 2015-03-10 - 19:19:31 ---A- . (.Microsoft Corporation - ApiSet Schema DLL.) -- C:\Windows\System32\apisetschema.dll [6656]
O44 - LFC:[MD5.D3F1F9C784BCCDF2C880669D69FC1970] - 2015-03-10 - 19:19:31 ---A- . (.Microsoft Corporation - Microsoft Windows Media Component Removal F.) -- C:\Windows\System32\dxmasf.dll [5120]
O44 - LFC:[MD5.D3F1F9C784BCCDF2C880669D69FC1970] - 2015-03-10 - 19:19:31 ---A- . (.Microsoft Corporation - Microsoft Windows Media Component Removal F.) -- C:\Windows\System32\msdxm.ocx [5120]
O44 - LFC:[MD5.77D49942BD5DC97723ABC8A6D2757B6E] - 2015-03-10 - 19:19:31 ---A- . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.DLL [12625920]
O44 - LFC:[MD5.FE03B35A22C3D2714B494FC2AB32AC5B] - 2015-03-10 - 19:19:31 ---A- . (.Microsoft Corporation - Ressources d’événement de l’Assistant Compa.) -- C:\Windows\System32\pcaevts.dll [8704]
O44 - LFC:[MD5.F43B09E257121ADC501ABE9367FAA850] - 2015-03-10 - 19:19:31 ---A- . (.Microsoft Corporation - Windows Media Player System Preparation DLL.) -- C:\Windows\System32\spwmp.dll [9728]
O44 - LFC:[MD5.EA285B947EE48103697CDA53D76C9EEC] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\Windows\System32\appidcertstorecheck.exe [17920]
O44 - LFC:[MD5.90C53BD47979FB8814F465A08B885102] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [61440]
O44 - LFC:[MD5.589852B65C91F574E980ABDB8205080A] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\Windows\System32\appidpolicyconverter.exe [146944]
O44 - LFC:[MD5.ED6BF1E1C4F40F600DFEC0CB101A1789] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Assistant Compatibilité des programmes.) -- C:\Windows\System32\pcalua.exe [9728]
O44 - LFC:[MD5.3A7BC2DC99D3C5B172465E890B3C3B14] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll [440832]
O44 - LFC:[MD5.7BC64DEEFD0E6812E21DE89F0CF50A49] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [500224]
O44 - LFC:[MD5.84DB8EB3C184BB549ED90A842020F278] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - DLL des API d’identité de l’application.) -- C:\Windows\System32\appidapi.dll [58880]
O44 - LFC:[MD5.3029D8E78E4BF18A0551E22CD4CB892C] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - DirectShow DVD PlayBack Runtime..) -- C:\Windows\System32\qdvd.dll [371712]
O44 - LFC:[MD5.00EE5D3E16D42F25F7813ACFA10EC803] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - EXE de pipeline protégé par Media Foundatio.) -- C:\Windows\System32\mfpmp.exe [24576]
O44 - LFC:[MD5.63D3C30B497347495B8EA78A38188969] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Gestionnaire de sessions Windows.) -- C:\Windows\System32\smss.exe [112640]
O44 - LFC:[MD5.6E974F1C384615DEB0710E44F4847351] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe [126464]
O44 - LFC:[MD5.C4937B9D6EF4D309A60054D4D00EE9DB] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - MUI Callback for Bcd.) -- C:\Windows\System32\setbcdlocale.dll [63488]
O44 - LFC:[MD5.56FD1BC602EE0E7949F92EE2EE327B72] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\System32\EncDump.dll [284672]
O44 - LFC:[MD5.947938F265D7CB99653CDFF2B3C0468D] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Media Foundation Proxy DLL.) -- C:\Windows\System32\mfps.dll [206848]
O44 - LFC:[MD5.29088A5723C81BF75AD909AAB6A91610] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Microsoft® Windows System Restore Client Li.) -- C:\Windows\System32\srclient.dll [50176]
O44 - LFC:[MD5.0F79883E27BB1AFE2D9BB4656A1CEFCD] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Mount Point Manger Sysprep Utility Library.) -- C:\Windows\System32\msmmsp.dll [11264]
O44 - LFC:[MD5.BE7DA70C9F4A97CCA9ED78B70BCFC9AC] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Processus d'exécution client-serveur.) -- C:\Windows\System32\csrsrv.dll [43520]
O44 - LFC:[MD5.27793FE3FF2D0123896D1A01A2D222C7] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Program Compatibility Assistant Diagnostic.) -- C:\Windows\System32\pcadm.dll [37376]
O44 - LFC:[MD5.A84C94CF795E08BBB99E4E145F9E81A3] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Program Compatibility Assistant Helper.) -- C:\Windows\System32\pcawrk.exe [11264]
O44 - LFC:[MD5.CBE684883A45E5B047DA6B4AC46C2112] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Programme d’installation R&R.) -- C:\Windows\System32\rrinstaller.exe [55808]
O44 - LFC:[MD5.93C7D1C3941086162B433107D9E8BCE3] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\System32\rstrui.exe [296960]
O44 - LFC:[MD5.1CD76A83B9E8E9A5A3519B39E28354D9] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\System32\cryptsvc.dll [187904]
O44 - LFC:[MD5.C0AE7ABD87254B2789C8CB34AF274A65] - 2015-03-10 - 19:19:32 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll [296448]
O44 - LFC:[MD5.483221CC1AAC288368292899E32B6B9B] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - Bibliothèque principale de Restauration du.) -- C:\Windows\System32\srcore.dll [503808]
O44 - LFC:[MD5.1BE9877B199184D7657BC4CFCB7B4A99] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll [140288]
O44 - LFC:[MD5.29143C7827F9F2AC543E792A8C63FBB0] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - DLL Media Foundation.) -- C:\Windows\System32\mf.dll [4121600]
O44 - LFC:[MD5.AE66D26930CA536706078537CB5AC840] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - DRM ActiveX Network Object.) -- C:\Windows\System32\msnetobj.dll [325632]
O44 - LFC:[MD5.577D0B947B49DB83E2054FA169B2ECBF] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll [229376]
O44 - LFC:[MD5.999A7FD4D9F8B1656F1167D94743E50A] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - Module d’intégrité du code.) -- C:\Windows\System32\ci.dll [457400]
O44 - LFC:[MD5.B7E752FFD95DC61FCB7A6E70E37175E5] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - OS Loader.) -- C:\Windows\System32\winload.efi [693176]
O44 - LFC:[MD5.7A4064169FBA91F39DB1FDC094A18DA8] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - OS Loader.) -- C:\Windows\System32\winload.exe [619056]
O44 - LFC:[MD5.6968D02DC38757C3FBE7ED7C2F9670AA] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [680960]
O44 - LFC:[MD5.72D4757510FDA69D729169C00AFC211E] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - Service d’identité de l’application.) -- C:\Windows\System32\appidsvc.dll [32256]
O44 - LFC:[MD5.F88B4A9EA1A956F09D5001D08B546228] - 2015-03-10 - 19:19:33 ---A- . (.Microsoft Corporation - Windows Media Secure Content Provider.) -- C:\Windows\System32\msscp.dll [641024]
O44 - LFC:[MD5.6AEEC5677AD522786CED371A7BEE620C] - 2015-03-10 - 19:19:34 ---A- . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\System32\winresume.efi [616360]
O44 - LFC:[MD5.73D81B5B4B2655CB1B5662E770F755D5] - 2015-03-10 - 19:19:34 ---A- . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\System32\winresume.exe [532176]
O44 - LFC:[MD5.94BC902494AFC9F5EBC5FBB61445D73F] - 2015-03-10 - 19:19:34 ---A- . (.Microsoft Corporation - Cryptographic Service Provider API.) -- C:\Windows\System32\cryptsp.dll [82432]
O44 - LFC:[MD5.0BC72EA80234382701EAFC1BE0ECD7E4] - 2015-03-10 - 19:19:34 ---A- . (.Microsoft Corporation - DLL de la plateforme Media Foundation.) -- C:\Windows\System32\mfplat.dll [432128]
O44 - LFC:[MD5.87BCD1034CBF33537D4D4C251D39BA26] - 2015-03-10 - 19:19:34 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [94656]
O44 - LFC:[MD5.DB2D62AA2DF6B1F3D690A9EC9701AA2C] - 2015-03-10 - 19:19:34 ---A- . (.Microsoft Corporation - Service de l’Assistant Compatibilité des pr.) -- C:\Windows\System32\pcasvc.dll [188416]
O44 - LFC:[MD5.5FFEE6CA63E27CBA1F32002743E58F3C] - 2015-03-10 - 19:19:35 ---A- . (.Microsoft Corporation - DLL de rendu vidéo amélioré.) -- C:\Windows\System32\evr.dll [631808]
O44 - LFC:[MD5.410F6B1BE785F3630B4782F8E3D85A24] - 2015-03-10 - 19:19:35 ---A- . (.Microsoft Corporation - Fournisseur de l’interface Microsoft Trust.) -- C:\Windows\System32\cryptui.dll [1069056]
O44 - LFC:[MD5.8DFDB70E3E56C2F1AE09CB3C03E266E5] - 2015-03-10 - 19:19:35 ---A- . (.Microsoft Corporation - Module d’exécution DirectShow..) -- C:\Windows\System32\quartz.dll [1574400]
O44 - LFC:[MD5.ED6E75158D28D33A2E2A020AC5B2B59D] - 2015-03-10 - 19:19:35 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\System32\Drivers\PEAuth.sys [663552]
O44 - LFC:[MD5.3FECBED0EACABD22E024EF4E50CF987B] - 2015-03-10 - 19:19:36 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll [1480192]
O44 - LFC:[MD5.B2F02AB28864B6D5B5B9BEDA565D41BB] - 2015-03-10 - 19:19:36 ---A- . (.Microsoft Corporation - DRM Migration DLL.) -- C:\Windows\System32\drmmgrtn.dll [497664]
O44 - LFC:[MD5.FDA5F186596288F0B9ECE9DC7A5AA868] - 2015-03-10 - 19:19:37 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [5554104]
O44 - LFC:[MD5.7F4D59E70DD6E757E96B40570B498D5C] - 2015-03-10 - 19:19:37 ---A- . (.Microsoft Corporation - Windows Media DRM SDK DLL.) -- C:\Windows\System32\wmdrmsdk.dll [782848]
O44 - LFC:[MD5.BD311BB00DD0D656C091AC8888C2369D] - 2015-03-10 - 19:19:37 ---A- . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\System32\wmp.dll [14632960]
O44 - LFC:[MD5.A53A63831185FF5339E76221BE45E6B9] - 2015-03-10 - 19:19:38 ---A- . (.Microsoft Corporation - BlackBox DLL.) -- C:\Windows\System32\blackbox.dll [842240]
O44 - LFC:[MD5.DF6104DCED89E13A78BA5539CEF5100A] - 2015-03-10 - 19:19:38 ---A- . (.Microsoft Corporation - DRMv2 Client DLL.) -- C:\Windows\System32\drmv2clt.dll [1202176]
O44 - LFC:[MD5.9D1E1D70C0FB437645D8BF3AFEE273E6] - 2015-03-11 - 10:03:48 ---A- . (.EldoS Corporation - RawDisk Driver. Allows write access to file.) -- C:\Windows\System32\Drivers\rawdsk3.sys [32912]
O44 - LFC:[MD5.4D7DFDCE8198221DEE8C50ABA2756A95] - 2015-03-11 - 10:26:35 ---A- . (.Microsoft Corporation - Offline registry DLL.) -- C:\Windows\System32\offreg.dll [69000]
O44 - LFC:[MD5.9F5E27C8B88A8DA1DC93E93A5C27BB9B] - 2015-03-11 - 10:26:37 ---A- . (.Raxco Software, Inc. - PerfectDisk OptiWrite Filter Driver.) -- C:\Windows\System32\Drivers\PDFsFilter.sys [83224]
O44 - LFC:[MD5.31FB7807AA2AD9FEA2759440A8BEE87B] - 2015-03-11 - 10:26:40 ---A- . (.iolo technologies, LLC - Boot-time defragmentator.) -- C:\Windows\System32\iolobtdfg.exe [57584]
O44 - LFC:[MD5.27B84023E2761C52EE464652E253DF03] - 2015-03-11 - 10:26:40 ---A- . (.iolo technologies, LLC - Registry compactor.) -- C:\Windows\System32\smrgdf.exe [26184]
O44 - LFC:[MD5.BBFB6D264B884F91FC8BEC7FADE55C9B] - 2015-03-11 - 10:26:46 ---A- . (.iolo technologies, LLC - iolo Incinerator ®.) -- C:\Windows\System32\Incinerator64.dll [2135040]
O44 - LFC:[MD5.BF7E3A603CA922B25B81DFA503827A11] - 2015-03-11 - 10:28:00 ---A- . (...) -- C:\Windows\System32\ioloBootDefrag.cfg [406]
O44 - LFC:[MD5.000A77BDB94C42A90137E8368D3A47AA] - 2015-03-11 - 14:06:59 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [122905848]
O44 - LFC:[MD5.C1C8D184EAD7191C1C0D3240995BFEA8] - 2015-03-11 - 14:43:27 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [380824]
O44 - LFC:[MD5.F037314138494EE6BD7DDC4C19C63012] - 2015-03-11 - 16:26:05 ---A- . (.ESET - ESET Cleaners Driver.) -- C:\Windows\System32\Drivers\ESETCleanersDriver.sys [170280]
O44 - LFC:[MD5.CA43F8904E24BBE49982E4C0B29E6579] - 2015-03-11 - 18:29:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]
O44 - LFC:[MD5.478CC94C937D235CB0A96AB8F2359D81] - 2015-03-11 - 18:29:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400]
O44 - LFC:[MD5.A646C2DDB8C46E9B20A326FAF566646C] - 2015-03-11 - 18:29:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704]
O44 - LFC:[MD5.406E76BE63C65E0BF4B263156320254E] - 2015-03-12 - 21:59:36 ---A- . (...) -- C:\Windows\System32\ScannerSettings [464]
O44 - LFC:[MD5.7222D05B623E6C26BAB0355AB2A99FA1] - 2015-03-12 - 22:02:41 ---A- . (...) -- C:\Windows\System32\ScanResults.xml [3038]
O44 - LFC:[MD5.E7503A6C1A2DADDAF315A989FE453203] - 2015-03-12 - 22:44:10 ---A- . (...) -- C:\Windows\LSExifCleaner.ini [221]
O44 - LFC:[MD5.DCF0D5DB91B09FC456225352CDFD7DE7] - 2015-03-13 - 23:10:42 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [535040]
O44 - LFC:[MD5.483B91BC0AB2EECB480CFE4EF4EF9953] - 2015-03-13 - 23:10:42 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\st646224.dll [250880]
O44 - LFC:[MD5.69BBCB95BDC87973C70280E9E31E4289] - 2015-03-13 - 23:10:42 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\stcplx64.dll [446464]
O44 - LFC:[MD5.2CA941E577B1AE57102396A66E17EF34] - 2015-03-14 - 09:51:51 ---A- . (...) -- C:\Windows\win.ini [643]
O44 - LFC:[MD5.3962532427570897124234EB9E2F0A59] - 2015-03-14 - 10:02:50 ---A- . (...) -- C:\Windows\System32\Native.exe [16224]
O44 - LFC:[MD5.2FD39A98D8153AFEC0554C0565265E25] - 2015-03-14 - 10:17:08 ---A- . (...) -- C:\Windows\Reimage.ini [182] =>Rogue.ReimageRepair
O44 - LFC:[MD5.FC809B3A0685AB548B62D6348C54C493] - 2015-03-14 - 11:40:55 ---A- . (...) -- C:\Windows\System32\reimage.rep [990] =>Rogue.ReimageRepair
O44 - LFC:[MD5.29756BA6D456C6AA88CCC7804C003945] - 2015-03-14 - 11:45:05 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1668256]
O44 - LFC:[MD5.71E8E5734D61D4C0BEE21DFBFA4DCE8D] - 2015-03-14 - 11:45:05 ---A- . (...) -- C:\Windows\System32\perfc009.dat [118008]
O44 - LFC:[MD5.DD9F081F7344E0E1DA03C8AAC18CE940] - 2015-03-14 - 11:45:05 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [145602]
O44 - LFC:[MD5.CF92DC1CFA4E0A340F7F6A81BA68853E] - 2015-03-14 - 11:45:05 ---A- . (...) -- C:\Windows\System32\perfh009.dat [650136]
O44 - LFC:[MD5.22B4A246C6AEC2CD2089AFDC143988C2] - 2015-03-14 - 11:45:05 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [733866]
O44 - LFC:[MD5.BFE2BDC43B0B40F43C3B34625C1402E9] - 2015-03-14 - 12:29:19 ---A- . (...) -- C:\Windows\System32\BasementDusterOff.ini [8504]
O44 - LFC:[MD5.26C43960C99EE861A5D0EDC4DCF3B1C3] - 2015-03-14 - 16:06:20 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752]
O44 - LFC:[MD5.048BCF34252EDF83B88877FF0BEEF5AB] - 2015-03-14 - 20:13:33 ---A- . (...) -- C:\Windows\ntbtlog.txt [1250]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2015-03-14 - 22:01:47 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.5684EBC73AC2EF3D2752D2F849EAFB09] - 2015-03-16 - 13:48:02 ---A- . (...) -- C:\Windows\System32\Drivers\stwrte.log [138348]
O44 - LFC:[MD5.006DA6F5357EB38423F132F4BD327406] - 2015-03-16 - 20:48:04 ---A- . (...) -- C:\DUMPb18d.tmp [271253]
O44 - LFC:[MD5.E53B6CE57BB7BF4E0E7C5063832CA0E4] - 2015-03-16 - 21:23:57 ---A- . (...) -- C:\Windows\PFRO.log [14930]
O44 - LFC:[MD5.E1A859EB10C56D0B7A890622F476B680] - 2015-03-16 - 21:24:05 -S-A- . (...) -- C:\Windows\BootStat.dat [67584]
O44 - LFC:[MD5.CE34EB1D175E86D4EB861310D8297376] - 2015-03-16 - 21:27:58 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2055018]
O44 - LFC:[MD5.4525237DECE14428C5E65C2A6AD77F58] - 2015-03-16 - 21:28:00 ---A- . (...) -- C:\Windows\setupact.log [1794]
~ Files: 172 Scanned in 00mn 06s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
O51 - MPSK:{f695d5cb-8e0f-11e4-91fa-806e6f6e6963}\AutoRun\command. (...) -- N:\FIBPGuard.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"vidc.i420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcod64.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 3 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Acronis Scheduler2 Service [Key] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
O53 - SMSR:HKLM\...\startupreg\AcronisTibMounterMonitor [Key] . (.Acronis International GmbH - Acronis TIB Mounter Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O53 - SMSR:HKLM\...\startupreg\AmIcoSinglun64 [Key] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O53 - SMSR:HKLM\...\startupreg\Ashampoo HDD Control 3 Guard [Key] . (.Ashampoo Development GmbH & Co. KG - Ashampoo HDD Control 3 Guard.) -- C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 3\HDDC3Guard.exe
O53 - SMSR:HKLM\...\startupreg\AshSnap [Key] . (.Ashampoo Media GmbH & Co. KG - Ashampoo Snap 7.) -- C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe
O53 - SMSR:HKLM\...\startupreg\Avanquest message [Key] . (.Avanquest Software - Avanquest Message.) -- C:\Program Files (x86)\Avanquest\Avanquest message\AQNotif.exe
O53 - SMSR:HKLM\...\startupreg\Connectivity Fixer [Key] . (...) -- C:\Program Files (x86)\Badosoft\Connectivity Fixer\Connectivity Fixer.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\IObit Malware Fighter [Key] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
O53 - SMSR:HKLM\...\startupreg\PWRISOVM.EXE [Key] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.exe
O53 - SMSR:HKLM\...\startupreg\RegistryOptimizer Tray [Key] . (.Avanquest Software - Registry Optimizer Tray.) -- C:\Program Files (x86)\Fix-It Registry Optimizer\RegistryOptimizerTray.exe
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O53 - SMSR:HKLM\...\startupreg\SMASH [Key] . (.SoftMaker Software GmbH - Smash.) -- C:\Program Files (x86)\SoftMaker Office 2010 (Trial)\smash.exe
O53 - SMSR:HKLM\...\startupreg\TrueImageMonitor.exe [Key] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O53 - SMSR:HKLM\...\startupreg\Tv-Plug-In [Key] . (.Orzilia Ltd. - Tv-Plug-In.) -- C:\Program Files (x86)\Tv-Plug-In\Tv-Plug-In.exe
O53 - SMSR:HKLM\...\startupreg\Wondershare Helper Compact.exe [Key] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O53 - SMSR:HKLM\...\startupreg\Zemana AntiMalware [Key] . (...) -- C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Zoner Photo Studio Autoupdate [Key] . (.ZONER software - Zoner Photo Studio Autoupdate.) -- C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.exe
O53 - SMSR:HKLM\...\startupreg\Zoner Photo Studio Service 16 [Key] . (...) -- C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.exeC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe (.not file.)
~ SMSR Keys: 19 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
O55 - MWPS:[HKLM\...\Policies\System] - "verbosestatus"=1
~ MWPS: 19 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoInstrumentation"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 10 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:2009-07-13 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:2009-07-13 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536]
O58 - SDL:2009-07-13 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864]
O58 - SDL:2009-07-13 - 20:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440]
O58 - SDL:2011-03-11 - 01:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904]
O58 - SDL:2009-07-13 - 20:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128]
O58 - SDL:2011-03-11 - 01:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008]
O58 - SDL:2013-05-06 - 01:20:26 ---A- . (.Windows (R) Codename Longhorn DDK provider - NDIS User mode I/O Driver.) -- C:\Windows\System32\Drivers\amtransv_x64.sys [56352]
O58 - SDL:2013-06-24 - 21:34:22 ---A- . (.Alcor Micro, Corp. - Alocr Micro USB Mass Storage Driver.) -- C:\Windows\System32\Drivers\AmUStor.sys [109336]
O58 - SDL:2009-07-13 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632]
O58 - SDL:2009-07-13 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856]
O58 - SDL:2014-11-03 - 12:43:30 ---A- . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\Drivers\aswTap.sys [44640]
O58 - SDL:2009-06-10 - 15:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [270848]
O58 - SDL:2009-06-10 - 15:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432]
O58 - SDL:2009-06-10 - 15:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704]
O58 - SDL:2009-07-13 - 20:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720]
O58 - SDL:2009-06-10 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104]
O58 - SDL:2009-06-10 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009-06-10 - 15:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720]
O58 - SDL:2009-06-10 - 15:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480]
O58 - SDL:2009-07-13 - 20:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488]
O58 - SDL:2009-06-10 - 15:35:20 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\System32\Drivers\e1e6032e.sys [278016]
O58 - SDL:2012-10-30 - 02:22:30 ---A- . (.Intel Corporation - Intel(R) Network Adapter NDIS 6 deserialized driver.) -- C:\Windows\System32\Drivers\e1e6232e.sys [302464]
O58 - SDL:2014-12-24 - 17:47:14 ---A- . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) -- C:\Windows\System32\Drivers\ElbyCDIO.sys [40344]
O58 - SDL:2009-07-13 - 20:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:2015-03-11 - 16:26:05 ---A- . (.ESET - ESET Cleaners Driver.) -- C:\Windows\System32\Drivers\ESETCleanersDriver.sys [170280]
O58 - SDL:2009-06-10 - 15:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016]
O58 - SDL:2015-01-08 - 16:49:27 ---A- . (.Acronis International GmbH - File tracker minifilter driver.) -- C:\Windows\System32\Drivers\file_tracker.sys [296736]
O58 - SDL:2015-01-08 - 16:48:09 ---A- . (.Acronis International GmbH - Acronis Storage Filter Management Driver.) -- C:\Windows\System32\Drivers\fltsrv.sys [134432]
O58 - SDL:2009-06-10 - 15:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:2010-11-20 - 22:23:47 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [78720]
O58 - SDL:2011-03-11 - 01:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496]
O58 - SDL:2009-07-13 - 20:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112]
O58 - SDL:2014-03-18 - 19:24:34 ---A- . (.Logitech, Inc. - Logitech Equad USB Driver..) -- C:\Windows\System32\Drivers\LEqdUsb.sys [77592]
O58 - SDL:2014-03-18 - 19:24:36 ---A- . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\System32\Drivers\LHidEqd.sys [13080]
O58 - SDL:2014-03-18 - 19:24:38 ---A- . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\System32\Drivers\LHidFilt.Sys [76568]
O58 - SDL:2014-03-18 - 19:24:40 ---A- . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\Windows\System32\Drivers\LMouFilt.Sys [59160]
O58 - SDL:2015-02-17 - 23:46:45 ---A- . (.Logitech, Inc. - Logitech Non-Plug and Play Driver..) -- C:\Windows\System32\Drivers\LNonPnP.sys [18960]
O58 - SDL:2009-07-13 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752]
O58 - SDL:2009-07-13 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560]
O58 - SDL:2009-07-13 - 20:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600]
O58 - SDL:2009-07-13 - 20:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776]
O58 - SDL:2012-09-21 - 14:04:24 ---A- . (.Logitech Inc. - Logitech USB Video Class Filter Driver.) -- C:\Windows\System32\Drivers\lvbflt64.sys [24608]
O58 - SDL:2012-09-21 - 14:04:22 ---A- . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Driver.) -- C:\Windows\System32\Drivers\lvrs64.sys [351520]
O58 - SDL:2012-09-21 - 14:04:22 ---A- . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\System32\Drivers\lvuvc64.sys [4763680]
O58 - SDL:2012-01-25 - 18:32:58 ---A- . (.Avid Technology, Inc. - M-Audio Delta PCI driver.) -- C:\Windows\System32\Drivers\MAudioDelta.sys [339760]
O58 - SDL:2014-11-21 - 05:14:08 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]
O58 - SDL:2014-11-21 - 05:14:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400]
O58 - SDL:2015-03-14 - 16:06:20 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752]
O58 - SDL:2009-07-13 - 20:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392]
O58 - SDL:2009-07-13 - 20:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736]
O58 - SDL:2012-05-23 - 04:57:04 ---A- . (.Marvell Semiconductor, Inc. - Marvell Thor Windows Driver.) -- C:\Windows\System32\Drivers\mv61xx.sys [183144]
O58 - SDL:2012-05-23 - 04:57:06 ---A- . (.Marvell Semiconductor Inc. - Marvell Aux NV Bridge DLL.) -- C:\Windows\System32\Drivers\mv61xxmm.sys [14696]
O58 - SDL:2014-11-21 - 05:14:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704]
O58 - SDL:2009-07-13 - 20:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264]
O58 - SDL:2010-09-30 - 14:00:06 ---A- . (.Renesas Electronics Corporation - USB 3.0 Hub Driver.) -- C:\Windows\System32\Drivers\nusb3hub.sys [80384]
O58 - SDL:2010-09-30 - 14:00:06 ---A- . (.Renesas Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\System32\Drivers\nusb3xhc.sys [180736]
O58 - SDL:2015-02-03 - 22:56:28 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 341.44.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12894024]
O58 - SDL:2011-03-11 - 01:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352]
O58 - SDL:2011-03-11 - 01:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272]
O58 - SDL:2014-11-22 - 05:46:30 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [38032]
O58 - SDL:2014-10-14 - 16:06:06 ---A- . (.Raxco Software, Inc. - PerfectDisk OptiWrite Filter Driver.) -- C:\Windows\System32\Drivers\PDFsFilter.sys [83224]
O58 - SDL:2009-07-13 - 20:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816]
O58 - SDL:2009-07-13 - 20:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592]
O58 - SDL:2014-10-14 - 16:09:20 ---A- . (.EldoS Corporation - RawDisk Driver. Allows write access to files and raw disk secto.) -- C:\Windows\System32\Drivers\rawdsk3.sys [32912]
O58 - SDL:2012-09-12 - 20:19:38 ---A- . (.GFI Software - GFI ActiveProtection Filter.) -- C:\Windows\System32\Drivers\sbapifs.sys [82872]
O58 - SDL:2012-09-20 - 05:11:58 ---A- . (.GFI Software - GFI Firewall SDK TDI Firewall Driver.) -- C:\Windows\System32\Drivers\SbFw.sys [258848]
O58 - SDL:2012-09-12 - 20:19:34 ---A- . (.GFI Software - GFI Firewall SDK NDIS Intermediate Driver.) -- C:\Windows\System32\Drivers\SbFwIm.sys [120064]
O58 - SDL:2012-09-20 - 05:11:58 ---A- . (.GFI Software - GFI Firewall SDK Host Intrusion Prevention System Driver.) -- C:\Windows\System32\Drivers\sbhips.sys [61216]
O58 - SDL:2012-09-20 - 05:11:58 ---A- . (.GFI Software - GFI Firewall SDK Transport Inspection System Driver.) -- C:\Windows\System32\Drivers\sbwtis.sys [86816]
O58 - SDL:2014-10-25 - 07:37:52 ---A- . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\Drivers\scdemu.sys [127760]
O58 - SDL:2009-06-10 - 15:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:2009-07-13 - 19:00:40 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\serial.sys [94208]
O58 - SDL:2009-07-13 - 20:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584]
O58 - SDL:2009-07-13 - 20:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464]
O58 - SDL:2015-01-14 - 23:49:38 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_Intel.sys [34544]
O58 - SDL:2015-01-08 - 16:48:25 ---A- . (.Acronis International GmbH - Acronis Snapshot API.) -- C:\Windows\System32\Drivers\snapman.sys [304416]
O58 - SDL:2009-07-13 - 20:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:2015-03-13 - 23:10:42 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [535040]
O58 - SDL:2015-01-08 - 16:49:04 ---A- . (.Acronis International GmbH - Acronis Backup Archive Explorer.) -- C:\Windows\System32\Drivers\tib.sys [1328928]
O58 - SDL:2015-01-08 - 16:49:07 ---A- . (.Acronis International GmbH - Acronis TIB Mounter Driver.) -- C:\Windows\System32\Drivers\tib_mounter.sys [234784]
O58 - SDL:2014-08-15 - 23:35:00 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784]
O58 - SDL:2012-03-19 - 15:12:38 ---A- . (.ShiningMorning Inc. - Pas de description.) -- C:\Windows\System32\Drivers\vasdDev.sys [1454896]
O58 - SDL:2009-07-13 - 20:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488]
O58 - SDL:2009-07-13 - 20:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872]
O58 - SDL:2015-03-01 - 15:27:58 ---A- . (...) -- C:\Windows\System32\Drivers\WPRO_41_2001.sys [35344]
O58 - SDL:2015-02-28 - 10:07:15 ---A- . (.Zemana Ltd. - Zemana AntiMalware.) -- C:\Windows\System32\Drivers\zam64.sys [101680]
O58 - SDL:2013-05-08 - 05:27:12 ---A- . (...) -- C:\Windows\System32\ambakdrv.sys [30648]
O58 - SDL:2013-05-06 - 01:20:32 ---A- . (. Fluke Networks Inc. - Fluke- Utility functions used in administrator's mode.) -- C:\Windows\System32\amdriver_x64.sys [22048]
O58 - SDL:2013-05-08 - 05:27:12 ---A- . (...) -- C:\Windows\System32\ammntdrv.sys [151480]
O58 - SDL:2013-12-18 - 11:33:16 ---A- . (...) -- C:\Windows\System32\ampa.sys [17008]
O58 - SDL:2014-07-30 - 11:10:58 ---A- . (...) -- C:\Windows\System32\amreg.sys [13424]
O58 - SDL:2013-02-07 - 06:52:48 ---A- . (...) -- C:\Windows\System32\amwrtdrv.sys [17848]
O58 - SDL:2011-06-15 - 21:10:58 ---A- . (...) -- C:\Windows\System32\ddmdrv.sys [15288]
O58 - SDL:2012-01-10 - 10:18:18 ---A- . (.TOSHIBA Corporation - TOSHIBA UDF2.5 Reader File System Driver.) -- C:\Windows\SysWOW64\drivers\thdudf.sys [66944]
O58 - SDL:2013-05-06 - 01:00:58 ---A- . (. Fluke Networks Inc. - Fluke- Utility functions used in administrator's mode.) -- C:\Windows\SysWOW64\AmDriver.sys [10240]
O58 - SDL:2013-12-18 - 11:33:16 ---A- . (...) -- C:\Windows\SysWOW64\ampa.sys [17008]
O58 - SDL:2011-06-15 - 21:09:42 ---A- . (...) -- C:\Windows\SysWOW64\ddmdrv.sys [12728]
O58 - SDL:2012-01-10 - 10:18:18 ---A- . (.TOSHIBA Corporation - TOSHIBA UDF2.5 Reader File System Driver.) -- C:\Windows\SysWOW64\thdudf.sys [66944]
~ Drivers: 99 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 2015-03-09 - 23:08:39 ---A- . (.Lenovo Group Limited.) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\RHEng\49900DB7C43F4473809686171D1CC220\LenovoSHAREit.exe [9559120]
O61 - LFC: 2015-03-10 - 23:08:39 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\NVIDIA\GLCache\d73eb2e46e07c49b5e060d54a6aee4e6\d7845583ac2fd3d0\4baf743e7cd99c91.bin [35333]
O61 - LFC: 2015-03-10 - 23:08:39 ---A- . (.RecoveryMechanic Inc..) -- C:\Users\JEAN-GUY-PC\Downloads\hdd_mechanic_setup.exe [8296346]
O61 - LFC: 2015-03-10 - 23:08:39 ---A- . (.Reimage®.) -- C:\Users\JEAN-GUY-PC\Downloads\ReimageRepair.exe [784896] =>Rogue.ReimageRepair
O61 - LFC: 2015-03-10 - 23:08:39 ---A- . (.SparkTrust.) -- C:\Users\JEAN-GUY-PC\Downloads\SparkTrust PC Cleaner Plus Setup_f2a71d0_.exe [6835224] =>Rogue.PCCleanerPlus
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\iolo\Registry\Last\restore.bat [518]
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\iolo\restore.bat [1240]
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (...) -- C:\Users\JEAN-GUY-PC\Downloads\Diagnostic_PC_Gratuit.exe [7473080]
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (.Driver-Soft Inc..) -- C:\Users\JEAN-GUY-PC\Downloads\Driver_Genius_Professional_FR.exe [8028864]
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (.ESET.) -- C:\Users\JEAN-GUY-PC\Downloads\eset_nod32_antivirus_live_installer.exe [1761992]
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (.Malwarebytes Corporation.) -- C:\Users\JEAN-GUY-PC\Downloads\mbam-setup-2.0.4.1028.exe [20447072]
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (.giveawayoftheday.com.) -- C:\Users\JEAN-GUY-PC\Downloads\setup.exe [3294328]
O61 - LFC: 2015-03-11 - 23:08:39 ---A- . (.iolo technologies, LLC.) -- C:\Users\JEAN-GUY-PC\Downloads\SystemMechanicPro_14.exe [162751304]
O61 - LFC: 2015-03-12 - 23:08:39 ---A- . (...) -- C:\Users\JEAN-GUY-PC\Documents\SoftMaker\Settings\pmwconfig.sys [3488]
O61 - LFC: 2015-03-12 - 23:08:39 ---A- . (...) -- C:\Users\JEAN-GUY-PC\Documents\SoftMaker\Settings\prwconfig.sys [3488]
O61 - LFC: 2015-03-12 - 23:08:39 ---A- . (.abylonsoft.) -- C:\Users\JEAN-GUY-PC\Downloads\exifcleaner2014-2-June2014.exe [15042848]
O61 - LFC: 2015-03-13 - 23:08:39 ---A- . (.Microsoft Corporation.) -- C:\Users\JEAN-GUY-PC\Downloads\MicrosoftFixit.wu.FISC.134973223254771.3.1.Run.exe [347816]
O61 - LFC: 2015-03-13 - 23:08:39 ---A- . (.PC Cleaners.) -- C:\Users\JEAN-GUY-PC\Downloads\app2_fr_v.exe [5389152] =>Rogue.PCCleanerPro
O61 - LFC: 2015-03-13 - 23:08:39 ---A- . (.giveawayoftheday.com.) -- C:\Users\JEAN-GUY-PC\Downloads\AiseesoftTotalVideoConverter7152\Setup.exe [3294328]
O61 - LFC: 2015-03-13 - 23:08:39 ---A- . (.giveawayoftheday.com.) -- C:\Users\JEAN-GUY-PC\Downloads\AthTekDigiBand18-lk9d43.zip\Setup.exe [3294328]
O61 - LFC: 2015-03-14 - 23:08:35 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015-03-14 - 23:08:35 ---A- . (.Google Inc..) -- C:\Users\JEAN-GUY-PC\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.771\_platform_specific\win_x86\widevinecdm.dll [7959880]
O61 - LFC: 2015-03-14 - 23:08:38 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\Uninstall.exe [80642]
O61 - LFC: 2015-03-14 - 23:08:38 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\rnsi781B.exe [33280]
O61 - LFC: 2015-03-14 - 23:08:39 ---A- . (.Adobe.) -- C:\Users\JEAN-GUY-PC\Downloads\install_flashplayer17x32pp_chra_dy_aaa_aih.exe [1055936]
O61 - LFC: 2015-03-14 - 23:08:39 ---A- . (.IObit.) -- C:\Users\JEAN-GUY-PC\Downloads\IObit-Malware-Fighter-Setup.exe [32405776]
O61 - LFC: 2015-03-14 - 23:08:39 ---A- . (.IObit.) -- C:\Users\JEAN-GUY-PC\Downloads\driver_booster_setup.exe [11845992]
O61 - LFC: 2015-03-16 - 23:08:38 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\571ec03455894f2858498f603ebc4773_fce8394c8fd8a83b_f3279b66e87c6f22_1_0.bin [16384]
O61 - LFC: 2015-03-16 - 23:08:38 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\571ec03455894f2858498f603ebc4773_fce8394c8fd8a83b_f3279b66e87c6f22_2_0.bin [16384]
O61 - LFC: 2015-03-16 - 23:08:38 ---A- . (...) -- C:\Users\JEAN-GUY-PC\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\571ec03455894f2858498f603ebc4773_fce8394c8fd8a83b_f3279b66e87c6f22_0_0.bin [16384]
O61 - LFC: 2015-03-16 - 23:08:39 ---A- . (.Driver-Soft Inc..) -- C:\Users\JEAN-GUY-PC\Downloads\US_Email_AQ.exe [8337192]
O61 - LFC: 2015-03-16 - 23:08:39 ---A- . (.KC Softwares.) -- C:\Users\JEAN-GUY-PC\Downloads\phototofilm_lite-March2015.exe [1545454]
O61 - LFC: 2015-03-16 - 23:08:39 ---A- . (.NCH Software.) -- C:\Users\JEAN-GUY-PC\Downloads\switchsetup.exe [671808]
O61 - LFC: 2015-03-16 - 23:08:39 ---A- . (.Nicolas Coolman.) -- C:\Users\JEAN-GUY-PC\Downloads\ZHPDiag2.exe [6867801] =>.Nicolas Coolman
O61 - LFC: 2015-03-16 - 23:08:39 ---A- . (.PC Cleaners.) -- C:\Users\JEAN-GUY-PC\Downloads\app2_fr_v (1).exe [5389152] =>Rogue.PCCleanerPro
~ 78 Fichiers temporaires (Temporary files)
~ 422 Fichiers cookies (Cookies files)
~ Files: 35 Scanned in 00mn 04s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 2011-06-10 - C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys (ACT2PM) .(...) - LEGACY_ACT2PM
O64 - Services: CurCS - 2013-05-08 - C:\Windows\system32\ammntdrv.sys (ammntdrv) .(...) - LEGACY_AMMNTDRV
O64 - Services: CurCS - 2013-02-07 - C:\Windows\system32\amwrtdrv.sys (amwrtdrv) .(...) - LEGACY_AMWRTDRV
O64 - Services: CurCS - 2014-12-24 - C:\Windows\System32\Drivers\ElbyCDIO.sys (ElbyCDIO) .(.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) - LEGACY_ELBYCDIO
O64 - Services: CurCS - 2014-11-10 - C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys (FileMonitor) .(.IObit - IMF File MiniFilter Driver.) - LEGACY_FILEMONITOR
O64 - Services: CurCS - 2015-01-08 - C:\Windows\System32\DRIVERS\file_tracker.sys (file_tracker) .(.Acronis International GmbH - File tracker minifilter driver.) - LEGACY_FILE_TRACKER
O64 - Services: CurCS - 2015-01-16 - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NvStreamKms) .(.NVIDIA Corporation - Nvidia Streaming Kernel Service.) - LEGACY_NVSTREAMKMS
O64 - Services: CurCS - 2014-10-14 - C:\Windows\System32\DRIVERS\PDFsFilter.sys (PDFsFilter) .(.Raxco Software, Inc. - PerfectDisk OptiWrite Filter Driver.) - LEGACY_PDFSFILTER
O64 - Services: CurCS - 2014-10-14 - C:\Windows\system32\drivers\rawdsk3.sys (RawDisk3) .(.EldoS Corporation - RawDisk Driver. Allows write access to file.) - LEGACY_RAWDISK3
O64 - Services: CurCS - 2014-11-10 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys (RegFilter) .(.IObit.com - Registry Filter.) - LEGACY_REGFILTER
O64 - Services: CurCS - 2012-09-12 - C:\Windows\System32\DRIVERS\sbapifs.sys (sbapifs) .(.GFI Software - GFI ActiveProtection Filter.) - LEGACY_SBAPIFS
O64 - Services: CurCS - 2012-09-20 - C:\Windows\System32\drivers\SbFw.sys (SbFw) .(.GFI Software - GFI Firewall SDK TDI Firewall Driver.) - LEGACY_SBFW
O64 - Services: CurCS - 2012-09-20 - C:\Windows\System32\DRIVERS\sbwtis.sys (sbwtis) .(.GFI Software - GFI Firewall SDK Transport Inspection Syste.) - LEGACY_SBWTIS
O64 - Services: CurCS - 2009-06-10 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 2015-01-08 - C:\Windows\System32\DRIVERS\snapman.sys (snapman) .(.Acronis International GmbH - Acronis Snapshot API.) - LEGACY_SNAPMAN
O64 - Services: CurCS - 2015-01-08 - C:\Windows\System32\DRIVERS\tib.sys (tib) .(.Acronis International GmbH - Acronis Backup Archive Explorer.) - LEGACY_TIB
O64 - Services: CurCS - 2013-05-08 - C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 5\IFS64.sys (UI5IFS) .(...) - LEGACY_UI5IFS
O64 - Services: CurCS - 2014-11-10 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys (UrlFilter) .(.IObit.com - URL Filter.) - LEGACY_URLFILTER
O64 - Services: CurCS - 2015-02-28 - C:\Windows\system32\drivers\zam64.sys (ZAM) .(.Zemana Ltd. - Zemana AntiMalware.) - LEGACY_ZAM
~ Legacy: 116 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (...) -- C:\Program Files (x86)\Opera\Launcher.exe
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] 6D55890AB2134481BFE102E3A437E13E - (Yahoo! (Avast)) - http://qc.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {9CB96984-43C3-4D44-90EF-01466EFCF7BB} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {DB6A2D9E-0D01-4C46-B924-EF526244C564} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} - (Bing) - http://www.bing.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
E:\De JG2 (E)\Documents\Jean-Guy mouvé (127Go)\Documents\keygen\keygen.exe =>.Crack,Keygen
E:\De JG2 (E)\Documents\Jean-Guy mouvé (127Go)\Documents\keygen\keygen.exe~VPOFK9FM =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes Achats\Corel incredimail\Corel.Paint.Shop.Pro.Photo.XI.v11.0.Incl.Keygen-SSG\keygen\keygen.exe =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes Achats\Corel incredimail\Corel.Paint.Shop.Pro.Photo.XI.v11.0.Incl.Keygen-SSG\keygen.exe =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes Achats\Corel incredimail\Corel.Paint.Shop.Pro.Photo.XI.v11.0.Incl.Keygen-SSG\keygen.rar =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes Achats\Corel incredimail\Corel.Paint.Shop.Pro.Photo.XI.v11.0.Incl.Keygen-SSG\keygen2.exe =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes Achats\Corel incredimail\Corel.Paint.Shop.Pro.Photo.XI.v11.0.Incl.Keygen-SSG\Torrent downloaded from Demonoid.com.txt =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes choses\Mes documents3\Mes Downloads\serial,crack,key\Norton Internet Security 2006.Eng+Fren+Spanish+Ital+keygen.crack.rar FAKE (05∕05∕2010 ‭22׃15).txt =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes choses\Mes documents3\Mes Downloads\serial,crack,key\Norton Internet Security 2006.Eng+Fren+Spanish+Ital+keygen.crack.rar FAKE.txt =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes documents6-2013\Download\Corel.Paint.Shop.Pro.Photo.XI.v11.0.Incl.Keygen-SSG\Torrent downloaded from Demonoid.com.txt =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes documents6-2013\Mes Downloads2013\AfroDJMac Ableton Live Packs Archive\AfroDJMac Ableton Live Packs Archive\AfroDJMac Tape Hiss Vinyl Crackle Project.zip =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes documents6-2013\Mes Downloads2013\AfroDJMac Ableton Live Packs Archive\AfroDJMac Ableton Live Packs Archive\AfroDJMac Vinyl Crackler Project.zip =>.Crack,Keygen
E:\De JG2 (E)\Documents\Mes documents6-2013\Mes Downloads2013\AfroDJMac Ableton Live Packs Archive\AfroDJMac Ableton Live Packs Archive\AfroDJMacs FirecRACKer Rack.zip =>.Crack,Keygen
~ Files: Scanned in 01mn 37s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [683520]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [2477536]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
~ Services: 33 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.E5F474431356CC07DA6F5D07EF08C925] [SPRF][2015-03-13] (.PC Cleaners - PC Cleaner Pro.) -- C:\ProgramData\pclunst.exe [5389152] =>Rogue.PCCleanerPro
[MD5.E3C00E96581881CA8819EE4873DD22E8] [SPRF][2014-10-17] (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\pcsound.dll [701]
[MD5.58444685637F632068BE4F34819DE4FB] [SPRF][2014-10-14] (...) -- C:\Users\JEAN-GUY-PC\AppData\Roaming\pdfdrawcodec.dll [34]
~ Files: 3 Scanned in 00mn 00s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: Photos iCloud - {F0D63F85-37EC-4097-B30D-61B4A8917118}
~ MNS: 1 Scanned in 00mn 00s



---\\ Recherche de clés de registre Tracing (O100)
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASAPI32 =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\Signup Wizard_RASMANCS =>PUP.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.PerformanceOptimizer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.PerformanceOptimizer
~ BTK: 160 Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Auto 1658-07-10 0 | (51cdb72) . (...) - c:\Program Files (x86)\Optimizer Pro 3.11\OptProCrash.dll =>PUP.OptimizerPro
SS - | Disabled 2014-12-19 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Disabled 2015-02-25 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 2008-08-07 3276800 | (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - | Disabled 2014-11-03 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 2014-11-03 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 2014-03-24 357144 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
SS - | Auto 2015-01-16 2724128 | (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
SS - | Disabled 2013-07-18 762192 | (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
SS - | Auto 2014-11-11 7802880 | (PRTGCoreService) . (.Paessler AG.) - C:\Program Files (x86)\PRTG Network Monitor\64 bit\PRTG Server.exe
SS - | Disabled 2014-11-11 9498336 | (PRTGProbeService) . (.Paessler AG.) - C:\Program Files (x86)\PRTG Network Monitor\PRTG Probe.exe
SS - | Disabled 2014-04-03 315008 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Disabled 2013-11-25 412776 | (WebUpdate4) . (.Data Perceptions / PowerProgrammer.) - C:\Windows\SysWOW64\WebUpdateSvc4.exe
SS - | Demand 2009-07-13 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Disabled 1658-07-10 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 2014-08-14 1264280 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
SR - | Auto 2011-08-22 1421216 | (ACT2_Service) . (...) - C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
SR - | Auto 2014-11-04 815392 | (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
SR - | Auto 2010-05-20 314112 | (AvanquestDiskOptimizer) . (.Avanquest Software, (www.avanquest.com).) - C:\Program Files (x86)\Fix-It Disk Optimizer\AvanquestDefragSrv64.exe
SR - | Auto 2015-03-14 97280 | (bohihozy) . (...) - C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\jnsb8156.tmp
SR - | Auto 2011-08-30 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 2009-08-24 544768 | (DfSdkS) . (.mst software GmbH, Germany.) - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\DfsdkS64.exe
SR - | Auto 2006-04-18 102400 | (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.exe
SR - | Auto 2009-08-27 1253376 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SR - | Auto 2013-11-28 37192 | (FibUacService) . (.Storage Appliance Corp..) - C:\ProgramData\Clickfree\FullImagingBackup\FibUac.exe
SR - | Auto 2015-02-13 243880 | (FoxitCloudUpdateService) . (.Foxit Software Inc..) - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
SR - | Auto 2013-11-28 233120 | (FullImagingService) . (...) - C:\programdata\Clickfree\FullImagingBackup\FullImagingService.exe
SR - | Auto 2015-01-16 1148560 | (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
SR - | Auto 2014-12-17 324456 | (HDDC3Service) . (...) - C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 3\HDDC3Service.exe
SR - | Auto 2015-01-27 344864 | (IMFservice) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
SR - | Auto 2014-10-14 4700872 | (ioloSystemService) . (.iolo technologies, LLC.) - C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
SR - | Auto 2014-05-04 1232880 | (Leawo_service) . (...) - C:\Program Files (x86)\Common Files\Appkeys\yytool64.exe
SR - | Auto 2015-01-16 1706128 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 2015-01-16 21833360 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 2015-02-03 932040 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 2012-09-20 3677000 | (SBAMSvc) . (.GFI Software.) - C:\Program Files (x86)\ParetoLogic\ParetoLogic Internet Security\SBAMSvc.exe =>PUP.Paretologic
SR - | Auto 2015-02-03 409800 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 2014-09-13 6856336 | (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
SR - | Auto 2015-03-15 123392 | (wocyfyho) . (...) - C:\Users\JEAN-GUY-PC\AppData\Roaming\32583647-1426344680-DD11-894D-0007E9747DB3\nsoFDF.tmp
SR - | Auto 2009-07-13 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 06s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by JEAN-GUY-PC at 2015-03-16 23:10:29
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by JEAN-GUY-PC at 2015-03-16 23:10:31
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13026 - (2014-12-27)
Clés trouvées (Keys found) : 15
Valeurs trouvées (Values found) : 2
Dossiers trouvés (Folders found) : 21
Fichiers trouvés (Files found) : 28

[HKLM\SYSTEM\CurrentControlSet\Services\51cdb72] =>PUP.OptimizerPro^
[HKLM\SYSTEM\CurrentControlSet\Services\SBAMSvc] =>PUP.Paretologic^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ECDE73DC-27C4-4007-8BDB-D4A06D487233}] =>PUP.Paretologic^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3CBF3EBB-235D-4c29-A68B-2BB1F428586E}] =>Rogue.PCHealthAdvisor^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair] =>Rogue.ReimageRepair^
[HKCU\Software\Reimage] =>Rogue.ReimageRepair
[HKLM\Software\Reimage] =>Rogue.ReimageRepair
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Fix-It Registry Optimizer_is1] =>Rogue.FixRegistryErrors
[HKCU\Software\RegistryOptimizer] =>Rogue.FixRegistryErrors
[HKCU\Software\ParetoLogic] =>PUP.Paretologic
[HKLM\Software\ParetoLogic] =>PUP.Paretologic
[HKLM\Software\Wow6432Node\ParetoLogic] =>PUP.Paretologic
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3CBF3EBB-235D-4c29-A68B-2BB1F428586E}] =>Rogue.PCHealthAdvisor
[HKCU\Software\SparkTrust] =>Rogue.PCCleanerPlus
[HKLM\Software\Wow6432Node\SparkTrust] =>Rogue.PCCleanerPlus
C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect^
C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate^
C:\Program Files (x86)\ParetoLogic =>PUP.Paretologic^
C:\Program Files (x86)\Search Extensions =>PUP.RocketTab^
C:\Program Files (x86)\Common Files\ParetoLogic =>PUP.Paretologic^
C:\ProgramData\ParetoLogic =>PUP.Paretologic^
C:\ProgramData\PCRx =>PUP.PCRx^
C:\ProgramData\SparkTrust =>Rogue.PCCleanerPlus^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParetoLogic =>PUP.Paretologic^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip =>PUP.PepperZip^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>Rogue.ReimageRepair^
C:\Users\JEAN-GUY-PC\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect^
C:\Users\JEAN-GUY-PC\AppData\Roaming\ParetoLogic =>PUP.Paretologic^
C:\Users\JEAN-GUY-PC\AppData\Roaming\PCRx =>PUP.PCRx^
C:\Users\JEAN-GUY-PC\AppData\Roaming\SparkTrust =>Rogue.PCCleanerPlus^
C:\Users\JEAN-GUY-PC\AppData\Local\Developerts_LLC =>PUP.WinRST^
C:\Users\JEAN-GUY-PC\AppData\Local\globalUpdate =>PUP.GlobalUpdate^
C:\Users\JEAN-GUY-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic =>PUP.Paretologic^
C:\Program Files (x86)\Fix-It Registry Optimizer =>Rogue.FixRegistryErrors
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix-It Registry Optimizer =>Rogue.FixRegistryErrors
C:\Users\JEAN-GUY-PC\AppData\Roaming\RegistryOptimizer =>Rogue.FixRegistryErrors
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application^
C:\Program Files (x86)\ParetoLogic\ParetoLogic Internet Security\SBAMSvc.exe =>PUP.Paretologic^
C:\Windows\Tasks\ParetoLogic Internet Security Startup.job =>PUP.Paretologic^
C:\Windows\System32\Tasks\ParetoLogic Internet Security Startup =>PUP.Paretologic^
C:\Windows\Tasks\ParetoLogic Registration3.job =>PUP.Paretologic^
C:\Windows\System32\Tasks\ParetoLogic Registration3 =>PUP.Paretologic^
C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job =>PUP.Paretologic^
C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task =>PUP.Paretologic^
C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job e Version3.job [502] =>PUP.Paretologic^
C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task gic Update Version3 [502] =>PUP.Paretologic^
C:\Windows\Tasks\PC Health Advisor Defrag.job =>Rogue.PCHealthAdvisor^
C:\Windows\System32\Tasks\PC Health Advisor Defrag =>Rogue.PCHealthAdvisor^
C:\Windows\Tasks\PC Health Advisor Defrag.job .job [394] =>Rogue.PCHealthAdvisor^
C:\Windows\System32\Tasks\PC Health Advisor Defrag h Advisor [394] =>Rogue.PCHealthAdvisor^
C:\Windows\Tasks\ReimageUpdater.job =>Rogue.ReimageRepair^
C:\Windows\Tasks\SparkTrust PC Cleaner Plus_sch_20F04C65-C74E-11E4-BB0E-001CC0650B7C.job =>Rogue.PCCleanerPlus^
[HKCU\Software\AnyProtect] =>PUP.AnyProtect^
[HKCU\Software\ProPCCleanerConfig] =>USP.PCCleaner^
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\Wow6432Node\83b0e2d7-1d74-426a-a6db-3c1bacb4a0a2] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\FD9B9BBD-BF82-4DC5-B66C-59242C9075C7] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\Wow6432Node\couponmonkey] =>PUP.CouponMonkey^
[HKLM\Software\couponmonkey] =>PUP.CouponMonkey^
C:\ProgramData\pclunst.exe =>Rogue.PCCleanerPro^
C:\Windows\Reimage.ini =>Rogue.ReimageRepair
C:\Windows\Tasks\ParetoLogic Update Version3.job =>PUP.Paretologic
C:\Windows\Tasks\PC Health Advisor.job =>Rogue.PCHealthAdvisor
~ Additionnel Scan: 339374 Items scanned in 00mn 28s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ http://nicolascoolman.fr/o51-mountpoints2-shell-key-mpsk/ =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
~ AMI: 4 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://www.nicolascoolman.fr/blog/ =>Hijacker.Application
http://nicolascoolman.fr/30068076-pup-paretologic =>PUP.Paretologic
http://nicolascoolman.fr/hijacker-proxy =>Hijacker.Proxy
http://nicolascoolman.fr/rogue-reimagerepair =>Rogue.ReimageRepair
http://www.nicolascoolman.fr/blog/ =>PUP.PepperZip
http://nicolascoolman.fr/pup-optimizerpro =>PUP.OptimizerPro
http://nicolascoolman.fr/pup-mypcbackup =>PUP.MyPCBackup
http://nicolascoolman.fr/usp-pccleaner =>USP.PCCleaner
http://www.nicolascoolman.fr/blog/ =>Rogue.PCHealthAdvisor
http://www.nicolascoolman.fr/blog/ =>Rogue.PCCleanerPlus
http://nicolascoolman.fr/pup-anyprotect =>PUP.AnyProtect
http://nicolascoolman.fr/pup-globalupdate =>PUP.GlobalUpdate
http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider
http://www.nicolascoolman.fr/blog/ =>PUP.CouponMonkey
http://www.nicolascoolman.fr/blog/ =>PUP.RocketTab
http://nicolascoolman.fr/pup-pcrx =>PUP.PCRx
http://www.nicolascoolman.fr/blog/ =>PUP.WinRST
http://www.nicolascoolman.fr/blog/ =>Rogue.PCCleanerPro
http://www.nicolascoolman.fr/blog/ =>PUP.PerformanceOptimizer
http://www.nicolascoolman.fr/blog/ =>Rogue.FixRegistryErrors
~ MSI: 20 link(s) detected in 00mn 00s



---\\ Alert Messages
WARNING : Hijacker Proxy found, Clean with ZHPCleaner Tool

End of the scan (2319 lines in 02mn 59s)(13)

Publicité


Signaler le contenu de ce document

Publicité