Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.8.31.131 Par Nicolas Coolman (2015/08/31)
~ Démarré par Utilisateur (Administrator) (2015/09/01 13:23:44)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Utilisateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v44.0.2403.157
MSIE: Internet Explorer v11.0.9600.17959
---\\ Informations sur les produits Windows (4) - 6s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK
---\\ Logiciels de protection (2) - 1s
Avast Free Antivirus v10.3.2225
Windows Defender W7 (Activate)
---\\ Logiciels d'optimisation (1) - 1s
CCleaner
---\\ Surveillance de Logiciels (2) - 1s
Adobe Flash Player 18 NPAPI
Adobe Reader XI
---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 16 Model 6 Stepping 3, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4193.528 MB (56% free)
~ System Restore: Activé (Enable)
~ System drive C: has 392 GB free of 476 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC
~ User Name: Utilisateur
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 392 GB free of 476 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (23) - 2s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.C555B5C8142844DED9E3BD94E6313000] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427904] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.43E1F4B0EFDC244D2A83995CCD7846F7] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ©
---\\ Processus lancés (26) - 2s
[MD5.C5647FB500C2A1F946B77C953528042D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\system32\nvvsvc.exe [932040] [PID.880] ©
[MD5.32B37DD6E7D423DF3CF3B196C8005F85] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.904] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1280] ©
[MD5.90B24138CAA9A068B2E1C3B2A913789A] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1200328] [PID.1320] ©
[MD5.C5647FB500C2A1F946B77C953528042D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\system32\nvvsvc.exe [932040] [PID.1328] ©
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1648] ©
[MD5.974A1F783ED34588B45FAD6375077BA6] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe [46904] [PID.1724] ©
[MD5.20372BE109FEE1C37E2D5216680DB9EB] - (.pdfforge GmbH - PDF Architect Helper Service.) -- C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496] [PID.1972] ©
[MD5.B90A279073A815A4AA2C45A09EE004FA] - (.pdfforge GmbH - PDF Architect Conversion Service.) -- C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280] [PID.2004] ©
[MD5.8667556E9A094E935212693AD05098E3] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12558440] [PID.2648] ©
[MD5.4F46EA70C7579052F764D0F9B81D23C2] - (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064] [PID.2656] ©
[MD5.86BF17A265E1B4BA41325623EC132E66] - (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe [2899136] [PID.2720] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.2904] ©
[MD5.4E95B1FDDC9E51678BFA2A723EAA94EF] - (.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [401280] [PID.2924]
[MD5.F916BA0DA28A4B4F7B1ADE76EB42F088] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552] [PID.2932] ©
[MD5.1EBCD1FBC4E7B443CE8E6A9A66B88EA1] - (.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe [1862848] [PID.1076] ©
[MD5.3ED2B00729E2D4F974C1418F1B2CDF60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe [245064] [PID.3240] ©
[MD5.042ED5CED9032D093CACF785BFA39D65] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe [305992] [PID.3608] ©
[MD5.CCC3FE1DDCCF99633539B3D7681EF7D7] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768] [PID.3688] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.4908] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.1732] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.960] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.3356] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.4824] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.1372] ©
[MD5.FE4DD1A2E417A772052A142AEAFE5EDD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag3.exe [1915392] [PID.1668] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (9) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.trovi.com/ =>PUP.Optional.Trovigo
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://istart.webssearches.com/ =>PUP.Optional.IsStart
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://start.iminent.com/ =>PUP.Optional.IMBooster
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [mggkbalhdfhjalmmicijhgeoialfhjia] Widget Shopping Mailorama
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (2) - 1s
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
P2 - FPN: [HKLM] [@rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5] - (.RocketLife, LLP.) -- C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (22) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} Orphean
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Orphean
---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (15709)
---\\ Browser Helper Object de navigateur (BHO) (7) - 0s
O2 - BHO: AVG Do Not Track [64Bits] - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} (Orphean)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter [64Bits] - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} (Orphean)
O2 - BHO: RoboForm BHO [64Bits] - {724d43a9-0d85-11d4-9908-00400523e39a} . (.Siber Systems Inc. - RoboForm Main Module.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll ©
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ©
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (...) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll (.not file.)
---\\ Internet Explorer, Barre d'outil (1) - 1s
O3 - Toolbar: (no name) - [HKLM]{53DA718E-5DBD-448f-B21A-0BF73B07FB5A} (Orphean) (.not file.)
---\\ Applications lancées au démarrage du système (11) - 0s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe ©
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AgentMonitor] . (.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-3864191470-918546765-2016186552-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe ©
---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
---\\ Protocole additionnel (20) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
---\\ Liste des services NT non Microsoft et non désactivés (11) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) - C:\Windows\system32\nvvsvc.exe ©
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe ©
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GmbH - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe ©
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GmbH - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe ©
O23 - Service: PirritUpdater (PirritUpdater) . (...) - C:\Program Files (x86)\Pirrit\AutoUpdater.exe (.not file.) =>PUP.Optional.Pirrit
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
O23 - Service: WinRST (WinRST) . (...) - C:\Program Files (x86)\WinRST\WinRST.exe (.not file.) =>PUP.Optional.WinRST
---\\ Tâches planifiées en automatique (19) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.00000000000000000000000000000000] [APT] [Amazon Music Helper] (...) -- C:\Users\Utilisateur\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe (.not file.) [0]
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] ©
[MD5.00000000000000000000000000000000] [APT] [GoforFilesUpdate] (...) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe (.not file.) [0]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe (.not file.) [0] =>Toolbar.Ask
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] ©
O39 - APT: Amazon Music Helper - (...) -- C:\Windows\System32\Tasks\Amazon Music Helper [1646]
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] ©
O39 - APT: GoforFilesUpdate - (...) -- C:\Windows\System32\Tasks\GoforFilesUpdate [3074]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] ©
O39 - APT: Scheduled Update for Ask Toolbar - (...) -- C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar [3818] =>Toolbar.Ask
---\\ Logiciels installés (57) - 8s
O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center ©
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel ©
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers ©
O42 - Logiciel: Visual Studio 2010 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {21B133D6-5979-47F0-BE1C-F6A6B304693F} ©
O42 - Logiciel: 7-Zip 9.22 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0922-000001000000} ©
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3050A J611 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {6B6856BE-3ADD-4C18-9396-CAE664CCEF8E} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision ©
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 314.07 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB ©
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Mises à jour NVIDIA 10.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver ©
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: RoboForm 7-9-2-5 (All Users) - (.Siber Systems.) [HKLM][64Bits] -- AI RoboForm ©
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast ©
O42 - Logiciel: CCleaner (remove only) - (...) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: ffdshow v1.1.3425 [2010-05-08] - (...) [HKLM][64Bits] -- ffdshow_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: K-Lite Codec Pack 7.5.0 (Standard) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: Naviextras Toolbox - (.NNG Llc..) [HKLM][64Bits] -- Naviextras Toolbox
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo ©
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 ©
O42 - Logiciel: QT Lite 3.2.2 - (...) [HKLM][64Bits] -- qt7lite_is1
O42 - Logiciel: Ski Region Simulator 2012 - (.GIANTS Software.) [HKLM][64Bits] -- SkiRegionSimulator2012FR_is1 ©
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam ©
O42 - Logiciel: Football Manager 2015 - (.Sports Interactive.) [HKLM][64Bits] -- Steam App 295270 ©
O42 - Logiciel: Football Manager 2015 Editor - (...) [HKLM][64Bits] -- Steam App 295350
O42 - Logiciel: File Type Assistant - (.Trusted Software.) [HKLM][64Bits] -- Trusted Software Assistant_is1 =>Adware.InstallCore
O42 - Logiciel: Explor@ Park - (.VTech.) [HKLM][64Bits] -- VTechDownloadManager ©
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} ©
O42 - Logiciel: PDF Architect - (.pdfforge GmbH.) [HKLM][64Bits] -- {064A929A-4DE8-40CF-A901-BD40C14E4D25} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {23CCE784-A812-4647-AEFF-1DCCD4E57478} ©
O42 - Logiciel: Java 8 Update 60 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218060F0} ©
O42 - Logiciel: DVAPTray - (...) [HKLM][64Bits] -- {30D1B542-44E0-44F0-8A31-2A101CB626B5}
O42 - Logiciel: Naviextras Toolbox Prerequesities - (.NNG Llc..) [HKLM][64Bits] -- {537575D6-3B96-474C-BD8F-DFF667363DBD}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Windows Phone app for desktop - (.Microsoft Corporation.) [HKLM][64Bits] -- {639E54EE-95CA-4CAE-9779-6BA32D5EAF48} ©
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1} ©
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: ToolbarFR - (.Orange.) [HKLM][64Bits] -- {A047FE02-C91C-41CB-898C-4ED21B86025A} ©
O42 - Logiciel: Google+ Auto Backup - (.Google.) [HKLM][64Bits] -- {A50DE037-B5C0-4C8A-8049-B0C576B313D1} ©
O42 - Logiciel: VirtualDJ Home FREE - (.Atomix Productions.) [HKLM][64Bits] -- {A6AC699F-8315-40CA-8F70-E917494978AB} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Visual Studio 2008 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {FCDBEA60-79F0-4FAE-BBA8-55A26C609A49} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
---\\ HKCU & HKLM Software Keys (162) - 8s
HKLM\SOFTWARE\Wow6432Node\58eddd1b43fbe14 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\ALWIL Software
HKLM\SOFTWARE\Wow6432Node\Amazon
HKLM\SOFTWARE\Wow6432Node\APN =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\AVG
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\C07ft5Y
HKLM\SOFTWARE\Wow6432Node\CCleaner
HKLM\SOFTWARE\Wow6432Node\Cyanide
HKLM\SOFTWARE\Wow6432Node\DivXNetworks
HKLM\SOFTWARE\Wow6432Node\DVAPTray
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\Fish Technology Group
HKLM\SOFTWARE\Wow6432Node\FRANCE TELECOM
HKLM\SOFTWARE\Wow6432Node\free_soft_to_day =>PUP.Optional.FreeSoftToday
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\GoforFiles
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\InterVideo
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Lionhead Studios Ltd
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MSI
HKLM\SOFTWARE\Wow6432Node\Naviextras
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice.org
HKLM\SOFTWARE\Wow6432Node\Orange
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\ParetoLogic =>PUP.Optional.Paretologic
HKLM\SOFTWARE\Wow6432Node\PDF Architect
HKLM\SOFTWARE\Wow6432Node\PDFCreator
HKLM\SOFTWARE\Wow6432Node\perforce
HKLM\SOFTWARE\Wow6432Node\PIP =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Pirrit =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\Pirrit Solutions =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\QTLite
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RST =>PUP.Optional.WinRST
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\Siber Systems
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\Sports Interactive Ltd
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Taronja
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\Visan
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\Wpm =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Amazon
HKCU\SOFTWARE\APN =>Toolbar.Ask
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Arnold
HKCU\SOFTWARE\Auslogics
HKCU\SOFTWARE\Avast Software
HKCU\SOFTWARE\Avg
HKCU\SOFTWARE\Capital Koala
HKCU\SOFTWARE\Cyanide
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\F-Secure
HKCU\SOFTWARE\FileTypeAssistant =>Adware.InstallCore
HKCU\SOFTWARE\FreeCDRIP
HKCU\SOFTWARE\Fridgesoft
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GoforFiles
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\iLivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\LeoCAD Software
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MOHWSplash
HKCU\SOFTWARE\Monte Cristo
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Naviextras
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OpenOffice.org
HKCU\SOFTWARE\ParetoLogic =>PUP.Optional.Paretologic
HKCU\SOFTWARE\PDF Architect
HKCU\SOFTWARE\PDFCreator
HKCU\SOFTWARE\perforce
HKCU\SOFTWARE\POV-Ray
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\SearchCore for Browsers =>PUP.Optional.SearchCore
HKCU\SOFTWARE\Siber Systems
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SpinTop
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\TikGames
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\WPI
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\F-Secure
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Avg
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Orange
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contenu des dossiers Programmes (350) - 14s
O43 - CFD: 2014/04/07 22:37:01 - [] D -- C:\Program Files (x86)\ADLSoft UnCompressor
O43 - CFD: 2014/10/10 17:43:08 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2012/09/30 10:40:23 - [] D -- C:\Program Files (x86)\AVG
O43 - CFD: 2011/08/18 17:36:49 - [] D -- C:\Program Files (x86)\CCleaner
O43 - CFD: 2015/08/28 22:18:00 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/07/05 15:17:10 - [] D -- C:\Program Files (x86)\dumps
O43 - CFD: 2012/07/26 13:59:28 - [] D -- C:\Program Files (x86)\ffdshow
O43 - CFD: 2011/09/03 23:10:04 - [] D -- C:\Program Files (x86)\File Type Assistant =>Adware.InstallCore
O43 - CFD: 2014/06/27 22:02:17 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2014/01/26 16:30:43 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2013/07/18 21:03:47 - [] D -- C:\Program Files (x86)\HP
O43 - CFD: 2014/07/05 15:06:42 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/08/22 20:01:41 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/08/28 18:06:06 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2011/08/18 17:24:33 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2013/09/05 22:07:06 - [] D -- C:\Program Files (x86)\Microsoft Games
O43 - CFD: 2015/08/22 20:03:32 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2011/10/04 18:11:15 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2013/08/21 13:02:40 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/07/25 17:03:38 - [] D -- C:\Program Files (x86)\Naviextras
O43 - CFD: 2015/07/29 18:17:00 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2011/08/18 17:18:50 - [] D -- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 2014/06/27 20:23:22 - [] D -- C:\Program Files (x86)\Orange
O43 - CFD: 2013/05/08 20:51:41 - [] D -- C:\Program Files (x86)\PDF Architect
O43 - CFD: 2013/05/08 20:52:05 - [] D -- C:\Program Files (x86)\PDFCreator
O43 - CFD: 2013/04/20 08:31:37 - [] D -- C:\Program Files (x86)\QT Lite
O43 - CFD: 2011/08/18 20:42:21 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2014/04/07 20:23:28 - [] D -- C:\Program Files (x86)\Securitoo
O43 - CFD: 2013/05/22 18:17:32 - [] D -- C:\Program Files (x86)\Siber Systems
O43 - CFD: 2012/01/23 21:21:17 - [] D -- C:\Program Files (x86)\Ski Region Simulator 2012
O43 - CFD: 2015/09/01 12:44:16 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2011/08/18 20:42:54 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2013/04/21 20:24:18 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2015/07/18 14:08:56 - [] D -- C:\Program Files (x86)\VTech
O43 - CFD: 2013/07/11 08:32:49 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2013/05/11 08:52:51 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2010/11/21 08:19:00 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/10 10:42:03 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/01/27 20:55:58 - [] D -- C:\Program Files (x86)\Windows Phone
O43 - CFD: 2010/11/21 08:19:00 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010/11/21 05:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2010/11/21 08:19:00 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2011/08/19 20:20:47 - [] HD -- C:\Program Files (x86)\Zero G Registry
O43 - CFD: 2011/08/18 17:19:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2014/04/13 20:38:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/09/09 21:03:04 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon
O43 - CFD: 2013/02/24 19:36:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Caprice32
O43 - CFD: 2014/04/13 20:24:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre Souris et Claviers Microsoft
O43 - CFD: 2012/07/26 13:59:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
O43 - CFD: 2014/07/05 15:05:22 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2013/01/15 13:05:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/03/11 15:16:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/08/28 18:04:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2011/08/18 17:24:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/14 15:06:58 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxis
O43 - CFD: 2014/07/05 15:06:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
O43 - CFD: 2015/08/22 19:56:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/07/29 18:17:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2011/08/18 17:19:06 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3
O43 - CFD: 2013/05/08 20:51:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect
O43 - CFD: 2013/05/08 20:51:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 2015/03/15 21:28:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 2011/08/18 17:28:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
O43 - CFD: 2011/08/18 17:25:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QT Lite
O43 - CFD: 2013/10/12 11:15:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm
O43 - CFD: 2012/01/22 15:31:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ski Region Simulator 2012
O43 - CFD: 2014/01/24 22:13:21 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/07/05 15:33:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2010/11/21 08:29:25 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/18 14:09:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech
O43 - CFD: 2015/01/27 20:55:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone
O43 - CFD: 2014/10/10 17:43:11 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2013/04/20 08:26:16 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2013/04/20 08:31:30 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2013/07/18 21:04:34 - [] D -- C:\ProgramData\Applications
O43 - CFD: 2013/10/21 22:24:32 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2012/09/29 18:08:47 - [] D -- C:\ProgramData\AVG
O43 - CFD: 2012/09/30 11:47:11 - [] D -- C:\ProgramData\AVG2012
O43 - CFD: 2012/09/30 10:42:32 - [] D -- C:\ProgramData\AVG2013
O43 - CFD: 2013/04/21 20:54:45 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2011/08/20 20:24:02 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2011/12/15 19:02:34 - [] D -- C:\ProgramData\F-Secure
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2011/08/19 19:14:33 - [] D -- C:\ProgramData\Google
O43 - CFD: 2013/07/04 18:49:39 - [] D -- C:\ProgramData\HP
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2012/09/30 11:47:11 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 2015/06/28 18:22:49 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/07/05 15:06:38 - [0] D -- C:\ProgramData\Microsoft Games
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/09/01 12:44:08 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/04/13 20:23:16 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/08/28 18:06:24 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/05/18 10:28:20 - [] D -- C:\ProgramData\Orange
O43 - CFD: 2013/05/22 18:18:14 - [] D -- C:\ProgramData\RoboForm
O43 - CFD: 2015/07/29 22:01:42 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2012/09/30 13:05:04 - [] D -- C:\ProgramData\Software =>PUP.Optional.Boxore
O43 - CFD: 2012/05/28 20:17:39 - [] D -- C:\ProgramData\Sony Corporation
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2011/08/18 17:14:04 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2014/06/27 21:48:06 - [0] D -- C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
O43 - CFD: 2012/08/16 17:42:06 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/09/29 16:51:04 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 2013/07/04 21:06:53 - [] D -- C:\ProgramData\Visan
O43 - CFD: 2015/07/18 14:08:56 - [] D -- C:\ProgramData\VTech
O43 - CFD: 2014/04/06 20:20:55 - [] D -- C:\ProgramData\WPM =>PUP.Optional.WpManager
O43 - CFD: 2012/09/29 16:55:57 - [0] SHD -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 2012/09/29 18:07:50 - [] SHD -- C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
O43 - CFD: 2014/10/10 17:43:52 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/07/05 15:05:31 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 2014/06/27 22:03:50 - [] D -- C:\Program Files (x86)\Common Files\France Telecom
O43 - CFD: 2012/02/05 15:11:12 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/07/05 14:09:39 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/05/11 08:48:32 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2013/05/08 21:04:22 - [0] D -- C:\Program Files (x86)\Common Files\PDF Architect
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2011/08/19 20:59:41 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2011/11/09 11:15:55 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2011/08/18 17:38:49 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/02/14 18:00:05 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Adobe
O43 - CFD: 2014/06/27 20:41:38 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Amazon
O43 - CFD: 2013/09/28 21:25:15 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Apple Computer
O43 - CFD: 2013/10/22 04:25:51 - [] D -- C:\Users\Utilisateur\AppData\Roaming\AVAST Software
O43 - CFD: 2014/06/27 17:24:23 - [] D -- C:\Users\Utilisateur\AppData\Roaming\DriverCure =>PUP.Optional.Paretologic
O43 - CFD: 2012/03/04 12:26:23 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\f-secure
O43 - CFD: 2011/08/19 19:15:03 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Google
O43 - CFD: 2013/07/25 21:29:43 - [] D -- C:\Users\Utilisateur\AppData\Roaming\HpUpdate
O43 - CFD: 2011/08/18 16:30:07 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Identities
O43 - CFD: 2011/09/04 12:00:55 - [] D -- C:\Users\Utilisateur\AppData\Roaming\InfraRecorder
O43 - CFD: 2012/07/01 16:27:02 - [] D -- C:\Users\Utilisateur\AppData\Roaming\InstallShield
O43 - CFD: 2011/08/19 18:54:03 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Macromedia
O43 - CFD: 2010/11/21 08:29:25 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Media Center Programs
O43 - CFD: 2011/08/18 19:44:28 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Media Player Classic
O43 - CFD: 2015/06/22 10:23:03 - [] SD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft
O43 - CFD: 2014/07/05 15:06:37 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft Games
O43 - CFD: 2011/08/25 18:26:19 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Mozilla
O43 - CFD: 2015/07/25 17:04:32 - [] D -- C:\Users\Utilisateur\AppData\Roaming\naviextras
O43 - CFD: 2012/10/13 21:08:48 - [] D -- C:\Users\Utilisateur\AppData\Roaming\NVIDIA
O43 - CFD: 2011/08/18 19:33:41 - [] D -- C:\Users\Utilisateur\AppData\Roaming\OpenOffice.org
O43 - CFD: 2014/08/22 21:44:10 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Oracle
O43 - CFD: 2011/12/04 11:34:05 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Orange
O43 - CFD: 2014/07/05 15:18:48 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Origin
O43 - CFD: 2014/06/27 17:24:23 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ParetoLogic =>PUP.Optional.Paretologic
O43 - CFD: 2013/05/08 21:00:04 - [] D -- C:\Users\Utilisateur\AppData\Roaming\PDF Architect
O43 - CFD: 2011/09/07 21:46:12 - [] D -- C:\Users\Utilisateur\AppData\Roaming\PhotoFiltre
O43 - CFD: 2015/07/29 22:01:40 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Skype
O43 - CFD: 2014/06/27 20:22:53 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Solvusoft
O43 - CFD: 2013/06/04 20:58:39 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Sports Interactive
O43 - CFD: 2015/08/28 18:03:44 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Sun
O43 - CFD: 2015/08/23 14:15:31 - [] D -- C:\Users\Utilisateur\AppData\Roaming\U3
O43 - CFD: 2012/10/26 20:24:46 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Unity
O43 - CFD: 2013/07/04 21:06:53 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Visan
O43 - CFD: 2011/09/02 17:25:17 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Windows Live Writer
O43 - CFD: 2015/09/01 13:24:04 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ZHP
O43 - CFD: 2015/01/01 13:30:10 - [] D -- C:\Users\Utilisateur\AppData\Local\Adobe
O43 - CFD: 2013/04/20 08:26:17 - [] D -- C:\Users\Utilisateur\AppData\Local\Apple
O43 - CFD: 2013/09/28 21:25:16 - [] D -- C:\Users\Utilisateur\AppData\Local\Apple Computer
O43 - CFD: 2011/08/18 16:29:49 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Application Data
O43 - CFD: 2011/08/19 19:13:08 - [] D -- C:\Users\Utilisateur\AppData\Local\Apps
O43 - CFD: 2012/09/28 06:39:48 - [] D -- C:\Users\Utilisateur\AppData\Local\Avg2013
O43 - CFD: 2013/08/21 13:04:59 - [] D -- C:\Users\Utilisateur\AppData\Local\avgchrome
O43 - CFD: 2015/07/22 11:04:44 - [] D -- C:\Users\Utilisateur\AppData\Local\CEF
O43 - CFD: 2011/10/21 14:52:33 - [] D -- C:\Users\Utilisateur\AppData\Local\Chromium
O43 - CFD: 2011/08/19 19:13:15 - [0] D -- C:\Users\Utilisateur\AppData\Local\Deployment
O43 - CFD: 2011/10/03 08:08:52 - [0] D -- C:\Users\Utilisateur\AppData\Local\Diagnostics
O43 - CFD: 2012/01/22 15:15:02 - [] D -- C:\Users\Utilisateur\AppData\Local\Downloader
O43 - CFD: 2014/08/15 18:36:50 - [] D -- C:\Users\Utilisateur\AppData\Local\DownloadManager
O43 - CFD: 2015/08/30 16:30:54 - [] D -- C:\Users\Utilisateur\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/06/21 11:20:39 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/21 11:20:38 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/21 11:20:39 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieUserList
O43 - CFD: 2015/07/30 20:17:00 - [] D -- C:\Users\Utilisateur\AppData\Local\Google
O43 - CFD: 2015/06/01 18:19:35 - [] D -- C:\Users\Utilisateur\AppData\Local\GWX
O43 - CFD: 2011/08/18 16:29:49 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Historique
O43 - CFD: 2013/07/04 18:54:35 - [] D -- C:\Users\Utilisateur\AppData\Local\HP
O43 - CFD: 2014/08/21 22:03:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\LeoCAD
O43 - CFD: 2014/04/06 20:04:16 - [0] D -- C:\Users\Utilisateur\AppData\Local\Lollipop =>PUP.Optional.Lollipop
O43 - CFD: 2012/09/28 06:39:48 - [] D -- C:\Users\Utilisateur\AppData\Local\MFAData
O43 - CFD: 2014/08/21 22:06:16 - [] D -- C:\Users\Utilisateur\AppData\Local\Michael Heidemann
O43 - CFD: 2015/07/31 21:13:41 - [] D -- C:\Users\Utilisateur\AppData\Local\Microsoft
O43 - CFD: 2011/10/23 22:34:11 - [] D -- C:\Users\Utilisateur\AppData\Local\Microsoft Games
O43 - CFD: 2011/08/18 20:27:45 - [] D -- C:\Users\Utilisateur\AppData\Local\Mozilla
O43 - CFD: 2012/12/22 21:53:44 - [] D -- C:\Users\Utilisateur\AppData\Local\Nexway
O43 - CFD: 2014/04/13 20:39:01 - [] D -- C:\Users\Utilisateur\AppData\Local\NVIDIA
O43 - CFD: 2014/04/07 20:26:08 - [] D -- C:\Users\Utilisateur\AppData\Local\Orange
O43 - CFD: 2013/11/11 14:52:09 - [] D -- C:\Users\Utilisateur\AppData\Local\Program Files
O43 - CFD: 2014/01/12 20:53:52 - [] D -- C:\Users\Utilisateur\AppData\Local\Programs
O43 - CFD: 2015/07/29 19:35:16 - [] D -- C:\Users\Utilisateur\AppData\Local\Skype
O43 - CFD: 2012/09/30 10:54:52 - [] D -- C:\Users\Utilisateur\AppData\Local\Software =>PUP.Optional.Boxore
O43 - CFD: 2014/11/26 15:20:33 - [] D -- C:\Users\Utilisateur\AppData\Local\Sports Interactive
O43 - CFD: 2015/02/19 10:42:36 - [] D -- C:\Users\Utilisateur\AppData\Local\Steam
O43 - CFD: 2015/09/01 13:23:31 - [] D -- C:\Users\Utilisateur\AppData\Local\Temp
O43 - CFD: 2011/08/18 16:29:49 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/10/26 20:24:21 - [] D -- C:\Users\Utilisateur\AppData\Local\Unity
O43 - CFD: 2011/08/20 13:54:12 - [] D -- C:\Users\Utilisateur\AppData\Local\VirtualStore
O43 - CFD: 2012/07/07 22:12:15 - [] D -- C:\Users\Utilisateur\AppData\Local\Windows Live
O43 - CFD: 2011/08/31 18:44:41 - [] D -- C:\Users\Utilisateur\AppData\Local\Windows Live Writer
O43 - CFD: 2014/04/06 20:09:00 - [0] D -- C:\Users\Utilisateur\AppData\Local\WinRST =>PUP.Optional.WinRST
O43 - CFD: 2011/09/03 23:04:23 - [0] D -- C:\Users\Utilisateur\AppData\Local\WMTools Downloaded Files
O43 - CFD: 2012/05/22 20:26:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{0413F09D-8CB0-48D8-9C16-B5FF8600FA76}
O43 - CFD: 2013/04/10 21:02:17 - [0] D -- C:\Users\Utilisateur\AppData\Local\{0734CF2C-0A40-4382-9268-9DCF920DEE90}
O43 - CFD: 2011/08/31 07:15:04 - [0] D -- C:\Users\Utilisateur\AppData\Local\{084FB6BF-1C4F-497F-BD7E-5B71E634B703}
O43 - CFD: 2012/02/15 11:23:45 - [0] D -- C:\Users\Utilisateur\AppData\Local\{09C51365-06AF-4677-8B73-867661BC8D5B}
O43 - CFD: 2011/08/27 07:48:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{0F10227E-B3E1-404A-8C4D-8F83CF1BB415}
O43 - CFD: 2011/11/21 19:25:07 - [0] D -- C:\Users\Utilisateur\AppData\Local\{101A5562-2982-4892-8F93-24EABF86DF72}
O43 - CFD: 2012/01/13 13:30:21 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1087B246-4565-4E4B-A28E-A763A456F164}
O43 - CFD: 2011/08/31 18:45:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1088EFAD-A9A4-44B7-976E-2FD01C4748A0}
O43 - CFD: 2011/11/09 19:11:39 - [0] D -- C:\Users\Utilisateur\AppData\Local\{12BEED6E-4543-4E99-93FD-066E1D764BE4}
O43 - CFD: 2012/05/16 20:46:43 - [0] D -- C:\Users\Utilisateur\AppData\Local\{13FFA60F-2800-4411-B9CD-8AE08BB39056}
O43 - CFD: 2012/02/08 11:28:50 - [0] D -- C:\Users\Utilisateur\AppData\Local\{15157844-70F7-4E17-AA6C-E9A5FD6D5715}
O43 - CFD: 2011/12/18 19:04:47 - [0] D -- C:\Users\Utilisateur\AppData\Local\{171E540C-231F-4145-B2F5-78C9AA06BE0A}
O43 - CFD: 2012/01/31 14:18:37 - [0] D -- C:\Users\Utilisateur\AppData\Local\{19E41361-3062-428E-9964-1DCE9D66B598}
O43 - CFD: 2011/12/03 13:50:43 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1BE55845-C31D-4972-AC85-5B60EFB8A315}
O43 - CFD: 2011/12/29 13:04:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1C5C7369-9399-4395-A716-96559B0327A9}
O43 - CFD: 2012/01/13 13:30:31 - [0] D -- C:\Users\Utilisateur\AppData\Local\{21233E20-FE98-446A-BD35-FAF71D2A7406}
O43 - CFD: 2011/12/23 12:57:32 - [0] D -- C:\Users\Utilisateur\AppData\Local\{216CC8C5-9F36-4C54-9213-2AB5A65342B3}
O43 - CFD: 2012/02/09 15:23:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{21D03492-5137-4EB7-A781-D7A2F6E7AEAF}
O43 - CFD: 2011/08/25 18:14:44 - [0] D -- C:\Users\Utilisateur\AppData\Local\{221C0F8B-EF7B-416E-9EE7-A29112D7E1A6}
O43 - CFD: 2011/09/01 07:19:40 - [0] D -- C:\Users\Utilisateur\AppData\Local\{23EEC1A0-D409-47BE-9B93-1A7C49D1AE20}
O43 - CFD: 2012/02/10 14:50:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{261EA4F3-0206-4BDB-86CE-68597F835EFC}
O43 - CFD: 2012/01/28 15:00:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{2771F1B2-7644-4266-A5BC-CE5D8B4A8996}
O43 - CFD: 2011/12/02 14:43:57 - [0] D -- C:\Users\Utilisateur\AppData\Local\{29D0FC4A-D649-4FDF-9EBB-7E55B12FBDA7}
O43 - CFD: 2011/08/28 10:03:11 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3183BDE9-849E-4945-8505-B373A5A98F6A}
O43 - CFD: 2011/11/08 16:28:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{35DCED48-E212-41A5-BE83-495AFBE6F019}
O43 - CFD: 2011/09/27 18:30:20 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3691C59C-9143-4D5A-9A85-D2E5DFA840D7}
O43 - CFD: 2011/11/25 14:06:13 - [0] D -- C:\Users\Utilisateur\AppData\Local\{37383E0A-6EE7-4A91-AFF3-142CB62BC1AF}
O43 - CFD: 2012/02/24 16:57:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3C83AA56-1054-4BBD-9E4E-E1CE41CDB180}
O43 - CFD: 2011/12/08 15:01:06 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3D9B72AA-CA4F-403D-8638-453A33345CE7}
O43 - CFD: 2012/07/07 22:12:38 - [0] D -- C:\Users\Utilisateur\AppData\Local\{40A017EA-0D7B-4473-A5EA-F857B00443D7}
O43 - CFD: 2012/02/02 08:42:15 - [0] D -- C:\Users\Utilisateur\AppData\Local\{426782DE-FE8C-46B9-9A4E-FE4429385E48}
O43 - CFD: 2013/01/14 14:14:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{43E779C6-C474-455C-84B0-E61AF538580D}
O43 - CFD: 2013/02/01 10:04:35 - [0] D -- C:\Users\Utilisateur\AppData\Local\{46F1A744-C3E7-49BC-90E7-8FE5C34ED7DA}
O43 - CFD: 2012/01/05 12:02:24 - [0] D -- C:\Users\Utilisateur\AppData\Local\{4754D160-F3FE-4D45-8BF0-FAFE6C117F28}
O43 - CFD: 2011/11/25 14:06:24 - [0] D -- C:\Users\Utilisateur\AppData\Local\{4D99C15A-4FB0-4CCA-B42A-E2A0AC07C584}
O43 - CFD: 2012/02/21 13:55:42 - [0] D -- C:\Users\Utilisateur\AppData\Local\{4F04AAAB-D318-4978-9615-4F9DD80D0DBF}
O43 - CFD: 2012/11/27 19:29:21 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5018C3D4-763D-49D8-8C47-AD7632211981}
O43 - CFD: 2011/12/08 15:01:17 - [0] D -- C:\Users\Utilisateur\AppData\Local\{58E6BCE5-508F-474D-AF76-7E9405482C33}
O43 - CFD: 2012/10/03 14:35:38 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5A581240-A8F5-404E-ADF0-533C39507DAE}
O43 - CFD: 2013/02/10 16:37:20 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5A5E42C3-D7D8-4053-A2FF-F9AEF0B09A5C}
O43 - CFD: 2011/11/08 16:28:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5DA7940F-44BE-4121-BB07-F26794FB4D6F}
O43 - CFD: 2011/08/29 07:05:11 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5EF17AF2-E3D3-4E14-B40B-B18B8096B32C}
O43 - CFD: 2011/08/27 10:48:17 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5FE20218-1BF5-4E56-A6E9-163B8B7F9B6D}
O43 - CFD: 2012/01/05 12:02:34 - [0] D -- C:\Users\Utilisateur\AppData\Local\{65E58F3A-FBF3-4311-A360-E8AC9F9390CE}
O43 - CFD: 2012/04/01 19:47:39 - [0] D -- C:\Users\Utilisateur\AppData\Local\{66C6EFBC-0D3C-4785-8AAA-D43727746105}
O43 - CFD: 2011/11/16 16:23:02 - [0] D -- C:\Users\Utilisateur\AppData\Local\{6905BBE1-72FD-4475-BA05-28014162184A}
O43 - CFD: 2012/02/01 07:38:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{6987E7AE-D3D5-4646-86B2-862C509EA09B}
O43 - CFD: 2012/02/01 07:39:08 - [0] D -- C:\Users\Utilisateur\AppData\Local\{70CA1447-456D-45D2-B0D4-938C00D86B82}
O43 - CFD: 2012/02/24 16:58:09 - [0] D -- C:\Users\Utilisateur\AppData\Local\{7236719F-06A5-4118-907F-CC856CEA6B46}
O43 - CFD: 2012/02/01 20:25:34 - [0] D -- C:\Users\Utilisateur\AppData\Local\{727BDFD6-286C-4EE6-86D7-DDC0A32C1C8F}
O43 - CFD: 2011/11/26 17:31:45 - [0] D -- C:\Users\Utilisateur\AppData\Local\{7416DADC-3E9F-4695-BB60-54F7CD51F263}
O43 - CFD: 2011/09/03 11:02:59 - [0] D -- C:\Users\Utilisateur\AppData\Local\{743C00D6-6092-40E6-822E-7CC7F4933BFF}
O43 - CFD: 2011/09/01 07:19:30 - [0] D -- C:\Users\Utilisateur\AppData\Local\{75821B87-C0B6-42E0-A8FF-684AA2B903D2}
O43 - CFD: 2011/12/23 12:57:22 - [0] D -- C:\Users\Utilisateur\AppData\Local\{77E564F7-C835-451F-983F-FEE71491C5BD}
O43 - CFD: 2013/01/06 15:13:33 - [0] D -- C:\Users\Utilisateur\AppData\Local\{826EDCC7-B539-4236-9520-E2177FCA7162}
O43 - CFD: 2012/01/09 14:57:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{8557BC22-366C-4AA4-A85D-3BAC3E78392F}
O43 - CFD: 2011/12/02 14:44:07 - [0] D -- C:\Users\Utilisateur\AppData\Local\{87E2ABC6-CAEC-4720-83B7-EBDB3376C3E8}
O43 - CFD: 2011/08/25 18:16:14 - [0] D -- C:\Users\Utilisateur\AppData\Local\{888C8C3A-1E1C-4631-B91D-68719B96FE12}
O43 - CFD: 2012/02/07 15:50:15 - [0] D -- C:\Users\Utilisateur\AppData\Local\{89A48CD6-7952-4B6B-AA1D-34C0F60BEEF0}
O43 - CFD: 2012/07/08 10:31:30 - [0] D -- C:\Users\Utilisateur\AppData\Local\{8B56D8C9-D6AD-4443-9E69-28813DAF65FD}
O43 - CFD: 2012/02/07 15:50:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{8EE66E1A-F894-4495-9D2D-1672BF5BA5E2}
O43 - CFD: 2012/02/10 14:51:06 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9272FEB1-D9A8-4ECA-8D05-A39BE8312DD2}
O43 - CFD: 2011/08/27 17:04:32 - [0] D -- C:\Users\Utilisateur\AppData\Local\{94CDFC4B-893E-4491-9F7B-7C2DFD4225FA}
O43 - CFD: 2011/11/21 19:25:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{956AA732-3D5F-4BEE-9D7D-7B6B8D6B8D94}
O43 - CFD: 2011/10/17 13:41:03 - [0] D -- C:\Users\Utilisateur\AppData\Local\{97BFFD48-1A09-451F-9C1A-8833C94102D5}
O43 - CFD: 2011/08/25 18:15:24 - [0] D -- C:\Users\Utilisateur\AppData\Local\{97F5BF0D-5466-46EF-BAB4-0E7954259EE1}
O43 - CFD: 2011/11/04 15:35:44 - [0] D -- C:\Users\Utilisateur\AppData\Local\{97FDA81C-2D83-4D7A-BBDE-D036526FF05E}
O43 - CFD: 2011/09/03 17:34:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{99940ADF-DD3A-43C2-8189-5BB7ACA41A3B}
O43 - CFD: 2011/08/31 18:45:14 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9AE21682-B7C9-4C30-ABFD-C5D7D5F245A8}
O43 - CFD: 2011/12/28 22:39:44 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9C4D1D20-FCBB-49E0-960D-1844DB28984B}
O43 - CFD: 2011/12/29 14:21:38 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9C6C89D0-4E45-4CBA-BE1B-81A4ACE52F1D}
O43 - CFD: 2011/08/27 10:48:27 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9CCBC095-819D-4C2B-84C1-3BFAC758A000}
O43 - CFD: 2012/05/27 12:20:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9D0BA3F6-EE31-4A61-B4FD-23CBBAEF7317}
O43 - CFD: 2012/07/07 22:09:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9E9A8916-99C5-4AFB-8733-86D95B73998D}
O43 - CFD: 2012/07/07 22:15:23 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9EFD57B5-B8E9-42B3-A563-5D14DEA62BE3}
O43 - CFD: 2012/02/15 11:23:56 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A071EF43-3A9D-4E21-BE80-DE976B6B8899}
O43 - CFD: 2011/10/30 10:32:02 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A2C36150-CB4D-4F8C-B4B6-40E879A16358}
O43 - CFD: 2012/02/02 08:42:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A42175F1-1282-4F2B-BC4B-731E131EB0E2}
O43 - CFD: 2011/08/27 17:04:22 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A77D075C-D85F-485A-9AE0-DA87EA42EC44}
O43 - CFD: 2012/02/09 15:23:01 - [0] D -- C:\Users\Utilisateur\AppData\Local\{AB1E44CC-C909-40A3-82A4-2FE3BCA7320E}
O43 - CFD: 2011/08/31 18:45:04 - [0] D -- C:\Users\Utilisateur\AppData\Local\{AFB38F89-0F5B-444B-BCB0-65DB3E9E1511}
O43 - CFD: 2012/02/01 20:25:23 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B058821C-9192-4404-A2D0-3DE02A8BF20D}
O43 - CFD: 2011/09/07 22:12:20 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B08D0EE9-9E37-4BB2-99EE-E34C49D1C9A7}
O43 - CFD: 2011/09/02 08:04:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B89AA875-F7E7-403A-8902-56E55808D954}
O43 - CFD: 2011/08/29 07:05:01 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B8DE23D5-E7A2-4DE1-9F81-C250BED9D50B}
O43 - CFD: 2012/10/28 21:17:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BA635387-9371-40F7-990B-D0B81BF897DF}
O43 - CFD: 2012/12/09 18:55:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BAACBBCB-5C8A-4813-A283-04E73F017544}
O43 - CFD: 2012/01/06 17:37:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BBD301FF-00C1-479A-9A02-8D92073020B9}
O43 - CFD: 2011/12/29 14:21:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BF05DCA1-BF14-4280-A813-2FC7D974B4E8}
O43 - CFD: 2011/08/27 18:06:36 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C038E736-B16E-4DAE-8D71-39CFA05BF2D6}
O43 - CFD: 2011/08/31 07:14:54 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C04E14FD-0FBC-4600-BEAC-1D92CA030804}
O43 - CFD: 2012/07/08 10:31:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C1D69572-6287-4BC9-9311-080E4900D60A}
O43 - CFD: 2011/12/03 13:50:33 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C2B2D0C5-CE15-4FD7-87F6-3A38465D3AF8}
O43 - CFD: 2011/11/16 16:23:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C2E69774-A244-4BBF-9EDB-D567DA4F7FE9}
O43 - CFD: 2011/10/29 15:56:04 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C386D71E-00D1-4DF9-A7F9-10A22BF9F5D5}
O43 - CFD: 2011/11/09 19:11:29 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C66EAFD6-FBB1-4782-A3F3-0713FE66F3F5}
O43 - CFD: 2011/11/04 15:35:54 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C6B13296-E193-4C7F-B111-0987494D9E4B}
O43 - CFD: 2012/02/21 13:55:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C8C98900-8087-4EE6-AE38-5C9F3D878EEC}
O43 - CFD: 2011/11/05 12:19:47 - [0] D -- C:\Users\Utilisateur\AppData\Local\{CDE0B852-68F5-4B9C-A686-EAB4C9254E20}
O43 - CFD: 2011/09/04 08:53:40 - [0] D -- C:\Users\Utilisateur\AppData\Local\{CEF400D6-E9A7-4956-844F-442B689E326F}
O43 - CFD: 2011/11/26 17:31:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D0BE4D26-7F90-426E-B482-1E8D6D40A138}
O43 - CFD: 2011/09/07 22:12:21 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D1CEBE64-BC94-475A-9A63-B5BB1AEC80CA}
O43 - CFD: 2011/10/17 13:40:52 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D3B5B4F0-76C0-43AB-AD83-091283151D07}
O43 - CFD: 2012/01/11 18:43:57 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D44B0D38-66D0-4BCD-8B9C-18A2826115F1}
O43 - CFD: 2011/08/28 10:03:22 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D550C9B2-DECC-4130-AB56-ACC0323C7A5C}
O43 - CFD: 2011/10/29 15:55:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D847801F-0717-436D-B20D-66BBD32E2C13}
O43 - CFD: 2011/09/27 18:30:09 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D8C985E6-9680-435B-82D5-E271656F475D}
O43 - CFD: 2011/09/02 08:04:35 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D90F2BF8-66A0-44F0-BD22-7F7BB620D6EB}
O43 - CFD: 2011/09/03 17:34:37 - [0] D -- C:\Users\Utilisateur\AppData\Local\{DD9FCBA7-5849-49FE-957B-6821C25EE4E9}
O43 - CFD: 2012/02/08 11:29:00 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E24EF551-E5EA-4E05-A069-1FF7AE75858A}
O43 - CFD: 2012/04/07 13:24:46 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E2BC7C28-DD1D-4A21-B573-AE5D56C8827A}
O43 - CFD: 2011/08/27 18:06:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E53C4D1C-9117-4EF3-A9DC-E2A879FDA991}
O43 - CFD: 2011/10/30 10:31:52 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E6E9D4BE-FC44-4BC5-B62F-E586DEE0FCE8}
O43 - CFD: 2012/01/11 18:43:47 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E717604B-2436-4228-921B-72693DDDCB27}
O43 - CFD: 2012/01/09 14:58:06 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E73F3DD6-11B4-42D3-9827-E0AD2E15090B}
O43 - CFD: 2013/02/18 17:44:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{EC4D0816-5D3C-42A9-8EBD-A48109331565}
O43 - CFD: 2011/12/18 19:04:36 - [0] D -- C:\Users\Utilisateur\AppData\Local\{ED04362F-531C-4ED3-A0A5-9CA2DC5BA88C}
O43 - CFD: 2011/11/05 12:19:37 - [0] D -- C:\Users\Utilisateur\AppData\Local\{ED93C522-BB08-4537-AE54-388A85AC1F0A}
O43 - CFD: 2013/04/04 18:01:07 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F01A28E5-4805-4E80-BF36-92A7B52C2A81}
O43 - CFD: 2011/09/04 08:53:30 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F04A8A09-C109-4A6D-B938-698044F7F088}
O43 - CFD: 2011/08/26 18:08:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F15C14A6-F57D-42EA-BE80-95E47A5E15D4}
O43 - CFD: 2012/01/28 15:01:03 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F4CEE47C-FABC-48E2-A357-002F59BF59D0}
O43 - CFD: 2013/02/05 19:44:03 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F67F3EE7-61C9-452C-A175-E6CD4D26EEBE}
O43 - CFD: 2011/10/24 15:12:10 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F6F18D8E-F41A-4AA1-8B42-71F267013CC0}
O43 - CFD: 2012/01/31 14:18:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{FC173AE6-E2A4-4055-AE48-1BA7009743EC}
O43 - CFD: 2013/05/11 08:45:35 - [0] D -- C:\Users\Utilisateur\AppData\Local\{FEBB34E0-122A-48BB-9A84-DA3418684F5E}
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/22 20:07:11 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/06/27 20:41:37 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
O43 - CFD: 2011/08/18 17:36:49 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/07/10 21:20:52 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2014/01/12 20:53:53 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/25 17:04:03 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Naviextras
O43 - CFD: 2013/07/18 21:56:29 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 2013/03/18 23:24:35 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ScreenMates
O43 - CFD: 2015/08/22 20:07:11 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/03/01 23:27:15 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2013/04/21 20:24:19 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
---\\ Liste des pilotes du système (57) - 4s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968] ©
O58 - SDL:2015/07/30 10:50:27 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224] ©
O58 - SDL:2015/08/22 18:17:13 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [1048344] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [447944] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808] ©
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/21 05:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2014/04/07 20:06:52 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [119512] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2015/07/30 10:50:12 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [115152] ©
O58 - SDL:2014/08/19 23:14:52 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [197408] ©
O58 - SDL:2015/02/20 00:43:32 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [12894024] ©
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2010/03/22 12:29:26 A . (.NVIDIA Corporation - NVIDIA nForce(TM) SMU Microcontroller Drive.) -- C:\Windows\System32\drivers\nvsmu.sys [29800] ©
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2010/04/08 20:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor64.sys [244328] ©
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2011/06/10 14:34:52 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [539240] ©
O58 - SDL:2011/07/07 17:39:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2914408] ©
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (1) - 20s
O61 - LFC: 2015/09/01 12:57:02 A . (..) -- C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
---\\ Recherche d'infection sur les navigateurs (4) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {7A47BD20-403F-4F5D-BEF1-EF8CA97D21B0} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} [DefaultScope] - (default-search.net) - http://www.default-search.net/ =>PUP.Optional.SearchNet
---\\ Enumère les services démarrés par Svchost (32) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2606080] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ©
---\\ Liste des exceptions du parefeu Windows (32) - 2s
O87 - FAEL: "{67F6043A-ACC4-4A0E-BE2C-7D32163FE8CD}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{783277DF-ADCC-4143-8F4C-57FD08AFEEE2}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{076B361C-74AB-42E6-946F-08A278797EB2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{FB6377EE-604B-4126-A262-4ABF18BE73D0}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{D815715D-0998-4697-8A71-471FEA32DF03}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{89B102B6-C1BE-4DFF-9242-501EC02165A3}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{6AD7F3EE-D48F-4C0E-88B4-C271F3299AA6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.)
O87 - FAEL: "{5F0D6146-262B-497E-8D75-4779685EAB19}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.)
O87 - FAEL: "{5D9EDCFE-BBF7-48E4-A63E-2B091A6F9799}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\PCM.exe (.not file.)
O87 - FAEL: "{642D42AF-27CA-4007-82BB-3531041E75AD}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\PCM.exe (.not file.)
O87 - FAEL: "{F04BFDEB-346D-4D74-85C2-F3929AD4DF04}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\Autorun\Exe\Autorun.exe (.not file.)
O87 - FAEL: "{5D1CCA80-1845-441E-823F-9AABAE4A65ED}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\Autorun\Exe\Autorun.exe (.not file.)
O87 - FAEL: "{81768929-BF07-4369-8272-DBCFB536C0A1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{381109A6-57CB-41CD-869D-448D305CC115}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{1047B0C3-1DE7-4BEA-885C-1A21813EC948}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{E8D53DA8-7FFB-451C-9CBC-01BF28BB93F9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{BE6E8D24-F05B-45FC-9C78-B882E17AC570}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{9A6FDBEB-2883-4897-BFCC-8ED2F478342B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{7B7BF9C3-97A7-4229-B994-1E4F3627B54B}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe (.not file.)
O87 - FAEL: "{C4A0DB48-7C16-485F-A235-0D237BE02517}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe (.not file.)
O87 - FAEL: "{5546D388-55D6-4039-BBCB-5DE2D8BBD732}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.)
O87 - FAEL: "{507A5515-2C78-4B3E-9F43-1DB7792F4418}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.)
O87 - FAEL: "{32134C16-B5B5-49B0-8721-8F9BA7C60037}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.)
O87 - FAEL: "{568B1D24-038C-4753-A1C7-349BA2F4A5FF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.)
O87 - FAEL: "{BD28CD7F-74FC-4548-8F6F-5790A9B0D58A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe
O87 - FAEL: "{238F9E96-3882-4162-917C-D64B6018535B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe
O87 - FAEL: "TCP Query User{7FED1538-3577-4BAD-BFCF-FB3C0976AF56}C:\program files (x86)\emule\emule.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "UDP Query User{58879382-7660-4388-B171-D9B66AE37049}C:\program files (x86)\emule\emule.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "{38B57A19-B361-4450-8A5B-5EBA9C52443F}" [In-None-P6-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O87 - FAEL: "{823BB1CB-110F-45D4-A622-C9C07FB39ECB}" [In-None-P17-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O87 - FAEL: "{731354F1-9134-40FD-866C-D640EEBD7BC5}" [In-None-P6-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O87 - FAEL: "{53E5654E-186B-4B86-BF24-6500E3B584C1}" [In-None-P17-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 19s
SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Demand [2015/08/22 19:45:14] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/07/30 10:50:22] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SR - Demand [2015/07/21 06:31:41] [ 4047768] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe ©
SS - Auto [2015/09/01 08:00:54] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/09/01 08:00:54] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2012/08/26 14:56:09] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SR - Auto [2013/12/17 13:03:22] [ 46904] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe ©
SS - Demand [2005/04/04 00:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SR - Auto [2015/02/04 04:21:44] [ 932040] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe ©
SS - Auto [2014/01/21 16:54:18] [ 699912] Orange update Core Service (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe ©
SR - Auto [2013/04/08 18:44:12] [ 1320496] PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\HelperService.exe ©
SR - Auto [2013/04/08 18:43:36] [ 799280] PDF Architect Service (PDF Architect Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe ©
SS - Demand [2014/02/08 05:18:42] [ 569024] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe ©
SR - Auto [2015/02/04 02:00:09] [ 409800] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
---\\ Recherche de clés de registre Tracing (15) - 3s
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASAPI32 =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASMANCS =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASAPI32 =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASMANCS =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASAPI32 =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASMANCS =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASAPI32 =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASMANCS =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32 =>PUP.Optional.Datamngr
---\\ Scan Additionnel (57) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\PirritUpdater =>PUP.Optional.Pirrit
HKLM\SYSTEM\CurrentControlSet\Services\WinRST =>PUP.Optional.WinRST
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Trusted Software Assistant_is1 =>Adware.InstallCore
HKLM\SOFTWARE\Wow6432Node\58eddd1b43fbe14 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Wow6432Node\APN =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\free_soft_to_day =>PUP.Optional.FreeSoftToday
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\ParetoLogic =>PUP.Optional.Paretologic
HKLM\SOFTWARE\Wow6432Node\PIP =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Pirrit =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\Pirrit Solutions =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\RST =>PUP.Optional.WinRST
HKLM\SOFTWARE\Wow6432Node\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\Wow6432Node\Wpm =>PUP.Optional.WpManager
HKCU\SOFTWARE\APN =>Toolbar.Ask
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\FileTypeAssistant =>Adware.InstallCore
HKCU\SOFTWARE\iLivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\ParetoLogic =>PUP.Optional.Paretologic
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\SearchCore for Browsers =>PUP.Optional.SearchCore
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
C:\Program Files (x86)\File Type Assistant =>Adware.InstallCore
C:\ProgramData\Software =>PUP.Optional.Boxore
C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
C:\ProgramData\WPM =>PUP.Optional.WpManager
C:\Users\Utilisateur\AppData\Roaming\DriverCure =>PUP.Optional.Paretologic
C:\Users\Utilisateur\AppData\Roaming\ParetoLogic =>PUP.Optional.Paretologic
C:\Users\Utilisateur\AppData\Local\Lollipop =>PUP.Optional.Lollipop
C:\Users\Utilisateur\AppData\Local\Software =>PUP.Optional.Boxore
C:\Users\Utilisateur\AppData\Local\WinRST =>PUP.Optional.WinRST
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASAPI32 =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASMANCS =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASAPI32 =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASMANCS =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASAPI32 =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASMANCS =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASAPI32 =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASMANCS =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32 =>PUP.Optional.Datamngr
---\\ Récapitulatif des éléments trouvées sur votre station (34) - 0s
http://www.nicolascoolman.fr/hijacker-trovigo/ =>PUP.Optional.Trovigo
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/pup-pirritsuggestor/ =>PUP.Optional.Pirrit
http://www.nicolascoolman.fr/blog =>PUP.Optional.WinRST
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/blog =>PUP.Optional.Heuristic
http://www.nicolascoolman.fr/pup-babylon/ =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/adware-freesofttoday/ =>PUP.Optional.FreeSoftToday
http://www.nicolascoolman.fr/blog =>PUP.Optional.Paretologic
http://www.nicolascoolman.fr/blog =>PUP.Optional.SettingsManager
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/blog =>PUP.Optional.Uniblue
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/adware-bandoo/ =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/rogue-reimagerepair/ =>PUP.Optional.ReImageRepair
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchCore
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/blog =>PUP.Optional.DynConIE
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/pup-tarma/ =>PUP.Optional.Tarma
http://www.nicolascoolman.fr/adware-lollipop/ =>PUP.Optional.Lollipop
http://www.nicolascoolman.fr/hijacker-searchnet/ =>PUP.Optional.SearchNet
http://www.nicolascoolman.fr/pup-mypcbackup/ =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/blog =>Toolbar.AskBar
http://www.nicolascoolman.fr/pup-offerbox/ =>PUP.Optional.OfferBox
http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr
~ End of the scan, 17621 items in 112 seconds (1069)(0)()
~ Démarré par Utilisateur (Administrator) (2015/09/01 13:23:44)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Utilisateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v44.0.2403.157
MSIE: Internet Explorer v11.0.9600.17959
---\\ Informations sur les produits Windows (4) - 6s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK
---\\ Logiciels de protection (2) - 1s
Avast Free Antivirus v10.3.2225
Windows Defender W7 (Activate)
---\\ Logiciels d'optimisation (1) - 1s
CCleaner
---\\ Surveillance de Logiciels (2) - 1s
Adobe Flash Player 18 NPAPI
Adobe Reader XI
---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 16 Model 6 Stepping 3, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4193.528 MB (56% free)
~ System Restore: Activé (Enable)
~ System drive C: has 392 GB free of 476 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC
~ User Name: Utilisateur
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 392 GB free of 476 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (23) - 2s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.C555B5C8142844DED9E3BD94E6313000] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427904] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.43E1F4B0EFDC244D2A83995CCD7846F7] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ©
---\\ Processus lancés (26) - 2s
[MD5.C5647FB500C2A1F946B77C953528042D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\system32\nvvsvc.exe [932040] [PID.880] ©
[MD5.32B37DD6E7D423DF3CF3B196C8005F85] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.904] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1280] ©
[MD5.90B24138CAA9A068B2E1C3B2A913789A] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1200328] [PID.1320] ©
[MD5.C5647FB500C2A1F946B77C953528042D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\system32\nvvsvc.exe [932040] [PID.1328] ©
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1648] ©
[MD5.974A1F783ED34588B45FAD6375077BA6] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe [46904] [PID.1724] ©
[MD5.20372BE109FEE1C37E2D5216680DB9EB] - (.pdfforge GmbH - PDF Architect Helper Service.) -- C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496] [PID.1972] ©
[MD5.B90A279073A815A4AA2C45A09EE004FA] - (.pdfforge GmbH - PDF Architect Conversion Service.) -- C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280] [PID.2004] ©
[MD5.8667556E9A094E935212693AD05098E3] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12558440] [PID.2648] ©
[MD5.4F46EA70C7579052F764D0F9B81D23C2] - (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064] [PID.2656] ©
[MD5.86BF17A265E1B4BA41325623EC132E66] - (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe [2899136] [PID.2720] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.2904] ©
[MD5.4E95B1FDDC9E51678BFA2A723EAA94EF] - (.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [401280] [PID.2924]
[MD5.F916BA0DA28A4B4F7B1ADE76EB42F088] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552] [PID.2932] ©
[MD5.1EBCD1FBC4E7B443CE8E6A9A66B88EA1] - (.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe [1862848] [PID.1076] ©
[MD5.3ED2B00729E2D4F974C1418F1B2CDF60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe [245064] [PID.3240] ©
[MD5.042ED5CED9032D093CACF785BFA39D65] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe [305992] [PID.3608] ©
[MD5.CCC3FE1DDCCF99633539B3D7681EF7D7] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768] [PID.3688] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.4908] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.1732] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.960] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.3356] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.4824] ©
[MD5.92B2CC464136BA72FF7E57DF98993ACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.1372] ©
[MD5.FE4DD1A2E417A772052A142AEAFE5EDD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag3.exe [1915392] [PID.1668] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (9) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.trovi.com/ =>PUP.Optional.Trovigo
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://istart.webssearches.com/ =>PUP.Optional.IsStart
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://start.iminent.com/ =>PUP.Optional.IMBooster
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [mggkbalhdfhjalmmicijhgeoialfhjia] Widget Shopping Mailorama
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (2) - 1s
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
P2 - FPN: [HKLM] [@rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5] - (.RocketLife, LLP.) -- C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (22) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} Orphean
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Orphean
---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (15709)
---\\ Browser Helper Object de navigateur (BHO) (7) - 0s
O2 - BHO: AVG Do Not Track [64Bits] - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} (Orphean)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter [64Bits] - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} (Orphean)
O2 - BHO: RoboForm BHO [64Bits] - {724d43a9-0d85-11d4-9908-00400523e39a} . (.Siber Systems Inc. - RoboForm Main Module.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll ©
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ©
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (...) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll (.not file.)
---\\ Internet Explorer, Barre d'outil (1) - 1s
O3 - Toolbar: (no name) - [HKLM]{53DA718E-5DBD-448f-B21A-0BF73B07FB5A} (Orphean) (.not file.)
---\\ Applications lancées au démarrage du système (11) - 0s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe ©
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AgentMonitor] . (.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-3864191470-918546765-2016186552-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe ©
---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
---\\ Protocole additionnel (20) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
---\\ Liste des services NT non Microsoft et non désactivés (11) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) - C:\Windows\system32\nvvsvc.exe ©
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe ©
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GmbH - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe ©
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GmbH - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe ©
O23 - Service: PirritUpdater (PirritUpdater) . (...) - C:\Program Files (x86)\Pirrit\AutoUpdater.exe (.not file.) =>PUP.Optional.Pirrit
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
O23 - Service: WinRST (WinRST) . (...) - C:\Program Files (x86)\WinRST\WinRST.exe (.not file.) =>PUP.Optional.WinRST
---\\ Tâches planifiées en automatique (19) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.00000000000000000000000000000000] [APT] [Amazon Music Helper] (...) -- C:\Users\Utilisateur\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe (.not file.) [0]
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] ©
[MD5.00000000000000000000000000000000] [APT] [GoforFilesUpdate] (...) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe (.not file.) [0]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe (.not file.) [0] =>Toolbar.Ask
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] ©
O39 - APT: Amazon Music Helper - (...) -- C:\Windows\System32\Tasks\Amazon Music Helper [1646]
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] ©
O39 - APT: GoforFilesUpdate - (...) -- C:\Windows\System32\Tasks\GoforFilesUpdate [3074]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] ©
O39 - APT: Scheduled Update for Ask Toolbar - (...) -- C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar [3818] =>Toolbar.Ask
---\\ Logiciels installés (57) - 8s
O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center ©
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel ©
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers ©
O42 - Logiciel: Visual Studio 2010 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {21B133D6-5979-47F0-BE1C-F6A6B304693F} ©
O42 - Logiciel: 7-Zip 9.22 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0922-000001000000} ©
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3050A J611 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {6B6856BE-3ADD-4C18-9396-CAE664CCEF8E} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision ©
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 314.07 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB ©
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Mises à jour NVIDIA 10.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver ©
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: RoboForm 7-9-2-5 (All Users) - (.Siber Systems.) [HKLM][64Bits] -- AI RoboForm ©
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast ©
O42 - Logiciel: CCleaner (remove only) - (...) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: ffdshow v1.1.3425 [2010-05-08] - (...) [HKLM][64Bits] -- ffdshow_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: K-Lite Codec Pack 7.5.0 (Standard) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: Naviextras Toolbox - (.NNG Llc..) [HKLM][64Bits] -- Naviextras Toolbox
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo ©
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 ©
O42 - Logiciel: QT Lite 3.2.2 - (...) [HKLM][64Bits] -- qt7lite_is1
O42 - Logiciel: Ski Region Simulator 2012 - (.GIANTS Software.) [HKLM][64Bits] -- SkiRegionSimulator2012FR_is1 ©
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam ©
O42 - Logiciel: Football Manager 2015 - (.Sports Interactive.) [HKLM][64Bits] -- Steam App 295270 ©
O42 - Logiciel: Football Manager 2015 Editor - (...) [HKLM][64Bits] -- Steam App 295350
O42 - Logiciel: File Type Assistant - (.Trusted Software.) [HKLM][64Bits] -- Trusted Software Assistant_is1 =>Adware.InstallCore
O42 - Logiciel: Explor@ Park - (.VTech.) [HKLM][64Bits] -- VTechDownloadManager ©
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} ©
O42 - Logiciel: PDF Architect - (.pdfforge GmbH.) [HKLM][64Bits] -- {064A929A-4DE8-40CF-A901-BD40C14E4D25} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {23CCE784-A812-4647-AEFF-1DCCD4E57478} ©
O42 - Logiciel: Java 8 Update 60 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218060F0} ©
O42 - Logiciel: DVAPTray - (...) [HKLM][64Bits] -- {30D1B542-44E0-44F0-8A31-2A101CB626B5}
O42 - Logiciel: Naviextras Toolbox Prerequesities - (.NNG Llc..) [HKLM][64Bits] -- {537575D6-3B96-474C-BD8F-DFF667363DBD}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Windows Phone app for desktop - (.Microsoft Corporation.) [HKLM][64Bits] -- {639E54EE-95CA-4CAE-9779-6BA32D5EAF48} ©
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1} ©
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: ToolbarFR - (.Orange.) [HKLM][64Bits] -- {A047FE02-C91C-41CB-898C-4ED21B86025A} ©
O42 - Logiciel: Google+ Auto Backup - (.Google.) [HKLM][64Bits] -- {A50DE037-B5C0-4C8A-8049-B0C576B313D1} ©
O42 - Logiciel: VirtualDJ Home FREE - (.Atomix Productions.) [HKLM][64Bits] -- {A6AC699F-8315-40CA-8F70-E917494978AB} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Visual Studio 2008 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {FCDBEA60-79F0-4FAE-BBA8-55A26C609A49} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
---\\ HKCU & HKLM Software Keys (162) - 8s
HKLM\SOFTWARE\Wow6432Node\58eddd1b43fbe14 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\ALWIL Software
HKLM\SOFTWARE\Wow6432Node\Amazon
HKLM\SOFTWARE\Wow6432Node\APN =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\AVG
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\C07ft5Y
HKLM\SOFTWARE\Wow6432Node\CCleaner
HKLM\SOFTWARE\Wow6432Node\Cyanide
HKLM\SOFTWARE\Wow6432Node\DivXNetworks
HKLM\SOFTWARE\Wow6432Node\DVAPTray
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\Fish Technology Group
HKLM\SOFTWARE\Wow6432Node\FRANCE TELECOM
HKLM\SOFTWARE\Wow6432Node\free_soft_to_day =>PUP.Optional.FreeSoftToday
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\GoforFiles
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\InterVideo
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Lionhead Studios Ltd
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MSI
HKLM\SOFTWARE\Wow6432Node\Naviextras
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice.org
HKLM\SOFTWARE\Wow6432Node\Orange
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\ParetoLogic =>PUP.Optional.Paretologic
HKLM\SOFTWARE\Wow6432Node\PDF Architect
HKLM\SOFTWARE\Wow6432Node\PDFCreator
HKLM\SOFTWARE\Wow6432Node\perforce
HKLM\SOFTWARE\Wow6432Node\PIP =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Pirrit =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\Pirrit Solutions =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\QTLite
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RST =>PUP.Optional.WinRST
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\Siber Systems
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\Sports Interactive Ltd
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Taronja
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\Visan
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\Wpm =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Amazon
HKCU\SOFTWARE\APN =>Toolbar.Ask
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Arnold
HKCU\SOFTWARE\Auslogics
HKCU\SOFTWARE\Avast Software
HKCU\SOFTWARE\Avg
HKCU\SOFTWARE\Capital Koala
HKCU\SOFTWARE\Cyanide
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\F-Secure
HKCU\SOFTWARE\FileTypeAssistant =>Adware.InstallCore
HKCU\SOFTWARE\FreeCDRIP
HKCU\SOFTWARE\Fridgesoft
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GoforFiles
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\iLivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\LeoCAD Software
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MOHWSplash
HKCU\SOFTWARE\Monte Cristo
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Naviextras
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OpenOffice.org
HKCU\SOFTWARE\ParetoLogic =>PUP.Optional.Paretologic
HKCU\SOFTWARE\PDF Architect
HKCU\SOFTWARE\PDFCreator
HKCU\SOFTWARE\perforce
HKCU\SOFTWARE\POV-Ray
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\SearchCore for Browsers =>PUP.Optional.SearchCore
HKCU\SOFTWARE\Siber Systems
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SpinTop
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\TikGames
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\WPI
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\F-Secure
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Avg
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Orange
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contenu des dossiers Programmes (350) - 14s
O43 - CFD: 2014/04/07 22:37:01 - [] D -- C:\Program Files (x86)\ADLSoft UnCompressor
O43 - CFD: 2014/10/10 17:43:08 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2012/09/30 10:40:23 - [] D -- C:\Program Files (x86)\AVG
O43 - CFD: 2011/08/18 17:36:49 - [] D -- C:\Program Files (x86)\CCleaner
O43 - CFD: 2015/08/28 22:18:00 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/07/05 15:17:10 - [] D -- C:\Program Files (x86)\dumps
O43 - CFD: 2012/07/26 13:59:28 - [] D -- C:\Program Files (x86)\ffdshow
O43 - CFD: 2011/09/03 23:10:04 - [] D -- C:\Program Files (x86)\File Type Assistant =>Adware.InstallCore
O43 - CFD: 2014/06/27 22:02:17 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2014/01/26 16:30:43 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2013/07/18 21:03:47 - [] D -- C:\Program Files (x86)\HP
O43 - CFD: 2014/07/05 15:06:42 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/08/22 20:01:41 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/08/28 18:06:06 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2011/08/18 17:24:33 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2013/09/05 22:07:06 - [] D -- C:\Program Files (x86)\Microsoft Games
O43 - CFD: 2015/08/22 20:03:32 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2011/10/04 18:11:15 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2013/08/21 13:02:40 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/07/25 17:03:38 - [] D -- C:\Program Files (x86)\Naviextras
O43 - CFD: 2015/07/29 18:17:00 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2011/08/18 17:18:50 - [] D -- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 2014/06/27 20:23:22 - [] D -- C:\Program Files (x86)\Orange
O43 - CFD: 2013/05/08 20:51:41 - [] D -- C:\Program Files (x86)\PDF Architect
O43 - CFD: 2013/05/08 20:52:05 - [] D -- C:\Program Files (x86)\PDFCreator
O43 - CFD: 2013/04/20 08:31:37 - [] D -- C:\Program Files (x86)\QT Lite
O43 - CFD: 2011/08/18 20:42:21 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2014/04/07 20:23:28 - [] D -- C:\Program Files (x86)\Securitoo
O43 - CFD: 2013/05/22 18:17:32 - [] D -- C:\Program Files (x86)\Siber Systems
O43 - CFD: 2012/01/23 21:21:17 - [] D -- C:\Program Files (x86)\Ski Region Simulator 2012
O43 - CFD: 2015/09/01 12:44:16 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2011/08/18 20:42:54 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2013/04/21 20:24:18 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2015/07/18 14:08:56 - [] D -- C:\Program Files (x86)\VTech
O43 - CFD: 2013/07/11 08:32:49 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2013/05/11 08:52:51 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2010/11/21 08:19:00 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/10 10:42:03 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/01/27 20:55:58 - [] D -- C:\Program Files (x86)\Windows Phone
O43 - CFD: 2010/11/21 08:19:00 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010/11/21 05:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2010/11/21 08:19:00 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2011/08/19 20:20:47 - [] HD -- C:\Program Files (x86)\Zero G Registry
O43 - CFD: 2011/08/18 17:19:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2014/04/13 20:38:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/09/09 21:03:04 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon
O43 - CFD: 2013/02/24 19:36:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Caprice32
O43 - CFD: 2014/04/13 20:24:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre Souris et Claviers Microsoft
O43 - CFD: 2012/07/26 13:59:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
O43 - CFD: 2014/07/05 15:05:22 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2013/01/15 13:05:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/03/11 15:16:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/08/28 18:04:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2011/08/18 17:24:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/14 15:06:58 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxis
O43 - CFD: 2014/07/05 15:06:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
O43 - CFD: 2015/08/22 19:56:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/07/29 18:17:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2011/08/18 17:19:06 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3
O43 - CFD: 2013/05/08 20:51:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect
O43 - CFD: 2013/05/08 20:51:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 2015/03/15 21:28:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 2011/08/18 17:28:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
O43 - CFD: 2011/08/18 17:25:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QT Lite
O43 - CFD: 2013/10/12 11:15:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm
O43 - CFD: 2012/01/22 15:31:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ski Region Simulator 2012
O43 - CFD: 2014/01/24 22:13:21 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/07/05 15:33:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2010/11/21 08:29:25 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/18 14:09:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech
O43 - CFD: 2015/01/27 20:55:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone
O43 - CFD: 2014/10/10 17:43:11 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2013/04/20 08:26:16 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2013/04/20 08:31:30 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2013/07/18 21:04:34 - [] D -- C:\ProgramData\Applications
O43 - CFD: 2013/10/21 22:24:32 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2012/09/29 18:08:47 - [] D -- C:\ProgramData\AVG
O43 - CFD: 2012/09/30 11:47:11 - [] D -- C:\ProgramData\AVG2012
O43 - CFD: 2012/09/30 10:42:32 - [] D -- C:\ProgramData\AVG2013
O43 - CFD: 2013/04/21 20:54:45 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2011/08/20 20:24:02 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2011/12/15 19:02:34 - [] D -- C:\ProgramData\F-Secure
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2011/08/19 19:14:33 - [] D -- C:\ProgramData\Google
O43 - CFD: 2013/07/04 18:49:39 - [] D -- C:\ProgramData\HP
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2012/09/30 11:47:11 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 2015/06/28 18:22:49 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/07/05 15:06:38 - [0] D -- C:\ProgramData\Microsoft Games
O43 - CFD: 2011/08/18 16:29:45 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/09/01 12:44:08 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/04/13 20:23:16 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/08/28 18:06:24 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/05/18 10:28:20 - [] D -- C:\ProgramData\Orange
O43 - CFD: 2013/05/22 18:18:14 - [] D -- C:\ProgramData\RoboForm
O43 - CFD: 2015/07/29 22:01:42 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2012/09/30 13:05:04 - [] D -- C:\ProgramData\Software =>PUP.Optional.Boxore
O43 - CFD: 2012/05/28 20:17:39 - [] D -- C:\ProgramData\Sony Corporation
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2011/08/18 17:14:04 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2014/06/27 21:48:06 - [0] D -- C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
O43 - CFD: 2012/08/16 17:42:06 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/09/29 16:51:04 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 2013/07/04 21:06:53 - [] D -- C:\ProgramData\Visan
O43 - CFD: 2015/07/18 14:08:56 - [] D -- C:\ProgramData\VTech
O43 - CFD: 2014/04/06 20:20:55 - [] D -- C:\ProgramData\WPM =>PUP.Optional.WpManager
O43 - CFD: 2012/09/29 16:55:57 - [0] SHD -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 2012/09/29 18:07:50 - [] SHD -- C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
O43 - CFD: 2014/10/10 17:43:52 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/07/05 15:05:31 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 2014/06/27 22:03:50 - [] D -- C:\Program Files (x86)\Common Files\France Telecom
O43 - CFD: 2012/02/05 15:11:12 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/07/05 14:09:39 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/05/11 08:48:32 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2013/05/08 21:04:22 - [0] D -- C:\Program Files (x86)\Common Files\PDF Architect
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2011/08/19 20:59:41 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2011/11/09 11:15:55 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2011/08/18 17:38:49 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/02/14 18:00:05 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Adobe
O43 - CFD: 2014/06/27 20:41:38 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Amazon
O43 - CFD: 2013/09/28 21:25:15 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Apple Computer
O43 - CFD: 2013/10/22 04:25:51 - [] D -- C:\Users\Utilisateur\AppData\Roaming\AVAST Software
O43 - CFD: 2014/06/27 17:24:23 - [] D -- C:\Users\Utilisateur\AppData\Roaming\DriverCure =>PUP.Optional.Paretologic
O43 - CFD: 2012/03/04 12:26:23 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\f-secure
O43 - CFD: 2011/08/19 19:15:03 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Google
O43 - CFD: 2013/07/25 21:29:43 - [] D -- C:\Users\Utilisateur\AppData\Roaming\HpUpdate
O43 - CFD: 2011/08/18 16:30:07 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Identities
O43 - CFD: 2011/09/04 12:00:55 - [] D -- C:\Users\Utilisateur\AppData\Roaming\InfraRecorder
O43 - CFD: 2012/07/01 16:27:02 - [] D -- C:\Users\Utilisateur\AppData\Roaming\InstallShield
O43 - CFD: 2011/08/19 18:54:03 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Macromedia
O43 - CFD: 2010/11/21 08:29:25 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Media Center Programs
O43 - CFD: 2011/08/18 19:44:28 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Media Player Classic
O43 - CFD: 2015/06/22 10:23:03 - [] SD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft
O43 - CFD: 2014/07/05 15:06:37 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft Games
O43 - CFD: 2011/08/25 18:26:19 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Mozilla
O43 - CFD: 2015/07/25 17:04:32 - [] D -- C:\Users\Utilisateur\AppData\Roaming\naviextras
O43 - CFD: 2012/10/13 21:08:48 - [] D -- C:\Users\Utilisateur\AppData\Roaming\NVIDIA
O43 - CFD: 2011/08/18 19:33:41 - [] D -- C:\Users\Utilisateur\AppData\Roaming\OpenOffice.org
O43 - CFD: 2014/08/22 21:44:10 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Oracle
O43 - CFD: 2011/12/04 11:34:05 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Orange
O43 - CFD: 2014/07/05 15:18:48 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Origin
O43 - CFD: 2014/06/27 17:24:23 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ParetoLogic =>PUP.Optional.Paretologic
O43 - CFD: 2013/05/08 21:00:04 - [] D -- C:\Users\Utilisateur\AppData\Roaming\PDF Architect
O43 - CFD: 2011/09/07 21:46:12 - [] D -- C:\Users\Utilisateur\AppData\Roaming\PhotoFiltre
O43 - CFD: 2015/07/29 22:01:40 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Skype
O43 - CFD: 2014/06/27 20:22:53 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Solvusoft
O43 - CFD: 2013/06/04 20:58:39 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Sports Interactive
O43 - CFD: 2015/08/28 18:03:44 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Sun
O43 - CFD: 2015/08/23 14:15:31 - [] D -- C:\Users\Utilisateur\AppData\Roaming\U3
O43 - CFD: 2012/10/26 20:24:46 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Unity
O43 - CFD: 2013/07/04 21:06:53 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Visan
O43 - CFD: 2011/09/02 17:25:17 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Windows Live Writer
O43 - CFD: 2015/09/01 13:24:04 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ZHP
O43 - CFD: 2015/01/01 13:30:10 - [] D -- C:\Users\Utilisateur\AppData\Local\Adobe
O43 - CFD: 2013/04/20 08:26:17 - [] D -- C:\Users\Utilisateur\AppData\Local\Apple
O43 - CFD: 2013/09/28 21:25:16 - [] D -- C:\Users\Utilisateur\AppData\Local\Apple Computer
O43 - CFD: 2011/08/18 16:29:49 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Application Data
O43 - CFD: 2011/08/19 19:13:08 - [] D -- C:\Users\Utilisateur\AppData\Local\Apps
O43 - CFD: 2012/09/28 06:39:48 - [] D -- C:\Users\Utilisateur\AppData\Local\Avg2013
O43 - CFD: 2013/08/21 13:04:59 - [] D -- C:\Users\Utilisateur\AppData\Local\avgchrome
O43 - CFD: 2015/07/22 11:04:44 - [] D -- C:\Users\Utilisateur\AppData\Local\CEF
O43 - CFD: 2011/10/21 14:52:33 - [] D -- C:\Users\Utilisateur\AppData\Local\Chromium
O43 - CFD: 2011/08/19 19:13:15 - [0] D -- C:\Users\Utilisateur\AppData\Local\Deployment
O43 - CFD: 2011/10/03 08:08:52 - [0] D -- C:\Users\Utilisateur\AppData\Local\Diagnostics
O43 - CFD: 2012/01/22 15:15:02 - [] D -- C:\Users\Utilisateur\AppData\Local\Downloader
O43 - CFD: 2014/08/15 18:36:50 - [] D -- C:\Users\Utilisateur\AppData\Local\DownloadManager
O43 - CFD: 2015/08/30 16:30:54 - [] D -- C:\Users\Utilisateur\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/06/21 11:20:39 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/21 11:20:38 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/21 11:20:39 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieUserList
O43 - CFD: 2015/07/30 20:17:00 - [] D -- C:\Users\Utilisateur\AppData\Local\Google
O43 - CFD: 2015/06/01 18:19:35 - [] D -- C:\Users\Utilisateur\AppData\Local\GWX
O43 - CFD: 2011/08/18 16:29:49 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Historique
O43 - CFD: 2013/07/04 18:54:35 - [] D -- C:\Users\Utilisateur\AppData\Local\HP
O43 - CFD: 2014/08/21 22:03:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\LeoCAD
O43 - CFD: 2014/04/06 20:04:16 - [0] D -- C:\Users\Utilisateur\AppData\Local\Lollipop =>PUP.Optional.Lollipop
O43 - CFD: 2012/09/28 06:39:48 - [] D -- C:\Users\Utilisateur\AppData\Local\MFAData
O43 - CFD: 2014/08/21 22:06:16 - [] D -- C:\Users\Utilisateur\AppData\Local\Michael Heidemann
O43 - CFD: 2015/07/31 21:13:41 - [] D -- C:\Users\Utilisateur\AppData\Local\Microsoft
O43 - CFD: 2011/10/23 22:34:11 - [] D -- C:\Users\Utilisateur\AppData\Local\Microsoft Games
O43 - CFD: 2011/08/18 20:27:45 - [] D -- C:\Users\Utilisateur\AppData\Local\Mozilla
O43 - CFD: 2012/12/22 21:53:44 - [] D -- C:\Users\Utilisateur\AppData\Local\Nexway
O43 - CFD: 2014/04/13 20:39:01 - [] D -- C:\Users\Utilisateur\AppData\Local\NVIDIA
O43 - CFD: 2014/04/07 20:26:08 - [] D -- C:\Users\Utilisateur\AppData\Local\Orange
O43 - CFD: 2013/11/11 14:52:09 - [] D -- C:\Users\Utilisateur\AppData\Local\Program Files
O43 - CFD: 2014/01/12 20:53:52 - [] D -- C:\Users\Utilisateur\AppData\Local\Programs
O43 - CFD: 2015/07/29 19:35:16 - [] D -- C:\Users\Utilisateur\AppData\Local\Skype
O43 - CFD: 2012/09/30 10:54:52 - [] D -- C:\Users\Utilisateur\AppData\Local\Software =>PUP.Optional.Boxore
O43 - CFD: 2014/11/26 15:20:33 - [] D -- C:\Users\Utilisateur\AppData\Local\Sports Interactive
O43 - CFD: 2015/02/19 10:42:36 - [] D -- C:\Users\Utilisateur\AppData\Local\Steam
O43 - CFD: 2015/09/01 13:23:31 - [] D -- C:\Users\Utilisateur\AppData\Local\Temp
O43 - CFD: 2011/08/18 16:29:49 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/10/26 20:24:21 - [] D -- C:\Users\Utilisateur\AppData\Local\Unity
O43 - CFD: 2011/08/20 13:54:12 - [] D -- C:\Users\Utilisateur\AppData\Local\VirtualStore
O43 - CFD: 2012/07/07 22:12:15 - [] D -- C:\Users\Utilisateur\AppData\Local\Windows Live
O43 - CFD: 2011/08/31 18:44:41 - [] D -- C:\Users\Utilisateur\AppData\Local\Windows Live Writer
O43 - CFD: 2014/04/06 20:09:00 - [0] D -- C:\Users\Utilisateur\AppData\Local\WinRST =>PUP.Optional.WinRST
O43 - CFD: 2011/09/03 23:04:23 - [0] D -- C:\Users\Utilisateur\AppData\Local\WMTools Downloaded Files
O43 - CFD: 2012/05/22 20:26:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{0413F09D-8CB0-48D8-9C16-B5FF8600FA76}
O43 - CFD: 2013/04/10 21:02:17 - [0] D -- C:\Users\Utilisateur\AppData\Local\{0734CF2C-0A40-4382-9268-9DCF920DEE90}
O43 - CFD: 2011/08/31 07:15:04 - [0] D -- C:\Users\Utilisateur\AppData\Local\{084FB6BF-1C4F-497F-BD7E-5B71E634B703}
O43 - CFD: 2012/02/15 11:23:45 - [0] D -- C:\Users\Utilisateur\AppData\Local\{09C51365-06AF-4677-8B73-867661BC8D5B}
O43 - CFD: 2011/08/27 07:48:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{0F10227E-B3E1-404A-8C4D-8F83CF1BB415}
O43 - CFD: 2011/11/21 19:25:07 - [0] D -- C:\Users\Utilisateur\AppData\Local\{101A5562-2982-4892-8F93-24EABF86DF72}
O43 - CFD: 2012/01/13 13:30:21 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1087B246-4565-4E4B-A28E-A763A456F164}
O43 - CFD: 2011/08/31 18:45:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1088EFAD-A9A4-44B7-976E-2FD01C4748A0}
O43 - CFD: 2011/11/09 19:11:39 - [0] D -- C:\Users\Utilisateur\AppData\Local\{12BEED6E-4543-4E99-93FD-066E1D764BE4}
O43 - CFD: 2012/05/16 20:46:43 - [0] D -- C:\Users\Utilisateur\AppData\Local\{13FFA60F-2800-4411-B9CD-8AE08BB39056}
O43 - CFD: 2012/02/08 11:28:50 - [0] D -- C:\Users\Utilisateur\AppData\Local\{15157844-70F7-4E17-AA6C-E9A5FD6D5715}
O43 - CFD: 2011/12/18 19:04:47 - [0] D -- C:\Users\Utilisateur\AppData\Local\{171E540C-231F-4145-B2F5-78C9AA06BE0A}
O43 - CFD: 2012/01/31 14:18:37 - [0] D -- C:\Users\Utilisateur\AppData\Local\{19E41361-3062-428E-9964-1DCE9D66B598}
O43 - CFD: 2011/12/03 13:50:43 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1BE55845-C31D-4972-AC85-5B60EFB8A315}
O43 - CFD: 2011/12/29 13:04:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{1C5C7369-9399-4395-A716-96559B0327A9}
O43 - CFD: 2012/01/13 13:30:31 - [0] D -- C:\Users\Utilisateur\AppData\Local\{21233E20-FE98-446A-BD35-FAF71D2A7406}
O43 - CFD: 2011/12/23 12:57:32 - [0] D -- C:\Users\Utilisateur\AppData\Local\{216CC8C5-9F36-4C54-9213-2AB5A65342B3}
O43 - CFD: 2012/02/09 15:23:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{21D03492-5137-4EB7-A781-D7A2F6E7AEAF}
O43 - CFD: 2011/08/25 18:14:44 - [0] D -- C:\Users\Utilisateur\AppData\Local\{221C0F8B-EF7B-416E-9EE7-A29112D7E1A6}
O43 - CFD: 2011/09/01 07:19:40 - [0] D -- C:\Users\Utilisateur\AppData\Local\{23EEC1A0-D409-47BE-9B93-1A7C49D1AE20}
O43 - CFD: 2012/02/10 14:50:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{261EA4F3-0206-4BDB-86CE-68597F835EFC}
O43 - CFD: 2012/01/28 15:00:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{2771F1B2-7644-4266-A5BC-CE5D8B4A8996}
O43 - CFD: 2011/12/02 14:43:57 - [0] D -- C:\Users\Utilisateur\AppData\Local\{29D0FC4A-D649-4FDF-9EBB-7E55B12FBDA7}
O43 - CFD: 2011/08/28 10:03:11 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3183BDE9-849E-4945-8505-B373A5A98F6A}
O43 - CFD: 2011/11/08 16:28:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{35DCED48-E212-41A5-BE83-495AFBE6F019}
O43 - CFD: 2011/09/27 18:30:20 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3691C59C-9143-4D5A-9A85-D2E5DFA840D7}
O43 - CFD: 2011/11/25 14:06:13 - [0] D -- C:\Users\Utilisateur\AppData\Local\{37383E0A-6EE7-4A91-AFF3-142CB62BC1AF}
O43 - CFD: 2012/02/24 16:57:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3C83AA56-1054-4BBD-9E4E-E1CE41CDB180}
O43 - CFD: 2011/12/08 15:01:06 - [0] D -- C:\Users\Utilisateur\AppData\Local\{3D9B72AA-CA4F-403D-8638-453A33345CE7}
O43 - CFD: 2012/07/07 22:12:38 - [0] D -- C:\Users\Utilisateur\AppData\Local\{40A017EA-0D7B-4473-A5EA-F857B00443D7}
O43 - CFD: 2012/02/02 08:42:15 - [0] D -- C:\Users\Utilisateur\AppData\Local\{426782DE-FE8C-46B9-9A4E-FE4429385E48}
O43 - CFD: 2013/01/14 14:14:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{43E779C6-C474-455C-84B0-E61AF538580D}
O43 - CFD: 2013/02/01 10:04:35 - [0] D -- C:\Users\Utilisateur\AppData\Local\{46F1A744-C3E7-49BC-90E7-8FE5C34ED7DA}
O43 - CFD: 2012/01/05 12:02:24 - [0] D -- C:\Users\Utilisateur\AppData\Local\{4754D160-F3FE-4D45-8BF0-FAFE6C117F28}
O43 - CFD: 2011/11/25 14:06:24 - [0] D -- C:\Users\Utilisateur\AppData\Local\{4D99C15A-4FB0-4CCA-B42A-E2A0AC07C584}
O43 - CFD: 2012/02/21 13:55:42 - [0] D -- C:\Users\Utilisateur\AppData\Local\{4F04AAAB-D318-4978-9615-4F9DD80D0DBF}
O43 - CFD: 2012/11/27 19:29:21 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5018C3D4-763D-49D8-8C47-AD7632211981}
O43 - CFD: 2011/12/08 15:01:17 - [0] D -- C:\Users\Utilisateur\AppData\Local\{58E6BCE5-508F-474D-AF76-7E9405482C33}
O43 - CFD: 2012/10/03 14:35:38 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5A581240-A8F5-404E-ADF0-533C39507DAE}
O43 - CFD: 2013/02/10 16:37:20 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5A5E42C3-D7D8-4053-A2FF-F9AEF0B09A5C}
O43 - CFD: 2011/11/08 16:28:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5DA7940F-44BE-4121-BB07-F26794FB4D6F}
O43 - CFD: 2011/08/29 07:05:11 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5EF17AF2-E3D3-4E14-B40B-B18B8096B32C}
O43 - CFD: 2011/08/27 10:48:17 - [0] D -- C:\Users\Utilisateur\AppData\Local\{5FE20218-1BF5-4E56-A6E9-163B8B7F9B6D}
O43 - CFD: 2012/01/05 12:02:34 - [0] D -- C:\Users\Utilisateur\AppData\Local\{65E58F3A-FBF3-4311-A360-E8AC9F9390CE}
O43 - CFD: 2012/04/01 19:47:39 - [0] D -- C:\Users\Utilisateur\AppData\Local\{66C6EFBC-0D3C-4785-8AAA-D43727746105}
O43 - CFD: 2011/11/16 16:23:02 - [0] D -- C:\Users\Utilisateur\AppData\Local\{6905BBE1-72FD-4475-BA05-28014162184A}
O43 - CFD: 2012/02/01 07:38:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{6987E7AE-D3D5-4646-86B2-862C509EA09B}
O43 - CFD: 2012/02/01 07:39:08 - [0] D -- C:\Users\Utilisateur\AppData\Local\{70CA1447-456D-45D2-B0D4-938C00D86B82}
O43 - CFD: 2012/02/24 16:58:09 - [0] D -- C:\Users\Utilisateur\AppData\Local\{7236719F-06A5-4118-907F-CC856CEA6B46}
O43 - CFD: 2012/02/01 20:25:34 - [0] D -- C:\Users\Utilisateur\AppData\Local\{727BDFD6-286C-4EE6-86D7-DDC0A32C1C8F}
O43 - CFD: 2011/11/26 17:31:45 - [0] D -- C:\Users\Utilisateur\AppData\Local\{7416DADC-3E9F-4695-BB60-54F7CD51F263}
O43 - CFD: 2011/09/03 11:02:59 - [0] D -- C:\Users\Utilisateur\AppData\Local\{743C00D6-6092-40E6-822E-7CC7F4933BFF}
O43 - CFD: 2011/09/01 07:19:30 - [0] D -- C:\Users\Utilisateur\AppData\Local\{75821B87-C0B6-42E0-A8FF-684AA2B903D2}
O43 - CFD: 2011/12/23 12:57:22 - [0] D -- C:\Users\Utilisateur\AppData\Local\{77E564F7-C835-451F-983F-FEE71491C5BD}
O43 - CFD: 2013/01/06 15:13:33 - [0] D -- C:\Users\Utilisateur\AppData\Local\{826EDCC7-B539-4236-9520-E2177FCA7162}
O43 - CFD: 2012/01/09 14:57:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{8557BC22-366C-4AA4-A85D-3BAC3E78392F}
O43 - CFD: 2011/12/02 14:44:07 - [0] D -- C:\Users\Utilisateur\AppData\Local\{87E2ABC6-CAEC-4720-83B7-EBDB3376C3E8}
O43 - CFD: 2011/08/25 18:16:14 - [0] D -- C:\Users\Utilisateur\AppData\Local\{888C8C3A-1E1C-4631-B91D-68719B96FE12}
O43 - CFD: 2012/02/07 15:50:15 - [0] D -- C:\Users\Utilisateur\AppData\Local\{89A48CD6-7952-4B6B-AA1D-34C0F60BEEF0}
O43 - CFD: 2012/07/08 10:31:30 - [0] D -- C:\Users\Utilisateur\AppData\Local\{8B56D8C9-D6AD-4443-9E69-28813DAF65FD}
O43 - CFD: 2012/02/07 15:50:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{8EE66E1A-F894-4495-9D2D-1672BF5BA5E2}
O43 - CFD: 2012/02/10 14:51:06 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9272FEB1-D9A8-4ECA-8D05-A39BE8312DD2}
O43 - CFD: 2011/08/27 17:04:32 - [0] D -- C:\Users\Utilisateur\AppData\Local\{94CDFC4B-893E-4491-9F7B-7C2DFD4225FA}
O43 - CFD: 2011/11/21 19:25:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{956AA732-3D5F-4BEE-9D7D-7B6B8D6B8D94}
O43 - CFD: 2011/10/17 13:41:03 - [0] D -- C:\Users\Utilisateur\AppData\Local\{97BFFD48-1A09-451F-9C1A-8833C94102D5}
O43 - CFD: 2011/08/25 18:15:24 - [0] D -- C:\Users\Utilisateur\AppData\Local\{97F5BF0D-5466-46EF-BAB4-0E7954259EE1}
O43 - CFD: 2011/11/04 15:35:44 - [0] D -- C:\Users\Utilisateur\AppData\Local\{97FDA81C-2D83-4D7A-BBDE-D036526FF05E}
O43 - CFD: 2011/09/03 17:34:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{99940ADF-DD3A-43C2-8189-5BB7ACA41A3B}
O43 - CFD: 2011/08/31 18:45:14 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9AE21682-B7C9-4C30-ABFD-C5D7D5F245A8}
O43 - CFD: 2011/12/28 22:39:44 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9C4D1D20-FCBB-49E0-960D-1844DB28984B}
O43 - CFD: 2011/12/29 14:21:38 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9C6C89D0-4E45-4CBA-BE1B-81A4ACE52F1D}
O43 - CFD: 2011/08/27 10:48:27 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9CCBC095-819D-4C2B-84C1-3BFAC758A000}
O43 - CFD: 2012/05/27 12:20:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9D0BA3F6-EE31-4A61-B4FD-23CBBAEF7317}
O43 - CFD: 2012/07/07 22:09:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9E9A8916-99C5-4AFB-8733-86D95B73998D}
O43 - CFD: 2012/07/07 22:15:23 - [0] D -- C:\Users\Utilisateur\AppData\Local\{9EFD57B5-B8E9-42B3-A563-5D14DEA62BE3}
O43 - CFD: 2012/02/15 11:23:56 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A071EF43-3A9D-4E21-BE80-DE976B6B8899}
O43 - CFD: 2011/10/30 10:32:02 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A2C36150-CB4D-4F8C-B4B6-40E879A16358}
O43 - CFD: 2012/02/02 08:42:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A42175F1-1282-4F2B-BC4B-731E131EB0E2}
O43 - CFD: 2011/08/27 17:04:22 - [0] D -- C:\Users\Utilisateur\AppData\Local\{A77D075C-D85F-485A-9AE0-DA87EA42EC44}
O43 - CFD: 2012/02/09 15:23:01 - [0] D -- C:\Users\Utilisateur\AppData\Local\{AB1E44CC-C909-40A3-82A4-2FE3BCA7320E}
O43 - CFD: 2011/08/31 18:45:04 - [0] D -- C:\Users\Utilisateur\AppData\Local\{AFB38F89-0F5B-444B-BCB0-65DB3E9E1511}
O43 - CFD: 2012/02/01 20:25:23 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B058821C-9192-4404-A2D0-3DE02A8BF20D}
O43 - CFD: 2011/09/07 22:12:20 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B08D0EE9-9E37-4BB2-99EE-E34C49D1C9A7}
O43 - CFD: 2011/09/02 08:04:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B89AA875-F7E7-403A-8902-56E55808D954}
O43 - CFD: 2011/08/29 07:05:01 - [0] D -- C:\Users\Utilisateur\AppData\Local\{B8DE23D5-E7A2-4DE1-9F81-C250BED9D50B}
O43 - CFD: 2012/10/28 21:17:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BA635387-9371-40F7-990B-D0B81BF897DF}
O43 - CFD: 2012/12/09 18:55:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BAACBBCB-5C8A-4813-A283-04E73F017544}
O43 - CFD: 2012/01/06 17:37:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BBD301FF-00C1-479A-9A02-8D92073020B9}
O43 - CFD: 2011/12/29 14:21:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{BF05DCA1-BF14-4280-A813-2FC7D974B4E8}
O43 - CFD: 2011/08/27 18:06:36 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C038E736-B16E-4DAE-8D71-39CFA05BF2D6}
O43 - CFD: 2011/08/31 07:14:54 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C04E14FD-0FBC-4600-BEAC-1D92CA030804}
O43 - CFD: 2012/07/08 10:31:18 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C1D69572-6287-4BC9-9311-080E4900D60A}
O43 - CFD: 2011/12/03 13:50:33 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C2B2D0C5-CE15-4FD7-87F6-3A38465D3AF8}
O43 - CFD: 2011/11/16 16:23:12 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C2E69774-A244-4BBF-9EDB-D567DA4F7FE9}
O43 - CFD: 2011/10/29 15:56:04 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C386D71E-00D1-4DF9-A7F9-10A22BF9F5D5}
O43 - CFD: 2011/11/09 19:11:29 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C66EAFD6-FBB1-4782-A3F3-0713FE66F3F5}
O43 - CFD: 2011/11/04 15:35:54 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C6B13296-E193-4C7F-B111-0987494D9E4B}
O43 - CFD: 2012/02/21 13:55:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{C8C98900-8087-4EE6-AE38-5C9F3D878EEC}
O43 - CFD: 2011/11/05 12:19:47 - [0] D -- C:\Users\Utilisateur\AppData\Local\{CDE0B852-68F5-4B9C-A686-EAB4C9254E20}
O43 - CFD: 2011/09/04 08:53:40 - [0] D -- C:\Users\Utilisateur\AppData\Local\{CEF400D6-E9A7-4956-844F-442B689E326F}
O43 - CFD: 2011/11/26 17:31:55 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D0BE4D26-7F90-426E-B482-1E8D6D40A138}
O43 - CFD: 2011/09/07 22:12:21 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D1CEBE64-BC94-475A-9A63-B5BB1AEC80CA}
O43 - CFD: 2011/10/17 13:40:52 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D3B5B4F0-76C0-43AB-AD83-091283151D07}
O43 - CFD: 2012/01/11 18:43:57 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D44B0D38-66D0-4BCD-8B9C-18A2826115F1}
O43 - CFD: 2011/08/28 10:03:22 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D550C9B2-DECC-4130-AB56-ACC0323C7A5C}
O43 - CFD: 2011/10/29 15:55:53 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D847801F-0717-436D-B20D-66BBD32E2C13}
O43 - CFD: 2011/09/27 18:30:09 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D8C985E6-9680-435B-82D5-E271656F475D}
O43 - CFD: 2011/09/02 08:04:35 - [0] D -- C:\Users\Utilisateur\AppData\Local\{D90F2BF8-66A0-44F0-BD22-7F7BB620D6EB}
O43 - CFD: 2011/09/03 17:34:37 - [0] D -- C:\Users\Utilisateur\AppData\Local\{DD9FCBA7-5849-49FE-957B-6821C25EE4E9}
O43 - CFD: 2012/02/08 11:29:00 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E24EF551-E5EA-4E05-A069-1FF7AE75858A}
O43 - CFD: 2012/04/07 13:24:46 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E2BC7C28-DD1D-4A21-B573-AE5D56C8827A}
O43 - CFD: 2011/08/27 18:06:26 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E53C4D1C-9117-4EF3-A9DC-E2A879FDA991}
O43 - CFD: 2011/10/30 10:31:52 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E6E9D4BE-FC44-4BC5-B62F-E586DEE0FCE8}
O43 - CFD: 2012/01/11 18:43:47 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E717604B-2436-4228-921B-72693DDDCB27}
O43 - CFD: 2012/01/09 14:58:06 - [0] D -- C:\Users\Utilisateur\AppData\Local\{E73F3DD6-11B4-42D3-9827-E0AD2E15090B}
O43 - CFD: 2013/02/18 17:44:25 - [0] D -- C:\Users\Utilisateur\AppData\Local\{EC4D0816-5D3C-42A9-8EBD-A48109331565}
O43 - CFD: 2011/12/18 19:04:36 - [0] D -- C:\Users\Utilisateur\AppData\Local\{ED04362F-531C-4ED3-A0A5-9CA2DC5BA88C}
O43 - CFD: 2011/11/05 12:19:37 - [0] D -- C:\Users\Utilisateur\AppData\Local\{ED93C522-BB08-4537-AE54-388A85AC1F0A}
O43 - CFD: 2013/04/04 18:01:07 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F01A28E5-4805-4E80-BF36-92A7B52C2A81}
O43 - CFD: 2011/09/04 08:53:30 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F04A8A09-C109-4A6D-B938-698044F7F088}
O43 - CFD: 2011/08/26 18:08:58 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F15C14A6-F57D-42EA-BE80-95E47A5E15D4}
O43 - CFD: 2012/01/28 15:01:03 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F4CEE47C-FABC-48E2-A357-002F59BF59D0}
O43 - CFD: 2013/02/05 19:44:03 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F67F3EE7-61C9-452C-A175-E6CD4D26EEBE}
O43 - CFD: 2011/10/24 15:12:10 - [0] D -- C:\Users\Utilisateur\AppData\Local\{F6F18D8E-F41A-4AA1-8B42-71F267013CC0}
O43 - CFD: 2012/01/31 14:18:48 - [0] D -- C:\Users\Utilisateur\AppData\Local\{FC173AE6-E2A4-4055-AE48-1BA7009743EC}
O43 - CFD: 2013/05/11 08:45:35 - [0] D -- C:\Users\Utilisateur\AppData\Local\{FEBB34E0-122A-48BB-9A84-DA3418684F5E}
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/22 20:07:11 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/06/27 20:41:37 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
O43 - CFD: 2011/08/18 17:36:49 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/07/10 21:20:52 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2014/01/12 20:53:53 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/25 17:04:03 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Naviextras
O43 - CFD: 2013/07/18 21:56:29 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 2013/03/18 23:24:35 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ScreenMates
O43 - CFD: 2015/08/22 20:07:11 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/03/01 23:27:15 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2013/04/21 20:24:19 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
---\\ Liste des pilotes du système (57) - 4s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968] ©
O58 - SDL:2015/07/30 10:50:27 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224] ©
O58 - SDL:2015/08/22 18:17:13 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [1048344] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [447944] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672] ©
O58 - SDL:2015/07/30 10:50:28 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808] ©
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/21 05:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2014/04/07 20:06:52 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [119512] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2015/07/30 10:50:12 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [115152] ©
O58 - SDL:2014/08/19 23:14:52 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [197408] ©
O58 - SDL:2015/02/20 00:43:32 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [12894024] ©
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2010/03/22 12:29:26 A . (.NVIDIA Corporation - NVIDIA nForce(TM) SMU Microcontroller Drive.) -- C:\Windows\System32\drivers\nvsmu.sys [29800] ©
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2010/04/08 20:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor64.sys [244328] ©
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2011/06/10 14:34:52 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [539240] ©
O58 - SDL:2011/07/07 17:39:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2914408] ©
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (1) - 20s
O61 - LFC: 2015/09/01 12:57:02 A . (..) -- C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (4) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {7A47BD20-403F-4F5D-BEF1-EF8CA97D21B0} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} [DefaultScope] - (default-search.net) - http://www.default-search.net/ =>PUP.Optional.SearchNet
---\\ Enumère les services démarrés par Svchost (32) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2606080] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ©
---\\ Liste des exceptions du parefeu Windows (32) - 2s
O87 - FAEL: "{67F6043A-ACC4-4A0E-BE2C-7D32163FE8CD}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{783277DF-ADCC-4143-8F4C-57FD08AFEEE2}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{076B361C-74AB-42E6-946F-08A278797EB2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{FB6377EE-604B-4126-A262-4ABF18BE73D0}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{D815715D-0998-4697-8A71-471FEA32DF03}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{89B102B6-C1BE-4DFF-9242-501EC02165A3}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{6AD7F3EE-D48F-4C0E-88B4-C271F3299AA6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.)
O87 - FAEL: "{5F0D6146-262B-497E-8D75-4779685EAB19}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.)
O87 - FAEL: "{5D9EDCFE-BBF7-48E4-A63E-2B091A6F9799}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\PCM.exe (.not file.)
O87 - FAEL: "{642D42AF-27CA-4007-82BB-3531041E75AD}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\PCM.exe (.not file.)
O87 - FAEL: "{F04BFDEB-346D-4D74-85C2-F3929AD4DF04}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\Autorun\Exe\Autorun.exe (.not file.)
O87 - FAEL: "{5D1CCA80-1845-441E-823F-9AABAE4A65ED}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2011\Autorun\Exe\Autorun.exe (.not file.)
O87 - FAEL: "{81768929-BF07-4369-8272-DBCFB536C0A1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{381109A6-57CB-41CD-869D-448D305CC115}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.)
O87 - FAEL: "{1047B0C3-1DE7-4BEA-885C-1A21813EC948}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{E8D53DA8-7FFB-451C-9CBC-01BF28BB93F9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.)
O87 - FAEL: "{BE6E8D24-F05B-45FC-9C78-B882E17AC570}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{9A6FDBEB-2883-4897-BFCC-8ED2F478342B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.)
O87 - FAEL: "{7B7BF9C3-97A7-4229-B994-1E4F3627B54B}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe (.not file.)
O87 - FAEL: "{C4A0DB48-7C16-485F-A235-0D237BE02517}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe (.not file.)
O87 - FAEL: "{5546D388-55D6-4039-BBCB-5DE2D8BBD732}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.)
O87 - FAEL: "{507A5515-2C78-4B3E-9F43-1DB7792F4418}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\goforfilesdl.exe (.not file.)
O87 - FAEL: "{32134C16-B5B5-49B0-8721-8F9BA7C60037}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.)
O87 - FAEL: "{568B1D24-038C-4753-A1C7-349BA2F4A5FF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\GoforFiles\GoforFiles.exe (.not file.)
O87 - FAEL: "{BD28CD7F-74FC-4548-8F6F-5790A9B0D58A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe
O87 - FAEL: "{238F9E96-3882-4162-917C-D64B6018535B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Zoo Tycoon 2\zt.exe
O87 - FAEL: "TCP Query User{7FED1538-3577-4BAD-BFCF-FB3C0976AF56}C:\program files (x86)\emule\emule.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "UDP Query User{58879382-7660-4388-B171-D9B66AE37049}C:\program files (x86)\emule\emule.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "{38B57A19-B361-4450-8A5B-5EBA9C52443F}" [In-None-P6-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O87 - FAEL: "{823BB1CB-110F-45D4-A622-C9C07FB39ECB}" [In-None-P17-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O87 - FAEL: "{731354F1-9134-40FD-866C-D640EEBD7BC5}" [In-None-P6-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
O87 - FAEL: "{53E5654E-186B-4B86-BF24-6500E3B584C1}" [In-None-P17-FALSE] .(.Copyright (C) 2010 - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 19s
SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Demand [2015/08/22 19:45:14] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/07/30 10:50:22] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SR - Demand [2015/07/21 06:31:41] [ 4047768] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe ©
SS - Auto [2015/09/01 08:00:54] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/09/01 08:00:54] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2012/08/26 14:56:09] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SR - Auto [2013/12/17 13:03:22] [ 46904] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe ©
SS - Demand [2005/04/04 00:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SR - Auto [2015/02/04 04:21:44] [ 932040] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe ©
SS - Auto [2014/01/21 16:54:18] [ 699912] Orange update Core Service (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe ©
SR - Auto [2013/04/08 18:44:12] [ 1320496] PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\HelperService.exe ©
SR - Auto [2013/04/08 18:43:36] [ 799280] PDF Architect Service (PDF Architect Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe ©
SS - Demand [2014/02/08 05:18:42] [ 569024] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe ©
SR - Auto [2015/02/04 02:00:09] [ 409800] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
---\\ Recherche de clés de registre Tracing (15) - 3s
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASAPI32 =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASMANCS =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASAPI32 =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASMANCS =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASAPI32 =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASMANCS =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASAPI32 =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASMANCS =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32 =>PUP.Optional.Datamngr
---\\ Scan Additionnel (57) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\PirritUpdater =>PUP.Optional.Pirrit
HKLM\SYSTEM\CurrentControlSet\Services\WinRST =>PUP.Optional.WinRST
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Trusted Software Assistant_is1 =>Adware.InstallCore
HKLM\SOFTWARE\Wow6432Node\58eddd1b43fbe14 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Wow6432Node\APN =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\free_soft_to_day =>PUP.Optional.FreeSoftToday
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\ParetoLogic =>PUP.Optional.Paretologic
HKLM\SOFTWARE\Wow6432Node\PIP =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Pirrit =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\Pirrit Solutions =>PUP.Optional.Pirrit
HKLM\SOFTWARE\Wow6432Node\RST =>PUP.Optional.WinRST
HKLM\SOFTWARE\Wow6432Node\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\Wow6432Node\Wpm =>PUP.Optional.WpManager
HKCU\SOFTWARE\APN =>Toolbar.Ask
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\FileTypeAssistant =>Adware.InstallCore
HKCU\SOFTWARE\iLivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\ParetoLogic =>PUP.Optional.Paretologic
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\SearchCore for Browsers =>PUP.Optional.SearchCore
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
C:\Program Files (x86)\File Type Assistant =>Adware.InstallCore
C:\ProgramData\Software =>PUP.Optional.Boxore
C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
C:\ProgramData\WPM =>PUP.Optional.WpManager
C:\Users\Utilisateur\AppData\Roaming\DriverCure =>PUP.Optional.Paretologic
C:\Users\Utilisateur\AppData\Roaming\ParetoLogic =>PUP.Optional.Paretologic
C:\Users\Utilisateur\AppData\Local\Lollipop =>PUP.Optional.Lollipop
C:\Users\Utilisateur\AppData\Local\Software =>PUP.Optional.Boxore
C:\Users\Utilisateur\AppData\Local\WinRST =>PUP.Optional.WinRST
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASAPI32 =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASMANCS =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASAPI32 =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\iLividSetupV1_RASMANCS =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASAPI32 =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\OfferBox_RASMANCS =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASAPI32 =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASMANCS =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32 =>PUP.Optional.Datamngr
---\\ Récapitulatif des éléments trouvées sur votre station (34) - 0s
http://www.nicolascoolman.fr/hijacker-trovigo/ =>PUP.Optional.Trovigo
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/pup-pirritsuggestor/ =>PUP.Optional.Pirrit
http://www.nicolascoolman.fr/blog =>PUP.Optional.WinRST
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/blog =>PUP.Optional.Heuristic
http://www.nicolascoolman.fr/pup-babylon/ =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/adware-freesofttoday/ =>PUP.Optional.FreeSoftToday
http://www.nicolascoolman.fr/blog =>PUP.Optional.Paretologic
http://www.nicolascoolman.fr/blog =>PUP.Optional.SettingsManager
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/blog =>PUP.Optional.Uniblue
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/adware-bandoo/ =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/rogue-reimagerepair/ =>PUP.Optional.ReImageRepair
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchCore
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/blog =>PUP.Optional.DynConIE
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/pup-tarma/ =>PUP.Optional.Tarma
http://www.nicolascoolman.fr/adware-lollipop/ =>PUP.Optional.Lollipop
http://www.nicolascoolman.fr/hijacker-searchnet/ =>PUP.Optional.SearchNet
http://www.nicolascoolman.fr/pup-mypcbackup/ =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/blog =>Toolbar.AskBar
http://www.nicolascoolman.fr/pup-offerbox/ =>PUP.Optional.OfferBox
http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr
~ End of the scan, 17621 items in 112 seconds (1069)(0)()