cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.7.85 Par Nicolas Coolman (2015\07\07)
~ Démarré par antony licinio (Administrator) (2015/07/09 22:57:43)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\antony licinio\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\antony licinio\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla v39.0
MSIE: Internet Explorer v11.0.9600.17239

---\\ Informations sur les produits Windows (3) - 2s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 6s
Avast Free Antivirus v10.2.2218

---\\ Logiciels d'optimisation (1) - 7s
CCleaner v4.15

---\\ Surveillance de Logiciels (2) - 7s
Adobe Flash Player 18 NPAPI
Adobe Reader 9.1 MUI

---\\ Logiciels de partage P2P (1) - 7s
eMule

---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 2882936
~ System Restore: Activé (Enable)
~ System drive C: has 28 GB free of 231 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: ANTONYLICINIO
~ User Name: antony licinio
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 28 GB free of 231 GB (System)
~ Drive D: has 114 GB free of 232 GB

---\\ Recherche particulière de fichiers génériques (23) - 0s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.8E71A5CB5312B8392D4DA4CA37BB5868] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2266624]
[MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]

---\\ Processus lancés (11) - 4s
[MD5.41B97DCE2B2D113B831EB197F02A7398] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 307.8.) -- C:\Windows\system32\nvvsvc.exe [878368] [PID.808]
[MD5.CE3BFCD5415DCEC2C8D5B2023F809431] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1126176] [PID.1100]
[MD5.41B97DCE2B2D113B831EB197F02A7398] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 307.8.) -- C:\Windows\system32\nvvsvc.exe [878368] [PID.1108]
[MD5.54236E79A44F909612391C8A2D70D512] - (.Avast Software s.r.o. - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336] [PID.1320]
[MD5.52B58A46BEEFB238C580B69FD051CB5B] - (.Copyright (c) 2001-2009 NVIDIA Corporation - app_filter Module.) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [626208] [PID.1716]
[MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [240160] [PID.1896]
[MD5.20E179A7FE78B37A02D30C4D34C870E7] - (.Copyright (c) 2001-2009 NVIDIA Corporation - NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [206880] [PID.1980]
[MD5.DFB13D3470844B6770FFB87DFC9FD340] - (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe [884744] [PID.3040]
[MD5.5575DB32AA0CC5A97CA4DC87511CBF0C] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2449696] [PID.3284]
[MD5.65C6AA484AD2287D20541C7735989437] - (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [5515496] [PID.3400]
[MD5.A3A25E0509F67473B960DAF214828BE3] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1259296] [PID.5008]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (14) - 1s
M0 - MFSP: prefs.js [antony licinio - jpc6javd.default] http://www.orange.fr/portail
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_203.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (19) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (20)

---\\ Browser Helper Object de navigateur (BHO) (O2) (2) - 0s
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} (Orphean)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Avast Software s.r.o. - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll

---\\ Applications lancées au démarrage du sytème (O4) (13) - 0s
O4 - HKCU\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\antony licinio\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-4288964584-1573855175-841261304-1001\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe
O4 - HKUS\S-1-5-21-4288964584-1573855175-841261304-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-4288964584-1573855175-841261304-1001\..\RunOnce: [Uninstall C:\Users\antony licinio\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe

---\\ Modification Domaine/Adresses DNS (O17) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (11) - 1s
O23 - Service: Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o. - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) (ForceWare Intelligent Application Manager (IAM)) . (.Copyright (c) 2001-2009 NVIDIA Corporation - app_filter Module.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: ForceWare IP service (nSvcIp) . (.Copyright (c) 2001-2009 NVIDIA Corporation - NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 307.8.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: (UMVPFSrv) . (.Logitech Inc. - Logitech User mode UMVPF service.) - C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

---\\ Tâches planifiées en automatique (O39) (14) - 3s
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Antivirus Scheduled Scan] (...) -- C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe (.not file.) [0]
[MD5.FAAE091936E04BDE3B6041AB5C16BC7B] [APT] [avast! Emergency Update] (.Avast Software s.r.o..) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1298776]
[MD5.11543DEB4316B9DBB42999C83495838F] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4624152]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.1CE7982AA6A983F4C49A32C8D624237B] [APT] [{34B2E3DF-05A7-4DE5-B4AB-3DF149402D8E}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [377000]
[MD5.1CE7982AA6A983F4C49A32C8D624237B] [APT] [{6260B03A-79A1-4F9F-907D-5BC76EBD4BB2}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [377000]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: avast! Emergency Update - (.Avast Software s.r.o..) -- C:\Windows\Tasks\avast! Emergency Update.job [350]
O39 - APT: Ad-Aware Antivirus Scheduled Scan - (..) -- C:\Windows\System32\Tasks\Ad-Aware Antivirus Scheduled Scan [4490]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940]
O39 - APT: avast! Emergency Update - (.Avast Software s.r.o..) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\CreateChoiceProcessTask [3564]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{300761BD-8018-4317-91B6-3587EF1CE06D} [3176]

---\\ Logiciels installés (O42) (95) - 16s
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers
O42 - Logiciel: LWS VideoEffects - (.Logitech.) [HKLM][64Bits] -- {138A4072-9E64-46BD-B5F9-DB2BB395391F}
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM][64Bits] -- {7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: NVIDIA Pilote graphique 307.83 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Adobe Flash Player 15 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 7
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: eMule - (...) [HKLM][64Bits] -- eMule
O42 - Logiciel: Guitar Pro 5.0 - (.Arobas Music.) [HKLM][64Bits] -- Guitar Pro 5_is1
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM][64Bits] -- InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: LAV Filters 0.55.3 - (.Hendrik Leppkes.) [HKLM][64Bits] -- lavfilters_is1
O42 - Logiciel: Logitech Vid HD - (.Logitech Inc...) [HKLM][64Bits] -- Logitech Vid
O42 - Logiciel: Metaboli - (.Packard Bell.) [HKLM][64Bits] -- Metaboli
O42 - Logiciel: Mozilla Firefox 39.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Nano 1.1.1 - (...) [HKLM][64Bits] -- Nano
O42 - Logiciel: OmegaSeeder - (.C4DL Media.) [HKLM][64Bits] -- OmegaSeeder
O42 - Logiciel: Packard Bell InfoCentre - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell InfoCentre
O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration
O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell Incorporated.) [HKLM][64Bits] -- Packard Bell Screensaver
O42 - Logiciel: Packard Bell Software Suite SE - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Software Suite SE
O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Welcome Center
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: WinRAR 5.11 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}
O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM][64Bits] -- {08610298-29AE-445B-B37D-EFBE05802967}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Packard Bell GameZone Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {117E3AE2-10D1-41C1-9FA6-F4C382F767A8}_is1
O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM][64Bits] -- {15634701-BACE-4449-8B25-1567DA8C9FD3}
O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM][64Bits] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9}
O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM][64Bits] -- {174A3B31-4C43-43DD-866F-73C9DB887B48}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400dbd-e6db-45b8-9b6b-1dd7033818ec}
O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM][64Bits] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348b586-c9ae-46ce-936c-a68e9426e214}
O42 - Logiciel: Skype™ 7.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33cf58f5-48d8-4575-83d6-96f574e4d83a}
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {3c02db93-7510-4ab9-8a3e-d90951dfe9a5}
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5511C07D-A83C-45AD-92B6-42DF99729A3C}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595a3116-40bb-4e0f-a2e8-d7951da56270}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM][64Bits] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}
O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM][64Bits] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748ac8c-18e3-43bb-959b-088faea16fb2}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Chicken Invaders 2 - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}
O42 - Logiciel: Granny In Paradise - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}
O42 - Logiciel: Merriam Websters Spell Jam - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}
O42 - Logiciel: Amazonia - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}
O42 - Logiciel: Alice Greenfingers - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}
O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: Dairy Dash - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}
O42 - Logiciel: First Class Flurry - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115208410}
O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84b3-4c50-8622-b8c0aa2d2885}
O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM][64Bits] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200db-287a-4dc0-b02b-2b6787fbcd4c}
O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM][64Bits] -- {8937D274-C281-42E4-8CDB-A0B2DF979189}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM][64Bits] -- {9DAEA76B-E50F-4272-A595-0124E826553D}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {cc019e3f-59d2-4486-8d4b-878105b62a71}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM][64Bits] -- {D40EB009-0499-459c-A8AF-C9C110766215}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {dba84796-8503-4ff0-af57-1747dd9a166d}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {e5c7d048-f9b4-4219-b323-8bdb01a2563d}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {e8a80433-302b-4ff1-815d-fcc8eac482ff}
O42 - Logiciel: LWS Video Mask Maker - (.Logitech.) [HKLM][64Bits] -- {EED027B7-0DB6-404B-8F45-6DFEE34A0441}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {f4041dce-3fe1-4e18-8a9e-9de65231ee36}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {fbcdfd61-7dcf-4e71-9226-873ba0053139}
O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM][64Bits] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB}
O42 - Logiciel: Save Sense (remove only) - (.SaveSense.) [HKCU][64Bits] -- Save Sense
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: Outil de notification de cadeaux MSN - (.Microsoft Corporation.) [HKCU][64Bits] -- {CAD9C0EB-457D-49BB-A6AD-389304C38B2A}

---\\ HKCU & HKLM Software Keys (92) - 16s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Arobas Music
HKLM\SOFTWARE\Wow6432Node\Audible
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\BrowseSmart =>PUP.Optional.BrowseSmart
HKLM\SOFTWARE\Wow6432Node\Digital River
HKLM\SOFTWARE\Wow6432Node\Freemake
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\IncrediMail
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\logishrd
HKLM\SOFTWARE\Wow6432Node\Logitech
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\Oberon Media
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OEM
HKLM\SOFTWARE\Wow6432Node\Orange
HKLM\SOFTWARE\Wow6432Node\Packard Bell
HKLM\SOFTWARE\Wow6432Node\PDF Reader
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SPPDCOM =>PUP.Optional.PCSpeedUp
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Acer
HKCU\SOFTWARE\AcerUtil
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Arobas Music
HKCU\SOFTWARE\Avast Software
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BrowseSmart =>PUP.Optional.BrowseSmart
HKCU\SOFTWARE\Cygwin
HKCU\SOFTWARE\eChanblard
HKCU\SOFTWARE\eMule
HKCU\SOFTWARE\eMule 0.50a
HKCU\SOFTWARE\FileHippo
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HookNetwork
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogiShrd
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OEM
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\UPH
HKCU\SOFTWARE\VideoConverter-Media
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zyrax Software
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Google
HKCU\SOFTWARE\AppDataLow\Software\Orange

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (277) - 20s
O43 - CFD: 2013/12/30 14:09:47 - [] D -- C:\Program Files (x86)\Ad-Aware Antivirus
O43 - CFD: 2013/09/29 14:48:56 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2012/12/18 20:26:45 - [] D -- C:\Program Files (x86)\AVIConverter
O43 - CFD: 2015/06/28 21:30:50 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2013/08/23 13:28:52 - [] D -- C:\Program Files (x86)\eChanblard
O43 - CFD: 2012/12/18 17:50:27 - [] D -- C:\Program Files (x86)\eMule
O43 - CFD: 2013/12/25 17:42:11 - [0] D -- C:\Program Files (x86)\Freemake
O43 - CFD: 2014/07/11 17:36:17 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2012/12/18 19:48:26 - [] D -- C:\Program Files (x86)\Guitar Pro 5
O43 - CFD: 2012/12/18 13:30:48 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2014/09/03 13:43:00 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2012/12/18 17:36:34 - [] D -- C:\Program Files (x86)\Logitech
O43 - CFD: 2014/08/16 16:11:43 - [] D -- C:\Program Files (x86)\Media Crawler
O43 - CFD: 2013/12/25 20:52:27 - [] D -- C:\Program Files (x86)\MediaCoder
O43 - CFD: 2012/12/20 16:35:25 - [] D -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 2013/11/03 00:14:06 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2009/12/18 22:20:49 - [] D -- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 2013/09/30 13:05:52 - [0] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2012/12/18 16:18:09 - [] D -- C:\Program Files (x86)\Microsoft SkyDrive
O43 - CFD: 2012/12/18 14:15:02 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2012/12/18 14:23:18 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2012/12/20 16:10:50 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2012/12/18 16:23:43 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/07/09 22:35:37 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/07/09 20:45:41 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2012/12/21 17:26:06 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2009/12/18 22:30:06 - [] D -- C:\Program Files (x86)\Nero
O43 - CFD: 2013/05/31 14:09:19 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2012/12/18 13:37:43 - [] D -- C:\Program Files (x86)\OEM
O43 - CFD: 2012/12/18 19:16:25 - [] D -- C:\Program Files (x86)\OmegaSeeder
O43 - CFD: 2013/09/30 12:03:51 - [] D -- C:\Program Files (x86)\Orange
O43 - CFD: 2012/12/18 14:30:07 - [] D -- C:\Program Files (x86)\Packard Bell
O43 - CFD: 2009/12/18 22:14:11 - [] D -- C:\Program Files (x86)\Packard Bell GameZone
O43 - CFD: 2012/12/18 13:30:48 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/06/28 21:38:50 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2012/12/18 13:31:23 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2013/12/25 15:43:09 - [] D -- C:\Program Files (x86)\Video to Video
O43 - CFD: 2013/02/27 17:46:39 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2014/07/11 17:32:27 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2013/09/28 19:04:44 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2013/03/21 14:37:16 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2014/07/11 17:32:47 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2013/03/21 14:37:15 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2013/03/21 14:37:16 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/03/21 14:37:16 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2014/11/27 16:51:35 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/07/09 22:47:07 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2009/12/18 21:59:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2012/12/18 20:26:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVIConverter
O43 - CFD: 2014/08/20 13:24:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2012/12/18 17:50:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule
O43 - CFD: 2012/12/18 13:37:39 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2012/12/18 19:50:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guitar Pro 5
O43 - CFD: 2013/12/25 15:34:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
O43 - CFD: 2013/02/17 14:21:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2009/12/18 22:20:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2012/12/20 16:10:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2009/12/18 22:30:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 2009/12/18 22:06:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2013/09/29 15:14:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 2013/12/31 17:25:17 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support
O43 - CFD: 2009/12/18 22:14:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell GameZone
O43 - CFD: 2014/08/21 15:38:34 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Reader
O43 - CFD: 2015/06/28 21:30:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/07/09 22:34:28 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/07/14 09:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/08/20 13:24:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2012/12/22 21:06:16 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2014/11/27 16:51:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/07/09 22:46:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2013/01/28 19:38:01 - [] D -- C:\ProgramData\Ad-Aware Antivirus
O43 - CFD: 2013/04/24 13:36:09 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/03/17 14:04:56 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2012/12/18 13:36:50 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2012/12/18 17:53:31 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2012/12/18 17:50:42 - [] D -- C:\ProgramData\eMule
O43 - CFD: 2012/12/18 13:36:50 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2013/12/25 17:42:18 - [0] D -- C:\ProgramData\Freemake
O43 - CFD: 2014/07/11 13:39:27 - [] D -- C:\ProgramData\Google
O43 - CFD: 2013/07/05 13:52:00 - [] D -- C:\ProgramData\Grisoft
O43 - CFD: 2012/12/19 21:55:37 - [0] D -- C:\ProgramData\Guitar Pro 6
O43 - CFD: 2013/12/09 16:37:38 - [] D -- C:\ProgramData\InstallMate
O43 - CFD: 2013/01/28 18:45:42 - [] D -- C:\ProgramData\Lavasoft
O43 - CFD: 2012/12/18 17:32:47 - [] D -- C:\ProgramData\LogiShrd
O43 - CFD: 2012/12/18 17:33:57 - [] D -- C:\ProgramData\Logitech
O43 - CFD: 2013/06/20 15:40:52 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2013/04/24 13:35:25 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2012/12/18 13:36:50 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2014/08/23 16:08:53 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/09/03 13:40:58 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2012/12/18 16:17:24 - [] D -- C:\ProgramData\Microsoft SkyDrive
O43 - CFD: 2012/12/18 13:36:50 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2013/05/22 14:23:40 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2009/12/18 22:29:02 - [] D -- C:\ProgramData\Nero
O43 - CFD: 2013/12/29 14:26:21 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2009/12/18 22:35:36 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2013/10/01 12:33:50 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2013/05/31 14:07:16 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2012/12/18 13:37:52 - [] D -- C:\ProgramData\OEM
O43 - CFD: 2013/09/30 12:03:55 - [0] D -- C:\ProgramData\Orange
O43 - CFD: 2009/12/18 22:23:27 - [] D -- C:\ProgramData\Packard Bell
O43 - CFD: 2015/06/28 22:25:05 - [] D -- C:\ProgramData\RogueKiller
O43 - CFD: 2015/06/28 21:31:03 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/12/29 14:31:29 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 2013/01/31 17:09:26 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2013/12/25 17:57:28 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 2012/12/18 17:53:31 - [] SHD -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 2013/12/25 17:40:13 - [] SHD -- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 2012/12/18 14:08:02 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/07/11 14:39:44 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2012/12/18 13:30:44 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2013/02/17 14:21:48 - [] D -- C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 2012/12/18 17:33:27 - [] D -- C:\Program Files (x86)\Common Files\LWS
O43 - CFD: 2012/12/18 14:07:59 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 2013/09/23 00:44:17 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/12/18 22:31:59 - [] D -- C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 2009/12/18 22:07:40 - [] D -- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 2012/12/18 14:07:35 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/06/28 21:30:50 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2012/12/18 14:07:35 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2013/12/29 14:25:52 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 2013/03/21 14:37:14 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2012/12/18 14:09:22 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2013/07/04 16:46:36 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 2013/09/23 20:56:21 - [] D -- C:\Users\antony licinio\AppData\Roaming\Ad-Aware Antivirus
O43 - CFD: 2013/04/02 13:20:28 - [] D -- C:\Users\antony licinio\AppData\Roaming\Adobe
O43 - CFD: 2013/01/31 17:38:29 - [] D -- C:\Users\antony licinio\AppData\Roaming\Apowersoft
O43 - CFD: 2014/03/17 14:13:22 - [] D -- C:\Users\antony licinio\AppData\Roaming\AVAST Software
O43 - CFD: 2014/01/21 17:54:04 - [] D -- C:\Users\antony licinio\AppData\Roaming\BitTorrent
O43 - CFD: 2013/12/31 17:25:07 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Common
O43 - CFD: 2013/11/10 15:50:04 - [] D -- C:\Users\antony licinio\AppData\Roaming\dvdcss
O43 - CFD: 2013/01/30 19:40:21 - [] D -- C:\Users\antony licinio\AppData\Roaming\DVDVideoSoft
O43 - CFD: 2012/12/18 13:41:18 - [] D -- C:\Users\antony licinio\AppData\Roaming\Google
O43 - CFD: 2013/06/01 13:18:10 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Guitar Pro 6
O43 - CFD: 2012/12/18 13:39:28 - [] D -- C:\Users\antony licinio\AppData\Roaming\Identities
O43 - CFD: 2012/12/18 17:35:50 - [] D -- C:\Users\antony licinio\AppData\Roaming\Leadertech
O43 - CFD: 2012/12/18 13:42:12 - [] D -- C:\Users\antony licinio\AppData\Roaming\Macromedia
O43 - CFD: 2013/06/20 15:41:32 - [] D -- C:\Users\antony licinio\AppData\Roaming\Malwarebytes
O43 - CFD: 2009/07/14 09:44:38 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Media Center Programs
O43 - CFD: 2013/12/25 20:52:26 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Mediatronic
O43 - CFD: 2013/09/23 00:38:23 - [] SD -- C:\Users\antony licinio\AppData\Roaming\Microsoft
O43 - CFD: 2013/12/31 17:00:08 - [] D -- C:\Users\antony licinio\AppData\Roaming\Mozilla
O43 - CFD: 2013/01/05 22:39:07 - [] D -- C:\Users\antony licinio\AppData\Roaming\Nero
O43 - CFD: 2013/09/29 14:51:09 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Orange
O43 - CFD: 2012/12/18 16:54:38 - [] D -- C:\Users\antony licinio\AppData\Roaming\Paltalk
O43 - CFD: 2015/07/09 20:57:39 - [] D -- C:\Users\antony licinio\AppData\Roaming\Skype
O43 - CFD: 2014/08/21 15:33:50 - [] D -- C:\Users\antony licinio\AppData\Roaming\SumatraPDF
O43 - CFD: 2013/09/16 19:49:33 - [] D -- C:\Users\antony licinio\AppData\Roaming\Template
O43 - CFD: 2013/12/25 17:41:58 - [] D -- C:\Users\antony licinio\AppData\Roaming\TuneUp Software
O43 - CFD: 2013/02/27 16:59:46 - [0] D -- C:\Users\antony licinio\AppData\Roaming\TVRR
O43 - CFD: 2013/08/23 13:29:03 - [] D -- C:\Users\antony licinio\AppData\Roaming\uStart
O43 - CFD: 2014/11/27 21:55:52 - [] D -- C:\Users\antony licinio\AppData\Roaming\uTorrent
O43 - CFD: 2014/11/27 21:38:51 - [] D -- C:\Users\antony licinio\AppData\Roaming\vlc
O43 - CFD: 2014/08/13 15:28:56 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Windows Live Writer
O43 - CFD: 2014/07/07 20:02:51 - [] D -- C:\Users\antony licinio\AppData\Roaming\WinRAR
O43 - CFD: 2015/07/09 22:57:58 - [] D -- C:\Users\antony licinio\AppData\Roaming\ZHP
O43 - CFD: 2015/07/09 21:33:19 - [] D -- C:\Users\antony licinio\AppData\Local\Adobe
O43 - CFD: 2012/12/18 13:37:07 - [0] SHD -- C:\Users\antony licinio\AppData\Local\Application Data
O43 - CFD: 2014/02/05 14:45:24 - [0] D -- C:\Users\antony licinio\AppData\Local\cache
O43 - CFD: 2015/07/09 21:36:50 - [] D -- C:\Users\antony licinio\AppData\Local\CrashDumps
O43 - CFD: 2014/11/21 17:34:14 - [0] D -- C:\Users\antony licinio\AppData\Local\Diagnostics
O43 - CFD: 2013/01/28 18:41:00 - [] D -- C:\Users\antony licinio\AppData\Local\Downloaded Installations
O43 - CFD: 2014/11/21 17:34:15 - [0] D -- C:\Users\antony licinio\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2014/08/17 16:04:54 - [] SHD -- C:\Users\antony licinio\AppData\Local\EmieSiteList
O43 - CFD: 2014/08/17 16:04:54 - [] SHD -- C:\Users\antony licinio\AppData\Local\EmieUserList
O43 - CFD: 2012/12/18 17:50:26 - [] D -- C:\Users\antony licinio\AppData\Local\eMule
O43 - CFD: 2014/07/11 13:39:27 - [] D -- C:\Users\antony licinio\AppData\Local\Google
O43 - CFD: 2012/12/18 13:37:07 - [0] SHD -- C:\Users\antony licinio\AppData\Local\Historique
O43 - CFD: 2012/12/18 17:37:30 - [] D -- C:\Users\antony licinio\AppData\Local\LogiShrd
O43 - CFD: 2012/12/18 17:39:34 - [] D -- C:\Users\antony licinio\AppData\Local\Logitech® Webcam Software
O43 - CFD: 2013/05/22 15:00:45 - [] D -- C:\Users\antony licinio\AppData\Local\Macromedia
O43 - CFD: 2014/07/11 17:40:57 - [] D -- C:\Users\antony licinio\AppData\Local\Microsoft
O43 - CFD: 2015/07/09 22:24:00 - [] D -- C:\Users\antony licinio\AppData\Local\Microsoft Games
O43 - CFD: 2012/12/18 14:21:06 - [0] D -- C:\Users\antony licinio\AppData\Local\Microsoft Help
O43 - CFD: 2014/05/28 18:17:30 - [0] DC -- C:\Users\antony licinio\AppData\Local\MigWiz
O43 - CFD: 2013/12/05 15:41:30 - [] D -- C:\Users\antony licinio\AppData\Local\Mozilla
O43 - CFD: 2013/11/03 00:14:13 - [] D -- C:\Users\antony licinio\AppData\Local\Orange
O43 - CFD: 2012/12/18 13:40:08 - [] D -- C:\Users\antony licinio\AppData\Local\Packard Bell
O43 - CFD: 2013/01/30 19:14:16 - [] D -- C:\Users\antony licinio\AppData\Local\Programs
O43 - CFD: 2014/03/17 14:15:32 - [] D -- C:\Users\antony licinio\AppData\Local\Skype
O43 - CFD: 2015/07/09 22:54:53 - [] D -- C:\Users\antony licinio\AppData\Local\Temp
O43 - CFD: 2012/12/18 13:37:07 - [0] SHD -- C:\Users\antony licinio\AppData\Local\Temporary Internet Files
O43 - CFD: 2013/11/03 00:12:17 - [] D -- C:\Users\antony licinio\AppData\Local\VirtualStore
O43 - CFD: 2014/02/19 20:53:53 - [] D -- C:\Users\antony licinio\AppData\Local\Windows Live
O43 - CFD: 2014/08/13 15:29:05 - [] D -- C:\Users\antony licinio\AppData\Local\Windows Live Writer
O43 - CFD: 2013/01/25 14:38:54 - [0] D -- C:\Users\antony licinio\AppData\Local\{03FFEBF6-3726-4ADD-A5D6-68424D68F24C}
O43 - CFD: 2013/03/04 18:38:14 - [0] D -- C:\Users\antony licinio\AppData\Local\{041B3C20-C8B3-474D-83C6-694961173174}
O43 - CFD: 2013/01/13 15:58:09 - [0] D -- C:\Users\antony licinio\AppData\Local\{046E7D0B-F0E7-4639-AEEF-B83A881CBF6C}
O43 - CFD: 2013/01/19 14:39:16 - [0] D -- C:\Users\antony licinio\AppData\Local\{06AF6E0D-0AC8-4FAA-A6A4-F534ED7BF4CD}
O43 - CFD: 2013/11/05 21:10:09 - [0] D -- C:\Users\antony licinio\AppData\Local\{07ABF5C9-AD5C-4809-9146-BB210AB9676A}
O43 - CFD: 2014/08/25 15:23:04 - [0] D -- C:\Users\antony licinio\AppData\Local\{0C317041-7E79-49FB-B697-47958DBFA1C2}
O43 - CFD: 2013/01/22 13:55:37 - [0] D -- C:\Users\antony licinio\AppData\Local\{0CC830F2-A383-4767-ACF9-84D1A0E1B679}
O43 - CFD: 2013/01/31 01:25:26 - [0] D -- C:\Users\antony licinio\AppData\Local\{0D5D53D8-D015-4348-AF83-41494932B826}
O43 - CFD: 2013/01/11 01:46:51 - [0] D -- C:\Users\antony licinio\AppData\Local\{132A93F3-DC72-45C6-B03C-0E3472079011}
O43 - CFD: 2013/01/21 14:06:02 - [0] D -- C:\Users\antony licinio\AppData\Local\{13A43DC0-EA71-4EBC-8E98-6492D2DEC0A3}
O43 - CFD: 2013/01/11 14:01:43 - [0] D -- C:\Users\antony licinio\AppData\Local\{1BA2A6B9-6772-400E-84E3-BB36C8D1FE50}
O43 - CFD: 2012/12/24 03:00:40 - [0] D -- C:\Users\antony licinio\AppData\Local\{1E2AAE3D-CE10-434C-A0DC-A5ED48DBD5B1}
O43 - CFD: 2012/12/26 16:50:57 - [0] D -- C:\Users\antony licinio\AppData\Local\{1EFE3BD5-293D-412B-9EC6-FCE21F91D848}
O43 - CFD: 2013/01/12 15:21:47 - [0] D -- C:\Users\antony licinio\AppData\Local\{2326FB8F-4AEC-4980-8064-C93405FA4BDB}
O43 - CFD: 2013/01/02 15:45:45 - [0] D -- C:\Users\antony licinio\AppData\Local\{2479719E-2EDD-4A45-B559-A418CA805FCE}
O43 - CFD: 2012/12/25 03:40:47 - [0] D -- C:\Users\antony licinio\AppData\Local\{2669A34D-024A-4D77-9868-459EDC517F12}
O43 - CFD: 2013/03/11 13:59:29 - [0] D -- C:\Users\antony licinio\AppData\Local\{2A55D7B9-350F-4A2E-8374-403ADC35E11E}
O43 - CFD: 2013/01/15 13:48:04 - [0] D -- C:\Users\antony licinio\AppData\Local\{2F04496F-C8FC-496B-8A4D-E07BA7597958}
O43 - CFD: 2013/01/30 13:23:50 - [0] D -- C:\Users\antony licinio\AppData\Local\{315F97A5-35BE-4DDA-BDB8-936E377FD0EF}
O43 - CFD: 2012/12/28 17:23:08 - [0] D -- C:\Users\antony licinio\AppData\Local\{340C0041-2652-4C23-908E-8D04E00B73AC}
O43 - CFD: 2013/07/24 15:17:22 - [0] D -- C:\Users\antony licinio\AppData\Local\{38C6A8EC-16BB-4E12-92EC-356D3B9A366E}
O43 - CFD: 2013/01/05 02:03:11 - [0] D -- C:\Users\antony licinio\AppData\Local\{38F62053-468B-4FD3-892C-3C078AF5BFD6}
O43 - CFD: 2013/01/14 11:17:49 - [0] D -- C:\Users\antony licinio\AppData\Local\{3D198F3C-193C-44F5-90FE-0F0258A7C023}
O43 - CFD: 2013/01/03 15:56:40 - [0] D -- C:\Users\antony licinio\AppData\Local\{44A75DC3-098B-4629-BA2C-E04E36E55C9F}
O43 - CFD: 2013/09/28 19:00:37 - [0] D -- C:\Users\antony licinio\AppData\Local\{49FE0BCF-3793-4D9E-AE53-B3DEC14974B9}
O43 - CFD: 2013/01/07 15:15:15 - [0] D -- C:\Users\antony licinio\AppData\Local\{4DDEBE6B-8E6C-4B05-B89D-AB532D9C351C}
O43 - CFD: 2013/01/12 02:02:41 - [0] D -- C:\Users\antony licinio\AppData\Local\{4E724DE9-AD46-49AF-A6F4-E02AA69E295C}
O43 - CFD: 2012/12/28 04:00:25 - [0] D -- C:\Users\antony licinio\AppData\Local\{525D26F3-27A2-4678-A97A-113F02A57FC0}
O43 - CFD: 2013/01/18 13:23:05 - [0] D -- C:\Users\antony licinio\AppData\Local\{52D77ACF-C186-4F8A-924C-F7B05F059016}
O43 - CFD: 2013/02/18 16:14:50 - [0] D -- C:\Users\antony licinio\AppData\Local\{558E575C-A316-4756-A315-3EB1F8830D1B}
O43 - CFD: 2013/01/24 13:55:39 - [0] D -- C:\Users\antony licinio\AppData\Local\{55B280AF-7B37-45FE-B99F-CA304C191A13}
O43 - CFD: 2013/01/06 16:13:51 - [0] D -- C:\Users\antony licinio\AppData\Local\{5CCA789E-76C4-4024-B4D2-897F578885B7}
O43 - CFD: 2013/01/01 15:31:51 - [0] D -- C:\Users\antony licinio\AppData\Local\{5E785CFA-1178-4981-A68B-5E42B665F1F9}
O43 - CFD: 2013/01/26 14:01:52 - [0] D -- C:\Users\antony licinio\AppData\Local\{607BD648-5B21-4B79-A695-A083109CA71D}
O43 - CFD: 2012/12/29 16:10:18 - [0] D -- C:\Users\antony licinio\AppData\Local\{628A4569-5279-4FE4-8877-58B6CBCDA515}
O43 - CFD: 2013/06/01 16:45:19 - [0] D -- C:\Users\antony licinio\AppData\Local\{6814E94A-B5FE-4B8F-8DD5-5A6C55B20AEE}
O43 - CFD: 2012/12/30 16:13:18 - [0] D -- C:\Users\antony licinio\AppData\Local\{697A4301-F2B0-4DC7-AB30-19CF5E101BBF}
O43 - CFD: 2012/12/25 03:47:07 - [0] D -- C:\Users\antony licinio\AppData\Local\{6AF90285-3776-45F7-AB21-A934D752FF24}
O43 - CFD: 2013/07/20 18:38:01 - [0] D -- C:\Users\antony licinio\AppData\Local\{70260714-7A40-495A-A97E-FD86B205ED7A}
O43 - CFD: 2013/01/31 14:19:50 - [0] D -- C:\Users\antony licinio\AppData\Local\{7BC9E4A6-3995-4DB9-AE82-29ECDD33FB71}
O43 - CFD: 2013/01/23 14:14:38 - [0] D -- C:\Users\antony licinio\AppData\Local\{86FF9CF8-B8FA-4D05-989B-4D49BEDD5BC8}
O43 - CFD: 2013/01/06 04:12:47 - [0] D -- C:\Users\antony licinio\AppData\Local\{87AA73EA-9B64-4AA2-88D4-E7C86560723A}
O43 - CFD: 2012/12/25 16:49:42 - [0] D -- C:\Users\antony licinio\AppData\Local\{88B72DB3-E08E-41EA-B3B9-679B8D9E1160}
O43 - CFD: 2012/12/27 15:59:37 - [0] D -- C:\Users\antony licinio\AppData\Local\{937C77FA-76F5-4C98-8A78-AB1212DDDE66}
O43 - CFD: 2013/06/07 14:58:43 - [0] D -- C:\Users\antony licinio\AppData\Local\{95511198-3738-4095-801A-497C519BB102}
O43 - CFD: 2013/01/13 03:22:42 - [0] D -- C:\Users\antony licinio\AppData\Local\{9755D06A-2A4F-4999-9065-4B87106D3DBC}
O43 - CFD: 2013/03/15 15:41:00 - [0] D -- C:\Users\antony licinio\AppData\Local\{A0BA91F9-E666-4456-B716-36B77B17CA51}
O43 - CFD: 2013/01/16 01:49:19 - [0] D -- C:\Users\antony licinio\AppData\Local\{A4881B09-7823-4A97-A418-15B5DE764C48}
O43 - CFD: 2013/01/29 14:15:14 - [0] D -- C:\Users\antony licinio\AppData\Local\{A611658D-7563-4944-8D34-5CCA9A6775B4}
O43 - CFD: 2013/06/19 14:39:20 - [0] D -- C:\Users\antony licinio\AppData\Local\{A7450929-FDCC-4EC4-84DD-4E75BA056E28}
O43 - CFD: 2013/03/02 18:42:14 - [0] D -- C:\Users\antony licinio\AppData\Local\{AB23D84B-99B9-4567-998F-253447118895}
O43 - CFD: 2013/01/05 16:12:12 - [0] D -- C:\Users\antony licinio\AppData\Local\{ACB39509-1A81-4014-977C-DF411C7DAC66}
O43 - CFD: 2012/12/26 04:50:21 - [0] D -- C:\Users\antony licinio\AppData\Local\{B273432D-EBAD-4351-9FDF-806946AF0937}
O43 - CFD: 2013/06/10 16:15:29 - [0] D -- C:\Users\antony licinio\AppData\Local\{B6F18C64-AF54-46C7-A446-6C5CDB1D9778}
O43 - CFD: 2013/02/23 18:33:19 - [0] D -- C:\Users\antony licinio\AppData\Local\{BB13AEFC-70FC-4BDF-9B7E-FD80BD7B9A6B}
O43 - CFD: 2013/01/10 13:46:07 - [0] D -- C:\Users\antony licinio\AppData\Local\{BBCC2C2B-E73D-4988-9D91-F50CEB5555E9}
O43 - CFD: 2013/02/24 16:42:53 - [0] D -- C:\Users\antony licinio\AppData\Local\{BCFBE2E5-2266-445D-A232-3FC5B5903FB3}
O43 - CFD: 2013/02/14 14:35:12 - [0] D -- C:\Users\antony licinio\AppData\Local\{BF1E4DC6-5A2A-4118-A370-62A931DC4A58}
O43 - CFD: 2013/02/09 15:03:02 - [0] D -- C:\Users\antony licinio\AppData\Local\{C5841EA5-D951-4FAB-AAB1-CDCF8A658A33}
O43 - CFD: 2013/01/08 13:44:44 - [0] D -- C:\Users\antony licinio\AppData\Local\{CF850E26-A8C0-4AF2-B816-5F1C4BA4EF69}
O43 - CFD: 2012/12/23 14:59:40 - [0] D -- C:\Users\antony licinio\AppData\Local\{D1A58F69-C95E-4783-A286-FC1A6191D70E}
O43 - CFD: 2013/09/13 18:15:22 - [0] D -- C:\Users\antony licinio\AppData\Local\{D2013AEC-2285-4977-B2AC-AD87A744B344}
O43 - CFD: 2013/02/26 20:17:13 - [0] D -- C:\Users\antony licinio\AppData\Local\{D33EE8F4-9611-452E-B9D5-F617389BD789}
O43 - CFD: 2012/12/24 15:15:19 - [0] D -- C:\Users\antony licinio\AppData\Local\{D7C80973-34B7-4C46-9D72-FA2E3DE6117D}
O43 - CFD: 2013/01/28 14:36:22 - [0] D -- C:\Users\antony licinio\AppData\Local\{DA7D775F-3783-4561-8F79-B5891C6D2837}
O43 - CFD: 2012/12/31 14:55:29 - [0] D -- C:\Users\antony licinio\AppData\Local\{E9F23C5B-D199-42D6-98BB-31D8B339CE52}
O43 - CFD: 2013/01/09 14:27:42 - [0] D -- C:\Users\antony licinio\AppData\Local\{F6161459-929B-4B82-86CB-C9774EFD905F}
O43 - CFD: 2013/01/04 14:01:42 - [0] D -- C:\Users\antony licinio\AppData\Local\{FAC83C5F-373E-496B-BA19-9F1C20C88F9E}
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/09/03 13:47:01 - [] RD -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2012/12/18 20:26:34 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIConverter
O43 - CFD: 2013/08/23 13:28:52 - [] D -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eChanblard
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2013/07/25 13:57:48 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Application
O43 - CFD: 2013/01/26 16:29:36 - [] D -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OmegaSeeder 2.0
O43 - CFD: 2013/09/29 14:53:52 - [0] D -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 2014/09/03 13:47:01 - [] RD -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/11/27 16:51:41 - [] D -- C:\Users\antony licinio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Enumération des clés de registre StartupReg (SMSR) (O53) (3) - 0s
O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (...) -- ~"C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (.not file.)
O53 - SMSR:HKLM\...\startupreg\SCheck [Key] . (...) -- C:\Users\antony licinio\AppData\Roaming\SCheck\SCheck.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SSync [Key] . (...) -- C:\Users\antony licinio\AppData\Roaming\SSync\SSync.exe (.not file.)

---\\ Liste des pilotes du système (SDL) (O58) (61) - 3s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2012/10/08 20:52:52 A . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2014/01/22 16:52:19 A . (.AVAST Software - avast! Filtering TDI driver.) -- C:\Windows\System32\drivers\aswFW.sys [131232]
O58 - SDL:2015/06/28 21:20:22 A . (...) -- C:\Windows\System32\drivers\aswHwid.sys [29168]
O58 - SDL:2015/06/28 21:20:22 A . (.Avast Software s.r.o. - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [89944]
O58 - SDL:2015/06/28 21:20:21 A . (.Avast Software s.r.o. - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528]
O58 - SDL:2015/06/28 21:20:22 A . (...) -- C:\Windows\System32\drivers\aswRvrt.sys [65736]
O58 - SDL:2015/06/28 21:19:25 A . (.Avast Software s.r.o. - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1047320]
O58 - SDL:2015/06/28 21:30:01 A . (.Avast Software s.r.o. - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys [442264]
O58 - SDL:2015/06/28 21:20:25 A . (.Avast Software s.r.o. - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [137288]
O58 - SDL:2015/06/28 21:20:23 A . (...) -- C:\Windows\System32\drivers\aswVmm.sys [272248]
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2013/05/23 08:39:23 A . (.ThreatTrack Security - gfiark64.sys.) -- C:\Windows\System32\drivers\gfiark.sys [41032]
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2010/11/20 15:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2012/01/18 08:44:28 A . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Dr.) -- C:\Windows\System32\drivers\lvrs64.sys [351136]
O58 - SDL:2012/01/18 08:44:36 A . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\System32\drivers\lvuvc64.sys [4865568]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2013/02/19 22:32:18 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [13531936]
O58 - SDL:2009/06/10 22:35:35 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvm62x64.sys [408960]
O58 - SDL:2010/08/12 12:07:50 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvmf6264.sys [350952]
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2008/06/16 04:00:00 N . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [55024]
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/11/17 14:13:08 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2037408]
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/14 02:00:40 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208]
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2015/07/09 20:57:10 A . (...) -- C:\Windows\System32\drivers\TrueSight.sys [35064]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (1) - 24s
O61 - LFC: 2015/07/09 20:56:14 A . (..) -- C:\Users\antony licinio\Desktop\scream\RogueKiller(1).exe [18070088]

---\\ Associations Shell Spawning (O67) (9) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

---\\ Menu de démarrage Internet (SMI) (O68) (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (4) - 6s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {814C76CB-2623-43F4-AAD0-58A0E5190A20} - (Orange) - http://r.orange.fr/
O69 - SBI: SearchScopes [HKCU] {A540D69B-1CD5-44FA-9B2A-DFEA5EBD97F1} - (uStart) - http://www.ustart.org/
O69 - SBI: SearchScopes [HKCU] {F8464C02-736B-40A1-8D2C-144DB0BEA8B0} - (Bing) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2477536]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]

---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) (1) - 5s
[MD5.] [WIS][2012/12/18 16:53:14] (.Boxore OU. - Windows Installer XML (3.5.2519.0).) -- C:\Windows\Installer\35e2b6.msi [45056] =>PUP.Optional.Boxore

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (18) - 20s
SS - Demand [2008/12/08 16:16:56] [ 169312] Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) . (.Adobe Systems Incorporated.) - c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
SS - Demand [2015/07/09 20:53:01] [ 268976] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2015/06/28 21:19:52] [ 343336] Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - Auto [2014/03/17 14:07:47] [ 113704] avast! Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SS - Demand [2012/12/18 14:07:59] [ 651720] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Macrovision Europe Ltd..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SR - Auto [2009/08/11 02:01:04] [ 626208] ForceWare Intelligent Application Manager (IAM) (ForceWare Intelligent Application Manager (IAM)) . (.Copyright (c) 2001-2009 NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
SR - Auto [2009/08/28 11:38:58] [ 1150496] GRegService (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
SS - Auto [2013/08/17 20:57:11] [ 136176] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2013/08/17 20:57:11] [ 136176] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/07/09 21:52:53] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - Demand [2009/08/25 20:38:06] [ 935208] Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - Auto [2009/08/11 02:01:06] [ 206880] ForceWare IP service (nSvcIp) . (.Copyright (c) 2001-2009 NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
SR - Auto [// ::] [ 878368] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - Auto [2013/02/19 22:32:20] [ 1259296] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - Demand [2009/08/29 03:05:56] [ 44312] Oberon Media Game Console service (OberonGameConsoleService) . (.Copyright © 2009.) - C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe
SS - Auto [2015/02/18 20:11:32] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - Auto [2012/01/18 08:44:52] [ 450848] (UMVPFSrv) . (.Logitech Inc..) - C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
SR - Auto [2009/07/04 04:47:12] [ 240160] Updater Service (Updater Service) . (.Acer.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

---\\ Scan Additionnel (O88) (4) - 0s
HKLM\SOFTWARE\Wow6432Node\BrowseSmart =>PUP.Optional.BrowseSmart
HKLM\SOFTWARE\Wow6432Node\SPPDCOM =>PUP.Optional.PCSpeedUp
HKCU\SOFTWARE\BrowseSmart =>PUP.Optional.BrowseSmart
C:\Windows\Installer\35e2b6.msi =>PUP.Optional.Boxore

---\\ Récapitulatif des détections trouvées sur votre station (3) - 0s
http://www.nicolascoolman.fr/pup-browsesmart/ =>PUP.Optional.BrowseSmart
http://www.nicolascoolman.fr/rogue-pcspeedup/ =>PUP.Optional.PCSpeedUp
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore

~ End of the scan, 49566 items in 121 seconds (788)(0)()

Publicité


Signaler le contenu de ce document

Publicité