Rapport de ZHPDiag v1.27.1847 par Nicolas Coolman, Update du 29/03/2011 Run by didier at 19/12/2014 15:58:53 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html ---\\ Web Browser MSIE: Internet Explorer v8.0.7600.16385 MFIE: Mozilla Firefox 34.0.5 v34.0.5 (Defaut) ---\\ System Information Windows 7 Ultimate Edition, 64-bit (Build 7600) Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 16361 MB (85% free) System Restore: Activé (Enable) System drive C: has 155 GB (69%) free of 224 GB ---\\ Logged in mode Computer Name: DIDIER-PC User Name: didier All Users Names: Guest, didier, Administrator, Unselected Option: None Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\didier\AppData\Roaming %LocalAppData%=C:\Users\didier\AppData\Local %StartMenu%=C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 155 Go of 224 Go) D:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified ---\\ Recherche particulière de fichiers génériques [MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 07:23:14.) -- C:\Windows\Explorer.exe [2870272] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256] [MD5.6A02CB2EDC24630845D11B507952141A] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.02/03/2013 06:06:05.) -- C:\Windows\System32\wininet.dll [981504] ---\\ Processus lancés [MD5.50E1118882643FBEFB7B9C28BC89F098] - (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe [16993408] [MD5.7E91655B4947EC1B18B3BC1645839145] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128] [MD5.8943465BEFA91044227D42E84ECB8280] - (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048] [MD5.4738DC864215B00B886E27A8D18CC326] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592] [MD5.DADDD62BEDC91BC96CFC794A2CA0D94A] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [337520] [MD5.CEFA800AAA7DEDF7CF0B030F4A02897B] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [243312] [MD5.9096B4E02CAF59C8850E0CF59301E6F3] - (.Adobe Systems, Inc. - Adobe Flash Player 16.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_235.exe [1880752] [MD5.42C6655DC1D96C2F07CA567A751F7CE5] - (.Nicolas Coolman - Analyseur de rapports sécurité.) -- C:\Program Files (x86)\ZebHelpProcess\ZHP2.exe [2912256] [MD5.426B27F63FDA2B1F70F5DACD61099015] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZebHelpProcess\ZHPDiag.exe [642048] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [didier] -- C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\t9rua9qw.default-1345636537553\searchplugins\duckduckgo.xml P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll (.not file.) P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.25.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.25.2] - (.Oracle Corporation - Next Generation Java Plug-in 11.25.2 for Mozilla browsers.) -- C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.2.0.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.4] - (.VideoLAN - VLC media player Web Plugin 2.2.0.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN - VLC media player Web Plugin 2.2.0.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Pas de propriétaire - Pas de description.) -- C:\Users\didier\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (.not file.) M0 - MFSP: prefs.js [didier - t9rua9qw.default-1345636537553] https://startpage.com/ M2 - MFEP: prefs.js [didier - t9rua9qw.default-1345636537553\foxmarks@kei.com] [] Xmarks v (.Todd Agulnick.) M2 - MFEP: prefs.js [didier - t9rua9qw.default-1345636537553\{91aa5abe-9de4-4347-b7b5-322c38dd9271}] [] Clippings v4.1.2 (.AE Creations.) M2 - MFEP: prefs.js [didier - t9rua9qw.default-1345636537553\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20131118 (.WOT Services Oy.) M2 - MFEP: prefs.js [didier - t9rua9qw.default-1345636537553\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.24 (.Michel Gutierrez.) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKUS\S-1-5-21-1213663097-2095945224-2768148156-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKUS\S-1-5-21-1213663097-2095945224-2768148156-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,c:\program files\soluto\soluto.exe /userinit F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.d O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plug O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll O2 - BHO: IESpeakDoc [64Bits] - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} . (.Qualcomm Atheros Commnucations - Bluetooth IE PlugIn.) -- C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\OnlineBanking\online_banking_bho.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\UrlAdvisor\klwtbbho.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe O4 - HKLM\..\Run: [RtHDVBg_DTS] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe O4 - HKLM\..\Run: [BtTray] . (.Qualcomm Atheros - BtTray.) -- C:\Program Files (x86)\Bluetooth Suite\BtTray.exe O4 - HKLM\..\Run: [BtvStack] . (.Qualcomm Atheros Commnucations - Extension Core.) -- C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe O4 - HKCU\..\Run: [Nexus] . (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe O4 - HKLM\..\Wow6432Node\Run: [NUSB3MON] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe O4 - HKUS\S-1-5-21-1213663097-2095945224-2768148156-1000\..\Run: [Nexus] . (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk . (...) -- C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\didier\Desktop\BlazeVideo DVD Ripper.lnk . (.BlazeVideo,Inc..) -- C:\Program Files (x86)\BlazeVideo\DVD Ripper\MainApp.EXE O4 - Global Startup: C:\Users\didier\Desktop\cdbxpp - Raccourci.lnk . (.Canneverbe Limited.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe O4 - Global Startup: C:\Users\didier\Desktop\FileHippo App Manager.lnk . (...) -- C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe O4 - Global Startup: C:\Users\didier\Desktop\foxBoost - Raccourci.lnk . (...) -- C:\Users\didier\Documents\foxboost-0.0.1.191\foxboost\foxBoost.exe O4 - Global Startup: C:\Users\didier\Desktop\Gestionnaire audio HD Realtek - Raccourci.lnk - Clé orpheline O4 - Global Startup: C:\Users\didier\Desktop\Image to PDF Converter Free.lnk . (.PDFArea.) -- C:\Program Files (x86)\PDFArea\Image to PDF Converter Free\Image2PDF.exe O4 - Global Startup: C:\Users\didier\Desktop\ISO2Disc.lnk . (.Top Password Software, Inc..) -- C:\Program Files (x86)\Top Password\ISO2Disc.exe O4 - Global Startup: C:\Users\didier\Desktop\Kastor Free Mp3 M4a Wma Converter.lnk . (.KastorSoft.) -- C:\Program Files (x86)\Kastor Free Mp3 M4a Wma Converter\FreeMp3M4aWmaConverter.exe O4 - Global Startup: C:\Users\didier\Desktop\MacX HD Video Converter Pro For Windows.lnk . (.Digiarty Software, Inc..) -- C:\Program Files (x86)\Digiarty\MacX_HD_Video_Converter_Pro_For_Windows\MacX_HD_Video_Converter_Pro_For_Windows.exe O4 - Global Startup: C:\Users\didier\Desktop\MP4 Video Converter Factory Pro.lnk . (...) -- C:\Program Files (x86)\Video Converter Factory\MP4 Video Converter Factory Pro\MP4 Video Converter Factory.exe (.not file.) O4 - Global Startup: C:\Users\didier\Desktop\MSConfigCleanUp.lnk . (.Virtuoza.) -- C:\Program Files (x86)\MSConfig CleanUp\MSConfigCleanUp.exe O4 - Global Startup: C:\Users\didier\Desktop\MSI Afterburner.lnk . (...) -- C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe O4 - Global Startup: C:\Users\didier\Desktop\PowerpointImageExtractor V1.2b.lnk . (.---.) -- C:\Program Files (x86)\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe O4 - Global Startup: C:\Users\didier\Desktop\Spider.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Spider\SPIDER.EXE O4 - Global Startup: C:\Users\didier\Desktop\uRex Video Converter Platinum.lnk . (...) -- C:\Program Files (x86)\uRexsoft\uRex Video Converter Platinum\uRex Video Converter.exe (.not file.) O4 - Global Startup: C:\Users\didier\Desktop\VirtualDJ 8.lnk . (.Atomix Productions.) -- C:\Program Files (x86)\VirtualDJ\virtualdj8.exe O4 - Global Startup: C:\Users\didier\Desktop\WinX DVD Copy Pro.lnk . (...) -- C:\Program Files (x86)\Digiarty\WinX_DVD_Copy_Pro\WinX_DVD_Copy_Pro.exe (.not file.) O4 - Global Startup: C:\Users\didier\Desktop\WinX HD Video Converter Deluxe.lnk . (.Digiarty Software, Inc..) -- C:\Program Files (x86)\Digiarty\WinX_HD_Video_Converter_Deluxe\WinX_HD_Video_Converter_Deluxe.exe O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\CodeStuff Starter.lnk . (.CodeStuff.) -- C:\Program Files (x86)\CodeStuff\Starter\Starter.exe O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk . (.Nullsoft, Inc..) -- C:\Program Files (x86)\Winamp\winamp.exe O4 - Global Startup: C:\Users\didier\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent Inc..) -- C:\Users\didier\AppData\Roaming\uTorrent\uTorrent.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr O8 - Extra context menu item: Ajouter à l'Anti-bannière . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ie_banner_deny.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: Free YouTube Download - (.not file.) - C:\Users\didier\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - (.not file.) - C:\Users\didier\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Clavier virtuel [64Bits] - {0C4CC089-D306-440D-9772-464E226F6539} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\kbrd.ico O9 - Extra button: Clavier virtuel [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\logo.ico ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{77F05688-90C8-49F9-82C4-7C0CC7BE9E81}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS1\Services\Tcpip\..\{77F05688-90C8-49F9-82C4-7C0CC7BE9E81}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS2\Services\Tcpip\..\{77F05688-90C8-49F9-82C4-7C0CC7BE9E81}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2 ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: (afcdpsrv) . (.Acronis - File Level CDP Manager Service.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe O23 - Service: (AtherosSvc) . (.Qualcomm Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe O23 - Service: (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe O23 - Service: (CSObjectsSrv) . (.Infowatch - InfoWatch CryptoStorage Protected objects c.) - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe O23 - Service: (DTSAudioService) . (.DTS - DTS Audio Service.) - C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe O23 - Service: (MoboroboDeviceService) . (...) - C:\Program Files (x86)\MoboRobo\MoboroboDeviceService.exe O23 - Service: (MozillaMaintenance) . (.Mozilla Foundation - Pas de description.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\SysWOW64\nlssrv32.exe O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 337.8.) - C:\Windows\system32\nvvsvc.exe O23 - Service: (ReflectService.exe) . (.Paramount Software UK Ltd - Reflect Service - Enables mounting of image.) - C:\Program Files\Macrium\Reflect\ReflectService.exe O23 - Service: (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: (SolutoLauncherService) . (.Soluto - Soluto Launcher Service.) - C:\Program Files\Soluto\SolutoLauncherService.exe O23 - Service: (SolutoRemoteService) . (.GlavSoft LLC. - TightVNC Server.) - C:\Program Files\Soluto\SolutoRemoteService.exe O23 - Service: (SolutoService) . (.Soluto - Soluto.) - C:\Program Files\Soluto\SolutoService.exe O23 - Service: (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe O23 - Service: (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\system32\vmnetdhcp.exe O23 - Service: (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\system32\vmnat.exe O23 - Service: (Winstep Xtreme Service) - Clé orpheline ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [MD5.2E4EE47FBD9BB663A5220DBC38579986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.DADDD62BEDC91BC96CFC794A2CA0D94A] [APT] [{0FCDD716-D716-4170-8D33-D710998273BE}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [MD5.00000000000000000000000000000000] [APT] [{5AD72ACE-0152-444F-865B-C81CCA19480B}] (.Pas de propriétaire.) -- C:\Users\didier\Desktop\SkypeSetup.exe (.not file.) [MD5.DADDD62BEDC91BC96CFC794A2CA0D94A] [APT] [{A60D78E8-E3E9-47A4-9452-B483FD4AACB8}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: (CSVirtualDiskDrv) . (.Infowatch - Virtual Volume Container Driver (wnet).) - C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (KLIF) . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) - C:\Windows\System32\DRIVERS\klif.sys O41 - Driver: (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\System32\DRIVERS\klim6.sys O41 - Driver: (kltdi) . (.Kaspersky Lab ZAO - Network filtering component.) - C:\Windows\System32\DRIVERS\kltdi.sys O41 - Driver: (kneps) . (.Kaspersky Lab ZAO - KNEPS Power.) - C:\Windows\System32\DRIVERS\kneps.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys O41 - Driver: Windows Socket 2.0 Non-IFS Service Provider Support Environment (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 7-Data Recovery Suite version 2.0 - (.SharpNight Co,Ltd.) [HKLM][64Bits] -- {02386A56-080B-485c-941D-AF96B29140DD}_is1 O42 - Logiciel: Adobe Flash Player 15 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 16 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI O42 - Logiciel: BlazeVideo DVD Ripper 2.0.4.8 - (.Copyright (C) 2003-2012 BlazeVideo,Inc..) [HKLM][64Bits] -- BlazeVideo DVD Ripper_is1 O42 - Logiciel: Bluesoleil2.6.0.8 Release 070517 - (.IVT Corporation.) [HKLM][64Bits] -- {438BB9B4-65FE-4626-91D9-A8F57B18001D} O42 - Logiciel: Bluetooth Win7 Suite (64) - (.Atheros Communications.) [HKLM] -- {230D1595-57DA-4933-8C4E-375797EBB7E1} O42 - Logiciel: C-Media USB Sound - (.Pas de propriétaire.) [HKLM][64Bits] -- C-Media USB Sound O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 O42 - Logiciel: CPUID CPU-Z 1.71.1 - (.Pas de propriétaire.) [HKLM] -- CPUID CPU-Z_is1 O42 - Logiciel: CodeStuff Starter - (.CodeStuff.) [HKLM][64Bits] -- CodeStuff Starter O42 - Logiciel: Copernic Agent Personal - (.Copernic.) [HKLM][64Bits] -- Copernic Agent Personal O42 - Logiciel: CrystalDiskInfo 5.6.2 - (.Crystal Dew World.) [HKLM][64Bits] -- CrystalDiskInfo_is1 O42 - Logiciel: CyberLink PhotoDirector 4 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{44510C84-AE2A-4079-A75B-D44E68D73B9A} O42 - Logiciel: CyberLink PhotoDirector 4 - (.CyberLink Corp..) [HKLM][64Bits] -- {44510C84-AE2A-4079-A75B-D44E68D73B9A} O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox O42 - Logiciel: DxO Optics Pro 6 - (.DxO Labs.) [HKLM][64Bits] -- {B2670B9D-A2D7-425B-83ED-728767906D04} O42 - Logiciel: Détection de l'application Winamp - (.Nullsoft, Inc.) [HKCU] -- Winamp Detect O42 - Logiciel: EaseUS Partition Master 9.1.1 Professional - (.EaseUS.) [HKLM][64Bits] -- EaseUS Partition Master Professional Edition_is1 O42 - Logiciel: Facebook Video Calling 2.0.0.447 - (.Skype Limited.) [HKLM][64Bits] -- {8DF41A9F-FE13-43E8-A003-5F9B55A011EE} O42 - Logiciel: FileHippo App Manager - (.FileHippo.com.) [HKLM][64Bits] -- FileHippo.com O42 - Logiciel: Free Mp3 M4a Wma Converter V 1.6 - (.KastorSoft.) [HKLM][64Bits] -- Free Mp3 M4a Wma Converter_is1 O42 - Logiciel: FreshDiagnose - (.Pas de propriétaire.) [HKLM][64Bits] -- FreshDevices - FreshDiagnose_is1 O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} O42 - Logiciel: HD Tune 2.55 - (.EFD Software.) [HKLM][64Bits] -- HD Tune_is1 O42 - Logiciel: ISO2Disc 1.05 - (.Top Password Software, Inc..) [HKLM][64Bits] -- ISO2Disc_is1 O42 - Logiciel: Icecream Screen Recorder version 1.31 - (.Icecream Apps.) [HKLM][64Bits] -- {7ADEC622-3230-4C9A-9DCE-9BD462B74095}_is1 O42 - Logiciel: Image to PDF Converter Free 6.1 - (.PDFArea Software.) [HKLM][64Bits] -- Image to PDF Converter Free_is1 O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {27DEA29A-222C-45F8-B70D-0A7B303FC71B} O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} O42 - Logiciel: Java 8 Update 25 (64-bit) - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86418025F0} O42 - Logiciel: Java 8 Update 25 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218025F0} O42 - Logiciel: Kaspersky PURE 3.0 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{D0702EE9-9DE4-419A-9C6C-4730B1C985BA} O42 - Logiciel: Kaspersky PURE 3.0 - (.Kaspersky Lab.) [HKLM][64Bits] -- {D0702EE9-9DE4-419A-9C6C-4730B1C985BA} O42 - Logiciel: Kastor Free Audio Converter V 1.1 - (.KastorSoft.) [HKLM][64Bits] -- Kastor Free Audio Converter_is1 O42 - Logiciel: LinuxLive USB Creator - (.Thibaut Lauziere.) [HKLM][64Bits] -- LinuxLive USB Creator O42 - Logiciel: MP4 Video Converter Factory Pro - (.MP4 Video Converter Factory Corporation. All right reserved.) [HKLM][64Bits] -- MP4VideoConverterFactoryPro O42 - Logiciel: MSConfig CleanUp 1.2 - (.Virtuoza.) [HKLM][64Bits] -- MSConfig CleanUp_is1 O42 - Logiciel: MSI Afterburner 2.1.0 - (.MSI Co., LTD.) [HKLM][64Bits] -- Afterburner O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM][64Bits] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM] -- {9A3C5DC9-EEA9-4FB2-855A-26FE6DA733EA} O42 - Logiciel: MacX DVD Ripper Pro For Windows 6.9.3 - (.Digiarty Software, Inc..) [HKLM][64Bits] -- MacX DVD Ripper Pro For Windows_is1 O42 - Logiciel: MacX HD Video Converter Pro For Windows 3.12.4 - (.Digiarty Software,Inc..) [HKLM][64Bits] -- MacX HD Video Converter Pro For Windows_is1 O42 - Logiciel: Macrium Reflect Free Edition - (.Paramount Software (UK) Ltd..) [HKLM] -- MacriumReflect O42 - Logiciel: Macrium Reflect Free Edition - (.Paramount Software (UK) Ltd..) [HKLM] -- {49B022E5-A7FA-4CC0-83CF-1A0BEF029321} O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: Microsoft .NET Framework 4.5 - (.Microsoft Corporation.) [HKLM] -- {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} O42 - Logiciel: Microsoft .NET Framework 4.5 - (.Microsoft Corporation.) [HKLM] -- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033 O42 - Logiciel: Microsoft .NET Framework 4.5 FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {CD94FADB-31EC-39D9-97C4-8B13702B7375} O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM] -- {9C5A08BF-BB99-4998-81BD-F6CC32483B34} O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800} O42 - Logiciel: Microsoft LifeCam - (.Microsoft Corporation.) [HKLM] -- {6965A8D2-465D-4F98-9FAA-0E9E2348F329} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{664655D8-B9BB-455D-8A58-7EAF7B0B2862} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_PROPLUS_{8283FD64-6A3B-4104-9E12-7CA25EF29A1A} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{8283FD64-6A3B-4104-9E12-7CA25EF29A1A} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-2005-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{3E8EA473-ECCE-405F-A9CA-59446AEADD3A} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{928D7B99-2BEA-49F9-83B8-20FA57860643} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{1FF96026-A04A-4C3E-B50A-BB7022654D0F} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{71F055E8-E2C6-4214-BB3D-BFE03561B89E} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{2C95E7EE-FEA7-4B3A-A6E5-DF90A88B816A} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351-21FA-3270-8B7A-835434E766AD} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {1D8E6291-B0D5-35EC-8441-6616F567A0F7} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} O42 - Logiciel: Microsoft Windows Media Video 9 VCM - (.Pas de propriétaire.) [HKLM][64Bits] -- WMV9_VCM O42 - Logiciel: MoboRobo 2.1.8.215 - (.MoboRobo Inc..) [HKLM][64Bits] -- {02B934E4-C574-4605-842B-01CD16295185}_is1 O42 - Logiciel: Module linguistique de Microsoft .NET Framework 4.5 - FRA - (.Microsoft Corporation.) [HKLM] -- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036 O42 - Logiciel: Mozilla Firefox 34.0.5 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 34.0.5 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: Mozilla Thunderbird 31.3.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 31.3.0 (x86 fr) O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65} O42 - Logiciel: NVIDIA Pilote 3D Vision 337.88 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 337.88 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB O42 - Logiciel: NVIDIA Pilote graphique 337.88 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo O42 - Logiciel: Nexus 12.2 - (.Pas de propriétaire.) [HKLM][64Bits] -- Winstep Xtreme_is1 O42 - Logiciel: O&O MediaRecovery - (.O&O Software GmbH.) [HKLM] -- {ECD1806C-56F6-4798-93A2-166F45124B1D} O42 - Logiciel: OCCT 4.4.0 - (.Ocbase.com.) [HKLM][64Bits] -- OCCT O42 - Logiciel: Pale Moon 24.2.2 (x64 en-US) - (.Mozilla.) [HKLM] -- Pale Moon 24.2.2 (x64 en-US) O42 - Logiciel: Perfect Effects 8 - (.onOne Software.) [HKLM][64Bits] -- {C982ACFF-5997-4B7D-B3E1-CF7273A06FB2} O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 O42 - Logiciel: Pidgin - (.Pas de propriétaire.) [HKLM][64Bits] -- Pidgin O42 - Logiciel: PowerpointImageExtractor - (.Pas de propriétaire.) [HKLM][64Bits] -- PowerpointImageExtractor_is1 O42 - Logiciel: Qualcomm Atheros Bluetooth Suite (64) - (.Qualcomm Atheros Communications.) [HKLM] -- {A84A4FB1-D703-48DB-89E0-68B6499D2801} O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996} O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- {5442DAB8-7177-49E1-8B22-09A049EA5996} O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} O42 - Logiciel: Samsung Mobile phone USB driver Drive Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile phone USB driver Drive O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D33B9EF5-3801-496A-A2D6-B7F4BE972D75} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B145DBBB-7778-4A5D-9D2B-DA6569F02391} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{E34960DB-2A93-45DB-A208-02650F7AB09C} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B7727B4D-5EA3-4C11-9D30-15E47616DCAF} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{293FB6BE-D3EB-4162-B522-F9108040B9FE} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2596927) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{2A3B9143-BE46-4784-A88F-655833F0AE18} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{2B3C041A-A7F2-4A24-968D-4BEB6A123D15} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{EA575F57-C5D1-4B5A-B9F9-F16EEBC6B58C} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3579CE34-B225-4B19-A3AF-DE5F562A212F} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{79850906-6D2B-4061-8EAF-EAC84173DEC5} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{DCA9E555-940E-4D9F-87E9-15A672D98DB7} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8907F32C-DF89-4C2F-AEDE-0DB4B65451C0} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{319FC809-3841-4739-A25F-FDBADF073697} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{32DA925D-8B7D-4298-B893-6291D28CE809} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6B4A3804-666A-4DD8-84A7-B97701416784} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{F7DFD2B8-0CD1-4A51-AC71-A0582FE796C2} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{36842896-D83B-4C92-8261-6312B7DEB562} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{4C1BE82B-9AC0-4AB9-B76D-5467131955E1} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FC572B0C-6356-46CC-A01E-CCCEC4340BF5} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2920790) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1D03FCC7-B173-4E72-9248-D091708E1009} O42 - Logiciel: Security Update for Microsoft Office 2007 suites (KB2920792) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{48AC008D-15A6-48D8-B915-4FB35CBFB3FD} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2984942) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FB9CFB27-DB51-440C-9225-F958A24555A9} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8F311D6C-D8DD-4C32-9457-1A129CABD1A5} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0EF0D4FB-BB23-4515-AAEA-1240AC2DA525} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{F88656FB-92A1-484E-911E-D259B15CF420} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2920793) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B82D1545-9D1E-46DA-91EF-72C491527046} O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} O42 - Logiciel: Soluto - (.Soluto.) [HKLM] -- {BC76BE45-BEB7-4109-89E5-69021806467A} O42 - Logiciel: Speccy - (.Piriform.) [HKLM] -- Speccy O42 - Logiciel: SpeedFan (remove only) - (.Pas de propriétaire.) [HKLM][64Bits] -- SpeedFan O42 - Logiciel: Spider - (.Pas de propriétaire.) [HKLM][64Bits] -- Spider_is1 O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer O42 - Logiciel: Thrustmaster Force Feedback Driver - (.Thrustmaster.) [HKLM][64Bits] -- {8F5A0981-5CDC-41D0-BCA2-AD3B777FC358} O42 - Logiciel: USB Video Device - (.Sonix.) [HKLM][64Bits] -- {399C37FB-08AF-493B-BFED-20FBD85EDF7F} O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM] -- Unlocker O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A024FC7B-77DE-45DE-A058-1C049A17BFB3} O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F} O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F} O42 - Logiciel: Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{B83A8864-A85D-437E-9D4C-27350765BF46} O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{53DEC068-4690-4F6B-9946-7D21EF02236B} O42 - Logiciel: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2920789) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{9913305E-D4AC-4D26-B30F-799D529FB282} O42 - Logiciel: Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7B9D2746-D03B-442B-A691-90B748E316B4} O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM] -- {0D94F75A-0EA6-4951-B3AF-B145FA9E05C6} O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A} O42 - Logiciel: VirusTotal Uploader 2.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- VirusTotalUploader2.0 O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver O42 - Logiciel: WinX DVD Copy Pro 3.5.0 - (.Digiarty Software,Inc..) [HKLM] -- WinX DVD Copy Pro_is1 O42 - Logiciel: WinX DVD Ripper Platinum 7.5.10 - (.Digiarty Software, Inc..) [HKLM][64Bits] -- WinX DVD Ripper Platinum_is1 O42 - Logiciel: WinX HD Video Converter Deluxe 4.0.0 - (.Digiarty Software, Inc..) [HKLM][64Bits] -- WinX HD Video Converter Deluxe_is1 O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp O42 - Logiciel: Wireshark 1.12.2 (64-bit) - (.The Wireshark developer community, http://www.wireshark.org.) [HKLM][64Bits] -- Wireshark O42 - Logiciel: ZebHelpProcess 2.47 - (.Nicolas Coolman.) [HKLM][64Bits] -- Zeb Help Process_is1 O42 - Logiciel: marvell 91xx driver - (.Marvell.) [HKLM][64Bits] -- MagniDriver O42 - Logiciel: tools-freebsd - (.VMware, Inc..) [HKLM][64Bits] -- {003BFBBD-6C67-419E-A24D-0DCAFC3A5249} O42 - Logiciel: tools-linux - (.VMware, Inc..) [HKLM][64Bits] -- {D102611A-6466-4101-A51D-51069303AC65} O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM][64Bits] -- {197597A7-AD33-4898-9D8E-73066818B464} O42 - Logiciel: tools-solaris - (.VMware, Inc..) [HKLM][64Bits] -- {AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4} O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM][64Bits] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D} O42 - Logiciel: tools-windows - (.VMware, Inc..) [HKLM][64Bits] -- {FFD9383C-01D5-4897-A954-43AF599AED30} O42 - Logiciel: uRex Video Converter Platinum - (.uRexsoft, Inc. All Rights Reserved..) [HKLM][64Bits] -- uRexVideoConverter O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent ---\\ HKCU & HKLM Software Keys [HKCU\Software\ASProtect] [HKCU\Software\ASUS] [HKCU\Software\AVS4YOU] [HKCU\Software\AppDataLow\Software\JavaSoft] [HKCU\Software\AppDataLow\Software\MarkAny] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\ThinPrint] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Atheros] [HKCU\Software\Audacity] [HKCU\Software\BitTorrent] [HKCU\Software\BlazeVideo] [HKCU\Software\Borland] [HKCU\Software\CDDB] [HKCU\Software\Canneverbe Limited] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CodeGear] [HKCU\Software\CodeStuff] [HKCU\Software\ComodoGroup] [HKCU\Software\Copernic] [HKCU\Software\CyberLink] [HKCU\Software\DxOLabs] [HKCU\Software\EaseUS] [HKCU\Software\Electronic Arts] [HKCU\Software\Eraser] [HKCU\Software\EuroSoft Software Development] [HKCU\Software\Facebook] [HKCU\Software\FileHippo] [HKCU\Software\Filehippo.com] [HKCU\Software\FreewareFiles] [HKCU\Software\FreshDevices] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\ISOWINDOWMENU] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\KPPT] [HKCU\Software\KasperskyLab] [HKCU\Software\Kungsoft] [HKCU\Software\Ligos] [HKCU\Software\LinuxLive] [HKCU\Software\LoadTool] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LowRegistry] [HKCU\Software\MAGIX] [HKCU\Software\MLSync] [HKCU\Software\MSI] [HKCU\Software\Macrium] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware (portable)] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Markement] [HKCU\Software\Mobile Action] [HKCU\Software\Mobileleader] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\O&O] [HKCU\Software\ODBC] [HKCU\Software\OSHI] [HKCU\Software\OpenOffice.org] [HKCU\Software\PACE Anti-Piracy] [HKCU\Software\PDFArea Software] [HKCU\Software\PMDevigneSoft] [HKCU\Software\Paramount Software (UK) Ltd.] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Project] [HKCU\Software\QtProject] [HKCU\Software\Realtek] [HKCU\Software\Seagate] [HKCU\Software\Sensaura] [HKCU\Software\SharpNight] [HKCU\Software\SkypeRS] [HKCU\Software\Skype] [HKCU\Software\SpeedFan] [HKCU\Software\Spoon] [HKCU\Software\Sysinternals] [HKCU\Software\TDK] [HKCU\Software\TeamViewer] [HKCU\Software\Thunderbird] [HKCU\Software\Trolltech] [HKCU\Software\Unlimited Possibilities] [HKCU\Software\VSRevoGroup] [HKCU\Software\VirtualDJ] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\WinSTEP2000] [HKCU\Software\Winamp] [HKCU\Software\Wireshark] [HKCU\Software\Wow6432Node] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\eFilm Medical] [HKCU\Software\ej-technologies] [HKCU\Software\iMacros] [HKCU\Software\onOne Software] [HKCU\Software\pidgin] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ATHEROS] [HKLM\Software\ATI Technologies] [HKLM\Software\AVS4YOU] [HKLM\Software\Acronis] [HKLM\Software\Alarm] [HKLM\Software\Apple Inc.] [HKLM\Software\Belkin] [HKLM\Software\Borland] [HKLM\Software\BrowserChoice] [HKLM\Software\Bunndle] [HKLM\Software\CDDB] [HKLM\Software\CPUID] [HKLM\Software\Canneverbe Limited] [HKLM\Software\Carpet] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Copernic] [HKLM\Software\CyberLink] [HKLM\Software\DTS] [HKLM\Software\DivXNetworks] [HKLM\Software\Dolby] [HKLM\Software\DriverBackup!] [HKLM\Software\DxOLabs] [HKLM\Software\EVGA] [HKLM\Software\Electronic Arts] [HKLM\Software\Emsi Software GmbH] [HKLM\Software\Freemake] [HKLM\Software\FreshDevices] [HKLM\Software\Google] [HKLM\Software\HDTune] [HKLM\Software\Hispasec] [HKLM\Software\IFXApps] [HKLM\Software\IM Providers] [HKLM\Software\IObit] [HKLM\Software\IVT Corporation] [HKLM\Software\InfoWatch] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaRa] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\KasperskyLab] [HKLM\Software\Khronos] [HKLM\Software\Knowles] [HKLM\Software\MAGIX] [HKLM\Software\MCCI] [HKLM\Software\MSI] [HKLM\Software\Macrium] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware (portable)] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MarkAny] [HKLM\Software\Markement] [HKLM\Software\Marvell] [HKLM\Software\Mobile Action] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ND] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nalpeiron] [HKLM\Software\Nuance] [HKLM\Software\Nullsoft] [HKLM\Software\O&O] [HKLM\Software\ODBC] [HKLM\Software\OpenOffice.org] [HKLM\Software\PACE Anti-Piracy] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SAMSUNG] [HKLM\Software\SONIX] [HKLM\Software\SRS Labs] [HKLM\Software\Secunia] [HKLM\Software\Shortcut_Module] [HKLM\Software\Skype] [HKLM\Software\Softgogo] [HKLM\Software\Soluto] [HKLM\Software\SonicFocus] [HKLM\Software\Sonic] [HKLM\Software\Sonix] [HKLM\Software\ThinPrint] [HKLM\Software\Thrustmaster] [HKLM\Software\VMware, Inc.] [HKLM\Software\VideoLAN] [HKLM\Software\VirtualDJ] [HKLM\Software\Volatile] [HKLM\Software\Waves Audio] [HKLM\Software\Wheel] [HKLM\Software\WinPcap] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\Wondershare] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] [HKLM\Software\ej-technologies] [HKLM\Software\mdc] [HKLM\Software\mozilla.org] [HKLM\Software\onOne Software] [HKLM\Software\pidgin] [HKLM\Software\vLite] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 01/12/2014 - 10:38:18 - [15140744] ----D- C:\Program Files\CCleaner O43 - CFD: 15/05/2014 - 09:02:48 - [0] ----D- C:\Program Files\CDBurnerXP O43 - CFD: 24/05/2014 - 09:59:24 - [32786954] ----D- C:\Program Files\Common Files O43 - CFD: 20/12/2012 - 08:39:46 - [3976777] ----D- C:\Program Files\CPUID O43 - CFD: 29/10/2012 - 09:00:34 - [46708480] ----D- C:\Program Files\Digiarty O43 - CFD: 19/11/2011 - 14:56:16 - [90328596] ----D- C:\Program Files\DVD Maker O43 - CFD: 25/05/2014 - 06:31:04 - [21937294] ----D- C:\Program Files\Intel O43 - CFD: 10/04/2013 - 18:13:06 - [5235901] ----D- C:\Program Files\Internet Explorer O43 - CFD: 16/10/2014 - 08:30:36 - [159921965] ----D- C:\Program Files\Java O43 - CFD: 25/09/2014 - 10:16:54 - [12191787] ----D- C:\Program Files\ma-config.com O43 - CFD: 19/04/2013 - 16:14:44 - [119551564] ----D- C:\Program Files\Macrium O43 - CFD: 14/07/2009 - 08:46:54 - [54936064] ----D- C:\Program Files\Microsoft Games O43 - CFD: 03/08/2013 - 12:02:04 - [34291204] ----D- C:\Program Files\Microsoft LifeCam O43 - CFD: 11/01/2013 - 11:06:04 - [593814] ----D- C:\Program Files\Microsoft Office O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 19/07/2014 - 07:22:44 - [737903094] ----D- C:\Program Files\NVIDIA Corporation O43 - CFD: 03/02/2014 - 18:15:54 - [76057421] ----D- C:\Program Files\onOne Software O43 - CFD: 24/12/2011 - 11:19:48 - [19755999] ----D- C:\Program Files\OO Software O43 - CFD: 12/12/2013 - 07:28:34 - [69264269] ----D- C:\Program Files\Pale Moon O43 - CFD: 04/07/2013 - 07:58:26 - [37039432] ----D- C:\Program Files\Realtek O43 - CFD: 30/04/2014 - 05:52:58 - [10186896] ----D- C:\Program Files\Recuva O43 - CFD: 14/07/2009 - 06:32:40 - [36258985] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 12/02/2013 - 16:50:08 - [45043859] ----D- C:\Program Files\SAMSUNG O43 - CFD: 15/05/2014 - 08:38:14 - [40701196] ----D- C:\Program Files\Soluto O43 - CFD: 09/09/2014 - 11:32:36 - [14849864] ----D- C:\Program Files\Speccy O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 14/06/2014 - 08:58:58 - [249167] ----D- C:\Program Files\Unlocker O43 - CFD: 13/07/2013 - 11:07:46 - [33190585] ----D- C:\Program Files\uRexsoft O43 - CFD: 21/11/2013 - 11:31:58 - [14546887] ----D- C:\Program Files\Video Converter Factory O43 - CFD: 09/02/2014 - 11:13:22 - [110334276] ----D- C:\Program Files\VideoLAN O43 - CFD: 19/11/2011 - 14:56:16 - [120320] ----D- C:\Program Files\Windows Defender O43 - CFD: 19/11/2011 - 14:56:16 - [7191040] ----D- C:\Program Files\Windows Mail O43 - CFD: 19/11/2011 - 14:56:16 - [7821229] ----D- C:\Program Files\Windows Media Player O43 - CFD: 14/07/2009 - 06:32:40 - [5512444] ----D- C:\Program Files\Windows NT O43 - CFD: 19/11/2011 - 14:56:16 - [5555992] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 22/08/2012 - 11:20:36 - [235008] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 19/11/2011 - 14:56:16 - [7975301] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 19/11/2014 - 10:23:06 - [189003] ----D- C:\Program Files\WinPcap O43 - CFD: 12/12/2014 - 06:07:18 - [5198970] ----D- C:\Program Files\WinRAR O43 - CFD: 15/11/2014 - 07:14:56 - [100495947] ----D- C:\Program Files\Wireshark O43 - CFD: 23/09/2012 - 13:03:42 - [102430] ----D- C:\Program Files\WMV9_VCM O43 - CFD: 21/03/2013 - 11:05:56 - [20498313] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 19/11/2011 - 14:56:16 - [2560] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 19/11/2011 - 14:56:16 - [12283379] ----D- C:\Program Files\Common Files\System O43 - CFD: 27/08/2013 - 10:45:38 - [307] ----D- C:\ProgramData\91 PC Suite O43 - CFD: 11/04/2013 - 06:36:44 - [0] ----D- C:\ProgramData\Adobe O43 - CFD: 12/01/2011 - 10:22:32 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 10/07/2014 - 17:51:32 - [45] ----D- C:\ProgramData\Atheros O43 - CFD: 10/05/2013 - 10:06:52 - [1977] ----D- C:\ProgramData\Autodesk O43 - CFD: 10/11/2012 - 08:27:46 - [0] ----D- C:\ProgramData\AVS4YOU O43 - CFD: 29/04/2014 - 17:14:58 - [42016] ----D- C:\ProgramData\BlazeVideo O43 - CFD: 03/10/2013 - 09:43:32 - [15462] ----D- C:\ProgramData\Bluetooth O43 - CFD: 23/11/2011 - 11:58:12 - [0] ----D- C:\ProgramData\Canneverbe Limited O43 - CFD: 21/05/2014 - 09:48:32 - [54811507] ----D- C:\ProgramData\CyberLink O43 - CFD: 28/10/2014 - 20:27:52 - [2692258] ----D- C:\ProgramData\DAZ 3D O43 - CFD: 12/01/2011 - 10:22:32 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 12/01/2011 - 10:22:32 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 04/07/2013 - 07:51:22 - [8326384] ----D- C:\ProgramData\Downloaded Installations O43 - CFD: 20/12/2013 - 13:32:04 - [758341] ----D- C:\ProgramData\DxO_Labs O43 - CFD: 26/08/2013 - 14:43:34 - [0] ----D- C:\ProgramData\EA Core O43 - CFD: 23/01/2014 - 20:41:34 - [1692] ----D- C:\ProgramData\EA Logs O43 - CFD: 21/10/2013 - 13:58:00 - [17031] ----D- C:\ProgramData\Electronic Arts O43 - CFD: 12/01/2011 - 10:22:32 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 07/04/2012 - 07:57:30 - [12606467] ----D- C:\ProgramData\Firetrust O43 - CFD: 25/09/2014 - 10:40:22 - [0] ----D- C:\ProgramData\FNET O43 - CFD: 19/11/2014 - 10:29:32 - [0] ----D- C:\ProgramData\Freemake O43 - CFD: 10/07/2013 - 17:43:40 - [7356747] ----D- C:\ProgramData\GlarySoft O43 - CFD: 15/05/2014 - 05:52:44 - [8524] ----D- C:\ProgramData\GNU O43 - CFD: 16/02/2014 - 20:02:20 - [68063] ----D- C:\ProgramData\install_clap O43 - CFD: 25/05/2014 - 06:31:08 - [10347005] ----D- C:\ProgramData\Intel O43 - CFD: 03/08/2013 - 12:00:48 - [34] ----D- C:\ProgramData\IObit O43 - CFD: 04/10/2014 - 09:54:30 - [4340] ----D- C:\ProgramData\IsolatedStorage O43 - CFD: 19/12/2014 - 15:50:32 - [570762219] ----D- C:\ProgramData\Kaspersky Lab O43 - CFD: 22/08/2012 - 12:15:46 - [499633] ----D- C:\ProgramData\LGMOBILEAX O43 - CFD: 25/09/2014 - 10:16:54 - [1618261] ----D- C:\ProgramData\ma-config.com O43 - CFD: 31/05/2014 - 12:28:42 - [340200] ----D- C:\ProgramData\Macrium O43 - CFD: 16/07/2013 - 14:14:12 - [6189507] ----D- C:\ProgramData\MAGIX O43 - CFD: 02/05/2014 - 13:54:04 - [30922533] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 21/05/2014 - 09:52:16 - [126933567] -S-AD- C:\ProgramData\Microsoft O43 - CFD: 10/12/2014 - 13:45:06 - [65262] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 04/12/2014 - 12:10:16 - [34353] ----D- C:\ProgramData\MoboRobo O43 - CFD: 20/08/2012 - 13:31:46 - [37800] ----D- C:\ProgramData\Mozilla O43 - CFD: 02/02/2014 - 09:55:34 - [0] ----D- C:\ProgramData\Nalpeiron O43 - CFD: 10/07/2014 - 17:52:20 - [2394961] ----D- C:\ProgramData\NVIDIA O43 - CFD: 19/07/2014 - 07:22:44 - [4581789] ----D- C:\ProgramData\NVIDIA Corporation O43 - CFD: 03/02/2014 - 18:15:54 - [221526142] ----D- C:\ProgramData\onOne Software O43 - CFD: 16/10/2014 - 08:31:30 - [153549587] ----D- C:\ProgramData\Oracle O43 - CFD: 07/05/2014 - 14:53:24 - [0] ----D- C:\ProgramData\Origin O43 - CFD: 21/05/2014 - 09:52:16 - [18404] ----D- C:\ProgramData\PACE Anti-Piracy O43 - CFD: 07/11/2013 - 08:40:12 - [379232] ----D- C:\ProgramData\Samsung O43 - CFD: 11/12/2014 - 15:13:04 - [66838528] ----D- C:\ProgramData\Skype O43 - CFD: 23/05/2014 - 17:30:40 - [134269880] ----D- C:\ProgramData\Soluto O43 - CFD: 12/01/2011 - 10:22:32 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 29/12/2012 - 10:57:32 - [45649] ----D- C:\ProgramData\TDK O43 - CFD: 21/05/2014 - 09:50:32 - [405032] ----D- C:\ProgramData\Temp O43 - CFD: 12/01/2011 - 10:22:32 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 20/08/2014 - 08:14:20 - [375536] ----D- C:\ProgramData\VMware O43 - CFD: 08/12/2014 - 06:11:00 - [97794] ----D- C:\Users\didier\AppData\Roaming\.purple O43 - CFD: 01/05/2014 - 08:57:50 - [0] ----D- C:\Users\didier\AppData\Roaming\Acronis O43 - CFD: 03/02/2014 - 17:25:10 - [2148058] ----D- C:\Users\didier\AppData\Roaming\Adobe O43 - CFD: 04/07/2013 - 07:57:04 - [0] ----D- C:\Users\didier\AppData\Roaming\Atheros O43 - CFD: 26/08/2013 - 08:24:16 - [1158] ----D- C:\Users\didier\AppData\Roaming\Audacity O43 - CFD: 10/05/2013 - 10:06:52 - [2393] ----D- C:\Users\didier\AppData\Roaming\Autodesk O43 - CFD: 13/07/2013 - 08:05:40 - [0] ----D- C:\Users\didier\AppData\Roaming\Blender Foundation O43 - CFD: 23/11/2011 - 11:58:12 - [1973] ----D- C:\Users\didier\AppData\Roaming\Canneverbe Limited O43 - CFD: 25/09/2012 - 12:39:44 - [2783831] ----D- C:\Users\didier\AppData\Roaming\Copernic O43 - CFD: 20/08/2012 - 14:05:10 - [927] ----D- C:\Users\didier\AppData\Roaming\CrystalIdea Software O43 - CFD: 28/10/2014 - 20:28:36 - [70167941] ----D- C:\Users\didier\AppData\Roaming\DAZ 3D O43 - CFD: 06/12/2013 - 10:55:14 - [167537] ----D- C:\Users\didier\AppData\Roaming\Digiarty O43 - CFD: 17/12/2013 - 10:18:06 - [85687035] ----D- C:\Users\didier\AppData\Roaming\Dropbox O43 - CFD: 17/05/2014 - 12:45:18 - [203] ----D- C:\Users\didier\AppData\Roaming\dvdcss O43 - CFD: 20/12/2013 - 13:34:14 - [59689] ----D- C:\Users\didier\AppData\Roaming\DxO Labs O43 - CFD: 25/11/2014 - 06:55:16 - [54] ----D- C:\Users\didier\AppData\Roaming\EIZO O43 - CFD: 10/10/2014 - 11:00:56 - [1] ----D- C:\Users\didier\AppData\Roaming\Epic_Pen O43 - CFD: 29/08/2013 - 09:21:16 - [0] ----D- C:\Users\didier\AppData\Roaming\FireShot O43 - CFD: 28/03/2012 - 12:55:22 - [162] ----D- C:\Users\didier\AppData\Roaming\FolderColorize O43 - CFD: 09/02/2014 - 10:09:28 - [20] ----D- C:\Users\didier\AppData\Roaming\FreshDiagnose O43 - CFD: 21/11/2013 - 12:25:48 - [0] ----D- C:\Users\didier\AppData\Roaming\Genie9 O43 - CFD: 21/11/2013 - 12:20:24 - [25214] ----D- C:\Users\didier\AppData\Roaming\Glarysoft Giveaway O43 - CFD: 15/05/2014 - 09:03:28 - [42] ----D- C:\Users\didier\AppData\Roaming\gnupg O43 - CFD: 14/10/2012 - 09:25:54 - [169] ----D- C:\Users\didier\AppData\Roaming\gtk-2.0 O43 - CFD: 12/01/2011 - 10:24:34 - [0] ----D- C:\Users\didier\AppData\Roaming\Identities O43 - CFD: 12/01/2011 - 10:29:30 - [0] ----D- C:\Users\didier\AppData\Roaming\InstallShield O43 - CFD: 19/11/2011 - 11:00:16 - [1360] ----D- C:\Users\didier\AppData\Roaming\Intel Corporation O43 - CFD: 21/11/2013 - 12:20:24 - [485126] ----D- C:\Users\didier\AppData\Roaming\KastorFreeAudioConverter O43 - CFD: 11/01/2013 - 10:51:16 - [0] ----D- C:\Users\didier\AppData\Roaming\LibreOffice O43 - CFD: 20/11/2011 - 13:32:02 - [506] ----D- C:\Users\didier\AppData\Roaming\Macromedia O43 - CFD: 02/05/2014 - 13:54:04 - [0] ----D- C:\Users\didier\AppData\Roaming\Malwarebytes O43 - CFD: 14/07/2009 - 08:45:16 - [0] ----D- C:\Users\didier\AppData\Roaming\Media Center Programs O43 - CFD: 03/08/2013 - 13:28:06 - [18191491] -S--D- C:\Users\didier\AppData\Roaming\Microsoft O43 - CFD: 16/04/2013 - 11:06:42 - [64928082] ----D- C:\Users\didier\AppData\Roaming\Moonchild Productions O43 - CFD: 28/05/2013 - 06:13:46 - [90279351] ----D- C:\Users\didier\AppData\Roaming\Mozilla O43 - CFD: 27/08/2013 - 08:43:46 - [2513] ----D- C:\Users\didier\AppData\Roaming\nBrowser O43 - CFD: 06/01/2012 - 11:59:46 - [564302] ----D- C:\Users\didier\AppData\Roaming\NVIDIA O43 - CFD: 03/02/2014 - 18:16:28 - [4154444] ----D- C:\Users\didier\AppData\Roaming\onOne Software O43 - CFD: 07/04/2012 - 13:06:30 - [13220839] ----D- C:\Users\didier\AppData\Roaming\OpenOffice.org O43 - CFD: 07/05/2014 - 14:53:24 - [0] ----D- C:\Users\didier\AppData\Roaming\Origin O43 - CFD: 21/05/2014 - 09:52:16 - [3121] ----D- C:\Users\didier\AppData\Roaming\PACE Anti-Piracy O43 - CFD: 12/05/2014 - 12:53:12 - [392] ----D- C:\Users\didier\AppData\Roaming\PhotoFiltre O43 - CFD: 14/10/2013 - 18:20:22 - [0] ----D- C:\Users\didier\AppData\Roaming\Samsung O43 - CFD: 14/12/2014 - 13:21:30 - [10688223] ----D- C:\Users\didier\AppData\Roaming\Skype O43 - CFD: 23/06/2013 - 11:02:56 - [728596] ----D- C:\Users\didier\AppData\Roaming\SumatraPDF O43 - CFD: 17/12/2014 - 16:27:24 - [2240593] ----D- C:\Users\didier\AppData\Roaming\TeamViewer O43 - CFD: 20/11/2011 - 09:44:40 - [121694260] ----D- C:\Users\didier\AppData\Roaming\Thunderbird O43 - CFD: 22/08/2012 - 11:16:54 - [148640] ----D- C:\Users\didier\AppData\Roaming\Todae O43 - CFD: 14/12/2014 - 11:37:08 - [15239059] ----D- C:\Users\didier\AppData\Roaming\uTorrent O43 - CFD: 20/11/2014 - 16:43:30 - [83480] ----D- C:\Users\didier\AppData\Roaming\vlc O43 - CFD: 30/04/2014 - 10:29:02 - [1753] ----D- C:\Users\didier\AppData\Roaming\VMware O43 - CFD: 16/12/2013 - 12:38:10 - [0] ----D- C:\Users\didier\AppData\Roaming\wargaming.net O43 - CFD: 10/07/2014 - 17:51:34 - [13110619] ----D- C:\Users\didier\AppData\Roaming\Winamp O43 - CFD: 19/11/2011 - 11:36:32 - [12] ----D- C:\Users\didier\AppData\Roaming\WinRAR O43 - CFD: 21/07/2013 - 11:41:04 - [6160] ----D- C:\Users\didier\AppData\Roaming\Wireshark O43 - CFD: 30/09/2014 - 12:49:42 - [338002] ----D- C:\Users\didier\AppData\Roaming\ZHP O43 - CFD: 22/05/2013 - 15:34:54 - [6893694] ----D- C:\Program Files (x86)\7-Data Recovery Suite O43 - CFD: 09/02/2014 - 11:01:40 - [57344] ----D- C:\Program Files (x86)\ASUS O43 - CFD: 17/11/2014 - 07:13:48 - [0] ----D- C:\Program Files (x86)\Axon Data O43 - CFD: 29/04/2014 - 17:14:58 - [59611550] ----D- C:\Program Files (x86)\BlazeVideo O43 - CFD: 03/08/2013 - 12:02:04 - [99660861] ----D- C:\Program Files (x86)\Bluetooth Suite O43 - CFD: 13/01/2014 - 11:46:32 - [5819296] ----D- C:\Program Files (x86)\C-Media USB Sound O43 - CFD: 10/07/2014 - 17:51:32 - [20857071] ----D- C:\Program Files (x86)\CDBurnerXP O43 - CFD: 01/07/2014 - 16:12:14 - [1348349] ----D- C:\Program Files (x86)\CodeStuff O43 - CFD: 07/12/2014 - 09:28:40 - [348031789] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 25/09/2012 - 12:39:34 - [11107172] ----D- C:\Program Files (x86)\Copernic Agent O43 - CFD: 12/10/2013 - 12:55:26 - [4222802] ----D- C:\Program Files (x86)\CrystalDiskInfo O43 - CFD: 16/02/2014 - 20:01:46 - [297830184] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 21/10/2013 - 17:15:22 - [328648424] ----D- C:\Program Files (x86)\Digiarty O43 - CFD: 20/12/2013 - 13:32:04 - [260138886] ----D- C:\Program Files (x86)\DxO Labs O43 - CFD: 01/01/2013 - 14:09:14 - [94181271] ----D- C:\Program Files (x86)\EaseUS O43 - CFD: 19/11/2014 - 13:50:10 - [6864] ----D- C:\Program Files (x86)\Epic Pen O43 - CFD: 15/08/2014 - 07:50:52 - [2714] ----D- C:\Program Files (x86)\EVGA Precision X O43 - CFD: 11/12/2014 - 15:11:58 - [1535733] ----D- C:\Program Files (x86)\FileHippo.com O43 - CFD: 09/02/2014 - 10:07:28 - [9952424] ----D- C:\Program Files (x86)\FreshDevices O43 - CFD: 15/05/2014 - 05:52:44 - [187] ----D- C:\Program Files (x86)\GNU O43 - CFD: 02/11/2013 - 11:55:34 - [285852945] ----D- C:\Program Files (x86)\Google O43 - CFD: 15/05/2014 - 08:38:04 - [1240360] ----D- C:\Program Files (x86)\HD Tune O43 - CFD: 19/11/2014 - 13:49:46 - [194759909] ----D- C:\Program Files (x86)\Icecream Screen Recorder O43 - CFD: 08/08/2014 - 10:25:28 - [121412288] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 25/05/2014 - 06:37:58 - [4486547] ----D- C:\Program Files (x86)\Intel O43 - CFD: 10/04/2013 - 18:13:06 - [4540581] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 03/10/2013 - 09:35:58 - [10458970] ----D- C:\Program Files (x86)\IVT Corporation O43 - CFD: 07/11/2014 - 07:36:24 - [142154573] ----D- C:\Program Files (x86)\Java O43 - CFD: 10/07/2014 - 18:44:06 - [328118248] ----D- C:\Program Files (x86)\Kaspersky Lab O43 - CFD: 17/12/2012 - 10:57:16 - [20850817] ----D- C:\Program Files (x86)\Kastor Free Audio Converter O43 - CFD: 25/11/2014 - 07:09:28 - [7670121] ----D- C:\Program Files (x86)\Kastor Free Mp3 M4a Wma Converter O43 - CFD: 28/03/2012 - 12:09:58 - [6137911] ----D- C:\Program Files (x86)\Lavalys O43 - CFD: 02/05/2014 - 16:44:46 - [170298990] ----D- C:\Program Files (x86)\LinuxLive USB Creator O43 - CFD: 09/12/2014 - 05:21:26 - [50368528] ----D- C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 12/01/2011 - 10:36:40 - [1492246] ----D- C:\Program Files (x86)\Marvell O43 - CFD: 03/08/2013 - 12:43:18 - [0] ----D- C:\Program Files (x86)\Microsoft Games O43 - CFD: 14/07/2013 - 14:38:30 - [29375744] ----D- C:\Program Files (x86)\Microsoft LifeCam O43 - CFD: 19/01/2013 - 09:11:32 - [588648720] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 21/03/2013 - 11:06:36 - [14904] ----D- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 21/03/2013 - 11:04:34 - [1387249] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 21/03/2013 - 18:04:22 - [3726168] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 21/03/2013 - 11:06:30 - [8175999] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 04/12/2014 - 12:47:48 - [57641090] ----D- C:\Program Files (x86)\MoboRobo O43 - CFD: 04/12/2014 - 08:17:22 - [86112587] ----D- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 05/12/2014 - 05:46:16 - [219659] ----D- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 02/12/2014 - 10:38:12 - [59222636] ----D- C:\Program Files (x86)\Mozilla Thunderbird O43 - CFD: 21/03/2013 - 11:06:38 - [26521] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 22/08/2012 - 11:19:00 - [1578322] ----D- C:\Program Files (x86)\MSConfig CleanUp O43 - CFD: 14/10/2012 - 13:33:50 - [67885438] ----D- C:\Program Files (x86)\MSECache O43 - CFD: 01/02/2014 - 11:35:36 - [50330835] ----D- C:\Program Files (x86)\MSI Afterburner O43 - CFD: 23/09/2012 - 13:03:46 - [154033] ----D- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 19/07/2014 - 07:22:44 - [156182821] ----D- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 26/02/2013 - 11:24:38 - [83190479] ----D- C:\Program Files (x86)\OCCTPT O43 - CFD: 03/02/2014 - 18:15:50 - [3884000] ----D- C:\Program Files (x86)\onOne Software O43 - CFD: 16/06/2013 - 12:23:10 - [3953580] ----D- C:\Program Files (x86)\PDFArea O43 - CFD: 19/09/2012 - 08:13:40 - [2921222] ----D- C:\Program Files (x86)\PhotoFiltre O43 - CFD: 01/12/2014 - 10:37:38 - [54625606] ----D- C:\Program Files (x86)\Pidgin O43 - CFD: 13/07/2013 - 13:20:14 - [2372852] ----D- C:\Program Files (x86)\PowerpointImageExtractor_V1_2 O43 - CFD: 25/05/2014 - 06:42:18 - [7171356] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 14/07/2009 - 06:32:40 - [38601473] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 04/07/2013 - 07:51:48 - [1231144] ----D- C:\Program Files (x86)\Renesas Electronics O43 - CFD: 10/07/2014 - 17:51:32 - [505707] ----D- C:\Program Files (x86)\SEAF O43 - CFD: 07/12/2014 - 09:28:40 - [46214992] R---D- C:\Program Files (x86)\Skype O43 - CFD: 11/11/2014 - 11:38:26 - [5898955] ----D- C:\Program Files (x86)\SpeedFan O43 - CFD: 29/12/2011 - 06:34:54 - [658083] ----D- C:\Program Files (x86)\Spider O43 - CFD: 21/11/2011 - 10:23:20 - [11212712] ----D- C:\Program Files (x86)\SumatraPDF O43 - CFD: 03/12/2014 - 08:45:46 - [46534512] ----D- C:\Program Files (x86)\TeamViewer O43 - CFD: 04/07/2013 - 07:58:52 - [0] --H-D- C:\Program Files (x86)\Temp O43 - CFD: 26/08/2013 - 14:42:42 - [4537352] ----D- C:\Program Files (x86)\Thrustmaster O43 - CFD: 13/10/2014 - 11:03:36 - [2915803] ----D- C:\Program Files (x86)\Top Password O43 - CFD: 12/01/2011 - 10:24:18 - [4905223] ----D- C:\Program Files (x86)\Tweaker O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 24/08/2014 - 08:07:54 - [100398803] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 11/06/2014 - 09:28:34 - [37194268] ----D- C:\Program Files (x86)\VirtualDJ O43 - CFD: 07/05/2012 - 10:10:16 - [205244] ----D- C:\Program Files (x86)\VirusTotalUploader2 O43 - CFD: 19/11/2011 - 15:38:06 - [6840319] ----D- C:\Program Files (x86)\VS Revo Group O43 - CFD: 01/07/2014 - 15:26:56 - [56982977] ----D- C:\Program Files (x86)\Winamp O43 - CFD: 26/07/2013 - 10:02:54 - [168164] ----D- C:\Program Files (x86)\Winamp Detect O43 - CFD: 19/11/2011 - 14:56:16 - [63488] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 19/11/2011 - 14:56:18 - [6704640] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 19/11/2011 - 14:56:16 - [5114641] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - 06:32:40 - [5082876] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 19/11/2011 - 14:56:16 - [4457224] ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 14/07/2009 - 06:32:42 - [189440] ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 19/11/2011 - 14:56:18 - [105412137] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 01/12/2014 - 05:26:38 - [26319594] ----D- C:\Program Files (x86)\Winstep O43 - CFD: 19/12/2014 - 15:58:56 - [100495365] ----D- C:\Program Files (x86)\ZebHelpProcess O43 - CFD: 21/03/2013 - 11:05:56 - [20498313] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 19/11/2011 - 14:56:16 - [2560] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 19/11/2011 - 14:56:16 - [12283379] ----D- C:\Program Files\Common Files\System ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.896CE74D005CDF90A2545A31E52CA37C] - 19/12/2014 - 15:39:15 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1685618] O44 - LFC:[MD5.1B7C6D860CA7C03D330575893541C82D] - 19/12/2014 - 15:39:15 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [124286] O44 - LFC:[MD5.CD07FFB302B7A28A8F421B2BEE9444F8] - 19/12/2014 - 15:39:15 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [151744] O44 - LFC:[MD5.02EE3DBF342707D67444FD3AF1F49E0D] - 19/12/2014 - 15:39:15 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [659920] O44 - LFC:[MD5.8A88C4C5F17E1892E80C26000566EF45] - 19/12/2014 - 15:39:15 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [751146] O44 - LFC:[MD5.0F0000000000000000000000ECEF1800] - 19/12/2014 - 15:37:28 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1674202] O44 - LFC:[MD5.489C90339498EE2BEE0B3A2CD1D5FE48] - 19/12/2014 - 15:34:31 ---A- . (...) -- C:\Windows\setupact.log [5208] O44 - LFC:[MD5.237B57661F4BA88F3DBB914962F7989E] - 19/12/2014 - 15:34:30 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/12/2014 - 15:31:42 ---A- . (...) -- C:\Program1 [0] O44 - LFC:[MD5.0B0000000000000000000000ECEF1800] - 16/12/2014 - 05:58:44 ---A- . (...) -- C:\PDOXUSRS.NET [13030] O44 - LFC:[MD5.C3724FC283452E6E0C1D1FCC7B23F093] - 15/12/2014 - 17:35:25 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [13120] O44 - LFC:[MD5.C3724FC283452E6E0C1D1FCC7B23F093] - 15/12/2014 - 17:35:25 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [13120] O44 - LFC:[MD5.48215C8E9CC4292F7FFDF4CA8CDF63A2] - 11/12/2014 - 11:20:47 ---A- . (...) -- C:\Windows\MEMORY.DMP [814797276] O44 - LFC:[MD5.8997866ED045830FED53B91C9D99A3CE] - 11/12/2014 - 07:07:26 ---A- . (...) -- C:\Windows\PFRO.log [548] O44 - LFC:[MD5.F97AF8B8A7128DE05B1342F37EAE9EF8] - 04/12/2014 - 06:00:08 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [491480] O44 - LFC:[MD5.8BC914A8C8CFA0E4144FEA512D2F3B89] - 30/11/2014 - 11:18:55 ---A- . (...) -- C:\img2-001.raw [921624] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/11/2014 - 07:43:05 ---A- . (...) -- C:\Windows\setuperr.log [0] ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\BCU [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\didier\AppData\Local\Facebook\Update\FacebookUpdate.exe O53 - SMSR:HKLM\...\startupreg\LifeCam [Key] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe O53 - SMSR:HKLM\...\startupreg\NvBackend [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe O53 - SMSR:HKLM\...\startupreg\Service Scheduler2 Acronis [Key] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe O53 - SMSR:HKLM\...\startupreg\ShadowPlay [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\nvspcap64.dll O53 - SMSR:HKLM\...\startupreg\snp2uvc [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\vsnp2uvc.exe O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O53 - SMSR:HKLM\...\startupreg\TrueImageMonitor.exe [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe O53 - SMSR:HKLM\...\startupreg\tsnp2uvc [Key] . (.Pas de propriétaire - tsnp2uvc Microsoft.) -- C:\Windows\tsnp2uvc.exe O53 - SMSR:HKLM\...\startupreg\VX1000 [Key] . (.Microsoft Corporation - Microsoft LifeCam Device Application.) -- C:\Windows\vVX1000.exe ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "VerboseStatus"=1 O55 - MWPS:[HKLM\...\Policies\System] - "DisableCAD"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1 O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864] O58 - SDL:[MD5.3426A6EAA09077F3AB946FB9CEB85D8E] - 07/05/2014 - 09:41:52 ---A- . (.Acronis - File Level CDP Kernel Helper.) -- C:\Windows\system32\drivers\afcdp.sys [250400] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440] O58 - SDL:[MD5.EC7EBAB00A4D8448BAB68D1E49B4BEB9] - 11/03/2011 - 07:22:41 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128] O58 - SDL:[MD5.DB27766102C7BF7E95140A2AA81D042E] - 11/03/2011 - 07:22:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856] O58 - SDL:[MD5.4ECC791539F23982411864037D1AC8FC] - 27/10/2010 - 15:50:28 ---A- . (.Windows (R) Win 7 DDK provider - BulkUsb Driver.) -- C:\Windows\system32\drivers\AthDfu.sys [55336] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.44582F5543FD48AFBE20E9D9287DB0C0] - 11/05/2007 - 02:12:06 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\system32\drivers\blueletaudio.sys [38160] O58 - SDL:[MD5.7E40DFB0CB6DD07EB63CF6F8C67C0962] - 05/03/2007 - 04:48:12 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\system32\drivers\BlueletSCOAudio.sys [37648] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.71EAE55AB4E8195E254C34DC2E13A15F] - 05/12/2012 - 19:24:52 ---A- . (.Qualcomm Atheros - Qualcomm Atheros A2DP driver.) -- C:\Windows\system32\drivers\btath_a2dp.sys [344216] O58 - SDL:[MD5.86F9298BD580818EDFE84306F2681F3F] - 05/12/2012 - 19:24:52 ---A- . (.Qualcomm Atheros - Qualcomm Atheros Bluetooth AVDT driver.) -- C:\Windows\system32\drivers\btath_avdt.sys [114840] O58 - SDL:[MD5.D5418AF1B9AC86D89C045026EFBD5FB7] - 05/12/2012 - 19:24:52 ---A- . (.Qualcomm Atheros - Qualcomm Atheros BUS driver.) -- C:\Windows\system32\drivers\btath_bus.sys [33944] O58 - SDL:[MD5.AFF895D6FFA43B058ABFF27964083BBC] - 05/12/2012 - 19:24:52 ---A- . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\system32\drivers\btath_flt.sys [88728] O58 - SDL:[MD5.DDA454A4D6F88C91ED931E7C7C524015] - 05/12/2012 - 19:24:54 ---A- . (.Qualcomm Atheros - Qualcomm Atheros HCRP driver.) -- C:\Windows\system32\drivers\btath_hcrp.sys [178840] O58 - SDL:[MD5.785C38070043BEEE9E9D591DE4067244] - 05/12/2012 - 19:24:54 ---A- . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\system32\drivers\btath_lwflt.sys [77464] O58 - SDL:[MD5.9B58A32D0C39910361225995FA546776] - 05/12/2012 - 19:24:56 ---A- . (.Qualcomm Atheros - Qualcomm Atheros AVRCP driver.) -- C:\Windows\system32\drivers\btath_rcp.sys [135832] O58 - SDL:[MD5.E0C1E6B70E0C626B37E643B799E434F3] - 09/05/2007 - 01:00:58 ---A- . (.IVT Corporation. - Bluetooth USB Device Driver.) -- C:\Windows\system32\drivers\btcusb.sys [44688] O58 - SDL:[MD5.0ECEDE7B33CFD9A52A61220ABBD09A50] - 27/10/2010 - 15:50:28 ---A- . (.Atheros - BtFilter Driver.) -- C:\Windows\system32\drivers\btfilter.sys [279152] O58 - SDL:[MD5.8FA060B557C7DE309D2D5C16C3DA2EF6] - 05/03/2007 - 04:42:54 ---A- . (.IVT Corporation. - Bluetooth HID Manager Device Driver.) -- C:\Windows\system32\drivers\BTHidMgr.sys [49680] O58 - SDL:[MD5.0F890E854FCBE98F4574ACC6423FCCEF] - 05/03/2007 - 04:47:08 ---A- . (.IVT Corporation. - Bluetooth PAN Network Adapter Driver.) -- C:\Windows\system32\drivers\BtNetDrv.sys [25360] O58 - SDL:[MD5.0262A199D98C2405C90F3188C5A54C6A] - 08/10/2006 - 23:29:22 ---A- . (...) -- C:\Windows\system32\drivers\BTNetFilter.sys [32832] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480] O58 - SDL:[MD5.097AB53226AA3C52CBD675CFE2A2B58D] - 20/07/2007 - 10:32:00 ---A- . (.C-Media Inc - C-Media Audio WDM Driver.) -- C:\Windows\system32\drivers\CM10864.sys [993280] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488] O58 - SDL:[MD5.04199CA5C4A6F6E935906A74EAFCA8E7] - 02/06/2011 - 13:39:44 ---A- . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\Windows\system32\drivers\CSCrySec.sys [84536] O58 - SDL:[MD5.7D7F90460F1309B5205BF8CDFAD63E42] - 02/06/2011 - 13:39:44 ---A- . (.Infowatch - Virtual Volume Container Driver (wnet).) -- C:\Windows\system32\drivers\CSVirtualDiskDrv.sys [66616] O58 - SDL:[MD5.79B9D7643C9E3AD10B89DF8EF0A9D2FE] - 21/11/2014 - 06:17:10 ---A- . (.Digiarty Software, Inc. - Digiarty Virtual CD driver.) -- C:\Windows\system32\drivers\DigiartyVirtualCDBus.sys [276256] O58 - SDL:[MD5.EDC6E9C057C9D7F83EEA22B4CEF5DCAD] - 10/06/2009 - 21:35:09 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G6032E.sys [145792] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016] O58 - SDL:[MD5.18547153CE3F5FC8BC45FC5ABA843F71] - 20/12/2009 - 08:53:40 R--A- . (.Mobile Action Technology Inc. - Usb Bus Driver.) -- C:\Windows\system32\drivers\gpslc.sys [57216] O58 - SDL:[MD5.4DC6018BA975A1E4AC2121F0BD1EA894] - 10/03/2010 - 08:02:18 R--A- . (.Mobile Action Technology Inc. - Usb Bus Driver.) -- C:\Windows\system32\drivers\gpslc64.sys [102624] O58 - SDL:[MD5.6E02DDFFA0E8C069A92A0888B0CB8415] - 09/10/2013 - 08:04:06 ---A- . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\system32\drivers\hcmon.sys [53816] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.A6518DCC42F7A6E999BB3BEA8FD87567] - 19/10/2010 - 16:34:26 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys [56344] O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888] O58 - SDL:[MD5.D7921D5A870B11CC1ADAB198A519D50A] - 05/11/2010 - 23:45:48 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [438808] O58 - SDL:[MD5.25555186E4FBDF0E30A5DBFC9B9A73F9] - 21/11/2013 - 07:31:28 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStorA.sys [632168] O58 - SDL:[MD5.10E79E366FA255318F5D1D0ED07F947D] - 21/11/2013 - 07:31:28 ---A- . (.Intel Corporation - Intel Rapid Storage Technology Filter driver - x64.) -- C:\Windows\system32\drivers\iaStorF.sys [28008] O58 - SDL:[MD5.B75E45C564E944A2657167D197AB29DA] - 11/03/2011 - 07:23:00 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112] O58 - SDL:[MD5.CAA8BC6737DFA3BF1A50175CFB226788] - 19/06/2010 - 00:36:04 ---A- . (.Siliten - Flex Define Keyboard Driver.) -- C:\Windows\system32\drivers\InputFilter_FlexDef2b.sys [17920] O58 - SDL:[MD5.BD5BF20EC242E003A2F570B8754A56D1] - 29/07/2010 - 00:25:10 ---A- . (.Initio Corporation - Initio Default Vendor Specific Device Driver.) -- C:\Windows\system32\drivers\ivusb.sys [29720] O58 - SDL:[MD5.795EC29BA21F1D948FD6FD740C00B599] - 10/07/2014 - 19:24:54 ---A- . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\system32\drivers\kl1.sys [458336] O58 - SDL:[MD5.59096EC53048A9A760889062E2B1FBB3] - 10/07/2014 - 19:24:55 ---A- . (.Kaspersky Lab ZAO - Filter Core [fre_wlh_x64].) -- C:\Windows\system32\drivers\klflt.sys [92768] O58 - SDL:[MD5.70D959CB6DC1F2AC6AFF3AC20891939D] - 10/07/2014 - 19:24:55 ---A- . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) -- C:\Windows\system32\drivers\klif.sys [628288] O58 - SDL:[MD5.31B69BFF28348503E4BD10C2A4F66D05] - 10/07/2014 - 19:24:55 ---A- . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\system32\drivers\klim6.sys [29792] O58 - SDL:[MD5.AEB50941C6D67128B14F88DB9917C4E0] - 11/11/2013 - 22:44:32 ---A- . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_wlh_x64].) -- C:\Windows\system32\drivers\klkbdflt.sys [29280] O58 - SDL:[MD5.72CF64FBF38CD681FA7F37176047E967] - 11/11/2013 - 22:44:32 ---A- . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_wlh_x64].) -- C:\Windows\system32\drivers\klmouflt.sys [29280] O58 - SDL:[MD5.45ECF097BC6330C2054D7D43B7AD822B] - 11/11/2013 - 22:44:32 ---A- . (.Kaspersky Lab ZAO - Network filtering component.) -- C:\Windows\system32\drivers\kltdi.sys [54368] O58 - SDL:[MD5.07071C1E3CD8F0F9114AAC8B072CA1E5] - 29/04/2009 - 16:28:30 ---A- . (.Windows (R) Codename Longhorn DDK provider - KMWDFilter Driver from UASSOFT.COM.) -- C:\Windows\system32\drivers\KMWDFILTER.sys [30208] O58 - SDL:[MD5.1FCB657B581CC4DF17FD6571F93602DE] - 11/11/2013 - 22:44:32 ---A- . (.Kaspersky Lab ZAO - KNEPS Power.) -- C:\Windows\system32\drivers\kneps.sys [178448] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.CA43F8904E24BBE49982E4C0B29E6579] - 21/11/2014 - 06:14:08 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25816] O58 - SDL:[MD5.478CC94C937D235CB0A96AB8F2359D81] - 21/11/2014 - 06:14:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\system32\drivers\mbamchameleon.sys [93400] O58 - SDL:[MD5.26C43960C99EE861A5D0EDC4DCF3B1C3] - 09/12/2014 - 05:21:39 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736] O58 - SDL:[MD5.38B4C95E821528FB91DF16A78E04450F] - 22/11/2010 - 08:09:06 ---A- . (.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) -- C:\Windows\system32\drivers\mv91xx.sys [303408] O58 - SDL:[MD5.E99B9E4DEFCEE9BCED670BAA302C09A0] - 06/09/2013 - 00:47:24 ---A- . (.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) -- C:\Windows\system32\drivers\mvs91xx.sys [327464] O58 - SDL:[MD5.C00E0A90179C49263D0AB90E032E95D4] - 06/09/2013 - 00:47:30 ---A- . (.Marvell Semiconductor Inc. - Marvell Aux NV Bridge DLL.) -- C:\Windows\system32\drivers\mvxxmm.sys [16680] O58 - SDL:[MD5.A646C2DDB8C46E9B20A326FAF566646C] - 21/11/2014 - 06:14:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\system32\drivers\mwac.sys [63704] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264] O58 - SDL:[MD5.351533ACC2A069B94E80BBFC177E8FDF] - 11/02/2011 - 22:23:34 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\system32\drivers\npf.sys [35344] O58 - SDL:[MD5.B01C1E6D7477961D6D1CBDCD44AF3E67] - 27/08/2012 - 18:39:16 ---A- . (.Renesas Electronics Corporation - USB 3.0 Hub Driver.) -- C:\Windows\system32\drivers\nusb3hub.sys [107912] O58 - SDL:[MD5.796BAE22DD827DB8AD7AE7C3F775E92F] - 27/08/2012 - 18:39:20 ---A- . (.Renesas Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\Windows\system32\drivers\nusb3xhc.sys [226696] O58 - SDL:[MD5.E366A5681C50785D4ED04FCFD65C3415] - 28/11/2013 - 14:38:18 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [197408] O58 - SDL:[MD5.0AC797F70F2F3E5B69A34FF2F63496F3] - 20/05/2014 - 03:44:03 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 337.88.) -- C:\Windows\system32\drivers\nvlddmkm.sys [12688328] O58 - SDL:[MD5.A4D9C9A608A97F59307C2F2600EDC6A4] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352] O58 - SDL:[MD5.6C1D5F70E7A6A3FD1C90D840EDC048B9] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272] O58 - SDL:[MD5.DFAAA11AA072C44A156670659546C57C] - 30/10/2014 - 11:44:36 ---A- . (.Windows (R) Win 7 DDK provider - Paramount Software Image Mounting Driver.) -- C:\Windows\system32\drivers\psmounterex.sys [166384] O58 - SDL:[MD5.436E1F795F0495B2715116A4EC176803] - 21/07/2014 - 11:36:48 ---A- . (.Paramount Software UK Ltd - Volume Access driver.) -- C:\Windows\system32\drivers\PSVolAcc.sys [12760] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592] O58 - SDL:[MD5.46596144363B912105F70016F0E2F908] - 18/02/2014 - 12:48:28 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [901848] O58 - SDL:[MD5.11A077B747F198441190D0F6E276EEC4] - 17/04/2013 - 13:11:38 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [3355336] O58 - SDL:[MD5.945AB249D12CBE044782430C6013AA1A] - 31/03/2010 - 03:10:18 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8187B NDIS Driver.) -- C:\Windows\system32\drivers\RTL8187B.sys [450048] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464] O58 - SDL:[MD5.446EB38CE4A6D040F548B2F547CA96FF] - 07/05/2014 - 09:41:44 ---A- . (.Acronis - Acronis Snapshot API.) -- C:\Windows\system32\drivers\snapman.sys [254496] O58 - SDL:[MD5.F9369327409492097B0BB7CE86BD29DE] - 19/06/2013 - 15:23:54 ---A- . (.Soluto LTD. - Soluto PCGenome Core Driver.) -- C:\Windows\system32\drivers\Soluto.sys [54728] O58 - SDL:[MD5.73BDD44A6088916964945886F9025409] - 22/01/2014 - 07:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\system32\drivers\ssudbus.sys [108800] O58 - SDL:[MD5.5252D7BC56E5E0ED715AEA8FE173A455] - 22/01/2014 - 07:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\system32\drivers\ssudmdm.sys [206080] O58 - SDL:[MD5.946684DEF391FA17A830091EA84E74FE] - 21/12/2010 - 06:55:02 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ss_bcm.sys [15360] O58 - SDL:[MD5.CC98D196AFAD3580E454DDED14BDAC7A] - 21/12/2010 - 06:55:02 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\system32\drivers\ss_bwh.sys [15872] O58 - SDL:[MD5.B96A2A5FED060C0CF9F2A75ABF3B5CDC] - 21/12/2010 - 06:55:02 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ss_cm.sys [15360] O58 - SDL:[MD5.AB90FDA84DD20FAF3408A95E02ED7F53] - 21/12/2010 - 06:55:02 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ss_wh.sys [15872] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656] O58 - SDL:[MD5.DF9179B7BDF0C5B71F9C3D93C016BAE5] - 07/05/2014 - 09:41:50 ---A- . (.Acronis - Acronis Try&Decide Volume Filter Driver.) -- C:\Windows\system32\drivers\tdrpm251.sys [1455648] O58 - SDL:[MD5.F7546EAD58CC3000AC02CF9529B9934E] - 07/05/2014 - 09:41:48 ---A- . (.Acronis - Acronis Backup Archive Explorer.) -- C:\Windows\system32\drivers\timntr.sys [929312] O58 - SDL:[MD5.197AF90E01A473A1862BB5381BE77877] - 26/03/2014 - 18:01:34 ---A- . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\system32\drivers\VBoxDrv.sys [254240] O58 - SDL:[MD5.9AFB83D5E465E7F3C2C20F968C774756] - 26/03/2014 - 18:00:14 ---A- . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\system32\drivers\VBoxNetAdp.sys [141600] O58 - SDL:[MD5.E40ED858DB77EC5D92871B4BF26DE3CA] - 18/12/2013 - 17:16:44 ---A- . (.Oracle Corporation - VirtualBox USB Driver.) -- C:\Windows\system32\drivers\VBoxUSB.sys [113936] O58 - SDL:[MD5.132DFA8D09CE78952259D1A9B480C335] - 26/03/2014 - 18:00:14 ---A- . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\system32\drivers\VBoxUSBMon.sys [128288] O58 - SDL:[MD5.E49A371185D5E79C103765DA93856EE1] - 05/03/2007 - 04:41:34 ---A- . (.IVT Corporation. - Bluetooth HID Enumerator Driver.) -- C:\Windows\system32\drivers\VBTEnum.sys [24976] O58 - SDL:[MD5.B9B0A0B9232A51BBDE9F28CA41716D61] - 05/03/2007 - 04:38:20 ---A- . (.IVT Corporation. - Bluetooth Serial Port Driver.) -- C:\Windows\system32\drivers\VComm.sys [47120] O58 - SDL:[MD5.F1B2D9AC422F8B72BF417C8D77C85A3B] - 05/03/2007 - 04:39:28 ---A- . (.IVT Corporation. - Bluetooth VcommMgr Driver.) -- C:\Windows\system32\drivers\VcommMgr.sys [63248] O58 - SDL:[MD5.6E6FD2FBF204A36E4C85B123C1C32372] - 05/03/2007 - 04:44:00 ---A- . (.IVT Corporation. - Bluetooth HID Mini driver.) -- C:\Windows\system32\drivers\VHIDMini.sys [23184] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488] O58 - SDL:[MD5.BE8E5E5D53ACF71D4E8E686B68C99B04] - 08/10/2013 - 18:21:06 ---A- . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\system32\drivers\vmci.sys [85584] O58 - SDL:[MD5.9E12C27C63A3DEB2DCAECB281461437B] - 18/10/2013 - 12:44:58 ---A- . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\system32\drivers\vmnet.sys [24656] O58 - SDL:[MD5.18AA5F4A3B1204AD00045EE5AD39BCDB] - 18/10/2013 - 12:44:58 ---A- . (.VMware, Inc. - VMware virtual network adapter driver (64-bit).) -- C:\Windows\system32\drivers\vmnetadapter.sys [20560] O58 - SDL:[MD5.04CD4347CD9E8C40F78AD51F7FF426D0] - 18/10/2013 - 12:44:58 ---A- . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\system32\drivers\vmnetbridge.sys [46160] O58 - SDL:[MD5.668C12E04D5AB4981864B12494AF907F] - 18/10/2013 - 12:45:12 ---A- . (.VMware, Inc. - VMware network application interface driver (64-bit).) -- C:\Windows\system32\drivers\vmnetuserif.sys [30800] O58 - SDL:[MD5.F347A28F63162FF82BDDAADC14935BA4] - 09/10/2013 - 08:03:42 ---A- . (.VMware, Inc. - VMware USB driver.) -- C:\Windows\system32\drivers\vmusb.sys [38456] O58 - SDL:[MD5.EBAC38A198308359FD89C10704265E5E] - 18/10/2013 - 12:46:18 ---A- . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\system32\drivers\vmx86.sys [64080] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872] O58 - SDL:[MD5.CB4D2E3C5E8BFA3CF6AFFF6DDC6CC70D] - 08/10/2013 - 18:21:10 ---A- . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\system32\drivers\vsock.sys [73296] O58 - SDL:[MD5.9EAFB3B3B60B8AD958985152A9309ACA] - 29/07/2011 - 13:54:56 ---A- . (...) -- C:\Windows\system32\epmntdrv.sys [16776] O58 - SDL:[MD5.FB949ED2C93C878A189039F3D7730942] - 29/07/2011 - 13:54:56 ---A- . (...) -- C:\Windows\system32\EuGdiDrv.sys [9096] O58 - SDL:[MD5.19166026A93206F9C6A8CD3A1F010AE4] - 02/04/2009 - 13:30:14 ---A- . (...) -- C:\Windows\SysWOW64\drivers\ASUSHWIO.SYS [10296] O58 - SDL:[MD5.44582F5543FD48AFBE20E9D9287DB0C0] - 11/05/2007 - 02:12:06 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\SysWOW64\drivers\blueletaudio.sys [38160] O58 - SDL:[MD5.7E40DFB0CB6DD07EB63CF6F8C67C0962] - 05/03/2007 - 04:48:12 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\SysWOW64\drivers\BlueletSCOAudio.sys [37648] O58 - SDL:[MD5.E0C1E6B70E0C626B37E643B799E434F3] - 09/05/2007 - 01:00:58 ---A- . (.IVT Corporation. - Bluetooth USB Device Driver.) -- C:\Windows\SysWOW64\drivers\btcusb.sys [44688] O58 - SDL:[MD5.8FA060B557C7DE309D2D5C16C3DA2EF6] - 05/03/2007 - 04:42:54 ---A- . (.IVT Corporation. - Bluetooth HID Manager Device Driver.) -- C:\Windows\SysWOW64\drivers\BtHidMgr.sys [49680] O58 - SDL:[MD5.0F890E854FCBE98F4574ACC6423FCCEF] - 05/03/2007 - 04:47:08 ---A- . (.IVT Corporation. - Bluetooth PAN Network Adapter Driver.) -- C:\Windows\SysWOW64\drivers\btnetdrv.sys [25360] O58 - SDL:[MD5.0262A199D98C2405C90F3188C5A54C6A] - 08/10/2006 - 23:29:22 ---A- . (...) -- C:\Windows\SysWOW64\drivers\BTNetFilter.sys [32832] O58 - SDL:[MD5.5A14128EBAAF7FFF8EB27B97B1E52337] - 31/07/2014 - 15:56:44 ---A- . (...) -- C:\Windows\SysWOW64\drivers\MoborobAssDriver64.sys [13304] O58 - SDL:[MD5.8DB0DBDEC7880E81B73B8E7E8E9A666A] - 28/04/2003 - 09:31:18 ---A- . (.OEM - OX16C95x Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\OXSER.SYS [51169] O58 - SDL:[MD5.729248B54AFF21E740054ACEBFDBCB1C] - 13/07/2001 - 12:56:14 ---A- . (...) -- C:\Windows\SysWOW64\drivers\SBKUPNT.SYS [14976] O58 - SDL:[MD5.F6ACD9575B5D77673B979BB46FF6A837] - 10/02/2004 - 21:29:34 ---A- . (.Socket Communications, Inc. - WDM serial port device driver.) -- C:\Windows\SysWOW64\drivers\Sio9502k.sys [48076] O58 - SDL:[MD5.42A39AA7ED51616E36ADB5ABDDF8349B] - 22/03/2004 - 18:26:22 ---A- . (.Socket Communications, Inc. - WDM serial port device driver.) -- C:\Windows\SysWOW64\drivers\SktBt2k.sys [48556] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 25/10/2007 - 16:26:10 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys [5632] O58 - SDL:[MD5.CE4B6956E4E12492715A53076E58761F] - 31/03/2009 - 08:39:36 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys [16392] O58 - SDL:[MD5.E49A371185D5E79C103765DA93856EE1] - 05/03/2007 - 04:41:34 ---A- . (.IVT Corporation. - Bluetooth HID Enumerator Driver.) -- C:\Windows\SysWOW64\drivers\VBTEnum.sys [24976] O58 - SDL:[MD5.B9B0A0B9232A51BBDE9F28CA41716D61] - 05/03/2007 - 04:38:20 ---A- . (.IVT Corporation. - Bluetooth Serial Port Driver.) -- C:\Windows\SysWOW64\drivers\VComm.sys [47120] O58 - SDL:[MD5.F1B2D9AC422F8B72BF417C8D77C85A3B] - 05/03/2007 - 04:39:28 ---A- . (.IVT Corporation. - Bluetooth VcommMgr Driver.) -- C:\Windows\SysWOW64\drivers\VCommMgr.sys [63248] O58 - SDL:[MD5.6E6FD2FBF204A36E4C85B123C1C32372] - 05/03/2007 - 04:44:00 ---A- . (.IVT Corporation. - Bluetooth HID Mini driver.) -- C:\Windows\SysWOW64\drivers\VHIDMini.sys [23184] O58 - SDL:[MD5.E7CE8988B98202A5CF429CA358D26CC5] - 22/02/2013 - 03:28:26 ---A- . (.VMware, Inc. - VMware Virtual Storage Volume Driver.) -- C:\Windows\SysWOW64\drivers\vstor2-mntapi20-shared.sys [33872] O58 - SDL:[MD5.85C3BAA151A6118B24D7701DDFC2D1EB] - 03/07/2003 - 10:58:34 ---A- . (.National Semiconductor Sweden AB - wssbt.) -- C:\Windows\SysWOW64\drivers\wssbtr1f.sys [63488] O58 - SDL:[MD5.539CA34FBC74EC366A0D751028C32A08] - 29/07/2011 - 13:54:56 ---A- . (...) -- C:\Windows\SysWOW64\epmntdrv.sys [14216] O58 - SDL:[MD5.1F2F4AB15CE03ECC257FEB2F6DC5A013] - 29/07/2011 - 13:54:56 ---A- . (...) -- C:\Windows\SysWOW64\EuGdiDrv.sys [8456] O58 - SDL:[MD5.0FFE35F0B0CD5A324BBE22F02569AE3B] - 29/12/2012 - 21:59:38 ---A- . (.Almico Software - SpeedFan x64 Driver.) -- C:\Windows\SysWOW64\speedfan.sys [28664] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 05/10/2010 - 00:59:32 ---A- . (...) -- C:\Windows\SysWOW64\StarOpen.sys [5632] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 16/12/2014 - 03:58:44 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\548f9fe4 [124] O61 - LFC:Last File Created 16/12/2014 - 03:58:45 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\548f9fe5 [144] O61 - LFC:Last File Created 16/12/2014 - 03:58:46 ---A- C:\Users\didier\AppData\Local\Temp\~DFDF8A703F606CAA88.TMP [98304] O61 - LFC:Last File Created 16/12/2014 - 04:10:26 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\548fa2a2 [156] O61 - LFC:Last File Created 16/12/2014 - 05:40:51 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\548fb7d3 [180] O61 - LFC:Last File Created 16/12/2014 - 07:00:31 ---A- C:\Users\didier\AppData\Roaming\WinRAR\version.dat [12] O61 - LFC:Last File Created 16/12/2014 - 08:17:42 ---A- C:\Users\All Users\NVIDIA Corporation\Drs\nvdrsdb0.bin [1424368] O61 - LFC:Last File Created 16/12/2014 - 08:17:45 ---A- C:\Users\All Users\NVIDIA Corporation\Drs\nvdrsdb1.bin [1424368] O61 - LFC:Last File Created 16/12/2014 - 08:17:45 ---A- C:\Users\All Users\NVIDIA Corporation\Drs\nvdrssel.bin [1] O61 - LFC:Last File Created 16/12/2014 - 10:06:11 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\4\D5\05531d01 [16713] O61 - LFC:Last File Created 17/12/2014 - 06:07:41 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54910f9d [124] O61 - LFC:Last File Created 17/12/2014 - 06:07:43 ---A- C:\Users\didier\AppData\Local\Temp\~DFA6F4140E4AF9707D.TMP [98304] O61 - LFC:Last File Created 17/12/2014 - 06:07:43 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54910f9f [144] O61 - LFC:Last File Created 17/12/2014 - 06:20:56 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\549112b8 [156] O61 - LFC:Last File Created 17/12/2014 - 10:39:56 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\ImapMail\imap-mail.outlook.com\INBOX [323022] O61 - LFC:Last File Created 17/12/2014 - 10:40:47 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54914f9f [164] O61 - LFC:Last File Created 17/12/2014 - 10:40:48 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\ImapMail\imap-mail.outlook.com\INBOX.msf [6573] O61 - LFC:Last File Created 17/12/2014 - 10:41:01 ---A- C:\Users\didier\AppData\Local\Temp\QUE MANOBRA.mp4 [2418939] O61 - LFC:Last File Created 17/12/2014 - 10:45:42 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\B\6A\75713d01 [16713] O61 - LFC:Last File Created 17/12/2014 - 10:56:02 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\E\45\87763d01 [19242] O61 - LFC:Last File Created 17/12/2014 - 11:31:35 ---A- C:\Users\didier\AppData\Roaming\Winamp\Plugins\ml\ml_online.ini [131] O61 - LFC:Last File Created 17/12/2014 - 11:31:37 ---A- C:\Users\didier\AppData\Roaming\Todae\LMPwa\LMP_default_tmp.ini [250] O61 - LFC:Last File Created 17/12/2014 - 13:11:11 ---A- C:\Users\didier\AppData\Roaming\Winamp\Plugins\ml\recent.dat [49828] O61 - LFC:Last File Created 17/12/2014 - 18:23:02 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5491bbf6 [152] O61 - LFC:Last File Created 17/12/2014 - 18:39:39 ---A- C:\Users\didier\AppData\Roaming\TeamViewer\Connections.txt [1000] O61 - LFC:Last File Created 17/12/2014 - 18:39:39 ---A- C:\Users\didier\AppData\Roaming\TeamViewer\MRU\RemoteSupport\303287335.tvc [70] O61 - LFC:Last File Created 17/12/2014 - 18:42:10 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\downloads.sqlite [98304] O61 - LFC:Last File Created 17/12/2014 - 18:42:10 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\impab.mab [46870] O61 - LFC:Last File Created 17/12/2014 - 19:10:10 ---A- C:\Users\didier\AppData\Roaming\Todae\LMPwa\LMP_config.ini [512] O61 - LFC:Last File Created 17/12/2014 - 19:10:10 ---A- C:\Users\didier\AppData\Roaming\Todae\LMPwa\LMP_default.rtv [113632] O61 - LFC:Last File Created 17/12/2014 - 19:10:10 ---A- C:\Users\didier\AppData\Roaming\Todae\LMPwa\LMP_favorites.ini [0] O61 - LFC:Last File Created 17/12/2014 - 19:10:10 ---A- C:\Users\didier\AppData\Roaming\Winamp\Winamp.m3u [1283] O61 - LFC:Last File Created 17/12/2014 - 19:10:10 ---A- C:\Users\didier\AppData\Roaming\Winamp\Winamp.m3u8 [1286] O61 - LFC:Last File Created 17/12/2014 - 19:10:10 ---A- C:\Users\didier\AppData\Roaming\Winamp\gen_jumpex.m3u8 [12] O61 - LFC:Last File Created 17/12/2014 - 19:10:11 ---A- C:\Users\didier\AppData\Roaming\Winamp\Plugins\gen_ml.ini [1646] O61 - LFC:Last File Created 17/12/2014 - 19:10:11 ---A- C:\Users\didier\AppData\Roaming\Winamp\Plugins\ml\main.dat [1101] O61 - LFC:Last File Created 17/12/2014 - 19:10:11 ---A- C:\Users\didier\AppData\Roaming\Winamp\Plugins\ml\main.idx [52] O61 - LFC:Last File Created 17/12/2014 - 19:10:11 ---A- C:\Users\didier\AppData\Roaming\Winamp\Plugins\ml\recent.idx [2484] O61 - LFC:Last File Created 17/12/2014 - 19:10:11 ---A- C:\Users\didier\AppData\Roaming\Winamp\studio.xnf [103150] O61 - LFC:Last File Created 17/12/2014 - 19:10:11 ---A- C:\Users\didier\AppData\Roaming\Winamp\winamp.ini [12881] O61 - LFC:Last File Created 18/12/2014 - 07:12:42 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5492705a [124] O61 - LFC:Last File Created 18/12/2014 - 07:12:44 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5492705c [144] O61 - LFC:Last File Created 18/12/2014 - 07:12:45 ---A- C:\Users\didier\AppData\Local\Temp\~DFE15CF34D9626A028.TMP [98304] O61 - LFC:Last File Created 18/12/2014 - 07:18:29 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live-1.com\Sent [6065082] O61 - LFC:Last File Created 18/12/2014 - 08:57:55 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54928903 [156] O61 - LFC:Last File Created 18/12/2014 - 10:45:41 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\B\82\FE506d01 [16713] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\_CACHE_001_ [4194304] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\_CACHE_002_ [4194304] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\_CACHE_003_ [4194304] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\cert8.db [147456] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\folderTree.json [431] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\key3.db [16384] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\permissions.sqlite [65536] O61 - LFC:Last File Created 18/12/2014 - 14:13:18 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\virtualFolders.dat [10] O61 - LFC:Last File Created 18/12/2014 - 14:13:24 --HA- C:\Users\didier\AppData\Local\IconCache.db [17938540] O61 - LFC:Last File Created 19/12/2014 - 07:04:25 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5493bfe9 [124] O61 - LFC:Last File Created 19/12/2014 - 07:04:27 ---A- C:\Users\didier\AppData\Local\Temp\~DF034F646C35B6FCA0.TMP [98304] O61 - LFC:Last File Created 19/12/2014 - 07:04:27 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5493bfeb [144] O61 - LFC:Last File Created 19/12/2014 - 07:26:53 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5493c52d [156] O61 - LFC:Last File Created 19/12/2014 - 08:25:48 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5493d2fc [140] O61 - LFC:Last File Created 19/12/2014 - 08:26:26 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5493d322 [140] O61 - LFC:Last File Created 19/12/2014 - 09:46:20 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\parent.lock [0] O61 - LFC:Last File Created 19/12/2014 - 09:46:21 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\sessionCheckpoints.json [53] O61 - LFC:Last File Created 19/12/2014 - 09:46:26 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\_CACHE_MAP_ [8468] O61 - LFC:Last File Created 19/12/2014 - 09:46:26 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\cookies.sqlite-shm [32768] O61 - LFC:Last File Created 19/12/2014 - 09:46:26 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\cookies.sqlite-wal [0] O61 - LFC:Last File Created 19/12/2014 - 09:46:28 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\webappsstore.sqlite-shm [32768] O61 - LFC:Last File Created 19/12/2014 - 09:46:28 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\webappsstore.sqlite-wal [0] O61 - LFC:Last File Created 19/12/2014 - 09:46:29 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\8\83\74A37d01 [63521] O61 - LFC:Last File Created 19/12/2014 - 09:46:29 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\places.sqlite-shm [32768] O61 - LFC:Last File Created 19/12/2014 - 09:46:29 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\places.sqlite-wal [0] O61 - LFC:Last File Created 19/12/2014 - 09:46:48 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\localstore.rdf [25222] O61 - LFC:Last File Created 19/12/2014 - 09:47:05 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live-1.com\Inbox [120991] O61 - LFC:Last File Created 19/12/2014 - 09:47:05 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live-1.com\Trash [55980] O61 - LFC:Last File Created 19/12/2014 - 09:47:18 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\crashes\store.json.mozlz4 [66] O61 - LFC:Last File Created 19/12/2014 - 09:47:40 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\ImapMail\imap.googlemail.com\INBOX.msf [4718] O61 - LFC:Last File Created 19/12/2014 - 09:47:42 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\5493e62e [164] O61 - LFC:Last File Created 19/12/2014 - 09:47:47 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\abook.mab [6723] O61 - LFC:Last File Created 19/12/2014 - 09:52:35 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live-1.com\Inbox.msf [8006] O61 - LFC:Last File Created 19/12/2014 - 10:43:41 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\addons.json [44648] O61 - LFC:Last File Created 19/12/2014 - 10:45:41 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\Cache\F\9B\9482Cd01 [16713] O61 - LFC:Last File Created 19/12/2014 - 10:45:42 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\blocklist.xml [112142] O61 - LFC:Last File Created 19/12/2014 - 10:45:45 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\_CACHE_CLEAN_ [1] O61 - LFC:Last File Created 19/12/2014 - 11:17:56 --HA- C:\Users\didier\AppData\Local\Temp\etilqs_C0xrgNsafrrbfRV [0] O61 - LFC:Last File Created 19/12/2014 - 11:17:56 --HA- C:\Users\didier\AppData\Local\Temp\etilqs_Pap4IXCyfBj3oLT [0] O61 - LFC:Last File Created 19/12/2014 - 12:10:40 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\prefs.js [32999] O61 - LFC:Last File Created 19/12/2014 - 13:15:14 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\directoryTree.json [69] O61 - LFC:Last File Created 19/12/2014 - 13:23:09 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Trash [3641555] O61 - LFC:Last File Created 19/12/2014 - 13:29:28 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Inbox.msf [6878] O61 - LFC:Last File Created 19/12/2014 - 14:28:58 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Inbox [17210201] O61 - LFC:Last File Created 19/12/2014 - 14:30:36 ---A- C:\Users\didier\AppData\Local\Thunderbird\Profiles\x17ltvsa.default\startupCache\startupCache.4.little [1899805] O61 - LFC:Last File Created 19/12/2014 - 14:39:18 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Drafts [58229220] O61 - LFC:Last File Created 19/12/2014 - 14:43:44 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Sent [561922] O61 - LFC:Last File Created 19/12/2014 - 14:43:57 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\global-messages-db.sqlite [3735552] O61 - LFC:Last File Created 19/12/2014 - 15:12:30 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Sent.msf [10375] O61 - LFC:Last File Created 19/12/2014 - 15:12:37 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Trash.msf [11527] O61 - LFC:Last File Created 19/12/2014 - 15:12:42 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live-1.com\Sent.msf [3153] O61 - LFC:Last File Created 19/12/2014 - 15:23:50 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live-1.com\Trash.msf [6548] O61 - LFC:Last File Created 19/12/2014 - 15:26:23 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live-1.com\popstate.dat [64] O61 - LFC:Last File Created 19/12/2014 - 15:26:26 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\session.json [374] O61 - LFC:Last File Created 19/12/2014 - 15:28:53 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\popstate.dat [402] O61 - LFC:Last File Created 19/12/2014 - 15:31:21 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\Mail\pop3.live.com\Junk.msf [2430] O61 - LFC:Last File Created 19/12/2014 - 15:31:23 ---A- C:\Users\didier\AppData\Roaming\Thunderbird\Profiles\x17ltvsa.default\panacea.dat [19211] O61 - LFC:Last File Created 19/12/2014 - 15:31:44 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\549436d0 [168] O61 - LFC:Last File Created 19/12/2014 - 15:34:32 ---A- C:\Users\All Users\ma-config.com\Logs\websocketpp.log [0] O61 - LFC:Last File Created 19/12/2014 - 15:34:32 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54943778 [124] O61 - LFC:Last File Created 19/12/2014 - 15:34:33 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54943779 [144] O61 - LFC:Last File Created 19/12/2014 - 15:34:34 ---A- C:\Users\All Users\ma-config.com\Logs\maconfservice.txt [948] O61 - LFC:Last File Created 19/12/2014 - 15:34:34 ---A- C:\Users\didier\AppData\Local\Temp\~DF7DD62F4F39B2C29A.TMP [98304] O61 - LFC:Last File Created 19/12/2014 - 15:34:35 ---A- C:\Users\All Users\Atheros\AtherosServiceConfig.ini [45] O61 - LFC:Last File Created 19/12/2014 - 15:45:37 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54943a11 [168] O61 - LFC:Last File Created 19/12/2014 - 15:47:48 ---A- C:\Users\All Users\NVIDIA Corporation\Drs\nvAppTimestamps [18950] O61 - LFC:Last File Created 19/12/2014 - 15:48:23 ---A- C:\Users\didier\AppData\Roaming\Dropbox\shellext\l\54943ab7 [156] O61 - LFC:Last File Created 19/12/2014 - 15:52:09 ---A- C:\Users\didier\AppData\Local\Temp\INMEM000.REM [0] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: SEAF By C_XX - (.C_XX.) [HKLM][64Bits] -- SEAF ---\\ Observateur d'évènement d'application (O66) O66 - EventLog: ID=1000 (Application Error) - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.EXE O66 - EventLog: ID=1000 (Application Error) - (.VideoLAN - VLC media player 2.1.5.) -- C:\Program Files\VideoLAN\VLC\vlc.exe O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Media Player Rich Preview Handler.) -- C:\Program Files\Windows Media Player\wmprph.exe O66 - EventLog: ID=1000 (Application Error) - (.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe O66 - EventLog: ID=1000 (Application Error) - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O66 - EventLog: ID=1000 (Application Error) - (.The Pidgin developer community - Pidgin.) -- C:\Program Files (x86)\Pidgin\pidgin.exe ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Moonchild Productions - Pale Moon web browser.) -- C:\Program Files\Pale Moon\palemoon.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {93E31469-84B4-4d82-8694-6C68DEAC0282} - (Yahoo) - http://fr.search.yahoo.com ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.A4A485C455CF9028E34D6DC090E19A3B] [SPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\didier\AppData\Local\Temp\ICReinstall_pidgin-2.10.11_inst.exe [798040] [MD5.64EA319693A8E47029479B7FA4175A80] [SPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\didier\AppData\Local\Temp\ICReinstall_winrar-x64-510_inst.exe [798040] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "{CD88234D-045D-48F8-9B1C-CE7CF306A234}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "TCP Query User{705DEAE0-80D3-4AA7-9813-DC676C92AA3D}C:\program files (x86)\winamp\winamp.exe" | In - Public - P6 - TRUE | .(.Nullsoft, Inc. - Winamp.) -- C:\program files (x86)\winamp\winamp.exe O87 - FAEL: "UDP Query User{BAF6D574-EB9B-465E-9A1A-E516E8BA90CE}C:\program files (x86)\winamp\winamp.exe" | In - Public - P17 - TRUE | .(.Nullsoft, Inc. - Winamp.) -- C:\program files (x86)\winamp\winamp.exe O87 - FAEL: "{A591D08C-E9ED-48A2-979D-AB51462ABAB3}" | In - Public - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe O87 - FAEL: "{7AE2DE4F-524E-4231-B554-92BD27FE0823}" | In - Public - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe O87 - FAEL: "{4F2FFEA4-CB9F-484A-BD18-1B93F8CCC000}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O87 - FAEL: "{D95C36F6-3662-4892-9EEE-DE43083E8F96}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O87 - FAEL: "{CD5F1306-2052-467C-8B5F-35BF9F9A4E96}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Soluto\SolutoRemoteDirect.exe O87 - FAEL: "{DB254E6A-267D-49BB-9EA2-EB71F280BB5B}" | In - Private - P6 - TRUE | .(.Soluto - Soluto.) -- C:\Program Files\Soluto\Soluto.exe O87 - FAEL: "{A69F6657-779B-46B6-902B-DC7C1C359C51}" | In - Private - P6 - TRUE | .(.Soluto - Soluto.) -- C:\Program Files\Soluto\SolutoCleanup.exe O87 - FAEL: "{B58355E7-421E-4904-B1FA-ED68DF60DD42}" | In - Private - P6 - TRUE | .(.Soluto - Soluto.) -- C:\Program Files\Soluto\SolutoConsole.exe O87 - FAEL: "{102383B6-2C7E-4449-B259-ACB7399837CA}" | In - Private - P6 - TRUE | .(.Soluto - Soluto.) -- C:\Program Files\Soluto\SolutoUpdateService.exe O87 - FAEL: "{AE564402-B95D-4DCA-9571-71BB03FE2F5B}" | In - Private - P6 - TRUE | .(.Soluto - Soluto.) -- C:\Program Files\Soluto\SolutoService.exe O87 - FAEL: "{7F355012-D209-4DD3-8CC6-55FDFBD8354A}" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\didier\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{004C68F1-B003-43A5-BD6B-A6AF171F8012}" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\didier\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{AECF21D8-DE93-4000-A325-59CEFC4D419E}" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\didier\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{86258C4C-6197-438C-9D24-9125023F0C35}" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\didier\AppData\Roaming\Dropbox\bin\Dropbox.exe O87 - FAEL: "{448B2A42-F5F0-49CD-B831-BB73BE8D851B}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeCam.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe O87 - FAEL: "{5925E301-467F-4C6F-833F-11DB3BCFC4CD}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeCam.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe O87 - FAEL: "{1D818CC7-6644-4FB9-B8D1-BFBB5957BBA0}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeEnC2.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe O87 - FAEL: "{30DA337F-3E73-4122-8064-4268E0F91A3F}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeEnC2.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe O87 - FAEL: "{FC57E577-3BCB-4A36-85DA-907BBDA657A7}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe O87 - FAEL: "{EF9B5E76-4C9B-4C9C-8E75-13006A992B74}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe O87 - FAEL: "{72DDE391-6857-4AEC-A80A-DF3A71FE1850}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - LifeTray.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe O87 - FAEL: "{ADFEFF14-E256-43EB-B4BB-292B3540D774}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - LifeTray.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe O87 - FAEL: "{7CFEBA14-BFFE-4A33-AE9C-9F2ACB8AAB8D}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\didier\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{9BE2C678-2C50-46BE-8D3B-0E99010A45A8}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\didier\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{11404E1B-D6F0-4144-A34C-2FE727815493}" | In - Public - P6 - TRUE | .(.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe O87 - FAEL: "{D51EF9AB-10DB-4E4B-A921-E3640FA55D71}" | In - Public - P17 - TRUE | .(.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe O87 - FAEL: "TCP Query User{82C605B1-3FEF-4007-8764-69DE5F04E54D}C:\program files\onone software\perfect effects 8\perfect effects 8.exe" | In - Public - P6 - TRUE | .(.onOne Software.) -- C:\program files\onone software\perfect effects 8\perfect effects O87 - FAEL: "UDP Query User{0133344F-A7FA-4C85-9A7A-A50C82C5B665}C:\program files\onone software\perfect effects 8\perfect effects 8.exe" | In - Public - P17 - TRUE | .(.onOne Software.) -- C:\program files\onone software\perfect effects 8\perfect effect O87 - FAEL: "{4ACD8967-0B46-4CB0-B0BC-1B7971121D15}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{E8E2AA8F-3C74-483A-ADAC-1654ABCE38A7}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\didier\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{A4A5378D-A9B3-47A7-B687-6A256C2AC369}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\didier\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{F2130C22-B946-4C89-9ACC-C1B61F78BF15}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe O87 - FAEL: "{65590170-24F0-4F98-ACBB-A29B322CD61E}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe O87 - FAEL: "{8D1710D3-CC95-46BB-9221-C5EC94B7B49D}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (.not file.) O87 - FAEL: "{A28C72EB-DBF6-49E6-AC60-675A0D94F9F3}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (.not file.) O87 - FAEL: "{C649F9E9-A3D2-42CE-B290-02801F86FE73}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (.not file.) O87 - FAEL: "{8011A02D-3B55-4F68-9797-E21A205AF9E9}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (.not file.) ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Disabled 12/09/2009 892072 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe SS - | Disabled 07/05/2014 2326920 | (afcdpsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe SS - | Auto 05/12/2012 231552 | (AtherosSvc) . (.Qualcomm Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe SR - | Auto 11/11/2013 356128 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe SR - | Auto 25/09/2013 818888 | (CSObjectsSrv) . (.Infowatch.) - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe SR - | Auto 31/05/2011 210024 | (DTSAudioService) . (.DTS.) - C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe SS - | Auto 19/10/2014 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 19/10/2014 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 09/05/2011 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Auto 21/11/2013 15720 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe SR - | Auto 24/06/2014 2820424 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe SS - | Auto 31/07/2014 72184 | (MoboroboDeviceService) . (...) - C:\Program Files (x86)\MoboRobo\MoboroboDeviceService.exe SS - | Demand 26/11/2014 114800 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SR - | Auto 23/01/2014 70768 | (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\nlssrv32.exe SR - | Auto 23/01/2014 0 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SS - | Disabled 21/07/2014 3272656 | (ReflectService.exe) . (.Paramount Software UK Ltd.) - C:\Program Files\Macrium\Reflect\ReflectService.exe SS - | Auto 03/04/2014 315008 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Disabled 19/06/2013 182848 | (SolutoLauncherService) . (.Soluto.) - C:\Program Files\Soluto\SolutoLauncherService.exe SS - | Disabled 19/06/2013 1671680 | (SolutoRemoteService) . (.GlavSoft LLC..) - C:\Program Files\Soluto\SolutoRemoteService.exe SS - | Disabled 19/06/2013 760896 | (SolutoService) . (.Soluto.) - C:\Program Files\Soluto\SolutoService.exe SS - | Demand 20/05/2014 413128 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SR - | Auto 28/11/2014 5419792 | (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe SS - | Demand 18/10/2013 358480 | (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\system32\vmnetdhcp.exe SS - | Demand 18/10/2013 437328 | (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\system32\vmnat.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, http://www.gmer.net Run by didier at 19/12/2014 16:05:22 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by didier at 19/12/2014 16:05:25 Use the desktop link 'MBRCheck' to have full report Dump file Name : C:\PhysicalDisk0_MBR.bin End of the scan (1486 lines in 06mn 32s)(0)