Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.10.22.154 Par Nicolas Coolman (2015/10/22)
~ Démarré par vanessa (Administrator) (2015/10/22 15:08:07)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\vanessa\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\vanessa\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows VISTA, 64-bit Service Pack 2 (Build 6002)
---\\ Navigateurs Internet (1) - 0s
MSIE: Internet Explorer v8.0.6001.19690
---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : WQD8Q
Windows License : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Logiciels de protection (1) - 1s
Windows Defender VISTA (Activate)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4191.504 MB (50% free)
~ System Restore: Activé (Enable)
~ System drive C: has 389 GB free of 596 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-DE-VANESSA
~ User Name: vanessa
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 389 GB free of 596 GB (System)
~ Drive D: has 1 GB free of 13 GB
---\\ Etat du Centre de Sécurité Windows (14) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 0s
[MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [3079168] ©
[MD5.10446646D128E580C46615338E74E672] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [46592] ©
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [123904] ©
[MD5.552D40E4399F7B5244C4457FDA2C04E4] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1147904] ©
[MD5.6D0773A3A65D28B663F334C90441D01A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [405504] ©
[MD5.E4C283A98F118CEC9E087EAC4E9EFB6A] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\System32\dnsapi.dll [221696] ©
[MD5.85E861D0B88DB2B54ACB0839654C09F7] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\Syswow64\dnsapi.dll [168448] ©
[MD5.7C42D832F43C74A707E11AA6BB53F6D2] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] ©
[MD5.E58A17E945593544C707423F9772EEA0] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [404992] ©
[MD5.E68D9B3A3905619732F7FE039466A623] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [20952] ©
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [90624] ©
[MD5.C025AA69BE3D0D25C7A2E746EF6F94FC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [79872] ©
[MD5.8B722BA35205C71E7951CDC4CDBADE19] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [97792] ©
[MD5.F942C5820205F2FB453243EDFEC82A3D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [948736] ©
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [64000] ©
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [115712] ©
[MD5.B31DB7D6E624479EA20FEE17E712A44C] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [136192] ©
[MD5.FC2C792EBDDC8E28DF939D6A92C83D61] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [248320] ©
[MD5.2ACCAA3C3C55370A32F17B3595E1A217] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1513320] ©
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [96768] ©
[MD5.AC7BC4D42A7E558718DFDEC599BBFC2C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [124928] ©
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [314368] ©
[MD5.290B6F6A0EC4FCDFC90F5CB6D7020473] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [88064] ©
[MD5.458919C8C42E398DC4802178D5FFEE27] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [94720] ©
[MD5.582F710097B46140F5A89A19A6573D4B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [267648] ©
---\\ Processus lancés (47) - 2s
[MD5.BB7A2052EBB2E31080C0DA9FA3F4EA4A] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\Windows\system32\Ati2evxx.exe [932864] [PID.200] ©
[MD5.BB7A2052EBB2E31080C0DA9FA3F4EA4A] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\Windows\system32\Ati2evxx.exe [932864] [PID.1256] ©
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.1928] ©
[MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008] [PID.1956] ©
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.1224] ©
[MD5.BC3C53000ADCD440F1B23E46DAC302EF] - (.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) -- C:\Windows\System32\dgdersvc.exe [119632] [PID.1428] ©
[MD5.83D8BE94E1CBCBE2EA8372DB1A95A159] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.2152] ©
[MD5.B3E5887095F1DE8737DA3441D29F60E4] - (.RealNetworks, Inc. - Online Games Manager.) -- C:\Program Files (x86)\Online Games Manager\ogmservice.exe [581568] [PID.2408] ©
[MD5.B2D01290C0E0465ACA54C2088E947823] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056] [PID.2540]
[MD5.4BC24AD1AF866EB21C09D837A8A017E7] - (.Copyright 2004 - CLCapSvc Module.) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320] [PID.2676]
[MD5.56196A4FD34A9985AB93531DCDC07DCB] - (.Copyright 2004 - CLSched Module.) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116104] [PID.2696]
[MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.2772] ©
[MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.2956] ©
[MD5.A168271E4AC1688C162534D412F283AE] - (.Hewlett-Packard - HP MediaSmart SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [914224] [PID.1768] ©
[MD5.596C3DD487001E237CCE431EAE6F3EA0] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1689144] [PID.1492] ©
[MD5.CCF2234A35077CA217A61C9CACC48198] - (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.476] ©
[MD5.04F13BB5995C286616D8F36392E90A73] - (.Megaupload Limited - Mega Manager.) -- C:\Program Files (x86)\Megaupload\Mega Manager\MegaManager.exe [2113024] [PID.2952]
[MD5.1D36E7F1E01C14CC534EDBDDE6ABE48A] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3365176] [PID.2472] ©
[MD5.CF03C8F6F6B0D71F6E5BCE167FCF7CA6] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [214360] [PID.2664] ©
[MD5.554A50B5310E702029D3A675459108FF] - (.Hewlett-Packard - hpsysdrv.) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768] [PID.2492] ©
[MD5.AEEE57BB436ED3981D599B86A9AEA127] - (.Panasonic Corporation - AutoStartService.) -- C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe [152048] [PID.3048] ©
[MD5.68BB0D0F31DAB67979C24218777F97EA] - (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1152296] [PID.220] ©
[MD5.309C7161F58C75EE88B07F55CA858280] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736] [PID.2548] ©
[MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [49152] [PID.1004] ©
[MD5.B6F6228AB545E2819A60C0D63A84E52E] - (.CyberLink Corp. - HP DVDSmart Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200] [PID.1544] ©
[MD5.4334F0F2DDE36F1AF1B3200F88C1E155] - (.CyberLink Corp. - HP MediaSmart TV Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe [206120] [PID.1920] ©
[MD5.916A2C4EB028604783FD5EA169236C1D] - (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [421888] [PID.2228] ©
[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.1084] ©
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.804] ©
[MD5.225518F190EDBC37CA32197A3E94B498] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512] [PID.1296] ©
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.732] ©
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.3268] ©
[MD5.4EFFC8FF6D349E971E94B1C670C0C66A] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [641352] [PID.3320] ©
[MD5.80B8AE8E18FF57BE13FF4A5959DB0EC1] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe [184320] [PID.4016] ©
[MD5.E343E343581F6DAEAD48D412F5CE911A] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [569344] [PID.4064] ©
[MD5.33C014C1709F7222CEFF61B780EDC967] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [49152] [PID.3168] ©
[MD5.BA7D56C1F3DD385EE58ADDA14C6FFB54] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [49152] [PID.3648] ©
[MD5.AA9EF0B395097F24D289F64445B2FD2E] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [94208] [PID.4296] ©
[MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.3696] ©
[MD5.DDB1C559E36063532ED1CBC101C17DA3] - (.Hewlett-Packard Company - KBD EXE.) -- C:\Program Files (x86)\Hewlett-Packard\KBD\kbd.exe [94208] [PID.4292] ©
[MD5.7D04F8CF659D852BC8D7275BD92DC000] - (.Sun Microsystems, Inc. - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [507624] [PID.3252] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.4876] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.4276] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.2232] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.2704] ©
[MD5.231AE3BE35DFA790FE484CCA354BCD15] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\vanessa\Downloads\ZHPDiag3 (1).exe [1958912] [PID.4244] ©
[MD5.8A48305D3E81C513DAC27690B5AA7FC0] - (.RealNetworks, Inc. - RealPlayer.) -- c:\program files (x86)\Real\realplayer\realplay.exe [501328] [PID.2004] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (2) - 0s
G2 - GCE: Preference [User Data\Default] [idhngdhcfkoamngbedgpaokgjbnpdiji] RealDownloader
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (4) - 1s
P2 - EXT: (. - translatordontfollowmenet.) -- C:\Users\vanessa\AppData\Roaming\Mozilla\Firefox\Profiles\c35r2w0g.default\extensions\translator@dontfollowme.net
P2 - EXT: (. - 7CEA821D3DAB4238B424BF7324531750.) -- C:\Users\vanessa\AppData\Roaming\Mozilla\Firefox\Profiles\c35r2w0g.default\extensions\{7CEA821D-3DAB-4238-B424-BF7324531750}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll ©
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ©
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (22) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Etude du fichier hosts (2) - 0s
0
~ Le fichier hôte est sain (The hosts file is clean) (2)
---\\ Browser Helper Object de navigateur (BHO) (2) - 1s
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll ©
---\\ Internet Explorer, Barre d'outil (2) - 0s
O3 - Toolbar: 0x9F389CDE1633A741809BAA305ED9D922 - [HKCU]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (...) -- (.not file.)
O3 - Toolbar: AOL Toolbar - [HKLM]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (...) -- (.not file.)
---\\ Applications lancées au démarrage du système (22) - 0s
O4 - HKLM\..\Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - HKLM\..\Run: [SmartMenu] C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (.not file.)
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKCU\..\Run: [HPAdvisor] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe ©
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe ©
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
O4 - HKCU\..\Run: [Mega Manager] . (.Megaupload Limited - Mega Manager.) -- C:\Program Files (x86)\Megaupload\Mega Manager\MegaManager.exe
O4 - HKCU\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe ©
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [SmartMenu] C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [HPAdvisor] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [Mega Manager] . (.Megaupload Limited - Mega Manager.) -- C:\Program Files (x86)\Megaupload\Mega Manager\MegaManager.exe
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan
---\\ Protocole additionnel (27) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll ©
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©
---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe ©
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe ©
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe ©
O23 - Service: Device Error Recovery Service (dgdersvc) . (.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) - C:\Windows\System32\dgdersvc.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe ©
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: Online Games Manager (ogmservice) . (.RealNetworks, Inc. - Online Games Manager.) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe ©
O23 - Service: RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: TV Background Capture Service (TVBCS) (TVCapSvc) . (.Copyright 2004 - CLCapSvc Module.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
O23 - Service: TV Task Scheduler (TVTS) (TVSched) . (.Copyright 2004 - CLSched Module.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
O23 - Service: Power Control [2009/06/20 20:54:37] ({55662437-DA8C-40c0-AADA-2C816A897A49}) . (.CyberLink Corp. - .) - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl ©
---\\ Tâches planifiées en automatique (48) - 5s
[MD5.73851EB949B54F197380A5E757BE3B98] [APT] [1hhsKIYZTrnMar2] (...) -- C:\Users\vanessa\AppData\Roaming\wS8C6RP\3ubhsdh.exe [18432]
[MD5.8C194A201698B4B4F77D974549819D1F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core] (.Google Inc..) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA] (.Google Inc..) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.0C8A70BC3BAAF7BF69DCA495C1E1AB79] [APT] [HP Health Check] (.Hewlett-Packard.) -- c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75016] ©
[MD5.00000000000000000000000000000000] [APT] [itycCHUOs5WUsc] (...) -- C:\Users\vanessa\AppData\Roaming\itycCHUOs5WUsc.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [PCDRScheduledMaintenance] (...) -- C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe (.not file.) [0]
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealPlayerRealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealPlayerRealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.00000000000000000000000000000000] [APT] [VkohbGTDTCk8ud16giVyobOPq9l] (...) -- C:\Users\vanessa\AppData\Roaming\VkohbGTDTCk8ud16giVyobOPq9l.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [WIN-fIGbfFfEGCfFGEGbfCfE] (...) -- C:\Users\vanessa\AppData\Roaming\~gpepdhp.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-GGfIfEGCfEGbGffIfCfEGC] (...) -- C:\Users\vanessa\AppData\Roaming\~evqxnmm.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-statsAdmin] (...) -- C:\Users\vanessa\AppData\Local\Microsoft\WinU\~gdfiole.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-statsSystem] (...) -- C:\Users\vanessa\AppData\Local\Microsoft\WinU\~rvnxwgw.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [ZCKCfKqSbesQo3jz0nPf4] (...) -- C:\Users\vanessa\AppData\Roaming\ZCKCfKqSbesQo3jz0nPf4.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core.job [1034] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA.job [1086] ©
O39 - APT: itycCHUOs5WUsc - (...) -- C:\Windows\Tasks\itycCHUOs5WUsc.job [1008] =>PUP.Optional.CrossRider
O39 - APT: PCDRScheduledMaintenance - (...) -- C:\Windows\Tasks\PCDRScheduledMaintenance.job [456]
O39 - APT: VkohbGTDTCk8ud16giVyobOPq9l - (...) -- C:\Windows\Tasks\VkohbGTDTCk8ud16giVyobOPq9l.job [1034] =>PUP.Optional.CrossRider
O39 - APT: ZCKCfKqSbesQo3jz0nPf4 - (...) -- C:\Windows\Tasks\ZCKCfKqSbesQo3jz0nPf4.job [1022] =>PUP.Optional.CrossRider
O39 - APT: 1hhsKIYZTrnMar2 - (...) -- C:\Windows\System32\Tasks\1hhsKIYZTrnMar2 [3242]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3854] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3812] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core [3578] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA [3974] ©
O39 - APT: HP Health Check - (.Hewlett-Packard.) -- C:\Windows\System32\Tasks\HP Health Check [3578] ©
O39 - APT: itycCHUOs5WUsc - (...) -- C:\Windows\System32\Tasks\itycCHUOs5WUsc [4048] =>PUP.Optional.CrossRider
O39 - APT: PCDRScheduledMaintenance - (...) -- C:\Windows\System32\Tasks\PCDRScheduledMaintenance [3828]
O39 - APT: RealPlayerRealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3224] ©
O39 - APT: RealPlayerRealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3354] ©
O39 - APT: RealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3224] ©
O39 - APT: RealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3354] ©
O39 - APT: VkohbGTDTCk8ud16giVyobOPq9l - (...) -- C:\Windows\System32\Tasks\VkohbGTDTCk8ud16giVyobOPq9l [4074] =>PUP.Optional.CrossRider
O39 - APT: WIN-fIGbfFfEGCfFGEGbfCfE - (...) -- C:\Windows\System32\Tasks\WIN-fIGbfFfEGCfFGEGbfCfE [3188]
O39 - APT: WIN-GGfIfEGCfEGbGffIfCfEGC - (...) -- C:\Windows\System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC [3188]
O39 - APT: WIN-statsAdmin - (...) -- C:\Windows\System32\Tasks\WIN-statsAdmin [3310]
O39 - APT: WIN-statsSystem - (...) -- C:\Windows\System32\Tasks\WIN-statsSystem [3240]
O39 - APT: ZCKCfKqSbesQo3jz0nPf4 - (...) -- C:\Windows\System32\Tasks\ZCKCfKqSbesQo3jz0nPf4 [4062] =>PUP.Optional.CrossRider
---\\ Logiciels installés (99) - 13s
O42 - Logiciel: Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0) - (.LeapFrog.) [HKLM][64Bits] -- 781745E87AFF80C0C1388CFF79D19ECAB2E9BB47 ©
O42 - Logiciel: HP Imaging Device Functions 8.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions ©
O42 - Logiciel: HP Solution Center 8.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools ©
O42 - Logiciel: HP Customer Participation Program 8.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities ©
O42 - Logiciel: HP OCR Software 8.0 - (.HP.) [HKLM][64Bits] -- HPOCR ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {0225AD21-F3E2-4916-BFF3-65D3F9052582} ©
O42 - Logiciel: HP Photosmart.All-In-One Driver Software 8.0 .A - (.HP.) [HKLM][64Bits] -- {282E5AB2-8E47-4571-B6FA-6B512555B557} ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2F72F540-1F60-4266-9506-952B21D6640D} ©
O42 - Logiciel: Driver pour mobile - (...) [HKLM][64Bits] -- {6CFADEA7-D909-405F-8B40-21DBFBBE0389}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} ©
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {78F697ED-EC97-4D8D-881D-838984EA9855} ©
O42 - Logiciel: Internet Explorer (Enable DEP) - (...) [HKLM][64Bits] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} ©
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1568AA6-5982-4AFB-A871-C68E4328BC3B} ©
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin ©
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player ©
O42 - Logiciel: AXIS Media Control Embedded - (...) [HKLM][64Bits] -- AXIS Media Control Embedded
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} ©
O42 - Logiciel: HP MediaSmart TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15} ©
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
O42 - Logiciel: Kies - (.Nom de votre société.) [HKLM][64Bits] -- InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
O42 - Logiciel: Kafeo V6.3.8 - (.Apiris.) [HKLM][64Bits] -- Kafeo_is1 ©
O42 - Logiciel: Solution de clavier multimédia amélioré - (.Hewlett-Packard.) [HKLM][64Bits] -- KBD ©
O42 - Logiciel: Dongle Sagem 760N - (...) [HKLM][64Bits] -- LIVEBOX_SAGEM_760N
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Netscape Browser (remove only) - (...) [HKLM][64Bits] -- Netscape Browser
O42 - Logiciel: Netscape Navigator (9.0.0.6) - (.Netscape.) [HKLM][64Bits] -- Netscape Navigator (9.0.0.6)
O42 - Logiciel: Online Games Manager v1.30 - (.Real Networks, Inc..) [HKLM][64Bits] -- Online Games Manager ©
O42 - Logiciel: Python 2.6 pywin32-212 - (.Python Software Foundation.) [HKLM][64Bits] -- pywin32-py2.6 ©
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 16.0 ©
O42 - Logiciel: Sandlot Games Client Services 1.2.2 - (.Sandlot Games.) [HKLM][64Bits] -- Sandlot Games Client Services 1.2.2_is1
O42 - Logiciel: My HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall © =>.WildTangent
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {0295F89F-F698-4101-9A7D-49F407EC2D82} ©
O42 - Logiciel: HP Picasso Media Center Add-In - (.Hewlett-Packard Development Company, L.P..) [HKLM][64Bits] -- {03BF5CB1-B72E-4CA6-A278-F65680F05420} ©
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {0E64B098-8018-4256-BA23-C316A43AD9B0} ©
O42 - Logiciel: LetsTunes - (.Secure Digital Services.) [HKLM][64Bits] -- {0F4CA3FF-B735-4933-9295-5B5052F63BD2} =>PUP.Optional.SPointer
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E} ©
O42 - Logiciel: Java(TM) 6 Update 29 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216014FF} ©
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} ©
O42 - Logiciel: HP Product Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {36FDBE6E-6684-462B-AE98-9A39A1B200CC} ©
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710} ©
O42 - Logiciel: Mega Manager - (.Megaupload Limited.) [HKLM][64Bits] -- {3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {3DC873BB-FFE3-46BF-9701-26B9AE371F9F} ©
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} ©
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B} ©
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {45C56AA7-ED1B-4800-A97F-EDDF3F3520B1} ©
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {47F36D92-E58E-456D-B73C-3382737E4C42} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} ©
O42 - Logiciel: ArcSoft Print Creations - Photo Book - (.ArcSoft.) [HKLM][64Bits] -- {56589DFE-0C29-4DFE-8E42-887B771ECD23} ©
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM][64Bits] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367} ©
O42 - Logiciel: HP MediaSmart TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {67626E09-5366-4480-8F1E-93FADF50CA15} ©
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6} ©
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {82EF29B1-9B60-4142-A155-0599216DD053} ©
O42 - Logiciel: ArcSoft Print Creations - (.ArcSoft.) [HKLM][64Bits] -- {85F1B81D-72C5-4357-81F9-B0A1D71DF59B} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} ©
O42 - Logiciel: HP Total Care Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {95A747E0-DF19-46CB-A622-20A0107201BD} ©
O42 - Logiciel: IZArc 3.81 - (.Ivan Zahariev.) [HKLM][64Bits] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1 ©
O42 - Logiciel: Python 2.6.1 - (.Python Software Foundation.) [HKLM][64Bits] -- {9CC89170-000B-457D-91F1-53691F85B223} ©
O42 - Logiciel: HP Recovery Manager RSS - (.Hewlet Packard Company.) [HKLM][64Bits] -- {A0640EC2-B97E-4FC1-AD14-227C9E386BB4} ©
O42 - Logiciel: Adobe Reader 9.5.5 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A95000000001} ©
O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-5464-3428-900000000004} ©
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
O42 - Logiciel: PHOTOfunSTUDIO 6.3 HD Lite Edition - (.Panasonic Corporation.) [HKLM][64Bits] -- {BBCC9BEA-BC70-4D48-BF73-97E5250FC790} ©
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: Kies - (.Nom de votre société.) [HKLM][64Bits] -- {D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}
O42 - Logiciel: muvee Reveal - (.muvee Technologies Pte Ltd.) [HKLM][64Bits] -- {D722CF4B-4B06-BF11-FDEA-BD1B319FEA57}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {E1591139-8B44-411B-A81B-D35F83A0565A} ©
O42 - Logiciel: ArcSoft Print Creations - Album Page - (.ArcSoft.) [HKLM][64Bits] -- {E6B4117F-AC59-4B13-9274-EB136E8897EE} ©
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {E79945AB-C672-48F3-8BC3-E57FE021DFF9} ©
O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM][64Bits] -- {EB21A812-671B-4D08-B974-2A347F0D8F70} ©
O42 - Logiciel: HPSSupply - (.Nom de votre société.) [HKLM][64Bits] -- {EB75DE50-5754-4F6F-875D-126EDF8E4CB3}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome ©
O42 - Logiciel: Notification de cadeaux MSN - (.Microsoft.) [HKCU][64Bits] -- Notification de cadeaux MSN ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
---\\ HKCU & HKLM Software Keys (150) - 13s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdsFix
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\ALWIL Software
HKLM\SOFTWARE\Wow6432Node\America Online
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArcSoft
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Boonty
HKLM\SOFTWARE\Wow6432Node\BVRP Software
HKLM\SOFTWARE\Wow6432Node\CCleaner
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CLSID
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Debug
HKLM\SOFTWARE\Wow6432Node\EasyBits
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard Company
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LetsTunes
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LightScribe
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Megaupload
HKLM\SOFTWARE\Wow6432Node\Megaupload Limited
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MusicNet
HKLM\SOFTWARE\Wow6432Node\Netscape
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Panasonic
HKLM\SOFTWARE\Wow6432Node\PDF Suite 2015
HKLM\SOFTWARE\Wow6432Node\PluginHp
HKLM\SOFTWARE\Wow6432Node\Preclick
HKLM\SOFTWARE\Wow6432Node\RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKLM\SOFTWARE\Wow6432Node\Samsung
HKLM\SOFTWARE\Wow6432Node\SecureDigitalServices
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\Sysinternals
HKLM\SOFTWARE\Wow6432Node\Techcity
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\Wilson WindowWare
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\WinU
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\ZalmanInstaller_otshot
HKCU\SOFTWARE\77-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AdsFix
HKCU\SOFTWARE\ALWIL Software
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArcSoft
HKCU\SOFTWARE\Astar Games
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\ATI Technologies Inc.
HKCU\SOFTWARE\BullGuard Ltd.
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\EasyBits
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GameHouse
HKCU\SOFTWARE\GAMEON
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HookNetwork
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intenium
HKCU\SOFTWARE\itycCHUOs5WUsc
HKCU\SOFTWARE\IZSoftware
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\JollyBear
HKCU\SOFTWARE\keyhole.com
HKCU\SOFTWARE\LetsTunes
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LightScribe
HKCU\SOFTWARE\Little Worlds Online
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogiGear
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Macrovision
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\MainConcept (Muvee Consumer)
HKCU\SOFTWARE\MainConcept (Muvee)
HKCU\SOFTWARE\MainConcept (Muvee2)
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\Megaupload
HKCU\SOFTWARE\MimarSinan
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Northcode Inc
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Panasonic
HKCU\SOFTWARE\PDF Suite 2015
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Test3D
HKCU\SOFTWARE\TomTom
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VkohbGTDTCk8ud16giVyobOPq9l
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\wvqQMLwVuZ
HKCU\SOFTWARE\ZCKCfKqSbesQo3jz0nPf4
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zylom
HKCU\SOFTWARE\ƒAƒvƒŠƒP[ƒVƒ‡ƒ“ ƒEƒBƒU[ƒh‚Ŷ¬‚³‚ꂽƒ[ƒJƒ‹ ƒAƒvƒŠƒP[ƒVƒ‡ƒ“
HKCU\SOFTWARE\AppDataLow\Aurigma
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\Google
HKCU\SOFTWARE\AppDataLow\Software\Macromedia
HKCU\SOFTWARE\AppDataLow\Software\MarkAny
HKCU\SOFTWARE\AppDataLow\Software\SpeedCheck =>PUP.Optional.SpeedCheck
HKCU\SOFTWARE\AppDataLow\Software\Unity
HKCU\SOFTWARE\AppDataLow\Software\Yahoo
---\\ Contenu des dossiers Programmes (506) - 24s
O43 - CFD: 2015/10/20 20:44:40 - [0] D -- C:\Program Files (x86)\6fcb1cab-aba1-444a-9c4f-fdaa667ac665 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:40 - [0] D -- C:\Program Files (x86)\8604e57e-5945-4d73-8b8c-862d49c7952e =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:41 - [0] D -- C:\Program Files (x86)\8ca9f610-b9f7-4afe-a3b3-1325497c25a8 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:41 - [0] D -- C:\Program Files (x86)\918916a2-e42b-4617-a406-afefa2947eda =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:41 - [0] D -- C:\Program Files (x86)\9aa9f672-7f6c-488d-bbb2-8160ba3d1f0b =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:42 - [] D -- C:\Program Files (x86)\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD: 2015/10/20 20:44:42 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2014/10/15 16:03:57 - [0] D -- C:\Program Files (x86)\AOL
O43 - CFD: 2012/06/17 13:47:57 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2015/10/20 10:52:36 - [] D -- C:\Program Files (x86)\ArcSoft
O43 - CFD: 2013/06/22 13:33:13 - [] D -- C:\Program Files (x86)\Ask(0).com
O43 - CFD: 2009/03/06 18:11:56 - [] D -- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 2009/08/14 16:03:21 - [] D -- C:\Program Files (x86)\Axis Communications
O43 - CFD: 2013/02/24 11:23:15 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2012/10/03 09:48:10 - [] D -- C:\Program Files (x86)\BoontyGames
O43 - CFD: 2009/08/14 15:41:51 - [] D -- C:\Program Files (x86)\CCleaner
O43 - CFD: 2015/10/19 19:09:47 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2009/03/06 18:26:31 - [] D -- C:\Program Files (x86)\Cyberlink
O43 - CFD: 2015/10/20 20:44:58 - [0] D -- C:\Program Files (x86)\e89fa6e9-da9c-4d6d-9eeb-37d5d65ba570 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:58 - [0] D -- C:\Program Files (x86)\fe792051-43c4-45c2-ae29-496784619430 =>PUP.Optional.CrossRider
O43 - CFD: 2013/12/11 10:46:35 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/02/09 11:38:14 - [0] D -- C:\Program Files (x86)\GUMCA41.tmp
O43 - CFD: 2010/11/09 14:33:03 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2009/03/06 18:34:20 - [] D -- C:\Program Files (x86)\Hewlett-Packard Company
O43 - CFD: 2009/07/08 08:57:25 - [] D -- C:\Program Files (x86)\HP
O43 - CFD: 2009/03/06 18:40:11 - [] D -- C:\Program Files (x86)\HP Games
O43 - CFD: 2015/10/20 10:52:37 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/10/18 19:08:54 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2013/02/24 11:28:34 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2011/03/11 09:49:37 - [] D -- C:\Program Files (x86)\IZArc
O43 - CFD: 2013/06/22 13:29:20 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2013/12/03 18:45:38 - [] D -- C:\Program Files (x86)\LeapFrog
O43 - CFD: 2010/12/17 16:11:30 - [] D -- C:\Program Files (x86)\LetsTunes
O43 - CFD: 2015/10/22 14:18:37 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2012/12/12 16:48:48 - [0] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 2012/12/02 14:31:44 - [] D -- C:\Program Files (x86)\MarkAny
O43 - CFD: 2011/02/03 10:03:31 - [] D -- C:\Program Files (x86)\Megaupload
O43 - CFD: 2011/03/26 12:40:20 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2011/07/15 10:23:05 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/14 11:45:31 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2013/06/22 09:54:30 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2013/06/22 09:54:31 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 2012/10/11 07:44:15 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2010/06/25 14:52:49 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/10/20 07:48:22 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/10/20 07:48:22 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2006/11/02 17:07:27 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/09/25 12:27:32 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2009/06/12 12:41:40 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2009/03/06 18:30:41 - [] D -- C:\Program Files (x86)\muvee Technologies
O43 - CFD: 2010/10/16 13:47:16 - [] D -- C:\Program Files (x86)\Netscape
O43 - CFD: 2009/12/09 15:22:02 - [] D -- C:\Program Files (x86)\Oberon Media
O43 - CFD: 2012/09/18 19:07:09 - [] D -- C:\Program Files (x86)\Online Games Manager
O43 - CFD: 2009/06/11 18:24:32 - [] RD -- C:\Program Files (x86)\Online Services
O43 - CFD: 2015/10/13 20:21:18 - [0] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2011/05/13 08:59:39 - [] D -- C:\Program Files (x86)\Orange
O43 - CFD: 2013/06/22 09:56:15 - [] D -- C:\Program Files (x86)\Panasonic
O43 - CFD: 2012/12/21 16:01:10 - [] D -- C:\Program Files (x86)\PC Connectivity Solution
O43 - CFD: 2009/03/06 17:56:04 - [] D -- C:\Program Files (x86)\Python
O43 - CFD: 2012/06/17 13:50:58 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2013/07/09 08:50:40 - [] D -- C:\Program Files (x86)\Real
O43 - CFD: 2013/07/09 08:50:56 - [] D -- C:\Program Files (x86)\RealNetworks
O43 - CFD: 2009/03/06 18:13:19 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2006/11/02 17:07:27 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2013/03/31 17:42:05 - [] D -- C:\Program Files (x86)\RocketPDF
O43 - CFD: 2015/01/03 17:59:37 - [] D -- C:\Program Files (x86)\Samsung
O43 - CFD: 2015/10/20 12:43:47 - [] D -- C:\Program Files (x86)\SMINST
O43 - CFD: 2015/10/20 12:17:04 - [] D -- C:\Program Files (x86)\Software =>PUP.Optional.Boxore
O43 - CFD: 2011/05/13 08:56:48 - [] D -- C:\Program Files (x86)\Techcity
O43 - CFD: 2009/03/06 18:13:29 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2012/06/07 12:59:58 - [] D -- C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 2013/03/31 17:44:22 - [] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2009/09/27 11:30:34 - [] D -- C:\Program Files (x86)\Windows Calendar
O43 - CFD: 2008/01/21 05:09:47 - [] D -- C:\Program Files (x86)\Windows Collaboration
O43 - CFD: 2009/03/07 01:42:10 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2013/02/27 12:45:24 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2012/04/12 08:05:34 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/14 18:50:42 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2006/11/02 17:07:27 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2009/09/27 11:30:34 - [] D -- C:\Program Files (x86)\Windows Photo Gallery
O43 - CFD: 2009/11/17 19:16:47 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2009/09/27 11:30:34 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2010/01/04 12:33:15 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/10/21 11:48:35 - [] D -- C:\Program Files (x86)\Yahoo!
O43 - CFD: 2015/10/21 16:45:29 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2011/02/25 09:41:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2011/02/25 09:41:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/01/08 15:45:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
O43 - CFD: 2014/01/08 15:45:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Print Creations
O43 - CFD: 2012/12/13 13:44:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2013
O43 - CFD: 2012/10/03 09:48:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BoontyGames
O43 - CFD: 2009/03/06 18:11:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
O43 - CFD: 2008/01/21 05:20:45 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades
O43 - CFD: 2009/03/06 18:40:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2013/12/11 10:46:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 2010/11/09 14:33:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2013/02/24 11:28:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2011/03/11 09:49:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IZArc
O43 - CFD: 2010/03/25 15:54:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jeux sur Orange.fr
O43 - CFD: 2014/10/22 08:28:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kafeo
O43 - CFD: 2009/06/11 18:24:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les manuels de l'utilisateur
O43 - CFD: 2010/12/17 16:11:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LetsTunes
O43 - CFD: 2010/12/01 13:25:34 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
O43 - CFD: 2006/11/02 17:36:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/22 14:18:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2012/12/12 13:32:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mega Manager
O43 - CFD: 2013/09/14 17:37:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2010/05/26 14:03:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
O43 - CFD: 2015/08/14 11:28:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2012/10/11 07:44:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2009/03/06 18:30:44 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\muvee
O43 - CFD: 2010/01/14 15:00:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My HP Games
O43 - CFD: 2009/06/16 21:06:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netscape
O43 - CFD: 2010/10/16 13:47:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netscape Navigator
O43 - CFD: 2014/07/11 14:02:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic
O43 - CFD: 2013/06/22 21:22:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Help & Tools
O43 - CFD: 2012/06/17 13:50:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2013/07/09 08:50:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
O43 - CFD: 2015/01/03 17:59:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 2015/10/20 07:50:50 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2006/11/02 17:07:25 - [] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2012/06/21 17:56:27 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2010/01/04 12:33:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2012/10/03 09:48:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom
O43 - CFD: 2010/03/12 15:50:58 - [] D -- C:\ProgramData\1912 Titanic Mystery
O43 - CFD: 2012/10/02 09:23:02 - [] D -- C:\ProgramData\2109
O43 - CFD: 2013/02/24 11:28:36 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2014/10/15 14:00:15 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/03/06 18:40:42 - [] D -- C:\ProgramData\AOL
O43 - CFD: 2013/02/24 11:25:37 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2013/02/24 11:27:29 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/10/21 20:59:30 - [] HD -- C:\ProgramData\ArcSoft
O43 - CFD: 2009/11/24 14:16:44 - [] D -- C:\ProgramData\Astar Games
O43 - CFD: 2009/03/06 18:15:58 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2014/11/23 19:09:04 - [] D -- C:\ProgramData\atjs
O43 - CFD: 2012/12/12 17:56:24 - [] D -- C:\ProgramData\Bitdefender
O43 - CFD: 2012/12/08 12:48:43 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2014/10/15 17:55:31 - [] D -- C:\ProgramData\BullGuard
O43 - CFD: 2009/06/11 18:22:56 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2011/06/12 20:42:01 - [] D -- C:\ProgramData\BVRP Software
O43 - CFD: 2013/07/29 18:07:39 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2010/08/16 17:43:31 - [] D -- C:\ProgramData\Downloaded Installations
O43 - CFD: 2010/12/17 14:24:21 - [0] D -- C:\ProgramData\eMule
O43 - CFD: 2010/08/06 13:21:55 - [] D -- C:\ProgramData\FarmFrenzy3_Arctica
O43 - CFD: 2009/06/11 18:22:57 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2010/01/12 15:43:03 - [] D -- C:\ProgramData\Flood Light Games
O43 - CFD: 2009/12/14 15:49:08 - [] D -- C:\ProgramData\GameHouse
O43 - CFD: 2010/01/18 16:08:32 - [] D -- C:\ProgramData\GAMEON
O43 - CFD: 2012/10/04 11:39:36 - [] D -- C:\ProgramData\Google
O43 - CFD: 2009/07/08 08:52:54 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2009/07/08 09:00:34 - [] D -- C:\ProgramData\HP
O43 - CFD: 2015/10/14 16:30:38 - [] D -- C:\ProgramData\HP Product Assistant
O43 - CFD: 2009/11/04 17:30:16 - [] D -- C:\ProgramData\HPSSUPPLY
O43 - CFD: 2009/12/11 15:07:04 - [] D -- C:\ProgramData\Intenium
O43 - CFD: 2010/04/30 15:27:38 - [] D -- C:\ProgramData\JollyBear
O43 - CFD: 2013/01/25 12:34:42 - [] D -- C:\ProgramData\Leapfrog
O43 - CFD: 2015/03/22 18:01:47 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2010/08/02 13:45:19 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2009/06/11 18:22:57 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2009/11/19 14:29:15 - [] D -- C:\ProgramData\Merscom
O43 - CFD: 2014/01/28 13:42:13 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/10/18 17:37:15 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2009/06/11 18:22:57 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/03/23 11:27:56 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2009/12/10 14:27:01 - [] D -- C:\ProgramData\MythPeople
O43 - CFD: 2010/02/02 15:50:11 - [] D -- C:\ProgramData\Namco
O43 - CFD: 2010/08/10 13:57:17 - [] D -- C:\ProgramData\NannyMania
O43 - CFD: 2010/03/25 15:58:46 - [] D -- C:\ProgramData\Nevosoft
O43 - CFD: 2014/10/15 16:58:04 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2011/10/25 17:12:23 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2013/06/22 10:38:48 - [] D -- C:\ProgramData\Panasonic
O43 - CFD: 2012/09/20 13:14:45 - [] D -- C:\ProgramData\PlayFirst
O43 - CFD: 2009/12/20 19:43:15 - [] D -- C:\ProgramData\PoBros
O43 - CFD: 2010/07/15 13:59:58 - [] D -- C:\ProgramData\QuickTime
O43 - CFD: 2015/10/14 16:30:35 - [] D -- C:\ProgramData\Real
O43 - CFD: 2013/07/09 08:50:52 - [] D -- C:\ProgramData\RealNetworks
O43 - CFD: 2012/12/21 15:59:20 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 2009/10/23 11:02:20 - [] D -- C:\ProgramData\Sandlot Games
O43 - CFD: 2013/11/18 20:28:37 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/04/14 10:09:02 - [] D -- C:\ProgramData\Software =>PUP.Optional.Boxore
O43 - CFD: 2010/08/04 14:36:24 - [] D -- C:\ProgramData\SpinTop Games
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2010/04/01 15:14:23 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2011/10/25 17:12:35 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 2013/04/14 09:29:22 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/06/07 13:02:12 - [] D -- C:\ProgramData\TomTom
O43 - CFD: 2009/07/08 09:13:29 - [] D -- C:\ProgramData\WEBREG
O43 - CFD: 2009/11/02 15:32:29 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2012/11/11 14:44:29 - [] D -- C:\ProgramData\WindowsSearch
O43 - CFD: 2010/01/04 15:55:10 - [0] D -- C:\ProgramData\WinZip
O43 - CFD: 2012/10/02 21:10:08 - [] D -- C:\ProgramData\ZalmanInstaller_otshot
O43 - CFD: 2010/08/10 13:57:30 - [] D -- C:\ProgramData\Zylom
O43 - CFD: 2011/09/04 20:59:20 - [] HDC -- C:\ProgramData\{145B6A8D-C3A8-4F62-BF1A-E616EBBDF2B2}
O43 - CFD: 2015/10/20 07:47:05 - [] D -- C:\ProgramData\{B3C2C1CD-6B77-4A96-B670-F734AC2A1CBC}
O43 - CFD: 2013/04/23 09:06:34 - [0] D -- C:\ProgramData\߈ď菰,rogramData
O43 - CFD: 2013/04/23 09:06:35 - [0] D -- C:\ProgramData\㞸˷㊠˷䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/01 18:46:58 - [0] D -- C:\ProgramData\䠸!⁘!䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/11 08:46:21 - [0] D -- C:\ProgramData\䠸#⁘#䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/19 18:51:36 - [0] D -- C:\ProgramData\䠸$⁘$䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/10 08:14:02 - [0] D -- C:\ProgramData\䠸&⁘&䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/27 10:10:24 - [0] D -- C:\ProgramData\䠸'⁘'䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/01 19:02:06 - [0] D -- C:\ProgramData\䠸(⁘(䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/02 09:36:26 - [0] D -- C:\ProgramData\䠸.⁘.䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/21 08:58:33 - [0] D -- C:\ProgramData\䠸1⁘1䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/12 13:47:04 - [0] D -- C:\ProgramData\䠸2⁘2䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/28 12:41:06 - [0] D -- C:\ProgramData\䠸4⁘4䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/26 14:02:02 - [0] D -- C:\ProgramData\䠸6⁘6䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/03 18:02:36 - [0] D -- C:\ProgramData\䠸;⁘;䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/14 11:41:28 - [0] D -- C:\ProgramData\䠸=⁘=䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/12 17:54:11 - [0] D -- C:\ProgramData\䠸D⁘D䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/23 14:54:43 - [0] D -- C:\ProgramData\䠸K⁘K䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/03 12:42:21 - [0] D -- C:\ProgramData\䠸L⁘L䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/15 11:52:14 - [0] D -- C:\ProgramData\䠸M⁘M䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/07 10:44:47 - [0] D -- C:\ProgramData\䠸O⁘O䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/09 12:12:29 - [0] D -- C:\ProgramData\䠸T⁘T䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/12 09:43:00 - [0] D -- C:\ProgramData\䠸V⁘V䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/12 08:04:31 - [0] D -- C:\ProgramData\䠸X⁘X䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/29 11:46:28 - [0] D -- C:\ProgramData\䠸Z⁘Z䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/11 17:11:00 - [0] D -- C:\ProgramData\䠸⁘䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/08 07:29:32 - [0] D -- C:\ProgramData\䠸¥⁘¥䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/14 08:39:43 - [0] D -- C:\ProgramData\䠸·⁘·䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/08 13:14:14 - [0] D -- C:\ProgramData\䠸ç⁘ç䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/07 09:13:36 - [0] D -- C:\ProgramData\䠸è⁘è䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/03 12:39:28 - [0] D -- C:\ProgramData\䠸é⁘é䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/05 12:33:42 - [0] D -- C:\ProgramData\䠸Ë⁘Ë䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/13 08:21:12 - [0] D -- C:\ProgramData\䠸Í⁘Í䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/01 12:40:00 - [0] D -- C:\ProgramData\䠸Ó⁘Ó䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/30 12:33:34 - [0] D -- C:\ProgramData\䠸Ô⁘Ô䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/09 08:38:12 - [0] D -- C:\ProgramData\䠸õ⁘õ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/21 12:43:29 - [0] D -- C:\ProgramData\䠸×⁘×䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/24 12:38:15 - [0] D -- C:\ProgramData\䠸ø⁘ø䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/07 08:36:40 - [0] D -- C:\ProgramData\䠸Ù⁘Ù䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/07 10:51:14 - [0] D -- C:\ProgramData\䠸Û⁘Û䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/25 08:46:21 - [0] D -- C:\ProgramData\䠸ā⁘ā䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/21 10:42:11 - [0] D -- C:\ProgramData\䠸Ċ⁘Ċ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/13 10:56:25 - [0] D -- C:\ProgramData\䠸Ė⁘Ė䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/13 13:17:11 - [0] D -- C:\ProgramData\䠸ę⁘ę䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/15 17:13:59 - [0] D -- C:\ProgramData\䠸ğ⁘ğ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/13 18:33:34 - [0] D -- C:\ProgramData\䠸ī⁘ī䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/24 10:19:47 - [0] D -- C:\ProgramData\䠸Ĵ⁘Ĵ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/14 09:32:19 - [0] D -- C:\ProgramData\䠸ɔ⁘ɔ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/27 09:50:05 - [0] D -- C:\ProgramData\䠸ɖ⁘ɖ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/26 13:04:03 - [0] D -- C:\ProgramData\䠸ɛ⁘ɛ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/11 12:39:46 - [0] D -- C:\ProgramData\䠸ɩ⁘ɩ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/17 08:48:08 - [0] D -- C:\ProgramData\䠸ɨ⁘ɨ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/10 20:24:18 - [0] D -- C:\ProgramData\䠸ɲ⁘ɲ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/09 11:27:20 - [0] D -- C:\ProgramData\䠸ʃ⁘ʃ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/01 10:28:03 - [0] D -- C:\ProgramData\䠸ʈ⁘ʈ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/24 08:45:57 - [0] D -- C:\ProgramData\䠸ʊ⁘ʊ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/07 08:22:21 - [0] D -- C:\ProgramData\䠸ʋ⁘ʋ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/08 12:45:39 - [0] D -- C:\ProgramData\䠸ʒ⁘ʒ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/01 18:00:44 - [0] D -- C:\ProgramData\䠸Ƞ⁘Ƞ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/09 09:22:00 - [0] D -- C:\ProgramData\䠸ȧ⁘ȧ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/06 10:12:58 - [0] D -- C:\ProgramData\䠸ȱ⁘ȱ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/31 10:33:48 - [0] D -- C:\ProgramData\䠸ȶ⁘ȶ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/04 17:09:33 - [0] D -- C:\ProgramData\䠸ȿ⁘ȿ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/04 20:41:27 - [0] D -- C:\ProgramData\䠸ʉ⁘ʉ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/09 08:52:27 - [0] D -- C:\ProgramData\䠸Ɉ⁘Ɉ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/17 18:44:20 - [0] D -- C:\ProgramData\䠸ɚ⁘ɚ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/20 13:07:26 - [0] D -- C:\ProgramData\䠸ɟ⁘ɟ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/23 12:19:30 - [0] D -- C:\ProgramData\䠸ɤ⁘ɤ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/03 12:50:49 - [0] D -- C:\ProgramData\䠸ɥ⁘ɥ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/05 08:46:01 - [0] D -- C:\ProgramData\䠸ɦ⁘ɦ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/03 11:36:04 - [0] D -- C:\ProgramData\䠸ɧ⁘ɧ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/30 13:37:02 - [0] D -- C:\ProgramData\䠸ɭ⁘ɭ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/11 07:26:45 - [0] D -- C:\ProgramData\䠸ɰ⁘ɰ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/08 13:44:45 - [0] D -- C:\ProgramData\䠸ɳ⁘ɳ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/08 07:42:38 - [0] D -- C:\ProgramData\䠸ɴ⁘ɴ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/23 09:53:34 - [0] D -- C:\ProgramData\䠸ɶ⁘ɶ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/28 09:49:55 - [0] D -- C:\ProgramData\䠸ɸ⁘ɸ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/13 10:50:37 - [0] D -- C:\ProgramData\䠸ɹ⁘ɹ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/22 11:18:13 - [0] D -- C:\ProgramData\䠸ɺ⁘ɺ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/25 16:27:57 - [0] D -- C:\ProgramData\䠸ɼ⁘ɼ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/19 12:20:08 - [0] D -- C:\ProgramData\䠸ʁ⁘ʁ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/29 08:42:07 - [0] D -- C:\ProgramData\䠸ʂ⁘ʂ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/19 08:36:20 - [0] D -- C:\ProgramData\䠸ʅ⁘ʅ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/25 12:38:09 - [0] D -- C:\ProgramData\䠸ʆ⁘ʆ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/24 21:02:10 - [0] D -- C:\ProgramData\䠸ʇ⁘ʇ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/18 14:15:26 - [0] D -- C:\ProgramData\䠸ʍ⁘ʍ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/02 09:35:50 - [0] D -- C:\ProgramData\䠸ʏ⁘ʏ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/17 14:12:10 - [0] D -- C:\ProgramData\䠸ʐ⁘ʐ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/02 10:15:24 - [0] D -- C:\ProgramData\䠸ʓ⁘ʓ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/16 08:11:38 - [0] D -- C:\ProgramData\䠸ʔ⁘ʔ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/05 10:28:39 - [0] D -- C:\ProgramData\䠸ʕ⁘ʕ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/18 09:02:01 - [0] D -- C:\ProgramData\䠸ʙ⁘ʙ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/19 15:19:01 - [0] D -- C:\ProgramData\䠸ʛ⁘ʛ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/27 12:56:40 - [0] D -- C:\ProgramData\䠸ʞ⁘ʞ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/24 11:06:16 - [0] D -- C:\ProgramData\䠸ʟ⁘ʟ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/12 11:44:18 - [0] D -- C:\ProgramData\䠸ʠ⁘ʠ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/07 17:45:42 - [0] D -- C:\ProgramData\䠸ʢ⁘ʢ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/06 09:49:37 - [0] D -- C:\ProgramData\䠸ʣ⁘ʣ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/05 16:10:04 - [0] D -- C:\ProgramData\䠸ʭ⁘ʭ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/22 13:59:29 - [0] D -- C:\ProgramData\䠸ʰ⁘ʰ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/13 12:27:43 - [0] D -- C:\ProgramData\䠸ʳ⁘ʳ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/02 11:04:54 - [0] D -- C:\ProgramData\䠸ʴ⁘ʴ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/06 10:49:21 - [0] D -- C:\ProgramData\䠸ʼ⁘ʼ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/18 15:00:43 - [0] D -- C:\ProgramData\䠸˃⁘˃䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/29 08:00:46 - [0] D -- C:\ProgramData\䠸˄⁘˄䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/24 14:09:07 - [0] D -- C:\ProgramData\䠸˜⁘˜䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/01 11:49:14 - [0] D -- C:\ProgramData\䠸˝⁘˝䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/05 11:06:18 - [0] D -- C:\ProgramData\䠸ɫ⁘ɫ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/22 12:28:25 - [0] D -- C:\ProgramData\䠸ɽ⁘ɽ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/05 17:00:25 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2013/02/24 11:27:30 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2014/01/08 15:44:54 - [] D -- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 2014/05/20 12:42:12 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2011/05/13 08:59:32 - [] D -- C:\Program Files (x86)\Common Files\France Telecom
O43 - CFD: 2009/07/08 08:54:29 - [] D -- C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 2009/07/08 08:56:53 - [] D -- C:\Program Files (x86)\Common Files\HP
O43 - CFD: 2014/01/08 15:42:41 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2013/06/22 13:53:09 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/06/22 13:30:07 - [] D -- C:\Program Files (x86)\Common Files\Java(1)
O43 - CFD: 2010/12/01 13:25:33 - [] AD -- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 2009/03/06 18:30:06 - [] AD -- C:\Program Files (x86)\Common Files\LS Getting Started
O43 - CFD: 2012/02/15 10:16:26 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/03/06 18:30:43 - [] D -- C:\Program Files (x86)\Common Files\muvee Technologies
O43 - CFD: 2009/11/18 15:15:11 - [] D -- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 2013/06/22 09:56:39 - [] D -- C:\Program Files (x86)\Common Files\Panasonic
O43 - CFD: 2014/07/11 14:02:09 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2013/07/09 08:49:57 - [] D -- C:\Program Files (x86)\Common Files\Real
O43 - CFD: 2012/12/21 15:58:55 - [] D -- C:\Program Files (x86)\Common Files\Samsung
O43 - CFD: 2009/10/23 11:02:20 - [] D -- C:\Program Files (x86)\Common Files\Sandlot Shared
O43 - CFD: 2009/06/16 21:06:15 - [] D -- C:\Program Files (x86)\Common Files\Scanner
O43 - CFD: 2006/11/02 15:33:53 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2006/11/02 15:33:53 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/10/19 19:09:47 - [0] D -- C:\Program Files (x86)\Common Files\SWF Studio
O43 - CFD: 2014/08/05 08:34:12 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 2011/11/10 14:12:59 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2009/06/14 09:07:51 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2013/07/09 08:50:37 - [] D -- C:\Program Files (x86)\Common Files\xing shared
O43 - CFD: 2015/10/20 11:59:37 - [] SHD -- C:\Users\vanessa\AppData\Roaming\.#
O43 - CFD: 2013/04/13 18:59:55 - [] D -- C:\Users\vanessa\AppData\Roaming\0F0C1V0F1L1I1P0E2V2Z1C1T1R2Z1F1C =>Adware.InstallCore
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\1oDMYQo
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\1Pyb8cA
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\4DihbmG
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\4Flcgzr
O43 - CFD: 2015/02/03 18:31:15 - [] D -- C:\Users\vanessa\AppData\Roaming\4gLW79Z
O43 - CFD: 2015/03/19 16:18:42 - [] D -- C:\Users\vanessa\AppData\Roaming\7QIcPLH
O43 - CFD: 2015/02/09 11:19:25 - [] D -- C:\Users\vanessa\AppData\Roaming\9e564UJ
O43 - CFD: 2015/02/21 15:06:39 - [] D -- C:\Users\vanessa\AppData\Roaming\9h9rCNP
O43 - CFD: 2015/01/21 10:44:30 - [] D -- C:\Users\vanessa\AppData\Roaming\A0qdaJn
O43 - CFD: 2015/03/13 12:18:38 - [] D -- C:\Users\vanessa\AppData\Roaming\a5FZ6IG
O43 - CFD: 2014/10/15 14:00:07 - [] D -- C:\Users\vanessa\AppData\Roaming\Adobe
O43 - CFD: 2015/03/09 10:40:28 - [] D -- C:\Users\vanessa\AppData\Roaming\akVWKWA
O43 - CFD: 2014/11/25 13:38:14 - [] D -- C:\Users\vanessa\AppData\Roaming\Am9Ab4q
O43 - CFD: 2013/02/24 11:29:31 - [] D -- C:\Users\vanessa\AppData\Roaming\Apple Computer
O43 - CFD: 2014/10/21 20:59:36 - [] D -- C:\Users\vanessa\AppData\Roaming\Arcsoft
O43 - CFD: 2009/11/30 15:48:13 - [] D -- C:\Users\vanessa\AppData\Roaming\Artogon
O43 - CFD: 2009/06/11 18:31:46 - [] D -- C:\Users\vanessa\AppData\Roaming\ATI
O43 - CFD: 2009/12/22 21:24:37 - [] D -- C:\Users\vanessa\AppData\Roaming\Awem
O43 - CFD: 2010/01/06 15:24:53 - [] D -- C:\Users\vanessa\AppData\Roaming\Big Fish Games
O43 - CFD: 2015/01/03 17:53:45 - [] D -- C:\Users\vanessa\AppData\Roaming\brH2WMY
O43 - CFD: 2014/10/15 17:04:39 - [] D -- C:\Users\vanessa\AppData\Roaming\BullGuard
O43 - CFD: 2009/12/07 14:35:26 - [] D -- C:\Users\vanessa\AppData\Roaming\cerasus.media
O43 - CFD: 2015/08/14 15:11:38 - [] D -- C:\Users\vanessa\AppData\Roaming\CyberLink
O43 - CFD: 2015/01/21 10:55:40 - [] D -- C:\Users\vanessa\AppData\Roaming\detWmag
O43 - CFD: 2015/01/07 10:19:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Dgd5bFK
O43 - CFD: 2015/02/24 13:26:26 - [] D -- C:\Users\vanessa\AppData\Roaming\dGhvgir
O43 - CFD: 2015/01/02 16:08:59 - [] D -- C:\Users\vanessa\AppData\Roaming\DkH9mPB
O43 - CFD: 2014/12/30 09:40:36 - [] D -- C:\Users\vanessa\AppData\Roaming\dtjoYWh
O43 - CFD: 2010/04/14 12:34:29 - [] D -- C:\Users\vanessa\AppData\Roaming\eMule
O43 - CFD: 2010/01/12 15:43:03 - [] D -- C:\Users\vanessa\AppData\Roaming\Flood Light Games
O43 - CFD: 2009/12/03 14:22:20 - [] D -- C:\Users\vanessa\AppData\Roaming\Friday's games
O43 - CFD: 2015/03/06 15:25:59 - [] D -- C:\Users\vanessa\AppData\Roaming\fRTKU8N
O43 - CFD: 2015/01/06 20:08:44 - [] D -- C:\Users\vanessa\AppData\Roaming\G34clsK
O43 - CFD: 2010/01/14 16:14:58 - [] D -- C:\Users\vanessa\AppData\Roaming\Go Go Gourmet
O43 - CFD: 2009/10/03 18:51:21 - [] D -- C:\Users\vanessa\AppData\Roaming\Google
O43 - CFD: 2015/01/13 20:50:01 - [] D -- C:\Users\vanessa\AppData\Roaming\h3tHDcy
O43 - CFD: 2015/03/09 11:32:18 - [] D -- C:\Users\vanessa\AppData\Roaming\hae3SOJ
O43 - CFD: 2009/06/11 18:31:05 - [] D -- C:\Users\vanessa\AppData\Roaming\hewlett-packard
O43 - CFD: 2014/11/23 19:08:35 - [] D -- C:\Users\vanessa\AppData\Roaming\Ho04fMO
O43 - CFD: 2013/06/22 16:16:48 - [] D -- C:\Users\vanessa\AppData\Roaming\HP
O43 - CFD: 2009/06/11 18:25:57 - [] D -- C:\Users\vanessa\AppData\Roaming\HP TCS
O43 - CFD: 2010/10/08 14:48:27 - [] D -- C:\Users\vanessa\AppData\Roaming\Identities
O43 - CFD: 2015/02/26 16:23:26 - [] D -- C:\Users\vanessa\AppData\Roaming\IGBQ8Dk
O43 - CFD: 2015/01/19 13:06:22 - [] D -- C:\Users\vanessa\AppData\Roaming\ikb7dlP
O43 - CFD: 2015/09/29 12:26:08 - [] D -- C:\Users\vanessa\AppData\Roaming\Image Zone Express
O43 - CFD: 2011/06/12 20:42:00 - [] D -- C:\Users\vanessa\AppData\Roaming\InstallShield
O43 - CFD: 2015/02/13 11:48:48 - [] D -- C:\Users\vanessa\AppData\Roaming\ITD3nE8
O43 - CFD: 2015/02/11 13:53:04 - [] D -- C:\Users\vanessa\AppData\Roaming\JDPvSeN
O43 - CFD: 2015/03/22 11:00:12 - [] D -- C:\Users\vanessa\AppData\Roaming\JWcSOmm
O43 - CFD: 2015/03/05 18:12:11 - [] D -- C:\Users\vanessa\AppData\Roaming\KhVQCaw
O43 - CFD: 2015/01/12 19:32:56 - [] D -- C:\Users\vanessa\AppData\Roaming\kRcA6Vq
O43 - CFD: 2015/03/02 11:21:19 - [] D -- C:\Users\vanessa\AppData\Roaming\KWUUv5N
O43 - CFD: 2015/01/20 13:01:12 - [] D -- C:\Users\vanessa\AppData\Roaming\L1QbVJp
O43 - CFD: 2015/03/13 11:27:15 - [] D -- C:\Users\vanessa\AppData\Roaming\L2XKpzS
O43 - CFD: 2014/12/31 08:56:56 - [] D -- C:\Users\vanessa\AppData\Roaming\L87T8hS
O43 - CFD: 2010/12/17 16:12:05 - [] D -- C:\Users\vanessa\AppData\Roaming\letstunes
O43 - CFD: 2015/03/04 15:32:31 - [] D -- C:\Users\vanessa\AppData\Roaming\lIQpeW8
O43 - CFD: 2009/12/09 14:59:35 - [] D -- C:\Users\vanessa\AppData\Roaming\Little Worlds Online
O43 - CFD: 2014/12/29 09:15:12 - [] D -- C:\Users\vanessa\AppData\Roaming\LOS4Enf
O43 - CFD: 2009/10/27 15:16:51 - [] D -- C:\Users\vanessa\AppData\Roaming\Macromedia
O43 - CFD: 2010/03/26 16:32:01 - [] D -- C:\Users\vanessa\AppData\Roaming\Malwarebytes
O43 - CFD: 2006/11/02 17:07:25 - [0] D -- C:\Users\vanessa\AppData\Roaming\Media Center Programs
O43 - CFD: 2011/02/03 10:05:58 - [] D -- C:\Users\vanessa\AppData\Roaming\Megaupload
O43 - CFD: 2009/11/19 14:29:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Merscom
O43 - CFD: 2014/10/15 18:18:36 - [] SD -- C:\Users\vanessa\AppData\Roaming\Microsoft
O43 - CFD: 2014/10/15 19:02:41 - [] D -- C:\Users\vanessa\AppData\Roaming\Mozilla
O43 - CFD: 2015/02/01 10:40:55 - [] D -- C:\Users\vanessa\AppData\Roaming\mqeizLs
O43 - CFD: 2011/09/04 20:59:03 - [] D -- C:\Users\vanessa\AppData\Roaming\MusicNet
O43 - CFD: 2015/03/04 15:37:26 - [] D -- C:\Users\vanessa\AppData\Roaming\MxJsSJn
O43 - CFD: 2010/02/02 15:50:11 - [] D -- C:\Users\vanessa\AppData\Roaming\Namco
O43 - CFD: 2015/02/13 12:24:56 - [] D -- C:\Users\vanessa\AppData\Roaming\ndkNGrs
O43 - CFD: 2010/10/16 13:47:40 - [] D -- C:\Users\vanessa\AppData\Roaming\Netscape
O43 - CFD: 2010/08/06 13:10:20 - [] D -- C:\Users\vanessa\AppData\Roaming\NevoSoft Games
O43 - CFD: 2015/03/19 18:31:11 - [] D -- C:\Users\vanessa\AppData\Roaming\NG99ASP
O43 - CFD: 2015/02/03 18:26:21 - [] D -- C:\Users\vanessa\AppData\Roaming\o1aHcC3
O43 - CFD: 2015/01/31 11:33:33 - [] D -- C:\Users\vanessa\AppData\Roaming\oIzDy4X
O43 - CFD: 2015/01/02 16:06:09 - [] D -- C:\Users\vanessa\AppData\Roaming\OMHBRuw
O43 - CFD: 2014/12/27 20:08:19 - [] D -- C:\Users\vanessa\AppData\Roaming\otBiGtl
O43 - CFD: 2015/01/18 12:57:03 - [] D -- C:\Users\vanessa\AppData\Roaming\oXv4iSk
O43 - CFD: 2015/01/03 18:16:30 - [] D -- C:\Users\vanessa\AppData\Roaming\PDF Software
O43 - CFD: 2015/01/03 18:23:37 - [] D -- C:\Users\vanessa\AppData\Roaming\PDF Suite 2015
O43 - CFD: 2010/08/05 14:54:38 - [] D -- C:\Users\vanessa\AppData\Roaming\Peace Craft
O43 - CFD: 2015/10/20 12:45:58 - [0] D -- C:\Users\vanessa\AppData\Roaming\PeerNetworking
O43 - CFD: 2012/09/20 13:14:45 - [] D -- C:\Users\vanessa\AppData\Roaming\PlayFirst
O43 - CFD: 2009/12/20 19:43:15 - [] D -- C:\Users\vanessa\AppData\Roaming\PoBros
O43 - CFD: 2009/11/18 15:15:49 - [] D -- C:\Users\vanessa\AppData\Roaming\Princess Isabella
O43 - CFD: 2009/07/18 09:06:59 - [] D -- C:\Users\vanessa\AppData\Roaming\Printer Info Cache
O43 - CFD: 2015/01/25 10:34:57 - [] D -- C:\Users\vanessa\AppData\Roaming\qqDR8Er
O43 - CFD: 2012/12/12 10:57:42 - [0] D -- C:\Users\vanessa\AppData\Roaming\QuickScan
O43 - CFD: 2014/10/15 09:43:01 - [] D -- C:\Users\vanessa\AppData\Roaming\Real
O43 - CFD: 2013/07/09 08:51:42 - [] D -- C:\Users\vanessa\AppData\Roaming\RealNetworks
O43 - CFD: 2015/03/22 11:41:51 - [] D -- C:\Users\vanessa\AppData\Roaming\rJEttea
O43 - CFD: 2014/12/27 20:12:37 - [] D -- C:\Users\vanessa\AppData\Roaming\rmJ93NP
O43 - CFD: 2013/04/02 17:53:33 - [] D -- C:\Users\vanessa\AppData\Roaming\RocketPDF
O43 - CFD: 2015/03/02 11:49:09 - [] D -- C:\Users\vanessa\AppData\Roaming\rwmlVmm
O43 - CFD: 2014/07/29 22:17:03 - [] D -- C:\Users\vanessa\AppData\Roaming\Samsung
O43 - CFD: 2010/02/23 15:43:16 - [] D -- C:\Users\vanessa\AppData\Roaming\SerpentOfIsis
O43 - CFD: 2013/11/18 20:28:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Skype
O43 - CFD: 2009/11/25 14:48:44 - [] D -- C:\Users\vanessa\AppData\Roaming\SprillBermudeFr
O43 - CFD: 2009/10/01 14:09:45 - [] D -- C:\Users\vanessa\AppData\Roaming\Template
O43 - CFD: 2010/03/12 15:51:48 - [] D -- C:\Users\vanessa\AppData\Roaming\TitanicMystery
O43 - CFD: 2015/01/06 20:05:30 - [] D -- C:\Users\vanessa\AppData\Roaming\toCDhXV
O43 - CFD: 2012/06/07 13:00:04 - [] D -- C:\Users\vanessa\AppData\Roaming\TomTom
O43 - CFD: 2014/12/29 09:19:00 - [] D -- C:\Users\vanessa\AppData\Roaming\Trbu9FE
O43 - CFD: 2015/01/25 10:31:52 - [] D -- C:\Users\vanessa\AppData\Roaming\TZyUqn7
O43 - CFD: 2015/02/09 12:14:56 - [] D -- C:\Users\vanessa\AppData\Roaming\uImvUdc
O43 - CFD: 2014/11/25 13:38:08 - [] D -- C:\Users\vanessa\AppData\Roaming\uxCW4Md
O43 - CFD: 2015/01/28 15:22:13 - [] D -- C:\Users\vanessa\AppData\Roaming\vkxaEG4
O43 - CFD: 2012/04/27 21:29:16 - [] D -- C:\Users\vanessa\AppData\Roaming\WildTangent
O43 - CFD: 2009/06/20 20:51:32 - [] D -- C:\Users\vanessa\AppData\Roaming\WinBatch
O43 - CFD: 2010/01/04 12:42:49 - [] D -- C:\Users\vanessa\AppData\Roaming\WinRAR
O43 - CFD: 2015/01/03 00:30:41 - [] D -- C:\Users\vanessa\AppData\Roaming\wPA0y5v
O43 - CFD: 2015/03/30 15:43:56 - [] D -- C:\Users\vanessa\AppData\Roaming\wS8C6RP
O43 - CFD: 2014/12/30 09:37:41 - [] D -- C:\Users\vanessa\AppData\Roaming\x1vbv0K
O43 - CFD: 2015/01/18 13:29:44 - [] D -- C:\Users\vanessa\AppData\Roaming\XRIEU5j
O43 - CFD: 2015/02/25 12:14:58 - [] D -- C:\Users\vanessa\AppData\Roaming\xyNBHST
O43 - CFD: 2015/03/11 10:32:40 - [] D -- C:\Users\vanessa\AppData\Roaming\Y8PbIhx
O43 - CFD: 2015/10/21 11:48:30 - [0] D -- C:\Users\vanessa\AppData\Roaming\Yahoo!
O43 - CFD: 2015/01/21 11:21:59 - [] D -- C:\Users\vanessa\AppData\Roaming\ymuhgRj
O43 - CFD: 2015/01/13 19:59:14 - [] D -- C:\Users\vanessa\AppData\Roaming\yoelTqN
O43 - CFD: 2015/03/06 23:10:01 - [] D -- C:\Users\vanessa\AppData\Roaming\yyePhL1
O43 - CFD: 2012/10/02 21:08:57 - [] D -- C:\Users\vanessa\AppData\Roaming\ZalmanInstaller_otshot
O43 - CFD: 2015/02/10 13:42:14 - [] D -- C:\Users\vanessa\AppData\Roaming\Zbs99fY
O43 - CFD: 2015/10/22 15:08:16 - [] D -- C:\Users\vanessa\AppData\Roaming\ZHP
O43 - CFD: 2015/10/20 15:45:58 - [] D -- C:\Users\vanessa\AppData\Roaming\zWs8MDJ
O43 - CFD: 2010/10/08 14:48:27 - [] D -- C:\Users\vanessa\AppData\Roaming\Zylom
O43 - CFD: 2009/12/18 15:48:08 - [] D -- C:\Users\vanessa\AppData\Roaming\Zylom 3 Days Zoo Mystery
O43 - CFD: 2015/05/01 11:18:35 - [] D -- C:\Users\vanessa\AppData\Local\Adobe
O43 - CFD: 2009/06/11 18:31:39 - [] D -- C:\Users\vanessa\AppData\Local\AOL
O43 - CFD: 2012/06/17 13:48:00 - [] D -- C:\Users\vanessa\AppData\Local\Apple
O43 - CFD: 2014/10/22 21:19:29 - [] D -- C:\Users\vanessa\AppData\Local\Apple Computer
O43 - CFD: 2009/06/11 18:23:04 - [0] SHD -- C:\Users\vanessa\AppData\Local\Application Data
O43 - CFD: 2009/06/12 16:23:28 - [] D -- C:\Users\vanessa\AppData\Local\Apps
O43 - CFD: 2014/01/08 15:45:03 - [] D -- C:\Users\vanessa\AppData\Local\ArcSoft
O43 - CFD: 2009/06/11 18:31:46 - [] D -- C:\Users\vanessa\AppData\Local\ATI
O43 - CFD: 2013/10/09 09:22:20 - [] D -- C:\Users\vanessa\AppData\Local\avgchrome
O43 - CFD: 2015/10/20 20:43:03 - [0] D -- C:\Users\vanessa\AppData\Local\DBFF6CA-4992-43E3-9940-A5637C65354A
O43 - CFD: 2009/06/12 16:23:37 - [0] D -- C:\Users\vanessa\AppData\Local\Deployment
O43 - CFD: 2013/04/13 19:00:38 - [0] D -- C:\Users\vanessa\AppData\Local\Downloaded Installations
O43 - CFD: 2015/03/23 11:15:35 - [] D -- C:\Users\vanessa\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2010/12/17 14:24:21 - [] D -- C:\Users\vanessa\AppData\Local\eMule
O43 - CFD: 2015/10/20 14:35:47 - [] D -- C:\Users\vanessa\AppData\Local\ESET
O43 - CFD: 2015/10/21 13:10:37 - [] D -- C:\Users\vanessa\AppData\Local\Google
O43 - CFD: 2009/06/11 18:31:07 - [] D -- C:\Users\vanessa\AppData\Local\Hewlett-Packard
O43 - CFD: 2009/06/11 18:23:04 - [0] SHD -- C:\Users\vanessa\AppData\Local\Historique
O43 - CFD: 2010/04/30 15:27:38 - [] D -- C:\Users\vanessa\AppData\Local\JollyBear
O43 - CFD: 2015/10/21 11:48:34 - [] D -- C:\Users\vanessa\AppData\Local\Microsoft
O43 - CFD: 2009/06/12 12:37:58 - [0] D -- C:\Users\vanessa\AppData\Local\Microsoft Help
O43 - CFD: 2015/03/23 11:28:04 - [] D -- C:\Users\vanessa\AppData\Local\Mozilla
O43 - CFD: 2010/10/16 13:47:40 - [] D -- C:\Users\vanessa\AppData\Local\Netscape
O43 - CFD: 2009/11/22 20:10:12 - [] D -- C:\Users\vanessa\AppData\Local\Oberon Games
O43 - CFD: 2013/06/22 10:38:47 - [] D -- C:\Users\vanessa\AppData\Local\Panasonic
O43 - CFD: 2009/07/01 08:55:13 - [] D -- C:\Users\vanessa\AppData\Local\Seven Zip
O43 - CFD: 2015/10/22 15:08:44 - [] D -- C:\Users\vanessa\AppData\Local\Temp
O43 - CFD: 2009/06/11 18:23:04 - [0] SHD -- C:\Users\vanessa\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/06/07 13:00:04 - [] D -- C:\Users\vanessa\AppData\Local\TomTom
O43 - CFD: 2012/11/25 17:03:13 - [] D -- C:\Users\vanessa\AppData\Local\Unity
O43 - CFD: 2009/07/08 09:00:41 - [] D -- C:\Users\vanessa\AppData\Local\VirtualStore
O43 - CFD: 2014/03/12 19:48:12 - [] D -- C:\Users\vanessa\AppData\Local\Windows Live
O43 - CFD: 2012/02/23 11:59:19 - [] D -- C:\Users\vanessa\AppData\Local\Zylom Games
O43 - CFD: 2008/01/21 05:20:45 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/06/11 18:30:36 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2009/08/14 15:41:43 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2013/01/15 16:20:02 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2009/07/27 18:53:07 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2010/03/26 16:28:50 - [0] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jeux sur Orange.fr
O43 - CFD: 2008/01/21 05:20:45 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/21 11:46:01 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2010/01/04 12:33:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Extension d'environnement du périphérique d.) -- C:\Windows\System32\EhStorShell.dll ©
---\\ Liste des pilotes du système (81) - 59s
O58 - SDL:2006/11/02 11:43:52 A . (...) -- C:\Windows\System32\drivers\1394bus.sys [65024]
O58 - SDL:2008/01/21 04:46:53 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [486456] ©
O58 - SDL:2008/01/21 04:46:54 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [342584] ©
O58 - SDL:2008/01/21 04:46:54 A . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\System32\drivers\adpu160m.sys [126520] ©
O58 - SDL:2008/01/21 04:47:27 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [185912] ©
O58 - SDL:2008/01/21 04:46:50 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15976] ©
O58 - SDL:2008/01/21 04:46:52 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [90680] ©
O58 - SDL:2008/01/21 04:47:00 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [91192] ©
O58 - SDL:2007/05/16 19:43:52 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrxu6.sys [1039360] ©
O58 - SDL:2008/12/01 19:15:04 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [5000192] ©
O58 - SDL:2008/01/21 04:47:30 A . (...) -- C:\Windows\System32\drivers\bdasup.sys [15616]
O58 - SDL:2006/09/18 23:30:15 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2006/09/18 23:30:15 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2006/11/02 10:43:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [86528] ©
O58 - SDL:2006/09/18 23:30:18 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2006/09/18 23:30:18 A . (...) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2006/09/19 13:42:33 A . (...) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2012/08/17 10:18:10 A . (...) -- C:\Windows\System32\drivers\btblan.sys [40320]
O58 - SDL:2009/10/20 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224] ©
O58 - SDL:2009/10/20 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224] ©
O58 - SDL:2008/01/21 04:46:50 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [18024] ©
O58 - SDL:2010/07/30 07:51:52 A . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\Windows\System32\drivers\dgderdrv.sys [20552] ©
O58 - SDL:2006/11/02 13:50:06 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [88168] ©
O58 - SDL:2008/01/21 04:46:56 A . (...) -- C:\Windows\System32\drivers\E1G6032E.sys [146176]
O58 - SDL:2008/01/21 04:46:59 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [397368] ©
O58 - SDL:2010/07/13 17:58:12 A . (.LeapFrog - FLY Fusion USB Driver.) -- C:\Windows\System32\drivers\FlyUsb.sys [24576] ©
O58 - SDL:2012/08/21 14:01:20 A . (...) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:2012/09/04 13:49:40 A . (.HS Coporation - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ghsnet.sys [162816]
O58 - SDL:2014/03/17 10:29:40 A . (...) -- C:\Windows\System32\drivers\ghsser.sys [126080]
O58 - SDL:2012/08/29 18:24:10 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys [145696] ©
O58 - SDL:2013/07/03 04:22:30 A . (...) -- C:\Windows\System32\drivers\hidparse.sys [31616]
O58 - SDL:2008/01/21 04:46:59 A . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\drivers\HpCISSs.sys [47672] ©
O58 - SDL:2008/01/21 04:46:59 A . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\drivers\iaStorV.sys [290872] ©
O58 - SDL:2006/11/02 14:02:39 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44648] ©
O58 - SDL:2006/11/02 14:02:09 A . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\drivers\iteatapi.sys [37480] ©
O58 - SDL:2006/11/02 14:02:09 A . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\drivers\iteraid.sys [37480] ©
O58 - SDL:2008/01/21 04:49:00 A . (...) -- C:\Windows\System32\drivers\ksthunk.sys [20864]
O58 - SDL:2008/01/21 04:46:51 A . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [113720] ©
O58 - SDL:2008/01/21 04:46:56 A . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [105016] ©
O58 - SDL:2008/01/21 04:47:01 A . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [113720] ©
O58 - SDL:2012/06/20 11:51:34 A . (.HandSet Incorporated - HandSet CDROM Filter.) -- C:\Windows\System32\drivers\massfilter_hs.sys [20232]
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/10/05 09:50:10 A . (...) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272]
O58 - SDL:2015/10/22 14:56:53 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] ©
O58 - SDL:2008/01/21 04:46:59 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35896] ©
O58 - SDL:2008/01/21 04:46:56 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [438328] ©
O58 - SDL:2006/11/02 14:02:24 A . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\Mraid35x.sys [39016] ©
O58 - SDL:2008/01/21 04:49:52 A . (...) -- C:\Windows\System32\drivers\mskssrv.sys [11008]
O58 - SDL:2006/11/02 11:37:30 A . (...) -- C:\Windows\System32\drivers\mspclock.sys [7040]
O58 - SDL:2006/11/02 11:37:30 A . (...) -- C:\Windows\System32\drivers\mspqm.sys [6656]
O58 - SDL:2008/01/21 04:49:52 A . (...) -- C:\Windows\System32\drivers\mstee.sys [7936]
O58 - SDL:2015/10/05 09:50:14 A . (...) -- C:\Windows\System32\drivers\mwac.sys [64216]
O58 - SDL:2006/11/02 14:03:03 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51816] ©
O58 - SDL:2008/01/21 04:46:54 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [128056] ©
O58 - SDL:2008/01/21 04:46:54 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [54328] ©
O58 - SDL:2006/11/02 11:43:56 A . (...) -- C:\Windows\System32\drivers\ohci1394.sys [72192]
O58 - SDL:2006/09/07 17:49:04 A . (...) -- C:\Windows\System32\drivers\PS2.sys [21504]
O58 - SDL:2010/03/19 03:00:00 N . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [55856] ©
O58 - SDL:2008/01/21 04:46:52 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1221176] ©
O58 - SDL:2006/11/02 13:50:27 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [124008] ©
O58 - SDL:2008/11/18 21:32:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [1566112] ©
O58 - SDL:2008/08/06 18:26:08 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS6 64-bit Driver.) -- C:\Windows\System32\drivers\Rtlh64.sys [174592] ©
O58 - SDL:2006/09/30 01:51:44 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2008/01/21 04:47:26 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [78392] ©
O58 - SDL:2014/06/16 08:01:38 A . (...) -- C:\Windows\System32\drivers\ssudbus.sys [110336]
O58 - SDL:2014/06/16 08:01:38 A . (...) -- C:\Windows\System32\drivers\ssudmdm.sys [206080]
O58 - SDL:2009/04/11 07:39:31 A . (...) -- C:\Windows\System32\drivers\stream.sys [68224]
O58 - SDL:2006/11/02 14:02:52 A . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\drivers\symc8xx.sys [49256] ©
O58 - SDL:2006/11/02 14:02:37 A . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_hi.sys [44648] ©
O58 - SDL:2006/11/02 14:02:47 A . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_u3.sys [48232] ©
O58 - SDL:2010/06/24 15:00:14 A . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\System32\drivers\TFsExDisk.sys [16392] ©
O58 - SDL:2008/01/21 04:46:56 A . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\drivers\uliahci.sys [284728] ©
O58 - SDL:2006/11/02 13:50:54 A . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win200.) -- C:\Windows\System32\drivers\ulsata.sys [148072] ©
O58 - SDL:2008/01/21 04:46:52 A . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\System32\drivers\ulsata2.sys [174696] ©
O58 - SDL:2012/12/13 14:50:36 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784] ©
O58 - SDL:2009/04/11 07:39:40 A . (...) -- C:\Windows\System32\drivers\USBCAMD2.sys [32640]
O58 - SDL:2013/06/29 04:25:14 A . (...) -- C:\Windows\System32\drivers\usbd.sys [7552]
O58 - SDL:2013/07/12 11:19:36 A . (...) -- C:\Windows\System32\drivers\usbvideo.sys [168960]
O58 - SDL:2008/01/21 04:46:50 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [18024] ©
O58 - SDL:2008/01/21 04:47:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [149048] ©
O58 - SDL:2006/11/02 11:40:24 A . (...) -- C:\Windows\System32\drivers\wacompen.sys [26624]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (6) - 5s
O61 - LFC: 2015/10/22 08:44:18 A . (.SosVirus.) -- C:\Users\vanessa\Downloads\AdsFix.exe [2719744]
O61 - LFC: 2015/10/20 11:59:16 A . (..) -- C:\Users\vanessa\Downloads\bitdefender_antivirus.exe [7207408]
O61 - LFC: 2015/10/22 08:44:18 A . (.SosVirus.) -- C:\Users\vanessa\Desktop\AdsFix.exe [2719744]
O61 - LFC: 2015/10/22 15:06:36 A . (..) -- C:\Users\vanessa\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/10/15 13:20:48 A . (..) -- C:\Users\vanessa\AppData\Local\Google\Chrome\User Data\PepperFlash\19.0.0.226\pepflashplayer.dll [16493256]
O61 - LFC: 2015/10/22 14:56:16 A . (..) -- C:\Users\vanessa\AppData\Local\ATI\ACE\Manifest.Bin [15219]
---\\ Associations Shell Spawning (9) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (17) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/ ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Orange\Launcher\Launcher.exe -appid browser
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Netscape\Navigator 9\navigator.ex http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\SysWOW64\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Netscape - Navigator Helper.) -- C:\Program Files (x86)\Netscape\Navigator 9\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\SysWOW64\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Netscape - Navigator Helper.) -- C:\Program Files (x86)\Netscape\Navigator 9\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\SysWOW64\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Netscape - Navigator Helper.) -- C:\Program Files (x86)\Netscape\Navigator 9\uninstall\helper.exe
---\\ Recherche d'infection sur les navigateurs (19) - 23s
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.description", "iWebar"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledUrls.expi[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledWithHash.[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_notBundledArr_.e[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_notBundledArr_.v[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_regBundledWithSo[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.name", "iWebar V2.1"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.publisher", "iWebar"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a9321b2762c2e4c5fbd04b8118e512707c0c8a2d632754caca0b252e936311db9com32850.32850.name", "Object Browser"); =>PUP.Optional.ObjectBrowser
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a9321b2762c2e4c5fbd04b8118e512707c0c8a2d632754caca0b252e936311db9com32850.32850.publisher", "Object Browser"[...] =>PUP.Optional.ObjectBrowser
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_bundledUrls.expi[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_bundledWithHash.[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_notBundledArr_.e[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_notBundledArr_.v[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_regBundledWithSo[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.name", "CinemaPlus-3.2c"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.publisher", "Cinema Plus"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.enabledAddons", "defsearchp%40gmail.com:1.0.0.1039,deskCutv2%40gmail.com:0.0.10,d4db60df25f14dae9dd18%40185c[...] =>PUP.Optional.DeskCut
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/
---\\ Enumère les services démarrés par Svchost (31) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [26624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [85504] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [49664] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [49664] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [179712] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [719360] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [462848] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [446976] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [98304] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [309760] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [88064] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [61952] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\Windows\System32\ipnathlp.dll [342016] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [318976] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Termi.) -- C:\Windows\System32\termsrv.dll [548352] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2428952] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1081856] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [225280] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [28672] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [45056] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [154112] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [37888] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [86528] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [74752] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [855552] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [221696] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Termi.) -- C:\Windows\System32\SessEnv.dll [74752] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [103424] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [178688] ©
---\\ Liste des exceptions du parefeu Windows (56) - 3s
O87 - FAEL: "{D14156DB-45A3-478A-BCB0-FDE7201127F0}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{AB74550E-04D0-4BD1-998C-6FA309B150CE}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{882A590C-9B33-4861-9A04-FEDF29A510D8}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartMusic.exe (.not file.)
O87 - FAEL: "{CB2F6E0F-EF71-4C09-AEDE-DEDEB03CD06D}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartPhoto.exe (.not file.)
O87 - FAEL: "{B865F4AF-57B8-48A0-9EE8-6763F548F86B}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartVideo.exe (.not file.)
O87 - FAEL: "{844528F6-7F8C-44E8-B21C-569A1AD4E966}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\TSMAgent.exe (.not file.)
O87 - FAEL: "{2D4002F3-8125-466A-AD95-4EF53C965999}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\CLML\CLMLSvc.exe (.not file.)
O87 - FAEL: "{03B4673F-4887-4069-A2A5-AD9C4F3CFD8D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartMusic.exe (.not file.)
O87 - FAEL: "{67AAA0DE-1589-457A-95CF-0AD6D4E5E93A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartPhoto.exe (.not file.)
O87 - FAEL: "{252A312B-6735-4498-9A7A-19D3E81EEA0C}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartVideo.exe (.not file.)
O87 - FAEL: "{7A55CD63-8633-4440-B318-24364553A91A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\TSMAgent.exe (.not file.)
O87 - FAEL: "{B75E4312-315C-47E5-A899-726D8E407DF5}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\CLML\CLMLSvc.exe (.not file.)
O87 - FAEL: "{37BFC9F7-7921-43A9-857A-4FFD7BDAB2D5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{E913858C-E190-4E48-B1B4-9E848B9E542A}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{AEAA2E67-21AC-422D-9947-1032F94C4651}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)
O87 - FAEL: "TCP Query User{6902838C-3D78-4C88-AF30-9A826402A8F0}C:\program files (x86)\emule\emule.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "UDP Query User{86AC8D12-5A23-4E97-882A-101FBD77D9B4}C:\program files (x86)\emule\emule.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "{6B6A41BF-83A6-46DC-9B8A-92F5EE6865E3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\LimeWire\LimeWire.exe (.not file.)
O87 - FAEL: "{9F675B7E-279F-4A06-A716-F83E8F48F8D7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\LimeWire\LimeWire.exe (.not file.)
O87 - FAEL: "TCP Query User{6AE69076-768A-4F09-B1DE-9C844021C832}C:\program files (x86)\imesh applications\imesh\imesh.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\imesh applications\imesh\imesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "UDP Query User{C5485932-FE44-4E5B-8417-BC250CF999C2}C:\program files (x86)\imesh applications\imesh\imesh.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\imesh applications\imesh\imesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{86D3EA06-2F54-4E19-A0BF-C3F038D24D1F}" [In-None-P6-TRUE] .(...) -- E:\data\eSKernel.exe (.not file.)
O87 - FAEL: "{97C90A31-C489-4A3D-B60E-CE9F4336FFBC}" [In-None-P17-TRUE] .(...) -- E:\data\eSKernel.exe (.not file.)
O87 - FAEL: "{1BBD8787-C831-46A0-AAF4-FFE03698B9B1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{CC1C6BBE-7C13-4544-BF0E-9F75BE8998B6}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{52AD2E06-B65B-4F59-9D55-3EF55B944000}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{A3A6717F-8750-4681-A399-68EEAF9237F1}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{F13FB351-8A86-43E3-8B8C-876BE58B4BE4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{59AD693C-C176-4433-AAD5-856BAABDD3AA}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{7929B983-AEF9-40AF-AF7A-CBA641DB5F50}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{3F001C3F-92EC-497E-A246-605CF57C181E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{B92DD127-EE24-4D60-A3CD-0F42D553E375}" [In-None-P6-TRUE] .(...) -- C:\Users\vanessa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZX9YV1AK\SweetImSetup[1].exe (.not file.) =>PUP.Optional.SweetIM
O87 - FAEL: "{BE591CD3-38E7-47B9-80E7-485E0BE8FDBA}" [In-None-P17-TRUE] .(...) -- C:\Users\vanessa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZX9YV1AK\SweetImSetup[1].exe (.not file.) =>PUP.Optional.SweetIM
O87 - FAEL: "{481B6059-0B5D-4BEE-ABBF-E6CCAD32353D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{452A5F36-956D-47EE-B533-9EA36FE9B4BB}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{DBD83785-A9AB-4CB9-A57A-D4068BB8D926}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe (.not file.) =>PUP.Optional.SearchResults
O87 - FAEL: "{FF5FEE24-2D72-4C48-8C1B-0737D2AA0057}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe (.not file.) =>PUP.Optional.SearchResults
O87 - FAEL: "{798AD8C4-1C7B-435A-AAC5-E08E4580A2D7}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\TAGMonitor.exe (.not file.)
O87 - FAEL: "{F8F053FC-B3D3-496C-AC7E-5E23D16A647D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\TAGMonitor.exe (.not file.)
O87 - FAEL: "{CCEB1E45-B158-413D-A20C-2F28EB25D176}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\LeapFrogConnectTag.exe (.not file.)
O87 - FAEL: "{8B5000CD-D2A6-425A-AEEB-64259F2442B4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\LeapFrogConnectTag.exe (.not file.)
O87 - FAEL: "{7FC13A03-4FF5-45D9-AD74-41C41762696C}" [In-None-P17-FALSE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{B8C93CE0-01C5-4360-8A6F-82D504FF2DA8}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{BE63974F-AAF3-4C19-B7F6-9C171E76577D}" [In-None-P17-FALSE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{4128B7C2-31A5-440A-8F41-5BCB0312AC62}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{BBA1319C-438F-4C04-BED8-5BA2A711F95F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\dtuser.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{614329D1-6ADF-4D29-9F8C-35F80AD8D23B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\dtuser.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{B0871ACC-E393-447C-A277-ED59999CF35C}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{637771AB-0F02-4912-8AAA-C4D7346BBA27}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{9FA0F64C-451A-4DD9-A2EA-CF65B38EECBA}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\EmailNotifier\EmailNotifier.exe (.not file.)
O87 - FAEL: "{E71D56CC-63C4-46FB-A7FF-823FD7729EC2}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\EmailNotifier\EmailNotifier.exe (.not file.)
O87 - FAEL: "{6C1C7DA7-FAF5-40F2-AC42-50F694F03AE8}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O87 - FAEL: "{3CAD3BF9-CF47-4EF2-BD5B-57377868A157}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O87 - FAEL: "{35274C4D-B2CB-456F-96BE-D5ED4895CE2D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O87 - FAEL: "{70506DED-F83E-4B5A-91D3-524069F197BB}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe (.not file.)
O87 - FAEL: "{07EFDB05-8902-4245-9D8B-76869B5D91B0}" [In-None-P17-TRUE] .(...) -- C:\Users\vanessa\AppData\Local\BrowserAir\Application\BrowserAir.exe (.not file.) =>PUP.Optional.BrowserAir
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (20) - 24s
SR - Auto [2010/03/18 12:19:26] [ 113152] ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe ©
SS - Demand [2015/10/19 14:12:23] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2012/12/21 17:27:46] [ 57008] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
SR - Auto [2008/12/01 17:45:18] [ 932864] (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe ©
SR - Auto [2011/08/31 00:05:32] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe ©
SR - Auto [2010/07/30 07:51:50] [ 119632] Device Error Recovery Service (dgdersvc) . (.Devguru Co., Ltd..) - C:\Windows\System32\dgdersvc.exe ©
SS - Demand [2008/06/23 20:51:28] [ 164600] GameConsoleService (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe ©
SS - Auto [2015/08/31 20:44:03] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/08/31 20:44:03] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2012/10/04 11:39:16] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SR - Auto [2008/12/04 09:12:10] [ 94208] HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard.) - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe ©
SR - Demand [2013/02/20 13:35:32] [ 641352] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe ©
SR - Auto [2009/06/17 13:21:20] [ 73728] LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe ©
SS - Auto [2015/10/05 09:48:46] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SR - Auto [2014/03/27 14:07:18] [ 581568] Online Games Manager (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe ©
SR - Auto [2013/04/16 03:07:06] [ 39056] RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
SR - Auto [2009/04/22 22:53:22] [ 296320] TV Background Capture Service (TVBCS) (TVCapSvc) . (.Copyright 2004.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
SR - Auto [2009/04/22 22:53:22] [ 116104] TV Task Scheduler (TVTS) (TVSched) . (.Copyright 2004.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
SS - Auto [2008/11/28 18:04:24] [ 146928] Power Control [2009/06/20 20:54:37] ({55662437-DA8C-40c0-AADA-2C816A897A49}) . (.CyberLink Corp..) - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl ©
---\\ Scan Additionnel (22) - 0s
HKCU\SOFTWARE\itycCHUOs5WUsc =>PUP.Optional.CrossRider
HKCU\SOFTWARE\VkohbGTDTCk8ud16giVyobOPq9l =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZCKCfKqSbesQo3jz0nPf4 =>PUP.Optional.CrossRider
C:\Windows\Tasks\itycCHUOs5WUsc.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\VkohbGTDTCk8ud16giVyobOPq9l.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\ZCKCfKqSbesQo3jz0nPf4.job =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\itycCHUOs5WUsc =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\VkohbGTDTCk8ud16giVyobOPq9l =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\ZCKCfKqSbesQo3jz0nPf4 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0F4CA3FF-B735-4933-9295-5B5052F63BD2} =>PUP.Optional.SPointer
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\AppDataLow\Software\SpeedCheck =>PUP.Optional.SpeedCheck
C:\Program Files (x86)\6fcb1cab-aba1-444a-9c4f-fdaa667ac665 =>PUP.Optional.CrossRider
C:\Program Files (x86)\8604e57e-5945-4d73-8b8c-862d49c7952e =>PUP.Optional.CrossRider
C:\Program Files (x86)\8ca9f610-b9f7-4afe-a3b3-1325497c25a8 =>PUP.Optional.CrossRider
C:\Program Files (x86)\918916a2-e42b-4617-a406-afefa2947eda =>PUP.Optional.CrossRider
C:\Program Files (x86)\9aa9f672-7f6c-488d-bbb2-8160ba3d1f0b =>PUP.Optional.CrossRider
C:\Program Files (x86)\e89fa6e9-da9c-4d6d-9eeb-37d5d65ba570 =>PUP.Optional.CrossRider
C:\Program Files (x86)\fe792051-43c4-45c2-ae29-496784619430 =>PUP.Optional.CrossRider
C:\Program Files (x86)\Software =>PUP.Optional.Boxore
C:\ProgramData\Software =>PUP.Optional.Boxore
C:\Users\vanessa\AppData\Roaming\0F0C1V0F1L1I1P0E2V2Z1C1T1R2Z1F1C =>Adware.InstallCore
---\\ Récapitulatif des éléments trouvées sur votre station (16) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/adware-spointer/ =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpeedCheck
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.Monetization
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.Optional.ObjectBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/pup-imesh/ =>PUP.Optional.iMesh
http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr
http://www.nicolascoolman.fr/pup-sweetim/ =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/pup-searchresults/ =>PUP.Optional.SearchResults
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-optional-browserair =>PUP.Optional.BrowserAir
~ End of the scan, 21311 items in 179 seconds (1335)(0)()
~ Démarré par vanessa (Administrator) (2015/10/22 15:08:07)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\vanessa\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\vanessa\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows VISTA, 64-bit Service Pack 2 (Build 6002)
---\\ Navigateurs Internet (1) - 0s
MSIE: Internet Explorer v8.0.6001.19690
---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : WQD8Q
Windows License : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Logiciels de protection (1) - 1s
Windows Defender VISTA (Activate)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4191.504 MB (50% free)
~ System Restore: Activé (Enable)
~ System drive C: has 389 GB free of 596 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-DE-VANESSA
~ User Name: vanessa
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 389 GB free of 596 GB (System)
~ Drive D: has 1 GB free of 13 GB
---\\ Etat du Centre de Sécurité Windows (14) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 0s
[MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [3079168] ©
[MD5.10446646D128E580C46615338E74E672] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [46592] ©
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [123904] ©
[MD5.552D40E4399F7B5244C4457FDA2C04E4] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1147904] ©
[MD5.6D0773A3A65D28B663F334C90441D01A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [405504] ©
[MD5.E4C283A98F118CEC9E087EAC4E9EFB6A] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\System32\dnsapi.dll [221696] ©
[MD5.85E861D0B88DB2B54ACB0839654C09F7] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\Syswow64\dnsapi.dll [168448] ©
[MD5.7C42D832F43C74A707E11AA6BB53F6D2] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] ©
[MD5.E58A17E945593544C707423F9772EEA0] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [404992] ©
[MD5.E68D9B3A3905619732F7FE039466A623] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [20952] ©
[MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [90624] ©
[MD5.C025AA69BE3D0D25C7A2E746EF6F94FC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [79872] ©
[MD5.8B722BA35205C71E7951CDC4CDBADE19] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [97792] ©
[MD5.F942C5820205F2FB453243EDFEC82A3D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [948736] ©
[MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [64000] ©
[MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [115712] ©
[MD5.B31DB7D6E624479EA20FEE17E712A44C] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [136192] ©
[MD5.FC2C792EBDDC8E28DF939D6A92C83D61] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [248320] ©
[MD5.2ACCAA3C3C55370A32F17B3595E1A217] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1513320] ©
[MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [96768] ©
[MD5.AC7BC4D42A7E558718DFDEC599BBFC2C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [124928] ©
[MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [314368] ©
[MD5.290B6F6A0EC4FCDFC90F5CB6D7020473] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [88064] ©
[MD5.458919C8C42E398DC4802178D5FFEE27] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [94720] ©
[MD5.582F710097B46140F5A89A19A6573D4B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [267648] ©
---\\ Processus lancés (47) - 2s
[MD5.BB7A2052EBB2E31080C0DA9FA3F4EA4A] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\Windows\system32\Ati2evxx.exe [932864] [PID.200] ©
[MD5.BB7A2052EBB2E31080C0DA9FA3F4EA4A] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\Windows\system32\Ati2evxx.exe [932864] [PID.1256] ©
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.1928] ©
[MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008] [PID.1956] ©
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.1224] ©
[MD5.BC3C53000ADCD440F1B23E46DAC302EF] - (.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) -- C:\Windows\System32\dgdersvc.exe [119632] [PID.1428] ©
[MD5.83D8BE94E1CBCBE2EA8372DB1A95A159] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.2152] ©
[MD5.B3E5887095F1DE8737DA3441D29F60E4] - (.RealNetworks, Inc. - Online Games Manager.) -- C:\Program Files (x86)\Online Games Manager\ogmservice.exe [581568] [PID.2408] ©
[MD5.B2D01290C0E0465ACA54C2088E947823] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056] [PID.2540]
[MD5.4BC24AD1AF866EB21C09D837A8A017E7] - (.Copyright 2004 - CLCapSvc Module.) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320] [PID.2676]
[MD5.56196A4FD34A9985AB93531DCDC07DCB] - (.Copyright 2004 - CLSched Module.) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116104] [PID.2696]
[MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.2772] ©
[MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.2956] ©
[MD5.A168271E4AC1688C162534D412F283AE] - (.Hewlett-Packard - HP MediaSmart SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [914224] [PID.1768] ©
[MD5.596C3DD487001E237CCE431EAE6F3EA0] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1689144] [PID.1492] ©
[MD5.CCF2234A35077CA217A61C9CACC48198] - (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.476] ©
[MD5.04F13BB5995C286616D8F36392E90A73] - (.Megaupload Limited - Mega Manager.) -- C:\Program Files (x86)\Megaupload\Mega Manager\MegaManager.exe [2113024] [PID.2952]
[MD5.1D36E7F1E01C14CC534EDBDDE6ABE48A] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3365176] [PID.2472] ©
[MD5.CF03C8F6F6B0D71F6E5BCE167FCF7CA6] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [214360] [PID.2664] ©
[MD5.554A50B5310E702029D3A675459108FF] - (.Hewlett-Packard - hpsysdrv.) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768] [PID.2492] ©
[MD5.AEEE57BB436ED3981D599B86A9AEA127] - (.Panasonic Corporation - AutoStartService.) -- C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe [152048] [PID.3048] ©
[MD5.68BB0D0F31DAB67979C24218777F97EA] - (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1152296] [PID.220] ©
[MD5.309C7161F58C75EE88B07F55CA858280] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736] [PID.2548] ©
[MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [49152] [PID.1004] ©
[MD5.B6F6228AB545E2819A60C0D63A84E52E] - (.CyberLink Corp. - HP DVDSmart Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200] [PID.1544] ©
[MD5.4334F0F2DDE36F1AF1B3200F88C1E155] - (.CyberLink Corp. - HP MediaSmart TV Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe [206120] [PID.1920] ©
[MD5.916A2C4EB028604783FD5EA169236C1D] - (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe [421888] [PID.2228] ©
[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.1084] ©
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.804] ©
[MD5.225518F190EDBC37CA32197A3E94B498] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512] [PID.1296] ©
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.732] ©
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.3268] ©
[MD5.4EFFC8FF6D349E971E94B1C670C0C66A] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [641352] [PID.3320] ©
[MD5.80B8AE8E18FF57BE13FF4A5959DB0EC1] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe [184320] [PID.4016] ©
[MD5.E343E343581F6DAEAD48D412F5CE911A] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [569344] [PID.4064] ©
[MD5.33C014C1709F7222CEFF61B780EDC967] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [49152] [PID.3168] ©
[MD5.BA7D56C1F3DD385EE58ADDA14C6FFB54] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [49152] [PID.3648] ©
[MD5.AA9EF0B395097F24D289F64445B2FD2E] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [94208] [PID.4296] ©
[MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.3696] ©
[MD5.DDB1C559E36063532ED1CBC101C17DA3] - (.Hewlett-Packard Company - KBD EXE.) -- C:\Program Files (x86)\Hewlett-Packard\KBD\kbd.exe [94208] [PID.4292] ©
[MD5.7D04F8CF659D852BC8D7275BD92DC000] - (.Sun Microsystems, Inc. - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [507624] [PID.3252] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.4876] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.4276] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.2232] ©
[MD5.1CD59A498A850F58D0C01EB1E913929D] - (.Google Inc. - Google Chrome.) -- C:\Users\vanessa\AppData\Local\Google\Chrome\Application\chrome.exe [811848] [PID.2704] ©
[MD5.231AE3BE35DFA790FE484CCA354BCD15] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\vanessa\Downloads\ZHPDiag3 (1).exe [1958912] [PID.4244] ©
[MD5.8A48305D3E81C513DAC27690B5AA7FC0] - (.RealNetworks, Inc. - RealPlayer.) -- c:\program files (x86)\Real\realplayer\realplay.exe [501328] [PID.2004] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (2) - 0s
G2 - GCE: Preference [User Data\Default] [idhngdhcfkoamngbedgpaokgjbnpdiji] RealDownloader
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (4) - 1s
P2 - EXT: (. - translatordontfollowmenet.) -- C:\Users\vanessa\AppData\Roaming\Mozilla\Firefox\Profiles\c35r2w0g.default\extensions\translator@dontfollowme.net
P2 - EXT: (. - 7CEA821D3DAB4238B424BF7324531750.) -- C:\Users\vanessa\AppData\Roaming\Mozilla\Firefox\Profiles\c35r2w0g.default\extensions\{7CEA821D-3DAB-4238-B424-BF7324531750}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll ©
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ©
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (22) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Etude du fichier hosts (2) - 0s
0
~ Le fichier hôte est sain (The hosts file is clean) (2)
---\\ Browser Helper Object de navigateur (BHO) (2) - 1s
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll ©
---\\ Internet Explorer, Barre d'outil (2) - 0s
O3 - Toolbar: 0x9F389CDE1633A741809BAA305ED9D922 - [HKCU]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (...) -- (.not file.)
O3 - Toolbar: AOL Toolbar - [HKLM]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (...) -- (.not file.)
---\\ Applications lancées au démarrage du système (22) - 0s
O4 - HKLM\..\Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - HKLM\..\Run: [SmartMenu] C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (.not file.)
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKCU\..\Run: [HPAdvisor] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe ©
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe ©
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
O4 - HKCU\..\Run: [Mega Manager] . (.Megaupload Limited - Mega Manager.) -- C:\Program Files (x86)\Megaupload\Mega Manager\MegaManager.exe
O4 - HKCU\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe ©
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Windows Defender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [SmartMenu] C:\Program Files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [HPAdvisor] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [Mega Manager] . (.Megaupload Limited - Mega Manager.) -- C:\Program Files (x86)\Megaupload\Mega Manager\MegaManager.exe
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe ©
O4 - HKUS\S-1-5-21-899872469-3401814819-3539772478-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan
---\\ Protocole additionnel (27) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll ©
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©
---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe ©
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe ©
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe ©
O23 - Service: Device Error Recovery Service (dgdersvc) . (.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) - C:\Windows\System32\dgdersvc.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe ©
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: Online Games Manager (ogmservice) . (.RealNetworks, Inc. - Online Games Manager.) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe ©
O23 - Service: RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: TV Background Capture Service (TVBCS) (TVCapSvc) . (.Copyright 2004 - CLCapSvc Module.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
O23 - Service: TV Task Scheduler (TVTS) (TVSched) . (.Copyright 2004 - CLSched Module.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
O23 - Service: Power Control [2009/06/20 20:54:37] ({55662437-DA8C-40c0-AADA-2C816A897A49}) . (.CyberLink Corp. - .) - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl ©
---\\ Tâches planifiées en automatique (48) - 5s
[MD5.73851EB949B54F197380A5E757BE3B98] [APT] [1hhsKIYZTrnMar2] (...) -- C:\Users\vanessa\AppData\Roaming\wS8C6RP\3ubhsdh.exe [18432]
[MD5.8C194A201698B4B4F77D974549819D1F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core] (.Google Inc..) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA] (.Google Inc..) -- C:\Users\vanessa\AppData\Local\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.0C8A70BC3BAAF7BF69DCA495C1E1AB79] [APT] [HP Health Check] (.Hewlett-Packard.) -- c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75016] ©
[MD5.00000000000000000000000000000000] [APT] [itycCHUOs5WUsc] (...) -- C:\Users\vanessa\AppData\Roaming\itycCHUOs5WUsc.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [PCDRScheduledMaintenance] (...) -- C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe (.not file.) [0]
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealPlayerRealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealPlayerRealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] ©
[MD5.00000000000000000000000000000000] [APT] [VkohbGTDTCk8ud16giVyobOPq9l] (...) -- C:\Users\vanessa\AppData\Roaming\VkohbGTDTCk8ud16giVyobOPq9l.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [WIN-fIGbfFfEGCfFGEGbfCfE] (...) -- C:\Users\vanessa\AppData\Roaming\~gpepdhp.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-GGfIfEGCfEGbGffIfCfEGC] (...) -- C:\Users\vanessa\AppData\Roaming\~evqxnmm.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-statsAdmin] (...) -- C:\Users\vanessa\AppData\Local\Microsoft\WinU\~gdfiole.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-statsSystem] (...) -- C:\Users\vanessa\AppData\Local\Microsoft\WinU\~rvnxwgw.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [ZCKCfKqSbesQo3jz0nPf4] (...) -- C:\Users\vanessa\AppData\Roaming\ZCKCfKqSbesQo3jz0nPf4.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core.job [1034] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA.job [1086] ©
O39 - APT: itycCHUOs5WUsc - (...) -- C:\Windows\Tasks\itycCHUOs5WUsc.job [1008] =>PUP.Optional.CrossRider
O39 - APT: PCDRScheduledMaintenance - (...) -- C:\Windows\Tasks\PCDRScheduledMaintenance.job [456]
O39 - APT: VkohbGTDTCk8ud16giVyobOPq9l - (...) -- C:\Windows\Tasks\VkohbGTDTCk8ud16giVyobOPq9l.job [1034] =>PUP.Optional.CrossRider
O39 - APT: ZCKCfKqSbesQo3jz0nPf4 - (...) -- C:\Windows\Tasks\ZCKCfKqSbesQo3jz0nPf4.job [1022] =>PUP.Optional.CrossRider
O39 - APT: 1hhsKIYZTrnMar2 - (...) -- C:\Windows\System32\Tasks\1hhsKIYZTrnMar2 [3242]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3854] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3812] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000Core [3578] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-899872469-3401814819-3539772478-1000UA [3974] ©
O39 - APT: HP Health Check - (.Hewlett-Packard.) -- C:\Windows\System32\Tasks\HP Health Check [3578] ©
O39 - APT: itycCHUOs5WUsc - (...) -- C:\Windows\System32\Tasks\itycCHUOs5WUsc [4048] =>PUP.Optional.CrossRider
O39 - APT: PCDRScheduledMaintenance - (...) -- C:\Windows\System32\Tasks\PCDRScheduledMaintenance [3828]
O39 - APT: RealPlayerRealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3224] ©
O39 - APT: RealPlayerRealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3354] ©
O39 - APT: RealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3224] ©
O39 - APT: RealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-899872469-3401814819-3539772478-1000 [3354] ©
O39 - APT: VkohbGTDTCk8ud16giVyobOPq9l - (...) -- C:\Windows\System32\Tasks\VkohbGTDTCk8ud16giVyobOPq9l [4074] =>PUP.Optional.CrossRider
O39 - APT: WIN-fIGbfFfEGCfFGEGbfCfE - (...) -- C:\Windows\System32\Tasks\WIN-fIGbfFfEGCfFGEGbfCfE [3188]
O39 - APT: WIN-GGfIfEGCfEGbGffIfCfEGC - (...) -- C:\Windows\System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC [3188]
O39 - APT: WIN-statsAdmin - (...) -- C:\Windows\System32\Tasks\WIN-statsAdmin [3310]
O39 - APT: WIN-statsSystem - (...) -- C:\Windows\System32\Tasks\WIN-statsSystem [3240]
O39 - APT: ZCKCfKqSbesQo3jz0nPf4 - (...) -- C:\Windows\System32\Tasks\ZCKCfKqSbesQo3jz0nPf4 [4062] =>PUP.Optional.CrossRider
---\\ Logiciels installés (99) - 13s
O42 - Logiciel: Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0) - (.LeapFrog.) [HKLM][64Bits] -- 781745E87AFF80C0C1388CFF79D19ECAB2E9BB47 ©
O42 - Logiciel: HP Imaging Device Functions 8.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions ©
O42 - Logiciel: HP Solution Center 8.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools ©
O42 - Logiciel: HP Customer Participation Program 8.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities ©
O42 - Logiciel: HP OCR Software 8.0 - (.HP.) [HKLM][64Bits] -- HPOCR ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {0225AD21-F3E2-4916-BFF3-65D3F9052582} ©
O42 - Logiciel: HP Photosmart.All-In-One Driver Software 8.0 .A - (.HP.) [HKLM][64Bits] -- {282E5AB2-8E47-4571-B6FA-6B512555B557} ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2F72F540-1F60-4266-9506-952B21D6640D} ©
O42 - Logiciel: Driver pour mobile - (...) [HKLM][64Bits] -- {6CFADEA7-D909-405F-8B40-21DBFBBE0389}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} ©
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {78F697ED-EC97-4D8D-881D-838984EA9855} ©
O42 - Logiciel: Internet Explorer (Enable DEP) - (...) [HKLM][64Bits] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} ©
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1568AA6-5982-4AFB-A871-C68E4328BC3B} ©
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin ©
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player ©
O42 - Logiciel: AXIS Media Control Embedded - (...) [HKLM][64Bits] -- AXIS Media Control Embedded
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} ©
O42 - Logiciel: HP MediaSmart TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15} ©
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
O42 - Logiciel: Kies - (.Nom de votre société.) [HKLM][64Bits] -- InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
O42 - Logiciel: Kafeo V6.3.8 - (.Apiris.) [HKLM][64Bits] -- Kafeo_is1 ©
O42 - Logiciel: Solution de clavier multimédia amélioré - (.Hewlett-Packard.) [HKLM][64Bits] -- KBD ©
O42 - Logiciel: Dongle Sagem 760N - (...) [HKLM][64Bits] -- LIVEBOX_SAGEM_760N
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Netscape Browser (remove only) - (...) [HKLM][64Bits] -- Netscape Browser
O42 - Logiciel: Netscape Navigator (9.0.0.6) - (.Netscape.) [HKLM][64Bits] -- Netscape Navigator (9.0.0.6)
O42 - Logiciel: Online Games Manager v1.30 - (.Real Networks, Inc..) [HKLM][64Bits] -- Online Games Manager ©
O42 - Logiciel: Python 2.6 pywin32-212 - (.Python Software Foundation.) [HKLM][64Bits] -- pywin32-py2.6 ©
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 16.0 ©
O42 - Logiciel: Sandlot Games Client Services 1.2.2 - (.Sandlot Games.) [HKLM][64Bits] -- Sandlot Games Client Services 1.2.2_is1
O42 - Logiciel: My HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall © =>.WildTangent
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {0295F89F-F698-4101-9A7D-49F407EC2D82} ©
O42 - Logiciel: HP Picasso Media Center Add-In - (.Hewlett-Packard Development Company, L.P..) [HKLM][64Bits] -- {03BF5CB1-B72E-4CA6-A278-F65680F05420} ©
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {0E64B098-8018-4256-BA23-C316A43AD9B0} ©
O42 - Logiciel: LetsTunes - (.Secure Digital Services.) [HKLM][64Bits] -- {0F4CA3FF-B735-4933-9295-5B5052F63BD2} =>PUP.Optional.SPointer
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E} ©
O42 - Logiciel: Java(TM) 6 Update 29 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216014FF} ©
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} ©
O42 - Logiciel: HP Product Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {36FDBE6E-6684-462B-AE98-9A39A1B200CC} ©
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710} ©
O42 - Logiciel: Mega Manager - (.Megaupload Limited.) [HKLM][64Bits] -- {3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {3DC873BB-FFE3-46BF-9701-26B9AE371F9F} ©
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} ©
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B} ©
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {45C56AA7-ED1B-4800-A97F-EDDF3F3520B1} ©
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {47F36D92-E58E-456D-B73C-3382737E4C42} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} ©
O42 - Logiciel: ArcSoft Print Creations - Photo Book - (.ArcSoft.) [HKLM][64Bits] -- {56589DFE-0C29-4DFE-8E42-887B771ECD23} ©
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM][64Bits] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367} ©
O42 - Logiciel: HP MediaSmart TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {67626E09-5366-4480-8F1E-93FADF50CA15} ©
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6} ©
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {82EF29B1-9B60-4142-A155-0599216DD053} ©
O42 - Logiciel: ArcSoft Print Creations - (.ArcSoft.) [HKLM][64Bits] -- {85F1B81D-72C5-4357-81F9-B0A1D71DF59B} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} ©
O42 - Logiciel: HP Total Care Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {95A747E0-DF19-46CB-A622-20A0107201BD} ©
O42 - Logiciel: IZArc 3.81 - (.Ivan Zahariev.) [HKLM][64Bits] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1 ©
O42 - Logiciel: Python 2.6.1 - (.Python Software Foundation.) [HKLM][64Bits] -- {9CC89170-000B-457D-91F1-53691F85B223} ©
O42 - Logiciel: HP Recovery Manager RSS - (.Hewlet Packard Company.) [HKLM][64Bits] -- {A0640EC2-B97E-4FC1-AD14-227C9E386BB4} ©
O42 - Logiciel: Adobe Reader 9.5.5 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A95000000001} ©
O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-5464-3428-900000000004} ©
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
O42 - Logiciel: PHOTOfunSTUDIO 6.3 HD Lite Edition - (.Panasonic Corporation.) [HKLM][64Bits] -- {BBCC9BEA-BC70-4D48-BF73-97E5250FC790} ©
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: Kies - (.Nom de votre société.) [HKLM][64Bits] -- {D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}
O42 - Logiciel: muvee Reveal - (.muvee Technologies Pte Ltd.) [HKLM][64Bits] -- {D722CF4B-4B06-BF11-FDEA-BD1B319FEA57}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {E1591139-8B44-411B-A81B-D35F83A0565A} ©
O42 - Logiciel: ArcSoft Print Creations - Album Page - (.ArcSoft.) [HKLM][64Bits] -- {E6B4117F-AC59-4B13-9274-EB136E8897EE} ©
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {E79945AB-C672-48F3-8BC3-E57FE021DFF9} ©
O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM][64Bits] -- {EB21A812-671B-4D08-B974-2A347F0D8F70} ©
O42 - Logiciel: HPSSupply - (.Nom de votre société.) [HKLM][64Bits] -- {EB75DE50-5754-4F6F-875D-126EDF8E4CB3}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome ©
O42 - Logiciel: Notification de cadeaux MSN - (.Microsoft.) [HKCU][64Bits] -- Notification de cadeaux MSN ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
---\\ HKCU & HKLM Software Keys (150) - 13s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdsFix
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\ALWIL Software
HKLM\SOFTWARE\Wow6432Node\America Online
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArcSoft
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Boonty
HKLM\SOFTWARE\Wow6432Node\BVRP Software
HKLM\SOFTWARE\Wow6432Node\CCleaner
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CLSID
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Debug
HKLM\SOFTWARE\Wow6432Node\EasyBits
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard Company
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LetsTunes
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LightScribe
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Megaupload
HKLM\SOFTWARE\Wow6432Node\Megaupload Limited
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MusicNet
HKLM\SOFTWARE\Wow6432Node\Netscape
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Panasonic
HKLM\SOFTWARE\Wow6432Node\PDF Suite 2015
HKLM\SOFTWARE\Wow6432Node\PluginHp
HKLM\SOFTWARE\Wow6432Node\Preclick
HKLM\SOFTWARE\Wow6432Node\RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKLM\SOFTWARE\Wow6432Node\Samsung
HKLM\SOFTWARE\Wow6432Node\SecureDigitalServices
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\Sysinternals
HKLM\SOFTWARE\Wow6432Node\Techcity
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\Wilson WindowWare
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\WinU
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\ZalmanInstaller_otshot
HKCU\SOFTWARE\77-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AdsFix
HKCU\SOFTWARE\ALWIL Software
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArcSoft
HKCU\SOFTWARE\Astar Games
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\ATI Technologies Inc.
HKCU\SOFTWARE\BullGuard Ltd.
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\EasyBits
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GameHouse
HKCU\SOFTWARE\GAMEON
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HookNetwork
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intenium
HKCU\SOFTWARE\itycCHUOs5WUsc
HKCU\SOFTWARE\IZSoftware
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\JollyBear
HKCU\SOFTWARE\keyhole.com
HKCU\SOFTWARE\LetsTunes
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LightScribe
HKCU\SOFTWARE\Little Worlds Online
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogiGear
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Macrovision
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\MainConcept (Muvee Consumer)
HKCU\SOFTWARE\MainConcept (Muvee)
HKCU\SOFTWARE\MainConcept (Muvee2)
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\Megaupload
HKCU\SOFTWARE\MimarSinan
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Northcode Inc
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Panasonic
HKCU\SOFTWARE\PDF Suite 2015
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Test3D
HKCU\SOFTWARE\TomTom
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VkohbGTDTCk8ud16giVyobOPq9l
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\wvqQMLwVuZ
HKCU\SOFTWARE\ZCKCfKqSbesQo3jz0nPf4
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zylom
HKCU\SOFTWARE\ƒAƒvƒŠƒP[ƒVƒ‡ƒ“ ƒEƒBƒU[ƒh‚Ŷ¬‚³‚ꂽƒ[ƒJƒ‹ ƒAƒvƒŠƒP[ƒVƒ‡ƒ“
HKCU\SOFTWARE\AppDataLow\Aurigma
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\Google
HKCU\SOFTWARE\AppDataLow\Software\Macromedia
HKCU\SOFTWARE\AppDataLow\Software\MarkAny
HKCU\SOFTWARE\AppDataLow\Software\SpeedCheck =>PUP.Optional.SpeedCheck
HKCU\SOFTWARE\AppDataLow\Software\Unity
HKCU\SOFTWARE\AppDataLow\Software\Yahoo
---\\ Contenu des dossiers Programmes (506) - 24s
O43 - CFD: 2015/10/20 20:44:40 - [0] D -- C:\Program Files (x86)\6fcb1cab-aba1-444a-9c4f-fdaa667ac665 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:40 - [0] D -- C:\Program Files (x86)\8604e57e-5945-4d73-8b8c-862d49c7952e =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:41 - [0] D -- C:\Program Files (x86)\8ca9f610-b9f7-4afe-a3b3-1325497c25a8 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:41 - [0] D -- C:\Program Files (x86)\918916a2-e42b-4617-a406-afefa2947eda =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:41 - [0] D -- C:\Program Files (x86)\9aa9f672-7f6c-488d-bbb2-8160ba3d1f0b =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:42 - [] D -- C:\Program Files (x86)\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD: 2015/10/20 20:44:42 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2014/10/15 16:03:57 - [0] D -- C:\Program Files (x86)\AOL
O43 - CFD: 2012/06/17 13:47:57 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2015/10/20 10:52:36 - [] D -- C:\Program Files (x86)\ArcSoft
O43 - CFD: 2013/06/22 13:33:13 - [] D -- C:\Program Files (x86)\Ask(0).com
O43 - CFD: 2009/03/06 18:11:56 - [] D -- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 2009/08/14 16:03:21 - [] D -- C:\Program Files (x86)\Axis Communications
O43 - CFD: 2013/02/24 11:23:15 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2012/10/03 09:48:10 - [] D -- C:\Program Files (x86)\BoontyGames
O43 - CFD: 2009/08/14 15:41:51 - [] D -- C:\Program Files (x86)\CCleaner
O43 - CFD: 2015/10/19 19:09:47 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2009/03/06 18:26:31 - [] D -- C:\Program Files (x86)\Cyberlink
O43 - CFD: 2015/10/20 20:44:58 - [0] D -- C:\Program Files (x86)\e89fa6e9-da9c-4d6d-9eeb-37d5d65ba570 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/20 20:44:58 - [0] D -- C:\Program Files (x86)\fe792051-43c4-45c2-ae29-496784619430 =>PUP.Optional.CrossRider
O43 - CFD: 2013/12/11 10:46:35 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/02/09 11:38:14 - [0] D -- C:\Program Files (x86)\GUMCA41.tmp
O43 - CFD: 2010/11/09 14:33:03 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2009/03/06 18:34:20 - [] D -- C:\Program Files (x86)\Hewlett-Packard Company
O43 - CFD: 2009/07/08 08:57:25 - [] D -- C:\Program Files (x86)\HP
O43 - CFD: 2009/03/06 18:40:11 - [] D -- C:\Program Files (x86)\HP Games
O43 - CFD: 2015/10/20 10:52:37 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/10/18 19:08:54 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2013/02/24 11:28:34 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2011/03/11 09:49:37 - [] D -- C:\Program Files (x86)\IZArc
O43 - CFD: 2013/06/22 13:29:20 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2013/12/03 18:45:38 - [] D -- C:\Program Files (x86)\LeapFrog
O43 - CFD: 2010/12/17 16:11:30 - [] D -- C:\Program Files (x86)\LetsTunes
O43 - CFD: 2015/10/22 14:18:37 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2012/12/12 16:48:48 - [0] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 2012/12/02 14:31:44 - [] D -- C:\Program Files (x86)\MarkAny
O43 - CFD: 2011/02/03 10:03:31 - [] D -- C:\Program Files (x86)\Megaupload
O43 - CFD: 2011/03/26 12:40:20 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2011/07/15 10:23:05 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/14 11:45:31 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2013/06/22 09:54:30 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2013/06/22 09:54:31 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 2012/10/11 07:44:15 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2010/06/25 14:52:49 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/10/20 07:48:22 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/10/20 07:48:22 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2006/11/02 17:07:27 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/09/25 12:27:32 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2009/06/12 12:41:40 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2009/03/06 18:30:41 - [] D -- C:\Program Files (x86)\muvee Technologies
O43 - CFD: 2010/10/16 13:47:16 - [] D -- C:\Program Files (x86)\Netscape
O43 - CFD: 2009/12/09 15:22:02 - [] D -- C:\Program Files (x86)\Oberon Media
O43 - CFD: 2012/09/18 19:07:09 - [] D -- C:\Program Files (x86)\Online Games Manager
O43 - CFD: 2009/06/11 18:24:32 - [] RD -- C:\Program Files (x86)\Online Services
O43 - CFD: 2015/10/13 20:21:18 - [0] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2011/05/13 08:59:39 - [] D -- C:\Program Files (x86)\Orange
O43 - CFD: 2013/06/22 09:56:15 - [] D -- C:\Program Files (x86)\Panasonic
O43 - CFD: 2012/12/21 16:01:10 - [] D -- C:\Program Files (x86)\PC Connectivity Solution
O43 - CFD: 2009/03/06 17:56:04 - [] D -- C:\Program Files (x86)\Python
O43 - CFD: 2012/06/17 13:50:58 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2013/07/09 08:50:40 - [] D -- C:\Program Files (x86)\Real
O43 - CFD: 2013/07/09 08:50:56 - [] D -- C:\Program Files (x86)\RealNetworks
O43 - CFD: 2009/03/06 18:13:19 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2006/11/02 17:07:27 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2013/03/31 17:42:05 - [] D -- C:\Program Files (x86)\RocketPDF
O43 - CFD: 2015/01/03 17:59:37 - [] D -- C:\Program Files (x86)\Samsung
O43 - CFD: 2015/10/20 12:43:47 - [] D -- C:\Program Files (x86)\SMINST
O43 - CFD: 2015/10/20 12:17:04 - [] D -- C:\Program Files (x86)\Software =>PUP.Optional.Boxore
O43 - CFD: 2011/05/13 08:56:48 - [] D -- C:\Program Files (x86)\Techcity
O43 - CFD: 2009/03/06 18:13:29 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2012/06/07 12:59:58 - [] D -- C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 2013/03/31 17:44:22 - [] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2009/09/27 11:30:34 - [] D -- C:\Program Files (x86)\Windows Calendar
O43 - CFD: 2008/01/21 05:09:47 - [] D -- C:\Program Files (x86)\Windows Collaboration
O43 - CFD: 2009/03/07 01:42:10 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2013/02/27 12:45:24 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2012/04/12 08:05:34 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/14 18:50:42 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2006/11/02 17:07:27 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2009/09/27 11:30:34 - [] D -- C:\Program Files (x86)\Windows Photo Gallery
O43 - CFD: 2009/11/17 19:16:47 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2009/09/27 11:30:34 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2010/01/04 12:33:15 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/10/21 11:48:35 - [] D -- C:\Program Files (x86)\Yahoo!
O43 - CFD: 2015/10/21 16:45:29 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2011/02/25 09:41:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2011/02/25 09:41:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/01/08 15:45:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
O43 - CFD: 2014/01/08 15:45:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Print Creations
O43 - CFD: 2012/12/13 13:44:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2013
O43 - CFD: 2012/10/03 09:48:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BoontyGames
O43 - CFD: 2009/03/06 18:11:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
O43 - CFD: 2008/01/21 05:20:45 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades
O43 - CFD: 2009/03/06 18:40:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2013/12/11 10:46:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 2010/11/09 14:33:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2013/02/24 11:28:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2011/03/11 09:49:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IZArc
O43 - CFD: 2010/03/25 15:54:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jeux sur Orange.fr
O43 - CFD: 2014/10/22 08:28:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kafeo
O43 - CFD: 2009/06/11 18:24:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les manuels de l'utilisateur
O43 - CFD: 2010/12/17 16:11:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LetsTunes
O43 - CFD: 2010/12/01 13:25:34 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
O43 - CFD: 2006/11/02 17:36:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/22 14:18:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2012/12/12 13:32:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mega Manager
O43 - CFD: 2013/09/14 17:37:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2010/05/26 14:03:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
O43 - CFD: 2015/08/14 11:28:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2012/10/11 07:44:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2009/03/06 18:30:44 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\muvee
O43 - CFD: 2010/01/14 15:00:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My HP Games
O43 - CFD: 2009/06/16 21:06:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netscape
O43 - CFD: 2010/10/16 13:47:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netscape Navigator
O43 - CFD: 2014/07/11 14:02:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic
O43 - CFD: 2013/06/22 21:22:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Help & Tools
O43 - CFD: 2012/06/17 13:50:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2013/07/09 08:50:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
O43 - CFD: 2015/01/03 17:59:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 2015/10/20 07:50:50 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2006/11/02 17:07:25 - [] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2012/06/21 17:56:27 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2010/01/04 12:33:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2012/10/03 09:48:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom
O43 - CFD: 2010/03/12 15:50:58 - [] D -- C:\ProgramData\1912 Titanic Mystery
O43 - CFD: 2012/10/02 09:23:02 - [] D -- C:\ProgramData\2109
O43 - CFD: 2013/02/24 11:28:36 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2014/10/15 14:00:15 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/03/06 18:40:42 - [] D -- C:\ProgramData\AOL
O43 - CFD: 2013/02/24 11:25:37 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2013/02/24 11:27:29 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/10/21 20:59:30 - [] HD -- C:\ProgramData\ArcSoft
O43 - CFD: 2009/11/24 14:16:44 - [] D -- C:\ProgramData\Astar Games
O43 - CFD: 2009/03/06 18:15:58 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2014/11/23 19:09:04 - [] D -- C:\ProgramData\atjs
O43 - CFD: 2012/12/12 17:56:24 - [] D -- C:\ProgramData\Bitdefender
O43 - CFD: 2012/12/08 12:48:43 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2014/10/15 17:55:31 - [] D -- C:\ProgramData\BullGuard
O43 - CFD: 2009/06/11 18:22:56 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2011/06/12 20:42:01 - [] D -- C:\ProgramData\BVRP Software
O43 - CFD: 2013/07/29 18:07:39 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2010/08/16 17:43:31 - [] D -- C:\ProgramData\Downloaded Installations
O43 - CFD: 2010/12/17 14:24:21 - [0] D -- C:\ProgramData\eMule
O43 - CFD: 2010/08/06 13:21:55 - [] D -- C:\ProgramData\FarmFrenzy3_Arctica
O43 - CFD: 2009/06/11 18:22:57 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2010/01/12 15:43:03 - [] D -- C:\ProgramData\Flood Light Games
O43 - CFD: 2009/12/14 15:49:08 - [] D -- C:\ProgramData\GameHouse
O43 - CFD: 2010/01/18 16:08:32 - [] D -- C:\ProgramData\GAMEON
O43 - CFD: 2012/10/04 11:39:36 - [] D -- C:\ProgramData\Google
O43 - CFD: 2009/07/08 08:52:54 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2009/07/08 09:00:34 - [] D -- C:\ProgramData\HP
O43 - CFD: 2015/10/14 16:30:38 - [] D -- C:\ProgramData\HP Product Assistant
O43 - CFD: 2009/11/04 17:30:16 - [] D -- C:\ProgramData\HPSSUPPLY
O43 - CFD: 2009/12/11 15:07:04 - [] D -- C:\ProgramData\Intenium
O43 - CFD: 2010/04/30 15:27:38 - [] D -- C:\ProgramData\JollyBear
O43 - CFD: 2013/01/25 12:34:42 - [] D -- C:\ProgramData\Leapfrog
O43 - CFD: 2015/03/22 18:01:47 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2010/08/02 13:45:19 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2009/06/11 18:22:57 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2009/11/19 14:29:15 - [] D -- C:\ProgramData\Merscom
O43 - CFD: 2014/01/28 13:42:13 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/10/18 17:37:15 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2009/06/11 18:22:57 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/03/23 11:27:56 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2009/12/10 14:27:01 - [] D -- C:\ProgramData\MythPeople
O43 - CFD: 2010/02/02 15:50:11 - [] D -- C:\ProgramData\Namco
O43 - CFD: 2010/08/10 13:57:17 - [] D -- C:\ProgramData\NannyMania
O43 - CFD: 2010/03/25 15:58:46 - [] D -- C:\ProgramData\Nevosoft
O43 - CFD: 2014/10/15 16:58:04 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2011/10/25 17:12:23 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2013/06/22 10:38:48 - [] D -- C:\ProgramData\Panasonic
O43 - CFD: 2012/09/20 13:14:45 - [] D -- C:\ProgramData\PlayFirst
O43 - CFD: 2009/12/20 19:43:15 - [] D -- C:\ProgramData\PoBros
O43 - CFD: 2010/07/15 13:59:58 - [] D -- C:\ProgramData\QuickTime
O43 - CFD: 2015/10/14 16:30:35 - [] D -- C:\ProgramData\Real
O43 - CFD: 2013/07/09 08:50:52 - [] D -- C:\ProgramData\RealNetworks
O43 - CFD: 2012/12/21 15:59:20 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 2009/10/23 11:02:20 - [] D -- C:\ProgramData\Sandlot Games
O43 - CFD: 2013/11/18 20:28:37 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/04/14 10:09:02 - [] D -- C:\ProgramData\Software =>PUP.Optional.Boxore
O43 - CFD: 2010/08/04 14:36:24 - [] D -- C:\ProgramData\SpinTop Games
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2010/04/01 15:14:23 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2011/10/25 17:12:35 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 2013/04/14 09:29:22 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 2006/11/02 17:42:17 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/06/07 13:02:12 - [] D -- C:\ProgramData\TomTom
O43 - CFD: 2009/07/08 09:13:29 - [] D -- C:\ProgramData\WEBREG
O43 - CFD: 2009/11/02 15:32:29 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2012/11/11 14:44:29 - [] D -- C:\ProgramData\WindowsSearch
O43 - CFD: 2010/01/04 15:55:10 - [0] D -- C:\ProgramData\WinZip
O43 - CFD: 2012/10/02 21:10:08 - [] D -- C:\ProgramData\ZalmanInstaller_otshot
O43 - CFD: 2010/08/10 13:57:30 - [] D -- C:\ProgramData\Zylom
O43 - CFD: 2011/09/04 20:59:20 - [] HDC -- C:\ProgramData\{145B6A8D-C3A8-4F62-BF1A-E616EBBDF2B2}
O43 - CFD: 2015/10/20 07:47:05 - [] D -- C:\ProgramData\{B3C2C1CD-6B77-4A96-B670-F734AC2A1CBC}
O43 - CFD: 2013/04/23 09:06:34 - [0] D -- C:\ProgramData\߈ď菰,rogramData
O43 - CFD: 2013/04/23 09:06:35 - [0] D -- C:\ProgramData\㞸˷㊠˷䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/01 18:46:58 - [0] D -- C:\ProgramData\䠸!⁘!䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/11 08:46:21 - [0] D -- C:\ProgramData\䠸#⁘#䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/19 18:51:36 - [0] D -- C:\ProgramData\䠸$⁘$䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/10 08:14:02 - [0] D -- C:\ProgramData\䠸&⁘&䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/27 10:10:24 - [0] D -- C:\ProgramData\䠸'⁘'䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/01 19:02:06 - [0] D -- C:\ProgramData\䠸(⁘(䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/02 09:36:26 - [0] D -- C:\ProgramData\䠸.⁘.䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/21 08:58:33 - [0] D -- C:\ProgramData\䠸1⁘1䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/12 13:47:04 - [0] D -- C:\ProgramData\䠸2⁘2䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/28 12:41:06 - [0] D -- C:\ProgramData\䠸4⁘4䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/26 14:02:02 - [0] D -- C:\ProgramData\䠸6⁘6䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/03 18:02:36 - [0] D -- C:\ProgramData\䠸;⁘;䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/14 11:41:28 - [0] D -- C:\ProgramData\䠸=⁘=䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/12 17:54:11 - [0] D -- C:\ProgramData\䠸D⁘D䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/23 14:54:43 - [0] D -- C:\ProgramData\䠸K⁘K䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/03 12:42:21 - [0] D -- C:\ProgramData\䠸L⁘L䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/15 11:52:14 - [0] D -- C:\ProgramData\䠸M⁘M䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/07 10:44:47 - [0] D -- C:\ProgramData\䠸O⁘O䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/09 12:12:29 - [0] D -- C:\ProgramData\䠸T⁘T䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/12 09:43:00 - [0] D -- C:\ProgramData\䠸V⁘V䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/12 08:04:31 - [0] D -- C:\ProgramData\䠸X⁘X䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/29 11:46:28 - [0] D -- C:\ProgramData\䠸Z⁘Z䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/11 17:11:00 - [0] D -- C:\ProgramData\䠸⁘䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/08 07:29:32 - [0] D -- C:\ProgramData\䠸¥⁘¥䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/14 08:39:43 - [0] D -- C:\ProgramData\䠸·⁘·䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/08 13:14:14 - [0] D -- C:\ProgramData\䠸ç⁘ç䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/07 09:13:36 - [0] D -- C:\ProgramData\䠸è⁘è䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/03 12:39:28 - [0] D -- C:\ProgramData\䠸é⁘é䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/05 12:33:42 - [0] D -- C:\ProgramData\䠸Ë⁘Ë䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/13 08:21:12 - [0] D -- C:\ProgramData\䠸Í⁘Í䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/01 12:40:00 - [0] D -- C:\ProgramData\䠸Ó⁘Ó䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/30 12:33:34 - [0] D -- C:\ProgramData\䠸Ô⁘Ô䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/09 08:38:12 - [0] D -- C:\ProgramData\䠸õ⁘õ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/21 12:43:29 - [0] D -- C:\ProgramData\䠸×⁘×䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/24 12:38:15 - [0] D -- C:\ProgramData\䠸ø⁘ø䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/07 08:36:40 - [0] D -- C:\ProgramData\䠸Ù⁘Ù䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/07 10:51:14 - [0] D -- C:\ProgramData\䠸Û⁘Û䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/25 08:46:21 - [0] D -- C:\ProgramData\䠸ā⁘ā䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/21 10:42:11 - [0] D -- C:\ProgramData\䠸Ċ⁘Ċ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/13 10:56:25 - [0] D -- C:\ProgramData\䠸Ė⁘Ė䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/13 13:17:11 - [0] D -- C:\ProgramData\䠸ę⁘ę䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/15 17:13:59 - [0] D -- C:\ProgramData\䠸ğ⁘ğ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/13 18:33:34 - [0] D -- C:\ProgramData\䠸ī⁘ī䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/24 10:19:47 - [0] D -- C:\ProgramData\䠸Ĵ⁘Ĵ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/14 09:32:19 - [0] D -- C:\ProgramData\䠸ɔ⁘ɔ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/27 09:50:05 - [0] D -- C:\ProgramData\䠸ɖ⁘ɖ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/26 13:04:03 - [0] D -- C:\ProgramData\䠸ɛ⁘ɛ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/11 12:39:46 - [0] D -- C:\ProgramData\䠸ɩ⁘ɩ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/17 08:48:08 - [0] D -- C:\ProgramData\䠸ɨ⁘ɨ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/10 20:24:18 - [0] D -- C:\ProgramData\䠸ɲ⁘ɲ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/09 11:27:20 - [0] D -- C:\ProgramData\䠸ʃ⁘ʃ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/01 10:28:03 - [0] D -- C:\ProgramData\䠸ʈ⁘ʈ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/24 08:45:57 - [0] D -- C:\ProgramData\䠸ʊ⁘ʊ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/07 08:22:21 - [0] D -- C:\ProgramData\䠸ʋ⁘ʋ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/08 12:45:39 - [0] D -- C:\ProgramData\䠸ʒ⁘ʒ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/01 18:00:44 - [0] D -- C:\ProgramData\䠸Ƞ⁘Ƞ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/09 09:22:00 - [0] D -- C:\ProgramData\䠸ȧ⁘ȧ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/06 10:12:58 - [0] D -- C:\ProgramData\䠸ȱ⁘ȱ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/31 10:33:48 - [0] D -- C:\ProgramData\䠸ȶ⁘ȶ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/04 17:09:33 - [0] D -- C:\ProgramData\䠸ȿ⁘ȿ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/04 20:41:27 - [0] D -- C:\ProgramData\䠸ʉ⁘ʉ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/09 08:52:27 - [0] D -- C:\ProgramData\䠸Ɉ⁘Ɉ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/17 18:44:20 - [0] D -- C:\ProgramData\䠸ɚ⁘ɚ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/20 13:07:26 - [0] D -- C:\ProgramData\䠸ɟ⁘ɟ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/23 12:19:30 - [0] D -- C:\ProgramData\䠸ɤ⁘ɤ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/03 12:50:49 - [0] D -- C:\ProgramData\䠸ɥ⁘ɥ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/05 08:46:01 - [0] D -- C:\ProgramData\䠸ɦ⁘ɦ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/03 11:36:04 - [0] D -- C:\ProgramData\䠸ɧ⁘ɧ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/30 13:37:02 - [0] D -- C:\ProgramData\䠸ɭ⁘ɭ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/11 07:26:45 - [0] D -- C:\ProgramData\䠸ɰ⁘ɰ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/08/08 13:44:45 - [0] D -- C:\ProgramData\䠸ɳ⁘ɳ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/08 07:42:38 - [0] D -- C:\ProgramData\䠸ɴ⁘ɴ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/23 09:53:34 - [0] D -- C:\ProgramData\䠸ɶ⁘ɶ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/28 09:49:55 - [0] D -- C:\ProgramData\䠸ɸ⁘ɸ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/13 10:50:37 - [0] D -- C:\ProgramData\䠸ɹ⁘ɹ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/22 11:18:13 - [0] D -- C:\ProgramData\䠸ɺ⁘ɺ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/25 16:27:57 - [0] D -- C:\ProgramData\䠸ɼ⁘ɼ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/19 12:20:08 - [0] D -- C:\ProgramData\䠸ʁ⁘ʁ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/29 08:42:07 - [0] D -- C:\ProgramData\䠸ʂ⁘ʂ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/19 08:36:20 - [0] D -- C:\ProgramData\䠸ʅ⁘ʅ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/25 12:38:09 - [0] D -- C:\ProgramData\䠸ʆ⁘ʆ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/24 21:02:10 - [0] D -- C:\ProgramData\䠸ʇ⁘ʇ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/18 14:15:26 - [0] D -- C:\ProgramData\䠸ʍ⁘ʍ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/11/02 09:35:50 - [0] D -- C:\ProgramData\䠸ʏ⁘ʏ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/17 14:12:10 - [0] D -- C:\ProgramData\䠸ʐ⁘ʐ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/02 10:15:24 - [0] D -- C:\ProgramData\䠸ʓ⁘ʓ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/16 08:11:38 - [0] D -- C:\ProgramData\䠸ʔ⁘ʔ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/05 10:28:39 - [0] D -- C:\ProgramData\䠸ʕ⁘ʕ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/18 09:02:01 - [0] D -- C:\ProgramData\䠸ʙ⁘ʙ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/19 15:19:01 - [0] D -- C:\ProgramData\䠸ʛ⁘ʛ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/10/27 12:56:40 - [0] D -- C:\ProgramData\䠸ʞ⁘ʞ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/24 11:06:16 - [0] D -- C:\ProgramData\䠸ʟ⁘ʟ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/12 11:44:18 - [0] D -- C:\ProgramData\䠸ʠ⁘ʠ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/07 17:45:42 - [0] D -- C:\ProgramData\䠸ʢ⁘ʢ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/06 09:49:37 - [0] D -- C:\ProgramData\䠸ʣ⁘ʣ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/05 16:10:04 - [0] D -- C:\ProgramData\䠸ʭ⁘ʭ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/22 13:59:29 - [0] D -- C:\ProgramData\䠸ʰ⁘ʰ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/13 12:27:43 - [0] D -- C:\ProgramData\䠸ʳ⁘ʳ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/02 11:04:54 - [0] D -- C:\ProgramData\䠸ʴ⁘ʴ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/06 10:49:21 - [0] D -- C:\ProgramData\䠸ʼ⁘ʼ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/09/18 15:00:43 - [0] D -- C:\ProgramData\䠸˃⁘˃䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/04/29 08:00:46 - [0] D -- C:\ProgramData\䠸˄⁘˄䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/07/24 14:09:07 - [0] D -- C:\ProgramData\䠸˜⁘˜䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/01 11:49:14 - [0] D -- C:\ProgramData\䠸˝⁘˝䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/05/05 11:06:18 - [0] D -- C:\ProgramData\䠸ɫ⁘ɫ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/06/22 12:28:25 - [0] D -- C:\ProgramData\䠸ɽ⁘ɽ䱏䅌䕔䌽䰻彃呃偙㵅㭃䍌䵟乏呅剁㵙㭃䍌也䵕剅䍉䌽䰻彃䥔䕍䌽
O43 - CFD: 2013/12/05 17:00:25 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2013/02/24 11:27:30 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2014/01/08 15:44:54 - [] D -- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 2014/05/20 12:42:12 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2011/05/13 08:59:32 - [] D -- C:\Program Files (x86)\Common Files\France Telecom
O43 - CFD: 2009/07/08 08:54:29 - [] D -- C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 2009/07/08 08:56:53 - [] D -- C:\Program Files (x86)\Common Files\HP
O43 - CFD: 2014/01/08 15:42:41 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2013/06/22 13:53:09 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/06/22 13:30:07 - [] D -- C:\Program Files (x86)\Common Files\Java(1)
O43 - CFD: 2010/12/01 13:25:33 - [] AD -- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 2009/03/06 18:30:06 - [] AD -- C:\Program Files (x86)\Common Files\LS Getting Started
O43 - CFD: 2012/02/15 10:16:26 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/03/06 18:30:43 - [] D -- C:\Program Files (x86)\Common Files\muvee Technologies
O43 - CFD: 2009/11/18 15:15:11 - [] D -- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 2013/06/22 09:56:39 - [] D -- C:\Program Files (x86)\Common Files\Panasonic
O43 - CFD: 2014/07/11 14:02:09 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2013/07/09 08:49:57 - [] D -- C:\Program Files (x86)\Common Files\Real
O43 - CFD: 2012/12/21 15:58:55 - [] D -- C:\Program Files (x86)\Common Files\Samsung
O43 - CFD: 2009/10/23 11:02:20 - [] D -- C:\Program Files (x86)\Common Files\Sandlot Shared
O43 - CFD: 2009/06/16 21:06:15 - [] D -- C:\Program Files (x86)\Common Files\Scanner
O43 - CFD: 2006/11/02 15:33:53 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2006/11/02 15:33:53 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/10/19 19:09:47 - [0] D -- C:\Program Files (x86)\Common Files\SWF Studio
O43 - CFD: 2014/08/05 08:34:12 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 2011/11/10 14:12:59 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2009/06/14 09:07:51 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2013/07/09 08:50:37 - [] D -- C:\Program Files (x86)\Common Files\xing shared
O43 - CFD: 2015/10/20 11:59:37 - [] SHD -- C:\Users\vanessa\AppData\Roaming\.#
O43 - CFD: 2013/04/13 18:59:55 - [] D -- C:\Users\vanessa\AppData\Roaming\0F0C1V0F1L1I1P0E2V2Z1C1T1R2Z1F1C =>Adware.InstallCore
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\1oDMYQo
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\1Pyb8cA
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\4DihbmG
O43 - CFD: 2015/03/22 18:05:10 - [] D -- C:\Users\vanessa\AppData\Roaming\4Flcgzr
O43 - CFD: 2015/02/03 18:31:15 - [] D -- C:\Users\vanessa\AppData\Roaming\4gLW79Z
O43 - CFD: 2015/03/19 16:18:42 - [] D -- C:\Users\vanessa\AppData\Roaming\7QIcPLH
O43 - CFD: 2015/02/09 11:19:25 - [] D -- C:\Users\vanessa\AppData\Roaming\9e564UJ
O43 - CFD: 2015/02/21 15:06:39 - [] D -- C:\Users\vanessa\AppData\Roaming\9h9rCNP
O43 - CFD: 2015/01/21 10:44:30 - [] D -- C:\Users\vanessa\AppData\Roaming\A0qdaJn
O43 - CFD: 2015/03/13 12:18:38 - [] D -- C:\Users\vanessa\AppData\Roaming\a5FZ6IG
O43 - CFD: 2014/10/15 14:00:07 - [] D -- C:\Users\vanessa\AppData\Roaming\Adobe
O43 - CFD: 2015/03/09 10:40:28 - [] D -- C:\Users\vanessa\AppData\Roaming\akVWKWA
O43 - CFD: 2014/11/25 13:38:14 - [] D -- C:\Users\vanessa\AppData\Roaming\Am9Ab4q
O43 - CFD: 2013/02/24 11:29:31 - [] D -- C:\Users\vanessa\AppData\Roaming\Apple Computer
O43 - CFD: 2014/10/21 20:59:36 - [] D -- C:\Users\vanessa\AppData\Roaming\Arcsoft
O43 - CFD: 2009/11/30 15:48:13 - [] D -- C:\Users\vanessa\AppData\Roaming\Artogon
O43 - CFD: 2009/06/11 18:31:46 - [] D -- C:\Users\vanessa\AppData\Roaming\ATI
O43 - CFD: 2009/12/22 21:24:37 - [] D -- C:\Users\vanessa\AppData\Roaming\Awem
O43 - CFD: 2010/01/06 15:24:53 - [] D -- C:\Users\vanessa\AppData\Roaming\Big Fish Games
O43 - CFD: 2015/01/03 17:53:45 - [] D -- C:\Users\vanessa\AppData\Roaming\brH2WMY
O43 - CFD: 2014/10/15 17:04:39 - [] D -- C:\Users\vanessa\AppData\Roaming\BullGuard
O43 - CFD: 2009/12/07 14:35:26 - [] D -- C:\Users\vanessa\AppData\Roaming\cerasus.media
O43 - CFD: 2015/08/14 15:11:38 - [] D -- C:\Users\vanessa\AppData\Roaming\CyberLink
O43 - CFD: 2015/01/21 10:55:40 - [] D -- C:\Users\vanessa\AppData\Roaming\detWmag
O43 - CFD: 2015/01/07 10:19:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Dgd5bFK
O43 - CFD: 2015/02/24 13:26:26 - [] D -- C:\Users\vanessa\AppData\Roaming\dGhvgir
O43 - CFD: 2015/01/02 16:08:59 - [] D -- C:\Users\vanessa\AppData\Roaming\DkH9mPB
O43 - CFD: 2014/12/30 09:40:36 - [] D -- C:\Users\vanessa\AppData\Roaming\dtjoYWh
O43 - CFD: 2010/04/14 12:34:29 - [] D -- C:\Users\vanessa\AppData\Roaming\eMule
O43 - CFD: 2010/01/12 15:43:03 - [] D -- C:\Users\vanessa\AppData\Roaming\Flood Light Games
O43 - CFD: 2009/12/03 14:22:20 - [] D -- C:\Users\vanessa\AppData\Roaming\Friday's games
O43 - CFD: 2015/03/06 15:25:59 - [] D -- C:\Users\vanessa\AppData\Roaming\fRTKU8N
O43 - CFD: 2015/01/06 20:08:44 - [] D -- C:\Users\vanessa\AppData\Roaming\G34clsK
O43 - CFD: 2010/01/14 16:14:58 - [] D -- C:\Users\vanessa\AppData\Roaming\Go Go Gourmet
O43 - CFD: 2009/10/03 18:51:21 - [] D -- C:\Users\vanessa\AppData\Roaming\Google
O43 - CFD: 2015/01/13 20:50:01 - [] D -- C:\Users\vanessa\AppData\Roaming\h3tHDcy
O43 - CFD: 2015/03/09 11:32:18 - [] D -- C:\Users\vanessa\AppData\Roaming\hae3SOJ
O43 - CFD: 2009/06/11 18:31:05 - [] D -- C:\Users\vanessa\AppData\Roaming\hewlett-packard
O43 - CFD: 2014/11/23 19:08:35 - [] D -- C:\Users\vanessa\AppData\Roaming\Ho04fMO
O43 - CFD: 2013/06/22 16:16:48 - [] D -- C:\Users\vanessa\AppData\Roaming\HP
O43 - CFD: 2009/06/11 18:25:57 - [] D -- C:\Users\vanessa\AppData\Roaming\HP TCS
O43 - CFD: 2010/10/08 14:48:27 - [] D -- C:\Users\vanessa\AppData\Roaming\Identities
O43 - CFD: 2015/02/26 16:23:26 - [] D -- C:\Users\vanessa\AppData\Roaming\IGBQ8Dk
O43 - CFD: 2015/01/19 13:06:22 - [] D -- C:\Users\vanessa\AppData\Roaming\ikb7dlP
O43 - CFD: 2015/09/29 12:26:08 - [] D -- C:\Users\vanessa\AppData\Roaming\Image Zone Express
O43 - CFD: 2011/06/12 20:42:00 - [] D -- C:\Users\vanessa\AppData\Roaming\InstallShield
O43 - CFD: 2015/02/13 11:48:48 - [] D -- C:\Users\vanessa\AppData\Roaming\ITD3nE8
O43 - CFD: 2015/02/11 13:53:04 - [] D -- C:\Users\vanessa\AppData\Roaming\JDPvSeN
O43 - CFD: 2015/03/22 11:00:12 - [] D -- C:\Users\vanessa\AppData\Roaming\JWcSOmm
O43 - CFD: 2015/03/05 18:12:11 - [] D -- C:\Users\vanessa\AppData\Roaming\KhVQCaw
O43 - CFD: 2015/01/12 19:32:56 - [] D -- C:\Users\vanessa\AppData\Roaming\kRcA6Vq
O43 - CFD: 2015/03/02 11:21:19 - [] D -- C:\Users\vanessa\AppData\Roaming\KWUUv5N
O43 - CFD: 2015/01/20 13:01:12 - [] D -- C:\Users\vanessa\AppData\Roaming\L1QbVJp
O43 - CFD: 2015/03/13 11:27:15 - [] D -- C:\Users\vanessa\AppData\Roaming\L2XKpzS
O43 - CFD: 2014/12/31 08:56:56 - [] D -- C:\Users\vanessa\AppData\Roaming\L87T8hS
O43 - CFD: 2010/12/17 16:12:05 - [] D -- C:\Users\vanessa\AppData\Roaming\letstunes
O43 - CFD: 2015/03/04 15:32:31 - [] D -- C:\Users\vanessa\AppData\Roaming\lIQpeW8
O43 - CFD: 2009/12/09 14:59:35 - [] D -- C:\Users\vanessa\AppData\Roaming\Little Worlds Online
O43 - CFD: 2014/12/29 09:15:12 - [] D -- C:\Users\vanessa\AppData\Roaming\LOS4Enf
O43 - CFD: 2009/10/27 15:16:51 - [] D -- C:\Users\vanessa\AppData\Roaming\Macromedia
O43 - CFD: 2010/03/26 16:32:01 - [] D -- C:\Users\vanessa\AppData\Roaming\Malwarebytes
O43 - CFD: 2006/11/02 17:07:25 - [0] D -- C:\Users\vanessa\AppData\Roaming\Media Center Programs
O43 - CFD: 2011/02/03 10:05:58 - [] D -- C:\Users\vanessa\AppData\Roaming\Megaupload
O43 - CFD: 2009/11/19 14:29:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Merscom
O43 - CFD: 2014/10/15 18:18:36 - [] SD -- C:\Users\vanessa\AppData\Roaming\Microsoft
O43 - CFD: 2014/10/15 19:02:41 - [] D -- C:\Users\vanessa\AppData\Roaming\Mozilla
O43 - CFD: 2015/02/01 10:40:55 - [] D -- C:\Users\vanessa\AppData\Roaming\mqeizLs
O43 - CFD: 2011/09/04 20:59:03 - [] D -- C:\Users\vanessa\AppData\Roaming\MusicNet
O43 - CFD: 2015/03/04 15:37:26 - [] D -- C:\Users\vanessa\AppData\Roaming\MxJsSJn
O43 - CFD: 2010/02/02 15:50:11 - [] D -- C:\Users\vanessa\AppData\Roaming\Namco
O43 - CFD: 2015/02/13 12:24:56 - [] D -- C:\Users\vanessa\AppData\Roaming\ndkNGrs
O43 - CFD: 2010/10/16 13:47:40 - [] D -- C:\Users\vanessa\AppData\Roaming\Netscape
O43 - CFD: 2010/08/06 13:10:20 - [] D -- C:\Users\vanessa\AppData\Roaming\NevoSoft Games
O43 - CFD: 2015/03/19 18:31:11 - [] D -- C:\Users\vanessa\AppData\Roaming\NG99ASP
O43 - CFD: 2015/02/03 18:26:21 - [] D -- C:\Users\vanessa\AppData\Roaming\o1aHcC3
O43 - CFD: 2015/01/31 11:33:33 - [] D -- C:\Users\vanessa\AppData\Roaming\oIzDy4X
O43 - CFD: 2015/01/02 16:06:09 - [] D -- C:\Users\vanessa\AppData\Roaming\OMHBRuw
O43 - CFD: 2014/12/27 20:08:19 - [] D -- C:\Users\vanessa\AppData\Roaming\otBiGtl
O43 - CFD: 2015/01/18 12:57:03 - [] D -- C:\Users\vanessa\AppData\Roaming\oXv4iSk
O43 - CFD: 2015/01/03 18:16:30 - [] D -- C:\Users\vanessa\AppData\Roaming\PDF Software
O43 - CFD: 2015/01/03 18:23:37 - [] D -- C:\Users\vanessa\AppData\Roaming\PDF Suite 2015
O43 - CFD: 2010/08/05 14:54:38 - [] D -- C:\Users\vanessa\AppData\Roaming\Peace Craft
O43 - CFD: 2015/10/20 12:45:58 - [0] D -- C:\Users\vanessa\AppData\Roaming\PeerNetworking
O43 - CFD: 2012/09/20 13:14:45 - [] D -- C:\Users\vanessa\AppData\Roaming\PlayFirst
O43 - CFD: 2009/12/20 19:43:15 - [] D -- C:\Users\vanessa\AppData\Roaming\PoBros
O43 - CFD: 2009/11/18 15:15:49 - [] D -- C:\Users\vanessa\AppData\Roaming\Princess Isabella
O43 - CFD: 2009/07/18 09:06:59 - [] D -- C:\Users\vanessa\AppData\Roaming\Printer Info Cache
O43 - CFD: 2015/01/25 10:34:57 - [] D -- C:\Users\vanessa\AppData\Roaming\qqDR8Er
O43 - CFD: 2012/12/12 10:57:42 - [0] D -- C:\Users\vanessa\AppData\Roaming\QuickScan
O43 - CFD: 2014/10/15 09:43:01 - [] D -- C:\Users\vanessa\AppData\Roaming\Real
O43 - CFD: 2013/07/09 08:51:42 - [] D -- C:\Users\vanessa\AppData\Roaming\RealNetworks
O43 - CFD: 2015/03/22 11:41:51 - [] D -- C:\Users\vanessa\AppData\Roaming\rJEttea
O43 - CFD: 2014/12/27 20:12:37 - [] D -- C:\Users\vanessa\AppData\Roaming\rmJ93NP
O43 - CFD: 2013/04/02 17:53:33 - [] D -- C:\Users\vanessa\AppData\Roaming\RocketPDF
O43 - CFD: 2015/03/02 11:49:09 - [] D -- C:\Users\vanessa\AppData\Roaming\rwmlVmm
O43 - CFD: 2014/07/29 22:17:03 - [] D -- C:\Users\vanessa\AppData\Roaming\Samsung
O43 - CFD: 2010/02/23 15:43:16 - [] D -- C:\Users\vanessa\AppData\Roaming\SerpentOfIsis
O43 - CFD: 2013/11/18 20:28:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Skype
O43 - CFD: 2009/11/25 14:48:44 - [] D -- C:\Users\vanessa\AppData\Roaming\SprillBermudeFr
O43 - CFD: 2009/10/01 14:09:45 - [] D -- C:\Users\vanessa\AppData\Roaming\Template
O43 - CFD: 2010/03/12 15:51:48 - [] D -- C:\Users\vanessa\AppData\Roaming\TitanicMystery
O43 - CFD: 2015/01/06 20:05:30 - [] D -- C:\Users\vanessa\AppData\Roaming\toCDhXV
O43 - CFD: 2012/06/07 13:00:04 - [] D -- C:\Users\vanessa\AppData\Roaming\TomTom
O43 - CFD: 2014/12/29 09:19:00 - [] D -- C:\Users\vanessa\AppData\Roaming\Trbu9FE
O43 - CFD: 2015/01/25 10:31:52 - [] D -- C:\Users\vanessa\AppData\Roaming\TZyUqn7
O43 - CFD: 2015/02/09 12:14:56 - [] D -- C:\Users\vanessa\AppData\Roaming\uImvUdc
O43 - CFD: 2014/11/25 13:38:08 - [] D -- C:\Users\vanessa\AppData\Roaming\uxCW4Md
O43 - CFD: 2015/01/28 15:22:13 - [] D -- C:\Users\vanessa\AppData\Roaming\vkxaEG4
O43 - CFD: 2012/04/27 21:29:16 - [] D -- C:\Users\vanessa\AppData\Roaming\WildTangent
O43 - CFD: 2009/06/20 20:51:32 - [] D -- C:\Users\vanessa\AppData\Roaming\WinBatch
O43 - CFD: 2010/01/04 12:42:49 - [] D -- C:\Users\vanessa\AppData\Roaming\WinRAR
O43 - CFD: 2015/01/03 00:30:41 - [] D -- C:\Users\vanessa\AppData\Roaming\wPA0y5v
O43 - CFD: 2015/03/30 15:43:56 - [] D -- C:\Users\vanessa\AppData\Roaming\wS8C6RP
O43 - CFD: 2014/12/30 09:37:41 - [] D -- C:\Users\vanessa\AppData\Roaming\x1vbv0K
O43 - CFD: 2015/01/18 13:29:44 - [] D -- C:\Users\vanessa\AppData\Roaming\XRIEU5j
O43 - CFD: 2015/02/25 12:14:58 - [] D -- C:\Users\vanessa\AppData\Roaming\xyNBHST
O43 - CFD: 2015/03/11 10:32:40 - [] D -- C:\Users\vanessa\AppData\Roaming\Y8PbIhx
O43 - CFD: 2015/10/21 11:48:30 - [0] D -- C:\Users\vanessa\AppData\Roaming\Yahoo!
O43 - CFD: 2015/01/21 11:21:59 - [] D -- C:\Users\vanessa\AppData\Roaming\ymuhgRj
O43 - CFD: 2015/01/13 19:59:14 - [] D -- C:\Users\vanessa\AppData\Roaming\yoelTqN
O43 - CFD: 2015/03/06 23:10:01 - [] D -- C:\Users\vanessa\AppData\Roaming\yyePhL1
O43 - CFD: 2012/10/02 21:08:57 - [] D -- C:\Users\vanessa\AppData\Roaming\ZalmanInstaller_otshot
O43 - CFD: 2015/02/10 13:42:14 - [] D -- C:\Users\vanessa\AppData\Roaming\Zbs99fY
O43 - CFD: 2015/10/22 15:08:16 - [] D -- C:\Users\vanessa\AppData\Roaming\ZHP
O43 - CFD: 2015/10/20 15:45:58 - [] D -- C:\Users\vanessa\AppData\Roaming\zWs8MDJ
O43 - CFD: 2010/10/08 14:48:27 - [] D -- C:\Users\vanessa\AppData\Roaming\Zylom
O43 - CFD: 2009/12/18 15:48:08 - [] D -- C:\Users\vanessa\AppData\Roaming\Zylom 3 Days Zoo Mystery
O43 - CFD: 2015/05/01 11:18:35 - [] D -- C:\Users\vanessa\AppData\Local\Adobe
O43 - CFD: 2009/06/11 18:31:39 - [] D -- C:\Users\vanessa\AppData\Local\AOL
O43 - CFD: 2012/06/17 13:48:00 - [] D -- C:\Users\vanessa\AppData\Local\Apple
O43 - CFD: 2014/10/22 21:19:29 - [] D -- C:\Users\vanessa\AppData\Local\Apple Computer
O43 - CFD: 2009/06/11 18:23:04 - [0] SHD -- C:\Users\vanessa\AppData\Local\Application Data
O43 - CFD: 2009/06/12 16:23:28 - [] D -- C:\Users\vanessa\AppData\Local\Apps
O43 - CFD: 2014/01/08 15:45:03 - [] D -- C:\Users\vanessa\AppData\Local\ArcSoft
O43 - CFD: 2009/06/11 18:31:46 - [] D -- C:\Users\vanessa\AppData\Local\ATI
O43 - CFD: 2013/10/09 09:22:20 - [] D -- C:\Users\vanessa\AppData\Local\avgchrome
O43 - CFD: 2015/10/20 20:43:03 - [0] D -- C:\Users\vanessa\AppData\Local\DBFF6CA-4992-43E3-9940-A5637C65354A
O43 - CFD: 2009/06/12 16:23:37 - [0] D -- C:\Users\vanessa\AppData\Local\Deployment
O43 - CFD: 2013/04/13 19:00:38 - [0] D -- C:\Users\vanessa\AppData\Local\Downloaded Installations
O43 - CFD: 2015/03/23 11:15:35 - [] D -- C:\Users\vanessa\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2010/12/17 14:24:21 - [] D -- C:\Users\vanessa\AppData\Local\eMule
O43 - CFD: 2015/10/20 14:35:47 - [] D -- C:\Users\vanessa\AppData\Local\ESET
O43 - CFD: 2015/10/21 13:10:37 - [] D -- C:\Users\vanessa\AppData\Local\Google
O43 - CFD: 2009/06/11 18:31:07 - [] D -- C:\Users\vanessa\AppData\Local\Hewlett-Packard
O43 - CFD: 2009/06/11 18:23:04 - [0] SHD -- C:\Users\vanessa\AppData\Local\Historique
O43 - CFD: 2010/04/30 15:27:38 - [] D -- C:\Users\vanessa\AppData\Local\JollyBear
O43 - CFD: 2015/10/21 11:48:34 - [] D -- C:\Users\vanessa\AppData\Local\Microsoft
O43 - CFD: 2009/06/12 12:37:58 - [0] D -- C:\Users\vanessa\AppData\Local\Microsoft Help
O43 - CFD: 2015/03/23 11:28:04 - [] D -- C:\Users\vanessa\AppData\Local\Mozilla
O43 - CFD: 2010/10/16 13:47:40 - [] D -- C:\Users\vanessa\AppData\Local\Netscape
O43 - CFD: 2009/11/22 20:10:12 - [] D -- C:\Users\vanessa\AppData\Local\Oberon Games
O43 - CFD: 2013/06/22 10:38:47 - [] D -- C:\Users\vanessa\AppData\Local\Panasonic
O43 - CFD: 2009/07/01 08:55:13 - [] D -- C:\Users\vanessa\AppData\Local\Seven Zip
O43 - CFD: 2015/10/22 15:08:44 - [] D -- C:\Users\vanessa\AppData\Local\Temp
O43 - CFD: 2009/06/11 18:23:04 - [0] SHD -- C:\Users\vanessa\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/06/07 13:00:04 - [] D -- C:\Users\vanessa\AppData\Local\TomTom
O43 - CFD: 2012/11/25 17:03:13 - [] D -- C:\Users\vanessa\AppData\Local\Unity
O43 - CFD: 2009/07/08 09:00:41 - [] D -- C:\Users\vanessa\AppData\Local\VirtualStore
O43 - CFD: 2014/03/12 19:48:12 - [] D -- C:\Users\vanessa\AppData\Local\Windows Live
O43 - CFD: 2012/02/23 11:59:19 - [] D -- C:\Users\vanessa\AppData\Local\Zylom Games
O43 - CFD: 2008/01/21 05:20:45 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/06/11 18:30:36 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2009/08/14 15:41:43 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2013/01/15 16:20:02 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2009/07/27 18:53:07 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2010/03/26 16:28:50 - [0] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jeux sur Orange.fr
O43 - CFD: 2008/01/21 05:20:45 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/21 11:46:01 - [] RD -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2010/01/04 12:33:15 - [] D -- C:\Users\vanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Extension d'environnement du périphérique d.) -- C:\Windows\System32\EhStorShell.dll ©
---\\ Liste des pilotes du système (81) - 59s
O58 - SDL:2006/11/02 11:43:52 A . (...) -- C:\Windows\System32\drivers\1394bus.sys [65024]
O58 - SDL:2008/01/21 04:46:53 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [486456] ©
O58 - SDL:2008/01/21 04:46:54 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [342584] ©
O58 - SDL:2008/01/21 04:46:54 A . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\System32\drivers\adpu160m.sys [126520] ©
O58 - SDL:2008/01/21 04:47:27 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [185912] ©
O58 - SDL:2008/01/21 04:46:50 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15976] ©
O58 - SDL:2008/01/21 04:46:52 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [90680] ©
O58 - SDL:2008/01/21 04:47:00 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [91192] ©
O58 - SDL:2007/05/16 19:43:52 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrxu6.sys [1039360] ©
O58 - SDL:2008/12/01 19:15:04 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [5000192] ©
O58 - SDL:2008/01/21 04:47:30 A . (...) -- C:\Windows\System32\drivers\bdasup.sys [15616]
O58 - SDL:2006/09/18 23:30:15 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2006/09/18 23:30:15 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2006/11/02 10:43:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [86528] ©
O58 - SDL:2006/09/18 23:30:18 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2006/09/18 23:30:18 A . (...) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2006/09/19 13:42:33 A . (...) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2012/08/17 10:18:10 A . (...) -- C:\Windows\System32\drivers\btblan.sys [40320]
O58 - SDL:2009/10/20 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224] ©
O58 - SDL:2009/10/20 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224] ©
O58 - SDL:2008/01/21 04:46:50 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [18024] ©
O58 - SDL:2010/07/30 07:51:52 A . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\Windows\System32\drivers\dgderdrv.sys [20552] ©
O58 - SDL:2006/11/02 13:50:06 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [88168] ©
O58 - SDL:2008/01/21 04:46:56 A . (...) -- C:\Windows\System32\drivers\E1G6032E.sys [146176]
O58 - SDL:2008/01/21 04:46:59 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [397368] ©
O58 - SDL:2010/07/13 17:58:12 A . (.LeapFrog - FLY Fusion USB Driver.) -- C:\Windows\System32\drivers\FlyUsb.sys [24576] ©
O58 - SDL:2012/08/21 14:01:20 A . (...) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:2012/09/04 13:49:40 A . (.HS Coporation - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ghsnet.sys [162816]
O58 - SDL:2014/03/17 10:29:40 A . (...) -- C:\Windows\System32\drivers\ghsser.sys [126080]
O58 - SDL:2012/08/29 18:24:10 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys [145696] ©
O58 - SDL:2013/07/03 04:22:30 A . (...) -- C:\Windows\System32\drivers\hidparse.sys [31616]
O58 - SDL:2008/01/21 04:46:59 A . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\drivers\HpCISSs.sys [47672] ©
O58 - SDL:2008/01/21 04:46:59 A . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\drivers\iaStorV.sys [290872] ©
O58 - SDL:2006/11/02 14:02:39 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44648] ©
O58 - SDL:2006/11/02 14:02:09 A . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\drivers\iteatapi.sys [37480] ©
O58 - SDL:2006/11/02 14:02:09 A . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\drivers\iteraid.sys [37480] ©
O58 - SDL:2008/01/21 04:49:00 A . (...) -- C:\Windows\System32\drivers\ksthunk.sys [20864]
O58 - SDL:2008/01/21 04:46:51 A . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [113720] ©
O58 - SDL:2008/01/21 04:46:56 A . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [105016] ©
O58 - SDL:2008/01/21 04:47:01 A . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [113720] ©
O58 - SDL:2012/06/20 11:51:34 A . (.HandSet Incorporated - HandSet CDROM Filter.) -- C:\Windows\System32\drivers\massfilter_hs.sys [20232]
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/10/05 09:50:10 A . (...) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272]
O58 - SDL:2015/10/22 14:56:53 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] ©
O58 - SDL:2008/01/21 04:46:59 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35896] ©
O58 - SDL:2008/01/21 04:46:56 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [438328] ©
O58 - SDL:2006/11/02 14:02:24 A . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\Mraid35x.sys [39016] ©
O58 - SDL:2008/01/21 04:49:52 A . (...) -- C:\Windows\System32\drivers\mskssrv.sys [11008]
O58 - SDL:2006/11/02 11:37:30 A . (...) -- C:\Windows\System32\drivers\mspclock.sys [7040]
O58 - SDL:2006/11/02 11:37:30 A . (...) -- C:\Windows\System32\drivers\mspqm.sys [6656]
O58 - SDL:2008/01/21 04:49:52 A . (...) -- C:\Windows\System32\drivers\mstee.sys [7936]
O58 - SDL:2015/10/05 09:50:14 A . (...) -- C:\Windows\System32\drivers\mwac.sys [64216]
O58 - SDL:2006/11/02 14:03:03 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51816] ©
O58 - SDL:2008/01/21 04:46:54 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [128056] ©
O58 - SDL:2008/01/21 04:46:54 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [54328] ©
O58 - SDL:2006/11/02 11:43:56 A . (...) -- C:\Windows\System32\drivers\ohci1394.sys [72192]
O58 - SDL:2006/09/07 17:49:04 A . (...) -- C:\Windows\System32\drivers\PS2.sys [21504]
O58 - SDL:2010/03/19 03:00:00 N . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [55856] ©
O58 - SDL:2008/01/21 04:46:52 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1221176] ©
O58 - SDL:2006/11/02 13:50:27 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [124008] ©
O58 - SDL:2008/11/18 21:32:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [1566112] ©
O58 - SDL:2008/08/06 18:26:08 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS6 64-bit Driver.) -- C:\Windows\System32\drivers\Rtlh64.sys [174592] ©
O58 - SDL:2006/09/30 01:51:44 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2008/01/21 04:47:26 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [78392] ©
O58 - SDL:2014/06/16 08:01:38 A . (...) -- C:\Windows\System32\drivers\ssudbus.sys [110336]
O58 - SDL:2014/06/16 08:01:38 A . (...) -- C:\Windows\System32\drivers\ssudmdm.sys [206080]
O58 - SDL:2009/04/11 07:39:31 A . (...) -- C:\Windows\System32\drivers\stream.sys [68224]
O58 - SDL:2006/11/02 14:02:52 A . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\drivers\symc8xx.sys [49256] ©
O58 - SDL:2006/11/02 14:02:37 A . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_hi.sys [44648] ©
O58 - SDL:2006/11/02 14:02:47 A . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_u3.sys [48232] ©
O58 - SDL:2010/06/24 15:00:14 A . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\System32\drivers\TFsExDisk.sys [16392] ©
O58 - SDL:2008/01/21 04:46:56 A . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\drivers\uliahci.sys [284728] ©
O58 - SDL:2006/11/02 13:50:54 A . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win200.) -- C:\Windows\System32\drivers\ulsata.sys [148072] ©
O58 - SDL:2008/01/21 04:46:52 A . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\System32\drivers\ulsata2.sys [174696] ©
O58 - SDL:2012/12/13 14:50:36 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784] ©
O58 - SDL:2009/04/11 07:39:40 A . (...) -- C:\Windows\System32\drivers\USBCAMD2.sys [32640]
O58 - SDL:2013/06/29 04:25:14 A . (...) -- C:\Windows\System32\drivers\usbd.sys [7552]
O58 - SDL:2013/07/12 11:19:36 A . (...) -- C:\Windows\System32\drivers\usbvideo.sys [168960]
O58 - SDL:2008/01/21 04:46:50 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [18024] ©
O58 - SDL:2008/01/21 04:47:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [149048] ©
O58 - SDL:2006/11/02 11:40:24 A . (...) -- C:\Windows\System32\drivers\wacompen.sys [26624]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (6) - 5s
O61 - LFC: 2015/10/22 08:44:18 A . (.SosVirus.) -- C:\Users\vanessa\Downloads\AdsFix.exe [2719744]
O61 - LFC: 2015/10/20 11:59:16 A . (..) -- C:\Users\vanessa\Downloads\bitdefender_antivirus.exe [7207408]
O61 - LFC: 2015/10/22 08:44:18 A . (.SosVirus.) -- C:\Users\vanessa\Desktop\AdsFix.exe [2719744]
O61 - LFC: 2015/10/22 15:06:36 A . (..) -- C:\Users\vanessa\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/10/15 13:20:48 A . (..) -- C:\Users\vanessa\AppData\Local\Google\Chrome\User Data\PepperFlash\19.0.0.226\pepflashplayer.dll [16493256]
O61 - LFC: 2015/10/22 14:56:16 A . (..) -- C:\Users\vanessa\AppData\Local\ATI\ACE\Manifest.Bin [15219]
---\\ Associations Shell Spawning (9) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de démarrage Internet (17) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (19) - 23s
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.description", "iWebar"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledUrls.expi[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledWithHash.[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_notBundledArr_.e[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_notBundledArr_.v[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_regBundledWithSo[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.name", "iWebar V2.1"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.publisher", "iWebar"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a9321b2762c2e4c5fbd04b8118e512707c0c8a2d632754caca0b252e936311db9com32850.32850.name", "Object Browser"); =>PUP.Optional.ObjectBrowser
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.a9321b2762c2e4c5fbd04b8118e512707c0c8a2d632754caca0b252e936311db9com32850.32850.publisher", "Object Browser"[...] =>PUP.Optional.ObjectBrowser
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_bundledUrls.expi[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_bundledWithHash.[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_notBundledArr_.e[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_notBundledArr_.v[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_regBundledWithSo[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.name", "CinemaPlus-3.2c"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.publisher", "Cinema Plus"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [vanessa - c35r2w0g.default] user_pref("extensions.enabledAddons", "defsearchp%40gmail.com:1.0.0.1039,deskCutv2%40gmail.com:0.0.10,d4db60df25f14dae9dd18%40185c[...] =>PUP.Optional.DeskCut
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/
---\\ Enumère les services démarrés par Svchost (31) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [26624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [85504] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [49664] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [49664] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [179712] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [719360] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [462848] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [446976] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [98304] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [309760] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [88064] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [61952] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\Windows\System32\ipnathlp.dll [342016] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [318976] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Termi.) -- C:\Windows\System32\termsrv.dll [548352] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2428952] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1081856] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [225280] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [28672] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [45056] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [154112] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [37888] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [86528] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [74752] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [855552] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [221696] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Termi.) -- C:\Windows\System32\SessEnv.dll [74752] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [103424] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [178688] ©
---\\ Liste des exceptions du parefeu Windows (56) - 3s
O87 - FAEL: "{D14156DB-45A3-478A-BCB0-FDE7201127F0}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{AB74550E-04D0-4BD1-998C-6FA309B150CE}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{882A590C-9B33-4861-9A04-FEDF29A510D8}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartMusic.exe (.not file.)
O87 - FAEL: "{CB2F6E0F-EF71-4C09-AEDE-DEDEB03CD06D}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartPhoto.exe (.not file.)
O87 - FAEL: "{B865F4AF-57B8-48A0-9EE8-6763F548F86B}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartVideo.exe (.not file.)
O87 - FAEL: "{844528F6-7F8C-44E8-B21C-569A1AD4E966}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\TSMAgent.exe (.not file.)
O87 - FAEL: "{2D4002F3-8125-466A-AD95-4EF53C965999}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\CLML\CLMLSvc.exe (.not file.)
O87 - FAEL: "{03B4673F-4887-4069-A2A5-AD9C4F3CFD8D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartMusic.exe (.not file.)
O87 - FAEL: "{67AAA0DE-1589-457A-95CF-0AD6D4E5E93A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartPhoto.exe (.not file.)
O87 - FAEL: "{252A312B-6735-4498-9A7A-19D3E81EEA0C}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartVideo.exe (.not file.)
O87 - FAEL: "{7A55CD63-8633-4440-B318-24364553A91A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\TSMAgent.exe (.not file.)
O87 - FAEL: "{B75E4312-315C-47E5-A899-726D8E407DF5}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\CLML\CLMLSvc.exe (.not file.)
O87 - FAEL: "{37BFC9F7-7921-43A9-857A-4FFD7BDAB2D5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{E913858C-E190-4E48-B1B4-9E848B9E542A}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{AEAA2E67-21AC-422D-9947-1032F94C4651}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)
O87 - FAEL: "TCP Query User{6902838C-3D78-4C88-AF30-9A826402A8F0}C:\program files (x86)\emule\emule.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "UDP Query User{86AC8D12-5A23-4E97-882A-101FBD77D9B4}C:\program files (x86)\emule\emule.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "{6B6A41BF-83A6-46DC-9B8A-92F5EE6865E3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\LimeWire\LimeWire.exe (.not file.)
O87 - FAEL: "{9F675B7E-279F-4A06-A716-F83E8F48F8D7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\LimeWire\LimeWire.exe (.not file.)
O87 - FAEL: "TCP Query User{6AE69076-768A-4F09-B1DE-9C844021C832}C:\program files (x86)\imesh applications\imesh\imesh.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\imesh applications\imesh\imesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "UDP Query User{C5485932-FE44-4E5B-8417-BC250CF999C2}C:\program files (x86)\imesh applications\imesh\imesh.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\imesh applications\imesh\imesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{86D3EA06-2F54-4E19-A0BF-C3F038D24D1F}" [In-None-P6-TRUE] .(...) -- E:\data\eSKernel.exe (.not file.)
O87 - FAEL: "{97C90A31-C489-4A3D-B60E-CE9F4336FFBC}" [In-None-P17-TRUE] .(...) -- E:\data\eSKernel.exe (.not file.)
O87 - FAEL: "{1BBD8787-C831-46A0-AAF4-FFE03698B9B1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{CC1C6BBE-7C13-4544-BF0E-9F75BE8998B6}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{52AD2E06-B65B-4F59-9D55-3EF55B944000}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{A3A6717F-8750-4681-A399-68EEAF9237F1}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{F13FB351-8A86-43E3-8B8C-876BE58B4BE4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{59AD693C-C176-4433-AAD5-856BAABDD3AA}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{7929B983-AEF9-40AF-AF7A-CBA641DB5F50}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{3F001C3F-92EC-497E-A246-605CF57C181E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.iMesh
O87 - FAEL: "{B92DD127-EE24-4D60-A3CD-0F42D553E375}" [In-None-P6-TRUE] .(...) -- C:\Users\vanessa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZX9YV1AK\SweetImSetup[1].exe (.not file.) =>PUP.Optional.SweetIM
O87 - FAEL: "{BE591CD3-38E7-47B9-80E7-485E0BE8FDBA}" [In-None-P17-TRUE] .(...) -- C:\Users\vanessa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZX9YV1AK\SweetImSetup[1].exe (.not file.) =>PUP.Optional.SweetIM
O87 - FAEL: "{481B6059-0B5D-4BEE-ABBF-E6CCAD32353D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{452A5F36-956D-47EE-B533-9EA36FE9B4BB}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.) =>PUP.Optional.Datamngr
O87 - FAEL: "{DBD83785-A9AB-4CB9-A57A-D4068BB8D926}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe (.not file.) =>PUP.Optional.SearchResults
O87 - FAEL: "{FF5FEE24-2D72-4C48-8C1B-0737D2AA0057}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe (.not file.) =>PUP.Optional.SearchResults
O87 - FAEL: "{798AD8C4-1C7B-435A-AAC5-E08E4580A2D7}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\TAGMonitor.exe (.not file.)
O87 - FAEL: "{F8F053FC-B3D3-496C-AC7E-5E23D16A647D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\TAGMonitor.exe (.not file.)
O87 - FAEL: "{CCEB1E45-B158-413D-A20C-2F28EB25D176}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\LeapFrogConnectTag.exe (.not file.)
O87 - FAEL: "{8B5000CD-D2A6-425A-AEEB-64259F2442B4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect Tag\bin\LeapFrogConnectTag.exe (.not file.)
O87 - FAEL: "{7FC13A03-4FF5-45D9-AD74-41C41762696C}" [In-None-P17-FALSE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{B8C93CE0-01C5-4360-8A6F-82D504FF2DA8}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QP.exe (.not file.)
O87 - FAEL: "{BE63974F-AAF3-4C19-B7F6-9C171E76577D}" [In-None-P17-FALSE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{4128B7C2-31A5-440A-8F41-5BCB0312AC62}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\TV\QPService.exe (.not file.)
O87 - FAEL: "{BBA1319C-438F-4C04-BED8-5BA2A711F95F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\dtuser.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{614329D1-6ADF-4D29-9F8C-35F80AD8D23B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\dtuser.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{B0871ACC-E393-447C-A277-ED59999CF35C}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{637771AB-0F02-4912-8AAA-C4D7346BBA27}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\mystarttb\ToolbarCleaner.exe (.not file.) =>PUP.Optional.StartSearch
O87 - FAEL: "{9FA0F64C-451A-4DD9-A2EA-CF65B38EECBA}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\EmailNotifier\EmailNotifier.exe (.not file.)
O87 - FAEL: "{E71D56CC-63C4-46FB-A7FF-823FD7729EC2}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\EmailNotifier\EmailNotifier.exe (.not file.)
O87 - FAEL: "{6C1C7DA7-FAF5-40F2-AC42-50F694F03AE8}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O87 - FAEL: "{3CAD3BF9-CF47-4EF2-BD5B-57377868A157}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O87 - FAEL: "{35274C4D-B2CB-456F-96BE-D5ED4895CE2D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O87 - FAEL: "{70506DED-F83E-4B5A-91D3-524069F197BB}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe (.not file.)
O87 - FAEL: "{07EFDB05-8902-4245-9D8B-76869B5D91B0}" [In-None-P17-TRUE] .(...) -- C:\Users\vanessa\AppData\Local\BrowserAir\Application\BrowserAir.exe (.not file.) =>PUP.Optional.BrowserAir
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (20) - 24s
SR - Auto [2010/03/18 12:19:26] [ 113152] ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe ©
SS - Demand [2015/10/19 14:12:23] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2012/12/21 17:27:46] [ 57008] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
SR - Auto [2008/12/01 17:45:18] [ 932864] (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe ©
SR - Auto [2011/08/31 00:05:32] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe ©
SR - Auto [2010/07/30 07:51:50] [ 119632] Device Error Recovery Service (dgdersvc) . (.Devguru Co., Ltd..) - C:\Windows\System32\dgdersvc.exe ©
SS - Demand [2008/06/23 20:51:28] [ 164600] GameConsoleService (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe ©
SS - Auto [2015/08/31 20:44:03] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/08/31 20:44:03] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2012/10/04 11:39:16] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SR - Auto [2008/12/04 09:12:10] [ 94208] HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard.) - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe ©
SR - Demand [2013/02/20 13:35:32] [ 641352] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe ©
SR - Auto [2009/06/17 13:21:20] [ 73728] LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe ©
SS - Auto [2015/10/05 09:48:46] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SR - Auto [2014/03/27 14:07:18] [ 581568] Online Games Manager (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe ©
SR - Auto [2013/04/16 03:07:06] [ 39056] RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
SR - Auto [2009/04/22 22:53:22] [ 296320] TV Background Capture Service (TVBCS) (TVCapSvc) . (.Copyright 2004.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
SR - Auto [2009/04/22 22:53:22] [ 116104] TV Task Scheduler (TVTS) (TVSched) . (.Copyright 2004.) - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
SS - Auto [2008/11/28 18:04:24] [ 146928] Power Control [2009/06/20 20:54:37] ({55662437-DA8C-40c0-AADA-2C816A897A49}) . (.CyberLink Corp..) - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl ©
---\\ Scan Additionnel (22) - 0s
HKCU\SOFTWARE\itycCHUOs5WUsc =>PUP.Optional.CrossRider
HKCU\SOFTWARE\VkohbGTDTCk8ud16giVyobOPq9l =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZCKCfKqSbesQo3jz0nPf4 =>PUP.Optional.CrossRider
C:\Windows\Tasks\itycCHUOs5WUsc.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\VkohbGTDTCk8ud16giVyobOPq9l.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\ZCKCfKqSbesQo3jz0nPf4.job =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\itycCHUOs5WUsc =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\VkohbGTDTCk8ud16giVyobOPq9l =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\ZCKCfKqSbesQo3jz0nPf4 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0F4CA3FF-B735-4933-9295-5B5052F63BD2} =>PUP.Optional.SPointer
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\AppDataLow\Software\SpeedCheck =>PUP.Optional.SpeedCheck
C:\Program Files (x86)\6fcb1cab-aba1-444a-9c4f-fdaa667ac665 =>PUP.Optional.CrossRider
C:\Program Files (x86)\8604e57e-5945-4d73-8b8c-862d49c7952e =>PUP.Optional.CrossRider
C:\Program Files (x86)\8ca9f610-b9f7-4afe-a3b3-1325497c25a8 =>PUP.Optional.CrossRider
C:\Program Files (x86)\918916a2-e42b-4617-a406-afefa2947eda =>PUP.Optional.CrossRider
C:\Program Files (x86)\9aa9f672-7f6c-488d-bbb2-8160ba3d1f0b =>PUP.Optional.CrossRider
C:\Program Files (x86)\e89fa6e9-da9c-4d6d-9eeb-37d5d65ba570 =>PUP.Optional.CrossRider
C:\Program Files (x86)\fe792051-43c4-45c2-ae29-496784619430 =>PUP.Optional.CrossRider
C:\Program Files (x86)\Software =>PUP.Optional.Boxore
C:\ProgramData\Software =>PUP.Optional.Boxore
C:\Users\vanessa\AppData\Roaming\0F0C1V0F1L1I1P0E2V2Z1C1T1R2Z1F1C =>Adware.InstallCore
---\\ Récapitulatif des éléments trouvées sur votre station (16) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/adware-spointer/ =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpeedCheck
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.Monetization
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.Optional.ObjectBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/pup-imesh/ =>PUP.Optional.iMesh
http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr
http://www.nicolascoolman.fr/pup-sweetim/ =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/pup-searchresults/ =>PUP.Optional.SearchResults
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-optional-browserair =>PUP.Optional.BrowserAir
~ End of the scan, 21311 items in 179 seconds (1335)(0)()