Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.3.5.35 par Nicolas Coolman, Update du 07/02/2013
Run by Cyril at 11/07/2017 23:04:50
State : Problème connexion internet
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v9.11.14393.0
MFIE: Mozilla Firefox 47.0.2 v47.0.2
---\\ Windows Product Information
~ Langage: Français
Windows 8 Home Premium Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8HVX7
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: AMD64 Family 18 Model 1 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3562 MB (42% free)
System Restore: Activé (Enable)
System drive C: has 420 GB (61%) free of 683 GB
---\\ Logged in mode
~ Computer Name: FRITZ
~ User Name: Cyril
~ All Users Names: rugbystars24, rugbyplayer24, rugbyman24, postgres, HomeGroupUser$, DefaultAccount, Cyril, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Cyril\AppData\Roaming\
~ %Desktop% : C:\Users\Cyril\Desktop\
~ %Favorites% : C:\Users\Cyril\Favorites\
~ %LocalAppData% : C:\Users\Cyril\AppData\Local\
~ %StartMenu% : C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 420 Go of 683 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 15 Go)
E:\ CD-ROM drive (Not Inserted)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.679D17F8CDB938C7100D7A647953677E] - (.Microsoft Corporation - Explorateur Windows.) (.28/04/2017 - 01:34:21.) -- C:\Windows\Explorer.exe [4674360]
[MD5.99A19C9A74E2F9820E501DCE77F84F70] - (.Microsoft Corporation - Application de démarrage de Windows.) (.16/07/2016 - 12:42:27.) -- C:\Windows\System32\Wininit.exe [304240]
[MD5.B9727FA7889DD6FCE4F7C27F8879A7F4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.28/04/2017 - 00:37:12.) -- C:\Windows\System32\wininet.dll [2895872]
[MD5.B2151FE002A8D3F41E2DF935F260E3A8] - (.Microsoft Corporation - Application douverture de session Windows.) (.28/04/2017 - 00:39:18.) -- C:\Windows\System32\Winlogon.exe [673792]
[MD5.9600B7F2F89DE60A80D13DE42F672834] - (.Microsoft Corporation - Bibliothèque de licences.) (.16/07/2016 - 12:42:19.) -- C:\Windows\System32\sppcomapi.dll [402432]
[MD5.323AA1953ED9C01E23F740FA891FE064] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.15/10/2016 - 05:21:41.) -- C:\Windows\system32\Drivers\AFD.sys [584032]
[MD5.A10F989A812B57B9695F6C305907C9C6] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.16/07/2016 - 12:41:53.) -- C:\Windows\system32\Drivers\atapi.sys [28512]
[MD5.F8FB51B9EF6372610E9B31A1D86B62FC] - (.Microsoft Corporation - CD-ROM File System Driver.) (.16/07/2016 - 12:42:35.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.613D0137C269187FA298A157E3D14A18] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.16/07/2016 - 12:41:53.) -- C:\Windows\system32\Drivers\Cdrom.sys [173056]
[MD5.4BC21E937E9F9F408672D2C2CBE4A153] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.04/03/2017 - 07:30:12.) -- C:\Windows\system32\Drivers\DfsC.sys [145408]
[MD5.10E3515FE5DBA6656FA62C29342EC4A1] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.16/07/2016 - 12:41:52.) -- C:\Windows\system32\Drivers\HDAudBus.sys [83456]
[MD5.B54B30992620C97230013A74461C8517] - (.Microsoft Corporation - Pilote de port i8042.) (.16/07/2016 - 12:41:54.) -- C:\Windows\system32\Drivers\i8042prt.sys [114176]
[MD5.F1DAECC3B3D6399875D4F10529D6A77C] - (.Microsoft Corporation - IP Network Address Translator.) (.16/07/2016 - 12:42:39.) -- C:\Windows\system32\Drivers\IpNat.sys [212480]
[MD5.D559FF28B1AD9B1E15A4186E785E61F6] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.04/03/2017 - 08:08:07.) -- C:\Windows\system32\Drivers\MRxSmb.sys [450400]
[MD5.6FEBB0A847FFD5F057B9AC8889F1B9A7] - (.Microsoft Corporation - MBT Transport driver.) (.16/07/2016 - 12:42:35.) -- C:\Windows\system32\Drivers\netBT.sys [279040]
[MD5.8DB6A6B731CEC9046CD8CA0267EC5679] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.28/04/2017 - 01:52:51.) -- C:\Windows\system32\Drivers\ntfs.sys [2255712]
[MD5.6B81BF7853D161DB8AC62CD8B9C2DE6B] - (.Microsoft Corporation - Pilote de port parallèle.) (.16/07/2016 - 12:41:53.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.17E565710172ED71B8531D8822E1C5D1] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.16/07/2016 - 12:42:39.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [104960]
[MD5.7135785C21CA79D270D11037C43D3F19] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.17/07/2016 - 23:45:21.) -- C:\Windows\system32\Drivers\rdpdr.sys [177152]
[MD5.A7C267671EDDF066E8CFBF897BC4B626] - (.Microsoft Corporation - TDI Translation Driver.) (.03/06/2017 - 10:59:25.) -- C:\Windows\system32\Drivers\tdx.sys [118112]
[MD5.BF2546583BB75F01DDA60A7921DFB230] - (.Microsoft Corporation - Volume Shadow Copy driver.) (.16/07/2016 - 12:42:35.) -- C:\Windows\system32\Drivers\volsnap.sys [391520]
~ Scan Generic Processes in 00mn 01s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/98
~ Mes musiques (My Musics) : 1/4
~ Mes Videos (My Videos) : 1/61
~ Mes Favoris (My Favorites) : 1/11
~ Mes Documents (My Documents) : 1/4938
~ Mon Bureau (My Desktop) : 2/11747
~ Menu demarrer (Programs) : 1/70
~ Scan Hidden Files in 01mn 21s
---\\ Processus lancés
[MD5.57C78F5EB4D7D6427F5A43137683A245] - (.Microsoft Corporation - Shell Infrastructure Host.) -- C:\Windows\System32\sihost.exe [78848] [PID.5728]
[MD5.0AF24553D8D4C581B7E2462269FF97AA] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352] [PID.5756]
[MD5.1E03C94933E088D9FAB00B49D46CC370] - (.Microsoft Corporation - Runtime Broker.) -- C:\Windows\System32\RuntimeBroker.exe [33616] [PID.5604]
[MD5.0E1853D3339D2963D2BC6AC1FDC1C811] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\System32\taskhostw.exe [88392] [PID.2840]
[MD5.7850D58EE55539B703EA883D375D2D70] - (.Microsoft Corporation - Windows Shell Experience Host.) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe [1653600] [PID.6696]
[MD5.EBC4935445CA5A3D4D898076642EC618] - (.Microsoft Corporation - Search and Cortana application.) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe [10652512] [PID.7132]
[MD5.5C430B3C872BD82E728ABB8C1821689F] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [1128448] [PID.6552]
[MD5.4A3936F2305D1764CE93727AF5A11ECE] - (.FileOpen Systems Inc. - FileOpen Broker.) -- C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [900992] [PID.6408]
[MD5.41306253189928EAB6FB2B30937853E3] - (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files (x86)\Hercules\Deluxe Optical Glass\XtrCtrl.exe [2999080] [PID.7016]
[MD5.C5D30E88C97825CF0652B60C42F103AD] - (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDrive.exe [1555664] [PID.6524]
[MD5.54EA8A3DCBF0AD3E968063A0E5451B3D] - (.Hammer & Chisel, Inc. - Discord.) -- C:\Users\Cyril\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304] [PID.2764]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.1884]
[MD5.CE99AA11D0274BE5BDEF3991508852E9] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [9080768] [PID.6636]
[MD5.27B736DF17A786B222F4E8B149AE9B64] - (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624] [PID.7108]
[MD5.CB8A6B1FC6F8D1BFBD61C543B4E9F105] - (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.exe [1298456] [PID.3860]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.7232]
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Users\Cyril\AppData\Local\Google\Chrome\Application\chrome.exe [1027928] [PID.6668]
[MD5.08B5115039E9852FCAA9C5B2A45B59F7] - (.Microsoft Corporation - Standalone Updater.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2803408] [PID.10184]
[MD5.2856445077AC4AF54983CE780E431DAE] - (.CANON INC. - Canon Quick Menu Updater.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.exe [1089064] [PID.10124]
[MD5.5AF5988C947F34FC478E0054DFD5D5F9] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5660160] [PID.6456]
~ Scan Processes Running in 00mn 05s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Cyril\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Cyril\AppData\Roaming\Mozilla\Firefox\Profiles\dxj7isnw.default\prefs.js
M3 - MFPP: Plugins - [Cyril] -- C:\Users\Cyril\AppData\Roaming\Mozilla\Firefox\Profiles\dxj7isnw.default\searchplugins\orange.xml
M2 - MFEP: prefs.js [Cyril - dxj7isnw.default\battlefieldheroespatcher@ea.com] [] Battlefield Heroes Updater v5.0.203.0 (.EA Digital Illusions CE AB.)
M2 - MFEP: prefs.js [Cyril - dxj7isnw.default\menu_contextuel_orange@orange.fr] [] Menu contextuel Orange v1.3 (.FranceTelecom-Orange Copyright 2008-2009.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.16.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.50907.0.) -- c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.14393.1198 (rs1_release_sec.170427-1353)) -- C:\Windows\SysWOW64\ieframe.dll
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Canon Easy-WebPrint EX BHO [64Bits] - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (...) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (.not file.)
O2 - BHO: PasswordBox Helper [64Bits] - {5DB69B97-934B-451D-94DB-32EF802A01CD} . (.PasswordBox, Inc. - Password Manager.) -- C:\Program Files (x86)\PasswordBox\Application\pbbtn.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: AVG SafeGuard toolbar [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} . (...) -- C:\Program Files (x86)\AVG SafeGuard toolbar\19.7.0.632\AVG SafeGuard toolbar_toolbar.dll (.not file.)
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.HP Inc. - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} Clé orpheline
O3 - Toolbar: AVG SafeGuard toolbar [64Bits] - [HKLM]{95B7759C-8C7F-4BF1-B163-73684A933233} . (...) -- C:\Program Files (x86)\AVG SafeGuard toolbar\19.7.0.632\AVG SafeGuard toolbar_toolbar.dll
O3 - Toolbar: Canon Easy-WebPrint EX [64Bits] - [HKLM]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [FileOpenBroker] . (.FileOpen Systems Inc. - FileOpen Broker.) -- C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
O4 - HKLM\..\Run: [CamserviceOG] . (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files (x86)\Hercules\Deluxe Optical Glass\XtrCtrl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Google Update Core.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [EPSON SX130 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.exe
O4 - HKCU\..\Run: [Orange Installer] . (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O4 - HKCU\..\Run: [OrangeInside] . (...) -- C:\Users\Cyril\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
O4 - HKCU\..\Run: [MyDriveConnect.exe] . (.TomTom - TomTom MyDrive Connect.) -- C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [Discord] . (.Hammer & Chisel, Inc. - Discord.) -- C:\Users\Cyril\AppData\Local\Discord\app-0.0.297\Discord.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [IJNetworkScannerSelectorEX] . (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
O4 - HKLM\..\Wow6432Node\Run: [CanonQuickMenu] . (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Google Update] . (.Google Inc. - Google Update Core.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [EPSON SX130 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Orange Installer] . (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [OrangeInside] . (...) -- C:\Users\Cyril\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [TomTomHOME.exe] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [MyDriveConnect.exe] . (.TomTom - TomTom MyDrive Connect.) -- C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Discord] . (.Hammer & Chisel, Inc. - Discord.) -- C:\Users\Cyril\AppData\Local\Discord\app-0.0.297\Discord.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Assistance Livebox.lnk . (.Orange.) -- C:\Program Files (x86)\Orange\Assistance Livebox\AssistanceLivebox.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Discord.lnk . (.GitHub.) -- C:\Users\Cyril\AppData\Local\Discord\Update.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Dropbox.lnk . (.Dropbox, Inc..) -- C:\Users\Cyril\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\e-methode Espagnol.exe - Raccourci.lnk . (...) -- C:\Program Files (x86)\e-methode Espagnol\e-methode Espagnol.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\HP Support Assistant.lnk . (.HP Inc..) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\PokerStars.fr.lnk . (.Rational Intellectual Holdings Ltd..) -- C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Turbopoker.lnk . (.Playtech.) -- C:\Users\Cyril\AppData\Local\Turbopoker\casino.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\WinaChat.lnk . (...) -- C:\Users\Cyril\Winamax\WinaChat\WinaChat.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Winamax Poker.lnk . (...) -- C:\Users\Cyril\Winamax\Winamax Poker\Winamax Poker.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\µTorrent.lnk . (.BitTorrent Inc..) -- C:\Users\Cyril\AppData\Roaming\uTorrent\uTorrent.exe
~ Scan Global Startup in 00mn 02s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 [64Bits] - {25510184-5A38-4A99-B273-DCA8EEF6CD08} . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Frame
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim daffectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{03b69add-3f8e-4cad-a798-a377f3553513}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{635974cf-c978-46e1-bda3-1abfd20cd948}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B01F65E3-4A3B-4787-B29E-3974C90146F9}: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{f671b50e-a274-4f07-a5da-7ba5176f6d3a}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{03b69add-3f8e-4cad-a798-a377f3553513}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS1\Services\Tcpip\..\{635974cf-c978-46e1-bda3-1abfd20cd948}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B01F65E3-4A3B-4787-B29E-3974C90146F9}: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{f671b50e-a274-4f07-a5da-7ba5176f6d3a}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Se (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: oem8.inf (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Dedicarz Service (Dedicarz Service) . (.Pas de propriétaire - DedicarzService.) - C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.exe
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe
O23 - Service: FileOpen Manager Service (FileOpenManagerSvc) . (.FileOpen Systems Inc. - FileOpen Manager Service.) - C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Client Services (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: oem16.inf (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extende (IJPLMSVC) . (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Survey.) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe
O23 - Service: Mise à jour automatique - Index Educatio (MajIndexEducationService) . (.Index Education - Pas de description.) - C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: PasswordBox (PasswordBox) . (.PasswordBox, Inc. - PasswordBox Service.) - C:\Program Files (x86)\PasswordBox\pbbtnService.exe
O23 - Service: PostgreSQL Database Server 8.3 (pgsql-8.3) . (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) - C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
~ Scan Services in 00mn 26s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core1d2373f8a1800dd.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA1d2373f8b6a16d8.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForCyril.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForFRITZ$.job
[MD5.AFC094098B6D856151002051E31867D8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.BB4CEE22CFE1C259F5C4279349EB879C] [APT] [AssistanceLivebox] (.Orange.) -- C:\Program Files (x86)\Orange\Assistance Livebox\AssistanceLivebox.exe
[MD5.68DDCB629A7F2C5A3D2392F8177A3CD0] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.A1F58FFF448E4099297D6EE0641D4D0E] [APT] [DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core1d2373f8a1800dd] (.Dropbox, Inc..) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
[MD5.A1F58FFF448E4099297D6EE0641D4D0E] [APT] [DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA1d2373f8b6a16d8] (.Dropbox, Inc..) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
[MD5.4654B14F6E7CD4C70892F3017F5FDF0C] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities\initialize.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core1d258534805db9] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA1d258534ae384b] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.3DA2B70325A5947E981387DB9A9BD843] [APT] [HPCeeScheduleForCyril] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.24A63F38DF514E6774A850A0710760A4] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [reveil] (...) -- C:\Users\Cyril\Downloads\Lilly Wood & The Prick - Prayer in C (Robin Schulz remix) [Clip officiel].mp3"
[MD5.24A63F38DF514E6774A850A0710760A4] [APT] [ServicePlan] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.00000000000000000000000000000000] [APT] [SidebarExecute] (...) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4E1E297D-B427-407A-87CC-4F8891205877}] (...) -- C:\Program Files (x86)\PokerTracker 3\PokerTracker.exe (.not file.)
[MD5.8F225A8A05DABEBEB136564E065BF0C2] [APT] [{55347926-C8A7-4533-B778-4220AEB4319B}] (...) -- C:\Users\Cyril\jeux\wwp_vista_win7_fix_v1.4.exe
[MD5.A205551E7BA8580D2C0FF896A4D79FA9] [APT] [{5E301D36-0EE2-4FA5-8D8E-B1057592079D}] (.Macrovision Corporation.) -- C:\Program Files (x86)\InstallShield Installation Information\{B1549CC1-EB81-4E7C-9C7C-8B97CD9FD37A}\setup.exe
[MD5.00000000000000000000000000000000] [APT] [{5E3F1E98-0A77-4763-AE96-708B1C2D7C92}] (...) -- C:\Program Files (x86)\PokerStrategy.com\PokerStrategy.com Elephant\Elephant.exe (.not file.)
[MD5.83518A48EDF258DBA87B042943D4CC24] [APT] [{C666FE70-1E31-4AA3-900D-E01DD6E21F3B}] (...) -- C:\Users\Cyril\Downloads\b1028fr.exe
[MD5.00000000000000000000000000000000] [APT] [{CA69A264-E026-4C04-BDDE-11727AF1BE83}] (...) -- C:\Users\Cyril\Desktop\poker\SitNGo.Wizard.v1.0.1.106\installer.exe (.not file.)
[MD5.0D003B0DEE8D9FE10CFD82BB6A526205] [APT] [{D6B9347C-D235-4E90-A1AB-D33F5BB03F3A}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe
[MD5.00000000000000000000000000000000] [APT] [{E9E30CFC-46D0-484D-A799-F598B163F19B}] (...) -- C:\Users\Cyril\Downloads\pbsetup.exe (.not file.)
[MD5.A31156B8D80A68E8F4354C63E0747BEB] [APT] [{EE769130-2D4B-411C-8DB9-DDAD295E56B2}] (...) -- C:\Users\Cyril\Downloads\eMule0.50a-Installer(1).exe
[MD5.221EC6DA9D52F3555B84C876CD40E33B] [APT] [Product Configurator] (.HP Inc..) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
[MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [orangeinside] (...) -- C:\Users\Cyril\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
[MD5.CB60C7455AC362CAA58458A613908B7F] [APT] [orangeinstaller] (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
~ Scan Scheduled Task in 00mn 15s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\filecrypt.sys (FileCrypt) . (.Microsoft Corporation - Windows sandboxing and encryption filter.) - C:\Windows\System32\drivers\filecrypt.sys
O41 - Driver: C:\Windows\System32\drivers\gpuenergydrv.sys (GpuEnergyDrv) . (.Microsoft Corporation - GPU Energy Kernel Driver.) - C:\Windows\System32\drivers\gpuenergydrv.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbios.sys (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\drivers\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys
~ Scan Drivers in 00mn 01s
---\\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp
O42 - Logiciel: AMD System Monitor - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {C1C82DC9-1547-4038-8F0A-C069F0B7F2ED}
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {942836D4-5395-652B-F1E8-A7C5B039910C}
O42 - Logiciel: AVG SafeGuard toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG SafeGuard toolbar
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {52E225FC-FCB4-41F7-837B-6E37FB05BD7B}
O42 - Logiciel: Adobe Flash Player 26 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader X (10.1.16) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824225037}
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Agatha Christie - Peril at End House - (.WildTangent.) [HKLM][64Bits] -- WT089362
O42 - Logiciel: AirDroid 3.4.2.0 - (.Sand Studio.) [HKLM][64Bits] -- AirDroid
O42 - Logiciel: Algobox - (.Pas de propriétaire.) [HKLM][64Bits] -- Algobox
O42 - Logiciel: Assistance Livebox - (.Orange.) [HKLM][64Bits] -- Assistance Livebox
O42 - Logiciel: Avast Antivirus Gratuit - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: Battlefield Heroes - (.EA Digital illusions.) [HKLM][64Bits] -- {8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089453
O42 - Logiciel: Big Rig Europe - (.WildTangent.) [HKLM][64Bits] -- WT089497
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT089308
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Bounce Symphony - (.WildTangent.) [HKLM][64Bits] -- WT087330
O42 - Logiciel: Broadcom 2070 Bluetooth 3.0 - (.Broadcom Corporation.) [HKLM][64Bits] -- {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}
O42 - Logiciel: Broadcom 802.11 Wireless LAN Adapter - (.Broadcom Corporation.) [HKLM][64Bits] -- Broadcom 802.11 Wireless LAN Adapter
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Cake Mania - (.WildTangent.) [HKLM][64Bits] -- WT089359
O42 - Logiciel: Camtasia Studio 8 - (.TechSmith Corporation.) [HKLM][64Bits] -- {5303CFB5-D635-44F0-A94B-9611E81F07C4}
O42 - Logiciel: Canon Easy-WebPrint EX - (.Canon Inc..) [HKLM][64Bits] -- Easy-WebPrint EX
O42 - Logiciel: Canon IJ Network Scanner Selector EX - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_Scanner_Selector_EX
O42 - Logiciel: Canon IJ Network Tool - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_UTILITY
O42 - Logiciel: Canon IJ Scan Utility - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Scan_Utility
O42 - Logiciel: Canon Inkjet Printer/Scanner/Fax Extended Survey Program - (.Canon Inc..) [HKLM][64Bits] -- CANONIJPLM100
O42 - Logiciel: Canon MG2100 series MP Drivers - (.Pas de propriétaire.) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2100_series
O42 - Logiciel: Canon MG5700 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series
O42 - Logiciel: Canon MG5700 series On-screen Manual - (.Canon Inc..) [HKLM][64Bits] -- Canon MG5700 series On-screen Manual
O42 - Logiciel: Canon My Printer - (.Canon Inc..) [HKLM][64Bits] -- CanonMyPrinter
O42 - Logiciel: Canon Quick Menu - (.Canon Inc..) [HKLM][64Bits] -- CanonQuickMenu
O42 - Logiciel: Card Detector for Huawei E1752 and E1552 - (.Pas de propriétaire.) [HKLM][64Bits] -- CardDetectorHUAWEI1752_1552
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {0F69006A-CD2F-4C12-A786-C659C8F98423}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089454
O42 - Logiciel: Crazy Chicken Kart 2 - (.WildTangent.) [HKLM][64Bits] -- WT089492
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT087536
O42 - Logiciel: Discord - (.Hammer & Chisel, Inc..) [HKCU][64Bits] -- Discord
O42 - Logiciel: Downloader - (.Pas de propriétaire.) [HKLM][64Bits] -- Downloader
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: EPSON SX130 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX130 Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: Energy Star Digital Logo - (.Hewlett-Packard.) [HKLM][64Bits] -- {BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}
O42 - Logiciel: Enregistrement utilisateur de Canon MG5700 series - (.?Canon Inc..) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG5700 series
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {A02D7029-C4EF-44C1-9FD4-C0D3CA518113}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {8A17C27D-0325-400C-8AA9-DAA6B16CBD74}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT087361
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WT089328
O42 - Logiciel: FileOpen Client (x64) - (.FileOpen Systems, Inc..) [HKLM][64Bits] -- {829C209A-7450-485B-B969-594CF3ABF2FE}
O42 - Logiciel: Fishdom - (.WildTangent.) [HKLM][64Bits] -- WT089493
O42 - Logiciel: GeoGebra 5 - (.International GeoGebra Institute.) [HKLM][64Bits] -- GeoGebra 5
O42 - Logiciel: GeoGebraPrim - (.International GeoGebra Institute.) [HKCU][64Bits] -- GeoGebraPrim
O42 - Logiciel: Glary Utilities 2.56.0.1822 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {F6430171-B86B-4639-839E-374913E7911D}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Guide d'utilisation EPSON SX130 Series - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON SX130 Series Useg
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {B4EFABD5-5744-4ED8-BA47-C1704BB684D2}
O42 - Logiciel: HP Auto - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
O42 - Logiciel: HP Client Services - (.Hewlett-Packard.) [HKLM][64Bits] -- {2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
O42 - Logiciel: HP Connection Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {795AADBF-58C2-42D0-B779-E730702A247E}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {C9EF1AAF-B542-41C8-A537-1142DA5D4AEC}
O42 - Logiciel: HP DVB-T TV Tuner 8.0.64.43 - (.Pas de propriétaire.) [HKLM][64Bits] -- HP DVB-T TV Tuner
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {C1C43BC8-2460-4E01-9628-332E04523BDC}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP On Screen Display - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED1BD69A-07E3-418C-91F1-D856582581BF}
O42 - Logiciel: HP Power Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E44578C7-4667-4124-8BC2-1161BCA54978}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {EB58480C-0721-483C-B354-9D35A147999F}
O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {210A03F5-B2ED-4947-B27E-516F50CBB292}
O42 - Logiciel: HP Setup Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {AE856388-AFAD-4753-81DF-D96B19D0A17C}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {5D335F5D-4185-4AD8-8E6D-64D8D4AB80D7}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {79C54A05-F146-4EA0-8A70-D4EFE6181E52}
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED5CE45D-842B-4C18-A002-87E16EA39BB3}
O42 - Logiciel: Hercules Deluxe Optical Glass - (.Hercules.) [HKLM][64Bits] -- {E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.2.3 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: Holdem Manager 2 - (.Pas de propriétaire.) [HKLM][64Bits] -- HoldemManager2
O42 - Logiciel: ICM Trainer - (.PokerStrategy.) [HKLM][64Bits] -- {47EA4DDF-FD99-46B3-846C-9F3F315268AD}
O42 - Logiciel: ICM Trainer Light - (.PokerStrategy.com.) [HKLM][64Bits] -- {3C630BB8-692D-4495-A0BD-40336CD51F99}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: INDEX EDUCATION - Client PRONOTE 2016 - (.Index Education.) [HKLM][64Bits] -- {7FD9CC8D-A976-401D-ABA5-A57774C05D8D}
O42 - Logiciel: Internet Everywhere - (.Pas de propriétaire.) [HKLM][64Bits] -- {BEWINTERNET-FR-DMGP-V2}.UninstallSuite
O42 - Logiciel: Java 7 Update 13 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217013FF}
O42 - Logiciel: Java(TM) 6 Update 24 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416024FF}
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF}
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT087490
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Mah Jong Medley - (.WildTangent.) [HKLM][64Bits] -- WT087393
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002}
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 47.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 47.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyDriveConnect 4.0.3.2180 - (.TomTom.) [HKLM][64Bits] -- MyDriveConnect
O42 - Logiciel: Mystery P.I. - The London Caper - (.WildTangent.) [HKLM][64Bits] -- WT089460
O42 - Logiciel: Namco All-Stars PAC-MAN - (.WildTangent.) [HKLM][64Bits] -- WT089484
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A}
O42 - Logiciel: OpenVPN 2.3.2-I003 - (.Pas de propriétaire.) [HKLM][64Bits] -- OpenVPN
O42 - Logiciel: Orange Inside - (.Orange.) [HKCU][64Bits] -- Orange Inside
O42 - Logiciel: Orange Installer - (.Orange.) [HKLM][64Bits] -- Orange Installer
O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager
O42 - Logiciel: PartyPoker.fr - (.PartyFrance.) [HKLM][64Bits] -- PartyPokerFr
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT087394
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WT089458
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr
O42 - Logiciel: PokerStrategy.com Equilab - (.PokerStrategy.com.) [HKLM][64Bits] -- {0E9389C0-0E8A-4174-A430-CFAFF29CC3A7}
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT087396
O42 - Logiciel: PostgreSQL 8.3 - (.PostgreSQL Global Development Group.) [HKLM][64Bits] -- {B823632F-3B72-4514-8861-B961CE263224}
O42 - Logiciel: Pro Cycling Manager - Saison 2012 version 1.4.0.0 - (.Cyanide.) [HKLM][64Bits] -- Pro Cycling Manager 2012_is1
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {DBCD5E64-7379-4648-9444-8A6558DCB614}
O42 - Logiciel: Revo Uninstaller 1.94 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: SitNGo Wizard - (.In The Money LLC.) [HKLM][64Bits] -- SitNGoWizard
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype 7.36 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {3B7E914A-93D5-4A29-92BB-AF8C3F66C431}
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT087510
O42 - Logiciel: Synaptics TouchPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: TAP-Windows 9.9.2 - (.Pas de propriétaire.) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 9
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {0E09BE17-EDEA-42CA-8974-42A587F51510}
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: Turbopoker - (.Pas de propriétaire.) [HKCU][64Bits] -- Turbopoker.fr
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM][64Bits] -- WT087513
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM][64Bits] -- {4412F224-3849-4461-A3E9-DEEF8D252790}
O42 - Logiciel: WMV9/VC-1 Video Playback - (.ATI Technologies Inc..) [HKLM][64Bits] -- {CB1A2FE6-2BDF-DECC-C91B-4E5FFD59C5D6}
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WT087519
O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: WinRAR 4.01 (64 bits) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Winamax - (.Winamax.) [HKCU][64Bits] -- Winamax 3.10.0
O42 - Logiciel: Windows 10 Update and Privacy Settings - (.Microsoft Corporation.) [HKLM][64Bits] -- {4DFCD818-036A-4229-A67D-CF17DC461D92}
O42 - Logiciel: Xcas 1.1.2 - Computer Algebra System - (.Pas de propriétaire.) [HKLM][64Bits] -- Xcas
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089455
O42 - Logiciel: e-méthode Espagnol - (.ASSIMIL SAS.) [HKLM][64Bits] -- AnMacPc-3902
O42 - Logiciel: e-méthode Espagnol - (.ASSIMIL SAS.) [HKLM][64Bits] -- {9284AB41-733D-62F4-211C-E036B21C490C}
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVG SafeGuard toolbar]
[HKCU\Software\Ace Poker Solutions]
[HKCU\Software\Adobe]
[HKCU\Software\AnyMP4 Studio]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Canon]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PasswordBox]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\ArcSoft]
[HKCU\Software\BitTorrent]
[HKCU\Software\Bouygues]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cyanide]
[HKCU\Software\CyberLink]
[HKCU\Software\Cygwin]
[HKCU\Software\DAMN]
[HKCU\Software\DT Soft]
[HKCU\Software\Digital River]
[HKCU\Software\Disc Soft]
[HKCU\Software\DropboxUpdate]
[HKCU\Software\EPSON]
[HKCU\Software\FileOpen]
[HKCU\Software\Geoplace]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\GrandMasterChess3]
[HKCU\Software\Hercules]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HoldemManager]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IPCameraDSFilterRTSP]
[HKCU\Software\IPCameraDSFilter]
[HKCU\Software\In The Money]
[HKCU\Software\Index Education]
[HKCU\Software\JavaSoft]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Nilings]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opera Software]
[HKCU\Software\OrangeInside]
[HKCU\Software\PASG]
[HKCU\Software\PTECH]
[HKCU\Software\PartyFrance]
[HKCU\Software\Piriform]
[HKCU\Software\PokerStrategy]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Samsung]
[HKCU\Software\Skype]
[HKCU\Software\Smartbar]
[HKCU\Software\Software]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\TeamViewer]
[HKCU\Software\TechSmith]
[HKCU\Software\TomTom]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Valve]
[HKCU\Software\Visicom Media Inc]
[HKCU\Software\Widcomm]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\XHEO INC]
[HKCU\Software\Xcas]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\kde.org]
[HKCU\Software\wLite]
[HKCU\Software\web disco]
[HKCU\Software\webdisco]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\AVG SafeGuard toolbar]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Broadcom]
[HKLM\Software\CBSTEST]
[HKLM\Software\CXT]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\Dell]
[HKLM\Software\DisplayLink]
[HKLM\Software\DivX]
[HKLM\Software\Dolby]
[HKLM\Software\EPSON]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\Hercules]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\HoldemManager2]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\Index Education]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OpenVPN-GUI]
[HKLM\Software\Partner]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SONIX]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\WOW6432Node]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AdobeFlashPlayerUpdate]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Aeria games]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Avast]
[HKLM\Software\Wow6432Node\BZFlag2.4.2]
[HKLM\Software\Wow6432Node\Bouygues]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Cyanide]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\DAMN]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\FRANCE TELECOM]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hercules Technologies]
[HKLM\Software\Wow6432Node\Hercules]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\IPCameraDSFilterRTSP]
[HKLM\Software\Wow6432Node\IPCameraDSFilter]
[HKLM\Software\Wow6432Node\In The Money]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LogMeInRescueCallingCard]
[HKLM\Software\Wow6432Node\LogMeInRescueCallingCards]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Notepad]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\OpenVPN-GUI]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\Piriform]
[HKLM\Software\Wow6432Node\PokerStrategy]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PostgreSQL]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SharingMax]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\TechSmith]
[HKLM\Software\Wow6432Node\TomTom]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WOW6432Node]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Win32 Services]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\ZTEUSBDriverFlag]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\pgAdmin III]
[HKLM\Software\Wow6432Node\wLite]
[HKLM\Software\Wow6432Node\webtogo]
[HKLM\Software\XHEO INC]
[HKLM\Software\ZTEUSBDriverFlag]
~ Scan Softwares in 00mn 02s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 09/09/2012 - 23:18:42 - [173,312] ---AD C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
O43 - CFD: 08/09/2012 - 14:55:44 - [459,339] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 09/06/2017 - 13:36:45 - [31,754] ----D C:\Program Files (x86)\AirDroid
O43 - CFD: 28/11/2011 - 23:00:46 - [35,885] ----D C:\Program Files (x86)\Algobox
O43 - CFD: 17/06/2011 - 00:05:16 - [1,396] ----D C:\Program Files (x86)\AMD
O43 - CFD: 16/06/2011 - 23:48:06 - [2,335] ---AD C:\Program Files (x86)\AMD APP
O43 - CFD: 26/09/2016 - 23:10:36 - [104,899] ---AD C:\Program Files (x86)\ATI Technologies
O43 - CFD: 25/10/2013 - 23:33:35 - [0,602] ---AD C:\Program Files (x86)\Bonjour
O43 - CFD: 22/09/2012 - 14:35:30 - [0,049] ----D C:\Program Files (x86)\Bouygues Telecom
O43 - CFD: 14/01/2014 - 03:57:56 - [0] ----D C:\Program Files (x86)\BZFlag2.4.2_32Bit
O43 - CFD: 13/01/2016 - 17:54:08 - [78,019] ----D C:\Program Files (x86)\Canon
O43 - CFD: 10/03/2012 - 14:04:30 - [30,236] ----D C:\Program Files (x86)\CardDetector
O43 - CFD: 11/07/2017 - 22:09:30 - [414,406] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 28/09/2014 - 17:49:46 - [-1889,979] ----D C:\Program Files (x86)\Cyanide
O43 - CFD: 29/04/2013 - 01:19:23 - [1,412] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 30/08/2011 - 13:43:47 - [0,200] ----D C:\Program Files (x86)\DAMN NFO Viewer
O43 - CFD: 03/10/2015 - 15:23:18 - [0] ----D C:\Program Files (x86)\Delta
O43 - CFD: 16/01/2012 - 23:50:37 - [1,235] ----D C:\Program Files (x86)\DivX
O43 - CFD: 31/07/2014 - 23:02:24 - [189,997] ----D C:\Program Files (x86)\Downloader
O43 - CFD: 12/08/2016 - 23:00:08 - [76,971] ---AD C:\Program Files (x86)\e-methode Espagnol
O43 - CFD: 24/08/2011 - 15:07:46 - [1326,333] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 03/10/2015 - 13:54:47 - [0] ----D C:\Program Files (x86)\ea28a47a-19a9-413c-9dbe-95ce13e684fa
O43 - CFD: 08/05/2011 - 12:05:25 - [109,328] ---AD C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 14/01/2014 - 03:30:22 - [0,002] ----D C:\Program Files (x86)\eMule
O43 - CFD: 09/09/2012 - 23:08:42 - [7,994] ----D C:\Program Files (x86)\epson
O43 - CFD: 09/09/2012 - 23:11:26 - [175,320] ---AD C:\Program Files (x86)\Epson Software
O43 - CFD: 07/01/2012 - 01:35:01 - [1,569] ----D C:\Program Files (x86)\FileOpen
O43 - CFD: 07/04/2015 - 21:33:45 - [149,568] ---AD C:\Program Files (x86)\GeoGebra 5.0
O43 - CFD: 13/01/2014 - 18:34:27 - [19,062] ---AD C:\Program Files (x86)\Glary Utilities
O43 - CFD: 09/02/2017 - 13:40:10 - [129,104] ----D C:\Program Files (x86)\Google
O43 - CFD: 16/12/2013 - 11:54:34 - [64,055] ----D C:\Program Files (x86)\Hercules
O43 - CFD: 12/12/2015 - 06:15:41 - [576,633] ---AD C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 16/11/2015 - 11:48:40 - [306,782] ----D C:\Program Files (x86)\Holdem Manager 2
O43 - CFD: 16/06/2011 - 23:59:37 - [1,553] ----D C:\Program Files (x86)\HP
O43 - CFD: 08/05/2011 - 11:54:22 - [326,317] ---AD C:\Program Files (x86)\HP Games
O43 - CFD: 29/10/2012 - 22:00:46 - [23,001] ----D C:\Program Files (x86)\In The Money
O43 - CFD: 26/05/2017 - 17:47:25 - [172,466] ----D C:\Program Files (x86)\Index Education
O43 - CFD: 05/09/2016 - 22:05:26 - [52,831] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 15/03/2017 - 23:40:39 - [1,898] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 10/02/2013 - 23:59:22 - [208,638] ----D C:\Program Files (x86)\Java
O43 - CFD: 11/07/2017 - 20:21:05 - [57,588] ---AD C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 07/08/2014 - 13:49:46 - [0] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 22/11/2012 - 01:44:29 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 15/05/2015 - 13:11:03 - [12,532] ---AD C:\Program Files (x86)\Microsoft Application Virtualization Client
O43 - CFD: 07/08/2013 - 10:52:04 - [0,764] ---AD C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 14/12/2011 - 17:39:12 - [366,100] ---AD C:\Program Files (x86)\Microsoft Office
O43 - CFD: 16/06/2017 - 22:19:52 - [40,905] ---AD C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 08/05/2011 - 12:00:39 - [1,745] ---AD C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 19/12/2011 - 12:08:56 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 26/09/2016 - 23:21:03 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 11/07/2017 - 22:09:34 - [97,096] ---AD C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 15/12/2016 - 22:04:14 - [0,266] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 26/09/2016 - 23:20:47 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 04/12/2012 - 20:12:25 - [0,418] ----D C:\Program Files (x86)\MUSICSTATION
O43 - CFD: 19/07/2015 - 23:36:49 - [73,966] ---AD C:\Program Files (x86)\MyDrive Connect
O43 - CFD: 24/08/2011 - 00:14:45 - [19,737] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 11/01/2012 - 15:42:39 - [338,128] ---AD C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 15/07/2014 - 16:51:35 - [3,570] ----D C:\Program Files (x86)\OpenVPN
O43 - CFD: 03/10/2015 - 13:57:46 - [0,001] ----D C:\Program Files (x86)\Opera
O43 - CFD: 28/09/2014 - 17:47:07 - [243,253] ----D C:\Program Files (x86)\Orange
O43 - CFD: 14/01/2014 - 03:23:06 - [0,001] ----D C:\Program Files (x86)\OXPDFCreator
O43 - CFD: 07/08/2014 - 13:51:16 - [25,347] ----D C:\Program Files (x86)\PasswordBox
O43 - CFD: 23/01/2017 - 13:21:51 - [353,365] ---AD C:\Program Files (x86)\PokerStars.FR
O43 - CFD: 18/01/2012 - 16:15:50 - [86,305] ----D C:\Program Files (x86)\PokerStrategy
O43 - CFD: 28/02/2012 - 11:46:01 - [49,951] ----D C:\Program Files (x86)\PokerStrategy.com
O43 - CFD: 14/02/2012 - 21:55:52 - [-732,088] ----D C:\Program Files (x86)\PostgreSQL
O43 - CFD: 20/06/2015 - 12:08:50 - [0] ----D C:\Program Files (x86)\PSQLINSTALL
O43 - CFD: 01/02/2014 - 18:29:22 - [0,164] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 16/06/2011 - 23:56:04 - [15,144] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 26/09/2016 - 23:20:47 - [36,673] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 18/12/2011 - 20:33:06 - [6,390] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 10/05/2017 - 22:30:59 - [102,255] R---D C:\Program Files (x86)\Skype
O43 - CFD: 24/10/2015 - 16:53:59 - [0] ----D C:\Program Files (x86)\Software
O43 - CFD: 06/06/2012 - 23:38:11 - [705,537] ----D C:\Program Files (x86)\Team17
O43 - CFD: 06/02/2014 - 22:11:53 - [38,104] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 01/02/2014 - 18:28:39 - [154,377] ----D C:\Program Files (x86)\TechSmith
O43 - CFD: 05/11/2015 - 20:07:59 - [49,127] ---AD C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 19/07/2015 - 17:37:45 - [0,043] ----D C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 25/08/2011 - 19:34:07 - [80,431] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 22/11/2012 - 01:40:03 - [6,503] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 05/08/2013 - 15:15:14 - [29,546] ----D C:\Program Files (x86)\webcamXP 5
O43 - CFD: 08/05/2011 - 11:48:26 - [9,282] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 12/05/2017 - 19:26:48 - [1,852] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 28/09/2014 - 18:47:21 - [153,860] ---AD C:\Program Files (x86)\Windows Live
O43 - CFD: 15/03/2017 - 23:40:40 - [5,683] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 06/11/2016 - 22:09:35 - [3,124] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 16/07/2016 - 13:47:50 - [0,033] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 16/07/2016 - 13:47:48 - [7,234] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/05/2017 - 19:26:49 - [5,174] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 16/07/2016 - 13:47:50 - [0,033] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/09/2016 - 23:21:07 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 16/07/2016 - 13:47:48 - [3,955] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 11/07/2017 - 23:06:26 - [11,451] ---AD C:\Program Files (x86)\ZHPDiag
O43 - CFD: 09/09/2012 - 23:16:08 - [7,724] ----D C:\Program Files (x86)\Common Files\ABBYY
O43 - CFD: 25/11/2011 - 17:11:34 - [19,540] ---AD C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 14/01/2014 - 16:10:41 - [45,988] ---AD C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 28/09/2014 - 17:16:32 - [0,000] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 16/06/2011 - 23:48:03 - [0,096] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 14/04/2017 - 09:55:32 - [0,917] ----D C:\Program Files (x86)\Common Files\AV
O43 - CFD: 15/05/2014 - 10:17:50 - [0,095] ---AD C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 10/03/2012 - 14:04:46 - [14,604] ----D C:\Program Files (x86)\Common Files\France Telecom
O43 - CFD: 28/09/2014 - 17:16:44 - [1,979] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 09/09/2012 - 00:07:39 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 05/08/2013 - 15:14:48 - [0] ----D C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 05/08/2013 - 15:13:01 - [0] ----D C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 26/09/2016 - 23:20:59 - [235,010] ---AD C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 29/09/2012 - 23:50:41 - [0,820] ----D C:\Program Files (x86)\Common Files\PctelEapPeer Authentication
O43 - CFD: 16/01/2012 - 23:50:34 - [0,438] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 16/07/2016 - 13:47:50 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 10/05/2017 - 22:30:59 - [2,455] ---AD C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 26/09/2016 - 23:20:59 - [39,191] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 14/01/2014 - 04:06:10 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 17/07/2016 - 00:40:08 - [41,632] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 01/02/2014 - 18:29:02 - [2,504] ----D C:\Program Files (x86)\Common Files\TechSmith Shared
O43 - CFD: 17/06/2011 - 00:11:01 - [0,225] ---AD C:\Program Files (x86)\Common Files\Telespree
O43 - CFD: 08/05/2011 - 11:57:46 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 09/09/2012 - 23:16:08 - [1,712] ----D C:\ProgramData\ABBYY
O43 - CFD: 09/01/2013 - 23:57:20 - [63,871] ----D C:\ProgramData\Adobe
O43 - CFD: 09/06/2017 - 13:35:44 - [19,073] ----D C:\ProgramData\AirDroid
O43 - CFD: 26/09/2016 - 23:10:41 - [0,002] ----D C:\ProgramData\AMD
O43 - CFD: 25/10/2013 - 23:33:32 - [2,558] ----D C:\ProgramData\Apple
O43 - CFD: 27/09/2016 - 00:11:45 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 16/12/2013 - 00:23:24 - [0,010] ----D C:\ProgramData\ArcSoft
O43 - CFD: 31/12/2015 - 13:21:23 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 26/09/2016 - 21:53:15 - [658,122] ----D C:\ProgramData\AVAST Software
O43 - CFD: 29/09/2012 - 23:51:05 - [0,002] ----D C:\ProgramData\Bouygues Telecom
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 13/01/2016 - 17:49:24 - [0] ----D C:\ProgramData\Canon IJ Network Tool
O43 - CFD: 20/09/2012 - 20:41:44 - [56,589] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 11/07/2017 - 00:01:45 - [0,121] ----D C:\ProgramData\CanonIJPLM
O43 - CFD: 13/01/2016 - 17:54:29 - [0,002] --H-D C:\ProgramData\CanonIJQuickMenu
O43 - CFD: 13/01/2016 - 17:52:54 - [0,083] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 09/09/2013 - 12:50:35 - [0,016] ----D C:\ProgramData\ClubSanDisk
O43 - CFD: 25/08/2013 - 23:46:22 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 16/07/2016 - 13:47:48 - [0] ----D C:\ProgramData\Comms
O43 - CFD: 12/03/2013 - 23:45:23 - [0,035] ----D C:\ProgramData\CyberLink
O43 - CFD: 06/05/2012 - 18:20:53 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 31/08/2011 - 01:55:21 - [0,002] ----D C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 20/07/2014 - 22:53:13 - [0,541] ----D C:\ProgramData\DataCardService
O43 - CFD: 01/10/2016 - 18:38:25 - [0,285] ----D C:\ProgramData\DisplayLink
O43 - CFD: 16/01/2012 - 23:50:38 - [1,165] ----D C:\ProgramData\DivX
O43 - CFD: 27/09/2016 - 00:11:45 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 18/06/2015 - 18:21:51 - [7,049] ----D C:\ProgramData\Dropbox
O43 - CFD: 09/12/2013 - 17:20:43 - [1,356] ----D C:\ProgramData\Easybits Magic Desktop for HP
O43 - CFD: 14/01/2014 - 03:30:22 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 09/09/2012 - 23:22:08 - [7,562] ----D C:\ProgramData\EPSON
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 07/01/2012 - 01:35:10 - [0] ----D C:\ProgramData\FileOpen
O43 - CFD: 17/01/2016 - 11:44:30 - [0,000] ----D C:\ProgramData\fltk.org
O43 - CFD: 17/12/2015 - 13:59:28 - [84,996] ---AD C:\ProgramData\Hewlett-Packard
O43 - CFD: 03/07/2017 - 17:28:19 - [11,186] ----D C:\ProgramData\IndexEducation
O43 - CFD: 05/08/2013 - 15:09:37 - [0] ----D C:\ProgramData\Logitech
O43 - CFD: 05/10/2013 - 21:43:13 - [0] ----D C:\ProgramData\LogMeIn
O43 - CFD: 02/08/2014 - 20:44:07 - [451,149] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 24/08/2011 - 00:56:35 - [0,000] ----D C:\ProgramData\McAfee
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 23/01/2017 - 13:24:42 - [1692,959] -S--D C:\ProgramData\Microsoft
O43 - CFD: 14/06/2017 - 17:08:15 - [0,211] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 27/09/2016 - 08:07:55 - [0] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 25/04/2012 - 15:43:55 - [0,036] ----D C:\ProgramData\Mozilla
O43 - CFD: 14/01/2014 - 16:03:34 - [0,016] ----D C:\ProgramData\Norton
O43 - CFD: 17/06/2011 - 00:08:33 - [9,342] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 03/11/2013 - 18:21:00 - [83,163] ----D C:\ProgramData\Orange
O43 - CFD: 15/03/2017 - 20:27:13 - [34,127] ----D C:\ProgramData\Package Cache
O43 - CFD: 26/09/2016 - 23:30:37 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/09/2016 - 23:35:30 - [0,001] ---AD C:\ProgramData\regid.1995-08.com.techsmith
O43 - CFD: 10/05/2017 - 22:31:14 - [239,028] ----D C:\ProgramData\Skype
O43 - CFD: 16/07/2016 - 13:47:48 - [0] ----D C:\ProgramData\SoftwareDistribution
O43 - CFD: 08/05/2011 - 12:06:50 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 10/04/2012 - 22:29:56 - [0,002] ----D C:\ProgramData\Synaptics
O43 - CFD: 01/02/2014 - 18:31:04 - [64,987] ----D C:\ProgramData\TechSmith
O43 - CFD: 28/09/2014 - 18:50:32 - [0,388] ---AD C:\ProgramData\Temp
O43 - CFD: 09/09/2012 - 23:13:13 - [0,003] ----D C:\ProgramData\UDL
O43 - CFD: 27/09/2016 - 00:11:36 - [0] ----D C:\ProgramData\USOPrivate
O43 - CFD: 27/09/2016 - 00:11:36 - [1,758] ----D C:\ProgramData\USOShared
O43 - CFD: 31/08/2011 - 09:37:31 - [0] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 26/08/2013 - 20:32:05 - [1,817] ----D C:\ProgramData\webcamXP 5
O43 - CFD: 22/03/2013 - 23:22:52 - [-1760,993] ----D C:\ProgramData\WildTangent
O43 - CFD: 13/01/2012 - 19:23:10 - [0,030] ----D C:\ProgramData\XHEO INC
O43 - CFD: 17/01/2014 - 18:01:42 - [43,420] ----D C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
O43 - CFD: 08/09/2012 - 14:55:46 - [39,529] ----D C:\Users\Cyril\AppData\Roaming\Adobe
O43 - CFD: 12/06/2017 - 20:23:17 - [15,937] ----D C:\Users\Cyril\AppData\Roaming\AirDroid
O43 - CFD: 31/07/2016 - 17:11:45 - [0,802] ----D C:\Users\Cyril\AppData\Roaming\AnMacPc-3902
O43 - CFD: 16/12/2013 - 00:23:19 - [0,004] ----D C:\Users\Cyril\AppData\Roaming\ArcSoft
O43 - CFD: 26/09/2016 - 23:09:10 - [0] ----D C:\Users\Cyril\AppData\Roaming\ATI
O43 - CFD: 22/08/2015 - 19:09:40 - [21,618] ----D C:\Users\Cyril\AppData\Roaming\AVAST Software
O43 - CFD: 21/01/2016 - 14:50:59 - [0] ----D C:\Users\Cyril\AppData\Roaming\Canon
O43 - CFD: 02/01/2015 - 20:17:53 - [6,186] ----D C:\Users\Cyril\AppData\Roaming\cef-cache
O43 - CFD: 18/06/2015 - 14:25:36 - [1,377] ----D C:\Users\Cyril\AppData\Roaming\com.winamax.chat
O43 - CFD: 26/08/2011 - 19:47:14 - [0,622] ----D C:\Users\Cyril\AppData\Roaming\CyberLink
O43 - CFD: 07/04/2015 - 18:23:22 - [1,155] ----D C:\Users\Cyril\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 13/01/2014 - 19:56:52 - [0] ----D C:\Users\Cyril\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 29/06/2017 - 17:30:04 - [25,177] ----D C:\Users\Cyril\AppData\Roaming\discord
O43 - CFD: 12/09/2011 - 20:31:57 - [0,104] ----D C:\Users\Cyril\AppData\Roaming\DivX
O43 - CFD: 27/06/2017 - 19:27:00 - [317,911] ----D C:\Users\Cyril\AppData\Roaming\Dropbox
O43 - CFD: 16/09/2012 - 12:50:20 - [0,008] ----D C:\Users\Cyril\AppData\Roaming\Epson
O43 - CFD: 07/01/2012 - 01:35:11 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\FileOpen
O43 - CFD: 17/01/2016 - 11:44:30 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\fltk.org
O43 - CFD: 27/10/2013 - 18:30:37 - [0,006] ----D C:\Users\Cyril\AppData\Roaming\fr.orange.assistancelivebox
O43 - CFD: 10/11/2016 - 13:50:17 - [30,229] ----D C:\Users\Cyril\AppData\Roaming\GeoGebra 5.0
O43 - CFD: 13/01/2014 - 18:40:02 - [0,119] ----D C:\Users\Cyril\AppData\Roaming\Glarysoft
O43 - CFD: 13/01/2012 - 19:29:11 - [0,011] ----D C:\Users\Cyril\AppData\Roaming\HEM Data
O43 - CFD: 06/10/2011 - 09:33:45 - [0,048] ----D C:\Users\Cyril\AppData\Roaming\Hewlett-Packard
O43 - CFD: 03/01/2016 - 17:40:02 - [773,418] ----D C:\Users\Cyril\AppData\Roaming\HoldemManager
O43 - CFD: 25/08/2011 - 11:20:19 - [0,673] ----D C:\Users\Cyril\AppData\Roaming\hpqlog
O43 - CFD: 24/08/2011 - 00:21:21 - [0] ----D C:\Users\Cyril\AppData\Roaming\Identities
O43 - CFD: 09/09/2012 - 23:10:23 - [0] ----D C:\Users\Cyril\AppData\Roaming\InstallShield
O43 - CFD: 18/12/2011 - 20:55:06 - [10,883] ----D C:\Users\Cyril\AppData\Roaming\Intelli-studio
O43 - CFD: 05/08/2013 - 15:11:28 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\Leadertech
O43 - CFD: 24/08/2011 - 00:31:25 - [15,669] ----D C:\Users\Cyril\AppData\Roaming\Macromedia
O43 - CFD: 02/08/2014 - 20:44:52 - [0] ----D C:\Users\Cyril\AppData\Roaming\Malwarebytes
O43 - CFD: 07/04/2015 - 18:33:24 - [0] ----D C:\Users\Cyril\AppData\Roaming\ManyCam
O43 - CFD: 17/06/2011 - 09:37:50 - [0] ----D C:\Users\Cyril\AppData\Roaming\Media Center Programs
O43 - CFD: 05/04/2017 - 22:02:02 - [38,564] -S--D C:\Users\Cyril\AppData\Roaming\Microsoft
O43 - CFD: 24/08/2011 - 00:50:36 - [162,388] ----D C:\Users\Cyril\AppData\Roaming\Mozilla
O43 - CFD: 07/11/2011 - 22:21:27 - [1,806] ----D C:\Users\Cyril\AppData\Roaming\Mozilla-Cache
O43 - CFD: 10/12/2011 - 16:39:10 - [22,737] ----D C:\Users\Cyril\AppData\Roaming\OpenOffice.org
O43 - CFD: 03/10/2015 - 01:54:46 - [2,405] ----D C:\Users\Cyril\AppData\Roaming\Opera Software
O43 - CFD: 08/09/2012 - 14:58:11 - [2,663] ----D C:\Users\Cyril\AppData\Roaming\Orange
O43 - CFD: 02/01/2015 - 20:17:44 - [0,005] ----D C:\Users\Cyril\AppData\Roaming\PartyFrance
O43 - CFD: 06/06/2012 - 14:00:01 - [513,511] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2008
O43 - CFD: 06/05/2012 - 13:03:32 - [513,500] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2008 - Demo
O43 - CFD: 02/09/2014 - 20:16:01 - [1,506] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2012
O43 - CFD: 31/07/2014 - 01:17:50 - [0,004] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2013
O43 - CFD: 20/06/2015 - 12:17:55 - [0,009] ----D C:\Users\Cyril\AppData\Roaming\Roaming
O43 - CFD: 05/04/2012 - 14:08:36 - [0,009] ----D C:\Users\Cyril\AppData\Roaming\Scilab
O43 - CFD: 23/06/2015 - 23:30:14 - [0] ----D C:\Users\Cyril\AppData\Roaming\SitNGoWizard
O43 - CFD: 23/11/2016 - 21:21:55 - [75,132] ----D C:\Users\Cyril\AppData\Roaming\Skype
O43 - CFD: 03/10/2015 - 13:43:03 - [4,711] ----D C:\Users\Cyril\AppData\Roaming\SoftGrid Client
O43 - CFD: 03/10/2015 - 14:02:30 - [0] ----D C:\Users\Cyril\AppData\Roaming\Store
O43 - CFD: 24/08/2011 - 00:21:58 - [0] ----D C:\Users\Cyril\AppData\Roaming\Synaptics
O43 - CFD: 18/02/2016 - 12:22:34 - [0,164] ----D C:\Users\Cyril\AppData\Roaming\TeamViewer
O43 - CFD: 01/02/2014 - 18:33:32 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\TechSmith
O43 - CFD: 16/02/2016 - 18:19:23 - [0,008] ----D C:\Users\Cyril\AppData\Roaming\temp
O43 - CFD: 19/07/2015 - 17:32:35 - [0,457] ----D C:\Users\Cyril\AppData\Roaming\TomTom
O43 - CFD: 30/08/2011 - 16:50:24 - [0] ----D C:\Users\Cyril\AppData\Roaming\TP
O43 - CFD: 11/07/2017 - 21:01:16 - [31,611] ----D C:\Users\Cyril\AppData\Roaming\uTorrent
O43 - CFD: 28/06/2017 - 00:04:07 - [0,075] ----D C:\Users\Cyril\AppData\Roaming\vlc
O43 - CFD: 18/06/2015 - 14:20:22 - [245,626] ----D C:\Users\Cyril\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O43 - CFD: 24/04/2012 - 22:17:36 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\Windows Live Writer
O43 - CFD: 30/08/2011 - 17:04:55 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\WinRAR
O43 - CFD: 28/11/2011 - 23:00:57 - [0,001] ----D C:\Users\Cyril\AppData\Roaming\xm1
O43 - CFD: 09/09/2012 - 23:17:24 - [0] ----D C:\Users\Cyril\AppData\Local\ABBYY
O43 - CFD: 05/01/2016 - 23:55:08 - [0] ----D C:\Users\Cyril\AppData\Local\ActiveSync
O43 - CFD: 18/12/2013 - 11:28:46 - [15,791] ----D C:\Users\Cyril\AppData\Local\Adobe
O43 - CFD: 24/08/2011 - 00:23:08 - [0,018] ----D C:\Users\Cyril\AppData\Local\AMD
O43 - CFD: 16/03/2015 - 00:29:27 - [0,001] ----D C:\Users\Cyril\AppData\Local\AnyMP4 Studio
O43 - CFD: 26/09/2016 - 23:14:49 - [0] ----D C:\Users\Cyril\AppData\Local\Application Data
O43 - CFD: 16/12/2013 - 00:23:18 - [0] ----D C:\Users\Cyril\AppData\Local\ArcSoft
O43 - CFD: 26/09/2016 - 23:09:10 - [0,072] ----D C:\Users\Cyril\AppData\Local\ATI
O43 - CFD: 25/08/2013 - 23:24:24 - [0,125] ----D C:\Users\Cyril\AppData\Local\avgchrome
O43 - CFD: 22/09/2012 - 14:43:37 - [1,747] ----D C:\Users\Cyril\AppData\Local\Bouygues Telecom
O43 - CFD: 24/08/2011 - 00:22:14 - [0] ----D C:\Users\Cyril\AppData\Local\Broadcom
O43 - CFD: 07/02/2013 - 11:20:44 - [4,715] ----D C:\Users\Cyril\AppData\Local\BZFlag
O43 - CFD: 27/09/2016 - 08:09:28 - [0] ----D C:\Users\Cyril\AppData\Local\CEF
O43 - CFD: 06/01/2016 - 00:17:11 - [20,211] ----D C:\Users\Cyril\AppData\Local\Comms
O43 - CFD: 28/09/2016 - 08:26:55 - [3,589] ----D C:\Users\Cyril\AppData\Local\ConnectedDevicesPlatform
O43 - CFD: 18/02/2016 - 12:22:08 - [0] ----D C:\Users\Cyril\AppData\Local\CrashDumps
O43 - CFD: 30/07/2014 - 23:53:26 - [0] ----D C:\Users\Cyril\AppData\Local\CrashRpt
O43 - CFD: 26/08/2011 - 19:47:14 - [0,005] ----D C:\Users\Cyril\AppData\Local\CyberLink
O43 - CFD: 01/07/2017 - 00:18:29 - [0] ----D C:\Users\Cyril\AppData\Local\Diagnostics
O43 - CFD: 05/03/2017 - 22:26:44 - [171,529] ----D C:\Users\Cyril\AppData\Local\Discord
O43 - CFD: 05/11/2015 - 20:04:57 - [104,933] ----D C:\Users\Cyril\AppData\Local\Downloaded Installations
O43 - CFD: 31/07/2014 - 23:03:25 - [0,102] ----D C:\Users\Cyril\AppData\Local\Downloader
O43 - CFD: 15/06/2017 - 08:24:33 - [78,706] ----D C:\Users\Cyril\AppData\Local\Dropbox
O43 - CFD: 31/07/2016 - 22:20:59 - [0] ----D C:\Users\Cyril\AppData\Local\ElevatedDiagnostics
O43 - CFD: 03/10/2015 - 13:57:53 - [0] -SH-D C:\Users\Cyril\AppData\Local\EmieBrowserModeList
O43 - CFD: 03/10/2015 - 13:57:53 - [0] -SH-D C:\Users\Cyril\AppData\Local\EmieSiteList
O43 - CFD: 03/10/2015 - 13:57:53 - [0] -SH-D C:\Users\Cyril\AppData\Local\EmieUserList
O43 - CFD: 14/01/2014 - 03:30:22 - [0] ----D C:\Users\Cyril\AppData\Local\eMule
O43 - CFD: 30/05/2015 - 22:44:04 - [0,018] ----D C:\Users\Cyril\AppData\Local\Equilab
O43 - CFD: 02/11/2016 - 10:41:38 - [846,821] ----D C:\Users\Cyril\AppData\Local\Google
O43 - CFD: 02/06/2015 - 21:01:17 - [0,000] ----D C:\Users\Cyril\AppData\Local\GWX
O43 - CFD: 17/12/2015 - 14:05:07 - [0,013] ----D C:\Users\Cyril\AppData\Local\Hewlett-Packard
O43 - CFD: 24/08/2011 - 00:21:54 - [0,003] ----D C:\Users\Cyril\AppData\Local\Hewlett-Packard_Company
O43 - CFD: 19/12/2011 - 15:12:11 - [0,000] ----D C:\Users\Cyril\AppData\Local\Hewlett-Packard_Developme
O43 - CFD: 26/09/2016 - 23:14:49 - [0] ----D C:\Users\Cyril\AppData\Local\Historique
O43 - CFD: 13/01/2012 - 19:54:33 - [0,008] ----D C:\Users\Cyril\AppData\Local\Hold'em_Manager
O43 - CFD: 18/01/2012 - 16:32:19 - [0,000] ----D C:\Users\Cyril\AppData\Local\ICMTrainer
O43 - CFD: 18/01/2012 - 16:32:09 - [0,006] ----D C:\Users\Cyril\AppData\Local\ICMTrainerLight
O43 - CFD: 01/12/2013 - 19:02:55 - [0,223] ----D C:\Users\Cyril\AppData\Local\In The Money
O43 - CFD: 30/07/2014 - 23:53:38 - [0] ----D C:\Users\Cyril\AppData\Local\Installer
O43 - CFD: 12/11/2012 - 23:31:44 - [0,010] ----D C:\Users\Cyril\AppData\Local\In_The_Money_LLC
O43 - CFD: 13/01/2012 - 19:23:10 - [0,002] ----D C:\Users\Cyril\AppData\Local\IsolatedStorage
O43 - CFD: 05/10/2013 - 21:43:13 - [0] ----D C:\Users\Cyril\AppData\Local\LogMeIn
O43 - CFD: 14/01/2014 - 03:07:01 - [0,004] ----D C:\Users\Cyril\AppData\Local\LogMeIn Hamachi
O43 - CFD: 09/01/2013 - 23:57:33 - [0] ----D C:\Users\Cyril\AppData\Local\Macromedia
O43 - CFD: 14/01/2014 - 03:54:29 - [0,000] ----D C:\Users\Cyril\AppData\Local\MagicCamera
O43 - CFD: 23/01/2017 - 13:29:42 - [689,481] ----D C:\Users\Cyril\AppData\Local\Microsoft
O43 - CFD: 23/04/2013 - 14:03:49 - [0,403] ----D C:\Users\Cyril\AppData\Local\Microsoft Games
O43 - CFD: 29/09/2011 - 19:06:36 - [0] ----D C:\Users\Cyril\AppData\Local\Microsoft Help
O43 - CFD: 18/01/2016 - 23:18:16 - [0,078] ----D C:\Users\Cyril\AppData\Local\MicrosoftEdge
O43 - CFD: 05/10/2013 - 22:21:37 - [75,105] ----D C:\Users\Cyril\AppData\Local\Mozilla
O43 - CFD: 16/01/2012 - 14:47:52 - [1,056] ----D C:\Users\Cyril\AppData\Local\MPlayer
O43 - CFD: 03/10/2015 - 01:54:47 - [0] ----D C:\Users\Cyril\AppData\Local\Opera Software
O43 - CFD: 12/11/2012 - 23:31:46 - [0,000] ----D C:\Users\Cyril\AppData\Local\Orange
O43 - CFD: 20/11/2011 - 01:09:30 - [0] ----D C:\Users\Cyril\AppData\Local\PackageAware
O43 - CFD: 03/05/2017 - 09:24:51 - [351,471] ----D C:\Users\Cyril\AppData\Local\Packages
O43 - CFD: 23/01/2017 - 13:24:15 - [3,880] ----D C:\Users\Cyril\AppData\Local\PokerStars.FR
O43 - CFD: 18/01/2012 - 19:04:14 - [0,460] ----D C:\Users\Cyril\AppData\Local\PokerStrategy
O43 - CFD: 14/02/2012 - 00:36:37 - [0,053] ----D C:\Users\Cyril\AppData\Local\PokerStrategy.com
O43 - CFD: 22/01/2013 - 19:37:36 - [0] ----D C:\Users\Cyril\AppData\Local\Programs
O43 - CFD: 27/10/2015 - 12:54:33 - [0] ----D C:\Users\Cyril\AppData\Local\Publishers
O43 - CFD: 24/08/2011 - 15:29:22 - [6,668] ----D C:\Users\Cyril\AppData\Local\PunkBuster
O43 - CFD: 24/08/2011 - 00:20:38 - [0,000] ----D C:\Users\Cyril\AppData\Local\RemEngine
O43 - CFD: 14/06/2016 - 13:35:05 - [0] ----D C:\Users\Cyril\AppData\Local\Skype
O43 - CFD: 30/08/2011 - 16:50:07 - [4,367] ----D C:\Users\Cyril\AppData\Local\SoftGrid Client
O43 - CFD: 05/03/2017 - 22:27:26 - [0,006] ----D C:\Users\Cyril\AppData\Local\SquirrelTemp
O43 - CFD: 01/02/2014 - 18:39:41 - [36,136] ----D C:\Users\Cyril\AppData\Local\TechSmith
O43 - CFD: 11/07/2017 - 23:06:53 - [3,497] ----D C:\Users\Cyril\AppData\Local\Temp
O43 - CFD: 26/09/2016 - 23:14:49 - [0] ----D C:\Users\Cyril\AppData\Local\Temporary Internet Files
O43 - CFD: 27/10/2015 - 12:01:47 - [13,086] ----D C:\Users\Cyril\AppData\Local\TileDataLayer
O43 - CFD: 19/07/2015 - 23:37:05 - [30,502] ----D C:\Users\Cyril\AppData\Local\TomTom
O43 - CFD: 15/06/2015 - 06:52:09 - [100,141] ----D C:\Users\Cyril\AppData\Local\Turbopoker
O43 - CFD: 07/07/2017 - 16:58:03 - [0] ----D C:\Users\Cyril\AppData\Local\UNP
O43 - CFD: 25/08/2011 - 19:18:48 - [0] ----D C:\Users\Cyril\AppData\Local\uTorrent
O43 - CFD: 16/06/2012 - 00:00:02 - [0,625] ----D C:\Users\Cyril\AppData\Local\VirtualStore
O43 - CFD: 31/12/2015 - 12:50:47 - [0,129] ----D C:\Users\Cyril\AppData\Local\Windows Live
O43 - CFD: 23/02/2012 - 19:09:38 - [0,619] ----D C:\Users\Cyril\AppData\Local\Windows Live Writer
O43 - CFD: 25/08/2013 - 23:25:31 - [0,000] ----D C:\Users\Cyril\AppData\Local\_data_Easy_WebCam_Recording
O43 - CFD: 15/08/2016 - 12:37:09 - [0] ----D C:\Users\Cyril\AppData\Local\{01154C42-F508-477A-A397-20B6A304C45F}
O43 - CFD: 07/11/2013 - 14:33:53 - [0] ----D C:\Users\Cyril\AppData\Local\{016B3654-EE0D-494A-9767-3E438E7F3B85}
O43 - CFD: 16/04/2013 - 10:21:39 - [0] ----D C:\Users\Cyril\AppData\Local\{02643EBE-9D78-45BE-972D-AE68F2C8DA90}
O43 - CFD: 14/07/2012 - 01:13:03 - [0] ----D C:\Users\Cyril\AppData\Local\{06A6BEBA-F494-42A7-BE23-BB04650144C3}
O43 - CFD: 06/05/2012 - 15:26:15 - [0] ----D C:\Users\Cyril\AppData\Local\{077FA771-2545-40BD-90D2-1CFB06ED83A4}
O43 - CFD: 20/01/2013 - 13:12:54 - [0] ----D C:\Users\Cyril\AppData\Local\{0A0BA470-6025-46E4-9705-301905480710}
O43 - CFD: 07/01/2015 - 01:44:24 - [0] ----D C:\Users\Cyril\AppData\Local\{0A272027-AE10-4298-9EAC-B2D7BD419E9B}
O43 - CFD: 29/09/2012 - 12:57:23 - [0] ----D C:\Users\Cyril\AppData\Local\{0A634C5A-4739-4B92-90D3-0A40349A66ED}
O43 - CFD: 14/07/2014 - 11:00:03 - [0] ----D C:\Users\Cyril\AppData\Local\{0A6AA1FB-BCD8-4787-9EFD-237BF64158A4}
O43 - CFD: 07/06/2015 - 19:28:34 - [0] ----D C:\Users\Cyril\AppData\Local\{0C2C08F9-D777-4CFF-A634-059B0DD5A1A3}
O43 - CFD: 22/10/2015 - 14:09:42 - [0] ----D C:\Users\Cyril\AppData\Local\{0FCCA897-3BBB-4D85-B53D-7A6E2ACAB6B5}
O43 - CFD: 19/09/2014 - 07:42:39 - [0] ----D C:\Users\Cyril\AppData\Local\{10D2C0C4-671B-4C11-BB33-5CA238286E1D}
O43 - CFD: 31/08/2011 - 00:50:25 - [0] ----D C:\Users\Cyril\AppData\Local\{10D5C33D-88B1-4617-A2A6-575ACBC72932}
O43 - CFD: 08/02/2013 - 21:19:07 - [0] ----D C:\Users\Cyril\AppData\Local\{12C6D35C-F83D-4158-9230-EB3209C802A6}
O43 - CFD: 22/09/2013 - 11:49:35 - [0] ----D C:\Users\Cyril\AppData\Local\{1325A445-5470-4A8D-858E-A943599A91C5}
O43 - CFD: 19/01/2014 - 12:07:37 - [0] ----D C:\Users\Cyril\AppData\Local\{14488845-1C59-4798-B00F-DF62A05F98A6}
O43 - CFD: 18/06/2014 - 13:46:57 - [0] ----D C:\Users\Cyril\AppData\Local\{15987E1F-D2BE-4FCF-88E3-78426BF47C24}
O43 - CFD: 09/01/2013 - 13:55:46 - [0] ----D C:\Users\Cyril\AppData\Local\{163BD47A-2345-4B58-A194-2023C100283B}
O43 - CFD: 05/11/2012 - 13:17:57 - [0] ----D C:\Users\Cyril\AppData\Local\{168FAF61-1C8D-4C19-A357-92E2C1AC693B}
O43 - CFD: 11/11/2013 - 10:57:08 - [0] ----D C:\Users\Cyril\AppData\Local\{16DCD1B9-1873-4AEC-AFE8-CD27AC707326}
O43 - CFD: 13/07/2012 - 00:48:19 - [0] ----D C:\Users\Cyril\AppData\Local\{1B5813A7-CC26-44F8-8D69-0D7FEEDD9474}
O43 - CFD: 04/01/2015 - 13:42:10 - [0] ----D C:\Users\Cyril\AppData\Local\{1E0DB141-6CF5-4B44-95F1-A22CE52DD38F}
O43 - CFD: 23/03/2014 - 18:43:57 - [0] ----D C:\Users\Cyril\AppData\Local\{229FC6C6-120A-4FE9-94B6-CE49BD261E4C}
O43 - CFD: 15/07/2013 - 12:23:22 - [0] ----D C:\Users\Cyril\AppData\Local\{2337E867-B894-428D-8A09-15D3312FA30C}
O43 - CFD: 22/05/2013 - 08:21:20 - [0] ----D C:\Users\Cyril\AppData\Local\{235C300C-E6AC-4E03-9D7A-9BED92DC8C8D}
O43 - CFD: 26/06/2012 - 14:11:18 - [0] ----D C:\Users\Cyril\AppData\Local\{28B5A762-4385-4977-82D3-78E4D5FC5CEE}
O43 - CFD: 10/12/2011 - 15:13:52 - [0] ----D C:\Users\Cyril\AppData\Local\{28BE861C-6967-4953-AD75-07435F879DE6}
O43 - CFD: 16/05/2013 - 13:46:59 - [0] ----D C:\Users\Cyril\AppData\Local\{29253217-D7C5-4DC8-83EB-65ED8DA6D65F}
O43 - CFD: 13/12/2012 - 11:16:26 - [0] ----D C:\Users\Cyril\AppData\Local\{297CBF6E-09D4-4AA1-9463-8D77B0D88F70}
O43 - CFD: 31/12/2012 - 02:28:27 - [0] ----D C:\Users\Cyril\AppData\Local\{2A890BB2-A117-4255-9F51-5A8EE37F6C69}
O43 - CFD: 21/06/2013 - 07:01:10 - [0] ----D C:\Users\Cyril\AppData\Local\{2AE0B0F3-5B7C-4E0B-A13B-958385268BD1}
O43 - CFD: 29/06/2012 - 10:42:19 - [0] ----D C:\Users\Cyril\AppData\Local\{2B92A271-018D-40CD-9CBD-DF04F37D65CD}
O43 - CFD: 04/01/2013 - 11:29:01 - [0] ----D C:\Users\Cyril\AppData\Local\{2C3D21A0-E12F-4E29-A544-9AAEF3C00503}
O43 - CFD: 07/09/2013 - 15:59:46 - [0] ----D C:\Users\Cyril\AppData\Local\{2C74443E-2348-46A7-9282-B0A424F1F547}
O43 - CFD: 11/07/2012 - 22:48:24 - [0] ----D C:\Users\Cyril\AppData\Local\{2CA13B28-1675-413B-B37B-F852CD78F914}
O43 - CFD: 09/12/2013 - 17:16:20 - [0] ----D C:\Users\Cyril\AppData\Local\{2D750905-2CCD-4686-94CE-68713EC67F66}
O43 - CFD: 23/02/2012 - 19:09:56 - [0] ----D C:\Users\Cyril\AppData\Local\{2E9915CC-A1A8-49CF-8ACF-03AF8D199863}
O43 - CFD: 18/12/2013 - 21:28:05 - [0] ----D C:\Users\Cyril\AppData\Local\{3281D52A-5696-4BD8-8094-267BC9AC6271}
O43 - CFD: 19/09/2013 - 19:06:47 - [0] ----D C:\Users\Cyril\AppData\Local\{33917CFF-2D6F-491F-ABD2-2A15CC38DC52}
O43 - CFD: 28/04/2013 - 14:27:18 - [0] ----D C:\Users\Cyril\AppData\Local\{33C8C492-2469-4541-8894-4474F0C0A6CA}
O43 - CFD: 03/08/2014 - 13:19:34 - [0] ----D C:\Users\Cyril\AppData\Local\{33E4E43A-F8A0-4B3F-9F0C-F2814CE0DB77}
O43 - CFD: 24/04/2012 - 22:15:03 - [0] ----D C:\Users\Cyril\AppData\Local\{34DFE5E3-F7EB-48E4-B050-D910CD73718F}
O43 - CFD: 14/01/2014 - 16:09:13 - [0] ----D C:\Users\Cyril\AppData\Local\{35B1904A-2C3C-4A7D-AB7B-29760BB9B46B}
O43 - CFD: 29/01/2014 - 23:12:16 - [0] ----D C:\Users\Cyril\AppData\Local\{378DF91C-8689-4FB5-B6DC-7E2C72D6ECF6}
O43 - CFD: 21/12/2012 - 08:32:48 - [0] ----D C:\Users\Cyril\AppData\Local\{3E57CE1D-A35E-4AD2-BF8B-DFAF21000317}
O43 - CFD: 13/11/2014 - 22:55:14 - [0] ----D C:\Users\Cyril\AppData\Local\{40A85ACB-6C9B-4CD7-88DE-FAC24BDBB159}
O43 - CFD: 12/06/2012 - 17:17:25 - [0] ----D C:\Users\Cyril\AppData\Local\{40B75366-65D8-43AE-A9AE-35298A946B84}
O43 - CFD: 14/10/2012 - 01:59:27 - [0] ----D C:\Users\Cyril\AppData\Local\{40C6522B-CF22-4861-A056-CCF723E579F8}
O43 - CFD: 24/12/2012 - 02:52:39 - [0] ----D C:\Users\Cyril\AppData\Local\{410FF047-E22A-4AC9-B6F6-FA302E05C6CC}
O43 - CFD: 18/07/2015 - 12:09:06 - [0] ----D C:\Users\Cyril\AppData\Local\{41B7F85D-C6B0-40FC-8755-2A9D910DCA0C}
O43 - CFD: 04/09/2014 - 14:52:29 - [0] ----D C:\Users\Cyril\AppData\Local\{445138B3-25BD-4D20-83D8-145BF6F3133C}
O43 - CFD: 13/04/2012 - 15:05:27 - [0] ----D C:\Users\Cyril\AppData\Local\{45DBC9BD-0B8C-48D4-959D-A520B4BE3719}
O43 - CFD: 15/07/2014 - 12:03:16 - [0] ----D C:\Users\Cyril\AppData\Local\{463A6674-06A3-4A33-9F70-163C102677A5}
O43 - CFD: 09/05/2014 - 17:51:02 - [0] ----D C:\Users\Cyril\AppData\Local\{49A41A42-888E-4C35-95FB-815E5B4E024F}
O43 - CFD: 06/05/2012 - 15:26:26 - [0] ----D C:\Users\Cyril\AppData\Local\{4CC91179-3E8A-47BF-9BE4-A54668F466B1}
O43 - CFD: 31/12/2011 - 02:16:43 - [0] ----D C:\Users\Cyril\AppData\Local\{4D5C6636-FCCB-4955-BC9D-A4CD88E4F993}
O43 - CFD: 11/04/2014 - 19:52:14 - [0] ----D C:\Users\Cyril\AppData\Local\{4E1EEEAC-5E49-4AAE-A8D7-F62CC756C105}
O43 - CFD: 26/08/2014 - 15:19:29 - [0] ----D C:\Users\Cyril\AppData\Local\{4EBFC640-A0DC-4112-94FD-E3F49BC3E2A8}
O43 - CFD: 20/07/2014 - 22:21:41 - [0] ----D C:\Users\Cyril\AppData\Local\{4EF5B26F-B742-4767-ABBA-1648AD285D06}
O43 - CFD: 14/08/2016 - 20:20:50 - [0] ----D C:\Users\Cyril\AppData\Local\{4F63B39B-7712-42DA-B2E8-14900A64A420}
O43 - CFD: 30/06/2013 - 23:22:38 - [0] ----D C:\Users\Cyril\AppData\Local\{5022F1C3-6B67-4331-AD8D-9355286FBF98}
O43 - CFD: 27/10/2013 - 11:47:15 - [0] ----D C:\Users\Cyril\AppData\Local\{523ACC98-B5E5-4FA5-A989-CB4490FD4494}
O43 - CFD: 22/09/2012 - 14:30:05 - [0] ----D C:\Users\Cyril\AppData\Local\{52D0E3ED-1CA7-4B2B-AAB9-9E0803D6D02D}
O43 - CFD: 18/02/2014 - 17:47:26 - [0] ----D C:\Users\Cyril\AppData\Local\{52DFEA92-FDC5-47C2-95AE-882628A4BCAE}
O43 - CFD: 10/07/2012 - 17:45:57 - [0] ----D C:\Users\Cyril\AppData\Local\{54330B4E-E0C6-44C7-9DC7-C2875C04961C}
O43 - CFD: 27/05/2013 - 20:15:35 - [0] ----D C:\Users\Cyril\AppData\Local\{545923A6-9958-4ABA-A2CE-84893AF7734A}
O43 - CFD: 06/03/2013 - 21:15:03 - [0] ----D C:\Users\Cyril\AppData\Local\{54ACAE47-0305-4B4B-A356-91ACB049D6FA}
O43 - CFD: 28/10/2013 - 00:55:51 - [0] ----D C:\Users\Cyril\AppData\Local\{54CFBACE-A913-4B55-B209-1AFB4641A6EC}
O43 - CFD: 29/12/2012 - 11:58:57 - [0] ----D C:\Users\Cyril\AppData\Local\{56B16C15-24AF-4844-847F-925D386DE059}
O43 - CFD: 05/03/2014 - 23:20:55 - [0] ----D C:\Users\Cyril\AppData\Local\{5792C581-B584-4D76-89B7-7FAF06036CB9}
O43 - CFD: 21/09/2012 - 07:23:44 - [0] ----D C:\Users\Cyril\AppData\Local\{58D36A88-7437-4560-9084-1ABA73209B96}
O43 - CFD: 10/07/2013 - 17:52:29 - [0] ----D C:\Users\Cyril\AppData\Local\{5C37A67C-9470-4110-9188-EB39234B386D}
O43 - CFD: 20/08/2012 - 18:21:44 - [0] ----D C:\Users\Cyril\AppData\Local\{5C991C74-A19F-49B8-BD0D-997D8B7D61D4}
O43 - CFD: 13/07/2013 - 08:59:59 - [0] ----D C:\Users\Cyril\AppData\Local\{5D03B444-FED7-4146-BA27-E43F95AAC82F}
O43 - CFD: 01/02/2014 - 11:30:50 - [0] ----D C:\Users\Cyril\AppData\Local\{5D7B2D62-25F9-4CF5-B3B0-57CEC525F3E2}
O43 - CFD: 29/12/2013 - 05:43:21 - [0] ----D C:\Users\Cyril\AppData\Local\{5EF619F2-983A-4E84-B8B8-B88F5BEE1E07}
O43 - CFD: 12/11/2012 - 14:49:03 - [0] ----D C:\Users\Cyril\AppData\Local\{5F5101C2-3BFF-4FA2-80C1-60269FFCB381}
O43 - CFD: 24/11/2013 - 10:59:06 - [0] ----D C:\Users\Cyril\AppData\Local\{60D31EFD-103A-460E-BE5C-F1D6570CE880}
O43 - CFD: 15/05/2014 - 21:57:51 - [0] ----D C:\Users\Cyril\AppData\Local\{615F1B3D-AB74-44DF-A7CB-59D897747E43}
O43 - CFD: 29/06/2012 - 10:43:13 - [0] ----D C:\Users\Cyril\AppData\Local\{63C20166-36B5-425B-A38B-9AE48F2EDE55}
O43 - CFD: 14/04/2013 - 02:08:15 - [0] ----D C:\Users\Cyril\AppData\Local\{6481B4BA-2CF8-4C2F-971D-8987F61C4EC6}
O43 - CFD: 02/09/2012 - 20:35:35 - [0] ----D C:\Users\Cyril\AppData\Local\{668A8A38-6507-4A15-B6EF-A4A1BEF66445}
O43 - CFD: 21/11/2012 - 13:42:46 - [0] ----D C:\Users\Cyril\AppData\Local\{687393E7-DFA5-468E-97E9-78FABF98D69D}
O43 - CFD: 14/01/2013 - 18:32:30 - [0] ----D C:\Users\Cyril\AppData\Local\{689D43B3-D739-43D4-A45C-2FC2A4D66CE5}
O43 - CFD: 07/04/2013 - 13:31:34 - [0] ----D C:\Users\Cyril\AppData\Local\{6AEC49CA-A494-4B17-AE60-038E1D6F6B9C}
O43 - CFD: 12/11/2013 - 10:20:25 - [0] ----D C:\Users\Cyril\AppData\Local\{6B457610-B55E-43A9-A40F-19B907F6FA91}
O43 - CFD: 08/07/2015 - 21:47:01 - [0] ----D C:\Users\Cyril\AppData\Local\{6CB7D2D9-DE97-4DD2-8597-15C73BDE40AE}
O43 - CFD: 23/01/2014 - 22:36:08 - [0] ----D C:\Users\Cyril\AppData\Local\{6EB7C223-03DE-44F5-AE6C-8C8804E346AD}
O43 - CFD: 11/07/2012 - 10:40:44 - [0] ----D C:\Users\Cyril\AppData\Local\{72E2D49F-4D63-409D-B2E8-157DB7684276}
O43 - CFD: 05/05/2013 - 11:36:56 - [0] ----D C:\Users\Cyril\AppData\Local\{7414EDDD-FCBA-4EF8-BA7A-B31AF5372948}
O43 - CFD: 01/10/2013 - 17:46:31 - [0] ----D C:\Users\Cyril\AppData\Local\{75663FEC-1AC8-4F90-B093-3334C3D893D2}
O43 - CFD: 14/11/2014 - 13:14:32 - [0] ----D C:\Users\Cyril\AppData\Local\{76FDF8FF-18A7-4525-8DD8-1558C5B3691A}
O43 - CFD: 16/11/2013 - 12:05:15 - [0] ----D C:\Users\Cyril\AppData\Local\{7711B909-EE91-4A5D-9B5A-3BF7C23B08C3}
O43 - CFD: 13/09/2012 - 10:29:19 - [0] ----D C:\Users\Cyril\AppData\Local\{792C446E-3041-40A4-B409-309C4D8A80A3}
O43 - CFD: 10/12/2013 - 23:34:16 - [0] ----D C:\Users\Cyril\AppData\Local\{79FD7DDB-24BE-428A-B92D-E34AA9B2CC1C}
O43 - CFD: 10/02/2015 - 23:41:18 - [0] ----D C:\Users\Cyril\AppData\Local\{7AD75A52-4C8A-4CAE-A204-AB17405DD63E}
O43 - CFD: 11/07/2012 - 10:40:55 - [0] ----D C:\Users\Cyril\AppData\Local\{7ADAF4FA-DB65-40F1-A0C6-A00A54FD911B}
O43 - CFD: 26/09/2012 - 18:25:47 - [0] ----D C:\Users\Cyril\AppData\Local\{7B1D46B9-6A1F-4A0A-A1D3-C4FCE4904551}
O43 - CFD: 18/10/2012 - 19:35:42 - [0] ----D C:\Users\Cyril\AppData\Local\{7E99E298-0026-4981-9C4B-7E198981E969}
O43 - CFD: 11/10/2014 - 00:53:08 - [0] ----D C:\Users\Cyril\AppData\Local\{82E7E03B-E2EA-4E73-B26A-F23D0F744370}
O43 - CFD: 23/03/2013 - 20:14:55 - [0] ----D C:\Users\Cyril\AppData\Local\{852B34AC-B4E1-4BEA-AAF5-3301586009EF}
O43 - CFD: 31/12/2011 - 02:16:32 - [0] ----D C:\Users\Cyril\AppData\Local\{86876A60-912D-4770-8A8D-34ABC75D14CF}
O43 - CFD: 11/07/2013 - 11:00:28 - [0] ----D C:\Users\Cyril\AppData\Local\{8834833F-C644-44EE-9347-691449829762}
O43 - CFD: 24/09/2012 - 02:43:56 - [0] ----D C:\Users\Cyril\AppData\Local\{88930507-5A6A-41E4-AB13-DF1575A857B4}
O43 - CFD: 06/12/2012 - 08:43:35 - [0] ----D C:\Users\Cyril\AppData\Local\{8A9811B6-4F18-4689-B2D8-4A5FC1D152E2}
O43 - CFD: 15/11/2014 - 01:33:58 - [0] ----D C:\Users\Cyril\AppData\Local\{8C22BC59-B041-4BA5-B313-1FCF5FFE4874}
O43 - CFD: 03/04/2013 - 00:19:28 - [0] ----D C:\Users\Cyril\AppData\Local\{8D6C1B52-824B-46F9-AC8F-EE99B8D61469}
O43 - CFD: 13/10/2012 - 13:59:01 - [0] ----D C:\Users\Cyril\AppData\Local\{8F894F88-2AAC-466E-A5BA-865D2F487F2C}
O43 - CFD: 17/06/2013 - 12:40:23 - [0] ----D C:\Users\Cyril\AppData\Local\{8FBE8B53-6C77-4172-A972-8AC938F9662C}
O43 - CFD: 20/12/2013 - 11:54:26 - [0] ----D C:\Users\Cyril\AppData\Local\{90B803F5-931A-4AFE-931F-62B896FCC46E}
O43 - CFD: 18/08/2014 - 12:15:36 - [0] ----D C:\Users\Cyril\AppData\Local\{92D17B92-4537-43F1-864B-F99A44B6D499}
O43 - CFD: 04/01/2012 - 20:53:49 - [0] ----D C:\Users\Cyril\AppData\Local\{93C0BF18-F62F-4E6F-A215-2436BA34C82D}
O43 - CFD: 19/05/2013 - 09:54:32 - [0] ----D C:\Users\Cyril\AppData\Local\{93E1255F-C587-4D1F-AB2F-EFF229AF8882}
O43 - CFD: 24/09/2012 - 14:44:31 - [0] ----D C:\Users\Cyril\AppData\Local\{96397DE8-6DD2-4781-A4F3-78D6CC8334E9}
O43 - CFD: 03/11/2013 - 12:04:19 - [0] ----D C:\Users\Cyril\AppData\Local\{96A299F2-4093-45DB-8DC6-0B93BA610D7A}
O43 - CFD: 13/07/2012 - 13:12:24 - [0] ----D C:\Users\Cyril\AppData\Local\{978CDB57-F8EA-4146-89B0-C00804D46CFB}
O43 - CFD: 24/06/2014 - 20:21:49 - [0] ----D C:\Users\Cyril\AppData\Local\{993B773A-7510-416E-B943-3D1ECCBD46B8}
O43 - CFD: 16/12/2013 - 13:39:18 - [0] ----D C:\Users\Cyril\AppData\Local\{9AE69AC7-A2CC-4949-9E80-91FE9B343BDF}
O43 - CFD: 14/07/2012 - 13:13:34 - [0] ----D C:\Users\Cyril\AppData\Local\{9AF403D9-1F9F-48C9-985C-70ABA2E5D43A}
O43 - CFD: 26/06/2012 - 02:11:04 - [0] ----D C:\Users\Cyril\AppData\Local\{9B37683E-3011-4D58-BA7B-869575C38352}
O43 - CFD: 29/08/2014 - 16:21:06 - [0] ----D C:\Users\Cyril\AppData\Local\{9B8235DF-BF87-419F-9207-C6C4CAC227F5}
O43 - CFD: 01/04/2013 - 16:38:57 - [0] ----D C:\Users\Cyril\AppData\Local\{9E8BD12D-46A6-4660-9160-947AF73F8484}
O43 - CFD: 29/07/2012 - 22:15:13 - [0] ----D C:\Users\Cyril\AppData\Local\{9FC4E69D-9A7B-415D-98FF-4EAEF25242FC}
O43 - CFD: 15/10/2012 - 19:25:23 - [0] ----D C:\Users\Cyril\AppData\Local\{A0C38F66-E312-429D-9E1A-EB54D074739A}
O43 - CFD: 11/01/2012 - 17:36:45 - [0] ----D C:\Users\Cyril\AppData\Local\{A1913529-6D87-4EBE-99A3-54DE54DFEE2C}
O43 - CFD: 15/06/2013 - 09:26:18 - [0] ----D C:\Users\Cyril\AppData\Local\{A391B2A2-F5E4-4CED-A0EC-E19B3CCDBA28}
O43 - CFD: 11/01/2012 - 17:36:34 - [0] ----D C:\Users\Cyril\AppData\Local\{A3BBA6FF-EC90-4D74-8D6C-B90C1DE11A7B}
O43 - CFD: 03/03/2014 - 23:36:19 - [0] ----D C:\Users\Cyril\AppData\Local\{A42DBAA9-AABC-42F3-86D3-BED3CE4E87C1}
O43 - CFD: 29/07/2012 - 22:15:00 - [0] ----D C:\Users\Cyril\AppData\Local\{A8074BF9-8CB5-4FE4-B2ED-AD9BE58FABDA}
O43 - CFD: 17/06/2015 - 16:17:33 - [0] ----D C:\Users\Cyril\AppData\Local\{A9CDBF18-5FC8-4992-BAC8-AF0576EE551F}
O43 - CFD: 27/08/2013 - 12:06:54 - [0] ----D C:\Users\Cyril\AppData\Local\{AA9F8B5D-1F42-4AD9-9F98-E88A6C16FF2D}
O43 - CFD: 04/01/2012 - 20:53:39 - [0] ----D C:\Users\Cyril\AppData\Local\{AB9865B8-63F1-45F2-AE66-4178BD0E1F10}
O43 - CFD: 14/06/2013 - 14:31:01 - [0] ----D C:\Users\Cyril\AppData\Local\{ABF47B27-4FF7-420E-AD79-67442DAFC0EF}
O43 - CFD: 29/03/2014 - 15:32:32 - [0] ----D C:\Users\Cyril\AppData\Local\{ACD7003D-0D25-4F5B-AFF8-6E3DABE011B3}
O43 - CFD: 15/11/2014 - 17:50:09 - [0] ----D C:\Users\Cyril\AppData\Local\{AD3AD551-2550-4894-B791-860E723BEDA6}
O43 - CFD: 18/06/2013 - 00:55:53 - [0] ----D C:\Users\Cyril\AppData\Local\{AD3CA4CA-23AB-470A-96ED-0D796D6ED1E6}
O43 - CFD: 02/07/2014 - 14:13:02 - [0] ----D C:\Users\Cyril\AppData\Local\{AFFB1A20-F917-4FCA-82FC-697016B0E950}
O43 - CFD: 19/01/2013 - 12:31:18 - [0] ----D C:\Users\Cyril\AppData\Local\{B16731AB-BE9B-4B9F-B178-7AB32ECF4984}
O43 - CFD: 13/10/2013 - 15:58:56 - [0] ----D C:\Users\Cyril\AppData\Local\{BA98D889-0D9E-48FD-86E4-CA40AEAB6607}
O43 - CFD: 14/01/2015 - 00:14:55 - [0] ----D C:\Users\Cyril\AppData\Local\{BBD3DA43-220A-4AA7-BB6B-55C08F2B6849}
O43 - CFD: 12/06/2013 - 12:33:23 - [0] ----D C:\Users\Cyril\AppData\Local\{BF725F1A-7BD6-4B97-B01C-4662A7E57E0E}
O43 - CFD: 22/06/2013 - 21:19:27 - [0] ----D C:\Users\Cyril\AppData\Local\{C38220A4-95BD-4069-AA81-5AA80C5000F9}
O43 - CFD: 24/04/2012 - 22:15:13 - [0] ----D C:\Users\Cyril\AppData\Local\{C4EABF29-CC9B-4DCA-91AF-90269703B668}
O43 - CFD: 31/08/2011 - 00:50:26 - [0] ----D C:\Users\Cyril\AppData\Local\{C573ACDD-580F-4EB6-B8E9-77E8A8AAFDF1}
O43 - CFD: 26/06/2012 - 14:11:28 - [0] ----D C:\Users\Cyril\AppData\Local\{C5A5DC2A-EEFC-4548-B949-D1FA15C1E4D7}
O43 - CFD: 22/03/2014 - 11:09:31 - [0] ----D C:\Users\Cyril\AppData\Local\{C6F1468D-40E5-4888-8009-57C267F757B9}
O43 - CFD: 06/10/2012 - 23:25:38 - [0] ----D C:\Users\Cyril\AppData\Local\{C758B15C-3D60-4D37-A8B8-FBD738A3CED2}
O43 - CFD: 22/03/2013 - 18:32:29 - [0] ----D C:\Users\Cyril\AppData\Local\{C81FDF9A-0DA5-488D-87A8-6EDB1E45BAF9}
O43 - CFD: 06/05/2013 - 13:12:45 - [0] ----D C:\Users\Cyril\AppData\Local\{C83FE0E4-3F8D-449A-BDAC-2A6A552D105A}
O43 - CFD: 09/05/2013 - 14:53:05 - [0] ----D C:\Users\Cyril\AppData\Local\{C89705FD-0537-4F81-A4A1-FD1CD82643AD}
O43 - CFD: 12/07/2012 - 10:48:51 - [0] ----D C:\Users\Cyril\AppData\Local\{CA085A5B-F87C-4F59-B761-9CF3256CC2C8}
O43 - CFD: 22/09/2015 - 11:45:02 - [0] ----D C:\Users\Cyril\AppData\Local\{CBA145E6-6C15-4931-BBC5-0A7786C5EDDC}
O43 - CFD: 19/11/2012 - 03:07:30 - [0] ----D C:\Users\Cyril\AppData\Local\{CC50E498-A76D-4669-9FEF-C15F6AF3F79E}
O43 - CFD: 19/08/2013 - 22:17:18 - [0] ----D C:\Users\Cyril\AppData\Local\{CC6E4BAE-7A49-4169-9DE9-671BAE6FDF59}
O43 - CFD: 15/10/2012 - 00:06:18 - [0] ----D C:\Users\Cyril\AppData\Local\{CF0B3EE3-8623-4066-9671-F2F685C37D6F}
O43 - CFD: 24/09/2013 - 18:14:53 - [0] ----D C:\Users\Cyril\AppData\Local\{D00EBF16-DEA6-4DDF-B19C-8E7507429E1A}
O43 - CFD: 13/06/2013 - 14:37:08 - [0] ----D C:\Users\Cyril\AppData\Local\{D01E177C-0D9B-4500-AE40-DFB9EBA47BCC}
O43 - CFD: 09/09/2013 - 11:18:42 - [0] ----D C:\Users\Cyril\AppData\Local\{D40EEACC-A0B8-49E0-B583-DC4ABB353702}
O43 - CFD: 27/04/2014 - 11:20:14 - [0] ----D C:\Users\Cyril\AppData\Local\{D5DE7D83-BA61-46FF-8182-C627B0BC80E8}
O43 - CFD: 05/08/2013 - 14:46:50 - [0] ----D C:\Users\Cyril\AppData\Local\{D64F63F8-3329-4092-A292-DE919FD0757A}
O43 - CFD: 26/01/2012 - 21:48:33 - [0] ----D C:\Users\Cyril\AppData\Local\{D7151658-6E11-43D6-B574-B85A59251F7A}
O43 - CFD: 12/01/2013 - 12:17:59 - [0] ----D C:\Users\Cyril\AppData\Local\{D8B4BA7F-A23C-4E92-B940-A968D8D77436}
O43 - CFD: 16/04/2015 - 18:06:13 - [0] ----D C:\Users\Cyril\AppData\Local\{D8CB415B-F0B5-4AC9-B326-948F74048625}
O43 - CFD: 19/05/2014 - 19:16:01 - [0] ----D C:\Users\Cyril\AppData\Local\{DA9E08A5-3B43-438A-8F83-3ED57768FF98}
O43 - CFD: 03/11/2012 - 15:11:00 - [0] ----D C:\Users\Cyril\AppData\Local\{DAF48DC6-AE14-45E1-A149-CFB496334F7D}
O43 - CFD: 11/04/2013 - 12:46:21 - [0] ----D C:\Users\Cyril\AppData\Local\{DB625E77-5B68-47D5-BAEA-7192BFF314BB}
O43 - CFD: 15/05/2014 - 09:56:26 - [0] ----D C:\Users\Cyril\AppData\Local\{DBEF9052-88F9-4B80-B40B-0BA940F1142D}
O43 - CFD: 07/07/2015 - 09:52:50 - [0] ----D C:\Users\Cyril\AppData\Local\{DC5E686F-3B14-4144-AB08-500A17727202}
O43 - CFD: 28/02/2013 - 11:57:35 - [0] ----D C:\Users\Cyril\AppData\Local\{DC7EEFCA-7018-4F5A-9BB0-B656B50C7DD1}
O43 - CFD: 30/09/2012 - 18:33:06 - [0] ----D C:\Users\Cyril\AppData\Local\{DD12E891-C1C5-4405-A628-19C1E598C80D}
O43 - CFD: 10/10/2013 - 18:59:56 - [0] ----D C:\Users\Cyril\AppData\Local\{DDE87B3B-8F4E-484D-BE4A-33D5E3DB644E}
O43 - CFD: 07/08/2013 - 22:50:59 - [0] ----D C:\Users\Cyril\AppData\Local\{DEE2017D-678A-40BA-BF0D-0712BD66D9F8}
O43 - CFD: 25/08/2014 - 14:11:06 - [0] ----D C:\Users\Cyril\AppData\Local\{E2E655FD-3E93-45D7-A02A-6248007E209D}
O43 - CFD: 14/07/2012 - 13:13:18 - [0] ----D C:\Users\Cyril\AppData\Local\{E49ED280-CDC9-4592-BBC3-9AE2F3E739FE}
O43 - CFD: 23/04/2013 - 00:49:43 - [0] ----D C:\Users\Cyril\AppData\Local\{E4C83445-4776-434B-8A00-D4EDF074D1B8}
O43 - CFD: 29/11/2013 - 00:01:32 - [0] ----D C:\Users\Cyril\AppData\Local\{E6C4508B-468B-4C53-8E7B-D882F2DE5A0A}
O43 - CFD: 14/12/2013 - 11:46:06 - [0] ----D C:\Users\Cyril\AppData\Local\{ECCE61DB-E299-4F3D-AE8C-4100EBE7D8E6}
O43 - CFD: 25/09/2013 - 19:10:43 - [0] ----D C:\Users\Cyril\AppData\Local\{EDD4331C-DA38-4BDF-B17D-F5B3DF13EBEF}
O43 - CFD: 12/03/2013 - 14:17:32 - [0] ----D C:\Users\Cyril\AppData\Local\{F2955B2F-3F19-4E32-8FE4-24DBA56AC7EE}
O43 - CFD: 12/07/2013 - 11:22:34 - [0] ----D C:\Users\Cyril\AppData\Local\{F2BE353E-A34C-400E-AC0D-276B02DE4C8B}
O43 - CFD: 28/08/2012 - 21:17:02 - [0] ----D C:\Users\Cyril\AppData\Local\{F2F0A533-866A-4D7D-B934-CF10F633E2E8}
O43 - CFD: 26/01/2012 - 21:48:43 - [0] ----D C:\Users\Cyril\AppData\Local\{F61BC46A-01C3-419A-9D50-99D73F9FAB7E}
O43 - CFD: 01/09/2012 - 00:00:07 - [0] ----D C:\Users\Cyril\AppData\Local\{F6A1DF1C-59D7-4652-B7C1-6E5964BCDDAF}
O43 - CFD: 22/09/2014 - 22:37:37 - [0] ----D C:\Users\Cyril\AppData\Local\{F9BAFD63-BADD-4CAD-97D9-51C950120920}
O43 - CFD: 28/08/2013 - 00:07:25 - [0] ----D C:\Users\Cyril\AppData\Local\{FA34A6BB-4862-407E-BB12-2C7B6DEE18D4}
O43 - CFD: 20/02/2015 - 01:01:44 - [0] ----D C:\Users\Cyril\AppData\Local\{FB6ECDF5-CF84-487B-984A-12BD0D932E93}
O43 - CFD: 07/12/2013 - 11:15:25 - [0] ----D C:\Users\Cyril\AppData\Local\{FC7EEE64-8DF7-4723-83F1-232199A81E46}
O43 - CFD: 31/07/2014 - 12:22:31 - [0] ----D C:\Users\Cyril\AppData\Local\{FD6C8108-CF38-457F-8AC5-6D9259414186}
O43 - CFD: 11/12/2013 - 11:34:34 - [0] ----D C:\Users\Cyril\AppData\Local\{FD79402D-F950-4AF8-9D9B-B2D18D1FDE34}
O43 - CFD: 30/11/2013 - 21:42:10 - [0] ----D C:\Users\Cyril\AppData\Local\{FD968844-1855-4424-BB7C-9812529E4DFB}
O43 - CFD: 16/07/2016 - 13:47:50 - [0,004] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 27/09/2016 - 08:04:07 - [0,004] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/06/2017 - 12:52:20 - [0,000] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/08/2011 - 12:26:51 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 28/11/2011 - 23:00:46 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Algobox
O43 - CFD: 01/08/2014 - 00:39:44 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cyanide
O43 - CFD: 26/09/2016 - 23:35:29 - [0,004] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloader
O43 - CFD: 27/06/2017 - 19:29:54 - [0,001] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 26/09/2016 - 23:35:29 - [0,001] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 26/09/2016 - 23:35:29 - [0,006] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebra 4
O43 - CFD: 26/09/2016 - 23:35:29 - [0,006] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebra 4.2
O43 - CFD: 26/09/2016 - 23:35:29 - [0,009] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebraPrim
O43 - CFD: 05/03/2017 - 22:26:47 - [0,002] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
O43 - CFD: 16/07/2016 - 13:47:50 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 08/09/2012 - 14:58:16 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Application
O43 - CFD: 26/09/2016 - 23:18:21 - [0,003] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 26/09/2016 - 23:18:22 - [0,012] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy
O43 - CFD: 26/09/2016 - 23:35:29 - [0,005] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 29/10/2012 - 22:00:47 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SitNGo Wizard
O43 - CFD: 17/06/2017 - 12:52:20 - [0,003] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 16/07/2016 - 13:47:50 - [0,005] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 23/12/2015 - 23:56:14 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamax
O43 - CFD: 16/07/2016 - 13:48:01 - [0,007] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 26/09/2016 - 23:35:29 - [0,003] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 07mn 26s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.038356387332650843BCB352BB89A101] - 11/07/2017 - 21:30:22 ---A- . (...) -- C:\Windows\WindowsUpdate.log [275]
O44 - LFC:[MD5.EE462096569EE1484C7BE38979BA4749] - 11/07/2017 - 21:25:48 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.75BB251CAC467EA6D8004A8CD9BF8FF7] - 11/07/2017 - 21:23:35 ---A- . (...) -- C:\Windows\PFRO.log [2896]
O44 - LFC:[MD5.9E77D7941FBB76EC3A698950E881D6BE] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [3224834]
O44 - LFC:[MD5.9D7F54A5BD731B2C375C8D20CD5F060D] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [379054]
O44 - LFC:[MD5.1C64012EE802D1531618D976DB7A7CC4] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [355442]
O44 - LFC:[MD5.6DF498320C419A4F5D857CB13016E0AC] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [1044298]
O44 - LFC:[MD5.7FAECE162CEA2A7487F8591163540979] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [1416134]
O44 - LFC:[MD5.9E77D7941FBB76EC3A698950E881D6BE] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [3224834]
O44 - LFC:[MD5.0549DD21DD21D14472F4141106A671EB] - 17/06/2017 - 11:44:59 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [264288]
O44 - LFC:[MD5.A3E5C464520434D873BF1BD092117853] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [45056]
O44 - LFC:[MD5.A3E5C464520434D873BF1BD092117853] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [45056]
O44 - LFC:[MD5.A64CF9D11F695E8BE7E88DB2FF9ACBE9] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [379232]
O44 - LFC:[MD5.A64CF9D11F695E8BE7E88DB2FF9ACBE9] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [379232]
O44 - LFC:[MD5.76142A00FDA4E0B192D1057BBAECF17A] - 03/06/2017 - 11:01:49 ---A- . (...) -- C:\Windows\SysNative\CoreUIComponents.dll [2681200]
O44 - LFC:[MD5.76142A00FDA4E0B192D1057BBAECF17A] - 03/06/2017 - 11:01:49 ---A- . (...) -- C:\Windows\System32\CoreUIComponents.dll [2681200]
O44 - LFC:[MD5.597C96281C55868CDBB06E22ADAEDCA9] - 03/06/2017 - 07:08:28 ---A- . (...) -- C:\Windows\SysNative\normidna.nls [80078]
~ Scan Files in 02mn 01s
---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\IEWInternet\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\IEWInternet\Connectivity\ConnectivityManager.exe
~ Scan Keys in 00mn 00s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de lÉditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (...) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\iai2c.sys . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\Drivers\iai2c.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\SpbCx.sys . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\uefi.sys . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\SpbCx.sys . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\uefi.sys . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRecentDocsHistory"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.EE1CCC54F75C24727A218F98FC5349DA] - 16/07/2016 - 12:41:53 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [107360]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 30/12/1899 - 17:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [33856]
~ Scan Drivers in 00mn 01s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur dévénements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (...) -- C:\Program Files (x86)\Opera\Launcher.exe
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur dévénements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (...) -- C:\Program Files (x86)\Opera\Launcher.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 02s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Cyril\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {1831A78C-284A-4B53-8FDF-DA371163A3F2} - (Propositions de recherche Amazon.fr) - http://www.amazon.fr
O69 - SBI: SearchScopes [HKCU] {b7fca997-d0fb-4fe0-8afd-255e89cf9671} - (Yahoo) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {d43b3890-80c7-4010-a95d-1e77b5924dc3} - (Wikipedia) - http://fr.wikipedia.org
O69 - SBI: SearchScopes [HKCU] {D944BB61-2E34-4DBF-A683-47E505C587DC} - (eBay) - http://rover.ebay.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [193536]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [193536]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [305152]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1227264]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [932352]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [945664]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service douverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [31232]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations dapplication.) -- C:\Windows\System32\appinfo.dll [125952]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [112128]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [948224]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [222720]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur dordinateurs.) -- C:\Windows\System32\browser.dll [134656]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [387072]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [94208]
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [161792]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [70656]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [37376]
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [407552]
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [25088]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique daccès distant.) -- C:\Windows\System32\rasauto.dll [105472]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions daccès à distance.) -- C:\Windows\System32\rasmans.dll [657920]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire dinterface dynamique.) -- C:\Windows\System32\mprdim.dll [496128]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification dévénements système (SENS).) -- C:\Windows\System32\sens.dll [70656]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de lapplication dassistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [541696]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [309248]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2318848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1054208]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [617472]
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57344]
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Windows.) -- C:\Windows\System32\WpnService.dll [234496]
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1025536]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [183808]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [650752]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [361472]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire dinstallation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [197632]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [167936]
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1016320]
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [548864]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [358400]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1021440]
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1159680]
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [635904]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2104320]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [266752]
~ Scan Services in 00mn 03s
---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.F1B1F3FC0621CB1711287550D612BA4F] [SPRF][14/02/2012] (...) -- C:\Users\Cyril\AppData\Local\postgresinstall.bat [387]
[MD5.DC159B9F31B6E6A98F11D6AEDF3526AB] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\DeleteOnReboot.bat [4533]
[MD5.A558F7BF5747E6C6D524417A45BFA3EF] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\sa.1A7994D6-5342-8581-71FB-A2BD1C895D93_5__.Public.AppUpdate.dat [624]
[MD5.56BDDE7CBA132B5B379C996A988611CF] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\sa.34791E63.CanonInkjetPrintUtility_6e5tt8cgb93ep_1__.Public.InstallAgent.dat [63786]
[MD5.EA33A7502D24A1DD507CD08593F452BA] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\sa.AD2F1837.HPPrinterControl_v10z8vjag6ke6_1__.Public.InstallAgent.dat [274558]
[MD5.FE0F646DD809E3C7DC2B52D59C982716] [SPRF][17/12/2011] (...) -- C:\Users\Cyril\AppData\Roaming\zxgf16q51nkylclm.dat [8]
[MD5.03EE648234695256013A30A7D5BCF599] [SPRF][23/10/2014] (...) -- C:\Users\Cyril\Desktop\Domination_install_1.1.1.4.exe [7141385]
[MD5.E4B31B8CC2CEB446EE6A6003550FAAE4] [SPRF][01/10/2012] (...) -- C:\Windows\Downloaded Program Files\cfweb_activex.camfrogweb.com-advanced-2.0.1.14_instmodule.exe [99936]
~ Scan Files in 00mn 01s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "Collab-P2PHost-In-TCP" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP" |Out - Private - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" |In - Private - P17 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" |Out - Private - P17 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "MCX-In-TCP" |In - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Prov-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcx2prov.exe (.not file.)
O87 - FAEL: "MCX-McrMgr-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcrmgr.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP_1" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP_1" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP_1" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP_1" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP_1" |Out - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP_1" |In - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP_1" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-In-TCP_1" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "{7460E64E-9724-41A4-98E5-3F8BB91C6A8F}" | In - Private - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{0E73DABE-B73E-45D6-AB90-CB02BC9C4F86}" | In - Private - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "UDP Query User{BF76B9AC-96A2-4316-A50A-67580D2894AB}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Public - P17 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "TCP Query User{72139A7D-ACAB-48DB-A638-44A1AAE6863A}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Public - P6 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "UDP Query User{EC90B197-141B-40D9-8080-DA1E9D678C9D}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Private - P17 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "TCP Query User{10D46914-2263-417D-8096-504EB824852A}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Private - P6 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "{B73485E2-FAE4-4DC3-A924-766E259CD5C1}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{58FBE0FC-BF4F-4925-B762-4F22A440892C}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{4CC117D8-734A-45B1-B214-19C19E121CBD}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{2E7B72CE-BADB-46EC-958D-83B073ADB722}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{56C7713A-2654-4B66-BED8-686F57A5213E}" | In - Public - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{4B34EA84-DA80-4499-AC7F-5F004CE52318}" | In - Public - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{3614D1A0-A56E-4972-A0F2-A83EED8D87E5}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Cyril\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{0C4C3FB7-BCE0-4D0F-BAF4-C0A3A8CC5751}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Cyril\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "UDP Query User{C6451455-6380-432D-85A6-F710B7FDE5E1}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Private - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrct
O87 - FAEL: "TCP Query User{59076B9C-B326-4154-B8C1-6DCED9E8ED4D}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Private - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrctr
O87 - FAEL: "UDP Query User{041745A6-0CC1-46FA-BEA0-89136C216721}C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.exe" | In - Private - P17 - TRUE | .(.Cyanide.) -- C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.
O87 - FAEL: "TCP Query User{211EC0F4-B669-44D0-B98B-15612713D24A}C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.exe" | In - Private - P6 - TRUE | .(.Cyanide.) -- C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.e
O87 - FAEL: "{BA17D3AA-0625-47AB-B32A-B9E7433A8415}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - AutorunApp.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\Autorun\exe\Autorun.exe
O87 - FAEL: "{E7179E85-4253-4AA8-82F2-129554EB90F3}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - AutorunApp.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\Autorun\exe\Autorun.exe
O87 - FAEL: "{D57E3AF1-ADD1-47A6-B156-F2203B1FE33C}" | In - Public - P17 - TRUE | .(.Cyanide - Pro Cycling Manager.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\PCM.exe
O87 - FAEL: "{7E57B54E-F58C-4F21-9711-4D61EF7A1A38}" | In - Public - P6 - TRUE | .(.Cyanide - Pro Cycling Manager.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\PCM.exe
O87 - FAEL: "UDP Query User{9B615545-A941-4874-90CB-0A3F706ACFF3}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Public - P17 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "TCP Query User{0E05420E-E76E-4CB7-AA1A-A4A72C8638E7}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Public - P6 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "UDP Query User{5EA94C72-3CB5-47D3-A9DB-0A232C5BF303}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Private - P17 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "TCP Query User{E01F867B-0ACE-4BE9-A19A-579C2A13C0BB}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Private - P6 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "{46C7DC07-FF5B-4875-BCC9-A8E9CE762808}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O87 - FAEL: "{07C92183-067A-4F51-B7A1-261E8A670F1F}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O87 - FAEL: "{79A2FD12-2039-4041-9BAE-A1268DD8477C}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
O87 - FAEL: "{A8CF532E-8B69-436A-9A32-F576B7C7AFB1}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
O87 - FAEL: "UDP Query User{F5168606-0FA1-455A-AE58-9CE559F702D8}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Public - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrctr
O87 - FAEL: "TCP Query User{C70D66DE-32F2-472B-8690-EBE24DFF3E1A}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Public - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrctrl
O87 - FAEL: "{4C15176A-6957-4437-950F-6D29297431AC}" | In - Domain - P17 - FALSE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{05248215-01B5-416C-9D37-D9523E610A5B}" | In - Domain - P6 - FALSE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{93F51771-65A8-4B94-99DE-EBE3D2F6737D}" | In - Private - P17 - TRUE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{6B1E6F7A-7DCC-48AF-8B88-4979CA026697}" | In - Private - P6 - TRUE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{2560100B-4B52-48D3-AF52-BAFDDFCCC11A}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{89749B91-2549-4AE5-AF8E-C11CB66FE195}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{18D9DCDD-FE94-4825-B50B-35EFB917B154}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{56FDC1E4-0C2C-4F83-9FA8-532632A84DC1}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{C5522A18-E53E-40EB-9C0A-F9AE2906328E}" | In - None - P17 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{79A4E576-3C19-4172-AC14-5C61DF052DC1}" | In - None - P6 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{12DD5EBF-76D6-43F8-9B49-BCEBAAFA703B}" | In - None - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{A9F86BC5-D756-4D72-8EED-13963B14FDDC}" | In - None - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{319B8D27-E382-45BC-9E00-428BD6689437}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{E6277F49-4712-468D-A6EE-58DEEAD3CD58}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{6BB5EB85-774A-46A0-B430-6F8AB64B4A5A}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{AC277028-7AED-4380-AC61-CF34F288267A}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{C0BAE498-4439-4360-8BAF-C4DB3789183D}" | In - Public - P17 - TRUE | .(.Moonware Studios - webcamXP Service.) -- C:\Program Files (x86)\webcamXP 5\wService.exe
O87 - FAEL: "{14CF74E2-370A-406D-A731-E218FC5871AE}" | In - Public - P6 - TRUE | .(.Moonware Studios - webcamXP Service.) -- C:\Program Files (x86)\webcamXP 5\wService.exe
O87 - FAEL: "{40C47057-5D3D-429A-A08E-09F0F5CFB0B1}" | In - Public - P17 - TRUE | .(.Moonware Studios - webcamXP.) -- C:\Program Files (x86)\webcamXP 5\wLite.exe
O87 - FAEL: "{584A527D-882C-4E80-87C6-E8150FC77B5D}" | In - Public - P6 - TRUE | .(.Moonware Studios - webcamXP.) -- C:\Program Files (x86)\webcamXP 5\wLite.exe
O87 - FAEL: "UDP Query User{6348DB40-2F67-42B5-B285-E7641A5D2E23}C:\users\cyril\jeux\docs\snes\zsnesw.exe" | In - Public - P17 - TRUE | .(...) -- C:\users\cyril\jeux\docs\snes\zsnesw.exe
O87 - FAEL: "TCP Query User{A31C1F6A-7EC6-45F5-A578-6872615ACDC4}C:\users\cyril\jeux\docs\snes\zsnesw.exe" | In - Public - P6 - TRUE | .(...) -- C:\users\cyril\jeux\docs\snes\zsnesw.exe
O87 - FAEL: "UDP Query User{FF55B390-0AE7-43BA-A3A7-3D509A6EC13A}C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "TCP Query User{E2BE804E-FD4C-4D66-8DF1-B7DDFF52DBA5}C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "UDP Query User{C348BCEE-4242-40E5-9373-0550874BB9BE}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeve
O87 - FAEL: "TCP Query User{CE66B545-A638-403F-85D1-999F3423BC7B}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
O87 - FAEL: "UDP Query User{61C10898-32D2-410E-8762-87F82497F206}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe" | In - Public - P17 - TRUE | .(.Easy.) -- C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
O87 - FAEL: "TCP Query User{20726DF2-70CA-459D-95B6-D79132D53039}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe" | In - Public - P6 - TRUE | .(.Easy.) -- C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
O87 - FAEL: "UDP Query User{903E3BE1-E64A-4BA4-B641-D47893C83537}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
O87 - FAEL: "TCP Query User{473F1549-4C09-40E0-8AAC-5175DB2A3E9E}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eevent
O87 - FAEL: "{D340F4F4-0C34-4F92-91DB-070B9C2A67D2}" |In - Private - P17 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{F4A34CEF-985C-4592-AEF3-C6FB03ADDFA7}" |In - Private - P6 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{B95B6DAD-5E12-4EEA-9DAA-7B2849EA5192}" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Cyril\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{AF935BB1-FEBE-4A39-9E4E-189E2F36CF5D}" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Cyril\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{77BB41E0-07CB-4686-8CC8-EDBB6FC57046}" |In - Public - P17 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{4C6E1110-C3D4-42C4-A148-8060802EDE92}" |In - Public - P6 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{96CDBB3C-7103-4083-A328-A5F068A9976B}" | In - Private - P17 - TRUE | .(.Cyanide - pcm.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2008\PCM.exe
O87 - FAEL: "{C55DA772-ABE7-415B-822A-71AF12150788}" | In - Private - P6 - TRUE | .(.Cyanide - pcm.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2008\PCM.exe
O87 - FAEL: "{2B10A3C2-4531-4160-8A10-BC3A5C19A4FB}" | In - Private - P17 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{566E7B40-F7F5-47B2-91FD-84397BEFEE4D}" | In - Private - P6 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{107BF636-29C9-486F-BD92-6C9F6BA27527}" | In - Domain - P17 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{B583C538-3377-49E1-97E2-C313852473C0}" | In - Domain - P6 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{3A974404-F28B-4B9A-8ED2-C744401EBC89}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{D4C03D8E-D241-49C7-91EA-397C26405903}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{DEF6BB10-FE82-465F-B1DC-926CBB4C5365}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{6C1BD925-794D-4A53-A9A6-834816FE2F60}" | In - Public - P17 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{82BDD044-9830-4BFE-96B5-853B64E15A54}" | In - Public - P6 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{21BE1369-CC71-45F6-A47A-C5D9DF4ACA73}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{B38CDD9F-A222-413F-A061-21FB350CE3EC}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{23E45EF7-0333-44BD-AD20-1C5DCC225F22}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{8824287B-0C0A-4841-B8AB-D7BB3045ECB5}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{68241ED9-41E2-4543-A38C-3817987D39B4}" | In - None - P6 - TRUE | .(.EasyBits Software AS - EasyBits Magic Desktop for Kids.) -- C:\Program Files (x86)\EasyBits For Kids\ezDesktop.exe
O87 - FAEL: "{1205BEB9-95A1-4488-A49B-E646E4034150}" |In - None - P6 - TRUE | .(...) -- C:\Windows\system32\ezSharedSvcHost.exe (.not file.)
O87 - FAEL: "{51B2446E-4EA9-41AB-90A3-5AD1EBF1E709}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe (.not file.)
O87 - FAEL: "TCP Query User{98E19F35-7C0C-4CAE-8EF8-A0E95BBBB85C}C:\program files (x86)\videolan\vlc\vlc.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\videolan\vlc\vlc.exe
O87 - FAEL: "UDP Query User{2E93F7DC-184D-421A-BD83-64F18529C116}C:\program files (x86)\videolan\vlc\vlc.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\videolan\vlc\vlc.exe
O87 - FAEL: "{903AE1C9-1DE9-4E06-A27A-3A1BE10F763E}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O87 - FAEL: "{EFD3FBE7-4238-4BB7-B278-8B5C605BF6D6}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O87 - FAEL: "TCP Query User{49E76FB9-945E-41F0-8F35-D946F1CDF9AE}C:\program files (x86)\airdroid\airdroid.exe" | In - Private - P6 - TRUE | .(.Sand Studio - AirDroid 3.) -- C:\program files (x86)\airdroid\airdroid.exe
O87 - FAEL: "UDP Query User{FA204477-4949-4EF1-9E28-E02DB31C5910}C:\program files (x86)\airdroid\airdroid.exe" | In - Private - P17 - TRUE | .(.Sand Studio - AirDroid 3.) -- C:\program files (x86)\airdroid\airdroid.exe
O87 - FAEL: "{DE5889BF-3A6D-47C3-A681-3CB5D0C1FE2E}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O87 - FAEL: "{88E92494-54D0-487D-A86D-8844E49D8176}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
~ Scan Firewall in 00mn 05s
---\\ Scan Additionnel (O88)
Database Version : v2.10565 - (07/02/2013)
Clés trouvées (Keys found) : 7
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 0
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C9A6357B-25CC-4BCF-96C1-78736985D412}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C9A6357B-25CC-4BCF-96C1-78736985D412}] =>Toolbar.Agent
[HKCU\Software\PartyFrance] =>Casino.OnlineGames
C:\Program Files (x86)\Software =>Adware.Boxore
C:\Users\Cyril\AppData\Local\Installer =>Adware.InstallPedia
~ Scan Additionnel in 00mn 29s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "0318D894178B49D4A9CD1C9FE981F8A3" . (.INDEX EDUCATION - Mise à jour automatique.) -- C:\Windows\Installer\{498D8130-B871-4D94-9ADC-C1F99E188F3A}\ARPPRODUCTICON.exe
O90 - PUC: "052E2C9D1A7186D0BC143832E23CC1C2" . (.ccc-utility64.) -- C:\WINDOWS\Installer\{D9C2E250-17A1-0D68-CB41-83232EC31C2C}\ARPPRODUCTICON.exe
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "0C9839E0A8E047144A03FCFA2FC93C7A" . (.PokerStrategy.com Equilab.) -- C:\Windows\Installer\{0E9389C0-0E8A-4174-A430-CFAFF29CC3A7}\ARPPRODUCTICON.exe
O90 - PUC: "0F76E360892CA2A8F06A481C35224A0E" . (.ccc-utility64.) -- C:\WINDOWS\Installer\{063E67F0-C298-8A2A-0FA6-84C15322A4E0}\ARPPRODUCTICON.exe
O90 - PUC: "1710346FB68B936438E97394317E19D1" . (.Google Earth.) -- C:\WINDOWS\Installer\{F6430171-B86B-4639-839E-374913E7911D}\MainIcon.ico
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "241A5D4605DBE627DEE92D05D8A2712E" . (.Catalyst Control Center InstallProxy.) -- C:\WINDOWS\Installer\{64D5A142-BD50-726E-ED9E-D2508D2A17E2}\ARPPRODUCTICON.exe
O90 - PUC: "262160A62B2C2E87B98F233DDB6DC834" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{6A061262-C2B2-78E2-9BF8-32D3BDD68C43}\ARPPRODUCTICON.exe
O90 - PUC: "2A0160E7633E3B046B584C09E579CEA9" . (.OpenOffice.org 3.3.) -- C:\Windows\Installer\{7E0610A2-E336-40B3-B685-C4905E97EC9A}\soffice.ico
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "2C1A65825C073CE4FA7F5E5BE155032A" . (.HP Client Services.) -- C:\Windows\Installer\{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}\ARPPRODUCTICON.exe
O90 - PUC: "3BE2BCD5DA78E624D847B8299C7D134C" . (.TomTom HOME.) -- C:\WINDOWS\Installer\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}\ARPPRODUCTICON.exe
O90 - PUC: "42D78011D76588D7966C7D0AB8F5C474" . (.Catalyst Control Center - Branding.) -- C:\WINDOWS\Installer\{11087D24-567D-7D88-69C6-D7A08B5F4C47}\ARPPRODUCTICON.exe
O90 - PUC: "46E5DCBD973784644944A85685CD6B41" . (.Recovery Manager.) -- C:\Windows\Installer\{DBCD5E64-7379-4648-9444-8A6558DCB614}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "4BE02D7D98DB0C50506C335E7B2689E9" . (.Catalyst Control Center InstallProxy.) -- C:\WINDOWS\Installer\{D7D20EB4-BD89-05C0-05C6-33E5B762989E}\ARPPRODUCTICON.exe
O90 - PUC: "4D6382495935B2561F8E7A5C0B9319C0" . (.ATI Catalyst Install Manager.) -- C:\Windows\Installer\{942836D4-5395-652B-F1E8-A7C5B039910C}\ARPPRODUCTICON.exe
O90 - PUC: "50A45C97641F0AE4A8074DFE6E81E125" . (.HP Support Assistant.) -- C:\WINDOWS\Installer\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}\ARPPRODUCTICON.exe
O90 - PUC: "57C5B7C328DFF1CB1F84983A81E93F58" . (.AMD Catalyst Control Center.) -- C:\WINDOWS\Installer\{3C7B5C75-FD82-BC1F-F148-89A3189EF385}\ARPPRODUCTICON.exe
O90 - PUC: "585FAF6380D348D33803D440F8B4C66E" . (.AMD Fuel.) -- C:\WINDOWS\Installer\{36FAF585-3D08-3D84-8330-4D048F4B6CE6}\ARPPRODUCTICON.exe
O90 - PUC: "5BD3937ABAC67A07A4E59CA65F8158A8" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{A7393DB5-6CAB-70A7-4A5E-C96AF518858A}\ARPPRODUCTICON.exe
O90 - PUC: "5BFC3035536D0F449AB469118EF1704C" . (.Camtasia Studio 8.) -- C:\Windows\Installer\{5303CFB5-D635-44F0-A94B-9611E81F07C4}\CamStudio.ico
O90 - PUC: "5DBAFE4B44758DE4AB741C07B46B482D" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{B4EFABD5-5744-4ED8-BA47-C1704BB684D2}\controlPanelIcon.exe
O90 - PUC: "68AB67CA408033019195008142220573" . (.Adobe Refresh Manager.) -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824225037}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA7FFFFB744AA0000000010" . (.Adobe Reader X (10.1.16) MUI.) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O90 - PUC: "68ADF0FAB7E6C6A1154D34FA0581E12D" . (.AMD Catalyst Control Center.) -- C:\WINDOWS\Installer\{AF0FDA86-6E7B-1A6C-51D4-43AF50181ED2}\ARPPRODUCTICON.exe
O90 - PUC: "6EF2A1BCFDB2CCED9CB1E4F5DF955C6D" . (.WMV9/VC-1 Video Playback.) -- C:\Windows\Installer\{CB1A2FE6-2BDF-DECC-C91B-4E5FFD59C5D6}\ARPPRODUCTICON.exe
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.2.3.) -- C:\Windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "71EB90E0AEDEAC249847245A785F5101" . (.TomTom HOME.) -- C:\Windows\Installer\{0E09BE17-EDEA-42CA-8974-42A587F51510}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "77E99DA1CC73E44793AC766FDF4365A5" . (.Catalyst Control Center Localization All.) -- C:\WINDOWS\Installer\{1AD99E77-37CC-744E-39CA-67F6FD34565A}\ARPPRODUCTICON.exe
O90 - PUC: "7B65D4CC81F6B0747843BADC57CB4F1F" . (.HP Auto.) -- C:\Windows\Installer\{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}\ARPPRODUCTICON.exe
O90 - PUC: "7C87544E76644214B82C1116CB5A9487" . (.HP Power Manager.) -- C:\Windows\Installer\{E44578C7-4667-4124-8BC2-1161BCA54978}\_853F67D554F05449430E7E.exe
O90 - PUC: "7CB7FA6253BD5C7B139692CB2638C584" . (.AMD Fuel.) -- C:\Windows\Installer\{26AF7BC7-DB35-B7C5-3169-29BC62835C48}\ARPPRODUCTICON.exe
O90 - PUC: "883658EADAFA357418FD9DB6910D1AC7" . (.HP Setup Manager.) -- C:\Windows\Installer\{AE856388-AFAD-4753-81DF-D96B19D0A17C}\ARPPRODUCTICON.exe
O90 - PUC: "8AB31F170D69182F463791A685246CFC" . (.ccc-utility64.) -- C:\Windows\Installer\{71F13BA8-96D0-F281-6473-196A5842C6CF}\ARPPRODUCTICON.exe
O90 - PUC: "8AC6637E9717EA777E21AB817DA0A070" . (.AMD Fuel.) -- C:\WINDOWS\Installer\{E7366CA8-7179-77AE-E712-BA18D70A0A07}\ARPPRODUCTICON.exe
O90 - PUC: "8CB34C1C064210E4698233E24025B3CD" . (.HP Documentation.) -- C:\Windows\Installer\{C1C43BC8-2460-4E01-9628-332E04523BDC}\NotebookDocs.exe
O90 - PUC: "97B0E634BFC2F5E439081EC7B1520D5C" . (.Broadcom 2070 Bluetooth 3.0.) -- C:\Windows\Installer\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}\ARPPRODUCTICON.exe
O90 - PUC: "9C43A1DB467497F4EAF111F2C8983D4D" . (.Energy Star Digital Logo.) -- C:\Windows\Installer\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "9CD28C1C74518304F8A00C960F7B2FDE" . (.AMD System Monitor.) -- C:\Windows\Installer\{C1C82DC9-1547-4038-8F0A-C069F0B7F2ED}\_853F67D554F05449430E7E.exe
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "A419E7B35D3992A429BBFAC8F3664C13" . (.Skype 7.36.) -- C:\WINDOWS\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe
O90 - PUC: "A60096F0F2DC21C47A686C958C9F4832" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{0F69006A-CD2F-4C12-A786-C659C8F98423}\ARPPRODUCTICON.exe
O90 - PUC: "A96DB1DE3E70C814191F8D65855218FB" . (.HP On Screen Display.) -- C:\Windows\Installer\{ED1BD69A-07E3-418C-91F1-D856582581BF}\_853F67D554F05449430E7E.exe
O90 - PUC: "B86644655A406F86A09A305285775CF8" . (.Catalyst Control Center Localization All.) -- C:\WINDOWS\Installer\{5644668B-04A5-68F6-0AA9-03255877C58F}\ARPPRODUCTICON.exe
O90 - PUC: "C08485BE1270C3843B45D9531A7499F9" . (.HP Quick Launch.) -- C:\Windows\Installer\{EB58480C-0721-483C-B354-9D35A147999F}\_853F67D554F05449430E7E.exe
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D54EC5DEB24881C40A20781EE63AB93B" . (.HP Support Solutions Framework.) -- C:\WINDOWS\Installer\{ED5CE45D-842B-4C18-A002-87E16EA39BB3}\icon.ico
O90 - PUC: "D5F533D558148DA4E8D6468D4DBA087D" . (.HP Software Framework.) -- C:\Windows\Installer\{5D335F5D-4185-4AD8-8E6D-64D8D4AB80D7}\app_1.exe
O90 - PUC: "D72C71A85230C004A89AAD6A1BC6DB47" . (.Epson Event Manager.) -- C:\Windows\Installer\{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}\icon.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "F9E570B632D438806FC66C899E94DC09" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{6B075E9F-4D23-0883-F66C-C698E949CD90}\ARPPRODUCTICON.exe
O90 - PUC: "FAA1FE9C245B8C145A731124ADD5A4CE" . (.HP Customer Experience Enhancements.) -- C:\WINDOWS\Installer\{C9EF1AAF-B542-41C8-A537-1142DA5D4AEC}\ARPPRODUCTICON.exe
O90 - PUC: "FBDAA5972C850D247B977E0307A242E7" . (.HP Connection Manager.) -- C:\Windows\Installer\{795AADBF-58C2-42D0-B779-E730702A247E}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s
---\\ MyComputer Name Space (O92)
O92 - MNS: - {088e3905-0323-4b02-9826-5d99428e115f}
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {24ad3ad4-a569-4530-98e1-ab02f9417aa8}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {3dfdf296-dbec-4fb4-81d1-6a3438bcf4de}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
O92 - MNS: - {d3162b92-9365-467a-956b-92703aca08af}
O92 - MNS: - {f86fa3ab-70d2-4fc7-9c99-fcbf05467f3a}
~ Scan MNS in 00mn 00s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SR - | Auto 25/04/2017 83056 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Demand 11/07/2017 272384 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 03/03/2009 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe
SR - | Auto 29/12/2015 255472 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 21/08/2015 344064 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
SR - | Auto 26/09/2016 197128 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 28/10/2013 2255064 | (BcmBtRSupport) . (.Broadcom Corporation..) - C:\Windows\System32\BtwRSupportService.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 1966960 | (Dedicarz Service) . (...) - C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
SR - | Auto 14/09/2009 166400 | (EPSON_EB_RPCV4_04) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.exe
SR - | Auto 14/09/2009 128512 | (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe
SR - | Auto 09/12/2011 334720 | (FileOpenManagerSvc) . (.FileOpen Systems Inc..) - C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe
SR - | Auto 25/08/2009 77824 | (FTRTSVC) . (.France Telecom SA.) - C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
SR - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SR - | Auto 29/08/2015 144200 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 29/08/2015 144200 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 11/10/2010 346168 | (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
SR - | Demand 28/04/2015 1102472 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 27/05/2011 30520 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 01/06/2017 321056 | (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
SR - | Auto 09/11/2010 26680 | (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 08/03/2011 2375168 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 253528 | (IJPLMSVC) . (...) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe
SR - | Auto 26/05/2017 3061744 | (MajIndexEducationService) . (.Index Education.) - C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
SR - | Demand 16/11/2016 146888 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Demand 22/08/2013 32568 | (OpenVPNService) . (.The OpenVPN Project.) - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
SR - | Auto 29/08/2016 734488 | (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
SR - | Auto 14/05/2014 67584 | (PasswordBox) . (.PasswordBox, Inc..) - C:\Program Files (x86)\PasswordBox\pbbtnService.exe
SR - | Auto 10/12/2009 65536 | (pgsql-8.3) . (.PostgreSQL Global Development Group.) - C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
SR - | Auto 05/04/2017 317400 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 11/03/2011 297984 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SR - | Auto 28/04/2016 253960 | (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
SR - | Auto 05/02/2014 4915040 | (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
SR - | Auto 13/07/2015 93040 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
SR - | Demand 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Demand 16/07/2016 44496 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Demand 26/03/2012 5404472 | (wxpSvc) . (.Moonware Studios.) - C:\Program Files (x86)\webcamXP 5\wService.exe
~ Scan Services in 00mn 14s
End of the scan (1881 lines in 13mn 06s)(0)
Run by Cyril at 11/07/2017 23:04:50
State : Problème connexion internet
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v9.11.14393.0
MFIE: Mozilla Firefox 47.0.2 v47.0.2
---\\ Windows Product Information
~ Langage: Français
Windows 8 Home Premium Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8HVX7
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: AMD64 Family 18 Model 1 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3562 MB (42% free)
System Restore: Activé (Enable)
System drive C: has 420 GB (61%) free of 683 GB
---\\ Logged in mode
~ Computer Name: FRITZ
~ User Name: Cyril
~ All Users Names: rugbystars24, rugbyplayer24, rugbyman24, postgres, HomeGroupUser$, DefaultAccount, Cyril, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Cyril\AppData\Roaming\
~ %Desktop% : C:\Users\Cyril\Desktop\
~ %Favorites% : C:\Users\Cyril\Favorites\
~ %LocalAppData% : C:\Users\Cyril\AppData\Local\
~ %StartMenu% : C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 420 Go of 683 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 15 Go)
E:\ CD-ROM drive (Not Inserted)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.679D17F8CDB938C7100D7A647953677E] - (.Microsoft Corporation - Explorateur Windows.) (.28/04/2017 - 01:34:21.) -- C:\Windows\Explorer.exe [4674360]
[MD5.99A19C9A74E2F9820E501DCE77F84F70] - (.Microsoft Corporation - Application de démarrage de Windows.) (.16/07/2016 - 12:42:27.) -- C:\Windows\System32\Wininit.exe [304240]
[MD5.B9727FA7889DD6FCE4F7C27F8879A7F4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.28/04/2017 - 00:37:12.) -- C:\Windows\System32\wininet.dll [2895872]
[MD5.B2151FE002A8D3F41E2DF935F260E3A8] - (.Microsoft Corporation - Application douverture de session Windows.) (.28/04/2017 - 00:39:18.) -- C:\Windows\System32\Winlogon.exe [673792]
[MD5.9600B7F2F89DE60A80D13DE42F672834] - (.Microsoft Corporation - Bibliothèque de licences.) (.16/07/2016 - 12:42:19.) -- C:\Windows\System32\sppcomapi.dll [402432]
[MD5.323AA1953ED9C01E23F740FA891FE064] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.15/10/2016 - 05:21:41.) -- C:\Windows\system32\Drivers\AFD.sys [584032]
[MD5.A10F989A812B57B9695F6C305907C9C6] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.16/07/2016 - 12:41:53.) -- C:\Windows\system32\Drivers\atapi.sys [28512]
[MD5.F8FB51B9EF6372610E9B31A1D86B62FC] - (.Microsoft Corporation - CD-ROM File System Driver.) (.16/07/2016 - 12:42:35.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.613D0137C269187FA298A157E3D14A18] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.16/07/2016 - 12:41:53.) -- C:\Windows\system32\Drivers\Cdrom.sys [173056]
[MD5.4BC21E937E9F9F408672D2C2CBE4A153] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.04/03/2017 - 07:30:12.) -- C:\Windows\system32\Drivers\DfsC.sys [145408]
[MD5.10E3515FE5DBA6656FA62C29342EC4A1] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.16/07/2016 - 12:41:52.) -- C:\Windows\system32\Drivers\HDAudBus.sys [83456]
[MD5.B54B30992620C97230013A74461C8517] - (.Microsoft Corporation - Pilote de port i8042.) (.16/07/2016 - 12:41:54.) -- C:\Windows\system32\Drivers\i8042prt.sys [114176]
[MD5.F1DAECC3B3D6399875D4F10529D6A77C] - (.Microsoft Corporation - IP Network Address Translator.) (.16/07/2016 - 12:42:39.) -- C:\Windows\system32\Drivers\IpNat.sys [212480]
[MD5.D559FF28B1AD9B1E15A4186E785E61F6] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.04/03/2017 - 08:08:07.) -- C:\Windows\system32\Drivers\MRxSmb.sys [450400]
[MD5.6FEBB0A847FFD5F057B9AC8889F1B9A7] - (.Microsoft Corporation - MBT Transport driver.) (.16/07/2016 - 12:42:35.) -- C:\Windows\system32\Drivers\netBT.sys [279040]
[MD5.8DB6A6B731CEC9046CD8CA0267EC5679] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.28/04/2017 - 01:52:51.) -- C:\Windows\system32\Drivers\ntfs.sys [2255712]
[MD5.6B81BF7853D161DB8AC62CD8B9C2DE6B] - (.Microsoft Corporation - Pilote de port parallèle.) (.16/07/2016 - 12:41:53.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.17E565710172ED71B8531D8822E1C5D1] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.16/07/2016 - 12:42:39.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [104960]
[MD5.7135785C21CA79D270D11037C43D3F19] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.17/07/2016 - 23:45:21.) -- C:\Windows\system32\Drivers\rdpdr.sys [177152]
[MD5.A7C267671EDDF066E8CFBF897BC4B626] - (.Microsoft Corporation - TDI Translation Driver.) (.03/06/2017 - 10:59:25.) -- C:\Windows\system32\Drivers\tdx.sys [118112]
[MD5.BF2546583BB75F01DDA60A7921DFB230] - (.Microsoft Corporation - Volume Shadow Copy driver.) (.16/07/2016 - 12:42:35.) -- C:\Windows\system32\Drivers\volsnap.sys [391520]
~ Scan Generic Processes in 00mn 01s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/98
~ Mes musiques (My Musics) : 1/4
~ Mes Videos (My Videos) : 1/61
~ Mes Favoris (My Favorites) : 1/11
~ Mes Documents (My Documents) : 1/4938
~ Mon Bureau (My Desktop) : 2/11747
~ Menu demarrer (Programs) : 1/70
~ Scan Hidden Files in 01mn 21s
---\\ Processus lancés
[MD5.57C78F5EB4D7D6427F5A43137683A245] - (.Microsoft Corporation - Shell Infrastructure Host.) -- C:\Windows\System32\sihost.exe [78848] [PID.5728]
[MD5.0AF24553D8D4C581B7E2462269FF97AA] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352] [PID.5756]
[MD5.1E03C94933E088D9FAB00B49D46CC370] - (.Microsoft Corporation - Runtime Broker.) -- C:\Windows\System32\RuntimeBroker.exe [33616] [PID.5604]
[MD5.0E1853D3339D2963D2BC6AC1FDC1C811] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\System32\taskhostw.exe [88392] [PID.2840]
[MD5.7850D58EE55539B703EA883D375D2D70] - (.Microsoft Corporation - Windows Shell Experience Host.) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe [1653600] [PID.6696]
[MD5.EBC4935445CA5A3D4D898076642EC618] - (.Microsoft Corporation - Search and Cortana application.) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe [10652512] [PID.7132]
[MD5.5C430B3C872BD82E728ABB8C1821689F] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [1128448] [PID.6552]
[MD5.4A3936F2305D1764CE93727AF5A11ECE] - (.FileOpen Systems Inc. - FileOpen Broker.) -- C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [900992] [PID.6408]
[MD5.41306253189928EAB6FB2B30937853E3] - (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files (x86)\Hercules\Deluxe Optical Glass\XtrCtrl.exe [2999080] [PID.7016]
[MD5.C5D30E88C97825CF0652B60C42F103AD] - (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDrive.exe [1555664] [PID.6524]
[MD5.54EA8A3DCBF0AD3E968063A0E5451B3D] - (.Hammer & Chisel, Inc. - Discord.) -- C:\Users\Cyril\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304] [PID.2764]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.1884]
[MD5.CE99AA11D0274BE5BDEF3991508852E9] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [9080768] [PID.6636]
[MD5.27B736DF17A786B222F4E8B149AE9B64] - (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624] [PID.7108]
[MD5.CB8A6B1FC6F8D1BFBD61C543B4E9F105] - (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.exe [1298456] [PID.3860]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.7232]
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Users\Cyril\AppData\Local\Google\Chrome\Application\chrome.exe [1027928] [PID.6668]
[MD5.08B5115039E9852FCAA9C5B2A45B59F7] - (.Microsoft Corporation - Standalone Updater.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2803408] [PID.10184]
[MD5.2856445077AC4AF54983CE780E431DAE] - (.CANON INC. - Canon Quick Menu Updater.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.exe [1089064] [PID.10124]
[MD5.5AF5988C947F34FC478E0054DFD5D5F9] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5660160] [PID.6456]
~ Scan Processes Running in 00mn 05s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Cyril\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Cyril\AppData\Roaming\Mozilla\Firefox\Profiles\dxj7isnw.default\prefs.js
M3 - MFPP: Plugins - [Cyril] -- C:\Users\Cyril\AppData\Roaming\Mozilla\Firefox\Profiles\dxj7isnw.default\searchplugins\orange.xml
M2 - MFEP: prefs.js [Cyril - dxj7isnw.default\battlefieldheroespatcher@ea.com] [] Battlefield Heroes Updater v5.0.203.0 (.EA Digital Illusions CE AB.)
M2 - MFEP: prefs.js [Cyril - dxj7isnw.default\menu_contextuel_orange@orange.fr] [] Menu contextuel Orange v1.3 (.FranceTelecom-Orange Copyright 2008-2009.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.16.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.50907.0.) -- c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.14393.1198 (rs1_release_sec.170427-1353)) -- C:\Windows\SysWOW64\ieframe.dll
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Canon Easy-WebPrint EX BHO [64Bits] - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (...) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (.not file.)
O2 - BHO: PasswordBox Helper [64Bits] - {5DB69B97-934B-451D-94DB-32EF802A01CD} . (.PasswordBox, Inc. - Password Manager.) -- C:\Program Files (x86)\PasswordBox\Application\pbbtn.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: AVG SafeGuard toolbar [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} . (...) -- C:\Program Files (x86)\AVG SafeGuard toolbar\19.7.0.632\AVG SafeGuard toolbar_toolbar.dll (.not file.)
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.HP Inc. - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} Clé orpheline
O3 - Toolbar: AVG SafeGuard toolbar [64Bits] - [HKLM]{95B7759C-8C7F-4BF1-B163-73684A933233} . (...) -- C:\Program Files (x86)\AVG SafeGuard toolbar\19.7.0.632\AVG SafeGuard toolbar_toolbar.dll
O3 - Toolbar: Canon Easy-WebPrint EX [64Bits] - [HKLM]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [FileOpenBroker] . (.FileOpen Systems Inc. - FileOpen Broker.) -- C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
O4 - HKLM\..\Run: [CamserviceOG] . (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files (x86)\Hercules\Deluxe Optical Glass\XtrCtrl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Google Update Core.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [EPSON SX130 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.exe
O4 - HKCU\..\Run: [Orange Installer] . (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O4 - HKCU\..\Run: [OrangeInside] . (...) -- C:\Users\Cyril\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
O4 - HKCU\..\Run: [MyDriveConnect.exe] . (.TomTom - TomTom MyDrive Connect.) -- C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [Discord] . (.Hammer & Chisel, Inc. - Discord.) -- C:\Users\Cyril\AppData\Local\Discord\app-0.0.297\Discord.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [IJNetworkScannerSelectorEX] . (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
O4 - HKLM\..\Wow6432Node\Run: [CanonQuickMenu] . (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Google Update] . (.Google Inc. - Google Update Core.) -- C:\Users\Cyril\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [EPSON SX130 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Orange Installer] . (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [OrangeInside] . (...) -- C:\Users\Cyril\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [TomTomHOME.exe] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [MyDriveConnect.exe] . (.TomTom - TomTom MyDrive Connect.) -- C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Cyril\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-1619730599-949663201-56726497-1002\..\Run: [Discord] . (.Hammer & Chisel, Inc. - Discord.) -- C:\Users\Cyril\AppData\Local\Discord\app-0.0.297\Discord.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Assistance Livebox.lnk . (.Orange.) -- C:\Program Files (x86)\Orange\Assistance Livebox\AssistanceLivebox.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Discord.lnk . (.GitHub.) -- C:\Users\Cyril\AppData\Local\Discord\Update.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Dropbox.lnk . (.Dropbox, Inc..) -- C:\Users\Cyril\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\e-methode Espagnol.exe - Raccourci.lnk . (...) -- C:\Program Files (x86)\e-methode Espagnol\e-methode Espagnol.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\HP Support Assistant.lnk . (.HP Inc..) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\PokerStars.fr.lnk . (.Rational Intellectual Holdings Ltd..) -- C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Turbopoker.lnk . (.Playtech.) -- C:\Users\Cyril\AppData\Local\Turbopoker\casino.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\WinaChat.lnk . (...) -- C:\Users\Cyril\Winamax\WinaChat\WinaChat.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\Winamax Poker.lnk . (...) -- C:\Users\Cyril\Winamax\Winamax Poker\Winamax Poker.exe
O4 - Global Startup: C:\Documents And Settings\Cyril\Desktop\µTorrent.lnk . (.BitTorrent Inc..) -- C:\Users\Cyril\AppData\Roaming\uTorrent\uTorrent.exe
~ Scan Global Startup in 00mn 02s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 [64Bits] - {25510184-5A38-4A99-B273-DCA8EEF6CD08} . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Frame
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim daffectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{03b69add-3f8e-4cad-a798-a377f3553513}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{635974cf-c978-46e1-bda3-1abfd20cd948}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B01F65E3-4A3B-4787-B29E-3974C90146F9}: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{f671b50e-a274-4f07-a5da-7ba5176f6d3a}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{03b69add-3f8e-4cad-a798-a377f3553513}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS1\Services\Tcpip\..\{635974cf-c978-46e1-bda3-1abfd20cd948}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B01F65E3-4A3B-4787-B29E-3974C90146F9}: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{f671b50e-a274-4f07-a5da-7ba5176f6d3a}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Se (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: oem8.inf (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Dedicarz Service (Dedicarz Service) . (.Pas de propriétaire - DedicarzService.) - C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.exe
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe
O23 - Service: FileOpen Manager Service (FileOpenManagerSvc) . (.FileOpen Systems Inc. - FileOpen Manager Service.) - C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Client Services (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: oem16.inf (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extende (IJPLMSVC) . (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Survey.) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe
O23 - Service: Mise à jour automatique - Index Educatio (MajIndexEducationService) . (.Index Education - Pas de description.) - C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: PasswordBox (PasswordBox) . (.PasswordBox, Inc. - PasswordBox Service.) - C:\Program Files (x86)\PasswordBox\pbbtnService.exe
O23 - Service: PostgreSQL Database Server 8.3 (pgsql-8.3) . (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) - C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
~ Scan Services in 00mn 26s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core1d2373f8a1800dd.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA1d2373f8b6a16d8.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForCyril.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForFRITZ$.job
[MD5.AFC094098B6D856151002051E31867D8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.BB4CEE22CFE1C259F5C4279349EB879C] [APT] [AssistanceLivebox] (.Orange.) -- C:\Program Files (x86)\Orange\Assistance Livebox\AssistanceLivebox.exe
[MD5.68DDCB629A7F2C5A3D2392F8177A3CD0] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.A1F58FFF448E4099297D6EE0641D4D0E] [APT] [DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core1d2373f8a1800dd] (.Dropbox, Inc..) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
[MD5.A1F58FFF448E4099297D6EE0641D4D0E] [APT] [DropboxUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA1d2373f8b6a16d8] (.Dropbox, Inc..) -- C:\Users\Cyril\AppData\Local\Dropbox\Update\DropboxUpdate.exe
[MD5.4654B14F6E7CD4C70892F3017F5FDF0C] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities\initialize.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002Core1d258534805db9] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-1619730599-949663201-56726497-1002UA1d258534ae384b] (.Google Inc..) -- C:\Users\Cyril\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.3DA2B70325A5947E981387DB9A9BD843] [APT] [HPCeeScheduleForCyril] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.24A63F38DF514E6774A850A0710760A4] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [reveil] (...) -- C:\Users\Cyril\Downloads\Lilly Wood & The Prick - Prayer in C (Robin Schulz remix) [Clip officiel].mp3"
[MD5.24A63F38DF514E6774A850A0710760A4] [APT] [ServicePlan] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.00000000000000000000000000000000] [APT] [SidebarExecute] (...) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4E1E297D-B427-407A-87CC-4F8891205877}] (...) -- C:\Program Files (x86)\PokerTracker 3\PokerTracker.exe (.not file.)
[MD5.8F225A8A05DABEBEB136564E065BF0C2] [APT] [{55347926-C8A7-4533-B778-4220AEB4319B}] (...) -- C:\Users\Cyril\jeux\wwp_vista_win7_fix_v1.4.exe
[MD5.A205551E7BA8580D2C0FF896A4D79FA9] [APT] [{5E301D36-0EE2-4FA5-8D8E-B1057592079D}] (.Macrovision Corporation.) -- C:\Program Files (x86)\InstallShield Installation Information\{B1549CC1-EB81-4E7C-9C7C-8B97CD9FD37A}\setup.exe
[MD5.00000000000000000000000000000000] [APT] [{5E3F1E98-0A77-4763-AE96-708B1C2D7C92}] (...) -- C:\Program Files (x86)\PokerStrategy.com\PokerStrategy.com Elephant\Elephant.exe (.not file.)
[MD5.83518A48EDF258DBA87B042943D4CC24] [APT] [{C666FE70-1E31-4AA3-900D-E01DD6E21F3B}] (...) -- C:\Users\Cyril\Downloads\b1028fr.exe
[MD5.00000000000000000000000000000000] [APT] [{CA69A264-E026-4C04-BDDE-11727AF1BE83}] (...) -- C:\Users\Cyril\Desktop\poker\SitNGo.Wizard.v1.0.1.106\installer.exe (.not file.)
[MD5.0D003B0DEE8D9FE10CFD82BB6A526205] [APT] [{D6B9347C-D235-4E90-A1AB-D33F5BB03F3A}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe
[MD5.00000000000000000000000000000000] [APT] [{E9E30CFC-46D0-484D-A799-F598B163F19B}] (...) -- C:\Users\Cyril\Downloads\pbsetup.exe (.not file.)
[MD5.A31156B8D80A68E8F4354C63E0747BEB] [APT] [{EE769130-2D4B-411C-8DB9-DDAD295E56B2}] (...) -- C:\Users\Cyril\Downloads\eMule0.50a-Installer(1).exe
[MD5.221EC6DA9D52F3555B84C876CD40E33B] [APT] [Product Configurator] (.HP Inc..) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
[MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [orangeinside] (...) -- C:\Users\Cyril\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
[MD5.CB60C7455AC362CAA58458A613908B7F] [APT] [orangeinstaller] (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
~ Scan Scheduled Task in 00mn 15s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\filecrypt.sys (FileCrypt) . (.Microsoft Corporation - Windows sandboxing and encryption filter.) - C:\Windows\System32\drivers\filecrypt.sys
O41 - Driver: C:\Windows\System32\drivers\gpuenergydrv.sys (GpuEnergyDrv) . (.Microsoft Corporation - GPU Energy Kernel Driver.) - C:\Windows\System32\drivers\gpuenergydrv.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbios.sys (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\drivers\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys
~ Scan Drivers in 00mn 01s
---\\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp
O42 - Logiciel: AMD System Monitor - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {C1C82DC9-1547-4038-8F0A-C069F0B7F2ED}
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {942836D4-5395-652B-F1E8-A7C5B039910C}
O42 - Logiciel: AVG SafeGuard toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG SafeGuard toolbar
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {52E225FC-FCB4-41F7-837B-6E37FB05BD7B}
O42 - Logiciel: Adobe Flash Player 26 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader X (10.1.16) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824225037}
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Agatha Christie - Peril at End House - (.WildTangent.) [HKLM][64Bits] -- WT089362
O42 - Logiciel: AirDroid 3.4.2.0 - (.Sand Studio.) [HKLM][64Bits] -- AirDroid
O42 - Logiciel: Algobox - (.Pas de propriétaire.) [HKLM][64Bits] -- Algobox
O42 - Logiciel: Assistance Livebox - (.Orange.) [HKLM][64Bits] -- Assistance Livebox
O42 - Logiciel: Avast Antivirus Gratuit - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: Battlefield Heroes - (.EA Digital illusions.) [HKLM][64Bits] -- {8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089453
O42 - Logiciel: Big Rig Europe - (.WildTangent.) [HKLM][64Bits] -- WT089497
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT089308
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Bounce Symphony - (.WildTangent.) [HKLM][64Bits] -- WT087330
O42 - Logiciel: Broadcom 2070 Bluetooth 3.0 - (.Broadcom Corporation.) [HKLM][64Bits] -- {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}
O42 - Logiciel: Broadcom 802.11 Wireless LAN Adapter - (.Broadcom Corporation.) [HKLM][64Bits] -- Broadcom 802.11 Wireless LAN Adapter
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Cake Mania - (.WildTangent.) [HKLM][64Bits] -- WT089359
O42 - Logiciel: Camtasia Studio 8 - (.TechSmith Corporation.) [HKLM][64Bits] -- {5303CFB5-D635-44F0-A94B-9611E81F07C4}
O42 - Logiciel: Canon Easy-WebPrint EX - (.Canon Inc..) [HKLM][64Bits] -- Easy-WebPrint EX
O42 - Logiciel: Canon IJ Network Scanner Selector EX - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_Scanner_Selector_EX
O42 - Logiciel: Canon IJ Network Tool - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_UTILITY
O42 - Logiciel: Canon IJ Scan Utility - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Scan_Utility
O42 - Logiciel: Canon Inkjet Printer/Scanner/Fax Extended Survey Program - (.Canon Inc..) [HKLM][64Bits] -- CANONIJPLM100
O42 - Logiciel: Canon MG2100 series MP Drivers - (.Pas de propriétaire.) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2100_series
O42 - Logiciel: Canon MG5700 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series
O42 - Logiciel: Canon MG5700 series On-screen Manual - (.Canon Inc..) [HKLM][64Bits] -- Canon MG5700 series On-screen Manual
O42 - Logiciel: Canon My Printer - (.Canon Inc..) [HKLM][64Bits] -- CanonMyPrinter
O42 - Logiciel: Canon Quick Menu - (.Canon Inc..) [HKLM][64Bits] -- CanonQuickMenu
O42 - Logiciel: Card Detector for Huawei E1752 and E1552 - (.Pas de propriétaire.) [HKLM][64Bits] -- CardDetectorHUAWEI1752_1552
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {0F69006A-CD2F-4C12-A786-C659C8F98423}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089454
O42 - Logiciel: Crazy Chicken Kart 2 - (.WildTangent.) [HKLM][64Bits] -- WT089492
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT087536
O42 - Logiciel: Discord - (.Hammer & Chisel, Inc..) [HKCU][64Bits] -- Discord
O42 - Logiciel: Downloader - (.Pas de propriétaire.) [HKLM][64Bits] -- Downloader
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: EPSON SX130 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX130 Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: Energy Star Digital Logo - (.Hewlett-Packard.) [HKLM][64Bits] -- {BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}
O42 - Logiciel: Enregistrement utilisateur de Canon MG5700 series - (.?Canon Inc..) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG5700 series
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {A02D7029-C4EF-44C1-9FD4-C0D3CA518113}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {8A17C27D-0325-400C-8AA9-DAA6B16CBD74}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT087361
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WT089328
O42 - Logiciel: FileOpen Client (x64) - (.FileOpen Systems, Inc..) [HKLM][64Bits] -- {829C209A-7450-485B-B969-594CF3ABF2FE}
O42 - Logiciel: Fishdom - (.WildTangent.) [HKLM][64Bits] -- WT089493
O42 - Logiciel: GeoGebra 5 - (.International GeoGebra Institute.) [HKLM][64Bits] -- GeoGebra 5
O42 - Logiciel: GeoGebraPrim - (.International GeoGebra Institute.) [HKCU][64Bits] -- GeoGebraPrim
O42 - Logiciel: Glary Utilities 2.56.0.1822 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {F6430171-B86B-4639-839E-374913E7911D}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Guide d'utilisation EPSON SX130 Series - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON SX130 Series Useg
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {B4EFABD5-5744-4ED8-BA47-C1704BB684D2}
O42 - Logiciel: HP Auto - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
O42 - Logiciel: HP Client Services - (.Hewlett-Packard.) [HKLM][64Bits] -- {2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
O42 - Logiciel: HP Connection Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {795AADBF-58C2-42D0-B779-E730702A247E}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {C9EF1AAF-B542-41C8-A537-1142DA5D4AEC}
O42 - Logiciel: HP DVB-T TV Tuner 8.0.64.43 - (.Pas de propriétaire.) [HKLM][64Bits] -- HP DVB-T TV Tuner
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {C1C43BC8-2460-4E01-9628-332E04523BDC}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP On Screen Display - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED1BD69A-07E3-418C-91F1-D856582581BF}
O42 - Logiciel: HP Power Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E44578C7-4667-4124-8BC2-1161BCA54978}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {EB58480C-0721-483C-B354-9D35A147999F}
O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {210A03F5-B2ED-4947-B27E-516F50CBB292}
O42 - Logiciel: HP Setup Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {AE856388-AFAD-4753-81DF-D96B19D0A17C}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {5D335F5D-4185-4AD8-8E6D-64D8D4AB80D7}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {79C54A05-F146-4EA0-8A70-D4EFE6181E52}
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED5CE45D-842B-4C18-A002-87E16EA39BB3}
O42 - Logiciel: Hercules Deluxe Optical Glass - (.Hercules.) [HKLM][64Bits] -- {E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.2.3 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: Holdem Manager 2 - (.Pas de propriétaire.) [HKLM][64Bits] -- HoldemManager2
O42 - Logiciel: ICM Trainer - (.PokerStrategy.) [HKLM][64Bits] -- {47EA4DDF-FD99-46B3-846C-9F3F315268AD}
O42 - Logiciel: ICM Trainer Light - (.PokerStrategy.com.) [HKLM][64Bits] -- {3C630BB8-692D-4495-A0BD-40336CD51F99}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: INDEX EDUCATION - Client PRONOTE 2016 - (.Index Education.) [HKLM][64Bits] -- {7FD9CC8D-A976-401D-ABA5-A57774C05D8D}
O42 - Logiciel: Internet Everywhere - (.Pas de propriétaire.) [HKLM][64Bits] -- {BEWINTERNET-FR-DMGP-V2}.UninstallSuite
O42 - Logiciel: Java 7 Update 13 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217013FF}
O42 - Logiciel: Java(TM) 6 Update 24 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416024FF}
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF}
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT087490
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Mah Jong Medley - (.WildTangent.) [HKLM][64Bits] -- WT087393
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002}
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 47.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 47.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyDriveConnect 4.0.3.2180 - (.TomTom.) [HKLM][64Bits] -- MyDriveConnect
O42 - Logiciel: Mystery P.I. - The London Caper - (.WildTangent.) [HKLM][64Bits] -- WT089460
O42 - Logiciel: Namco All-Stars PAC-MAN - (.WildTangent.) [HKLM][64Bits] -- WT089484
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A}
O42 - Logiciel: OpenVPN 2.3.2-I003 - (.Pas de propriétaire.) [HKLM][64Bits] -- OpenVPN
O42 - Logiciel: Orange Inside - (.Orange.) [HKCU][64Bits] -- Orange Inside
O42 - Logiciel: Orange Installer - (.Orange.) [HKLM][64Bits] -- Orange Installer
O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager
O42 - Logiciel: PartyPoker.fr - (.PartyFrance.) [HKLM][64Bits] -- PartyPokerFr
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT087394
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WT089458
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr
O42 - Logiciel: PokerStrategy.com Equilab - (.PokerStrategy.com.) [HKLM][64Bits] -- {0E9389C0-0E8A-4174-A430-CFAFF29CC3A7}
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT087396
O42 - Logiciel: PostgreSQL 8.3 - (.PostgreSQL Global Development Group.) [HKLM][64Bits] -- {B823632F-3B72-4514-8861-B961CE263224}
O42 - Logiciel: Pro Cycling Manager - Saison 2012 version 1.4.0.0 - (.Cyanide.) [HKLM][64Bits] -- Pro Cycling Manager 2012_is1
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {DBCD5E64-7379-4648-9444-8A6558DCB614}
O42 - Logiciel: Revo Uninstaller 1.94 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: SitNGo Wizard - (.In The Money LLC.) [HKLM][64Bits] -- SitNGoWizard
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype 7.36 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {3B7E914A-93D5-4A29-92BB-AF8C3F66C431}
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT087510
O42 - Logiciel: Synaptics TouchPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: TAP-Windows 9.9.2 - (.Pas de propriétaire.) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 9
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {0E09BE17-EDEA-42CA-8974-42A587F51510}
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: Turbopoker - (.Pas de propriétaire.) [HKCU][64Bits] -- Turbopoker.fr
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM][64Bits] -- WT087513
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM][64Bits] -- {4412F224-3849-4461-A3E9-DEEF8D252790}
O42 - Logiciel: WMV9/VC-1 Video Playback - (.ATI Technologies Inc..) [HKLM][64Bits] -- {CB1A2FE6-2BDF-DECC-C91B-4E5FFD59C5D6}
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WT087519
O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: WinRAR 4.01 (64 bits) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Winamax - (.Winamax.) [HKCU][64Bits] -- Winamax 3.10.0
O42 - Logiciel: Windows 10 Update and Privacy Settings - (.Microsoft Corporation.) [HKLM][64Bits] -- {4DFCD818-036A-4229-A67D-CF17DC461D92}
O42 - Logiciel: Xcas 1.1.2 - Computer Algebra System - (.Pas de propriétaire.) [HKLM][64Bits] -- Xcas
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089455
O42 - Logiciel: e-méthode Espagnol - (.ASSIMIL SAS.) [HKLM][64Bits] -- AnMacPc-3902
O42 - Logiciel: e-méthode Espagnol - (.ASSIMIL SAS.) [HKLM][64Bits] -- {9284AB41-733D-62F4-211C-E036B21C490C}
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVG SafeGuard toolbar]
[HKCU\Software\Ace Poker Solutions]
[HKCU\Software\Adobe]
[HKCU\Software\AnyMP4 Studio]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Canon]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PasswordBox]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\ArcSoft]
[HKCU\Software\BitTorrent]
[HKCU\Software\Bouygues]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cyanide]
[HKCU\Software\CyberLink]
[HKCU\Software\Cygwin]
[HKCU\Software\DAMN]
[HKCU\Software\DT Soft]
[HKCU\Software\Digital River]
[HKCU\Software\Disc Soft]
[HKCU\Software\DropboxUpdate]
[HKCU\Software\EPSON]
[HKCU\Software\FileOpen]
[HKCU\Software\Geoplace]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\GrandMasterChess3]
[HKCU\Software\Hercules]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HoldemManager]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IPCameraDSFilterRTSP]
[HKCU\Software\IPCameraDSFilter]
[HKCU\Software\In The Money]
[HKCU\Software\Index Education]
[HKCU\Software\JavaSoft]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Nilings]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opera Software]
[HKCU\Software\OrangeInside]
[HKCU\Software\PASG]
[HKCU\Software\PTECH]
[HKCU\Software\PartyFrance]
[HKCU\Software\Piriform]
[HKCU\Software\PokerStrategy]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Samsung]
[HKCU\Software\Skype]
[HKCU\Software\Smartbar]
[HKCU\Software\Software]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\TeamViewer]
[HKCU\Software\TechSmith]
[HKCU\Software\TomTom]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Valve]
[HKCU\Software\Visicom Media Inc]
[HKCU\Software\Widcomm]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\XHEO INC]
[HKCU\Software\Xcas]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\kde.org]
[HKCU\Software\wLite]
[HKCU\Software\web disco]
[HKCU\Software\webdisco]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\AVG SafeGuard toolbar]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Broadcom]
[HKLM\Software\CBSTEST]
[HKLM\Software\CXT]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\Dell]
[HKLM\Software\DisplayLink]
[HKLM\Software\DivX]
[HKLM\Software\Dolby]
[HKLM\Software\EPSON]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\Hercules]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\HoldemManager2]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\Index Education]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OpenVPN-GUI]
[HKLM\Software\Partner]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SONIX]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\WOW6432Node]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AdobeFlashPlayerUpdate]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Aeria games]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Avast]
[HKLM\Software\Wow6432Node\BZFlag2.4.2]
[HKLM\Software\Wow6432Node\Bouygues]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Cyanide]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\DAMN]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\FRANCE TELECOM]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hercules Technologies]
[HKLM\Software\Wow6432Node\Hercules]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\IPCameraDSFilterRTSP]
[HKLM\Software\Wow6432Node\IPCameraDSFilter]
[HKLM\Software\Wow6432Node\In The Money]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LogMeInRescueCallingCard]
[HKLM\Software\Wow6432Node\LogMeInRescueCallingCards]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Notepad]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\OpenVPN-GUI]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\Piriform]
[HKLM\Software\Wow6432Node\PokerStrategy]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PostgreSQL]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SharingMax]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\TechSmith]
[HKLM\Software\Wow6432Node\TomTom]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WOW6432Node]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Win32 Services]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\ZTEUSBDriverFlag]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\pgAdmin III]
[HKLM\Software\Wow6432Node\wLite]
[HKLM\Software\Wow6432Node\webtogo]
[HKLM\Software\XHEO INC]
[HKLM\Software\ZTEUSBDriverFlag]
~ Scan Softwares in 00mn 02s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 09/09/2012 - 23:18:42 - [173,312] ---AD C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
O43 - CFD: 08/09/2012 - 14:55:44 - [459,339] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 09/06/2017 - 13:36:45 - [31,754] ----D C:\Program Files (x86)\AirDroid
O43 - CFD: 28/11/2011 - 23:00:46 - [35,885] ----D C:\Program Files (x86)\Algobox
O43 - CFD: 17/06/2011 - 00:05:16 - [1,396] ----D C:\Program Files (x86)\AMD
O43 - CFD: 16/06/2011 - 23:48:06 - [2,335] ---AD C:\Program Files (x86)\AMD APP
O43 - CFD: 26/09/2016 - 23:10:36 - [104,899] ---AD C:\Program Files (x86)\ATI Technologies
O43 - CFD: 25/10/2013 - 23:33:35 - [0,602] ---AD C:\Program Files (x86)\Bonjour
O43 - CFD: 22/09/2012 - 14:35:30 - [0,049] ----D C:\Program Files (x86)\Bouygues Telecom
O43 - CFD: 14/01/2014 - 03:57:56 - [0] ----D C:\Program Files (x86)\BZFlag2.4.2_32Bit
O43 - CFD: 13/01/2016 - 17:54:08 - [78,019] ----D C:\Program Files (x86)\Canon
O43 - CFD: 10/03/2012 - 14:04:30 - [30,236] ----D C:\Program Files (x86)\CardDetector
O43 - CFD: 11/07/2017 - 22:09:30 - [414,406] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 28/09/2014 - 17:49:46 - [-1889,979] ----D C:\Program Files (x86)\Cyanide
O43 - CFD: 29/04/2013 - 01:19:23 - [1,412] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 30/08/2011 - 13:43:47 - [0,200] ----D C:\Program Files (x86)\DAMN NFO Viewer
O43 - CFD: 03/10/2015 - 15:23:18 - [0] ----D C:\Program Files (x86)\Delta
O43 - CFD: 16/01/2012 - 23:50:37 - [1,235] ----D C:\Program Files (x86)\DivX
O43 - CFD: 31/07/2014 - 23:02:24 - [189,997] ----D C:\Program Files (x86)\Downloader
O43 - CFD: 12/08/2016 - 23:00:08 - [76,971] ---AD C:\Program Files (x86)\e-methode Espagnol
O43 - CFD: 24/08/2011 - 15:07:46 - [1326,333] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 03/10/2015 - 13:54:47 - [0] ----D C:\Program Files (x86)\ea28a47a-19a9-413c-9dbe-95ce13e684fa
O43 - CFD: 08/05/2011 - 12:05:25 - [109,328] ---AD C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 14/01/2014 - 03:30:22 - [0,002] ----D C:\Program Files (x86)\eMule
O43 - CFD: 09/09/2012 - 23:08:42 - [7,994] ----D C:\Program Files (x86)\epson
O43 - CFD: 09/09/2012 - 23:11:26 - [175,320] ---AD C:\Program Files (x86)\Epson Software
O43 - CFD: 07/01/2012 - 01:35:01 - [1,569] ----D C:\Program Files (x86)\FileOpen
O43 - CFD: 07/04/2015 - 21:33:45 - [149,568] ---AD C:\Program Files (x86)\GeoGebra 5.0
O43 - CFD: 13/01/2014 - 18:34:27 - [19,062] ---AD C:\Program Files (x86)\Glary Utilities
O43 - CFD: 09/02/2017 - 13:40:10 - [129,104] ----D C:\Program Files (x86)\Google
O43 - CFD: 16/12/2013 - 11:54:34 - [64,055] ----D C:\Program Files (x86)\Hercules
O43 - CFD: 12/12/2015 - 06:15:41 - [576,633] ---AD C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 16/11/2015 - 11:48:40 - [306,782] ----D C:\Program Files (x86)\Holdem Manager 2
O43 - CFD: 16/06/2011 - 23:59:37 - [1,553] ----D C:\Program Files (x86)\HP
O43 - CFD: 08/05/2011 - 11:54:22 - [326,317] ---AD C:\Program Files (x86)\HP Games
O43 - CFD: 29/10/2012 - 22:00:46 - [23,001] ----D C:\Program Files (x86)\In The Money
O43 - CFD: 26/05/2017 - 17:47:25 - [172,466] ----D C:\Program Files (x86)\Index Education
O43 - CFD: 05/09/2016 - 22:05:26 - [52,831] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 15/03/2017 - 23:40:39 - [1,898] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 10/02/2013 - 23:59:22 - [208,638] ----D C:\Program Files (x86)\Java
O43 - CFD: 11/07/2017 - 20:21:05 - [57,588] ---AD C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 07/08/2014 - 13:49:46 - [0] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 22/11/2012 - 01:44:29 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 15/05/2015 - 13:11:03 - [12,532] ---AD C:\Program Files (x86)\Microsoft Application Virtualization Client
O43 - CFD: 07/08/2013 - 10:52:04 - [0,764] ---AD C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 14/12/2011 - 17:39:12 - [366,100] ---AD C:\Program Files (x86)\Microsoft Office
O43 - CFD: 16/06/2017 - 22:19:52 - [40,905] ---AD C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 08/05/2011 - 12:00:39 - [1,745] ---AD C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 19/12/2011 - 12:08:56 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 26/09/2016 - 23:21:03 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 11/07/2017 - 22:09:34 - [97,096] ---AD C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 15/12/2016 - 22:04:14 - [0,266] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 26/09/2016 - 23:20:47 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 04/12/2012 - 20:12:25 - [0,418] ----D C:\Program Files (x86)\MUSICSTATION
O43 - CFD: 19/07/2015 - 23:36:49 - [73,966] ---AD C:\Program Files (x86)\MyDrive Connect
O43 - CFD: 24/08/2011 - 00:14:45 - [19,737] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 11/01/2012 - 15:42:39 - [338,128] ---AD C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 15/07/2014 - 16:51:35 - [3,570] ----D C:\Program Files (x86)\OpenVPN
O43 - CFD: 03/10/2015 - 13:57:46 - [0,001] ----D C:\Program Files (x86)\Opera
O43 - CFD: 28/09/2014 - 17:47:07 - [243,253] ----D C:\Program Files (x86)\Orange
O43 - CFD: 14/01/2014 - 03:23:06 - [0,001] ----D C:\Program Files (x86)\OXPDFCreator
O43 - CFD: 07/08/2014 - 13:51:16 - [25,347] ----D C:\Program Files (x86)\PasswordBox
O43 - CFD: 23/01/2017 - 13:21:51 - [353,365] ---AD C:\Program Files (x86)\PokerStars.FR
O43 - CFD: 18/01/2012 - 16:15:50 - [86,305] ----D C:\Program Files (x86)\PokerStrategy
O43 - CFD: 28/02/2012 - 11:46:01 - [49,951] ----D C:\Program Files (x86)\PokerStrategy.com
O43 - CFD: 14/02/2012 - 21:55:52 - [-732,088] ----D C:\Program Files (x86)\PostgreSQL
O43 - CFD: 20/06/2015 - 12:08:50 - [0] ----D C:\Program Files (x86)\PSQLINSTALL
O43 - CFD: 01/02/2014 - 18:29:22 - [0,164] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 16/06/2011 - 23:56:04 - [15,144] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 26/09/2016 - 23:20:47 - [36,673] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 18/12/2011 - 20:33:06 - [6,390] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 10/05/2017 - 22:30:59 - [102,255] R---D C:\Program Files (x86)\Skype
O43 - CFD: 24/10/2015 - 16:53:59 - [0] ----D C:\Program Files (x86)\Software
O43 - CFD: 06/06/2012 - 23:38:11 - [705,537] ----D C:\Program Files (x86)\Team17
O43 - CFD: 06/02/2014 - 22:11:53 - [38,104] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 01/02/2014 - 18:28:39 - [154,377] ----D C:\Program Files (x86)\TechSmith
O43 - CFD: 05/11/2015 - 20:07:59 - [49,127] ---AD C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 19/07/2015 - 17:37:45 - [0,043] ----D C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 25/08/2011 - 19:34:07 - [80,431] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 22/11/2012 - 01:40:03 - [6,503] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 05/08/2013 - 15:15:14 - [29,546] ----D C:\Program Files (x86)\webcamXP 5
O43 - CFD: 08/05/2011 - 11:48:26 - [9,282] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 12/05/2017 - 19:26:48 - [1,852] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 28/09/2014 - 18:47:21 - [153,860] ---AD C:\Program Files (x86)\Windows Live
O43 - CFD: 15/03/2017 - 23:40:40 - [5,683] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 06/11/2016 - 22:09:35 - [3,124] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 16/07/2016 - 13:47:50 - [0,033] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 16/07/2016 - 13:47:48 - [7,234] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/05/2017 - 19:26:49 - [5,174] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 16/07/2016 - 13:47:50 - [0,033] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/09/2016 - 23:21:07 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 16/07/2016 - 13:47:48 - [3,955] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 11/07/2017 - 23:06:26 - [11,451] ---AD C:\Program Files (x86)\ZHPDiag
O43 - CFD: 09/09/2012 - 23:16:08 - [7,724] ----D C:\Program Files (x86)\Common Files\ABBYY
O43 - CFD: 25/11/2011 - 17:11:34 - [19,540] ---AD C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 14/01/2014 - 16:10:41 - [45,988] ---AD C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 28/09/2014 - 17:16:32 - [0,000] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 16/06/2011 - 23:48:03 - [0,096] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 14/04/2017 - 09:55:32 - [0,917] ----D C:\Program Files (x86)\Common Files\AV
O43 - CFD: 15/05/2014 - 10:17:50 - [0,095] ---AD C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 10/03/2012 - 14:04:46 - [14,604] ----D C:\Program Files (x86)\Common Files\France Telecom
O43 - CFD: 28/09/2014 - 17:16:44 - [1,979] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 09/09/2012 - 00:07:39 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 05/08/2013 - 15:14:48 - [0] ----D C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 05/08/2013 - 15:13:01 - [0] ----D C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 26/09/2016 - 23:20:59 - [235,010] ---AD C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 29/09/2012 - 23:50:41 - [0,820] ----D C:\Program Files (x86)\Common Files\PctelEapPeer Authentication
O43 - CFD: 16/01/2012 - 23:50:34 - [0,438] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 16/07/2016 - 13:47:50 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 10/05/2017 - 22:30:59 - [2,455] ---AD C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 26/09/2016 - 23:20:59 - [39,191] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 14/01/2014 - 04:06:10 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 17/07/2016 - 00:40:08 - [41,632] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 01/02/2014 - 18:29:02 - [2,504] ----D C:\Program Files (x86)\Common Files\TechSmith Shared
O43 - CFD: 17/06/2011 - 00:11:01 - [0,225] ---AD C:\Program Files (x86)\Common Files\Telespree
O43 - CFD: 08/05/2011 - 11:57:46 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 09/09/2012 - 23:16:08 - [1,712] ----D C:\ProgramData\ABBYY
O43 - CFD: 09/01/2013 - 23:57:20 - [63,871] ----D C:\ProgramData\Adobe
O43 - CFD: 09/06/2017 - 13:35:44 - [19,073] ----D C:\ProgramData\AirDroid
O43 - CFD: 26/09/2016 - 23:10:41 - [0,002] ----D C:\ProgramData\AMD
O43 - CFD: 25/10/2013 - 23:33:32 - [2,558] ----D C:\ProgramData\Apple
O43 - CFD: 27/09/2016 - 00:11:45 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 16/12/2013 - 00:23:24 - [0,010] ----D C:\ProgramData\ArcSoft
O43 - CFD: 31/12/2015 - 13:21:23 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 26/09/2016 - 21:53:15 - [658,122] ----D C:\ProgramData\AVAST Software
O43 - CFD: 29/09/2012 - 23:51:05 - [0,002] ----D C:\ProgramData\Bouygues Telecom
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 13/01/2016 - 17:49:24 - [0] ----D C:\ProgramData\Canon IJ Network Tool
O43 - CFD: 20/09/2012 - 20:41:44 - [56,589] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 11/07/2017 - 00:01:45 - [0,121] ----D C:\ProgramData\CanonIJPLM
O43 - CFD: 13/01/2016 - 17:54:29 - [0,002] --H-D C:\ProgramData\CanonIJQuickMenu
O43 - CFD: 13/01/2016 - 17:52:54 - [0,083] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 09/09/2013 - 12:50:35 - [0,016] ----D C:\ProgramData\ClubSanDisk
O43 - CFD: 25/08/2013 - 23:46:22 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 16/07/2016 - 13:47:48 - [0] ----D C:\ProgramData\Comms
O43 - CFD: 12/03/2013 - 23:45:23 - [0,035] ----D C:\ProgramData\CyberLink
O43 - CFD: 06/05/2012 - 18:20:53 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 31/08/2011 - 01:55:21 - [0,002] ----D C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 20/07/2014 - 22:53:13 - [0,541] ----D C:\ProgramData\DataCardService
O43 - CFD: 01/10/2016 - 18:38:25 - [0,285] ----D C:\ProgramData\DisplayLink
O43 - CFD: 16/01/2012 - 23:50:38 - [1,165] ----D C:\ProgramData\DivX
O43 - CFD: 27/09/2016 - 00:11:45 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 18/06/2015 - 18:21:51 - [7,049] ----D C:\ProgramData\Dropbox
O43 - CFD: 09/12/2013 - 17:20:43 - [1,356] ----D C:\ProgramData\Easybits Magic Desktop for HP
O43 - CFD: 14/01/2014 - 03:30:22 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 09/09/2012 - 23:22:08 - [7,562] ----D C:\ProgramData\EPSON
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 07/01/2012 - 01:35:10 - [0] ----D C:\ProgramData\FileOpen
O43 - CFD: 17/01/2016 - 11:44:30 - [0,000] ----D C:\ProgramData\fltk.org
O43 - CFD: 17/12/2015 - 13:59:28 - [84,996] ---AD C:\ProgramData\Hewlett-Packard
O43 - CFD: 03/07/2017 - 17:28:19 - [11,186] ----D C:\ProgramData\IndexEducation
O43 - CFD: 05/08/2013 - 15:09:37 - [0] ----D C:\ProgramData\Logitech
O43 - CFD: 05/10/2013 - 21:43:13 - [0] ----D C:\ProgramData\LogMeIn
O43 - CFD: 02/08/2014 - 20:44:07 - [451,149] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 24/08/2011 - 00:56:35 - [0,000] ----D C:\ProgramData\McAfee
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 23/01/2017 - 13:24:42 - [1692,959] -S--D C:\ProgramData\Microsoft
O43 - CFD: 14/06/2017 - 17:08:15 - [0,211] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 27/09/2016 - 08:07:55 - [0] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 24/08/2011 - 00:12:28 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 25/04/2012 - 15:43:55 - [0,036] ----D C:\ProgramData\Mozilla
O43 - CFD: 14/01/2014 - 16:03:34 - [0,016] ----D C:\ProgramData\Norton
O43 - CFD: 17/06/2011 - 00:08:33 - [9,342] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 03/11/2013 - 18:21:00 - [83,163] ----D C:\ProgramData\Orange
O43 - CFD: 15/03/2017 - 20:27:13 - [34,127] ----D C:\ProgramData\Package Cache
O43 - CFD: 26/09/2016 - 23:30:37 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/09/2016 - 23:35:30 - [0,001] ---AD C:\ProgramData\regid.1995-08.com.techsmith
O43 - CFD: 10/05/2017 - 22:31:14 - [239,028] ----D C:\ProgramData\Skype
O43 - CFD: 16/07/2016 - 13:47:48 - [0] ----D C:\ProgramData\SoftwareDistribution
O43 - CFD: 08/05/2011 - 12:06:50 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 10/04/2012 - 22:29:56 - [0,002] ----D C:\ProgramData\Synaptics
O43 - CFD: 01/02/2014 - 18:31:04 - [64,987] ----D C:\ProgramData\TechSmith
O43 - CFD: 28/09/2014 - 18:50:32 - [0,388] ---AD C:\ProgramData\Temp
O43 - CFD: 09/09/2012 - 23:13:13 - [0,003] ----D C:\ProgramData\UDL
O43 - CFD: 27/09/2016 - 00:11:36 - [0] ----D C:\ProgramData\USOPrivate
O43 - CFD: 27/09/2016 - 00:11:36 - [1,758] ----D C:\ProgramData\USOShared
O43 - CFD: 31/08/2011 - 09:37:31 - [0] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 26/08/2013 - 20:32:05 - [1,817] ----D C:\ProgramData\webcamXP 5
O43 - CFD: 22/03/2013 - 23:22:52 - [-1760,993] ----D C:\ProgramData\WildTangent
O43 - CFD: 13/01/2012 - 19:23:10 - [0,030] ----D C:\ProgramData\XHEO INC
O43 - CFD: 17/01/2014 - 18:01:42 - [43,420] ----D C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
O43 - CFD: 08/09/2012 - 14:55:46 - [39,529] ----D C:\Users\Cyril\AppData\Roaming\Adobe
O43 - CFD: 12/06/2017 - 20:23:17 - [15,937] ----D C:\Users\Cyril\AppData\Roaming\AirDroid
O43 - CFD: 31/07/2016 - 17:11:45 - [0,802] ----D C:\Users\Cyril\AppData\Roaming\AnMacPc-3902
O43 - CFD: 16/12/2013 - 00:23:19 - [0,004] ----D C:\Users\Cyril\AppData\Roaming\ArcSoft
O43 - CFD: 26/09/2016 - 23:09:10 - [0] ----D C:\Users\Cyril\AppData\Roaming\ATI
O43 - CFD: 22/08/2015 - 19:09:40 - [21,618] ----D C:\Users\Cyril\AppData\Roaming\AVAST Software
O43 - CFD: 21/01/2016 - 14:50:59 - [0] ----D C:\Users\Cyril\AppData\Roaming\Canon
O43 - CFD: 02/01/2015 - 20:17:53 - [6,186] ----D C:\Users\Cyril\AppData\Roaming\cef-cache
O43 - CFD: 18/06/2015 - 14:25:36 - [1,377] ----D C:\Users\Cyril\AppData\Roaming\com.winamax.chat
O43 - CFD: 26/08/2011 - 19:47:14 - [0,622] ----D C:\Users\Cyril\AppData\Roaming\CyberLink
O43 - CFD: 07/04/2015 - 18:23:22 - [1,155] ----D C:\Users\Cyril\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 13/01/2014 - 19:56:52 - [0] ----D C:\Users\Cyril\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 29/06/2017 - 17:30:04 - [25,177] ----D C:\Users\Cyril\AppData\Roaming\discord
O43 - CFD: 12/09/2011 - 20:31:57 - [0,104] ----D C:\Users\Cyril\AppData\Roaming\DivX
O43 - CFD: 27/06/2017 - 19:27:00 - [317,911] ----D C:\Users\Cyril\AppData\Roaming\Dropbox
O43 - CFD: 16/09/2012 - 12:50:20 - [0,008] ----D C:\Users\Cyril\AppData\Roaming\Epson
O43 - CFD: 07/01/2012 - 01:35:11 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\FileOpen
O43 - CFD: 17/01/2016 - 11:44:30 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\fltk.org
O43 - CFD: 27/10/2013 - 18:30:37 - [0,006] ----D C:\Users\Cyril\AppData\Roaming\fr.orange.assistancelivebox
O43 - CFD: 10/11/2016 - 13:50:17 - [30,229] ----D C:\Users\Cyril\AppData\Roaming\GeoGebra 5.0
O43 - CFD: 13/01/2014 - 18:40:02 - [0,119] ----D C:\Users\Cyril\AppData\Roaming\Glarysoft
O43 - CFD: 13/01/2012 - 19:29:11 - [0,011] ----D C:\Users\Cyril\AppData\Roaming\HEM Data
O43 - CFD: 06/10/2011 - 09:33:45 - [0,048] ----D C:\Users\Cyril\AppData\Roaming\Hewlett-Packard
O43 - CFD: 03/01/2016 - 17:40:02 - [773,418] ----D C:\Users\Cyril\AppData\Roaming\HoldemManager
O43 - CFD: 25/08/2011 - 11:20:19 - [0,673] ----D C:\Users\Cyril\AppData\Roaming\hpqlog
O43 - CFD: 24/08/2011 - 00:21:21 - [0] ----D C:\Users\Cyril\AppData\Roaming\Identities
O43 - CFD: 09/09/2012 - 23:10:23 - [0] ----D C:\Users\Cyril\AppData\Roaming\InstallShield
O43 - CFD: 18/12/2011 - 20:55:06 - [10,883] ----D C:\Users\Cyril\AppData\Roaming\Intelli-studio
O43 - CFD: 05/08/2013 - 15:11:28 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\Leadertech
O43 - CFD: 24/08/2011 - 00:31:25 - [15,669] ----D C:\Users\Cyril\AppData\Roaming\Macromedia
O43 - CFD: 02/08/2014 - 20:44:52 - [0] ----D C:\Users\Cyril\AppData\Roaming\Malwarebytes
O43 - CFD: 07/04/2015 - 18:33:24 - [0] ----D C:\Users\Cyril\AppData\Roaming\ManyCam
O43 - CFD: 17/06/2011 - 09:37:50 - [0] ----D C:\Users\Cyril\AppData\Roaming\Media Center Programs
O43 - CFD: 05/04/2017 - 22:02:02 - [38,564] -S--D C:\Users\Cyril\AppData\Roaming\Microsoft
O43 - CFD: 24/08/2011 - 00:50:36 - [162,388] ----D C:\Users\Cyril\AppData\Roaming\Mozilla
O43 - CFD: 07/11/2011 - 22:21:27 - [1,806] ----D C:\Users\Cyril\AppData\Roaming\Mozilla-Cache
O43 - CFD: 10/12/2011 - 16:39:10 - [22,737] ----D C:\Users\Cyril\AppData\Roaming\OpenOffice.org
O43 - CFD: 03/10/2015 - 01:54:46 - [2,405] ----D C:\Users\Cyril\AppData\Roaming\Opera Software
O43 - CFD: 08/09/2012 - 14:58:11 - [2,663] ----D C:\Users\Cyril\AppData\Roaming\Orange
O43 - CFD: 02/01/2015 - 20:17:44 - [0,005] ----D C:\Users\Cyril\AppData\Roaming\PartyFrance
O43 - CFD: 06/06/2012 - 14:00:01 - [513,511] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2008
O43 - CFD: 06/05/2012 - 13:03:32 - [513,500] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2008 - Demo
O43 - CFD: 02/09/2014 - 20:16:01 - [1,506] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2012
O43 - CFD: 31/07/2014 - 01:17:50 - [0,004] ----D C:\Users\Cyril\AppData\Roaming\Pro Cycling Manager 2013
O43 - CFD: 20/06/2015 - 12:17:55 - [0,009] ----D C:\Users\Cyril\AppData\Roaming\Roaming
O43 - CFD: 05/04/2012 - 14:08:36 - [0,009] ----D C:\Users\Cyril\AppData\Roaming\Scilab
O43 - CFD: 23/06/2015 - 23:30:14 - [0] ----D C:\Users\Cyril\AppData\Roaming\SitNGoWizard
O43 - CFD: 23/11/2016 - 21:21:55 - [75,132] ----D C:\Users\Cyril\AppData\Roaming\Skype
O43 - CFD: 03/10/2015 - 13:43:03 - [4,711] ----D C:\Users\Cyril\AppData\Roaming\SoftGrid Client
O43 - CFD: 03/10/2015 - 14:02:30 - [0] ----D C:\Users\Cyril\AppData\Roaming\Store
O43 - CFD: 24/08/2011 - 00:21:58 - [0] ----D C:\Users\Cyril\AppData\Roaming\Synaptics
O43 - CFD: 18/02/2016 - 12:22:34 - [0,164] ----D C:\Users\Cyril\AppData\Roaming\TeamViewer
O43 - CFD: 01/02/2014 - 18:33:32 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\TechSmith
O43 - CFD: 16/02/2016 - 18:19:23 - [0,008] ----D C:\Users\Cyril\AppData\Roaming\temp
O43 - CFD: 19/07/2015 - 17:32:35 - [0,457] ----D C:\Users\Cyril\AppData\Roaming\TomTom
O43 - CFD: 30/08/2011 - 16:50:24 - [0] ----D C:\Users\Cyril\AppData\Roaming\TP
O43 - CFD: 11/07/2017 - 21:01:16 - [31,611] ----D C:\Users\Cyril\AppData\Roaming\uTorrent
O43 - CFD: 28/06/2017 - 00:04:07 - [0,075] ----D C:\Users\Cyril\AppData\Roaming\vlc
O43 - CFD: 18/06/2015 - 14:20:22 - [245,626] ----D C:\Users\Cyril\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O43 - CFD: 24/04/2012 - 22:17:36 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\Windows Live Writer
O43 - CFD: 30/08/2011 - 17:04:55 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\WinRAR
O43 - CFD: 28/11/2011 - 23:00:57 - [0,001] ----D C:\Users\Cyril\AppData\Roaming\xm1
O43 - CFD: 09/09/2012 - 23:17:24 - [0] ----D C:\Users\Cyril\AppData\Local\ABBYY
O43 - CFD: 05/01/2016 - 23:55:08 - [0] ----D C:\Users\Cyril\AppData\Local\ActiveSync
O43 - CFD: 18/12/2013 - 11:28:46 - [15,791] ----D C:\Users\Cyril\AppData\Local\Adobe
O43 - CFD: 24/08/2011 - 00:23:08 - [0,018] ----D C:\Users\Cyril\AppData\Local\AMD
O43 - CFD: 16/03/2015 - 00:29:27 - [0,001] ----D C:\Users\Cyril\AppData\Local\AnyMP4 Studio
O43 - CFD: 26/09/2016 - 23:14:49 - [0] ----D C:\Users\Cyril\AppData\Local\Application Data
O43 - CFD: 16/12/2013 - 00:23:18 - [0] ----D C:\Users\Cyril\AppData\Local\ArcSoft
O43 - CFD: 26/09/2016 - 23:09:10 - [0,072] ----D C:\Users\Cyril\AppData\Local\ATI
O43 - CFD: 25/08/2013 - 23:24:24 - [0,125] ----D C:\Users\Cyril\AppData\Local\avgchrome
O43 - CFD: 22/09/2012 - 14:43:37 - [1,747] ----D C:\Users\Cyril\AppData\Local\Bouygues Telecom
O43 - CFD: 24/08/2011 - 00:22:14 - [0] ----D C:\Users\Cyril\AppData\Local\Broadcom
O43 - CFD: 07/02/2013 - 11:20:44 - [4,715] ----D C:\Users\Cyril\AppData\Local\BZFlag
O43 - CFD: 27/09/2016 - 08:09:28 - [0] ----D C:\Users\Cyril\AppData\Local\CEF
O43 - CFD: 06/01/2016 - 00:17:11 - [20,211] ----D C:\Users\Cyril\AppData\Local\Comms
O43 - CFD: 28/09/2016 - 08:26:55 - [3,589] ----D C:\Users\Cyril\AppData\Local\ConnectedDevicesPlatform
O43 - CFD: 18/02/2016 - 12:22:08 - [0] ----D C:\Users\Cyril\AppData\Local\CrashDumps
O43 - CFD: 30/07/2014 - 23:53:26 - [0] ----D C:\Users\Cyril\AppData\Local\CrashRpt
O43 - CFD: 26/08/2011 - 19:47:14 - [0,005] ----D C:\Users\Cyril\AppData\Local\CyberLink
O43 - CFD: 01/07/2017 - 00:18:29 - [0] ----D C:\Users\Cyril\AppData\Local\Diagnostics
O43 - CFD: 05/03/2017 - 22:26:44 - [171,529] ----D C:\Users\Cyril\AppData\Local\Discord
O43 - CFD: 05/11/2015 - 20:04:57 - [104,933] ----D C:\Users\Cyril\AppData\Local\Downloaded Installations
O43 - CFD: 31/07/2014 - 23:03:25 - [0,102] ----D C:\Users\Cyril\AppData\Local\Downloader
O43 - CFD: 15/06/2017 - 08:24:33 - [78,706] ----D C:\Users\Cyril\AppData\Local\Dropbox
O43 - CFD: 31/07/2016 - 22:20:59 - [0] ----D C:\Users\Cyril\AppData\Local\ElevatedDiagnostics
O43 - CFD: 03/10/2015 - 13:57:53 - [0] -SH-D C:\Users\Cyril\AppData\Local\EmieBrowserModeList
O43 - CFD: 03/10/2015 - 13:57:53 - [0] -SH-D C:\Users\Cyril\AppData\Local\EmieSiteList
O43 - CFD: 03/10/2015 - 13:57:53 - [0] -SH-D C:\Users\Cyril\AppData\Local\EmieUserList
O43 - CFD: 14/01/2014 - 03:30:22 - [0] ----D C:\Users\Cyril\AppData\Local\eMule
O43 - CFD: 30/05/2015 - 22:44:04 - [0,018] ----D C:\Users\Cyril\AppData\Local\Equilab
O43 - CFD: 02/11/2016 - 10:41:38 - [846,821] ----D C:\Users\Cyril\AppData\Local\Google
O43 - CFD: 02/06/2015 - 21:01:17 - [0,000] ----D C:\Users\Cyril\AppData\Local\GWX
O43 - CFD: 17/12/2015 - 14:05:07 - [0,013] ----D C:\Users\Cyril\AppData\Local\Hewlett-Packard
O43 - CFD: 24/08/2011 - 00:21:54 - [0,003] ----D C:\Users\Cyril\AppData\Local\Hewlett-Packard_Company
O43 - CFD: 19/12/2011 - 15:12:11 - [0,000] ----D C:\Users\Cyril\AppData\Local\Hewlett-Packard_Developme
O43 - CFD: 26/09/2016 - 23:14:49 - [0] ----D C:\Users\Cyril\AppData\Local\Historique
O43 - CFD: 13/01/2012 - 19:54:33 - [0,008] ----D C:\Users\Cyril\AppData\Local\Hold'em_Manager
O43 - CFD: 18/01/2012 - 16:32:19 - [0,000] ----D C:\Users\Cyril\AppData\Local\ICMTrainer
O43 - CFD: 18/01/2012 - 16:32:09 - [0,006] ----D C:\Users\Cyril\AppData\Local\ICMTrainerLight
O43 - CFD: 01/12/2013 - 19:02:55 - [0,223] ----D C:\Users\Cyril\AppData\Local\In The Money
O43 - CFD: 30/07/2014 - 23:53:38 - [0] ----D C:\Users\Cyril\AppData\Local\Installer
O43 - CFD: 12/11/2012 - 23:31:44 - [0,010] ----D C:\Users\Cyril\AppData\Local\In_The_Money_LLC
O43 - CFD: 13/01/2012 - 19:23:10 - [0,002] ----D C:\Users\Cyril\AppData\Local\IsolatedStorage
O43 - CFD: 05/10/2013 - 21:43:13 - [0] ----D C:\Users\Cyril\AppData\Local\LogMeIn
O43 - CFD: 14/01/2014 - 03:07:01 - [0,004] ----D C:\Users\Cyril\AppData\Local\LogMeIn Hamachi
O43 - CFD: 09/01/2013 - 23:57:33 - [0] ----D C:\Users\Cyril\AppData\Local\Macromedia
O43 - CFD: 14/01/2014 - 03:54:29 - [0,000] ----D C:\Users\Cyril\AppData\Local\MagicCamera
O43 - CFD: 23/01/2017 - 13:29:42 - [689,481] ----D C:\Users\Cyril\AppData\Local\Microsoft
O43 - CFD: 23/04/2013 - 14:03:49 - [0,403] ----D C:\Users\Cyril\AppData\Local\Microsoft Games
O43 - CFD: 29/09/2011 - 19:06:36 - [0] ----D C:\Users\Cyril\AppData\Local\Microsoft Help
O43 - CFD: 18/01/2016 - 23:18:16 - [0,078] ----D C:\Users\Cyril\AppData\Local\MicrosoftEdge
O43 - CFD: 05/10/2013 - 22:21:37 - [75,105] ----D C:\Users\Cyril\AppData\Local\Mozilla
O43 - CFD: 16/01/2012 - 14:47:52 - [1,056] ----D C:\Users\Cyril\AppData\Local\MPlayer
O43 - CFD: 03/10/2015 - 01:54:47 - [0] ----D C:\Users\Cyril\AppData\Local\Opera Software
O43 - CFD: 12/11/2012 - 23:31:46 - [0,000] ----D C:\Users\Cyril\AppData\Local\Orange
O43 - CFD: 20/11/2011 - 01:09:30 - [0] ----D C:\Users\Cyril\AppData\Local\PackageAware
O43 - CFD: 03/05/2017 - 09:24:51 - [351,471] ----D C:\Users\Cyril\AppData\Local\Packages
O43 - CFD: 23/01/2017 - 13:24:15 - [3,880] ----D C:\Users\Cyril\AppData\Local\PokerStars.FR
O43 - CFD: 18/01/2012 - 19:04:14 - [0,460] ----D C:\Users\Cyril\AppData\Local\PokerStrategy
O43 - CFD: 14/02/2012 - 00:36:37 - [0,053] ----D C:\Users\Cyril\AppData\Local\PokerStrategy.com
O43 - CFD: 22/01/2013 - 19:37:36 - [0] ----D C:\Users\Cyril\AppData\Local\Programs
O43 - CFD: 27/10/2015 - 12:54:33 - [0] ----D C:\Users\Cyril\AppData\Local\Publishers
O43 - CFD: 24/08/2011 - 15:29:22 - [6,668] ----D C:\Users\Cyril\AppData\Local\PunkBuster
O43 - CFD: 24/08/2011 - 00:20:38 - [0,000] ----D C:\Users\Cyril\AppData\Local\RemEngine
O43 - CFD: 14/06/2016 - 13:35:05 - [0] ----D C:\Users\Cyril\AppData\Local\Skype
O43 - CFD: 30/08/2011 - 16:50:07 - [4,367] ----D C:\Users\Cyril\AppData\Local\SoftGrid Client
O43 - CFD: 05/03/2017 - 22:27:26 - [0,006] ----D C:\Users\Cyril\AppData\Local\SquirrelTemp
O43 - CFD: 01/02/2014 - 18:39:41 - [36,136] ----D C:\Users\Cyril\AppData\Local\TechSmith
O43 - CFD: 11/07/2017 - 23:06:53 - [3,497] ----D C:\Users\Cyril\AppData\Local\Temp
O43 - CFD: 26/09/2016 - 23:14:49 - [0] ----D C:\Users\Cyril\AppData\Local\Temporary Internet Files
O43 - CFD: 27/10/2015 - 12:01:47 - [13,086] ----D C:\Users\Cyril\AppData\Local\TileDataLayer
O43 - CFD: 19/07/2015 - 23:37:05 - [30,502] ----D C:\Users\Cyril\AppData\Local\TomTom
O43 - CFD: 15/06/2015 - 06:52:09 - [100,141] ----D C:\Users\Cyril\AppData\Local\Turbopoker
O43 - CFD: 07/07/2017 - 16:58:03 - [0] ----D C:\Users\Cyril\AppData\Local\UNP
O43 - CFD: 25/08/2011 - 19:18:48 - [0] ----D C:\Users\Cyril\AppData\Local\uTorrent
O43 - CFD: 16/06/2012 - 00:00:02 - [0,625] ----D C:\Users\Cyril\AppData\Local\VirtualStore
O43 - CFD: 31/12/2015 - 12:50:47 - [0,129] ----D C:\Users\Cyril\AppData\Local\Windows Live
O43 - CFD: 23/02/2012 - 19:09:38 - [0,619] ----D C:\Users\Cyril\AppData\Local\Windows Live Writer
O43 - CFD: 25/08/2013 - 23:25:31 - [0,000] ----D C:\Users\Cyril\AppData\Local\_data_Easy_WebCam_Recording
O43 - CFD: 15/08/2016 - 12:37:09 - [0] ----D C:\Users\Cyril\AppData\Local\{01154C42-F508-477A-A397-20B6A304C45F}
O43 - CFD: 07/11/2013 - 14:33:53 - [0] ----D C:\Users\Cyril\AppData\Local\{016B3654-EE0D-494A-9767-3E438E7F3B85}
O43 - CFD: 16/04/2013 - 10:21:39 - [0] ----D C:\Users\Cyril\AppData\Local\{02643EBE-9D78-45BE-972D-AE68F2C8DA90}
O43 - CFD: 14/07/2012 - 01:13:03 - [0] ----D C:\Users\Cyril\AppData\Local\{06A6BEBA-F494-42A7-BE23-BB04650144C3}
O43 - CFD: 06/05/2012 - 15:26:15 - [0] ----D C:\Users\Cyril\AppData\Local\{077FA771-2545-40BD-90D2-1CFB06ED83A4}
O43 - CFD: 20/01/2013 - 13:12:54 - [0] ----D C:\Users\Cyril\AppData\Local\{0A0BA470-6025-46E4-9705-301905480710}
O43 - CFD: 07/01/2015 - 01:44:24 - [0] ----D C:\Users\Cyril\AppData\Local\{0A272027-AE10-4298-9EAC-B2D7BD419E9B}
O43 - CFD: 29/09/2012 - 12:57:23 - [0] ----D C:\Users\Cyril\AppData\Local\{0A634C5A-4739-4B92-90D3-0A40349A66ED}
O43 - CFD: 14/07/2014 - 11:00:03 - [0] ----D C:\Users\Cyril\AppData\Local\{0A6AA1FB-BCD8-4787-9EFD-237BF64158A4}
O43 - CFD: 07/06/2015 - 19:28:34 - [0] ----D C:\Users\Cyril\AppData\Local\{0C2C08F9-D777-4CFF-A634-059B0DD5A1A3}
O43 - CFD: 22/10/2015 - 14:09:42 - [0] ----D C:\Users\Cyril\AppData\Local\{0FCCA897-3BBB-4D85-B53D-7A6E2ACAB6B5}
O43 - CFD: 19/09/2014 - 07:42:39 - [0] ----D C:\Users\Cyril\AppData\Local\{10D2C0C4-671B-4C11-BB33-5CA238286E1D}
O43 - CFD: 31/08/2011 - 00:50:25 - [0] ----D C:\Users\Cyril\AppData\Local\{10D5C33D-88B1-4617-A2A6-575ACBC72932}
O43 - CFD: 08/02/2013 - 21:19:07 - [0] ----D C:\Users\Cyril\AppData\Local\{12C6D35C-F83D-4158-9230-EB3209C802A6}
O43 - CFD: 22/09/2013 - 11:49:35 - [0] ----D C:\Users\Cyril\AppData\Local\{1325A445-5470-4A8D-858E-A943599A91C5}
O43 - CFD: 19/01/2014 - 12:07:37 - [0] ----D C:\Users\Cyril\AppData\Local\{14488845-1C59-4798-B00F-DF62A05F98A6}
O43 - CFD: 18/06/2014 - 13:46:57 - [0] ----D C:\Users\Cyril\AppData\Local\{15987E1F-D2BE-4FCF-88E3-78426BF47C24}
O43 - CFD: 09/01/2013 - 13:55:46 - [0] ----D C:\Users\Cyril\AppData\Local\{163BD47A-2345-4B58-A194-2023C100283B}
O43 - CFD: 05/11/2012 - 13:17:57 - [0] ----D C:\Users\Cyril\AppData\Local\{168FAF61-1C8D-4C19-A357-92E2C1AC693B}
O43 - CFD: 11/11/2013 - 10:57:08 - [0] ----D C:\Users\Cyril\AppData\Local\{16DCD1B9-1873-4AEC-AFE8-CD27AC707326}
O43 - CFD: 13/07/2012 - 00:48:19 - [0] ----D C:\Users\Cyril\AppData\Local\{1B5813A7-CC26-44F8-8D69-0D7FEEDD9474}
O43 - CFD: 04/01/2015 - 13:42:10 - [0] ----D C:\Users\Cyril\AppData\Local\{1E0DB141-6CF5-4B44-95F1-A22CE52DD38F}
O43 - CFD: 23/03/2014 - 18:43:57 - [0] ----D C:\Users\Cyril\AppData\Local\{229FC6C6-120A-4FE9-94B6-CE49BD261E4C}
O43 - CFD: 15/07/2013 - 12:23:22 - [0] ----D C:\Users\Cyril\AppData\Local\{2337E867-B894-428D-8A09-15D3312FA30C}
O43 - CFD: 22/05/2013 - 08:21:20 - [0] ----D C:\Users\Cyril\AppData\Local\{235C300C-E6AC-4E03-9D7A-9BED92DC8C8D}
O43 - CFD: 26/06/2012 - 14:11:18 - [0] ----D C:\Users\Cyril\AppData\Local\{28B5A762-4385-4977-82D3-78E4D5FC5CEE}
O43 - CFD: 10/12/2011 - 15:13:52 - [0] ----D C:\Users\Cyril\AppData\Local\{28BE861C-6967-4953-AD75-07435F879DE6}
O43 - CFD: 16/05/2013 - 13:46:59 - [0] ----D C:\Users\Cyril\AppData\Local\{29253217-D7C5-4DC8-83EB-65ED8DA6D65F}
O43 - CFD: 13/12/2012 - 11:16:26 - [0] ----D C:\Users\Cyril\AppData\Local\{297CBF6E-09D4-4AA1-9463-8D77B0D88F70}
O43 - CFD: 31/12/2012 - 02:28:27 - [0] ----D C:\Users\Cyril\AppData\Local\{2A890BB2-A117-4255-9F51-5A8EE37F6C69}
O43 - CFD: 21/06/2013 - 07:01:10 - [0] ----D C:\Users\Cyril\AppData\Local\{2AE0B0F3-5B7C-4E0B-A13B-958385268BD1}
O43 - CFD: 29/06/2012 - 10:42:19 - [0] ----D C:\Users\Cyril\AppData\Local\{2B92A271-018D-40CD-9CBD-DF04F37D65CD}
O43 - CFD: 04/01/2013 - 11:29:01 - [0] ----D C:\Users\Cyril\AppData\Local\{2C3D21A0-E12F-4E29-A544-9AAEF3C00503}
O43 - CFD: 07/09/2013 - 15:59:46 - [0] ----D C:\Users\Cyril\AppData\Local\{2C74443E-2348-46A7-9282-B0A424F1F547}
O43 - CFD: 11/07/2012 - 22:48:24 - [0] ----D C:\Users\Cyril\AppData\Local\{2CA13B28-1675-413B-B37B-F852CD78F914}
O43 - CFD: 09/12/2013 - 17:16:20 - [0] ----D C:\Users\Cyril\AppData\Local\{2D750905-2CCD-4686-94CE-68713EC67F66}
O43 - CFD: 23/02/2012 - 19:09:56 - [0] ----D C:\Users\Cyril\AppData\Local\{2E9915CC-A1A8-49CF-8ACF-03AF8D199863}
O43 - CFD: 18/12/2013 - 21:28:05 - [0] ----D C:\Users\Cyril\AppData\Local\{3281D52A-5696-4BD8-8094-267BC9AC6271}
O43 - CFD: 19/09/2013 - 19:06:47 - [0] ----D C:\Users\Cyril\AppData\Local\{33917CFF-2D6F-491F-ABD2-2A15CC38DC52}
O43 - CFD: 28/04/2013 - 14:27:18 - [0] ----D C:\Users\Cyril\AppData\Local\{33C8C492-2469-4541-8894-4474F0C0A6CA}
O43 - CFD: 03/08/2014 - 13:19:34 - [0] ----D C:\Users\Cyril\AppData\Local\{33E4E43A-F8A0-4B3F-9F0C-F2814CE0DB77}
O43 - CFD: 24/04/2012 - 22:15:03 - [0] ----D C:\Users\Cyril\AppData\Local\{34DFE5E3-F7EB-48E4-B050-D910CD73718F}
O43 - CFD: 14/01/2014 - 16:09:13 - [0] ----D C:\Users\Cyril\AppData\Local\{35B1904A-2C3C-4A7D-AB7B-29760BB9B46B}
O43 - CFD: 29/01/2014 - 23:12:16 - [0] ----D C:\Users\Cyril\AppData\Local\{378DF91C-8689-4FB5-B6DC-7E2C72D6ECF6}
O43 - CFD: 21/12/2012 - 08:32:48 - [0] ----D C:\Users\Cyril\AppData\Local\{3E57CE1D-A35E-4AD2-BF8B-DFAF21000317}
O43 - CFD: 13/11/2014 - 22:55:14 - [0] ----D C:\Users\Cyril\AppData\Local\{40A85ACB-6C9B-4CD7-88DE-FAC24BDBB159}
O43 - CFD: 12/06/2012 - 17:17:25 - [0] ----D C:\Users\Cyril\AppData\Local\{40B75366-65D8-43AE-A9AE-35298A946B84}
O43 - CFD: 14/10/2012 - 01:59:27 - [0] ----D C:\Users\Cyril\AppData\Local\{40C6522B-CF22-4861-A056-CCF723E579F8}
O43 - CFD: 24/12/2012 - 02:52:39 - [0] ----D C:\Users\Cyril\AppData\Local\{410FF047-E22A-4AC9-B6F6-FA302E05C6CC}
O43 - CFD: 18/07/2015 - 12:09:06 - [0] ----D C:\Users\Cyril\AppData\Local\{41B7F85D-C6B0-40FC-8755-2A9D910DCA0C}
O43 - CFD: 04/09/2014 - 14:52:29 - [0] ----D C:\Users\Cyril\AppData\Local\{445138B3-25BD-4D20-83D8-145BF6F3133C}
O43 - CFD: 13/04/2012 - 15:05:27 - [0] ----D C:\Users\Cyril\AppData\Local\{45DBC9BD-0B8C-48D4-959D-A520B4BE3719}
O43 - CFD: 15/07/2014 - 12:03:16 - [0] ----D C:\Users\Cyril\AppData\Local\{463A6674-06A3-4A33-9F70-163C102677A5}
O43 - CFD: 09/05/2014 - 17:51:02 - [0] ----D C:\Users\Cyril\AppData\Local\{49A41A42-888E-4C35-95FB-815E5B4E024F}
O43 - CFD: 06/05/2012 - 15:26:26 - [0] ----D C:\Users\Cyril\AppData\Local\{4CC91179-3E8A-47BF-9BE4-A54668F466B1}
O43 - CFD: 31/12/2011 - 02:16:43 - [0] ----D C:\Users\Cyril\AppData\Local\{4D5C6636-FCCB-4955-BC9D-A4CD88E4F993}
O43 - CFD: 11/04/2014 - 19:52:14 - [0] ----D C:\Users\Cyril\AppData\Local\{4E1EEEAC-5E49-4AAE-A8D7-F62CC756C105}
O43 - CFD: 26/08/2014 - 15:19:29 - [0] ----D C:\Users\Cyril\AppData\Local\{4EBFC640-A0DC-4112-94FD-E3F49BC3E2A8}
O43 - CFD: 20/07/2014 - 22:21:41 - [0] ----D C:\Users\Cyril\AppData\Local\{4EF5B26F-B742-4767-ABBA-1648AD285D06}
O43 - CFD: 14/08/2016 - 20:20:50 - [0] ----D C:\Users\Cyril\AppData\Local\{4F63B39B-7712-42DA-B2E8-14900A64A420}
O43 - CFD: 30/06/2013 - 23:22:38 - [0] ----D C:\Users\Cyril\AppData\Local\{5022F1C3-6B67-4331-AD8D-9355286FBF98}
O43 - CFD: 27/10/2013 - 11:47:15 - [0] ----D C:\Users\Cyril\AppData\Local\{523ACC98-B5E5-4FA5-A989-CB4490FD4494}
O43 - CFD: 22/09/2012 - 14:30:05 - [0] ----D C:\Users\Cyril\AppData\Local\{52D0E3ED-1CA7-4B2B-AAB9-9E0803D6D02D}
O43 - CFD: 18/02/2014 - 17:47:26 - [0] ----D C:\Users\Cyril\AppData\Local\{52DFEA92-FDC5-47C2-95AE-882628A4BCAE}
O43 - CFD: 10/07/2012 - 17:45:57 - [0] ----D C:\Users\Cyril\AppData\Local\{54330B4E-E0C6-44C7-9DC7-C2875C04961C}
O43 - CFD: 27/05/2013 - 20:15:35 - [0] ----D C:\Users\Cyril\AppData\Local\{545923A6-9958-4ABA-A2CE-84893AF7734A}
O43 - CFD: 06/03/2013 - 21:15:03 - [0] ----D C:\Users\Cyril\AppData\Local\{54ACAE47-0305-4B4B-A356-91ACB049D6FA}
O43 - CFD: 28/10/2013 - 00:55:51 - [0] ----D C:\Users\Cyril\AppData\Local\{54CFBACE-A913-4B55-B209-1AFB4641A6EC}
O43 - CFD: 29/12/2012 - 11:58:57 - [0] ----D C:\Users\Cyril\AppData\Local\{56B16C15-24AF-4844-847F-925D386DE059}
O43 - CFD: 05/03/2014 - 23:20:55 - [0] ----D C:\Users\Cyril\AppData\Local\{5792C581-B584-4D76-89B7-7FAF06036CB9}
O43 - CFD: 21/09/2012 - 07:23:44 - [0] ----D C:\Users\Cyril\AppData\Local\{58D36A88-7437-4560-9084-1ABA73209B96}
O43 - CFD: 10/07/2013 - 17:52:29 - [0] ----D C:\Users\Cyril\AppData\Local\{5C37A67C-9470-4110-9188-EB39234B386D}
O43 - CFD: 20/08/2012 - 18:21:44 - [0] ----D C:\Users\Cyril\AppData\Local\{5C991C74-A19F-49B8-BD0D-997D8B7D61D4}
O43 - CFD: 13/07/2013 - 08:59:59 - [0] ----D C:\Users\Cyril\AppData\Local\{5D03B444-FED7-4146-BA27-E43F95AAC82F}
O43 - CFD: 01/02/2014 - 11:30:50 - [0] ----D C:\Users\Cyril\AppData\Local\{5D7B2D62-25F9-4CF5-B3B0-57CEC525F3E2}
O43 - CFD: 29/12/2013 - 05:43:21 - [0] ----D C:\Users\Cyril\AppData\Local\{5EF619F2-983A-4E84-B8B8-B88F5BEE1E07}
O43 - CFD: 12/11/2012 - 14:49:03 - [0] ----D C:\Users\Cyril\AppData\Local\{5F5101C2-3BFF-4FA2-80C1-60269FFCB381}
O43 - CFD: 24/11/2013 - 10:59:06 - [0] ----D C:\Users\Cyril\AppData\Local\{60D31EFD-103A-460E-BE5C-F1D6570CE880}
O43 - CFD: 15/05/2014 - 21:57:51 - [0] ----D C:\Users\Cyril\AppData\Local\{615F1B3D-AB74-44DF-A7CB-59D897747E43}
O43 - CFD: 29/06/2012 - 10:43:13 - [0] ----D C:\Users\Cyril\AppData\Local\{63C20166-36B5-425B-A38B-9AE48F2EDE55}
O43 - CFD: 14/04/2013 - 02:08:15 - [0] ----D C:\Users\Cyril\AppData\Local\{6481B4BA-2CF8-4C2F-971D-8987F61C4EC6}
O43 - CFD: 02/09/2012 - 20:35:35 - [0] ----D C:\Users\Cyril\AppData\Local\{668A8A38-6507-4A15-B6EF-A4A1BEF66445}
O43 - CFD: 21/11/2012 - 13:42:46 - [0] ----D C:\Users\Cyril\AppData\Local\{687393E7-DFA5-468E-97E9-78FABF98D69D}
O43 - CFD: 14/01/2013 - 18:32:30 - [0] ----D C:\Users\Cyril\AppData\Local\{689D43B3-D739-43D4-A45C-2FC2A4D66CE5}
O43 - CFD: 07/04/2013 - 13:31:34 - [0] ----D C:\Users\Cyril\AppData\Local\{6AEC49CA-A494-4B17-AE60-038E1D6F6B9C}
O43 - CFD: 12/11/2013 - 10:20:25 - [0] ----D C:\Users\Cyril\AppData\Local\{6B457610-B55E-43A9-A40F-19B907F6FA91}
O43 - CFD: 08/07/2015 - 21:47:01 - [0] ----D C:\Users\Cyril\AppData\Local\{6CB7D2D9-DE97-4DD2-8597-15C73BDE40AE}
O43 - CFD: 23/01/2014 - 22:36:08 - [0] ----D C:\Users\Cyril\AppData\Local\{6EB7C223-03DE-44F5-AE6C-8C8804E346AD}
O43 - CFD: 11/07/2012 - 10:40:44 - [0] ----D C:\Users\Cyril\AppData\Local\{72E2D49F-4D63-409D-B2E8-157DB7684276}
O43 - CFD: 05/05/2013 - 11:36:56 - [0] ----D C:\Users\Cyril\AppData\Local\{7414EDDD-FCBA-4EF8-BA7A-B31AF5372948}
O43 - CFD: 01/10/2013 - 17:46:31 - [0] ----D C:\Users\Cyril\AppData\Local\{75663FEC-1AC8-4F90-B093-3334C3D893D2}
O43 - CFD: 14/11/2014 - 13:14:32 - [0] ----D C:\Users\Cyril\AppData\Local\{76FDF8FF-18A7-4525-8DD8-1558C5B3691A}
O43 - CFD: 16/11/2013 - 12:05:15 - [0] ----D C:\Users\Cyril\AppData\Local\{7711B909-EE91-4A5D-9B5A-3BF7C23B08C3}
O43 - CFD: 13/09/2012 - 10:29:19 - [0] ----D C:\Users\Cyril\AppData\Local\{792C446E-3041-40A4-B409-309C4D8A80A3}
O43 - CFD: 10/12/2013 - 23:34:16 - [0] ----D C:\Users\Cyril\AppData\Local\{79FD7DDB-24BE-428A-B92D-E34AA9B2CC1C}
O43 - CFD: 10/02/2015 - 23:41:18 - [0] ----D C:\Users\Cyril\AppData\Local\{7AD75A52-4C8A-4CAE-A204-AB17405DD63E}
O43 - CFD: 11/07/2012 - 10:40:55 - [0] ----D C:\Users\Cyril\AppData\Local\{7ADAF4FA-DB65-40F1-A0C6-A00A54FD911B}
O43 - CFD: 26/09/2012 - 18:25:47 - [0] ----D C:\Users\Cyril\AppData\Local\{7B1D46B9-6A1F-4A0A-A1D3-C4FCE4904551}
O43 - CFD: 18/10/2012 - 19:35:42 - [0] ----D C:\Users\Cyril\AppData\Local\{7E99E298-0026-4981-9C4B-7E198981E969}
O43 - CFD: 11/10/2014 - 00:53:08 - [0] ----D C:\Users\Cyril\AppData\Local\{82E7E03B-E2EA-4E73-B26A-F23D0F744370}
O43 - CFD: 23/03/2013 - 20:14:55 - [0] ----D C:\Users\Cyril\AppData\Local\{852B34AC-B4E1-4BEA-AAF5-3301586009EF}
O43 - CFD: 31/12/2011 - 02:16:32 - [0] ----D C:\Users\Cyril\AppData\Local\{86876A60-912D-4770-8A8D-34ABC75D14CF}
O43 - CFD: 11/07/2013 - 11:00:28 - [0] ----D C:\Users\Cyril\AppData\Local\{8834833F-C644-44EE-9347-691449829762}
O43 - CFD: 24/09/2012 - 02:43:56 - [0] ----D C:\Users\Cyril\AppData\Local\{88930507-5A6A-41E4-AB13-DF1575A857B4}
O43 - CFD: 06/12/2012 - 08:43:35 - [0] ----D C:\Users\Cyril\AppData\Local\{8A9811B6-4F18-4689-B2D8-4A5FC1D152E2}
O43 - CFD: 15/11/2014 - 01:33:58 - [0] ----D C:\Users\Cyril\AppData\Local\{8C22BC59-B041-4BA5-B313-1FCF5FFE4874}
O43 - CFD: 03/04/2013 - 00:19:28 - [0] ----D C:\Users\Cyril\AppData\Local\{8D6C1B52-824B-46F9-AC8F-EE99B8D61469}
O43 - CFD: 13/10/2012 - 13:59:01 - [0] ----D C:\Users\Cyril\AppData\Local\{8F894F88-2AAC-466E-A5BA-865D2F487F2C}
O43 - CFD: 17/06/2013 - 12:40:23 - [0] ----D C:\Users\Cyril\AppData\Local\{8FBE8B53-6C77-4172-A972-8AC938F9662C}
O43 - CFD: 20/12/2013 - 11:54:26 - [0] ----D C:\Users\Cyril\AppData\Local\{90B803F5-931A-4AFE-931F-62B896FCC46E}
O43 - CFD: 18/08/2014 - 12:15:36 - [0] ----D C:\Users\Cyril\AppData\Local\{92D17B92-4537-43F1-864B-F99A44B6D499}
O43 - CFD: 04/01/2012 - 20:53:49 - [0] ----D C:\Users\Cyril\AppData\Local\{93C0BF18-F62F-4E6F-A215-2436BA34C82D}
O43 - CFD: 19/05/2013 - 09:54:32 - [0] ----D C:\Users\Cyril\AppData\Local\{93E1255F-C587-4D1F-AB2F-EFF229AF8882}
O43 - CFD: 24/09/2012 - 14:44:31 - [0] ----D C:\Users\Cyril\AppData\Local\{96397DE8-6DD2-4781-A4F3-78D6CC8334E9}
O43 - CFD: 03/11/2013 - 12:04:19 - [0] ----D C:\Users\Cyril\AppData\Local\{96A299F2-4093-45DB-8DC6-0B93BA610D7A}
O43 - CFD: 13/07/2012 - 13:12:24 - [0] ----D C:\Users\Cyril\AppData\Local\{978CDB57-F8EA-4146-89B0-C00804D46CFB}
O43 - CFD: 24/06/2014 - 20:21:49 - [0] ----D C:\Users\Cyril\AppData\Local\{993B773A-7510-416E-B943-3D1ECCBD46B8}
O43 - CFD: 16/12/2013 - 13:39:18 - [0] ----D C:\Users\Cyril\AppData\Local\{9AE69AC7-A2CC-4949-9E80-91FE9B343BDF}
O43 - CFD: 14/07/2012 - 13:13:34 - [0] ----D C:\Users\Cyril\AppData\Local\{9AF403D9-1F9F-48C9-985C-70ABA2E5D43A}
O43 - CFD: 26/06/2012 - 02:11:04 - [0] ----D C:\Users\Cyril\AppData\Local\{9B37683E-3011-4D58-BA7B-869575C38352}
O43 - CFD: 29/08/2014 - 16:21:06 - [0] ----D C:\Users\Cyril\AppData\Local\{9B8235DF-BF87-419F-9207-C6C4CAC227F5}
O43 - CFD: 01/04/2013 - 16:38:57 - [0] ----D C:\Users\Cyril\AppData\Local\{9E8BD12D-46A6-4660-9160-947AF73F8484}
O43 - CFD: 29/07/2012 - 22:15:13 - [0] ----D C:\Users\Cyril\AppData\Local\{9FC4E69D-9A7B-415D-98FF-4EAEF25242FC}
O43 - CFD: 15/10/2012 - 19:25:23 - [0] ----D C:\Users\Cyril\AppData\Local\{A0C38F66-E312-429D-9E1A-EB54D074739A}
O43 - CFD: 11/01/2012 - 17:36:45 - [0] ----D C:\Users\Cyril\AppData\Local\{A1913529-6D87-4EBE-99A3-54DE54DFEE2C}
O43 - CFD: 15/06/2013 - 09:26:18 - [0] ----D C:\Users\Cyril\AppData\Local\{A391B2A2-F5E4-4CED-A0EC-E19B3CCDBA28}
O43 - CFD: 11/01/2012 - 17:36:34 - [0] ----D C:\Users\Cyril\AppData\Local\{A3BBA6FF-EC90-4D74-8D6C-B90C1DE11A7B}
O43 - CFD: 03/03/2014 - 23:36:19 - [0] ----D C:\Users\Cyril\AppData\Local\{A42DBAA9-AABC-42F3-86D3-BED3CE4E87C1}
O43 - CFD: 29/07/2012 - 22:15:00 - [0] ----D C:\Users\Cyril\AppData\Local\{A8074BF9-8CB5-4FE4-B2ED-AD9BE58FABDA}
O43 - CFD: 17/06/2015 - 16:17:33 - [0] ----D C:\Users\Cyril\AppData\Local\{A9CDBF18-5FC8-4992-BAC8-AF0576EE551F}
O43 - CFD: 27/08/2013 - 12:06:54 - [0] ----D C:\Users\Cyril\AppData\Local\{AA9F8B5D-1F42-4AD9-9F98-E88A6C16FF2D}
O43 - CFD: 04/01/2012 - 20:53:39 - [0] ----D C:\Users\Cyril\AppData\Local\{AB9865B8-63F1-45F2-AE66-4178BD0E1F10}
O43 - CFD: 14/06/2013 - 14:31:01 - [0] ----D C:\Users\Cyril\AppData\Local\{ABF47B27-4FF7-420E-AD79-67442DAFC0EF}
O43 - CFD: 29/03/2014 - 15:32:32 - [0] ----D C:\Users\Cyril\AppData\Local\{ACD7003D-0D25-4F5B-AFF8-6E3DABE011B3}
O43 - CFD: 15/11/2014 - 17:50:09 - [0] ----D C:\Users\Cyril\AppData\Local\{AD3AD551-2550-4894-B791-860E723BEDA6}
O43 - CFD: 18/06/2013 - 00:55:53 - [0] ----D C:\Users\Cyril\AppData\Local\{AD3CA4CA-23AB-470A-96ED-0D796D6ED1E6}
O43 - CFD: 02/07/2014 - 14:13:02 - [0] ----D C:\Users\Cyril\AppData\Local\{AFFB1A20-F917-4FCA-82FC-697016B0E950}
O43 - CFD: 19/01/2013 - 12:31:18 - [0] ----D C:\Users\Cyril\AppData\Local\{B16731AB-BE9B-4B9F-B178-7AB32ECF4984}
O43 - CFD: 13/10/2013 - 15:58:56 - [0] ----D C:\Users\Cyril\AppData\Local\{BA98D889-0D9E-48FD-86E4-CA40AEAB6607}
O43 - CFD: 14/01/2015 - 00:14:55 - [0] ----D C:\Users\Cyril\AppData\Local\{BBD3DA43-220A-4AA7-BB6B-55C08F2B6849}
O43 - CFD: 12/06/2013 - 12:33:23 - [0] ----D C:\Users\Cyril\AppData\Local\{BF725F1A-7BD6-4B97-B01C-4662A7E57E0E}
O43 - CFD: 22/06/2013 - 21:19:27 - [0] ----D C:\Users\Cyril\AppData\Local\{C38220A4-95BD-4069-AA81-5AA80C5000F9}
O43 - CFD: 24/04/2012 - 22:15:13 - [0] ----D C:\Users\Cyril\AppData\Local\{C4EABF29-CC9B-4DCA-91AF-90269703B668}
O43 - CFD: 31/08/2011 - 00:50:26 - [0] ----D C:\Users\Cyril\AppData\Local\{C573ACDD-580F-4EB6-B8E9-77E8A8AAFDF1}
O43 - CFD: 26/06/2012 - 14:11:28 - [0] ----D C:\Users\Cyril\AppData\Local\{C5A5DC2A-EEFC-4548-B949-D1FA15C1E4D7}
O43 - CFD: 22/03/2014 - 11:09:31 - [0] ----D C:\Users\Cyril\AppData\Local\{C6F1468D-40E5-4888-8009-57C267F757B9}
O43 - CFD: 06/10/2012 - 23:25:38 - [0] ----D C:\Users\Cyril\AppData\Local\{C758B15C-3D60-4D37-A8B8-FBD738A3CED2}
O43 - CFD: 22/03/2013 - 18:32:29 - [0] ----D C:\Users\Cyril\AppData\Local\{C81FDF9A-0DA5-488D-87A8-6EDB1E45BAF9}
O43 - CFD: 06/05/2013 - 13:12:45 - [0] ----D C:\Users\Cyril\AppData\Local\{C83FE0E4-3F8D-449A-BDAC-2A6A552D105A}
O43 - CFD: 09/05/2013 - 14:53:05 - [0] ----D C:\Users\Cyril\AppData\Local\{C89705FD-0537-4F81-A4A1-FD1CD82643AD}
O43 - CFD: 12/07/2012 - 10:48:51 - [0] ----D C:\Users\Cyril\AppData\Local\{CA085A5B-F87C-4F59-B761-9CF3256CC2C8}
O43 - CFD: 22/09/2015 - 11:45:02 - [0] ----D C:\Users\Cyril\AppData\Local\{CBA145E6-6C15-4931-BBC5-0A7786C5EDDC}
O43 - CFD: 19/11/2012 - 03:07:30 - [0] ----D C:\Users\Cyril\AppData\Local\{CC50E498-A76D-4669-9FEF-C15F6AF3F79E}
O43 - CFD: 19/08/2013 - 22:17:18 - [0] ----D C:\Users\Cyril\AppData\Local\{CC6E4BAE-7A49-4169-9DE9-671BAE6FDF59}
O43 - CFD: 15/10/2012 - 00:06:18 - [0] ----D C:\Users\Cyril\AppData\Local\{CF0B3EE3-8623-4066-9671-F2F685C37D6F}
O43 - CFD: 24/09/2013 - 18:14:53 - [0] ----D C:\Users\Cyril\AppData\Local\{D00EBF16-DEA6-4DDF-B19C-8E7507429E1A}
O43 - CFD: 13/06/2013 - 14:37:08 - [0] ----D C:\Users\Cyril\AppData\Local\{D01E177C-0D9B-4500-AE40-DFB9EBA47BCC}
O43 - CFD: 09/09/2013 - 11:18:42 - [0] ----D C:\Users\Cyril\AppData\Local\{D40EEACC-A0B8-49E0-B583-DC4ABB353702}
O43 - CFD: 27/04/2014 - 11:20:14 - [0] ----D C:\Users\Cyril\AppData\Local\{D5DE7D83-BA61-46FF-8182-C627B0BC80E8}
O43 - CFD: 05/08/2013 - 14:46:50 - [0] ----D C:\Users\Cyril\AppData\Local\{D64F63F8-3329-4092-A292-DE919FD0757A}
O43 - CFD: 26/01/2012 - 21:48:33 - [0] ----D C:\Users\Cyril\AppData\Local\{D7151658-6E11-43D6-B574-B85A59251F7A}
O43 - CFD: 12/01/2013 - 12:17:59 - [0] ----D C:\Users\Cyril\AppData\Local\{D8B4BA7F-A23C-4E92-B940-A968D8D77436}
O43 - CFD: 16/04/2015 - 18:06:13 - [0] ----D C:\Users\Cyril\AppData\Local\{D8CB415B-F0B5-4AC9-B326-948F74048625}
O43 - CFD: 19/05/2014 - 19:16:01 - [0] ----D C:\Users\Cyril\AppData\Local\{DA9E08A5-3B43-438A-8F83-3ED57768FF98}
O43 - CFD: 03/11/2012 - 15:11:00 - [0] ----D C:\Users\Cyril\AppData\Local\{DAF48DC6-AE14-45E1-A149-CFB496334F7D}
O43 - CFD: 11/04/2013 - 12:46:21 - [0] ----D C:\Users\Cyril\AppData\Local\{DB625E77-5B68-47D5-BAEA-7192BFF314BB}
O43 - CFD: 15/05/2014 - 09:56:26 - [0] ----D C:\Users\Cyril\AppData\Local\{DBEF9052-88F9-4B80-B40B-0BA940F1142D}
O43 - CFD: 07/07/2015 - 09:52:50 - [0] ----D C:\Users\Cyril\AppData\Local\{DC5E686F-3B14-4144-AB08-500A17727202}
O43 - CFD: 28/02/2013 - 11:57:35 - [0] ----D C:\Users\Cyril\AppData\Local\{DC7EEFCA-7018-4F5A-9BB0-B656B50C7DD1}
O43 - CFD: 30/09/2012 - 18:33:06 - [0] ----D C:\Users\Cyril\AppData\Local\{DD12E891-C1C5-4405-A628-19C1E598C80D}
O43 - CFD: 10/10/2013 - 18:59:56 - [0] ----D C:\Users\Cyril\AppData\Local\{DDE87B3B-8F4E-484D-BE4A-33D5E3DB644E}
O43 - CFD: 07/08/2013 - 22:50:59 - [0] ----D C:\Users\Cyril\AppData\Local\{DEE2017D-678A-40BA-BF0D-0712BD66D9F8}
O43 - CFD: 25/08/2014 - 14:11:06 - [0] ----D C:\Users\Cyril\AppData\Local\{E2E655FD-3E93-45D7-A02A-6248007E209D}
O43 - CFD: 14/07/2012 - 13:13:18 - [0] ----D C:\Users\Cyril\AppData\Local\{E49ED280-CDC9-4592-BBC3-9AE2F3E739FE}
O43 - CFD: 23/04/2013 - 00:49:43 - [0] ----D C:\Users\Cyril\AppData\Local\{E4C83445-4776-434B-8A00-D4EDF074D1B8}
O43 - CFD: 29/11/2013 - 00:01:32 - [0] ----D C:\Users\Cyril\AppData\Local\{E6C4508B-468B-4C53-8E7B-D882F2DE5A0A}
O43 - CFD: 14/12/2013 - 11:46:06 - [0] ----D C:\Users\Cyril\AppData\Local\{ECCE61DB-E299-4F3D-AE8C-4100EBE7D8E6}
O43 - CFD: 25/09/2013 - 19:10:43 - [0] ----D C:\Users\Cyril\AppData\Local\{EDD4331C-DA38-4BDF-B17D-F5B3DF13EBEF}
O43 - CFD: 12/03/2013 - 14:17:32 - [0] ----D C:\Users\Cyril\AppData\Local\{F2955B2F-3F19-4E32-8FE4-24DBA56AC7EE}
O43 - CFD: 12/07/2013 - 11:22:34 - [0] ----D C:\Users\Cyril\AppData\Local\{F2BE353E-A34C-400E-AC0D-276B02DE4C8B}
O43 - CFD: 28/08/2012 - 21:17:02 - [0] ----D C:\Users\Cyril\AppData\Local\{F2F0A533-866A-4D7D-B934-CF10F633E2E8}
O43 - CFD: 26/01/2012 - 21:48:43 - [0] ----D C:\Users\Cyril\AppData\Local\{F61BC46A-01C3-419A-9D50-99D73F9FAB7E}
O43 - CFD: 01/09/2012 - 00:00:07 - [0] ----D C:\Users\Cyril\AppData\Local\{F6A1DF1C-59D7-4652-B7C1-6E5964BCDDAF}
O43 - CFD: 22/09/2014 - 22:37:37 - [0] ----D C:\Users\Cyril\AppData\Local\{F9BAFD63-BADD-4CAD-97D9-51C950120920}
O43 - CFD: 28/08/2013 - 00:07:25 - [0] ----D C:\Users\Cyril\AppData\Local\{FA34A6BB-4862-407E-BB12-2C7B6DEE18D4}
O43 - CFD: 20/02/2015 - 01:01:44 - [0] ----D C:\Users\Cyril\AppData\Local\{FB6ECDF5-CF84-487B-984A-12BD0D932E93}
O43 - CFD: 07/12/2013 - 11:15:25 - [0] ----D C:\Users\Cyril\AppData\Local\{FC7EEE64-8DF7-4723-83F1-232199A81E46}
O43 - CFD: 31/07/2014 - 12:22:31 - [0] ----D C:\Users\Cyril\AppData\Local\{FD6C8108-CF38-457F-8AC5-6D9259414186}
O43 - CFD: 11/12/2013 - 11:34:34 - [0] ----D C:\Users\Cyril\AppData\Local\{FD79402D-F950-4AF8-9D9B-B2D18D1FDE34}
O43 - CFD: 30/11/2013 - 21:42:10 - [0] ----D C:\Users\Cyril\AppData\Local\{FD968844-1855-4424-BB7C-9812529E4DFB}
O43 - CFD: 16/07/2016 - 13:47:50 - [0,004] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 27/09/2016 - 08:04:07 - [0,004] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/06/2017 - 12:52:20 - [0,000] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/08/2011 - 12:26:51 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 28/11/2011 - 23:00:46 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Algobox
O43 - CFD: 01/08/2014 - 00:39:44 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cyanide
O43 - CFD: 26/09/2016 - 23:35:29 - [0,004] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloader
O43 - CFD: 27/06/2017 - 19:29:54 - [0,001] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 26/09/2016 - 23:35:29 - [0,001] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 26/09/2016 - 23:35:29 - [0,006] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebra 4
O43 - CFD: 26/09/2016 - 23:35:29 - [0,006] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebra 4.2
O43 - CFD: 26/09/2016 - 23:35:29 - [0,009] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GeoGebraPrim
O43 - CFD: 05/03/2017 - 22:26:47 - [0,002] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
O43 - CFD: 16/07/2016 - 13:47:50 - [0,000] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 08/09/2012 - 14:58:16 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Application
O43 - CFD: 26/09/2016 - 23:18:21 - [0,003] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 26/09/2016 - 23:18:22 - [0,012] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy
O43 - CFD: 26/09/2016 - 23:35:29 - [0,005] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 29/10/2012 - 22:00:47 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SitNGo Wizard
O43 - CFD: 17/06/2017 - 12:52:20 - [0,003] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 16/07/2016 - 13:47:50 - [0,005] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 23/12/2015 - 23:56:14 - [0] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamax
O43 - CFD: 16/07/2016 - 13:48:01 - [0,007] R---D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 26/09/2016 - 23:35:29 - [0,003] ----D C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 07mn 26s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.038356387332650843BCB352BB89A101] - 11/07/2017 - 21:30:22 ---A- . (...) -- C:\Windows\WindowsUpdate.log [275]
O44 - LFC:[MD5.EE462096569EE1484C7BE38979BA4749] - 11/07/2017 - 21:25:48 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.75BB251CAC467EA6D8004A8CD9BF8FF7] - 11/07/2017 - 21:23:35 ---A- . (...) -- C:\Windows\PFRO.log [2896]
O44 - LFC:[MD5.9E77D7941FBB76EC3A698950E881D6BE] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [3224834]
O44 - LFC:[MD5.9D7F54A5BD731B2C375C8D20CD5F060D] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [379054]
O44 - LFC:[MD5.1C64012EE802D1531618D976DB7A7CC4] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [355442]
O44 - LFC:[MD5.6DF498320C419A4F5D857CB13016E0AC] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [1044298]
O44 - LFC:[MD5.7FAECE162CEA2A7487F8591163540979] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [1416134]
O44 - LFC:[MD5.9E77D7941FBB76EC3A698950E881D6BE] - 18/06/2017 - 14:38:49 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [3224834]
O44 - LFC:[MD5.0549DD21DD21D14472F4141106A671EB] - 17/06/2017 - 11:44:59 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [264288]
O44 - LFC:[MD5.A3E5C464520434D873BF1BD092117853] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [45056]
O44 - LFC:[MD5.A3E5C464520434D873BF1BD092117853] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [45056]
O44 - LFC:[MD5.A64CF9D11F695E8BE7E88DB2FF9ACBE9] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [379232]
O44 - LFC:[MD5.A64CF9D11F695E8BE7E88DB2FF9ACBE9] - 16/06/2017 - 22:11:43 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [379232]
O44 - LFC:[MD5.76142A00FDA4E0B192D1057BBAECF17A] - 03/06/2017 - 11:01:49 ---A- . (...) -- C:\Windows\SysNative\CoreUIComponents.dll [2681200]
O44 - LFC:[MD5.76142A00FDA4E0B192D1057BBAECF17A] - 03/06/2017 - 11:01:49 ---A- . (...) -- C:\Windows\System32\CoreUIComponents.dll [2681200]
O44 - LFC:[MD5.597C96281C55868CDBB06E22ADAEDCA9] - 03/06/2017 - 07:08:28 ---A- . (...) -- C:\Windows\SysNative\normidna.nls [80078]
~ Scan Files in 02mn 01s
---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\IEWInternet\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) -- C:\Program Files (x86)\Orange\IEWInternet\Connectivity\ConnectivityManager.exe
~ Scan Keys in 00mn 00s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de lÉditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (...) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\iai2c.sys . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\Drivers\iai2c.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\SpbCx.sys . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\uefi.sys . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\SpbCx.sys . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\uefi.sys . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRecentDocsHistory"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.EE1CCC54F75C24727A218F98FC5349DA] - 16/07/2016 - 12:41:53 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [107360]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 30/12/1899 - 17:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [33856]
~ Scan Drivers in 00mn 01s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ Scan Keys in 00mn 02s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {1831A78C-284A-4B53-8FDF-DA371163A3F2} - (Propositions de recherche Amazon.fr) - http://www.amazon.fr
O69 - SBI: SearchScopes [HKCU] {b7fca997-d0fb-4fe0-8afd-255e89cf9671} - (Yahoo) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {d43b3890-80c7-4010-a95d-1e77b5924dc3} - (Wikipedia) - http://fr.wikipedia.org
O69 - SBI: SearchScopes [HKCU] {D944BB61-2E34-4DBF-A683-47E505C587DC} - (eBay) - http://rover.ebay.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [193536]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [193536]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [305152]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1227264]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [932352]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [945664]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service douverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [31232]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations dapplication.) -- C:\Windows\System32\appinfo.dll [125952]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [112128]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [948224]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [222720]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur dordinateurs.) -- C:\Windows\System32\browser.dll [134656]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [387072]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [94208]
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [161792]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [70656]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [37376]
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [407552]
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [25088]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique daccès distant.) -- C:\Windows\System32\rasauto.dll [105472]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions daccès à distance.) -- C:\Windows\System32\rasmans.dll [657920]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire dinterface dynamique.) -- C:\Windows\System32\mprdim.dll [496128]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification dévénements système (SENS).) -- C:\Windows\System32\sens.dll [70656]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de lapplication dassistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [541696]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [309248]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2318848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1054208]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [617472]
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57344]
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Windows.) -- C:\Windows\System32\WpnService.dll [234496]
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1025536]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [183808]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [650752]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [361472]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire dinstallation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [197632]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [167936]
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1016320]
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [548864]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [358400]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1021440]
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1159680]
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [635904]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2104320]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [266752]
~ Scan Services in 00mn 03s
---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.F1B1F3FC0621CB1711287550D612BA4F] [SPRF][14/02/2012] (...) -- C:\Users\Cyril\AppData\Local\postgresinstall.bat [387]
[MD5.DC159B9F31B6E6A98F11D6AEDF3526AB] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\DeleteOnReboot.bat [4533]
[MD5.A558F7BF5747E6C6D524417A45BFA3EF] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\sa.1A7994D6-5342-8581-71FB-A2BD1C895D93_5__.Public.AppUpdate.dat [624]
[MD5.56BDDE7CBA132B5B379C996A988611CF] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\sa.34791E63.CanonInkjetPrintUtility_6e5tt8cgb93ep_1__.Public.InstallAgent.dat [63786]
[MD5.EA33A7502D24A1DD507CD08593F452BA] [SPRF][11/07/2017] (...) -- C:\Users\Cyril\AppData\Local\Temp\sa.AD2F1837.HPPrinterControl_v10z8vjag6ke6_1__.Public.InstallAgent.dat [274558]
[MD5.FE0F646DD809E3C7DC2B52D59C982716] [SPRF][17/12/2011] (...) -- C:\Users\Cyril\AppData\Roaming\zxgf16q51nkylclm.dat [8]
[MD5.03EE648234695256013A30A7D5BCF599] [SPRF][23/10/2014] (...) -- C:\Users\Cyril\Desktop\Domination_install_1.1.1.4.exe [7141385]
[MD5.E4B31B8CC2CEB446EE6A6003550FAAE4] [SPRF][01/10/2012] (...) -- C:\Windows\Downloaded Program Files\cfweb_activex.camfrogweb.com-advanced-2.0.1.14_instmodule.exe [99936]
~ Scan Files in 00mn 01s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "Collab-P2PHost-In-TCP" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP" |Out - Private - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" |In - Private - P17 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" |Out - Private - P17 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "MCX-In-TCP" |In - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Prov-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcx2prov.exe (.not file.)
O87 - FAEL: "MCX-McrMgr-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcrmgr.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP_1" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP_1" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP_1" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP_1" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP_1" |Out - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP_1" |In - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP_1" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-In-TCP_1" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "{7460E64E-9724-41A4-98E5-3F8BB91C6A8F}" | In - Private - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{0E73DABE-B73E-45D6-AB90-CB02BC9C4F86}" | In - Private - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "UDP Query User{BF76B9AC-96A2-4316-A50A-67580D2894AB}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Public - P17 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "TCP Query User{72139A7D-ACAB-48DB-A638-44A1AAE6863A}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Public - P6 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "UDP Query User{EC90B197-141B-40D9-8080-DA1E9D678C9D}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Private - P17 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "TCP Query User{10D46914-2263-417D-8096-504EB824852A}C:\users\cyril\appdata\local\google\chrome\application\chrome.exe" | In - Private - P6 - TRUE | .(.Google Inc..) -- C:\users\cyril\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "{B73485E2-FAE4-4DC3-A924-766E259CD5C1}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{58FBE0FC-BF4F-4925-B762-4F22A440892C}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{4CC117D8-734A-45B1-B214-19C19E121CBD}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{2E7B72CE-BADB-46EC-958D-83B073ADB722}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{56C7713A-2654-4B66-BED8-686F57A5213E}" | In - Public - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{4B34EA84-DA80-4499-AC7F-5F004CE52318}" | In - Public - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{3614D1A0-A56E-4972-A0F2-A83EED8D87E5}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Cyril\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{0C4C3FB7-BCE0-4D0F-BAF4-C0A3A8CC5751}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Cyril\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "UDP Query User{C6451455-6380-432D-85A6-F710B7FDE5E1}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Private - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrct
O87 - FAEL: "TCP Query User{59076B9C-B326-4154-B8C1-6DCED9E8ED4D}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Private - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrctr
O87 - FAEL: "UDP Query User{041745A6-0CC1-46FA-BEA0-89136C216721}C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.exe" | In - Private - P17 - TRUE | .(.Cyanide.) -- C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.
O87 - FAEL: "TCP Query User{211EC0F4-B669-44D0-B98B-15612713D24A}C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.exe" | In - Private - P6 - TRUE | .(.Cyanide.) -- C:\program files (x86)\cyanide\pro cycling manager - saison 2012\pcm.e
O87 - FAEL: "{BA17D3AA-0625-47AB-B32A-B9E7433A8415}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - AutorunApp.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\Autorun\exe\Autorun.exe
O87 - FAEL: "{E7179E85-4253-4AA8-82F2-129554EB90F3}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - AutorunApp.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\Autorun\exe\Autorun.exe
O87 - FAEL: "{D57E3AF1-ADD1-47A6-B156-F2203B1FE33C}" | In - Public - P17 - TRUE | .(.Cyanide - Pro Cycling Manager.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\PCM.exe
O87 - FAEL: "{7E57B54E-F58C-4F21-9711-4D61EF7A1A38}" | In - Public - P6 - TRUE | .(.Cyanide - Pro Cycling Manager.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Saison 2012\PCM.exe
O87 - FAEL: "UDP Query User{9B615545-A941-4874-90CB-0A3F706ACFF3}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Public - P17 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "TCP Query User{0E05420E-E76E-4CB7-AA1A-A4A72C8638E7}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Public - P6 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "UDP Query User{5EA94C72-3CB5-47D3-A9DB-0A232C5BF303}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Private - P17 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "TCP Query User{E01F867B-0ACE-4BE9-A19A-579C2A13C0BB}C:\program files (x86)\orange\assistance livebox\dist\st2.exe" | In - Private - P6 - TRUE | .(.Orange.) -- C:\program files (x86)\orange\assistance livebox\dist\st2.exe
O87 - FAEL: "{46C7DC07-FF5B-4875-BCC9-A8E9CE762808}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O87 - FAEL: "{07C92183-067A-4F51-B7A1-261E8A670F1F}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O87 - FAEL: "{79A2FD12-2039-4041-9BAE-A1268DD8477C}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
O87 - FAEL: "{A8CF532E-8B69-436A-9A32-F576B7C7AFB1}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
O87 - FAEL: "UDP Query User{F5168606-0FA1-455A-AE58-9CE559F702D8}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Public - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrctr
O87 - FAEL: "TCP Query User{C70D66DE-32F2-472B-8690-EBE24DFF3E1A}C:\program files (x86)\hercules\deluxe optical glass\xtrctrl.exe" | In - Public - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\deluxe optical glass\xtrctrl
O87 - FAEL: "{4C15176A-6957-4437-950F-6D29297431AC}" | In - Domain - P17 - FALSE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{05248215-01B5-416C-9D37-D9523E610A5B}" | In - Domain - P6 - FALSE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{93F51771-65A8-4B94-99DE-EBE3D2F6737D}" | In - Private - P17 - TRUE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{6B1E6F7A-7DCC-48AF-8B88-4979CA026697}" | In - Private - P6 - TRUE | .(.Hold'em Manager - Hold'em Manager.) -- C:\Program Files (x86)\Holdem Manager 2\HoldemManager.exe
O87 - FAEL: "{2560100B-4B52-48D3-AF52-BAFDDFCCC11A}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{89749B91-2549-4AE5-AF8E-C11CB66FE195}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{18D9DCDD-FE94-4825-B50B-35EFB917B154}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{56FDC1E4-0C2C-4F83-9FA8-532632A84DC1}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{C5522A18-E53E-40EB-9C0A-F9AE2906328E}" | In - None - P17 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{79A4E576-3C19-4172-AC14-5C61DF052DC1}" | In - None - P6 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{12DD5EBF-76D6-43F8-9B49-BCEBAAFA703B}" | In - None - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{A9F86BC5-D756-4D72-8EED-13963B14FDDC}" | In - None - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{319B8D27-E382-45BC-9E00-428BD6689437}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{E6277F49-4712-468D-A6EE-58DEEAD3CD58}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{6BB5EB85-774A-46A0-B430-6F8AB64B4A5A}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{AC277028-7AED-4380-AC61-CF34F288267A}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{C0BAE498-4439-4360-8BAF-C4DB3789183D}" | In - Public - P17 - TRUE | .(.Moonware Studios - webcamXP Service.) -- C:\Program Files (x86)\webcamXP 5\wService.exe
O87 - FAEL: "{14CF74E2-370A-406D-A731-E218FC5871AE}" | In - Public - P6 - TRUE | .(.Moonware Studios - webcamXP Service.) -- C:\Program Files (x86)\webcamXP 5\wService.exe
O87 - FAEL: "{40C47057-5D3D-429A-A08E-09F0F5CFB0B1}" | In - Public - P17 - TRUE | .(.Moonware Studios - webcamXP.) -- C:\Program Files (x86)\webcamXP 5\wLite.exe
O87 - FAEL: "{584A527D-882C-4E80-87C6-E8150FC77B5D}" | In - Public - P6 - TRUE | .(.Moonware Studios - webcamXP.) -- C:\Program Files (x86)\webcamXP 5\wLite.exe
O87 - FAEL: "UDP Query User{6348DB40-2F67-42B5-B285-E7641A5D2E23}C:\users\cyril\jeux\docs\snes\zsnesw.exe" | In - Public - P17 - TRUE | .(...) -- C:\users\cyril\jeux\docs\snes\zsnesw.exe
O87 - FAEL: "TCP Query User{A31C1F6A-7EC6-45F5-A578-6872615ACDC4}C:\users\cyril\jeux\docs\snes\zsnesw.exe" | In - Public - P6 - TRUE | .(...) -- C:\users\cyril\jeux\docs\snes\zsnesw.exe
O87 - FAEL: "UDP Query User{FF55B390-0AE7-43BA-A3A7-3D509A6EC13A}C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "TCP Query User{E2BE804E-FD4C-4D66-8DF1-B7DDFF52DBA5}C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\cyril\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "UDP Query User{C348BCEE-4242-40E5-9373-0550874BB9BE}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeve
O87 - FAEL: "TCP Query User{CE66B545-A638-403F-85D1-999F3423BC7B}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
O87 - FAEL: "UDP Query User{61C10898-32D2-410E-8762-87F82497F206}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe" | In - Public - P17 - TRUE | .(.Easy.) -- C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
O87 - FAEL: "TCP Query User{20726DF2-70CA-459D-95B6-D79132D53039}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe" | In - Public - P6 - TRUE | .(.Easy.) -- C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe
O87 - FAEL: "UDP Query User{903E3BE1-E64A-4BA4-B641-D47893C83537}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeven
O87 - FAEL: "TCP Query User{473F1549-4C09-40E0-8AAC-5175DB2A3E9E}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eevent
O87 - FAEL: "{D340F4F4-0C34-4F92-91DB-070B9C2A67D2}" |In - Private - P17 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{F4A34CEF-985C-4592-AEF3-C6FB03ADDFA7}" |In - Private - P6 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{B95B6DAD-5E12-4EEA-9DAA-7B2849EA5192}" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Cyril\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{AF935BB1-FEBE-4A39-9E4E-189E2F36CF5D}" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Cyril\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{77BB41E0-07CB-4686-8CC8-EDBB6FC57046}" |In - Public - P17 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{4C6E1110-C3D4-42C4-A148-8060802EDE92}" |In - Public - P6 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{96CDBB3C-7103-4083-A328-A5F068A9976B}" | In - Private - P17 - TRUE | .(.Cyanide - pcm.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2008\PCM.exe
O87 - FAEL: "{C55DA772-ABE7-415B-822A-71AF12150788}" | In - Private - P6 - TRUE | .(.Cyanide - pcm.) -- C:\Program Files (x86)\Cyanide\Pro Cycling Manager - Season 2008\PCM.exe
O87 - FAEL: "{2B10A3C2-4531-4160-8A10-BC3A5C19A4FB}" | In - Private - P17 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{566E7B40-F7F5-47B2-91FD-84397BEFEE4D}" | In - Private - P6 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{107BF636-29C9-486F-BD92-6C9F6BA27527}" | In - Domain - P17 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{B583C538-3377-49E1-97E2-C313852473C0}" | In - Domain - P6 - FALSE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{3A974404-F28B-4B9A-8ED2-C744401EBC89}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{D4C03D8E-D241-49C7-91EA-397C26405903}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{DEF6BB10-FE82-465F-B1DC-926CBB4C5365}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{6C1BD925-794D-4A53-A9A6-834816FE2F60}" | In - Public - P17 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{82BDD044-9830-4BFE-96B5-853B64E15A54}" | In - Public - P6 - TRUE | .(.Cyanide - GameCenter.) -- C:\Program Files (x86)\Cyanide\GameCenter\GameCenter.exe
O87 - FAEL: "{21BE1369-CC71-45F6-A47A-C5D9DF4ACA73}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{B38CDD9F-A222-413F-A061-21FB350CE3EC}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{23E45EF7-0333-44BD-AD20-1C5DCC225F22}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{8824287B-0C0A-4841-B8AB-D7BB3045ECB5}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{68241ED9-41E2-4543-A38C-3817987D39B4}" | In - None - P6 - TRUE | .(.EasyBits Software AS - EasyBits Magic Desktop for Kids.) -- C:\Program Files (x86)\EasyBits For Kids\ezDesktop.exe
O87 - FAEL: "{1205BEB9-95A1-4488-A49B-E646E4034150}" |In - None - P6 - TRUE | .(...) -- C:\Windows\system32\ezSharedSvcHost.exe (.not file.)
O87 - FAEL: "{51B2446E-4EA9-41AB-90A3-5AD1EBF1E709}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe (.not file.)
O87 - FAEL: "TCP Query User{98E19F35-7C0C-4CAE-8EF8-A0E95BBBB85C}C:\program files (x86)\videolan\vlc\vlc.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\videolan\vlc\vlc.exe
O87 - FAEL: "UDP Query User{2E93F7DC-184D-421A-BD83-64F18529C116}C:\program files (x86)\videolan\vlc\vlc.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\videolan\vlc\vlc.exe
O87 - FAEL: "{903AE1C9-1DE9-4E06-A27A-3A1BE10F763E}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O87 - FAEL: "{EFD3FBE7-4238-4BB7-B278-8B5C605BF6D6}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O87 - FAEL: "TCP Query User{49E76FB9-945E-41F0-8F35-D946F1CDF9AE}C:\program files (x86)\airdroid\airdroid.exe" | In - Private - P6 - TRUE | .(.Sand Studio - AirDroid 3.) -- C:\program files (x86)\airdroid\airdroid.exe
O87 - FAEL: "UDP Query User{FA204477-4949-4EF1-9E28-E02DB31C5910}C:\program files (x86)\airdroid\airdroid.exe" | In - Private - P17 - TRUE | .(.Sand Studio - AirDroid 3.) -- C:\program files (x86)\airdroid\airdroid.exe
O87 - FAEL: "{DE5889BF-3A6D-47C3-A681-3CB5D0C1FE2E}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
O87 - FAEL: "{88E92494-54D0-487D-A86D-8844E49D8176}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
~ Scan Firewall in 00mn 05s
---\\ Scan Additionnel (O88)
Database Version : v2.10565 - (07/02/2013)
Clés trouvées (Keys found) : 7
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 0
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C9A6357B-25CC-4BCF-96C1-78736985D412}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C9A6357B-25CC-4BCF-96C1-78736985D412}] =>Toolbar.Agent
[HKCU\Software\PartyFrance] =>Casino.OnlineGames
C:\Program Files (x86)\Software =>Adware.Boxore
C:\Users\Cyril\AppData\Local\Installer =>Adware.InstallPedia
~ Scan Additionnel in 00mn 29s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "0318D894178B49D4A9CD1C9FE981F8A3" . (.INDEX EDUCATION - Mise à jour automatique.) -- C:\Windows\Installer\{498D8130-B871-4D94-9ADC-C1F99E188F3A}\ARPPRODUCTICON.exe
O90 - PUC: "052E2C9D1A7186D0BC143832E23CC1C2" . (.ccc-utility64.) -- C:\WINDOWS\Installer\{D9C2E250-17A1-0D68-CB41-83232EC31C2C}\ARPPRODUCTICON.exe
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "0C9839E0A8E047144A03FCFA2FC93C7A" . (.PokerStrategy.com Equilab.) -- C:\Windows\Installer\{0E9389C0-0E8A-4174-A430-CFAFF29CC3A7}\ARPPRODUCTICON.exe
O90 - PUC: "0F76E360892CA2A8F06A481C35224A0E" . (.ccc-utility64.) -- C:\WINDOWS\Installer\{063E67F0-C298-8A2A-0FA6-84C15322A4E0}\ARPPRODUCTICON.exe
O90 - PUC: "1710346FB68B936438E97394317E19D1" . (.Google Earth.) -- C:\WINDOWS\Installer\{F6430171-B86B-4639-839E-374913E7911D}\MainIcon.ico
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "241A5D4605DBE627DEE92D05D8A2712E" . (.Catalyst Control Center InstallProxy.) -- C:\WINDOWS\Installer\{64D5A142-BD50-726E-ED9E-D2508D2A17E2}\ARPPRODUCTICON.exe
O90 - PUC: "262160A62B2C2E87B98F233DDB6DC834" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{6A061262-C2B2-78E2-9BF8-32D3BDD68C43}\ARPPRODUCTICON.exe
O90 - PUC: "2A0160E7633E3B046B584C09E579CEA9" . (.OpenOffice.org 3.3.) -- C:\Windows\Installer\{7E0610A2-E336-40B3-B685-C4905E97EC9A}\soffice.ico
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "2C1A65825C073CE4FA7F5E5BE155032A" . (.HP Client Services.) -- C:\Windows\Installer\{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}\ARPPRODUCTICON.exe
O90 - PUC: "3BE2BCD5DA78E624D847B8299C7D134C" . (.TomTom HOME.) -- C:\WINDOWS\Installer\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}\ARPPRODUCTICON.exe
O90 - PUC: "42D78011D76588D7966C7D0AB8F5C474" . (.Catalyst Control Center - Branding.) -- C:\WINDOWS\Installer\{11087D24-567D-7D88-69C6-D7A08B5F4C47}\ARPPRODUCTICON.exe
O90 - PUC: "46E5DCBD973784644944A85685CD6B41" . (.Recovery Manager.) -- C:\Windows\Installer\{DBCD5E64-7379-4648-9444-8A6558DCB614}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "4BE02D7D98DB0C50506C335E7B2689E9" . (.Catalyst Control Center InstallProxy.) -- C:\WINDOWS\Installer\{D7D20EB4-BD89-05C0-05C6-33E5B762989E}\ARPPRODUCTICON.exe
O90 - PUC: "4D6382495935B2561F8E7A5C0B9319C0" . (.ATI Catalyst Install Manager.) -- C:\Windows\Installer\{942836D4-5395-652B-F1E8-A7C5B039910C}\ARPPRODUCTICON.exe
O90 - PUC: "50A45C97641F0AE4A8074DFE6E81E125" . (.HP Support Assistant.) -- C:\WINDOWS\Installer\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}\ARPPRODUCTICON.exe
O90 - PUC: "57C5B7C328DFF1CB1F84983A81E93F58" . (.AMD Catalyst Control Center.) -- C:\WINDOWS\Installer\{3C7B5C75-FD82-BC1F-F148-89A3189EF385}\ARPPRODUCTICON.exe
O90 - PUC: "585FAF6380D348D33803D440F8B4C66E" . (.AMD Fuel.) -- C:\WINDOWS\Installer\{36FAF585-3D08-3D84-8330-4D048F4B6CE6}\ARPPRODUCTICON.exe
O90 - PUC: "5BD3937ABAC67A07A4E59CA65F8158A8" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{A7393DB5-6CAB-70A7-4A5E-C96AF518858A}\ARPPRODUCTICON.exe
O90 - PUC: "5BFC3035536D0F449AB469118EF1704C" . (.Camtasia Studio 8.) -- C:\Windows\Installer\{5303CFB5-D635-44F0-A94B-9611E81F07C4}\CamStudio.ico
O90 - PUC: "5DBAFE4B44758DE4AB741C07B46B482D" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{B4EFABD5-5744-4ED8-BA47-C1704BB684D2}\controlPanelIcon.exe
O90 - PUC: "68AB67CA408033019195008142220573" . (.Adobe Refresh Manager.) -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824225037}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA7FFFFB744AA0000000010" . (.Adobe Reader X (10.1.16) MUI.) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O90 - PUC: "68ADF0FAB7E6C6A1154D34FA0581E12D" . (.AMD Catalyst Control Center.) -- C:\WINDOWS\Installer\{AF0FDA86-6E7B-1A6C-51D4-43AF50181ED2}\ARPPRODUCTICON.exe
O90 - PUC: "6EF2A1BCFDB2CCED9CB1E4F5DF955C6D" . (.WMV9/VC-1 Video Playback.) -- C:\Windows\Installer\{CB1A2FE6-2BDF-DECC-C91B-4E5FFD59C5D6}\ARPPRODUCTICON.exe
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.2.3.) -- C:\Windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "71EB90E0AEDEAC249847245A785F5101" . (.TomTom HOME.) -- C:\Windows\Installer\{0E09BE17-EDEA-42CA-8974-42A587F51510}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "77E99DA1CC73E44793AC766FDF4365A5" . (.Catalyst Control Center Localization All.) -- C:\WINDOWS\Installer\{1AD99E77-37CC-744E-39CA-67F6FD34565A}\ARPPRODUCTICON.exe
O90 - PUC: "7B65D4CC81F6B0747843BADC57CB4F1F" . (.HP Auto.) -- C:\Windows\Installer\{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}\ARPPRODUCTICON.exe
O90 - PUC: "7C87544E76644214B82C1116CB5A9487" . (.HP Power Manager.) -- C:\Windows\Installer\{E44578C7-4667-4124-8BC2-1161BCA54978}\_853F67D554F05449430E7E.exe
O90 - PUC: "7CB7FA6253BD5C7B139692CB2638C584" . (.AMD Fuel.) -- C:\Windows\Installer\{26AF7BC7-DB35-B7C5-3169-29BC62835C48}\ARPPRODUCTICON.exe
O90 - PUC: "883658EADAFA357418FD9DB6910D1AC7" . (.HP Setup Manager.) -- C:\Windows\Installer\{AE856388-AFAD-4753-81DF-D96B19D0A17C}\ARPPRODUCTICON.exe
O90 - PUC: "8AB31F170D69182F463791A685246CFC" . (.ccc-utility64.) -- C:\Windows\Installer\{71F13BA8-96D0-F281-6473-196A5842C6CF}\ARPPRODUCTICON.exe
O90 - PUC: "8AC6637E9717EA777E21AB817DA0A070" . (.AMD Fuel.) -- C:\WINDOWS\Installer\{E7366CA8-7179-77AE-E712-BA18D70A0A07}\ARPPRODUCTICON.exe
O90 - PUC: "8CB34C1C064210E4698233E24025B3CD" . (.HP Documentation.) -- C:\Windows\Installer\{C1C43BC8-2460-4E01-9628-332E04523BDC}\NotebookDocs.exe
O90 - PUC: "97B0E634BFC2F5E439081EC7B1520D5C" . (.Broadcom 2070 Bluetooth 3.0.) -- C:\Windows\Installer\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}\ARPPRODUCTICON.exe
O90 - PUC: "9C43A1DB467497F4EAF111F2C8983D4D" . (.Energy Star Digital Logo.) -- C:\Windows\Installer\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "9CD28C1C74518304F8A00C960F7B2FDE" . (.AMD System Monitor.) -- C:\Windows\Installer\{C1C82DC9-1547-4038-8F0A-C069F0B7F2ED}\_853F67D554F05449430E7E.exe
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "A419E7B35D3992A429BBFAC8F3664C13" . (.Skype 7.36.) -- C:\WINDOWS\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe
O90 - PUC: "A60096F0F2DC21C47A686C958C9F4832" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{0F69006A-CD2F-4C12-A786-C659C8F98423}\ARPPRODUCTICON.exe
O90 - PUC: "A96DB1DE3E70C814191F8D65855218FB" . (.HP On Screen Display.) -- C:\Windows\Installer\{ED1BD69A-07E3-418C-91F1-D856582581BF}\_853F67D554F05449430E7E.exe
O90 - PUC: "B86644655A406F86A09A305285775CF8" . (.Catalyst Control Center Localization All.) -- C:\WINDOWS\Installer\{5644668B-04A5-68F6-0AA9-03255877C58F}\ARPPRODUCTICON.exe
O90 - PUC: "C08485BE1270C3843B45D9531A7499F9" . (.HP Quick Launch.) -- C:\Windows\Installer\{EB58480C-0721-483C-B354-9D35A147999F}\_853F67D554F05449430E7E.exe
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D54EC5DEB24881C40A20781EE63AB93B" . (.HP Support Solutions Framework.) -- C:\WINDOWS\Installer\{ED5CE45D-842B-4C18-A002-87E16EA39BB3}\icon.ico
O90 - PUC: "D5F533D558148DA4E8D6468D4DBA087D" . (.HP Software Framework.) -- C:\Windows\Installer\{5D335F5D-4185-4AD8-8E6D-64D8D4AB80D7}\app_1.exe
O90 - PUC: "D72C71A85230C004A89AAD6A1BC6DB47" . (.Epson Event Manager.) -- C:\Windows\Installer\{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}\icon.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "F9E570B632D438806FC66C899E94DC09" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{6B075E9F-4D23-0883-F66C-C698E949CD90}\ARPPRODUCTICON.exe
O90 - PUC: "FAA1FE9C245B8C145A731124ADD5A4CE" . (.HP Customer Experience Enhancements.) -- C:\WINDOWS\Installer\{C9EF1AAF-B542-41C8-A537-1142DA5D4AEC}\ARPPRODUCTICON.exe
O90 - PUC: "FBDAA5972C850D247B977E0307A242E7" . (.HP Connection Manager.) -- C:\Windows\Installer\{795AADBF-58C2-42D0-B779-E730702A247E}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s
---\\ MyComputer Name Space (O92)
O92 - MNS: - {088e3905-0323-4b02-9826-5d99428e115f}
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {24ad3ad4-a569-4530-98e1-ab02f9417aa8}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {3dfdf296-dbec-4fb4-81d1-6a3438bcf4de}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
O92 - MNS: - {d3162b92-9365-467a-956b-92703aca08af}
O92 - MNS: - {f86fa3ab-70d2-4fc7-9c99-fcbf05467f3a}
~ Scan MNS in 00mn 00s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SR - | Auto 25/04/2017 83056 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Demand 11/07/2017 272384 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 03/03/2009 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe
SR - | Auto 29/12/2015 255472 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 21/08/2015 344064 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
SR - | Auto 26/09/2016 197128 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 28/10/2013 2255064 | (BcmBtRSupport) . (.Broadcom Corporation..) - C:\Windows\System32\BtwRSupportService.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 1966960 | (Dedicarz Service) . (...) - C:\Program Files (x86)\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
SR - | Auto 14/09/2009 166400 | (EPSON_EB_RPCV4_04) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.exe
SR - | Auto 14/09/2009 128512 | (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe
SR - | Auto 09/12/2011 334720 | (FileOpenManagerSvc) . (.FileOpen Systems Inc..) - C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe
SR - | Auto 25/08/2009 77824 | (FTRTSVC) . (.France Telecom SA.) - C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
SR - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SR - | Auto 29/08/2015 144200 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 29/08/2015 144200 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 11/10/2010 346168 | (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
SR - | Demand 28/04/2015 1102472 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 27/05/2011 30520 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 01/06/2017 321056 | (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
SR - | Auto 09/11/2010 26680 | (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 08/03/2011 2375168 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 253528 | (IJPLMSVC) . (...) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe
SR - | Auto 26/05/2017 3061744 | (MajIndexEducationService) . (.Index Education.) - C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
SR - | Demand 16/11/2016 146888 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Demand 22/08/2013 32568 | (OpenVPNService) . (.The OpenVPN Project.) - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
SR - | Auto 29/08/2016 734488 | (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
SR - | Auto 14/05/2014 67584 | (PasswordBox) . (.PasswordBox, Inc..) - C:\Program Files (x86)\PasswordBox\pbbtnService.exe
SR - | Auto 10/12/2009 65536 | (pgsql-8.3) . (.PostgreSQL Global Development Group.) - C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
SR - | Auto 05/04/2017 317400 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 11/03/2011 297984 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SR - | Auto 28/04/2016 253960 | (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
SR - | Auto 05/02/2014 4915040 | (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
SR - | Auto 13/07/2015 93040 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
SR - | Demand 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Demand 16/07/2016 44496 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Demand 26/03/2012 5404472 | (wxpSvc) . (.Moonware Studios.) - C:\Program Files (x86)\webcamXP 5\wService.exe
~ Scan Services in 00mn 14s
End of the scan (1881 lines in 13mn 06s)(0)