Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.9.7.137 Par Nicolas Coolman (2015/09/7)
~ Démarré par david (Administrator) (2015/09/09 09:47:38)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\david\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\david\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v45.0.2454.85
MFIE: Mozilla Thunderbird 38.2.0 (x86 fr) v38.2.0
MSIE: Internet Explorer v11.0.9600.18036
---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : GQ6TG
Windows License : OK
~ Windows Remaining Initializations Number : 999
Windows Automatic Updates : OK
---\\ Logiciels de protection (3) - 1s
Avira Antivirus v15.0.12.420
Malwarebytes Anti-Malware version 2.1.8.1057
Windows Defender (Deactivate)
---\\ Surveillance de Logiciels (2) - 2s
Adobe Flash Player 15 Plugin
Adobe Reader XI
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4192.756 MB (54% free)
~ System Restore: Activé (Enable)
~ System drive C: has 49 GB free of 114 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DAVEE-PC
~ User Name: david
~ Logged in as Administrator
---\\ Enumération des unités disques (8) - 5s
~ Drive C: has 49 GB free of 114 GB (System)
~ Drive D: has 1546 GB free of 1907 GB
~ Drive E: has 0 GB free of 0 GB
~ Drive F: has 49 GB free of 99 GB
~ Drive G: has 294 GB free of 853 GB
~ Drive H: has 118 GB free of 238 GB
~ Drive J: has 179 GB free of 238 GB
~ Drive K: has GB free of 11 GB
---\\ Etat du Centre de Sécurité Windows (13) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [2501368] ©
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [54784] ©
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [145920] ©
[MD5.096A832FCF5A01003E96DD7FEE45618D] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2427392] ©
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [572416] ©
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [447488] ©
[MD5.A5675939CF0F99B20B5A3CFCC3C1B46A] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\System32\dnsapi.dll [657920] ©
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\Syswow64\dnsapi.dll [498688] ©
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19456] ©
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [563200] ©
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [26464] ©
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576] ©
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352] ©
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [134144] ©
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800] ©
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [108544] ©
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [142848] ©
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [401408] ©
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [282624] ©
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2025792] ©
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [94208] ©
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [120832] ©
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584] ©
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [107520] ©
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [310080] ©
---\\ Processus lancés (19) - 0s
[MD5.E20B4F23EB153635D67944F63454EC84] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672] [PID.1344] ©
[MD5.E20B4F23EB153635D67944F63454EC84] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672] [PID.1572] ©
[MD5.24680B56D862F1DE30C13FC64B80F568] - (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [228104] [PID.2092] ©
[MD5.094F3AC18AF083D542D96EBEF1F28161] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe [632152] [PID.2692] ©
[MD5.27F8A7A78773427E5D931628F89D6839] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782008] [PID.4356] ©
[MD5.1B1D213D7D32045C7CE01232C7C185CA] - (.X-Rite Inc. - xritedev Application.) -- C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [203088] [PID.6124] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.3124] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.5532] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4196] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4216] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4804] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.3216] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4808] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.5264] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.1888] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.1832] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.6044] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.1804] ©
[MD5.277789334263C78BD58231766AD7C015] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\david\AppData\Roaming\ZHP\ZHPDiag3.exe [1923072] [PID.3096] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (15) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://feedly.com/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.facebook.com/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.bistro-photo.fr/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://plus.google.com/
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [flliilndjeohchalpbbcdekjklbdgfkk] Avira Browser Safety
G2 - GCE: Preference [User Data\Default] [hipbfijinpcgfogaopmgehiegacbhmob] feedly
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [opnbmdkdflhjiclaoiiifmheknpccalb] Instagram for Chrome
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (1) - 1s
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ©
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (22)
---\\ Applications lancées au démarrage du système (24) - 0s
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe ©
O4 - HKLM\..\Run: [AtwtusbIcon] . (.Copyright (C) 2010 - Show Atwtusb Icon Application.) -- C:\WINDOWS\System32\AtwtusbIcon.exe
O4 - HKLM\..\Run: [lxdnmon.exe] . (. - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
O4 - HKLM\..\Run: [EzPrint] . (.Lexmark International Inc. - Lexmark Fast Pics Application.) -- C:\Program Files (x86)\Lexmark 2600 Series\ezprint.exe
O4 - HKLM\..\Run: [lxdnamon] . (...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe ©
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe ©
O4 - HKCU\..\Run: [HKCU] . (...) -- C:\Users\david\AppData\Roaming\WindowsDDL\dlhost.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_C8D43A3EEFF19C42AA31C68EEE7A5AF4] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKCU\..\RunOnce: [gFa57A] . (...) -- C:\Users\david\nCh71K\svchost.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe ©
O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe ©
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl8] . (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe ©
O4 - HKLM\..\Wow6432Node\Run: [PDVD8LanguageShortcut] . (.Copyright (C) 2006 - Language Application.) -- C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe
O4 - HKLM\..\Wow6432Node\Run: [BDRegion] . (.cyberlink - brs.) -- C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe ©
O4 - HKUS\.DEFAULT\..\Run: [AviraSpeedup] C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [AviraSpeedup] C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe (.not file.)
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe ©
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe ©
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [HKCU] . (...) -- C:\Users\david\AppData\Roaming\WindowsDDL\dlhost.exe
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [GoogleChromeAutoLaunch_C8D43A3EEFF19C42AA31C68EEE7A5AF4] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\RunOnce: [gFa57A] . (...) -- C:\Users\david\nCh71K\svchost.exe
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
---\\ Protocole additionnel (21) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©
---\\ Liste des services NT non Microsoft et non désactivés (16) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe ©
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe ©
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe ©
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: HDDHealth (HDDHealth) . (...) - C:\Program Files (x86)\HDD Health\HDDHealthService.exe
O23 - Service: lxdn_device (lxdn_device) . (. - Printer Communication System.) - C:\Windows\System32\lxdncoms.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NkPtpEnumWT3 (NkPtpEnumWT3) . (.Nikon Corporation - PTP-IP Enumerator.) - C:\Program Files\Nikon\Wireless Transmitter Utility\NkVBus\NkPtpEnum.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 307.6.) - C:\WINDOWS\system32\nvvsvc.exe ©
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
O23 - Service: WTService (WTService) . (. - User Mode Tablet Driver.) - C:\WINDOWS\system32\atwtusb.exe
O23 - Service: X-Rite Device Services Manager (xrdd.exe) . (.X-Rite Inc. - xritedev Application.) - C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe ©
O23 - Service: {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} ({FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}) . (.Cyberlink Corp. - FCL Driver.) - C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl ©
---\\ Tâches planifiées en automatique (10) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.50131BFA7FD0C6029E611DBA35AA7E4D] [APT] [Installation App Launcher] (.Lexmark International Inc..) -- C:\Program Files (x86)\Lexmark 2600 Series\ezprint.exe [107176]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1090] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1094] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3830] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4066] ©
O39 - APT: Installation App Launcher - (.Lexmark International Inc..) -- C:\WINDOWS\System32\Tasks\Installation App Launcher [3182]
---\\ Logiciels installés (65) - 39s
O42 - Logiciel: Package de pilotes Windows - Phase One / Mamiya V-Grip USB Driver (12/03/20 - (.Phase One / Mamiya.) [HKLM][64Bits] -- 3F504CC0B024052107934E093CC26DA720256A7A
O42 - Logiciel: Package de pilotes Windows - Phase One A/S (WinUSB) USBDevice (12/03/2014 - (.Phase One A/S.) [HKLM][64Bits] -- 7C6570ABBEB2F08EFBC23ED7925AE72DA6167BD8
O42 - Logiciel: Package de pilotes Windows - Leaf Imaging Ltd. Image (12/03/2014 1.2.0.0) - (.Leaf Imaging Ltd..) [HKLM][64Bits] -- B758007C752D28F7C3542875CEEBDADCAE5941AE
O42 - Logiciel: Capture One 8.3 - (.Phase One A/S.) [HKLM][64Bits] -- CaptureOne8_is1
O42 - Logiciel: Lexmark 2600 Series - (.Lexmark International, Inc..) [HKLM][64Bits] -- Lexmark 2600 Series
O42 - Logiciel: Trust tablet driver - (...) [HKLM][64Bits] -- RmTablet
O42 - Logiciel: Adobe Photoshop Lightroom 5.7 64-bit - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD} ©
O42 - Logiciel: ViewNX 2 - (.Nikon.) [HKLM][64Bits] -- {635BE602-BB9C-4C59-8CC5-93F9366E8A21} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: NVIDIA Pilote graphique 307.68 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: Wireless Transmitter Utility - (.Nikon.) [HKLM][64Bits] -- {CA30A485-79C7-4186-A1C7-ACC1B4D18DE7} ©
O42 - Logiciel: Newshosting - (.Newshosting.) [HKLM][64Bits] -- {CBCD378F-DDCE-466E-A62C-A028F015042D} ©
O42 - Logiciel: Picture Control Utility 2 - (.Nikon.) [HKLM][64Bits] -- {D4893C47-704F-4B84-8486-9DE4974ACA6F} ©
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin ©
O42 - Logiciel: Autopano Giga - (.Kolor.) [HKLM][64Bits] -- Autopano Giga ©
O42 - Logiciel: Avira Antivirus v15.0.12.420 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus ©
O42 - Logiciel: BookSmart® 3.4.5 3.4.5 - (.Blurb, Inc.) [HKLM][64Bits] -- BookSmart® 3.4.5 3.4.5
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 ©
O42 - Logiciel: ColorMunki Display 1.0.1 - (.X-Rite.) [HKLM][64Bits] -- ColorMunki Display_is1 ©
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser ©
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite ©
O42 - Logiciel: FastStone Image Viewer 4.6 - (.FastStone Soft.) [HKLM][64Bits] -- FastStone Image Viewer ©
O42 - Logiciel: FileZilla Client 3.11.0.2 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client ©
O42 - Logiciel: FontExpert 2006 - (...) [HKLM][64Bits] -- FontExpert 2006
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: HD Tune 2.55 - (.EFD Software.) [HKLM][64Bits] -- HD Tune_is1 ©
O42 - Logiciel: HDD Health v4.2 - (...) [HKLM][64Bits] -- HDD Health_is1
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47} ©
O42 - Logiciel: Jahshaka - (...) [HKLM][64Bits] -- Jahshaka
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Thunderbird 38.2.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.2.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: OpenLibraries - (...) [HKLM][64Bits] -- OpenLibraries
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: WinRAR 5.01 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} ©
O42 - Logiciel: Avira Launcher v1.1.45.11819 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {315dd168-0794-4cf1-8355-f195cde642fc} ©
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B} ©
O42 - Logiciel: Adobe Illustrator CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4869414E-7AEA-4C8E-BE1C-8D40977FD517} ©
O42 - Logiciel: msxml4 - (.Default Company Name.) [HKLM][64Bits] -- {5AE3D9F1-9E9E-4015-8787-E22705AA32C5}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: RescuePRO 4.2.4.2 - (.LC Technology International, Inc..) [HKLM][64Bits] -- {66AB532A-AF83-4EEF-B692-D8B80D518A08}_is1
O42 - Logiciel: XRD i1d3 - (.X-Rite.) [HKLM][64Bits] -- {715DD253-A4B2-4912-894D-E445507428DC} ©
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6} ©
O42 - Logiciel: Picture Control Utility - (.Nikon.) [HKLM][64Bits] -- {87441A59-5E64-4096-A170-14EFE67200C3} ©
O42 - Logiciel: X-Rite Device Services Manager - (.X-Rite.) [HKLM][64Bits] -- {88868DDD-6500-416B-BD1B-927CEBB9F990} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} ©
O42 - Logiciel: Adobe Dreamweaver CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-F400-7760-000000000005} ©
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} ©
O42 - Logiciel: Nikon Message Center 2 - (.Nikon.) [HKLM][64Bits] -- {B014EE44-9197-4513-9613-71E6EB1B514E} ©
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Avira Launcher v1.1.45.11819 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {EA226E08-91E7-4F05-B61E-3EDBBBEB15BB} ©
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A} ©
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe ©
---\\ HKCU & HKLM Software Keys (1041) - 40s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Audio Unit Effect
HKLM\SOFTWARE\Wow6432Node\Automator
HKLM\SOFTWARE\Wow6432Node\Avira
HKLM\SOFTWARE\Wow6432Node\AviraSpeedup
HKLM\SOFTWARE\Wow6432Node\Basic Track
HKLM\SOFTWARE\Wow6432Node\Bass Amp
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\ej-technologies
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\FotoNation
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Kolor
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\Lexmark
HKLM\SOFTWARE\Wow6432Node\LexmarkInkjet
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nikon
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenLibraries
HKLM\SOFTWARE\Wow6432Node\Proxima Software
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\X-AVCSD
HKLM\SOFTWARE\Wow6432Node\X-Rite
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\10008
HKCU\SOFTWARE\10048
HKCU\SOFTWARE\10092
HKCU\SOFTWARE\10096
HKCU\SOFTWARE\10100
HKCU\SOFTWARE\10116
HKCU\SOFTWARE\10128
HKCU\SOFTWARE\10180
HKCU\SOFTWARE\1020
HKCU\SOFTWARE\10236
HKCU\SOFTWARE\10288
HKCU\SOFTWARE\10296
HKCU\SOFTWARE\10340
HKCU\SOFTWARE\10388
HKCU\SOFTWARE\10444
HKCU\SOFTWARE\10456
HKCU\SOFTWARE\10512
HKCU\SOFTWARE\10544
HKCU\SOFTWARE\1056
HKCU\SOFTWARE\10584
HKCU\SOFTWARE\10736
HKCU\SOFTWARE\10836
HKCU\SOFTWARE\10868
HKCU\SOFTWARE\11040
HKCU\SOFTWARE\11060
HKCU\SOFTWARE\11136
HKCU\SOFTWARE\11156
HKCU\SOFTWARE\11396
HKCU\SOFTWARE\1156
HKCU\SOFTWARE\11596
HKCU\SOFTWARE\11748
HKCU\SOFTWARE\11768
HKCU\SOFTWARE\11880
HKCU\SOFTWARE\1204
HKCU\SOFTWARE\12124
HKCU\SOFTWARE\12168
HKCU\SOFTWARE\1260
HKCU\SOFTWARE\1316
HKCU\SOFTWARE\1456
HKCU\SOFTWARE\1484
HKCU\SOFTWARE\1500
HKCU\SOFTWARE\1592
HKCU\SOFTWARE\1648
HKCU\SOFTWARE\1660
HKCU\SOFTWARE\1752
HKCU\SOFTWARE\1764
HKCU\SOFTWARE\1840
HKCU\SOFTWARE\18408
HKCU\SOFTWARE\18420
HKCU\SOFTWARE\18448
HKCU\SOFTWARE\18452
HKCU\SOFTWARE\18460
HKCU\SOFTWARE\18484
HKCU\SOFTWARE\18508
HKCU\SOFTWARE\18512
HKCU\SOFTWARE\18516
HKCU\SOFTWARE\18572
HKCU\SOFTWARE\18580
HKCU\SOFTWARE\18584
HKCU\SOFTWARE\18612
HKCU\SOFTWARE\18644
HKCU\SOFTWARE\18664
HKCU\SOFTWARE\18672
HKCU\SOFTWARE\18676
HKCU\SOFTWARE\1868
HKCU\SOFTWARE\18688
HKCU\SOFTWARE\18696
HKCU\SOFTWARE\18708
HKCU\SOFTWARE\1872
HKCU\SOFTWARE\18720
HKCU\SOFTWARE\18744
HKCU\SOFTWARE\1876
HKCU\SOFTWARE\18772
HKCU\SOFTWARE\18792
HKCU\SOFTWARE\1880
HKCU\SOFTWARE\18816
HKCU\SOFTWARE\18820
HKCU\SOFTWARE\18824
HKCU\SOFTWARE\18832
HKCU\SOFTWARE\18840
HKCU\SOFTWARE\18844
HKCU\SOFTWARE\18848
HKCU\SOFTWARE\18864
HKCU\SOFTWARE\18876
HKCU\SOFTWARE\1888
HKCU\SOFTWARE\18888
HKCU\SOFTWARE\18912
HKCU\SOFTWARE\18956
HKCU\SOFTWARE\1896
HKCU\SOFTWARE\18960
HKCU\SOFTWARE\18992
HKCU\SOFTWARE\18996
HKCU\SOFTWARE\1900
HKCU\SOFTWARE\19036
HKCU\SOFTWARE\19044
HKCU\SOFTWARE\19064
HKCU\SOFTWARE\19084
HKCU\SOFTWARE\19100
HKCU\SOFTWARE\19120
HKCU\SOFTWARE\19132
HKCU\SOFTWARE\19140
HKCU\SOFTWARE\19152
HKCU\SOFTWARE\19160
HKCU\SOFTWARE\19164
HKCU\SOFTWARE\19168
HKCU\SOFTWARE\19216
HKCU\SOFTWARE\19240
HKCU\SOFTWARE\19248
HKCU\SOFTWARE\19256
HKCU\SOFTWARE\19260
HKCU\SOFTWARE\19272
HKCU\SOFTWARE\19288
HKCU\SOFTWARE\19308
HKCU\SOFTWARE\19312
HKCU\SOFTWARE\1932
HKCU\SOFTWARE\19336
HKCU\SOFTWARE\19348
HKCU\SOFTWARE\19356
HKCU\SOFTWARE\19368
HKCU\SOFTWARE\19372
HKCU\SOFTWARE\19380
HKCU\SOFTWARE\19384
HKCU\SOFTWARE\19388
HKCU\SOFTWARE\19396
HKCU\SOFTWARE\19404
HKCU\SOFTWARE\19452
HKCU\SOFTWARE\19472
HKCU\SOFTWARE\19488
HKCU\SOFTWARE\19496
HKCU\SOFTWARE\19504
HKCU\SOFTWARE\19508
HKCU\SOFTWARE\19512
HKCU\SOFTWARE\19524
HKCU\SOFTWARE\19568
HKCU\SOFTWARE\19576
HKCU\SOFTWARE\19580
HKCU\SOFTWARE\19588
HKCU\SOFTWARE\19604
HKCU\SOFTWARE\19612
HKCU\SOFTWARE\19644
HKCU\SOFTWARE\19648
HKCU\SOFTWARE\19656
HKCU\SOFTWARE\19668
HKCU\SOFTWARE\19688
HKCU\SOFTWARE\19716
HKCU\SOFTWARE\19724
HKCU\SOFTWARE\19728
HKCU\SOFTWARE\19732
HKCU\SOFTWARE\19736
HKCU\SOFTWARE\19740
HKCU\SOFTWARE\19764
HKCU\SOFTWARE\19776
HKCU\SOFTWARE\19796
HKCU\SOFTWARE\19816
HKCU\SOFTWARE\19828
HKCU\SOFTWARE\1984
HKCU\SOFTWARE\19840
HKCU\SOFTWARE\19864
HKCU\SOFTWARE\19872
HKCU\SOFTWARE\19876
HKCU\SOFTWARE\19904
HKCU\SOFTWARE\19908
HKCU\SOFTWARE\19924
HKCU\SOFTWARE\19952
HKCU\SOFTWARE\19956
HKCU\SOFTWARE\19976
HKCU\SOFTWARE\2000
HKCU\SOFTWARE\20012
HKCU\SOFTWARE\20020
HKCU\SOFTWARE\20032
HKCU\SOFTWARE\20036
HKCU\SOFTWARE\20108
HKCU\SOFTWARE\2012
HKCU\SOFTWARE\20120
HKCU\SOFTWARE\20124
HKCU\SOFTWARE\20132
HKCU\SOFTWARE\20140
HKCU\SOFTWARE\20172
HKCU\SOFTWARE\20196
HKCU\SOFTWARE\20200
HKCU\SOFTWARE\20208
HKCU\SOFTWARE\20216
HKCU\SOFTWARE\20252
HKCU\SOFTWARE\20264
HKCU\SOFTWARE\20272
HKCU\SOFTWARE\2028
HKCU\SOFTWARE\20288
HKCU\SOFTWARE\20300
HKCU\SOFTWARE\20312
HKCU\SOFTWARE\20328
HKCU\SOFTWARE\2036
HKCU\SOFTWARE\20360
HKCU\SOFTWARE\20368
HKCU\SOFTWARE\2040
HKCU\SOFTWARE\20424
HKCU\SOFTWARE\2044
HKCU\SOFTWARE\20484
HKCU\SOFTWARE\20524
HKCU\SOFTWARE\20540
HKCU\SOFTWARE\20548
HKCU\SOFTWARE\20592
HKCU\SOFTWARE\20596
HKCU\SOFTWARE\20604
HKCU\SOFTWARE\20616
HKCU\SOFTWARE\20620
HKCU\SOFTWARE\20636
HKCU\SOFTWARE\20640
HKCU\SOFTWARE\20660
HKCU\SOFTWARE\20668
HKCU\SOFTWARE\20676
HKCU\SOFTWARE\20692
HKCU\SOFTWARE\20704
HKCU\SOFTWARE\20720
HKCU\SOFTWARE\20728
HKCU\SOFTWARE\20752
HKCU\SOFTWARE\20756
HKCU\SOFTWARE\20792
HKCU\SOFTWARE\20796
HKCU\SOFTWARE\2080
HKCU\SOFTWARE\20864
HKCU\SOFTWARE\20868
HKCU\SOFTWARE\20900
HKCU\SOFTWARE\20904
HKCU\SOFTWARE\20928
HKCU\SOFTWARE\20932
HKCU\SOFTWARE\20940
HKCU\SOFTWARE\20948
HKCU\SOFTWARE\2096
HKCU\SOFTWARE\20960
HKCU\SOFTWARE\20964
HKCU\SOFTWARE\20992
HKCU\SOFTWARE\21008
HKCU\SOFTWARE\21012
HKCU\SOFTWARE\21032
HKCU\SOFTWARE\21044
HKCU\SOFTWARE\2108
HKCU\SOFTWARE\21084
HKCU\SOFTWARE\21088
HKCU\SOFTWARE\21116
HKCU\SOFTWARE\2112
HKCU\SOFTWARE\21140
HKCU\SOFTWARE\2116
HKCU\SOFTWARE\21160
HKCU\SOFTWARE\21176
HKCU\SOFTWARE\21184
HKCU\SOFTWARE\21192
HKCU\SOFTWARE\2120
HKCU\SOFTWARE\21220
HKCU\SOFTWARE\21232
HKCU\SOFTWARE\21244
HKCU\SOFTWARE\21260
HKCU\SOFTWARE\21284
HKCU\SOFTWARE\21300
HKCU\SOFTWARE\21308
HKCU\SOFTWARE\21316
HKCU\SOFTWARE\21328
HKCU\SOFTWARE\21332
HKCU\SOFTWARE\21336
HKCU\SOFTWARE\21340
HKCU\SOFTWARE\21360
HKCU\SOFTWARE\21372
HKCU\SOFTWARE\21392
HKCU\SOFTWARE\2140
HKCU\SOFTWARE\21432
HKCU\SOFTWARE\21444
HKCU\SOFTWARE\21500
HKCU\SOFTWARE\21524
HKCU\SOFTWARE\21612
HKCU\SOFTWARE\21616
HKCU\SOFTWARE\21624
HKCU\SOFTWARE\21640
HKCU\SOFTWARE\21676
HKCU\SOFTWARE\21692
HKCU\SOFTWARE\2172
HKCU\SOFTWARE\21744
HKCU\SOFTWARE\21752
HKCU\SOFTWARE\21764
HKCU\SOFTWARE\21776
HKCU\SOFTWARE\21784
HKCU\SOFTWARE\21796
HKCU\SOFTWARE\2180
HKCU\SOFTWARE\21816
HKCU\SOFTWARE\21820
HKCU\SOFTWARE\21832
HKCU\SOFTWARE\2184
HKCU\SOFTWARE\21840
HKCU\SOFTWARE\21844
HKCU\SOFTWARE\21880
HKCU\SOFTWARE\21884
HKCU\SOFTWARE\21896
HKCU\SOFTWARE\21904
HKCU\SOFTWARE\2192
HKCU\SOFTWARE\21940
HKCU\SOFTWARE\21944
HKCU\SOFTWARE\21988
HKCU\SOFTWARE\22008
HKCU\SOFTWARE\22012
HKCU\SOFTWARE\22024
HKCU\SOFTWARE\22032
HKCU\SOFTWARE\2204
HKCU\SOFTWARE\22052
HKCU\SOFTWARE\22056
HKCU\SOFTWARE\22108
HKCU\SOFTWARE\22112
HKCU\SOFTWARE\22116
HKCU\SOFTWARE\22124
HKCU\SOFTWARE\22140
HKCU\SOFTWARE\22152
HKCU\SOFTWARE\22160
HKCU\SOFTWARE\22164
HKCU\SOFTWARE\22192
HKCU\SOFTWARE\22204
HKCU\SOFTWARE\22212
HKCU\SOFTWARE\22216
HKCU\SOFTWARE\22220
HKCU\SOFTWARE\22236
HKCU\SOFTWARE\22252
HKCU\SOFTWARE\22260
HKCU\SOFTWARE\22264
HKCU\SOFTWARE\22268
HKCU\SOFTWARE\22272
HKCU\SOFTWARE\22280
HKCU\SOFTWARE\22300
HKCU\SOFTWARE\22304
HKCU\SOFTWARE\2232
HKCU\SOFTWARE\22324
HKCU\SOFTWARE\22328
HKCU\SOFTWARE\22340
HKCU\SOFTWARE\22368
HKCU\SOFTWARE\22372
HKCU\SOFTWARE\22384
HKCU\SOFTWARE\22392
HKCU\SOFTWARE\22420
HKCU\SOFTWARE\22424
HKCU\SOFTWARE\22444
HKCU\SOFTWARE\22448
HKCU\SOFTWARE\22472
HKCU\SOFTWARE\2248
HKCU\SOFTWARE\22496
HKCU\SOFTWARE\22504
HKCU\SOFTWARE\22516
HKCU\SOFTWARE\22532
HKCU\SOFTWARE\22536
HKCU\SOFTWARE\22552
HKCU\SOFTWARE\22564
HKCU\SOFTWARE\22592
HKCU\SOFTWARE\22608
HKCU\SOFTWARE\22616
HKCU\SOFTWARE\22620
HKCU\SOFTWARE\2264
HKCU\SOFTWARE\22648
HKCU\SOFTWARE\22652
HKCU\SOFTWARE\22688
HKCU\SOFTWARE\22696
HKCU\SOFTWARE\22700
HKCU\SOFTWARE\22704
HKCU\SOFTWARE\22756
HKCU\SOFTWARE\22760
HKCU\SOFTWARE\22776
HKCU\SOFTWARE\22780
HKCU\SOFTWARE\22808
HKCU\SOFTWARE\22816
HKCU\SOFTWARE\22828
HKCU\SOFTWARE\22884
HKCU\SOFTWARE\22892
HKCU\SOFTWARE\22896
HKCU\SOFTWARE\22900
HKCU\SOFTWARE\22908
HKCU\SOFTWARE\22932
HKCU\SOFTWARE\22936
HKCU\SOFTWARE\22940
HKCU\SOFTWARE\22944
HKCU\SOFTWARE\22952
HKCU\SOFTWARE\2296
HKCU\SOFTWARE\22960
HKCU\SOFTWARE\23004
HKCU\SOFTWARE\23028
HKCU\SOFTWARE\23036
HKCU\SOFTWARE\23064
HKCU\SOFTWARE\23076
HKCU\SOFTWARE\23080
HKCU\SOFTWARE\23084
HKCU\SOFTWARE\23092
HKCU\SOFTWARE\23124
HKCU\SOFTWARE\23128
HKCU\SOFTWARE\23156
HKCU\SOFTWARE\23172
HKCU\SOFTWARE\23192
HKCU\SOFTWARE\23200
HKCU\SOFTWARE\23232
HKCU\SOFTWARE\23256
HKCU\SOFTWARE\23276
HKCU\SOFTWARE\2328
HKCU\SOFTWARE\23300
HKCU\SOFTWARE\23340
HKCU\SOFTWARE\23352
HKCU\SOFTWARE\2340
HKCU\SOFTWARE\23400
HKCU\SOFTWARE\23464
HKCU\SOFTWARE\23484
HKCU\SOFTWARE\23496
HKCU\SOFTWARE\23500
HKCU\SOFTWARE\2352
HKCU\SOFTWARE\23524
HKCU\SOFTWARE\23568
HKCU\SOFTWARE\23592
HKCU\SOFTWARE\23612
HKCU\SOFTWARE\23620
HKCU\SOFTWARE\23624
HKCU\SOFTWARE\23668
HKCU\SOFTWARE\23672
HKCU\SOFTWARE\23696
HKCU\SOFTWARE\23712
HKCU\SOFTWARE\23744
HKCU\SOFTWARE\2376
HKCU\SOFTWARE\23760
HKCU\SOFTWARE\23784
HKCU\SOFTWARE\23792
HKCU\SOFTWARE\23796
HKCU\SOFTWARE\23828
HKCU\SOFTWARE\23840
HKCU\SOFTWARE\23844
HKCU\SOFTWARE\23884
HKCU\SOFTWARE\23892
HKCU\SOFTWARE\23900
HKCU\SOFTWARE\2392
HKCU\SOFTWARE\23924
HKCU\SOFTWARE\2396
HKCU\SOFTWARE\23972
HKCU\SOFTWARE\23992
HKCU\SOFTWARE\24020
HKCU\SOFTWARE\24032
HKCU\SOFTWARE\24044
HKCU\SOFTWARE\24052
HKCU\SOFTWARE\24056
HKCU\SOFTWARE\24064
HKCU\SOFTWARE\24068
HKCU\SOFTWARE\2408
HKCU\SOFTWARE\24100
HKCU\SOFTWARE\24116
HKCU\SOFTWARE\2412
HKCU\SOFTWARE\24124
HKCU\SOFTWARE\24128
HKCU\SOFTWARE\24140
HKCU\SOFTWARE\2416
HKCU\SOFTWARE\24192
HKCU\SOFTWARE\2424
HKCU\SOFTWARE\24240
HKCU\SOFTWARE\24252
HKCU\SOFTWARE\24256
HKCU\SOFTWARE\24260
HKCU\SOFTWARE\24316
HKCU\SOFTWARE\24324
HKCU\SOFTWARE\24340
HKCU\SOFTWARE\24356
HKCU\SOFTWARE\24360
HKCU\SOFTWARE\24368
HKCU\SOFTWARE\24376
HKCU\SOFTWARE\24396
HKCU\SOFTWARE\2440
HKCU\SOFTWARE\24400
HKCU\SOFTWARE\24420
HKCU\SOFTWARE\2444
HKCU\SOFTWARE\24440
HKCU\SOFTWARE\24464
HKCU\SOFTWARE\24468
HKCU\SOFTWARE\24472
HKCU\SOFTWARE\24496
HKCU\SOFTWARE\24508
HKCU\SOFTWARE\24528
HKCU\SOFTWARE\24540
HKCU\SOFTWARE\24548
HKCU\SOFTWARE\24560
HKCU\SOFTWARE\24572
HKCU\SOFTWARE\24584
HKCU\SOFTWARE\24604
HKCU\SOFTWARE\24624
HKCU\SOFTWARE\24652
HKCU\SOFTWARE\24664
HKCU\SOFTWARE\24676
HKCU\SOFTWARE\24716
HKCU\SOFTWARE\2472
HKCU\SOFTWARE\24720
HKCU\SOFTWARE\24724
HKCU\SOFTWARE\24736
HKCU\SOFTWARE\24776
HKCU\SOFTWARE\24780
HKCU\SOFTWARE\2480
HKCU\SOFTWARE\24800
HKCU\SOFTWARE\24824
HKCU\SOFTWARE\24828
HKCU\SOFTWARE\2484
HKCU\SOFTWARE\24856
HKCU\SOFTWARE\24868
HKCU\SOFTWARE\24884
HKCU\SOFTWARE\24896
HKCU\SOFTWARE\24908
HKCU\SOFTWARE\24912
HKCU\SOFTWARE\2492
HKCU\SOFTWARE\24940
HKCU\SOFTWARE\24956
HKCU\SOFTWARE\2496
HKCU\SOFTWARE\25004
HKCU\SOFTWARE\25008
HKCU\SOFTWARE\25024
HKCU\SOFTWARE\25060
HKCU\SOFTWARE\25068
HKCU\SOFTWARE\25076
HKCU\SOFTWARE\25096
HKCU\SOFTWARE\25100
HKCU\SOFTWARE\25128
HKCU\SOFTWARE\2516
HKCU\SOFTWARE\25160
HKCU\SOFTWARE\25176
HKCU\SOFTWARE\25248
HKCU\SOFTWARE\25268
HKCU\SOFTWARE\25272
HKCU\SOFTWARE\25304
HKCU\SOFTWARE\25316
HKCU\SOFTWARE\25324
HKCU\SOFTWARE\25344
HKCU\SOFTWARE\25396
HKCU\SOFTWARE\2540
HKCU\SOFTWARE\25400
HKCU\SOFTWARE\25404
HKCU\SOFTWARE\25408
HKCU\SOFTWARE\25412
HKCU\SOFTWARE\25432
HKCU\SOFTWARE\25476
HKCU\SOFTWARE\25484
HKCU\SOFTWARE\25492
HKCU\SOFTWARE\25500
HKCU\SOFTWARE\2552
HKCU\SOFTWARE\25528
HKCU\SOFTWARE\25532
HKCU\SOFTWARE\25548
HKCU\SOFTWARE\25572
HKCU\SOFTWARE\2560
HKCU\SOFTWARE\25604
HKCU\SOFTWARE\25620
HKCU\SOFTWARE\2564
HKCU\SOFTWARE\25648
HKCU\SOFTWARE\25684
HKCU\SOFTWARE\25688
HKCU\SOFTWARE\25700
HKCU\SOFTWARE\25716
HKCU\SOFTWARE\2572
HKCU\SOFTWARE\25720
HKCU\SOFTWARE\25760
HKCU\SOFTWARE\25796
HKCU\SOFTWARE\2580
HKCU\SOFTWARE\25804
HKCU\SOFTWARE\25808
HKCU\SOFTWARE\25816
HKCU\SOFTWARE\25820
HKCU\SOFTWARE\25824
HKCU\SOFTWARE\25832
HKCU\SOFTWARE\25840
HKCU\SOFTWARE\25860
HKCU\SOFTWARE\25872
HKCU\SOFTWARE\2588
HKCU\SOFTWARE\25888
HKCU\SOFTWARE\2592
HKCU\SOFTWARE\25940
HKCU\SOFTWARE\2596
HKCU\SOFTWARE\25960
HKCU\SOFTWARE\25980
HKCU\SOFTWARE\2600
HKCU\SOFTWARE\26004
HKCU\SOFTWARE\26012
HKCU\SOFTWARE\26036
HKCU\SOFTWARE\26080
HKCU\SOFTWARE\26104
HKCU\SOFTWARE\26112
HKCU\SOFTWARE\2616
HKCU\SOFTWARE\26168
HKCU\SOFTWARE\26172
HKCU\SOFTWARE\26204
HKCU\SOFTWARE\26216
HKCU\SOFTWARE\26224
HKCU\SOFTWARE\2624
HKCU\SOFTWARE\26240
HKCU\SOFTWARE\26256
HKCU\SOFTWARE\26264
HKCU\SOFTWARE\26296
HKCU\SOFTWARE\26324
HKCU\SOFTWARE\26328
HKCU\SOFTWARE\26336
HKCU\SOFTWARE\26344
HKCU\SOFTWARE\26372
HKCU\SOFTWARE\26388
HKCU\SOFTWARE\264
HKCU\SOFTWARE\26408
HKCU\SOFTWARE\26412
HKCU\SOFTWARE\26420
HKCU\SOFTWARE\26424
HKCU\SOFTWARE\2644
HKCU\SOFTWARE\26440
HKCU\SOFTWARE\26468
HKCU\SOFTWARE\2648
HKCU\SOFTWARE\26488
HKCU\SOFTWARE\26508
HKCU\SOFTWARE\2652
HKCU\SOFTWARE\26528
HKCU\SOFTWARE\26552
HKCU\SOFTWARE\26556
HKCU\SOFTWARE\26600
HKCU\SOFTWARE\26604
HKCU\SOFTWARE\26636
HKCU\SOFTWARE\2664
HKCU\SOFTWARE\26672
HKCU\SOFTWARE\26704
HKCU\SOFTWARE\26708
HKCU\SOFTWARE\26712
HKCU\SOFTWARE\26720
HKCU\SOFTWARE\26724
HKCU\SOFTWARE\26732
HKCU\SOFTWARE\26748
HKCU\SOFTWARE\2676
HKCU\SOFTWARE\26764
HKCU\SOFTWARE\26780
HKCU\SOFTWARE\268
HKCU\SOFTWARE\26836
HKCU\SOFTWARE\2688
HKCU\SOFTWARE\26888
HKCU\SOFTWARE\26900
HKCU\SOFTWARE\26932
HKCU\SOFTWARE\26976
HKCU\SOFTWARE\27000
HKCU\SOFTWARE\27012
HKCU\SOFTWARE\27016
HKCU\SOFTWARE\27024
HKCU\SOFTWARE\27028
HKCU\SOFTWARE\27040
HKCU\SOFTWARE\27048
HKCU\SOFTWARE\27072
HKCU\SOFTWARE\27076
HKCU\SOFTWARE\2708
HKCU\SOFTWARE\27084
HKCU\SOFTWARE\27100
HKCU\SOFTWARE\27104
HKCU\SOFTWARE\27108
HKCU\SOFTWARE\27112
HKCU\SOFTWARE\27148
HKCU\SOFTWARE\27152
HKCU\SOFTWARE\2716
HKCU\SOFTWARE\27196
HKCU\SOFTWARE\2720
HKCU\SOFTWARE\27216
HKCU\SOFTWARE\27224
HKCU\SOFTWARE\27244
HKCU\SOFTWARE\27248
HKCU\SOFTWARE\27276
HKCU\SOFTWARE\27348
HKCU\SOFTWARE\2736
HKCU\SOFTWARE\27376
HKCU\SOFTWARE\27396
HKCU\SOFTWARE\2740
HKCU\SOFTWARE\27420
HKCU\SOFTWARE\27440
HKCU\SOFTWARE\27452
HKCU\SOFTWARE\27492
HKCU\SOFTWARE\27516
HKCU\SOFTWARE\27552
HKCU\SOFTWARE\27564
HKCU\SOFTWARE\27584
HKCU\SOFTWARE\27604
HKCU\SOFTWARE\27624
HKCU\SOFTWARE\27632
HKCU\SOFTWARE\27636
HKCU\SOFTWARE\2764
HKCU\SOFTWARE\27640
HKCU\SOFTWARE\27644
HKCU\SOFTWARE\27676
HKCU\SOFTWARE\27684
HKCU\SOFTWARE\27688
HKCU\SOFTWARE\27720
HKCU\SOFTWARE\27724
HKCU\SOFTWARE\27736
HKCU\SOFTWARE\2776
HKCU\SOFTWARE\2780
HKCU\SOFTWARE\27800
HKCU\SOFTWARE\27804
HKCU\SOFTWARE\27812
HKCU\SOFTWARE\27824
HKCU\SOFTWARE\2784
HKCU\SOFTWARE\27848
HKCU\SOFTWARE\27864
HKCU\SOFTWARE\27872
HKCU\SOFTWARE\27876
HKCU\SOFTWARE\27888
HKCU\SOFTWARE\27900
HKCU\SOFTWARE\27904
HKCU\SOFTWARE\27916
HKCU\SOFTWARE\2792
HKCU\SOFTWARE\27920
HKCU\SOFTWARE\27928
HKCU\SOFTWARE\27940
HKCU\SOFTWARE\27952
HKCU\SOFTWARE\27972
HKCU\SOFTWARE\28016
HKCU\SOFTWARE\28028
HKCU\SOFTWARE\2804
HKCU\SOFTWARE\28104
HKCU\SOFTWARE\28112
HKCU\SOFTWARE\2816
HKCU\SOFTWARE\28172
HKCU\SOFTWARE\28176
HKCU\SOFTWARE\2820
HKCU\SOFTWARE\28212
HKCU\SOFTWARE\28216
HKCU\SOFTWARE\28232
HKCU\SOFTWARE\2824
HKCU\SOFTWARE\28244
HKCU\SOFTWARE\28252
HKCU\SOFTWARE\28256
HKCU\SOFTWARE\28320
HKCU\SOFTWARE\28328
HKCU\SOFTWARE\28380
HKCU\SOFTWARE\28384
HKCU\SOFTWARE\28392
HKCU\SOFTWARE\28412
HKCU\SOFTWARE\28428
HKCU\SOFTWARE\2844
HKCU\SOFTWARE\28460
HKCU\SOFTWARE\28468
HKCU\SOFTWARE\28492
HKCU\SOFTWARE\28524
HKCU\SOFTWARE\28548
HKCU\SOFTWARE\2856
HKCU\SOFTWARE\28568
HKCU\SOFTWARE\2860
HKCU\SOFTWARE\28620
HKCU\SOFTWARE\2864
HKCU\SOFTWARE\28676
HKCU\SOFTWARE\2868
HKCU\SOFTWARE\28704
HKCU\SOFTWARE\2872
HKCU\SOFTWARE\2876
HKCU\SOFTWARE\28768
HKCU\SOFTWARE\28784
HKCU\SOFTWARE\28792
HKCU\SOFTWARE\2880
HKCU\SOFTWARE\2884
HKCU\SOFTWARE\28904
HKCU\SOFTWARE\2896
HKCU\SOFTWARE\29004
HKCU\SOFTWARE\29020
HKCU\SOFTWARE\29040
HKCU\SOFTWARE\29060
HKCU\SOFTWARE\29072
HKCU\SOFTWARE\2908
HKCU\SOFTWARE\29084
HKCU\SOFTWARE\29156
HKCU\SOFTWARE\2920
HKCU\SOFTWARE\29204
HKCU\SOFTWARE\2924
HKCU\SOFTWARE\29260
HKCU\SOFTWARE\29324
HKCU\SOFTWARE\2940
HKCU\SOFTWARE\29404
HKCU\SOFTWARE\29436
HKCU\SOFTWARE\2944
HKCU\SOFTWARE\29464
HKCU\SOFTWARE\2948
HKCU\SOFTWARE\29496
HKCU\SOFTWARE\29576
HKCU\SOFTWARE\29620
HKCU\SOFTWARE\2976
HKCU\SOFTWARE\2996
HKCU\SOFTWARE\300
HKCU\SOFTWARE\3008
HKCU\SOFTWARE\3012
HKCU\SOFTWARE\3020
HKCU\SOFTWARE\3032
HKCU\SOFTWARE\3036
HKCU\SOFTWARE\304
HKCU\SOFTWARE\3044
HKCU\SOFTWARE\3056
HKCU\SOFTWARE\3060
HKCU\SOFTWARE\3076
HKCU\SOFTWARE\3080
HKCU\SOFTWARE\3088
HKCU\SOFTWARE\3092
HKCU\SOFTWARE\3096
HKCU\SOFTWARE\3100
HKCU\SOFTWARE\3132
HKCU\SOFTWARE\3140
HKCU\SOFTWARE\3148
HKCU\SOFTWARE\3152
HKCU\SOFTWARE\3156
HKCU\SOFTWARE\3160
HKCU\SOFTWARE\3168
HKCU\SOFTWARE\3172
HKCU\SOFTWARE\3176
HKCU\SOFTWARE\3180
HKCU\SOFTWARE\3184
HKCU\SOFTWARE\3188
HKCU\SOFTWARE\3196
HKCU\SOFTWARE\32
HKCU\SOFTWARE\3208
HKCU\SOFTWARE\3212
HKCU\SOFTWARE\3216
HKCU\SOFTWARE\3220
HKCU\SOFTWARE\3224
HKCU\SOFTWARE\324
HKCU\SOFTWARE\3252
HKCU\SOFTWARE\3260
HKCU\SOFTWARE\3264
HKCU\SOFTWARE\3268
HKCU\SOFTWARE\328
HKCU\SOFTWARE\3288
HKCU\SOFTWARE\332
HKCU\SOFTWARE\3324
HKCU\SOFTWARE\3332
HKCU\SOFTWARE\3348
HKCU\SOFTWARE\336
HKCU\SOFTWARE\3360
HKCU\SOFTWARE\3364
HKCU\SOFTWARE\3384
HKCU\SOFTWARE\3396
HKCU\SOFTWARE\3404
HKCU\SOFTWARE\3412
HKCU\SOFTWARE\3436
HKCU\SOFTWARE\3440
HKCU\SOFTWARE\3444
HKCU\SOFTWARE\3468
HKCU\SOFTWARE\3476
HKCU\SOFTWARE\348
HKCU\SOFTWARE\3480
HKCU\SOFTWARE\3484
HKCU\SOFTWARE\3496
HKCU\SOFTWARE\3516
HKCU\SOFTWARE\3532
HKCU\SOFTWARE\3536
HKCU\SOFTWARE\3540
HKCU\SOFTWARE\3544
HKCU\SOFTWARE\3552
HKCU\SOFTWARE\3560
HKCU\SOFTWARE\3568
HKCU\SOFTWARE\3572
HKCU\SOFTWARE\3580
HKCU\SOFTWARE\3588
HKCU\SOFTWARE\3592
HKCU\SOFTWARE\3596
HKCU\SOFTWARE\360
HKCU\SOFTWARE\3600
HKCU\SOFTWARE\3604
HKCU\SOFTWARE\3608
HKCU\SOFTWARE\3616
HKCU\SOFTWARE\3624
HKCU\SOFTWARE\3628
HKCU\SOFTWARE\364
HKCU\SOFTWARE\3648
HKCU\SOFTWARE\3660
HKCU\SOFTWARE\3664
HKCU\SOFTWARE\3676
HKCU\SOFTWARE\3680
HKCU\SOFTWARE\3684
HKCU\SOFTWARE\3692
HKCU\SOFTWARE\3696
HKCU\SOFTWARE\3700
HKCU\SOFTWARE\3708
HKCU\SOFTWARE\3712
HKCU\SOFTWARE\3716
HKCU\SOFTWARE\3720
HKCU\SOFTWARE\3724
HKCU\SOFTWARE\3752
HKCU\SOFTWARE\376
HKCU\SOFTWARE\3760
HKCU\SOFTWARE\3768
HKCU\SOFTWARE\3776
HKCU\SOFTWARE\3780
HKCU\SOFTWARE\3792
HKCU\SOFTWARE\3796
HKCU\SOFTWARE\380
HKCU\SOFTWARE\3808
HKCU\SOFTWARE\3828
HKCU\SOFTWARE\3832
HKCU\SOFTWARE\384
HKCU\SOFTWARE\3840
HKCU\SOFTWARE\3844
HKCU\SOFTWARE\3852
HKCU\SOFTWARE\3856
HKCU\SOFTWARE\3860
HKCU\SOFTWARE\3868
HKCU\SOFTWARE\3876
HKCU\SOFTWARE\388
HKCU\SOFTWARE\3880
HKCU\SOFTWARE\3884
HKCU\SOFTWARE\3892
HKCU\SOFTWARE\3896
HKCU\SOFTWARE\3904
HKCU\SOFTWARE\3912
HKCU\SOFTWARE\392
HKCU\SOFTWARE\3920
HKCU\SOFTWARE\3924
HKCU\SOFTWARE\3932
HKCU\SOFTWARE\3940
HKCU\SOFTWARE\3944
HKCU\SOFTWARE\3948
HKCU\SOFTWARE\3964
HKCU\SOFTWARE\3968
HKCU\SOFTWARE\3976
HKCU\SOFTWARE\3980
HKCU\SOFTWARE\3984
HKCU\SOFTWARE\3988
HKCU\SOFTWARE\3992
HKCU\SOFTWARE\400
HKCU\SOFTWARE\4004
HKCU\SOFTWARE\4012
HKCU\SOFTWARE\4020
HKCU\SOFTWARE\4024
HKCU\SOFTWARE\404
HKCU\SOFTWARE\4048
HKCU\SOFTWARE\4068
HKCU\SOFTWARE\4072
HKCU\SOFTWARE\4076
HKCU\SOFTWARE\408
HKCU\SOFTWARE\4080
HKCU\SOFTWARE\4084
HKCU\SOFTWARE\4092
HKCU\SOFTWARE\4108
HKCU\SOFTWARE\4112
HKCU\SOFTWARE\4120
HKCU\SOFTWARE\4128
HKCU\SOFTWARE\4132
HKCU\SOFTWARE\4140
HKCU\SOFTWARE\4144
HKCU\SOFTWARE\4148
HKCU\SOFTWARE\4152
HKCU\SOFTWARE\4156
HKCU\SOFTWARE\416
HKCU\SOFTWARE\4168
HKCU\SOFTWARE\4184
HKCU\SOFTWARE\4196
HKCU\SOFTWARE\4200
HKCU\SOFTWARE\4224
HKCU\SOFTWARE\424
HKCU\SOFTWARE\4240
HKCU\SOFTWARE\4248
HKCU\SOFTWARE\4252
HKCU\SOFTWARE\4256
HKCU\SOFTWARE\4260
HKCU\SOFTWARE\4272
HKCU\SOFTWARE\4312
HKCU\SOFTWARE\4320
HKCU\SOFTWARE\4328
HKCU\SOFTWARE\4340
HKCU\SOFTWARE\4344
HKCU\SOFTWARE\4352
HKCU\SOFTWARE\4376
HKCU\SOFTWARE\4384
HKCU\SOFTWARE\4408
HKCU\SOFTWARE\4412
HKCU\SOFTWARE\4420
HKCU\SOFTWARE\4424
HKCU\SOFTWARE\4444
HKCU\SOFTWARE\4448
HKCU\SOFTWARE\4468
HKCU\SOFTWARE\4480
HKCU\SOFTWARE\4492
HKCU\SOFTWARE\4496
HKCU\SOFTWARE\4500
HKCU\SOFTWARE\4504
HKCU\SOFTWARE\4508
HKCU\SOFTWARE\4516
HKCU\SOFTWARE\4520
HKCU\SOFTWARE\4540
HKCU\SOFTWARE\4544
HKCU\SOFTWARE\4548
HKCU\SOFTWARE\4556
HKCU\SOFTWARE\456
HKCU\SOFTWARE\4568
HKCU\SOFTWARE\4572
HKCU\SOFTWARE\4576
HKCU\SOFTWARE\4584
HKCU\SOFTWARE\4588
HKCU\SOFTWARE\4592
HKCU\SOFTWARE\4596
HKCU\SOFTWARE\4600
HKCU\SOFTWARE\4612
HKCU\SOFTWARE\4616
HKCU\SOFTWARE\4624
HKCU\SOFTWARE\4628
HKCU\SOFTWARE\4640
HKCU\SOFTWARE\4648
HKCU\SOFTWARE\4668
HKCU\SOFTWARE\4672
HKCU\SOFTWARE\4676
HKCU\SOFTWARE\4680
HKCU\SOFTWARE\4688
HKCU\SOFTWARE\4692
HKCU\SOFTWARE\4696
HKCU\SOFTWARE\4704
HKCU\SOFTWARE\4708
HKCU\SOFTWARE\4712
HKCU\SOFTWARE\472
HKCU\SOFTWARE\4720
HKCU\SOFTWARE\4728
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contenu des dossiers Programmes (192) - 6s
O43 - CFD: 2014/12/08 14:45:49 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/09/09 09:07:14 - [] D -- C:\Program Files (x86)\Avira
O43 - CFD: 2014/11/26 17:59:16 - [] D -- C:\Program Files (x86)\BookSmart
O43 - CFD: 2015/07/12 15:57:56 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/06/28 19:26:41 - [] D -- C:\Program Files (x86)\Convar
O43 - CFD: 2014/06/17 23:36:40 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2014/01/29 22:47:30 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2015/05/14 11:28:54 - [] D -- C:\Program Files (x86)\FastStone Image Viewer
O43 - CFD: 2015/06/22 11:36:29 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 2014/01/29 17:40:00 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/07/12 15:13:34 - [] D -- C:\Program Files (x86)\gtk2
O43 - CFD: 2015/02/04 15:39:51 - [] D -- C:\Program Files (x86)\HD Tune
O43 - CFD: 2015/02/04 15:19:00 - [] D -- C:\Program Files (x86)\HDD Health
O43 - CFD: 2015/03/06 15:59:57 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/09/09 09:19:33 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/07/12 15:14:08 - [] D -- C:\Program Files (x86)\Jahshaka
O43 - CFD: 2014/09/05 18:25:26 - [] D -- C:\Program Files (x86)\Kolor
O43 - CFD: 2014/07/22 17:56:24 - [] D -- C:\Program Files (x86)\Lexmark 2600 Series
O43 - CFD: 2014/04/08 14:04:37 - [] D -- C:\Program Files (x86)\Lexmark Toolbar
O43 - CFD: 2015/09/02 21:32:16 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/11/10 14:29:57 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/19 09:03:27 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015/07/12 15:59:14 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2014/01/29 22:05:35 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2014/01/29 22:07:03 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/07/12 15:13:35 - [] D -- C:\Program Files (x86)\mlt
O43 - CFD: 2015/08/19 09:03:27 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/08/18 11:06:18 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2014/02/04 14:36:49 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/03/06 15:59:03 - [] D -- C:\Program Files (x86)\Nikon
O43 - CFD: 2014/01/29 17:30:01 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/07/12 15:14:05 - [] D -- C:\Program Files (x86)\OpenLibraries
O43 - CFD: 2014/02/04 14:36:49 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2014/06/28 21:01:30 - [] D -- C:\Program Files (x86)\RescuePRO
O43 - CFD: 2014/02/06 22:46:05 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/08/19 00:51:01 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/07/12 15:59:13 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/08/22 17:36:30 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2014/02/04 14:14:22 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2014/02/04 13:13:49 - [] D -- C:\Program Files (x86)\X-Rite
O43 - CFD: 2015/09/09 08:59:01 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2015/03/11 11:19:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/03/11 11:19:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/11 11:19:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/07/22 20:55:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
O43 - CFD: 2015/09/04 11:33:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
O43 - CFD: 2014/11/26 17:59:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BookSmart
O43 - CFD: 2014/01/29 22:47:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2015/05/14 11:28:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
O43 - CFD: 2015/06/22 11:36:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2014/01/29 17:40:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/02/04 15:39:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
O43 - CFD: 2015/02/04 15:18:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Health
O43 - CFD: 2015/07/12 15:13:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jahshaka
O43 - CFD: 2014/07/22 17:56:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 2600 Series
O43 - CFD: 2015/03/06 15:58:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/09/02 21:32:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2014/01/29 22:06:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/08/16 20:07:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2014/07/25 12:44:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Newshosting
O43 - CFD: 2015/03/06 15:59:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
O43 - CFD: 2015/03/12 13:21:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phase One
O43 - CFD: 2015/03/06 15:59:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2
O43 - CFD: 2014/02/15 00:24:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proxima Software
O43 - CFD: 2014/06/28 21:01:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RescuePRO
O43 - CFD: 2015/02/04 15:18:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/03/11 11:19:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2013/09/30 06:00:03 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/02/06 22:46:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/03/06 15:59:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX 2
O43 - CFD: 2015/07/12 15:59:21 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2014/02/04 14:14:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/02/10 15:44:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireless Transmitter Utility
O43 - CFD: 2014/02/04 13:13:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\X-Rite
O43 - CFD: 2015/09/09 08:59:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2015/03/06 15:59:37 - [] D -- C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
O43 - CFD: 2014/12/08 14:46:19 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/01/29 21:11:51 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 2014/07/22 17:57:55 - [0] D -- C:\ProgramData\App4rTemp
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/06/09 18:19:13 - [] D -- C:\ProgramData\Avira
O43 - CFD: 2014/01/29 17:00:52 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/07/25 12:44:07 - [] D -- C:\ProgramData\Caphyon
O43 - CFD: 2014/06/17 23:36:57 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2014/01/29 22:50:02 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/03/06 15:59:19 - [] D -- C:\ProgramData\EnterNHelp
O43 - CFD: 2014/04/08 14:04:40 - [] D -- C:\ProgramData\Ezprint
O43 - CFD: 2014/02/12 18:56:40 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2014/06/04 15:58:37 - [] D -- C:\ProgramData\Lexmark 2600 Series
O43 - CFD: 2014/12/05 15:23:53 - [] D -- C:\ProgramData\lx_Cats
O43 - CFD: 2015/09/02 21:32:14 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/08/20 15:57:30 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2014/01/29 17:00:52 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/07/12 15:57:55 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/09 05:27:03 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/07/12 15:58:20 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2014/01/29 17:00:52 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/01/29 19:31:35 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/02/13 10:28:48 - [] D -- C:\ProgramData\Nikon
O43 - CFD: 2014/01/29 17:30:02 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/01/29 17:29:22 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/09/04 11:33:29 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/03/12 13:22:21 - [] D -- C:\ProgramData\Phase One
O43 - CFD: 2014/12/06 13:27:00 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/03/11 11:18:38 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2014/02/03 14:28:46 - [] D -- C:\ProgramData\Tablet
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/03/06 15:59:19 - [] D -- C:\ProgramData\Ultima_T15
O43 - CFD: 2014/02/04 13:13:44 - [] D -- C:\ProgramData\X-Rite
O43 - CFD: 2014/12/08 14:46:11 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/01/29 21:10:45 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2014/06/17 23:36:37 - [] D -- C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 2014/10/17 12:13:32 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/01/26 20:06:03 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/10/10 13:40:33 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2015/03/06 15:59:22 - [] D -- C:\Program Files (x86)\Common Files\Nikon
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/03/11 11:18:38 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/07/12 15:57:56 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/09/03 11:09:17 - [] D -- C:\Users\david\AppData\Roaming\Adobe
O43 - CFD: 2015/04/07 19:14:13 - [] D -- C:\Users\david\AppData\Roaming\Avira
O43 - CFD: 2014/06/17 23:36:56 - [] D -- C:\Users\david\AppData\Roaming\CyberLink
O43 - CFD: 2014/08/05 22:13:22 - [] D -- C:\Users\david\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/05/14 11:29:05 - [] D -- C:\Users\david\AppData\Roaming\FastStone
O43 - CFD: 2015/09/03 18:22:52 - [] D -- C:\Users\david\AppData\Roaming\FileZilla
O43 - CFD: 2014/02/15 00:25:32 - [0] D -- C:\Users\david\AppData\Roaming\FontExpert
O43 - CFD: 2015/02/04 15:23:34 - [] D -- C:\Users\david\AppData\Roaming\HDDHealth
O43 - CFD: 2015/02/28 23:38:38 - [] D -- C:\Users\david\AppData\Roaming\HDRsoft
O43 - CFD: 2015/03/11 11:39:59 - [] D -- C:\Users\david\AppData\Roaming\Identities
O43 - CFD: 2014/07/22 17:56:34 - [] D -- C:\Users\david\AppData\Roaming\Lexmark Productivity Studio
O43 - CFD: 2014/01/29 17:20:58 - [] D -- C:\Users\david\AppData\Roaming\Macromedia
O43 - CFD: 2015/07/12 16:05:39 - [] SD -- C:\Users\david\AppData\Roaming\Microsoft
O43 - CFD: 2015/07/29 21:33:12 - [] D -- C:\Users\david\AppData\Roaming\Mozilla
O43 - CFD: 2014/07/25 12:52:20 - [] D -- C:\Users\david\AppData\Roaming\Newshosting
O43 - CFD: 2015/03/06 16:01:06 - [] D -- C:\Users\david\AppData\Roaming\Nikon
O43 - CFD: 2014/01/29 22:32:17 - [] D -- C:\Users\david\AppData\Roaming\NVIDIA
O43 - CFD: 2014/01/31 14:15:13 - [] D -- C:\Users\david\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2014/01/29 19:31:54 - [] D -- C:\Users\david\AppData\Roaming\Thunderbird
O43 - CFD: 2015/07/24 09:13:52 - [] D -- C:\Users\david\AppData\Roaming\vlc
O43 - CFD: 2015/09/09 09:14:50 - [] D -- C:\Users\david\AppData\Roaming\WindowsDDL
O43 - CFD: 2015/09/02 21:51:13 - [] D -- C:\Users\david\AppData\Roaming\Windowsx
O43 - CFD: 2014/02/04 14:15:25 - [] D -- C:\Users\david\AppData\Roaming\WinRAR
O43 - CFD: 2015/07/23 11:50:49 - [] D -- C:\Users\david\AppData\Roaming\X-Rite
O43 - CFD: 2015/01/23 11:42:00 - [] D -- C:\Users\david\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 2015/09/09 09:47:47 - [] D -- C:\Users\david\AppData\Roaming\ZHP
O43 - CFD: 2015/09/02 21:58:23 - [] D -- C:\Users\david\AppData\Local\Adobe
O43 - CFD: 2014/01/29 17:10:22 - [0] SHD -- C:\Users\david\AppData\Local\Application Data
O43 - CFD: 2014/10/18 17:17:46 - [] D -- C:\Users\david\AppData\Local\AviraSpeedup
O43 - CFD: 2015/09/06 12:48:34 - [] D -- C:\Users\david\AppData\Local\CaptureOne
O43 - CFD: 2015/09/04 12:28:50 - [] D -- C:\Users\david\AppData\Local\CrashDumps
O43 - CFD: 2015/09/04 11:07:45 - [] D -- C:\Users\david\AppData\Local\Diagnostics
O43 - CFD: 2015/03/06 15:59:45 - [] D -- C:\Users\david\AppData\Local\Downloaded Installations
O43 - CFD: 2014/01/29 17:40:10 - [] D -- C:\Users\david\AppData\Local\Google
O43 - CFD: 2015/06/03 06:51:42 - [] D -- C:\Users\david\AppData\Local\GWX
O43 - CFD: 2014/01/29 17:10:22 - [0] SHD -- C:\Users\david\AppData\Local\Historique
O43 - CFD: 2015/03/12 13:22:21 - [] D -- C:\Users\david\AppData\Local\IsolatedStorage
O43 - CFD: 2014/06/28 21:01:28 - [] D -- C:\Users\david\AppData\Local\LC Technology Inc
O43 - CFD: 2015/08/25 13:56:05 - [] D -- C:\Users\david\AppData\Local\Microsoft
O43 - CFD: 2014/10/05 17:11:04 - [] D -- C:\Users\david\AppData\Local\Microsoft Help
O43 - CFD: 2014/07/25 12:45:37 - [] D -- C:\Users\david\AppData\Local\Newshosting
O43 - CFD: 2015/03/06 16:01:06 - [] D -- C:\Users\david\AppData\Local\Nikon
O43 - CFD: 2015/08/08 10:25:01 - [] D -- C:\Users\david\AppData\Local\Packages
O43 - CFD: 2015/08/27 11:14:29 - [] D -- C:\Users\david\AppData\Local\Phase_One
O43 - CFD: 2014/06/28 21:00:44 - [] D -- C:\Users\david\AppData\Local\Programs
O43 - CFD: 2015/09/09 09:48:06 - [] D -- C:\Users\david\AppData\Local\Temp
O43 - CFD: 2014/01/29 17:10:22 - [0] SHD -- C:\Users\david\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/01/08 15:38:09 - [] D -- C:\Users\david\AppData\Local\Thunderbird
O43 - CFD: 2015/02/09 11:13:13 - [] D -- C:\Users\david\AppData\Local\VirtualStore
O43 - CFD: 2015/08/21 17:51:24 - [] D -- C:\Users\david\AppData\Local\Windows Live
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/20 19:53:33 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/09/05 18:25:27 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autopano Giga 2
O43 - CFD: 2014/06/28 19:26:41 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
O43 - CFD: 2015/09/09 09:25:38 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/02/15 00:24:01 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Proxima Software
O43 - CFD: 2015/07/20 19:53:33 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/02/04 14:14:23 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ Liste des pilotes du système (47) - 1s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896] ©
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176] ©
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200] ©
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] ©
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952] ©
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016] ©
O58 - SDL:2015/09/01 15:37:58 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\WINDOWS\System32\drivers\avgntflt.sys [137288] ©
O58 - SDL:2015/09/01 15:37:58 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [148632] ©
O58 - SDL:2013/12/13 16:03:28 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\WINDOWS\System32\drivers\avkmgr.sys [28600] ©
O58 - SDL:2015/03/10 11:58:51 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\WINDOWS\System32\drivers\avnetflt.sys [43576] ©
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] ©
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] ©
O58 - SDL:2011/06/23 03:01:22 A . (.Nicomsoft Ltd. - WINI2C-DDC Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\DDCDrv.sys [20832]
O58 - SDL:2014/01/29 22:47:30 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] ©
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568] ©
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320] ©
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] ©
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536] ©
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] ©
O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/09/09 09:29:38 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [113880] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] ©
O58 - SDL:2009/03/08 20:16:14 A . (.Windows (R) Codename Longhorn DDK provider - Mouse Filter Driver.) -- C:\WINDOWS\System32\drivers\moufiltr.sys [7680] ©
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] ©
O58 - SDL:2015/06/18 08:42:02 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216] ©
O58 - SDL:2013/06/18 20:30:32 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\netr28ux.sys [2408208] ©
O58 - SDL:2007/09/05 13:48:24 A . (.Nikon Corporation - .) -- C:\WINDOWS\System32\drivers\NkVBus.sys [26400] ©
O58 - SDL:2012/12/19 03:22:32 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [13523816] ©
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] ©
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288] ©
O58 - SDL:2013/06/18 16:46:17 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [591360] ©
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] ©
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] ©
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] ©
O58 - SDL:2012/08/15 16:44:36 A . (.Windows (R) Win 7 DDK provider - Filter Driver for Waltop Tablet.) -- C:\WINDOWS\System32\drivers\TabletFilter.sys [7680] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] ©
O58 - SDL:2009/08/26 14:15:10 A . (.Windows (R) Win 7 DDK provider - Virtual Hid Device.) -- C:\WINDOWS\System32\drivers\walvhid.sys [7552] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (21) - 6s
O61 - LFC: 2015/09/09 09:14:50 A . (..) -- C:\Users\david\AppData\Roaming\WindowsDDL\dlhost.exe [783830]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\KINGSTON SV300S37A120G_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\KINGSTON SV300S37A120G_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\KINGSTON SV300S37A120G_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD103SJ_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD103SJ_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD103SJ_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD252KJ_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD252KJ_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD252KJ_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST2000DM001-1ER164_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST2000DM001-1ER164_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST2000DM001-1ER164_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST3250820AS_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST3250820AS_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST3250820AS_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\_identity.bin [512]
O61 - LFC: 2015/09/07 12:48:24 A . (..) -- C:\Users\david\AppData\Local\IsolatedStorage\meoyxrgc.ueb\e53ya5mx.04u\StrongName.egxoaeytm4blbamnd0hfmt2ff0lzwm45\AssemFiles\storage_2f0aefe3fb994054b884b2a408e73967_policy.bin [237]
O61 - LFC: 2015/09/08 07:02:20 A . (..) -- C:\Users\david\AppData\Local\IsolatedStorage\meoyxrgc.ueb\e53ya5mx.04u\StrongName.egxoaeytm4blbamnd0hfmt2ff0lzwm45\AssemFiles\storage_2f0aefe3fb994054b884b2a408e73967_sessiondata_168d21f041a64f23b40b9b47543ebb55.bin [3614]
O61 - LFC: 2015/09/06 12:48:23 A . (..) -- C:\Users\david\AppData\Local\IsolatedStorage\meoyxrgc.ueb\e53ya5mx.04u\StrongName.egxoaeytm4blbamnd0hfmt2ff0lzwm45\AssemFiles\storage_2f0aefe3fb994054b884b2a408e73967_statistics.bin [115]
O61 - LFC: 2015/09/09 09:38:25 A . (..) -- C:\Users\david\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ Associations Shell Spawning (9) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (4) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
---\\ Enumère les services démarrés par Svchost (34) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\WINDOWS\System32\aelupsvc.dll [214528] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [329216] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1360896] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [1084416] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31744] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [110080] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [110592] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1265152] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [230400] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\WINDOWS\system32\mmcss.dll [71168] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [135168] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [228864] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [84992] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [101376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [348672] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [1639424] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [59392] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [166400] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [102912] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [542208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73728] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [3705344] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [933376] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] ©
---\\ Liste des exceptions du parefeu Windows (16) - 1s
O87 - FAEL: "{A8EE3863-0163-46B1-8016-9764555A9DED}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\lxdncoms.exe
O87 - FAEL: "{C54B260A-BC58-41D7-81F2-C32386884C82}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\lxdncoms.exe
O87 - FAEL: "{61798AAD-CAF2-413E-B8FD-A96AC3AF2A99}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
O87 - FAEL: "{72E7AFEC-AE4A-452F-ADCD-974A013AC035}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
O87 - FAEL: "TCP Query User{C8C3565E-661F-4761-84C2-AD217830DC7F}C:\program files (x86)\lexmark 2600 series\lxdnmon.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\lexmark 2600 series\lxdnmon.exe
O87 - FAEL: "UDP Query User{60E85953-8A7B-48C8-9A4B-246939510FCE}C:\program files (x86)\lexmark 2600 series\lxdnmon.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\lexmark 2600 series\lxdnmon.exe
O87 - FAEL: "TCP Query User{32FEC290-62B3-4111-B7FF-ED577FD1BDB6}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P6-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "UDP Query User{79845650-8366-4C27-A15E-4DE6BB0B9E8F}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P17-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "{57B88E1C-F002-428C-81C4-0DA1E6D5C490}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\lxdncoms.exe
O87 - FAEL: "{7B67950C-3C0D-4E9B-A61E-9D7D237292C8}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\lxdncoms.exe
O87 - FAEL: "TCP Query User{D0B66EED-A3D1-4CDC-9A52-0B7A5F80A755}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P6-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "UDP Query User{82FE5A0B-8AB5-4C39-9B91-849364C0491F}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P17-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "{F4704A62-2B0B-44FF-9C67-E04DB28F514F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe
O87 - FAEL: "{45F45D3E-D498-4A05-A7A7-0A81509C42D5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe
O87 - FAEL: "{FAE1877E-7434-4325-A6CA-975F8D39A14A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\frun.exe
O87 - FAEL: "{ABF27B8B-255D-4CEE-BD1E-2E3196EBE95D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\frun.exe
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (22) - 11s
SS - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Auto [2015/09/01 15:37:35] [ 887128] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe ©
SR - Auto [2015/09/01 15:37:53] [ 461672] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe ©
SR - Auto [2015/09/01 15:37:34] [ 461672] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe ©
SS - Disabled [2015/09/01 15:37:38] [ 1213072] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe ©
SR - Auto [2015/08/13 12:01:24] [ 228104] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe ©
SS - Auto [2015/08/28 15:36:19] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/08/28 15:36:19] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Auto [2013/03/08 10:54:00] [ 17760] HDDHealth (HDDHealth) . (...) - C:\Program Files (x86)\HDD Health\HDDHealthService.exe
SS - Demand [2005/04/04 01:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SS - Auto [2009/08/13 11:08:11] [ 1044648] lxdn_device (lxdn_device) . (...) - C:\Windows\System32\lxdncoms.exe
SS - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Demand [2015/08/17 17:41:28] [ 149672] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SS - Auto [2013/12/05 12:53:48] [ 45056] NkPtpEnumWT3 (NkPtpEnumWT3) . (.Nikon Corporation.) - C:\Program Files\Nikon\Wireless Transmitter Utility\NkVBus\NkPtpEnum.exe ©
SS - Auto [2012/12/07 11:21:12] [ 891240] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe ©
SS - Auto [2012/12/19 03:22:30] [ 1258856] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
SS - Demand [2010/02/19 14:37:14] [ 517096] (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe ©
SS - Auto [2012/10/19 12:01:04] [ 581120] WTService (WTService) . (...) - C:\WINDOWS\system32\atwtusb.exe
SR - Auto [2011/03/10 21:08:06] [ 203088] X-Rite Device Services Manager (xrdd.exe) . (.X-Rite Inc..) - C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe ©
SS - Auto [2008/02/01 17:24:06] [ 32240] {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} ({FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}) . (.Cyberlink Corp..) - C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl ©
---\\ Scan Additionnel (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
~ End of the scan, 30684 items in 88 seconds (1688)(0)()
~ Démarré par david (Administrator) (2015/09/09 09:47:38)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\david\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\david\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v45.0.2454.85
MFIE: Mozilla Thunderbird 38.2.0 (x86 fr) v38.2.0
MSIE: Internet Explorer v11.0.9600.18036
---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : GQ6TG
Windows License : OK
~ Windows Remaining Initializations Number : 999
Windows Automatic Updates : OK
---\\ Logiciels de protection (3) - 1s
Avira Antivirus v15.0.12.420
Malwarebytes Anti-Malware version 2.1.8.1057
Windows Defender (Deactivate)
---\\ Surveillance de Logiciels (2) - 2s
Adobe Flash Player 15 Plugin
Adobe Reader XI
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4192.756 MB (54% free)
~ System Restore: Activé (Enable)
~ System drive C: has 49 GB free of 114 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DAVEE-PC
~ User Name: david
~ Logged in as Administrator
---\\ Enumération des unités disques (8) - 5s
~ Drive C: has 49 GB free of 114 GB (System)
~ Drive D: has 1546 GB free of 1907 GB
~ Drive E: has 0 GB free of 0 GB
~ Drive F: has 49 GB free of 99 GB
~ Drive G: has 294 GB free of 853 GB
~ Drive H: has 118 GB free of 238 GB
~ Drive J: has 179 GB free of 238 GB
~ Drive K: has GB free of 11 GB
---\\ Etat du Centre de Sécurité Windows (13) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [2501368] ©
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [54784] ©
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [145920] ©
[MD5.096A832FCF5A01003E96DD7FEE45618D] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2427392] ©
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [572416] ©
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [447488] ©
[MD5.A5675939CF0F99B20B5A3CFCC3C1B46A] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\System32\dnsapi.dll [657920] ©
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\Syswow64\dnsapi.dll [498688] ©
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19456] ©
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [563200] ©
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [26464] ©
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576] ©
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352] ©
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [134144] ©
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800] ©
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [108544] ©
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [142848] ©
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [401408] ©
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [282624] ©
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2025792] ©
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [94208] ©
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [120832] ©
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584] ©
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [107520] ©
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [310080] ©
---\\ Processus lancés (19) - 0s
[MD5.E20B4F23EB153635D67944F63454EC84] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672] [PID.1344] ©
[MD5.E20B4F23EB153635D67944F63454EC84] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672] [PID.1572] ©
[MD5.24680B56D862F1DE30C13FC64B80F568] - (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [228104] [PID.2092] ©
[MD5.094F3AC18AF083D542D96EBEF1F28161] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe [632152] [PID.2692] ©
[MD5.27F8A7A78773427E5D931628F89D6839] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782008] [PID.4356] ©
[MD5.1B1D213D7D32045C7CE01232C7C185CA] - (.X-Rite Inc. - xritedev Application.) -- C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [203088] [PID.6124] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.3124] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.5532] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4196] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4216] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4804] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.3216] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4808] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.5264] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.1888] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.1832] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.6044] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.1804] ©
[MD5.277789334263C78BD58231766AD7C015] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\david\AppData\Roaming\ZHP\ZHPDiag3.exe [1923072] [PID.3096] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (15) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://feedly.com/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.facebook.com/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.bistro-photo.fr/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://plus.google.com/
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [flliilndjeohchalpbbcdekjklbdgfkk] Avira Browser Safety
G2 - GCE: Preference [User Data\Default] [hipbfijinpcgfogaopmgehiegacbhmob] feedly
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [opnbmdkdflhjiclaoiiifmheknpccalb] Instagram for Chrome
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (1) - 1s
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ©
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (22)
---\\ Applications lancées au démarrage du système (24) - 0s
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe ©
O4 - HKLM\..\Run: [AtwtusbIcon] . (.Copyright (C) 2010 - Show Atwtusb Icon Application.) -- C:\WINDOWS\System32\AtwtusbIcon.exe
O4 - HKLM\..\Run: [lxdnmon.exe] . (. - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
O4 - HKLM\..\Run: [EzPrint] . (.Lexmark International Inc. - Lexmark Fast Pics Application.) -- C:\Program Files (x86)\Lexmark 2600 Series\ezprint.exe
O4 - HKLM\..\Run: [lxdnamon] . (...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe ©
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe ©
O4 - HKCU\..\Run: [HKCU] . (...) -- C:\Users\david\AppData\Roaming\WindowsDDL\dlhost.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_C8D43A3EEFF19C42AA31C68EEE7A5AF4] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKCU\..\RunOnce: [gFa57A] . (...) -- C:\Users\david\nCh71K\svchost.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe ©
O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe ©
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl8] . (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe ©
O4 - HKLM\..\Wow6432Node\Run: [PDVD8LanguageShortcut] . (.Copyright (C) 2006 - Language Application.) -- C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe
O4 - HKLM\..\Wow6432Node\Run: [BDRegion] . (.cyberlink - brs.) -- C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe ©
O4 - HKUS\.DEFAULT\..\Run: [AviraSpeedup] C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [AviraSpeedup] C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe (.not file.)
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe ©
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe ©
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [HKCU] . (...) -- C:\Users\david\AppData\Roaming\WindowsDDL\dlhost.exe
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\Run: [GoogleChromeAutoLaunch_C8D43A3EEFF19C42AA31C68EEE7A5AF4] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKUS\S-1-5-21-1101957289-3704870716-3342904750-1001\..\RunOnce: [gFa57A] . (...) -- C:\Users\david\nCh71K\svchost.exe
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
---\\ Protocole additionnel (21) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©
---\\ Liste des services NT non Microsoft et non désactivés (16) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe ©
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe ©
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe ©
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: HDDHealth (HDDHealth) . (...) - C:\Program Files (x86)\HDD Health\HDDHealthService.exe
O23 - Service: lxdn_device (lxdn_device) . (. - Printer Communication System.) - C:\Windows\System32\lxdncoms.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NkPtpEnumWT3 (NkPtpEnumWT3) . (.Nikon Corporation - PTP-IP Enumerator.) - C:\Program Files\Nikon\Wireless Transmitter Utility\NkVBus\NkPtpEnum.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 307.6.) - C:\WINDOWS\system32\nvvsvc.exe ©
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
O23 - Service: WTService (WTService) . (. - User Mode Tablet Driver.) - C:\WINDOWS\system32\atwtusb.exe
O23 - Service: X-Rite Device Services Manager (xrdd.exe) . (.X-Rite Inc. - xritedev Application.) - C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe ©
O23 - Service: {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} ({FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}) . (.Cyberlink Corp. - FCL Driver.) - C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl ©
---\\ Tâches planifiées en automatique (10) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.50131BFA7FD0C6029E611DBA35AA7E4D] [APT] [Installation App Launcher] (.Lexmark International Inc..) -- C:\Program Files (x86)\Lexmark 2600 Series\ezprint.exe [107176]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1090] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1094] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3830] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4066] ©
O39 - APT: Installation App Launcher - (.Lexmark International Inc..) -- C:\WINDOWS\System32\Tasks\Installation App Launcher [3182]
---\\ Logiciels installés (65) - 39s
O42 - Logiciel: Package de pilotes Windows - Phase One / Mamiya V-Grip USB Driver (12/03/20 - (.Phase One / Mamiya.) [HKLM][64Bits] -- 3F504CC0B024052107934E093CC26DA720256A7A
O42 - Logiciel: Package de pilotes Windows - Phase One A/S (WinUSB) USBDevice (12/03/2014 - (.Phase One A/S.) [HKLM][64Bits] -- 7C6570ABBEB2F08EFBC23ED7925AE72DA6167BD8
O42 - Logiciel: Package de pilotes Windows - Leaf Imaging Ltd. Image (12/03/2014 1.2.0.0) - (.Leaf Imaging Ltd..) [HKLM][64Bits] -- B758007C752D28F7C3542875CEEBDADCAE5941AE
O42 - Logiciel: Capture One 8.3 - (.Phase One A/S.) [HKLM][64Bits] -- CaptureOne8_is1
O42 - Logiciel: Lexmark 2600 Series - (.Lexmark International, Inc..) [HKLM][64Bits] -- Lexmark 2600 Series
O42 - Logiciel: Trust tablet driver - (...) [HKLM][64Bits] -- RmTablet
O42 - Logiciel: Adobe Photoshop Lightroom 5.7 64-bit - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD} ©
O42 - Logiciel: ViewNX 2 - (.Nikon.) [HKLM][64Bits] -- {635BE602-BB9C-4C59-8CC5-93F9366E8A21} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: NVIDIA Pilote graphique 307.68 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: Wireless Transmitter Utility - (.Nikon.) [HKLM][64Bits] -- {CA30A485-79C7-4186-A1C7-ACC1B4D18DE7} ©
O42 - Logiciel: Newshosting - (.Newshosting.) [HKLM][64Bits] -- {CBCD378F-DDCE-466E-A62C-A028F015042D} ©
O42 - Logiciel: Picture Control Utility 2 - (.Nikon.) [HKLM][64Bits] -- {D4893C47-704F-4B84-8486-9DE4974ACA6F} ©
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin ©
O42 - Logiciel: Autopano Giga - (.Kolor.) [HKLM][64Bits] -- Autopano Giga ©
O42 - Logiciel: Avira Antivirus v15.0.12.420 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus ©
O42 - Logiciel: BookSmart® 3.4.5 3.4.5 - (.Blurb, Inc.) [HKLM][64Bits] -- BookSmart® 3.4.5 3.4.5
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 ©
O42 - Logiciel: ColorMunki Display 1.0.1 - (.X-Rite.) [HKLM][64Bits] -- ColorMunki Display_is1 ©
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser ©
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite ©
O42 - Logiciel: FastStone Image Viewer 4.6 - (.FastStone Soft.) [HKLM][64Bits] -- FastStone Image Viewer ©
O42 - Logiciel: FileZilla Client 3.11.0.2 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client ©
O42 - Logiciel: FontExpert 2006 - (...) [HKLM][64Bits] -- FontExpert 2006
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: HD Tune 2.55 - (.EFD Software.) [HKLM][64Bits] -- HD Tune_is1 ©
O42 - Logiciel: HDD Health v4.2 - (...) [HKLM][64Bits] -- HDD Health_is1
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47} ©
O42 - Logiciel: Jahshaka - (...) [HKLM][64Bits] -- Jahshaka
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Thunderbird 38.2.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.2.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: OpenLibraries - (...) [HKLM][64Bits] -- OpenLibraries
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: WinRAR 5.01 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} ©
O42 - Logiciel: Avira Launcher v1.1.45.11819 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {315dd168-0794-4cf1-8355-f195cde642fc} ©
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B} ©
O42 - Logiciel: Adobe Illustrator CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4869414E-7AEA-4C8E-BE1C-8D40977FD517} ©
O42 - Logiciel: msxml4 - (.Default Company Name.) [HKLM][64Bits] -- {5AE3D9F1-9E9E-4015-8787-E22705AA32C5}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: RescuePRO 4.2.4.2 - (.LC Technology International, Inc..) [HKLM][64Bits] -- {66AB532A-AF83-4EEF-B692-D8B80D518A08}_is1
O42 - Logiciel: XRD i1d3 - (.X-Rite.) [HKLM][64Bits] -- {715DD253-A4B2-4912-894D-E445507428DC} ©
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6} ©
O42 - Logiciel: Picture Control Utility - (.Nikon.) [HKLM][64Bits] -- {87441A59-5E64-4096-A170-14EFE67200C3} ©
O42 - Logiciel: X-Rite Device Services Manager - (.X-Rite.) [HKLM][64Bits] -- {88868DDD-6500-416B-BD1B-927CEBB9F990} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} ©
O42 - Logiciel: Adobe Dreamweaver CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-F400-7760-000000000005} ©
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} ©
O42 - Logiciel: Nikon Message Center 2 - (.Nikon.) [HKLM][64Bits] -- {B014EE44-9197-4513-9613-71E6EB1B514E} ©
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Avira Launcher v1.1.45.11819 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {EA226E08-91E7-4F05-B61E-3EDBBBEB15BB} ©
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A} ©
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe ©
---\\ HKCU & HKLM Software Keys (1041) - 40s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Audio Unit Effect
HKLM\SOFTWARE\Wow6432Node\Automator
HKLM\SOFTWARE\Wow6432Node\Avira
HKLM\SOFTWARE\Wow6432Node\AviraSpeedup
HKLM\SOFTWARE\Wow6432Node\Basic Track
HKLM\SOFTWARE\Wow6432Node\Bass Amp
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\ej-technologies
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\FotoNation
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Kolor
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\Lexmark
HKLM\SOFTWARE\Wow6432Node\LexmarkInkjet
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nikon
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenLibraries
HKLM\SOFTWARE\Wow6432Node\Proxima Software
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\X-AVCSD
HKLM\SOFTWARE\Wow6432Node\X-Rite
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\10008
HKCU\SOFTWARE\10048
HKCU\SOFTWARE\10092
HKCU\SOFTWARE\10096
HKCU\SOFTWARE\10100
HKCU\SOFTWARE\10116
HKCU\SOFTWARE\10128
HKCU\SOFTWARE\10180
HKCU\SOFTWARE\1020
HKCU\SOFTWARE\10236
HKCU\SOFTWARE\10288
HKCU\SOFTWARE\10296
HKCU\SOFTWARE\10340
HKCU\SOFTWARE\10388
HKCU\SOFTWARE\10444
HKCU\SOFTWARE\10456
HKCU\SOFTWARE\10512
HKCU\SOFTWARE\10544
HKCU\SOFTWARE\1056
HKCU\SOFTWARE\10584
HKCU\SOFTWARE\10736
HKCU\SOFTWARE\10836
HKCU\SOFTWARE\10868
HKCU\SOFTWARE\11040
HKCU\SOFTWARE\11060
HKCU\SOFTWARE\11136
HKCU\SOFTWARE\11156
HKCU\SOFTWARE\11396
HKCU\SOFTWARE\1156
HKCU\SOFTWARE\11596
HKCU\SOFTWARE\11748
HKCU\SOFTWARE\11768
HKCU\SOFTWARE\11880
HKCU\SOFTWARE\1204
HKCU\SOFTWARE\12124
HKCU\SOFTWARE\12168
HKCU\SOFTWARE\1260
HKCU\SOFTWARE\1316
HKCU\SOFTWARE\1456
HKCU\SOFTWARE\1484
HKCU\SOFTWARE\1500
HKCU\SOFTWARE\1592
HKCU\SOFTWARE\1648
HKCU\SOFTWARE\1660
HKCU\SOFTWARE\1752
HKCU\SOFTWARE\1764
HKCU\SOFTWARE\1840
HKCU\SOFTWARE\18408
HKCU\SOFTWARE\18420
HKCU\SOFTWARE\18448
HKCU\SOFTWARE\18452
HKCU\SOFTWARE\18460
HKCU\SOFTWARE\18484
HKCU\SOFTWARE\18508
HKCU\SOFTWARE\18512
HKCU\SOFTWARE\18516
HKCU\SOFTWARE\18572
HKCU\SOFTWARE\18580
HKCU\SOFTWARE\18584
HKCU\SOFTWARE\18612
HKCU\SOFTWARE\18644
HKCU\SOFTWARE\18664
HKCU\SOFTWARE\18672
HKCU\SOFTWARE\18676
HKCU\SOFTWARE\1868
HKCU\SOFTWARE\18688
HKCU\SOFTWARE\18696
HKCU\SOFTWARE\18708
HKCU\SOFTWARE\1872
HKCU\SOFTWARE\18720
HKCU\SOFTWARE\18744
HKCU\SOFTWARE\1876
HKCU\SOFTWARE\18772
HKCU\SOFTWARE\18792
HKCU\SOFTWARE\1880
HKCU\SOFTWARE\18816
HKCU\SOFTWARE\18820
HKCU\SOFTWARE\18824
HKCU\SOFTWARE\18832
HKCU\SOFTWARE\18840
HKCU\SOFTWARE\18844
HKCU\SOFTWARE\18848
HKCU\SOFTWARE\18864
HKCU\SOFTWARE\18876
HKCU\SOFTWARE\1888
HKCU\SOFTWARE\18888
HKCU\SOFTWARE\18912
HKCU\SOFTWARE\18956
HKCU\SOFTWARE\1896
HKCU\SOFTWARE\18960
HKCU\SOFTWARE\18992
HKCU\SOFTWARE\18996
HKCU\SOFTWARE\1900
HKCU\SOFTWARE\19036
HKCU\SOFTWARE\19044
HKCU\SOFTWARE\19064
HKCU\SOFTWARE\19084
HKCU\SOFTWARE\19100
HKCU\SOFTWARE\19120
HKCU\SOFTWARE\19132
HKCU\SOFTWARE\19140
HKCU\SOFTWARE\19152
HKCU\SOFTWARE\19160
HKCU\SOFTWARE\19164
HKCU\SOFTWARE\19168
HKCU\SOFTWARE\19216
HKCU\SOFTWARE\19240
HKCU\SOFTWARE\19248
HKCU\SOFTWARE\19256
HKCU\SOFTWARE\19260
HKCU\SOFTWARE\19272
HKCU\SOFTWARE\19288
HKCU\SOFTWARE\19308
HKCU\SOFTWARE\19312
HKCU\SOFTWARE\1932
HKCU\SOFTWARE\19336
HKCU\SOFTWARE\19348
HKCU\SOFTWARE\19356
HKCU\SOFTWARE\19368
HKCU\SOFTWARE\19372
HKCU\SOFTWARE\19380
HKCU\SOFTWARE\19384
HKCU\SOFTWARE\19388
HKCU\SOFTWARE\19396
HKCU\SOFTWARE\19404
HKCU\SOFTWARE\19452
HKCU\SOFTWARE\19472
HKCU\SOFTWARE\19488
HKCU\SOFTWARE\19496
HKCU\SOFTWARE\19504
HKCU\SOFTWARE\19508
HKCU\SOFTWARE\19512
HKCU\SOFTWARE\19524
HKCU\SOFTWARE\19568
HKCU\SOFTWARE\19576
HKCU\SOFTWARE\19580
HKCU\SOFTWARE\19588
HKCU\SOFTWARE\19604
HKCU\SOFTWARE\19612
HKCU\SOFTWARE\19644
HKCU\SOFTWARE\19648
HKCU\SOFTWARE\19656
HKCU\SOFTWARE\19668
HKCU\SOFTWARE\19688
HKCU\SOFTWARE\19716
HKCU\SOFTWARE\19724
HKCU\SOFTWARE\19728
HKCU\SOFTWARE\19732
HKCU\SOFTWARE\19736
HKCU\SOFTWARE\19740
HKCU\SOFTWARE\19764
HKCU\SOFTWARE\19776
HKCU\SOFTWARE\19796
HKCU\SOFTWARE\19816
HKCU\SOFTWARE\19828
HKCU\SOFTWARE\1984
HKCU\SOFTWARE\19840
HKCU\SOFTWARE\19864
HKCU\SOFTWARE\19872
HKCU\SOFTWARE\19876
HKCU\SOFTWARE\19904
HKCU\SOFTWARE\19908
HKCU\SOFTWARE\19924
HKCU\SOFTWARE\19952
HKCU\SOFTWARE\19956
HKCU\SOFTWARE\19976
HKCU\SOFTWARE\2000
HKCU\SOFTWARE\20012
HKCU\SOFTWARE\20020
HKCU\SOFTWARE\20032
HKCU\SOFTWARE\20036
HKCU\SOFTWARE\20108
HKCU\SOFTWARE\2012
HKCU\SOFTWARE\20120
HKCU\SOFTWARE\20124
HKCU\SOFTWARE\20132
HKCU\SOFTWARE\20140
HKCU\SOFTWARE\20172
HKCU\SOFTWARE\20196
HKCU\SOFTWARE\20200
HKCU\SOFTWARE\20208
HKCU\SOFTWARE\20216
HKCU\SOFTWARE\20252
HKCU\SOFTWARE\20264
HKCU\SOFTWARE\20272
HKCU\SOFTWARE\2028
HKCU\SOFTWARE\20288
HKCU\SOFTWARE\20300
HKCU\SOFTWARE\20312
HKCU\SOFTWARE\20328
HKCU\SOFTWARE\2036
HKCU\SOFTWARE\20360
HKCU\SOFTWARE\20368
HKCU\SOFTWARE\2040
HKCU\SOFTWARE\20424
HKCU\SOFTWARE\2044
HKCU\SOFTWARE\20484
HKCU\SOFTWARE\20524
HKCU\SOFTWARE\20540
HKCU\SOFTWARE\20548
HKCU\SOFTWARE\20592
HKCU\SOFTWARE\20596
HKCU\SOFTWARE\20604
HKCU\SOFTWARE\20616
HKCU\SOFTWARE\20620
HKCU\SOFTWARE\20636
HKCU\SOFTWARE\20640
HKCU\SOFTWARE\20660
HKCU\SOFTWARE\20668
HKCU\SOFTWARE\20676
HKCU\SOFTWARE\20692
HKCU\SOFTWARE\20704
HKCU\SOFTWARE\20720
HKCU\SOFTWARE\20728
HKCU\SOFTWARE\20752
HKCU\SOFTWARE\20756
HKCU\SOFTWARE\20792
HKCU\SOFTWARE\20796
HKCU\SOFTWARE\2080
HKCU\SOFTWARE\20864
HKCU\SOFTWARE\20868
HKCU\SOFTWARE\20900
HKCU\SOFTWARE\20904
HKCU\SOFTWARE\20928
HKCU\SOFTWARE\20932
HKCU\SOFTWARE\20940
HKCU\SOFTWARE\20948
HKCU\SOFTWARE\2096
HKCU\SOFTWARE\20960
HKCU\SOFTWARE\20964
HKCU\SOFTWARE\20992
HKCU\SOFTWARE\21008
HKCU\SOFTWARE\21012
HKCU\SOFTWARE\21032
HKCU\SOFTWARE\21044
HKCU\SOFTWARE\2108
HKCU\SOFTWARE\21084
HKCU\SOFTWARE\21088
HKCU\SOFTWARE\21116
HKCU\SOFTWARE\2112
HKCU\SOFTWARE\21140
HKCU\SOFTWARE\2116
HKCU\SOFTWARE\21160
HKCU\SOFTWARE\21176
HKCU\SOFTWARE\21184
HKCU\SOFTWARE\21192
HKCU\SOFTWARE\2120
HKCU\SOFTWARE\21220
HKCU\SOFTWARE\21232
HKCU\SOFTWARE\21244
HKCU\SOFTWARE\21260
HKCU\SOFTWARE\21284
HKCU\SOFTWARE\21300
HKCU\SOFTWARE\21308
HKCU\SOFTWARE\21316
HKCU\SOFTWARE\21328
HKCU\SOFTWARE\21332
HKCU\SOFTWARE\21336
HKCU\SOFTWARE\21340
HKCU\SOFTWARE\21360
HKCU\SOFTWARE\21372
HKCU\SOFTWARE\21392
HKCU\SOFTWARE\2140
HKCU\SOFTWARE\21432
HKCU\SOFTWARE\21444
HKCU\SOFTWARE\21500
HKCU\SOFTWARE\21524
HKCU\SOFTWARE\21612
HKCU\SOFTWARE\21616
HKCU\SOFTWARE\21624
HKCU\SOFTWARE\21640
HKCU\SOFTWARE\21676
HKCU\SOFTWARE\21692
HKCU\SOFTWARE\2172
HKCU\SOFTWARE\21744
HKCU\SOFTWARE\21752
HKCU\SOFTWARE\21764
HKCU\SOFTWARE\21776
HKCU\SOFTWARE\21784
HKCU\SOFTWARE\21796
HKCU\SOFTWARE\2180
HKCU\SOFTWARE\21816
HKCU\SOFTWARE\21820
HKCU\SOFTWARE\21832
HKCU\SOFTWARE\2184
HKCU\SOFTWARE\21840
HKCU\SOFTWARE\21844
HKCU\SOFTWARE\21880
HKCU\SOFTWARE\21884
HKCU\SOFTWARE\21896
HKCU\SOFTWARE\21904
HKCU\SOFTWARE\2192
HKCU\SOFTWARE\21940
HKCU\SOFTWARE\21944
HKCU\SOFTWARE\21988
HKCU\SOFTWARE\22008
HKCU\SOFTWARE\22012
HKCU\SOFTWARE\22024
HKCU\SOFTWARE\22032
HKCU\SOFTWARE\2204
HKCU\SOFTWARE\22052
HKCU\SOFTWARE\22056
HKCU\SOFTWARE\22108
HKCU\SOFTWARE\22112
HKCU\SOFTWARE\22116
HKCU\SOFTWARE\22124
HKCU\SOFTWARE\22140
HKCU\SOFTWARE\22152
HKCU\SOFTWARE\22160
HKCU\SOFTWARE\22164
HKCU\SOFTWARE\22192
HKCU\SOFTWARE\22204
HKCU\SOFTWARE\22212
HKCU\SOFTWARE\22216
HKCU\SOFTWARE\22220
HKCU\SOFTWARE\22236
HKCU\SOFTWARE\22252
HKCU\SOFTWARE\22260
HKCU\SOFTWARE\22264
HKCU\SOFTWARE\22268
HKCU\SOFTWARE\22272
HKCU\SOFTWARE\22280
HKCU\SOFTWARE\22300
HKCU\SOFTWARE\22304
HKCU\SOFTWARE\2232
HKCU\SOFTWARE\22324
HKCU\SOFTWARE\22328
HKCU\SOFTWARE\22340
HKCU\SOFTWARE\22368
HKCU\SOFTWARE\22372
HKCU\SOFTWARE\22384
HKCU\SOFTWARE\22392
HKCU\SOFTWARE\22420
HKCU\SOFTWARE\22424
HKCU\SOFTWARE\22444
HKCU\SOFTWARE\22448
HKCU\SOFTWARE\22472
HKCU\SOFTWARE\2248
HKCU\SOFTWARE\22496
HKCU\SOFTWARE\22504
HKCU\SOFTWARE\22516
HKCU\SOFTWARE\22532
HKCU\SOFTWARE\22536
HKCU\SOFTWARE\22552
HKCU\SOFTWARE\22564
HKCU\SOFTWARE\22592
HKCU\SOFTWARE\22608
HKCU\SOFTWARE\22616
HKCU\SOFTWARE\22620
HKCU\SOFTWARE\2264
HKCU\SOFTWARE\22648
HKCU\SOFTWARE\22652
HKCU\SOFTWARE\22688
HKCU\SOFTWARE\22696
HKCU\SOFTWARE\22700
HKCU\SOFTWARE\22704
HKCU\SOFTWARE\22756
HKCU\SOFTWARE\22760
HKCU\SOFTWARE\22776
HKCU\SOFTWARE\22780
HKCU\SOFTWARE\22808
HKCU\SOFTWARE\22816
HKCU\SOFTWARE\22828
HKCU\SOFTWARE\22884
HKCU\SOFTWARE\22892
HKCU\SOFTWARE\22896
HKCU\SOFTWARE\22900
HKCU\SOFTWARE\22908
HKCU\SOFTWARE\22932
HKCU\SOFTWARE\22936
HKCU\SOFTWARE\22940
HKCU\SOFTWARE\22944
HKCU\SOFTWARE\22952
HKCU\SOFTWARE\2296
HKCU\SOFTWARE\22960
HKCU\SOFTWARE\23004
HKCU\SOFTWARE\23028
HKCU\SOFTWARE\23036
HKCU\SOFTWARE\23064
HKCU\SOFTWARE\23076
HKCU\SOFTWARE\23080
HKCU\SOFTWARE\23084
HKCU\SOFTWARE\23092
HKCU\SOFTWARE\23124
HKCU\SOFTWARE\23128
HKCU\SOFTWARE\23156
HKCU\SOFTWARE\23172
HKCU\SOFTWARE\23192
HKCU\SOFTWARE\23200
HKCU\SOFTWARE\23232
HKCU\SOFTWARE\23256
HKCU\SOFTWARE\23276
HKCU\SOFTWARE\2328
HKCU\SOFTWARE\23300
HKCU\SOFTWARE\23340
HKCU\SOFTWARE\23352
HKCU\SOFTWARE\2340
HKCU\SOFTWARE\23400
HKCU\SOFTWARE\23464
HKCU\SOFTWARE\23484
HKCU\SOFTWARE\23496
HKCU\SOFTWARE\23500
HKCU\SOFTWARE\2352
HKCU\SOFTWARE\23524
HKCU\SOFTWARE\23568
HKCU\SOFTWARE\23592
HKCU\SOFTWARE\23612
HKCU\SOFTWARE\23620
HKCU\SOFTWARE\23624
HKCU\SOFTWARE\23668
HKCU\SOFTWARE\23672
HKCU\SOFTWARE\23696
HKCU\SOFTWARE\23712
HKCU\SOFTWARE\23744
HKCU\SOFTWARE\2376
HKCU\SOFTWARE\23760
HKCU\SOFTWARE\23784
HKCU\SOFTWARE\23792
HKCU\SOFTWARE\23796
HKCU\SOFTWARE\23828
HKCU\SOFTWARE\23840
HKCU\SOFTWARE\23844
HKCU\SOFTWARE\23884
HKCU\SOFTWARE\23892
HKCU\SOFTWARE\23900
HKCU\SOFTWARE\2392
HKCU\SOFTWARE\23924
HKCU\SOFTWARE\2396
HKCU\SOFTWARE\23972
HKCU\SOFTWARE\23992
HKCU\SOFTWARE\24020
HKCU\SOFTWARE\24032
HKCU\SOFTWARE\24044
HKCU\SOFTWARE\24052
HKCU\SOFTWARE\24056
HKCU\SOFTWARE\24064
HKCU\SOFTWARE\24068
HKCU\SOFTWARE\2408
HKCU\SOFTWARE\24100
HKCU\SOFTWARE\24116
HKCU\SOFTWARE\2412
HKCU\SOFTWARE\24124
HKCU\SOFTWARE\24128
HKCU\SOFTWARE\24140
HKCU\SOFTWARE\2416
HKCU\SOFTWARE\24192
HKCU\SOFTWARE\2424
HKCU\SOFTWARE\24240
HKCU\SOFTWARE\24252
HKCU\SOFTWARE\24256
HKCU\SOFTWARE\24260
HKCU\SOFTWARE\24316
HKCU\SOFTWARE\24324
HKCU\SOFTWARE\24340
HKCU\SOFTWARE\24356
HKCU\SOFTWARE\24360
HKCU\SOFTWARE\24368
HKCU\SOFTWARE\24376
HKCU\SOFTWARE\24396
HKCU\SOFTWARE\2440
HKCU\SOFTWARE\24400
HKCU\SOFTWARE\24420
HKCU\SOFTWARE\2444
HKCU\SOFTWARE\24440
HKCU\SOFTWARE\24464
HKCU\SOFTWARE\24468
HKCU\SOFTWARE\24472
HKCU\SOFTWARE\24496
HKCU\SOFTWARE\24508
HKCU\SOFTWARE\24528
HKCU\SOFTWARE\24540
HKCU\SOFTWARE\24548
HKCU\SOFTWARE\24560
HKCU\SOFTWARE\24572
HKCU\SOFTWARE\24584
HKCU\SOFTWARE\24604
HKCU\SOFTWARE\24624
HKCU\SOFTWARE\24652
HKCU\SOFTWARE\24664
HKCU\SOFTWARE\24676
HKCU\SOFTWARE\24716
HKCU\SOFTWARE\2472
HKCU\SOFTWARE\24720
HKCU\SOFTWARE\24724
HKCU\SOFTWARE\24736
HKCU\SOFTWARE\24776
HKCU\SOFTWARE\24780
HKCU\SOFTWARE\2480
HKCU\SOFTWARE\24800
HKCU\SOFTWARE\24824
HKCU\SOFTWARE\24828
HKCU\SOFTWARE\2484
HKCU\SOFTWARE\24856
HKCU\SOFTWARE\24868
HKCU\SOFTWARE\24884
HKCU\SOFTWARE\24896
HKCU\SOFTWARE\24908
HKCU\SOFTWARE\24912
HKCU\SOFTWARE\2492
HKCU\SOFTWARE\24940
HKCU\SOFTWARE\24956
HKCU\SOFTWARE\2496
HKCU\SOFTWARE\25004
HKCU\SOFTWARE\25008
HKCU\SOFTWARE\25024
HKCU\SOFTWARE\25060
HKCU\SOFTWARE\25068
HKCU\SOFTWARE\25076
HKCU\SOFTWARE\25096
HKCU\SOFTWARE\25100
HKCU\SOFTWARE\25128
HKCU\SOFTWARE\2516
HKCU\SOFTWARE\25160
HKCU\SOFTWARE\25176
HKCU\SOFTWARE\25248
HKCU\SOFTWARE\25268
HKCU\SOFTWARE\25272
HKCU\SOFTWARE\25304
HKCU\SOFTWARE\25316
HKCU\SOFTWARE\25324
HKCU\SOFTWARE\25344
HKCU\SOFTWARE\25396
HKCU\SOFTWARE\2540
HKCU\SOFTWARE\25400
HKCU\SOFTWARE\25404
HKCU\SOFTWARE\25408
HKCU\SOFTWARE\25412
HKCU\SOFTWARE\25432
HKCU\SOFTWARE\25476
HKCU\SOFTWARE\25484
HKCU\SOFTWARE\25492
HKCU\SOFTWARE\25500
HKCU\SOFTWARE\2552
HKCU\SOFTWARE\25528
HKCU\SOFTWARE\25532
HKCU\SOFTWARE\25548
HKCU\SOFTWARE\25572
HKCU\SOFTWARE\2560
HKCU\SOFTWARE\25604
HKCU\SOFTWARE\25620
HKCU\SOFTWARE\2564
HKCU\SOFTWARE\25648
HKCU\SOFTWARE\25684
HKCU\SOFTWARE\25688
HKCU\SOFTWARE\25700
HKCU\SOFTWARE\25716
HKCU\SOFTWARE\2572
HKCU\SOFTWARE\25720
HKCU\SOFTWARE\25760
HKCU\SOFTWARE\25796
HKCU\SOFTWARE\2580
HKCU\SOFTWARE\25804
HKCU\SOFTWARE\25808
HKCU\SOFTWARE\25816
HKCU\SOFTWARE\25820
HKCU\SOFTWARE\25824
HKCU\SOFTWARE\25832
HKCU\SOFTWARE\25840
HKCU\SOFTWARE\25860
HKCU\SOFTWARE\25872
HKCU\SOFTWARE\2588
HKCU\SOFTWARE\25888
HKCU\SOFTWARE\2592
HKCU\SOFTWARE\25940
HKCU\SOFTWARE\2596
HKCU\SOFTWARE\25960
HKCU\SOFTWARE\25980
HKCU\SOFTWARE\2600
HKCU\SOFTWARE\26004
HKCU\SOFTWARE\26012
HKCU\SOFTWARE\26036
HKCU\SOFTWARE\26080
HKCU\SOFTWARE\26104
HKCU\SOFTWARE\26112
HKCU\SOFTWARE\2616
HKCU\SOFTWARE\26168
HKCU\SOFTWARE\26172
HKCU\SOFTWARE\26204
HKCU\SOFTWARE\26216
HKCU\SOFTWARE\26224
HKCU\SOFTWARE\2624
HKCU\SOFTWARE\26240
HKCU\SOFTWARE\26256
HKCU\SOFTWARE\26264
HKCU\SOFTWARE\26296
HKCU\SOFTWARE\26324
HKCU\SOFTWARE\26328
HKCU\SOFTWARE\26336
HKCU\SOFTWARE\26344
HKCU\SOFTWARE\26372
HKCU\SOFTWARE\26388
HKCU\SOFTWARE\264
HKCU\SOFTWARE\26408
HKCU\SOFTWARE\26412
HKCU\SOFTWARE\26420
HKCU\SOFTWARE\26424
HKCU\SOFTWARE\2644
HKCU\SOFTWARE\26440
HKCU\SOFTWARE\26468
HKCU\SOFTWARE\2648
HKCU\SOFTWARE\26488
HKCU\SOFTWARE\26508
HKCU\SOFTWARE\2652
HKCU\SOFTWARE\26528
HKCU\SOFTWARE\26552
HKCU\SOFTWARE\26556
HKCU\SOFTWARE\26600
HKCU\SOFTWARE\26604
HKCU\SOFTWARE\26636
HKCU\SOFTWARE\2664
HKCU\SOFTWARE\26672
HKCU\SOFTWARE\26704
HKCU\SOFTWARE\26708
HKCU\SOFTWARE\26712
HKCU\SOFTWARE\26720
HKCU\SOFTWARE\26724
HKCU\SOFTWARE\26732
HKCU\SOFTWARE\26748
HKCU\SOFTWARE\2676
HKCU\SOFTWARE\26764
HKCU\SOFTWARE\26780
HKCU\SOFTWARE\268
HKCU\SOFTWARE\26836
HKCU\SOFTWARE\2688
HKCU\SOFTWARE\26888
HKCU\SOFTWARE\26900
HKCU\SOFTWARE\26932
HKCU\SOFTWARE\26976
HKCU\SOFTWARE\27000
HKCU\SOFTWARE\27012
HKCU\SOFTWARE\27016
HKCU\SOFTWARE\27024
HKCU\SOFTWARE\27028
HKCU\SOFTWARE\27040
HKCU\SOFTWARE\27048
HKCU\SOFTWARE\27072
HKCU\SOFTWARE\27076
HKCU\SOFTWARE\2708
HKCU\SOFTWARE\27084
HKCU\SOFTWARE\27100
HKCU\SOFTWARE\27104
HKCU\SOFTWARE\27108
HKCU\SOFTWARE\27112
HKCU\SOFTWARE\27148
HKCU\SOFTWARE\27152
HKCU\SOFTWARE\2716
HKCU\SOFTWARE\27196
HKCU\SOFTWARE\2720
HKCU\SOFTWARE\27216
HKCU\SOFTWARE\27224
HKCU\SOFTWARE\27244
HKCU\SOFTWARE\27248
HKCU\SOFTWARE\27276
HKCU\SOFTWARE\27348
HKCU\SOFTWARE\2736
HKCU\SOFTWARE\27376
HKCU\SOFTWARE\27396
HKCU\SOFTWARE\2740
HKCU\SOFTWARE\27420
HKCU\SOFTWARE\27440
HKCU\SOFTWARE\27452
HKCU\SOFTWARE\27492
HKCU\SOFTWARE\27516
HKCU\SOFTWARE\27552
HKCU\SOFTWARE\27564
HKCU\SOFTWARE\27584
HKCU\SOFTWARE\27604
HKCU\SOFTWARE\27624
HKCU\SOFTWARE\27632
HKCU\SOFTWARE\27636
HKCU\SOFTWARE\2764
HKCU\SOFTWARE\27640
HKCU\SOFTWARE\27644
HKCU\SOFTWARE\27676
HKCU\SOFTWARE\27684
HKCU\SOFTWARE\27688
HKCU\SOFTWARE\27720
HKCU\SOFTWARE\27724
HKCU\SOFTWARE\27736
HKCU\SOFTWARE\2776
HKCU\SOFTWARE\2780
HKCU\SOFTWARE\27800
HKCU\SOFTWARE\27804
HKCU\SOFTWARE\27812
HKCU\SOFTWARE\27824
HKCU\SOFTWARE\2784
HKCU\SOFTWARE\27848
HKCU\SOFTWARE\27864
HKCU\SOFTWARE\27872
HKCU\SOFTWARE\27876
HKCU\SOFTWARE\27888
HKCU\SOFTWARE\27900
HKCU\SOFTWARE\27904
HKCU\SOFTWARE\27916
HKCU\SOFTWARE\2792
HKCU\SOFTWARE\27920
HKCU\SOFTWARE\27928
HKCU\SOFTWARE\27940
HKCU\SOFTWARE\27952
HKCU\SOFTWARE\27972
HKCU\SOFTWARE\28016
HKCU\SOFTWARE\28028
HKCU\SOFTWARE\2804
HKCU\SOFTWARE\28104
HKCU\SOFTWARE\28112
HKCU\SOFTWARE\2816
HKCU\SOFTWARE\28172
HKCU\SOFTWARE\28176
HKCU\SOFTWARE\2820
HKCU\SOFTWARE\28212
HKCU\SOFTWARE\28216
HKCU\SOFTWARE\28232
HKCU\SOFTWARE\2824
HKCU\SOFTWARE\28244
HKCU\SOFTWARE\28252
HKCU\SOFTWARE\28256
HKCU\SOFTWARE\28320
HKCU\SOFTWARE\28328
HKCU\SOFTWARE\28380
HKCU\SOFTWARE\28384
HKCU\SOFTWARE\28392
HKCU\SOFTWARE\28412
HKCU\SOFTWARE\28428
HKCU\SOFTWARE\2844
HKCU\SOFTWARE\28460
HKCU\SOFTWARE\28468
HKCU\SOFTWARE\28492
HKCU\SOFTWARE\28524
HKCU\SOFTWARE\28548
HKCU\SOFTWARE\2856
HKCU\SOFTWARE\28568
HKCU\SOFTWARE\2860
HKCU\SOFTWARE\28620
HKCU\SOFTWARE\2864
HKCU\SOFTWARE\28676
HKCU\SOFTWARE\2868
HKCU\SOFTWARE\28704
HKCU\SOFTWARE\2872
HKCU\SOFTWARE\2876
HKCU\SOFTWARE\28768
HKCU\SOFTWARE\28784
HKCU\SOFTWARE\28792
HKCU\SOFTWARE\2880
HKCU\SOFTWARE\2884
HKCU\SOFTWARE\28904
HKCU\SOFTWARE\2896
HKCU\SOFTWARE\29004
HKCU\SOFTWARE\29020
HKCU\SOFTWARE\29040
HKCU\SOFTWARE\29060
HKCU\SOFTWARE\29072
HKCU\SOFTWARE\2908
HKCU\SOFTWARE\29084
HKCU\SOFTWARE\29156
HKCU\SOFTWARE\2920
HKCU\SOFTWARE\29204
HKCU\SOFTWARE\2924
HKCU\SOFTWARE\29260
HKCU\SOFTWARE\29324
HKCU\SOFTWARE\2940
HKCU\SOFTWARE\29404
HKCU\SOFTWARE\29436
HKCU\SOFTWARE\2944
HKCU\SOFTWARE\29464
HKCU\SOFTWARE\2948
HKCU\SOFTWARE\29496
HKCU\SOFTWARE\29576
HKCU\SOFTWARE\29620
HKCU\SOFTWARE\2976
HKCU\SOFTWARE\2996
HKCU\SOFTWARE\300
HKCU\SOFTWARE\3008
HKCU\SOFTWARE\3012
HKCU\SOFTWARE\3020
HKCU\SOFTWARE\3032
HKCU\SOFTWARE\3036
HKCU\SOFTWARE\304
HKCU\SOFTWARE\3044
HKCU\SOFTWARE\3056
HKCU\SOFTWARE\3060
HKCU\SOFTWARE\3076
HKCU\SOFTWARE\3080
HKCU\SOFTWARE\3088
HKCU\SOFTWARE\3092
HKCU\SOFTWARE\3096
HKCU\SOFTWARE\3100
HKCU\SOFTWARE\3132
HKCU\SOFTWARE\3140
HKCU\SOFTWARE\3148
HKCU\SOFTWARE\3152
HKCU\SOFTWARE\3156
HKCU\SOFTWARE\3160
HKCU\SOFTWARE\3168
HKCU\SOFTWARE\3172
HKCU\SOFTWARE\3176
HKCU\SOFTWARE\3180
HKCU\SOFTWARE\3184
HKCU\SOFTWARE\3188
HKCU\SOFTWARE\3196
HKCU\SOFTWARE\32
HKCU\SOFTWARE\3208
HKCU\SOFTWARE\3212
HKCU\SOFTWARE\3216
HKCU\SOFTWARE\3220
HKCU\SOFTWARE\3224
HKCU\SOFTWARE\324
HKCU\SOFTWARE\3252
HKCU\SOFTWARE\3260
HKCU\SOFTWARE\3264
HKCU\SOFTWARE\3268
HKCU\SOFTWARE\328
HKCU\SOFTWARE\3288
HKCU\SOFTWARE\332
HKCU\SOFTWARE\3324
HKCU\SOFTWARE\3332
HKCU\SOFTWARE\3348
HKCU\SOFTWARE\336
HKCU\SOFTWARE\3360
HKCU\SOFTWARE\3364
HKCU\SOFTWARE\3384
HKCU\SOFTWARE\3396
HKCU\SOFTWARE\3404
HKCU\SOFTWARE\3412
HKCU\SOFTWARE\3436
HKCU\SOFTWARE\3440
HKCU\SOFTWARE\3444
HKCU\SOFTWARE\3468
HKCU\SOFTWARE\3476
HKCU\SOFTWARE\348
HKCU\SOFTWARE\3480
HKCU\SOFTWARE\3484
HKCU\SOFTWARE\3496
HKCU\SOFTWARE\3516
HKCU\SOFTWARE\3532
HKCU\SOFTWARE\3536
HKCU\SOFTWARE\3540
HKCU\SOFTWARE\3544
HKCU\SOFTWARE\3552
HKCU\SOFTWARE\3560
HKCU\SOFTWARE\3568
HKCU\SOFTWARE\3572
HKCU\SOFTWARE\3580
HKCU\SOFTWARE\3588
HKCU\SOFTWARE\3592
HKCU\SOFTWARE\3596
HKCU\SOFTWARE\360
HKCU\SOFTWARE\3600
HKCU\SOFTWARE\3604
HKCU\SOFTWARE\3608
HKCU\SOFTWARE\3616
HKCU\SOFTWARE\3624
HKCU\SOFTWARE\3628
HKCU\SOFTWARE\364
HKCU\SOFTWARE\3648
HKCU\SOFTWARE\3660
HKCU\SOFTWARE\3664
HKCU\SOFTWARE\3676
HKCU\SOFTWARE\3680
HKCU\SOFTWARE\3684
HKCU\SOFTWARE\3692
HKCU\SOFTWARE\3696
HKCU\SOFTWARE\3700
HKCU\SOFTWARE\3708
HKCU\SOFTWARE\3712
HKCU\SOFTWARE\3716
HKCU\SOFTWARE\3720
HKCU\SOFTWARE\3724
HKCU\SOFTWARE\3752
HKCU\SOFTWARE\376
HKCU\SOFTWARE\3760
HKCU\SOFTWARE\3768
HKCU\SOFTWARE\3776
HKCU\SOFTWARE\3780
HKCU\SOFTWARE\3792
HKCU\SOFTWARE\3796
HKCU\SOFTWARE\380
HKCU\SOFTWARE\3808
HKCU\SOFTWARE\3828
HKCU\SOFTWARE\3832
HKCU\SOFTWARE\384
HKCU\SOFTWARE\3840
HKCU\SOFTWARE\3844
HKCU\SOFTWARE\3852
HKCU\SOFTWARE\3856
HKCU\SOFTWARE\3860
HKCU\SOFTWARE\3868
HKCU\SOFTWARE\3876
HKCU\SOFTWARE\388
HKCU\SOFTWARE\3880
HKCU\SOFTWARE\3884
HKCU\SOFTWARE\3892
HKCU\SOFTWARE\3896
HKCU\SOFTWARE\3904
HKCU\SOFTWARE\3912
HKCU\SOFTWARE\392
HKCU\SOFTWARE\3920
HKCU\SOFTWARE\3924
HKCU\SOFTWARE\3932
HKCU\SOFTWARE\3940
HKCU\SOFTWARE\3944
HKCU\SOFTWARE\3948
HKCU\SOFTWARE\3964
HKCU\SOFTWARE\3968
HKCU\SOFTWARE\3976
HKCU\SOFTWARE\3980
HKCU\SOFTWARE\3984
HKCU\SOFTWARE\3988
HKCU\SOFTWARE\3992
HKCU\SOFTWARE\400
HKCU\SOFTWARE\4004
HKCU\SOFTWARE\4012
HKCU\SOFTWARE\4020
HKCU\SOFTWARE\4024
HKCU\SOFTWARE\404
HKCU\SOFTWARE\4048
HKCU\SOFTWARE\4068
HKCU\SOFTWARE\4072
HKCU\SOFTWARE\4076
HKCU\SOFTWARE\408
HKCU\SOFTWARE\4080
HKCU\SOFTWARE\4084
HKCU\SOFTWARE\4092
HKCU\SOFTWARE\4108
HKCU\SOFTWARE\4112
HKCU\SOFTWARE\4120
HKCU\SOFTWARE\4128
HKCU\SOFTWARE\4132
HKCU\SOFTWARE\4140
HKCU\SOFTWARE\4144
HKCU\SOFTWARE\4148
HKCU\SOFTWARE\4152
HKCU\SOFTWARE\4156
HKCU\SOFTWARE\416
HKCU\SOFTWARE\4168
HKCU\SOFTWARE\4184
HKCU\SOFTWARE\4196
HKCU\SOFTWARE\4200
HKCU\SOFTWARE\4224
HKCU\SOFTWARE\424
HKCU\SOFTWARE\4240
HKCU\SOFTWARE\4248
HKCU\SOFTWARE\4252
HKCU\SOFTWARE\4256
HKCU\SOFTWARE\4260
HKCU\SOFTWARE\4272
HKCU\SOFTWARE\4312
HKCU\SOFTWARE\4320
HKCU\SOFTWARE\4328
HKCU\SOFTWARE\4340
HKCU\SOFTWARE\4344
HKCU\SOFTWARE\4352
HKCU\SOFTWARE\4376
HKCU\SOFTWARE\4384
HKCU\SOFTWARE\4408
HKCU\SOFTWARE\4412
HKCU\SOFTWARE\4420
HKCU\SOFTWARE\4424
HKCU\SOFTWARE\4444
HKCU\SOFTWARE\4448
HKCU\SOFTWARE\4468
HKCU\SOFTWARE\4480
HKCU\SOFTWARE\4492
HKCU\SOFTWARE\4496
HKCU\SOFTWARE\4500
HKCU\SOFTWARE\4504
HKCU\SOFTWARE\4508
HKCU\SOFTWARE\4516
HKCU\SOFTWARE\4520
HKCU\SOFTWARE\4540
HKCU\SOFTWARE\4544
HKCU\SOFTWARE\4548
HKCU\SOFTWARE\4556
HKCU\SOFTWARE\456
HKCU\SOFTWARE\4568
HKCU\SOFTWARE\4572
HKCU\SOFTWARE\4576
HKCU\SOFTWARE\4584
HKCU\SOFTWARE\4588
HKCU\SOFTWARE\4592
HKCU\SOFTWARE\4596
HKCU\SOFTWARE\4600
HKCU\SOFTWARE\4612
HKCU\SOFTWARE\4616
HKCU\SOFTWARE\4624
HKCU\SOFTWARE\4628
HKCU\SOFTWARE\4640
HKCU\SOFTWARE\4648
HKCU\SOFTWARE\4668
HKCU\SOFTWARE\4672
HKCU\SOFTWARE\4676
HKCU\SOFTWARE\4680
HKCU\SOFTWARE\4688
HKCU\SOFTWARE\4692
HKCU\SOFTWARE\4696
HKCU\SOFTWARE\4704
HKCU\SOFTWARE\4708
HKCU\SOFTWARE\4712
HKCU\SOFTWARE\472
HKCU\SOFTWARE\4720
HKCU\SOFTWARE\4728
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contenu des dossiers Programmes (192) - 6s
O43 - CFD: 2014/12/08 14:45:49 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/09/09 09:07:14 - [] D -- C:\Program Files (x86)\Avira
O43 - CFD: 2014/11/26 17:59:16 - [] D -- C:\Program Files (x86)\BookSmart
O43 - CFD: 2015/07/12 15:57:56 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/06/28 19:26:41 - [] D -- C:\Program Files (x86)\Convar
O43 - CFD: 2014/06/17 23:36:40 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2014/01/29 22:47:30 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2015/05/14 11:28:54 - [] D -- C:\Program Files (x86)\FastStone Image Viewer
O43 - CFD: 2015/06/22 11:36:29 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 2014/01/29 17:40:00 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/07/12 15:13:34 - [] D -- C:\Program Files (x86)\gtk2
O43 - CFD: 2015/02/04 15:39:51 - [] D -- C:\Program Files (x86)\HD Tune
O43 - CFD: 2015/02/04 15:19:00 - [] D -- C:\Program Files (x86)\HDD Health
O43 - CFD: 2015/03/06 15:59:57 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/09/09 09:19:33 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/07/12 15:14:08 - [] D -- C:\Program Files (x86)\Jahshaka
O43 - CFD: 2014/09/05 18:25:26 - [] D -- C:\Program Files (x86)\Kolor
O43 - CFD: 2014/07/22 17:56:24 - [] D -- C:\Program Files (x86)\Lexmark 2600 Series
O43 - CFD: 2014/04/08 14:04:37 - [] D -- C:\Program Files (x86)\Lexmark Toolbar
O43 - CFD: 2015/09/02 21:32:16 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/11/10 14:29:57 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/19 09:03:27 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015/07/12 15:59:14 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2014/01/29 22:05:35 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2014/01/29 22:07:03 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/07/12 15:13:35 - [] D -- C:\Program Files (x86)\mlt
O43 - CFD: 2015/08/19 09:03:27 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/08/18 11:06:18 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2014/02/04 14:36:49 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/03/06 15:59:03 - [] D -- C:\Program Files (x86)\Nikon
O43 - CFD: 2014/01/29 17:30:01 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/07/12 15:14:05 - [] D -- C:\Program Files (x86)\OpenLibraries
O43 - CFD: 2014/02/04 14:36:49 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2014/06/28 21:01:30 - [] D -- C:\Program Files (x86)\RescuePRO
O43 - CFD: 2014/02/06 22:46:05 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/08/19 00:51:01 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/07/12 15:59:13 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/03/11 11:18:39 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/08/22 17:36:30 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2014/02/04 14:14:22 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2014/02/04 13:13:49 - [] D -- C:\Program Files (x86)\X-Rite
O43 - CFD: 2015/09/09 08:59:01 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2015/03/11 11:19:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/03/11 11:19:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/11 11:19:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/07/22 20:55:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
O43 - CFD: 2015/09/04 11:33:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
O43 - CFD: 2014/11/26 17:59:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BookSmart
O43 - CFD: 2014/01/29 22:47:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2015/05/14 11:28:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
O43 - CFD: 2015/06/22 11:36:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2014/01/29 17:40:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/02/04 15:39:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
O43 - CFD: 2015/02/04 15:18:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Health
O43 - CFD: 2015/07/12 15:13:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jahshaka
O43 - CFD: 2014/07/22 17:56:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 2600 Series
O43 - CFD: 2015/03/06 15:58:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/09/02 21:32:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2014/01/29 22:06:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/08/16 20:07:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2014/07/25 12:44:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Newshosting
O43 - CFD: 2015/03/06 15:59:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
O43 - CFD: 2015/03/12 13:21:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phase One
O43 - CFD: 2015/03/06 15:59:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2
O43 - CFD: 2014/02/15 00:24:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proxima Software
O43 - CFD: 2014/06/28 21:01:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RescuePRO
O43 - CFD: 2015/02/04 15:18:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/03/11 11:19:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2013/09/30 06:00:03 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/02/06 22:46:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/03/06 15:59:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX 2
O43 - CFD: 2015/07/12 15:59:21 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2014/02/04 14:14:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/02/10 15:44:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireless Transmitter Utility
O43 - CFD: 2014/02/04 13:13:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\X-Rite
O43 - CFD: 2015/09/09 08:59:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2015/03/06 15:59:37 - [] D -- C:\ProgramData\54F3DE4E-B7BA-4EBD-8B3B-385D272CC583
O43 - CFD: 2014/12/08 14:46:19 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/01/29 21:11:51 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 2014/07/22 17:57:55 - [0] D -- C:\ProgramData\App4rTemp
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/06/09 18:19:13 - [] D -- C:\ProgramData\Avira
O43 - CFD: 2014/01/29 17:00:52 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/07/25 12:44:07 - [] D -- C:\ProgramData\Caphyon
O43 - CFD: 2014/06/17 23:36:57 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2014/01/29 22:50:02 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/03/06 15:59:19 - [] D -- C:\ProgramData\EnterNHelp
O43 - CFD: 2014/04/08 14:04:40 - [] D -- C:\ProgramData\Ezprint
O43 - CFD: 2014/02/12 18:56:40 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2014/06/04 15:58:37 - [] D -- C:\ProgramData\Lexmark 2600 Series
O43 - CFD: 2014/12/05 15:23:53 - [] D -- C:\ProgramData\lx_Cats
O43 - CFD: 2015/09/02 21:32:14 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/08/20 15:57:30 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2014/01/29 17:00:52 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/07/12 15:57:55 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/09 05:27:03 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/07/12 15:58:20 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2014/01/29 17:00:52 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/01/29 19:31:35 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/02/13 10:28:48 - [] D -- C:\ProgramData\Nikon
O43 - CFD: 2014/01/29 17:30:02 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/01/29 17:29:22 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/09/04 11:33:29 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/03/12 13:22:21 - [] D -- C:\ProgramData\Phase One
O43 - CFD: 2014/12/06 13:27:00 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/03/11 11:18:38 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2014/02/03 14:28:46 - [] D -- C:\ProgramData\Tablet
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/03/06 15:59:19 - [] D -- C:\ProgramData\Ultima_T15
O43 - CFD: 2014/02/04 13:13:44 - [] D -- C:\ProgramData\X-Rite
O43 - CFD: 2014/12/08 14:46:11 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/01/29 21:10:45 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2014/06/17 23:36:37 - [] D -- C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 2014/10/17 12:13:32 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/01/26 20:06:03 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/10/10 13:40:33 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2015/03/06 15:59:22 - [] D -- C:\Program Files (x86)\Common Files\Nikon
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/03/11 11:18:38 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/07/12 15:57:56 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/09/03 11:09:17 - [] D -- C:\Users\david\AppData\Roaming\Adobe
O43 - CFD: 2015/04/07 19:14:13 - [] D -- C:\Users\david\AppData\Roaming\Avira
O43 - CFD: 2014/06/17 23:36:56 - [] D -- C:\Users\david\AppData\Roaming\CyberLink
O43 - CFD: 2014/08/05 22:13:22 - [] D -- C:\Users\david\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/05/14 11:29:05 - [] D -- C:\Users\david\AppData\Roaming\FastStone
O43 - CFD: 2015/09/03 18:22:52 - [] D -- C:\Users\david\AppData\Roaming\FileZilla
O43 - CFD: 2014/02/15 00:25:32 - [0] D -- C:\Users\david\AppData\Roaming\FontExpert
O43 - CFD: 2015/02/04 15:23:34 - [] D -- C:\Users\david\AppData\Roaming\HDDHealth
O43 - CFD: 2015/02/28 23:38:38 - [] D -- C:\Users\david\AppData\Roaming\HDRsoft
O43 - CFD: 2015/03/11 11:39:59 - [] D -- C:\Users\david\AppData\Roaming\Identities
O43 - CFD: 2014/07/22 17:56:34 - [] D -- C:\Users\david\AppData\Roaming\Lexmark Productivity Studio
O43 - CFD: 2014/01/29 17:20:58 - [] D -- C:\Users\david\AppData\Roaming\Macromedia
O43 - CFD: 2015/07/12 16:05:39 - [] SD -- C:\Users\david\AppData\Roaming\Microsoft
O43 - CFD: 2015/07/29 21:33:12 - [] D -- C:\Users\david\AppData\Roaming\Mozilla
O43 - CFD: 2014/07/25 12:52:20 - [] D -- C:\Users\david\AppData\Roaming\Newshosting
O43 - CFD: 2015/03/06 16:01:06 - [] D -- C:\Users\david\AppData\Roaming\Nikon
O43 - CFD: 2014/01/29 22:32:17 - [] D -- C:\Users\david\AppData\Roaming\NVIDIA
O43 - CFD: 2014/01/31 14:15:13 - [] D -- C:\Users\david\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2014/01/29 19:31:54 - [] D -- C:\Users\david\AppData\Roaming\Thunderbird
O43 - CFD: 2015/07/24 09:13:52 - [] D -- C:\Users\david\AppData\Roaming\vlc
O43 - CFD: 2015/09/09 09:14:50 - [] D -- C:\Users\david\AppData\Roaming\WindowsDDL
O43 - CFD: 2015/09/02 21:51:13 - [] D -- C:\Users\david\AppData\Roaming\Windowsx
O43 - CFD: 2014/02/04 14:15:25 - [] D -- C:\Users\david\AppData\Roaming\WinRAR
O43 - CFD: 2015/07/23 11:50:49 - [] D -- C:\Users\david\AppData\Roaming\X-Rite
O43 - CFD: 2015/01/23 11:42:00 - [] D -- C:\Users\david\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 2015/09/09 09:47:47 - [] D -- C:\Users\david\AppData\Roaming\ZHP
O43 - CFD: 2015/09/02 21:58:23 - [] D -- C:\Users\david\AppData\Local\Adobe
O43 - CFD: 2014/01/29 17:10:22 - [0] SHD -- C:\Users\david\AppData\Local\Application Data
O43 - CFD: 2014/10/18 17:17:46 - [] D -- C:\Users\david\AppData\Local\AviraSpeedup
O43 - CFD: 2015/09/06 12:48:34 - [] D -- C:\Users\david\AppData\Local\CaptureOne
O43 - CFD: 2015/09/04 12:28:50 - [] D -- C:\Users\david\AppData\Local\CrashDumps
O43 - CFD: 2015/09/04 11:07:45 - [] D -- C:\Users\david\AppData\Local\Diagnostics
O43 - CFD: 2015/03/06 15:59:45 - [] D -- C:\Users\david\AppData\Local\Downloaded Installations
O43 - CFD: 2014/01/29 17:40:10 - [] D -- C:\Users\david\AppData\Local\Google
O43 - CFD: 2015/06/03 06:51:42 - [] D -- C:\Users\david\AppData\Local\GWX
O43 - CFD: 2014/01/29 17:10:22 - [0] SHD -- C:\Users\david\AppData\Local\Historique
O43 - CFD: 2015/03/12 13:22:21 - [] D -- C:\Users\david\AppData\Local\IsolatedStorage
O43 - CFD: 2014/06/28 21:01:28 - [] D -- C:\Users\david\AppData\Local\LC Technology Inc
O43 - CFD: 2015/08/25 13:56:05 - [] D -- C:\Users\david\AppData\Local\Microsoft
O43 - CFD: 2014/10/05 17:11:04 - [] D -- C:\Users\david\AppData\Local\Microsoft Help
O43 - CFD: 2014/07/25 12:45:37 - [] D -- C:\Users\david\AppData\Local\Newshosting
O43 - CFD: 2015/03/06 16:01:06 - [] D -- C:\Users\david\AppData\Local\Nikon
O43 - CFD: 2015/08/08 10:25:01 - [] D -- C:\Users\david\AppData\Local\Packages
O43 - CFD: 2015/08/27 11:14:29 - [] D -- C:\Users\david\AppData\Local\Phase_One
O43 - CFD: 2014/06/28 21:00:44 - [] D -- C:\Users\david\AppData\Local\Programs
O43 - CFD: 2015/09/09 09:48:06 - [] D -- C:\Users\david\AppData\Local\Temp
O43 - CFD: 2014/01/29 17:10:22 - [0] SHD -- C:\Users\david\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/01/08 15:38:09 - [] D -- C:\Users\david\AppData\Local\Thunderbird
O43 - CFD: 2015/02/09 11:13:13 - [] D -- C:\Users\david\AppData\Local\VirtualStore
O43 - CFD: 2015/08/21 17:51:24 - [] D -- C:\Users\david\AppData\Local\Windows Live
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/20 19:53:33 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/09/05 18:25:27 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autopano Giga 2
O43 - CFD: 2014/06/28 19:26:41 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
O43 - CFD: 2015/09/09 09:25:38 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/02/15 00:24:01 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Proxima Software
O43 - CFD: 2015/07/20 19:53:33 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/02/04 14:14:23 - [] D -- C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ Liste des pilotes du système (47) - 1s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896] ©
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176] ©
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200] ©
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] ©
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952] ©
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016] ©
O58 - SDL:2015/09/01 15:37:58 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\WINDOWS\System32\drivers\avgntflt.sys [137288] ©
O58 - SDL:2015/09/01 15:37:58 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [148632] ©
O58 - SDL:2013/12/13 16:03:28 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\WINDOWS\System32\drivers\avkmgr.sys [28600] ©
O58 - SDL:2015/03/10 11:58:51 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\WINDOWS\System32\drivers\avnetflt.sys [43576] ©
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] ©
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] ©
O58 - SDL:2011/06/23 03:01:22 A . (.Nicomsoft Ltd. - WINI2C-DDC Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\DDCDrv.sys [20832]
O58 - SDL:2014/01/29 22:47:30 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] ©
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568] ©
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320] ©
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] ©
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536] ©
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] ©
O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/09/09 09:29:38 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [113880] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] ©
O58 - SDL:2009/03/08 20:16:14 A . (.Windows (R) Codename Longhorn DDK provider - Mouse Filter Driver.) -- C:\WINDOWS\System32\drivers\moufiltr.sys [7680] ©
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] ©
O58 - SDL:2015/06/18 08:42:02 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216] ©
O58 - SDL:2013/06/18 20:30:32 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\netr28ux.sys [2408208] ©
O58 - SDL:2007/09/05 13:48:24 A . (.Nikon Corporation - .) -- C:\WINDOWS\System32\drivers\NkVBus.sys [26400] ©
O58 - SDL:2012/12/19 03:22:32 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [13523816] ©
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] ©
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288] ©
O58 - SDL:2013/06/18 16:46:17 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [591360] ©
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] ©
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] ©
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] ©
O58 - SDL:2012/08/15 16:44:36 A . (.Windows (R) Win 7 DDK provider - Filter Driver for Waltop Tablet.) -- C:\WINDOWS\System32\drivers\TabletFilter.sys [7680] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] ©
O58 - SDL:2009/08/26 14:15:10 A . (.Windows (R) Win 7 DDK provider - Virtual Hid Device.) -- C:\WINDOWS\System32\drivers\walvhid.sys [7552] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (21) - 6s
O61 - LFC: 2015/09/09 09:14:50 A . (..) -- C:\Users\david\AppData\Roaming\WindowsDDL\dlhost.exe [783830]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\KINGSTON SV300S37A120G_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\KINGSTON SV300S37A120G_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\KINGSTON SV300S37A120G_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD103SJ_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD103SJ_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD103SJ_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD252KJ_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD252KJ_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\SAMSUNG HD252KJ_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST2000DM001-1ER164_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST2000DM001-1ER164_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST2000DM001-1ER164_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST3250820AS_identity.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST3250820AS_smartattr.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\ST3250820AS_smartthresh.bin [512]
O61 - LFC: 2015/09/09 09:34:37 A . (..) -- C:\Users\david\AppData\Local\VirtualStore\Program Files (x86)\HDD Health\_identity.bin [512]
O61 - LFC: 2015/09/07 12:48:24 A . (..) -- C:\Users\david\AppData\Local\IsolatedStorage\meoyxrgc.ueb\e53ya5mx.04u\StrongName.egxoaeytm4blbamnd0hfmt2ff0lzwm45\AssemFiles\storage_2f0aefe3fb994054b884b2a408e73967_policy.bin [237]
O61 - LFC: 2015/09/08 07:02:20 A . (..) -- C:\Users\david\AppData\Local\IsolatedStorage\meoyxrgc.ueb\e53ya5mx.04u\StrongName.egxoaeytm4blbamnd0hfmt2ff0lzwm45\AssemFiles\storage_2f0aefe3fb994054b884b2a408e73967_sessiondata_168d21f041a64f23b40b9b47543ebb55.bin [3614]
O61 - LFC: 2015/09/06 12:48:23 A . (..) -- C:\Users\david\AppData\Local\IsolatedStorage\meoyxrgc.ueb\e53ya5mx.04u\StrongName.egxoaeytm4blbamnd0hfmt2ff0lzwm45\AssemFiles\storage_2f0aefe3fb994054b884b2a408e73967_statistics.bin [115]
O61 - LFC: 2015/09/09 09:38:25 A . (..) -- C:\Users\david\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ Associations Shell Spawning (9) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de démarrage Internet (4) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Enumère les services démarrés par Svchost (34) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\WINDOWS\System32\aelupsvc.dll [214528] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [329216] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1360896] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [1084416] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31744] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [110080] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [110592] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1265152] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [230400] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\WINDOWS\system32\mmcss.dll [71168] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [135168] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [228864] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [84992] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [101376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [348672] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [1639424] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [59392] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [166400] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [102912] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [542208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73728] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [3705344] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [933376] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] ©
---\\ Liste des exceptions du parefeu Windows (16) - 1s
O87 - FAEL: "{A8EE3863-0163-46B1-8016-9764555A9DED}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\lxdncoms.exe
O87 - FAEL: "{C54B260A-BC58-41D7-81F2-C32386884C82}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\lxdncoms.exe
O87 - FAEL: "{61798AAD-CAF2-413E-B8FD-A96AC3AF2A99}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
O87 - FAEL: "{72E7AFEC-AE4A-452F-ADCD-974A013AC035}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
O87 - FAEL: "TCP Query User{C8C3565E-661F-4761-84C2-AD217830DC7F}C:\program files (x86)\lexmark 2600 series\lxdnmon.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\lexmark 2600 series\lxdnmon.exe
O87 - FAEL: "UDP Query User{60E85953-8A7B-48C8-9A4B-246939510FCE}C:\program files (x86)\lexmark 2600 series\lxdnmon.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\lexmark 2600 series\lxdnmon.exe
O87 - FAEL: "TCP Query User{32FEC290-62B3-4111-B7FF-ED577FD1BDB6}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P6-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "UDP Query User{79845650-8366-4C27-A15E-4DE6BB0B9E8F}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P17-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "{57B88E1C-F002-428C-81C4-0DA1E6D5C490}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\lxdncoms.exe
O87 - FAEL: "{7B67950C-3C0D-4E9B-A61E-9D7D237292C8}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\lxdncoms.exe
O87 - FAEL: "TCP Query User{D0B66EED-A3D1-4CDC-9A52-0B7A5F80A755}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P6-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "UDP Query User{82FE5A0B-8AB5-4C39-9B91-849364C0491F}C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe" [In-None-P17-TRUE] .(...) -- C:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe
O87 - FAEL: "{F4704A62-2B0B-44FF-9C67-E04DB28F514F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe
O87 - FAEL: "{45F45D3E-D498-4A05-A7A7-0A81509C42D5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe
O87 - FAEL: "{FAE1877E-7434-4325-A6CA-975F8D39A14A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\frun.exe
O87 - FAEL: "{ABF27B8B-255D-4CEE-BD1E-2E3196EBE95D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Lexmark 2600 Series\frun.exe
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (22) - 11s
SS - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Auto [2015/09/01 15:37:35] [ 887128] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe ©
SR - Auto [2015/09/01 15:37:53] [ 461672] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe ©
SR - Auto [2015/09/01 15:37:34] [ 461672] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe ©
SS - Disabled [2015/09/01 15:37:38] [ 1213072] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe ©
SR - Auto [2015/08/13 12:01:24] [ 228104] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe ©
SS - Auto [2015/08/28 15:36:19] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/08/28 15:36:19] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Auto [2013/03/08 10:54:00] [ 17760] HDDHealth (HDDHealth) . (...) - C:\Program Files (x86)\HDD Health\HDDHealthService.exe
SS - Demand [2005/04/04 01:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SS - Auto [2009/08/13 11:08:11] [ 1044648] lxdn_device (lxdn_device) . (...) - C:\Windows\System32\lxdncoms.exe
SS - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Demand [2015/08/17 17:41:28] [ 149672] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SS - Auto [2013/12/05 12:53:48] [ 45056] NkPtpEnumWT3 (NkPtpEnumWT3) . (.Nikon Corporation.) - C:\Program Files\Nikon\Wireless Transmitter Utility\NkVBus\NkPtpEnum.exe ©
SS - Auto [2012/12/07 11:21:12] [ 891240] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe ©
SS - Auto [2012/12/19 03:22:30] [ 1258856] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
SS - Demand [2010/02/19 14:37:14] [ 517096] (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe ©
SS - Auto [2012/10/19 12:01:04] [ 581120] WTService (WTService) . (...) - C:\WINDOWS\system32\atwtusb.exe
SR - Auto [2011/03/10 21:08:06] [ 203088] X-Rite Device Services Manager (xrdd.exe) . (.X-Rite Inc..) - C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe ©
SS - Auto [2008/02/01 17:24:06] [ 32240] {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} ({FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}) . (.Cyberlink Corp..) - C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl ©
---\\ Scan Additionnel (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
~ End of the scan, 30684 items in 88 seconds (1688)(0)()