Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.9.17.142 Par Nicolas Coolman (2015/09/17)
~ Démarré par Administrateur (Administrator) (2015/09/18 09:20:21)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Administrateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Administrateur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v45.0.2454.93
MFIE: Mozilla Firefox 40.0.3 (x86 fr) v40.0.3
MSIE: Internet Explorer v11.0.9600.18015
---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Logiciels de protection (3) - 6s
Microsoft Security Client v4.8.0204.0
Microsoft Security Essentials v4.8.204.0
Windows Defender W7 (Deactivate)
---\\ Logiciels de protection et autres (Superflus) (1) - 6s
SUPERAntiSpyware v4.52.1000
---\\ Surveillance de Logiciels (2) - 6s
Adobe Flash Player 18 NPAPI
Adobe Reader XI
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 16 Model 6 Stepping 2, AuthenticAMD
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3144.872 MB (46% free)
~ System Restore: Activé (Enable)
~ System drive C: has 94 GB free of 315 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: WIN-8C5VIQR11KH
~ User Name: Administrateur
~ Logged in as Administrator
---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 94 GB free of 315 GB (System)
~ Drive D: has 11 GB free of 199 GB
~ Drive E: has 67 GB free of 200 GB
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 4s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2616320] ©
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [96256] ©
[MD5.A8C80A92549AFDD6891C8159D4C0A107] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1951232] ©
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [304128] ©
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [193536] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\Windows\System32\dnsapi.dll [270336] ©
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [338944] ©
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [21584] ©
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70656] ©
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [108544] ©
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [78336] ©
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [108544] ©
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [80896] ©
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [101888] ©
[MD5.A6D93B0EAED452179B7A032CE9EEC4A1] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [124416] ©
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [187904] ©
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1212352] ©
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] ©
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [133632] ©
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [71168] ©
[MD5.7FE680A3DFA421C4A8E4879AE4C5AAB0] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [74752] ©
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [245632] ©
---\\ Processus lancés (29) - 2s
[MD5.ACD4AF1B9D6E6C0C5BE470E5CF313FE6] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [814880] [PID.880] ©
[MD5.EB7C2F213A219CA9CF807B6888186070] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [217088] [PID.1168] ©
[MD5.CC7A6B8B048BB08CB446C01597D11CC5] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [453632] [PID.1612] ©
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.488] ©
[MD5.6009C7F55A71FA7F23692B92214A4CF8] - (.IObit - Performance Monitor.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [1774880] [PID.1908] ©
[MD5.50CA1A85B8316616A5B74AA0BDF94906] - (.Mediatek Inc. - MediatekRegistryWriter.) -- C:\Program Files\MediatekWiFi\Common\RaRegistry.exe [401040] [PID.2260]
[MD5.FB01D4AE207B9EFDBABFC55DC95C7E31] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713536] [PID.2504] ©
[MD5.C649F293B8B047A2694F3C615D09BF17] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [193920] [PID.2900] ©
[MD5.255E405D801CF01247390F38F92D8042] - (...) -- C:\Program Files\Unlocker\UnlockerAssistant.exe [17408] [PID.3276]
[MD5.EC7523C687CF755D17BF1BCC63BBA300] - (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1167360] [PID.3520] ©
[MD5.388F81400AFC4F32BDD2B2F581DB84E2] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [7532248] [PID.3532] ©
[MD5.146FB23964EA1A743818232CD6ADC2AC] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\Administrateur\AppData\Roaming\uTorrent\uTorrent.exe [1740880] [PID.3556]
[MD5.9FB2EE7C060AF10E60E94182779DCECE] - (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2424192] [PID.3716] ©
[MD5.03ED4235F1E428A79B86287E6AD108F4] - (.Brother Industries, Ltd. - Brother Status Monitor (Network).) -- C:\Program Files\Brother\Brmfcmon\BrMfimon.exe [143360] [PID.3936] ©
[MD5.50EE17A8C40685C98E3CE23875FFFB32] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe [297384] [PID.4328]
[MD5.2B15967270AD018024286CBA9DA1E4E7] - (.IObit - .) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe [188192] [PID.6080] ©
[MD5.E8592697D55B515379F781FAF199C73A] - (.Pelmorex Media Inc. - .) -- C:\Users\Administrateur\AppData\Local\MétéoMédia\MétéoÉclair\weathereye.exe [310920] [PID.4228]
[MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.4224] ©
[MD5.25E8FAE159E9D28B490A936FD41C53D6] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [53729824] [PID.2008] ©
[MD5.446E7480ABCAEA35E1245FE7956CC6C4] - (.Timex Corporation - Timex Data Link USB Launcher.) -- C:\Program Files\Timex\Data Link USB\DataLinkLauncher.exe [40960] [PID.4008]
[MD5.FC8B588E9BBC070C411136554A9AA56E] - (.Y'z@Home - Attach drop shadow to windows..) -- C:\Program Files\Y'z Shadow\YzShadow.exe [151552] [PID.3368]
[MD5.57DDC4D43C25DFB9B4B0A50AB760AB6F] - (...) -- C:\Program Files\EssentialPIM\EssentialPIM.exe [17127792] [PID.4956]
[MD5.0550FBCEE76B6B8BD0045C898394E728] - (.Pierre TORRIS - Sauvegarde et restauration du bureau.) -- C:\Program Files\IcoSauve\IcoSauve.exe [131072] [PID.2384] ©
[MD5.043E2C2382D21C3353F4E06BE5276D30] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe [444840] [PID.2908]
[MD5.05299546F243159CB8A42906ACB219A8] - (.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe [377000] [PID.7064] ©
[MD5.B9489FDA75E51186F408B7D2963EBCC4] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\program files\mozilla firefox\plugin-container.exe [277672] [PID.6416] ©
[MD5.61AD62A4A403B570D16473715A2989EF] - (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe [3423944] [PID.7888] ©
[MD5.61AD62A4A403B570D16473715A2989EF] - (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe [3423944] [PID.5680] ©
[MD5.F34EB03BC5D8193927A74CD1550E81F4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Administrateur\Downloads\ZHPDiag3.exe [1932800] [PID.7144] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (10) - 0s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [boadgeojelhgndaghljhdicfkmllpafd] Google Cast
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [fopdddcinljmpmioaklghcalngfhbaen] Ads Removal
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (9) - 1s
M0 - MFSP: prefs.js [Administrateur - ctorlxpx.default] http://www.google.com
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\ctorlxpx.default\extensions\client@anonymox.net.xpi
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\ctorlxpx.default\extensions\vwof@drev.com.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.androidapps - Ads Removal.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\ctorlxpx.default\extensions\adremoveext@adremoveext.net
P2 - EXT: (.IObit - Advanced SystemCare Surfing Protection.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\ctorlxpx.default\extensions\iobitascsurfingprotection@iobit.com ©
P2 - EXT: (.Michael Volz - EPUBReader.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\ctorlxpx.default\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (7) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = google.ca
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8888;https=127.0.0.1:8888 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (7) - 0s
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll ©
O2 - BHO: Groove GFS Browser Helper - {4DB74D06-491C-440D-305E-012400990F3E} . (...) -- C:\Windows\System32\cmmifw.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll ©
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: (no name) - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} (Orphean)
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - Advanced SystemCare 8 ASCPlugin_Protection.) -- C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll ©
---\\ Applications lancées au démarrage du système (22) - 0s
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe ©
O4 - HKLM\..\Run: [UnlockerAssistant] . (...) -- C:\Program Files\Unlocker\UnlockerAssistant.exe
O4 - HKLM\..\Run: [BrMfcWnd] . (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe ©
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe ©
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Administrateur\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe ©
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O4 - HKCU\..\Run: [Line] . (.LINE Corporation - LINE.) -- C:\Program Files\Naver\LINE\Line.exe ©
O4 - HKCU\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - .) -- C:\Users\Administrateur\AppData\Local\MétéoMédia\MétéoÉclair\weathereye.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe ©
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-1618560975-2108873382-3749321181-500\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Administrateur\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-1618560975-2108873382-3749321181-500\..\Run: [SUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe ©
O4 - HKUS\S-1-5-21-1618560975-2108873382-3749321181-500\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O4 - HKUS\S-1-5-21-1618560975-2108873382-3749321181-500\..\Run: [Line] . (.LINE Corporation - LINE.) -- C:\Program Files\Naver\LINE\Line.exe ©
O4 - HKUS\S-1-5-21-1618560975-2108873382-3749321181-500\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - .) -- C:\Users\Administrateur\AppData\Local\MétéoMédia\MétéoÉclair\weathereye.exe
O4 - HKUS\S-1-5-21-1618560975-2108873382-3749321181-500\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe ©
O4 - HKUS\S-1-5-21-1618560975-2108873382-3749321181-500\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe ©
---\\ Modification Domaine/Adresses DNS (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 72.0.240.16 72.0.240.17 72.0.240.110
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 10.0.10.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 72.0.240.16 72.0.240.17 72.0.240.110
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 10.0.10.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 72.0.240.16 72.0.240.17 72.0.240.110
---\\ Protocole additionnel (23) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\Program Files\Common Files\microsoft shared\Web Components\11\OWC11.DLL ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL ©
---\\ Liste des services NT non Microsoft et non désactivés (7) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe ©
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: MediatekRegistryWriter (MediatekRegistryWriter) . (.Mediatek Inc. - MediatekRegistryWriter.) - C:\Program Files\MediatekWiFi\Common\RaRegistry.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe ©
---\\ Tâches planifiées en automatique (30) - 5s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.6009C7F55A71FA7F23692B92214A4CF8] [APT] [ASC8_PerformanceMonitor] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [1774880] ©
[MD5.E2405E793004B179C99D05331635CAF1] [APT] [ASC8_SkipUac_Administrateur] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [5425440] ©
[MD5.A230678B227A36FF6A7B5E3DEF198750] [APT] [Driver Booster SkipUAC (Administrateur)] (.IObit.) -- C:\Program Files\IObit\Driver Booster\DriverBooster.exe [4435264] ©
[MD5.A230678B227A36FF6A7B5E3DEF198750] [APT] [Driver Booster SkipUAC (SystŠme)] (.IObit.) -- C:\Program Files\IObit\Driver Booster\DriverBooster.exe [4435264] ©
[MD5.0AEEF3E86850ADF3626DA01CE7E08D1E] [APT] [Driver Booster Update] (.IObit.) -- C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [1440576] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.0A6B46C7DF4CC23C106E7494321AE5F3] [APT] [Uninstaller_SkipUac_Administrateur] (.IObit.) -- C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [8032544] ©
[MD5.0A6B46C7DF4CC23C106E7494321AE5F3] [APT] [Uninstaller_SkipUac_Administrator] (.IObit.) -- C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [8032544] ©
[MD5.00000000000000000000000000000000] [APT] [{4DBA7BCA-2A85-4287-87D3-4E06E3921CFE}] (...) -- C:\Program Files\Ralink\Common\RaUI.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{6661260C-0CB4-44B3-88A3-BE9C2D8A8652}] (...) -- C:\Program Files\Ralink\Common\RaUI.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{694A08B3-FABF-46F8-B572-B1ECB73A587C}] (...) -- C:\Program Files\Total Video Converter\tvcshell.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C2C02458-E70A-41C4-8C74-3121A097B00D}] (...) -- C:\Program Files\Ralink\Common\RaUI.exe (.not file.) [0]
[MD5.05299546F243159CB8A42906ACB219A8] [APT] [{D2BE26C9-A1AF-4B3D-B7FA-E34F1B2E80B4}] (.Mozilla Corporation.) -- c:\program files\mozilla firefox\firefox.exe [377000] ©
[MD5.043E2C2382D21C3353F4E06BE5276D30] [APT] [{F546DDC1-7DFD-409B-8C5E-A0982D4383E4}] (.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\Bin\IncMail.exe [444840]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1054] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1058] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3942] ©
O39 - APT: ASC8_PerformanceMonitor - (.IObit.) -- C:\Windows\System32\Tasks\ASC8_PerformanceMonitor [3204] ©
O39 - APT: ASC8_SkipUac_Administrateur - (.IObit.) -- C:\Windows\System32\Tasks\ASC8_SkipUac_Administrateur [2892] ©
O39 - APT: Driver Booster SkipUAC (Administrateur) - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster SkipUAC (Administrateur) [2894] ©
O39 - APT: Driver Booster Update - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster Update [3196] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3802] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4054] ©
O39 - APT: Uninstaller_SkipUac_Administrateur - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrateur [2924] ©
O39 - APT: Uninstaller_SkipUac_Administrator - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator [2892] ©
---\\ Logiciels installés (91) - 9s
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM] -- 7-Zip
O42 - Logiciel: Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1 - (.Garmin.) [HKLM] -- 98157A226B40B173301B0F53C8E98C47805D5152 ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM] -- Advanced SystemCare 8_is1 ©
O42 - Logiciel: Ant Renamer - (.Ant Software.) [HKLM] -- Ant Renamer 2_is1
O42 - Logiciel: Audacity 1.2.6 - (...) [HKLM] -- Audacity_is1
O42 - Logiciel: Avidemux 2.6 - 32 bits (32-bit) - (...) [HKLM] -- Avidemux 2.6 - 32 bits
O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM] -- AVS Update Manager_is1 ©
O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Software Navigator_is1 ©
O42 - Logiciel: AVS Video Converter 8 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Video Converter 7_is1 ©
O42 - Logiciel: Big Kahuna Reef Deluxe - (.Zylom Games.) [HKLM] -- Big Kahuna Reef Deluxe ©
O42 - Logiciel: Save.ca Print-At-Home - (.Metroland Media Group Ltd.) [HKLM] -- ca.save.print-at-home-signed
O42 - Logiciel: Canon SELPHY CP900 - (...) [HKLM] -- Canon SELPHY CP900
O42 - Logiciel: Chuzzle Deluxe - (.Zylom Games.) [HKLM] -- Chuzzle Deluxe ©
O42 - Logiciel: ComicRack v0.9.176 - (.cYo Soft.) [HKLM] -- ComicRack
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM] -- DivX Setup ©
O42 - Logiciel: Driver Booster 2.3 - (.IObit.) [HKLM] -- Driver Booster_is1 ©
O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1 ©
O42 - Logiciel: DVDFab 6.2.0.5 (11/11/2009) - (.Fengtao Software Inc..) [HKLM] -- DVDFab 6_is1 ©
O42 - Logiciel: EaseUS Partition Master 9.1.1 Home Edition - (.EaseUS.) [HKLM] -- EaseUS Partition Master Home Edition_is1 ©
O42 - Logiciel: EssentialPIM - (.Astonsoft Ltd.) [HKLM] -- EssentialPIM
O42 - Logiciel: Express Zip - (.NCH Software.) [HKLM] -- ExpressZip ©
O42 - Logiciel: Extract-XISO -- GUI by Huge - (...) [HKLM] -- Extract-XISO -- GUI by Huge
O42 - Logiciel: Free Audio Converter version 5.0.60.713 - (.DVDVideoSoft Ltd..) [HKLM] -- Free Audio Converter_is1 ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: IcoSauve - (.Pierre TORRIS.) [HKLM] -- IcoSauve_is1 ©
O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM] -- ImgBurn
O42 - Logiciel: IncrediMail 2.5 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM] -- IObit Surfing Protection_is1 ©
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall ©
O42 - Logiciel: JDiskReport 1.4.0 - (.JGoodies Karsten Lentzsch.) [HKLM] -- JDiskReport 1.4.0
O42 - Logiciel: K-Lite Codec Pack 9.8.5 (Basic) - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: LimeWire 5.6.2 - (.Lime Wire, LLC.) [HKLM] -- LimeWire
O42 - Logiciel: LINE - (.LINE Corporation.) [HKLM] -- LINE ©
O42 - Logiciel: Luxor 2 Deluxe - (.Zylom Games.) [HKLM] -- Luxor 2 Deluxe ©
O42 - Logiciel: Luxor Deluxe - (.Zylom Games.) [HKLM] -- Luxor Deluxe ©
O42 - Logiciel: Magentic - (.IncrediMail Ltd..) [HKLM] -- Magentic =>Toolbar.Magentic
O42 - Logiciel: MediaCoder 0.8.36.5757 - (.Mediatronic.) [HKLM] -- MediaCoder
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client ©
O42 - Logiciel: Mozilla Firefox 40.0.3 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 40.0.3 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService ©
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers ©
O42 - Logiciel: PC Wizard 2013.2.12 - (.CPUID.) [HKLM] -- PC Wizard 2013_is1 ©
O42 - Logiciel: Pixillion Image Converter - (.NCH Software.) [HKLM] -- Pixillion ©
O42 - Logiciel: PowerISO - (...) [HKLM] -- PowerISO
O42 - Logiciel: SKIP BO Castaway Caper - (.Adnan_Boy 2008.) [HKLM] -- SKIP BO Castaway Caper1.0
O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM] -- Smart Defrag 4_is1 ©
O42 - Logiciel: Static IncrediMail Backup 2.9 - (.StaticBackup Inc..) [HKLM] -- Static IncrediMail Backup_is1
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM] -- Unlocker ©
O42 - Logiciel: Visual MP3 To Wav Converter 1.2 - (.iProgram Development.) [HKLM] -- Visual MP3 To Wav Converter_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM] -- WinRAR archiver
O42 - Logiciel: Y'z Shadow - (.M.Yamaguchi.) [HKLM] -- Y'z Shadow
O42 - Logiciel: Yahtzee Deluxe - (.Zylom Games.) [HKLM] -- Yahtzee Deluxe ©
O42 - Logiciel: Yahtzee Texas Hold'em - (.Zylom Games.) [HKLM] -- Yahtzee Texas Hold'em ©
O42 - Logiciel: Zuma Deluxe - (.Zylom Games.) [HKLM] -- Zuma Deluxe ©
O42 - Logiciel: Zuma's Revenge Deluxe - (.Zylom Games.) [HKLM] -- Zuma's Revenge Deluxe ©
O42 - Logiciel: SketchUp 8 - (.Trimble Navigation Limited.) [HKLM] -- {00280C97-E028-4563-8435-2BCA2786D03F}
O42 - Logiciel: IPCSearch version 1.0.15 - (...) [HKLM] -- {082304E1-3A6E-4027-AABC-22BE6852AD74}_is1
O42 - Logiciel: Brother MFL-Pro Suite MFC-495CW - (.Brother Industries, Ltd..) [HKLM] -- {0A02D347-5E53-48A5-BC49-1469393103FA} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: Torrent all to MP3 Converter 1.87 - (.TorrentRockyou, Inc..) [HKLM] -- {22F4CEFD-E949-4302-95F4-E940FD3B90E3}_is1
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} ©
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} ©
O42 - Logiciel: Streaming Video Recorder V4.8.6 - (.APOWERSOFT LIMITED.) [HKLM] -- {2CD65167-671F-49A3-B6C7-3B919DF028E2}_is1 ©
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM] -- {5C083736-2916-4D06-BCE9-4F981EA53AEC}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} ©
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {6E3939AE-9996-4D07-9A30-14C78AE93576} ©
O42 - Logiciel: Save.ca Print-At-Home - (.Metroland Media Group Ltd.) [HKLM] -- {7155FE69-FC08-D5FB-195B-00AD71D05081}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {7B77622E-DE90-48EA-B2C7-227B1DE58A01} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: Timex Data Link USB - (...) [HKLM] -- {8FF6231F-D670-4AFD-9512-957515E2E1DF}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM] -- {933B4015-4618-4716-A828-5289FC03165F} ©
O42 - Logiciel: ComicConverter - (.Jonty Lovell.) [HKLM] -- {97E2BE57-7AB2-48A2-8C48-039EB5516CBB}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.) [HKLM] -- {ABA5E381-EC46-425C-86C5-5CD15BBFB4BF} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: SUPERAntiSpyware - (.SUPERAntiSpyware.com.) [HKLM] -- {CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: PDF to Word - (.Quick PDF.) [HKLM] -- {E6CBC979-E613-49E6-A37B-3C342DE35235}_is1
O42 - Logiciel: Garmin MapInstall - (.Garmin Ltd or its subsidiaries.) [HKLM] -- {F0D44E64-51EE-4888-A1FD-F13108B75A43} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: GitHub - 1 - (.GitHub, Inc..) [HKCU] -- 5f7eb300e2ea4ebf
O42 - Logiciel: MétéoÉclair - (...) [HKCU] -- MétéoÉclair
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer ©
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent
---\\ HKCU & HKLM Software Keys (172) - 9s
HKLM\SOFTWARE\7-Zip
HKLM\SOFTWARE\81860E31
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\ADSRemoval
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\AMD
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\ASUS
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\Avidemux 2.6 - 32 bits
HKLM\SOFTWARE\AVS4YOU
HKLM\SOFTWARE\Brother
HKLM\SOFTWARE\Brother Industries, Ltd.
HKLM\SOFTWARE\Canon
HKLM\SOFTWARE\CLSID
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\D227B07F
HKLM\SOFTWARE\DIOC
HKLM\SOFTWARE\DivX
HKLM\SOFTWARE\Dolby
HKLM\SOFTWARE\DTS
HKLM\SOFTWARE\DVDFab
HKLM\SOFTWARE\DVDVideoSoft
HKLM\SOFTWARE\EnigmaSoftwareGroup
HKLM\SOFTWARE\Filseclab
HKLM\SOFTWARE\focusbase =>PUP.Optional.Focusbase
HKLM\SOFTWARE\Garmin
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\GSLLC
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\ImgBurn
HKLM\SOFTWARE\ImInstaller =>Toolbar.IncrediMail
HKLM\SOFTWARE\IncrediMail
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\iTinySoft
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\Knowles
HKLM\SOFTWARE\LAV
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\LimeWire
HKLM\SOFTWARE\LINE Corporation
HKLM\SOFTWARE\Logishrd
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Magentic =>Toolbar.Magentic
HKLM\SOFTWARE\MediaCoder
HKLM\SOFTWARE\MediatekWiFi
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Nahimic
HKLM\SOFTWARE\Naver
HKLM\SOFTWARE\NCH Software
HKLM\SOFTWARE\Nuance
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OldTimer Tools
HKLM\SOFTWARE\PopCap
HKLM\SOFTWARE\PowerISO
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Reflexive Entertainment
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SlimWare Utilities Inc
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SonicFocus
HKLM\SOFTWARE\SoundResearch
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\SUPERAntiSpyware.com
HKLM\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\The Silicon Realms Toolworks
HKLM\SOFTWARE\Timex
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\YaSoft
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\81860E31
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppData
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\AVS4YOU
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Bytescout
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\CC
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\CPUID
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\D227B07F
HKCU\SOFTWARE\DivX
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DriverToolkit =>PUP.Optional.DriverToolkit
HKCU\SOFTWARE\DVD Shrink
HKCU\SOFTWARE\DVDFab
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\EaseUS
HKCU\SOFTWARE\EFD Software
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\FreeMp3WmaConverter
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GameHouse
HKCU\SOFTWARE\Garmin
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\ImgBurn
HKCU\SOFTWARE\ImInstaller =>Toolbar.IncrediMail
HKCU\SOFTWARE\IncrediMail
HKCU\SOFTWARE\Inno
HKCU\SOFTWARE\Innovative Solutions
HKCU\SOFTWARE\IObit
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LINE Corporation
HKCU\SOFTWARE\LogiShrd
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magentic =>Toolbar.Magentic
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\MMTWN
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MyCam
HKCU\SOFTWARE\Naver
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Pierre Torris
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RTSoftwares
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Squeaky =>PUP.Optional.Squeaky
HKCU\SOFTWARE\Static IncrediMail Backup 2.9f
HKCU\SOFTWARE\StaticBackup Inc
HKCU\SOFTWARE\Streaming Video Recorder
HKCU\SOFTWARE\SUPERAntiSpyware.com
HKCU\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKCU\SOFTWARE\SWiSHzone.com
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Xilisoft
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zylom
HKCU\SOFTWARE\Zyrax Software
HKCU\SOFTWARE\AppDataLow\FDA
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\adawarebp =>PUP.Optional.ToolbarCleaner
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contenu des dossiers Programmes (310) - 10s
O43 - CFD: 2014/08/06 10:54:38 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 2014/08/28 21:09:04 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2015/04/29 07:17:00 - [] D -- C:\Program Files\Ant Renamer
O43 - CFD: 2015/02/21 09:38:55 - [] D -- C:\Program Files\Apowersoft
O43 - CFD: 2014/08/06 14:12:30 - [] D -- C:\Program Files\Audacity
O43 - CFD: 2015/08/22 08:04:57 - [] D -- C:\Program Files\Avidemux 2.6 - 32 bits
O43 - CFD: 2015/03/25 17:35:17 - [] D -- C:\Program Files\AVS4YOU
O43 - CFD: 2014/08/26 10:27:04 - [] D -- C:\Program Files\Brother
O43 - CFD: 2014/09/06 09:55:36 - [] D -- C:\Program Files\ComicRack
O43 - CFD: 2015/09/04 10:13:43 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2015/02/17 15:22:31 - [] D -- C:\Program Files\CPUID
O43 - CFD: 2015/06/22 21:04:38 - [] D -- C:\Program Files\DIFX
O43 - CFD: 2014/11/07 11:18:13 - [] D -- C:\Program Files\DivX
O43 - CFD: 2015/01/02 08:42:42 - [] D -- C:\Program Files\DriverToolkit =>PUP.Optional.DriverToolkit
O43 - CFD: 2014/08/11 07:34:35 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2015/04/03 11:46:24 - [] D -- C:\Program Files\DVD Shrink
O43 - CFD: 2014/08/06 14:13:44 - [] D -- C:\Program Files\DVDFab 6
O43 - CFD: 2015/07/20 15:31:10 - [] D -- C:\Program Files\DVDVideoSoft
O43 - CFD: 2014/08/06 14:14:42 - [] D -- C:\Program Files\EaseUS
O43 - CFD: 2015/08/24 01:02:39 - [0] D -- C:\Program Files\EasiestSoft
O43 - CFD: 2015/08/22 19:03:53 - [0] D -- C:\Program Files\Elex-tech =>PUP.Optional.Elex
O43 - CFD: 2014/08/06 14:14:59 - [] D -- C:\Program Files\EssentialPIM
O43 - CFD: 2014/12/20 13:23:15 - [] D -- C:\Program Files\Extract-XISO
O43 - CFD: 2014/08/06 09:04:23 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2015/06/29 08:10:53 - [] D -- C:\Program Files\Garmin
O43 - CFD: 2015/05/08 01:02:41 - [] D -- C:\Program Files\Google
O43 - CFD: 2015/09/14 19:25:30 - [0] D -- C:\Program Files\GUM1AD4.tmp
O43 - CFD: 2015/02/03 17:56:57 - [0] D -- C:\Program Files\GUM7965.tmp
O43 - CFD: 2015/05/17 12:04:03 - [0] D -- C:\Program Files\GUM835E.tmp
O43 - CFD: 2015/08/28 04:17:03 - [0] D -- C:\Program Files\GUMC82E.tmp
O43 - CFD: 2015/07/15 21:10:53 - [0] D -- C:\Program Files\GUME0C3.tmp
O43 - CFD: 2014/08/06 23:03:30 - [] D -- C:\Program Files\IcoSauve
O43 - CFD: 2014/11/13 17:43:32 - [] D -- C:\Program Files\ImgBurn
O43 - CFD: 2014/08/07 09:02:49 - [] D -- C:\Program Files\IncrediMail
O43 - CFD: 2014/12/12 22:58:22 - [] D -- C:\Program Files\Innovative Solutions
O43 - CFD: 2014/12/14 02:02:28 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2015/09/17 04:30:28 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/04/19 05:40:03 - [] D -- C:\Program Files\IObit
O43 - CFD: 2014/11/17 21:12:32 - [] D -- C:\Program Files\IPCSearch
O43 - CFD: 2015/04/23 23:34:06 - [] D -- C:\Program Files\Java
O43 - CFD: 2014/08/06 14:02:16 - [] D -- C:\Program Files\jeux
O43 - CFD: 2014/12/12 17:15:07 - [] D -- C:\Program Files\JGoodies
O43 - CFD: 2014/09/06 09:09:20 - [] D -- C:\Program Files\Jonty Lovell
O43 - CFD: 2014/08/06 23:04:16 - [] D -- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 2014/08/06 23:05:27 - [] D -- C:\Program Files\LimeWire
O43 - CFD: 2014/08/07 09:14:42 - [] D -- C:\Program Files\Magentic =>Toolbar.Magentic
O43 - CFD: 2015/08/10 10:30:15 - [] D -- C:\Program Files\MediaCoder
O43 - CFD: 2014/11/27 19:14:16 - [] D -- C:\Program Files\MediatekWiFi
O43 - CFD: 2009/07/14 05:01:21 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2015/09/17 17:36:54 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2015/05/16 09:59:50 - [] D -- C:\Program Files\Microsoft Security Client
O43 - CFD: 2015/09/05 23:00:17 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2014/08/10 11:03:02 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/08/29 06:55:45 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/08/29 06:55:45 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 00:52:30 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2015/09/17 16:52:41 - [] D -- C:\Program Files\MSECache
O43 - CFD: 2014/08/11 13:27:51 - [] D -- C:\Program Files\Naver
O43 - CFD: 2015/06/22 13:59:10 - [] D -- C:\Program Files\NCH Software
O43 - CFD: 2014/08/06 10:54:12 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 2014/11/13 17:33:48 - [] D -- C:\Program Files\PDF to Word
O43 - CFD: 2015/02/20 07:40:43 - [0] D -- C:\Program Files\PixtorioViewer
O43 - CFD: 2014/08/06 10:58:32 - [] D -- C:\Program Files\PowerISO
O43 - CFD: 2014/12/13 16:51:52 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/07/14 00:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2015/07/16 17:32:30 - [] D -- C:\Program Files\Save.ca Print-At-Home
O43 - CFD: 2015/09/04 10:13:43 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2014/08/07 09:14:51 - [] D -- C:\Program Files\Static IncrediMail Backup
O43 - CFD: 2014/08/07 08:46:02 - [] D -- C:\Program Files\SUPERAntiSpyware
O43 - CFD: 2014/08/10 22:07:18 - [] D -- C:\Program Files\sweetpacks bundle uninstaller_Skype_1783218 =>PUP.Optional.SweetIM
O43 - CFD: 2014/08/06 14:11:59 - [] D -- C:\Program Files\Timex
O43 - CFD: 2015/07/20 15:25:52 - [] D -- C:\Program Files\Torrent all to MP3 Converter
O43 - CFD: 2009/07/14 00:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/08/12 10:37:45 - [] D -- C:\Program Files\Unlocker
O43 - CFD: 2014/08/06 14:17:38 - [] D -- C:\Program Files\uTorrent
O43 - CFD: 2014/08/06 14:05:30 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2015/08/27 20:41:15 - [] D -- C:\Program Files\Virtual Console
O43 - CFD: 2014/09/26 14:11:21 - [] D -- C:\Program Files\Visual MP3 To Wav Converter
O43 - CFD: 2014/08/11 15:06:34 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2015/09/17 04:30:28 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2014/08/10 21:55:00 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 2014/08/11 07:34:35 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2015/06/10 07:53:07 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/08/06 09:04:23 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2014/08/11 07:34:35 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2014/08/11 07:34:35 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2014/11/13 17:43:32 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2014/08/06 10:53:39 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/04/04 01:01:49 - [0] D -- C:\Program Files\Xilisoft
O43 - CFD: 2014/08/07 08:47:06 - [] D -- C:\Program Files\Y'z Shadow
O43 - CFD: 2014/08/06 10:54:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2014/08/11 15:13:06 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/08/06 08:59:29 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/27 09:34:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
O43 - CFD: 2015/04/29 07:17:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Renamer
O43 - CFD: 2015/02/20 07:37:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
O43 - CFD: 2015/07/20 15:17:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2014/08/26 10:13:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
O43 - CFD: 2014/10/28 22:37:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon SELPHY CP900
O43 - CFD: 2014/09/06 09:55:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ComicRack
O43 - CFD: 2015/02/17 15:22:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2014/11/07 11:17:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
O43 - CFD: 2015/04/17 10:46:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
O43 - CFD: 2015/04/03 11:46:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
O43 - CFD: 2014/08/06 14:13:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 6
O43 - CFD: 2015/07/20 15:31:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 2014/08/06 14:14:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 9.1.1 Home Edition
O43 - CFD: 2014/08/06 14:15:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EssentialPIM
O43 - CFD: 2014/12/20 13:23:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extract-XISO -- GUI by Huge
O43 - CFD: 2015/01/18 05:09:13 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Audio Pack
O43 - CFD: 2015/07/04 07:41:32 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/06/29 08:10:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
O43 - CFD: 2014/12/06 14:50:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphics Related Programs
O43 - CFD: 2014/08/06 23:03:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IcoSauve
O43 - CFD: 2014/10/20 22:04:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
O43 - CFD: 2015/07/04 07:41:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail
O43 - CFD: 2015/06/27 09:27:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 2014/11/17 21:12:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPCSearch
O43 - CFD: 2014/11/06 22:53:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2014/12/12 17:15:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.0
O43 - CFD: 2014/08/06 23:04:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2014/08/06 23:05:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LimeWire
O43 - CFD: 2015/03/20 15:37:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LINE
O43 - CFD: 2014/08/07 09:14:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magentic by IncrediMail =>Toolbar.Magentic
O43 - CFD: 2009/07/14 00:42:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/12/12 19:47:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mediatek Wireless
O43 - CFD: 2014/08/07 21:00:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/09/05 23:00:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2014/12/06 14:50:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
O43 - CFD: 2014/11/13 17:40:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF to Word
O43 - CFD: 2014/08/06 10:58:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 2014/08/06 23:08:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 8
O43 - CFD: 2014/08/06 11:10:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SKIP BO Castaway Caper
O43 - CFD: 2015/09/04 10:13:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/04/17 22:19:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
O43 - CFD: 2014/12/29 01:41:39 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/08/07 09:14:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Static IncrediMail Backup
O43 - CFD: 2014/08/07 08:45:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
O43 - CFD: 2015/06/29 08:25:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Switch Off
O43 - CFD: 2009/07/14 05:00:32 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/08/06 14:11:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Timex Data Link USB
O43 - CFD: 2015/07/20 15:25:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torrent all to MP3 Converter
O43 - CFD: 2015/06/22 13:59:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Utilities
O43 - CFD: 2014/08/07 20:10:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2014/09/26 14:11:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual MP3 To Wav Converter
O43 - CFD: 2014/08/06 10:53:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/23 17:45:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom Games
O43 - CFD: 2014/08/28 21:09:13 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/04/29 07:17:00 - [] D -- C:\ProgramData\Ant Renamer
O43 - CFD: 2009/07/14 00:53:55 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/09/26 14:07:43 - [] D -- C:\ProgramData\AVS4YOU
O43 - CFD: 2014/08/10 11:09:46 - [] D -- C:\ProgramData\Brother
O43 - CFD: 2014/08/06 09:04:23 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/08/07 21:12:55 - [] D -- C:\ProgramData\c8def236363c7ce7
O43 - CFD: 2014/10/28 22:37:56 - [] HD -- C:\ProgramData\CanonCP
O43 - CFD: 2009/07/14 00:53:55 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2014/11/07 11:18:16 - [] D -- C:\ProgramData\DivX
O43 - CFD: 2009/07/14 00:53:55 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/04/03 16:24:20 - [] D -- C:\ProgramData\DVD Shrink
O43 - CFD: 2014/08/06 09:04:23 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 00:53:55 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/08/23 18:14:53 - [0] D -- C:\ProgramData\Freemake
O43 - CFD: 2015/02/08 22:40:52 - [] D -- C:\ProgramData\GameHouse
O43 - CFD: 2015/06/29 08:10:53 - [] D -- C:\ProgramData\Garmin
O43 - CFD: 2014/08/07 09:05:22 - [] D -- C:\ProgramData\IM
O43 - CFD: 2014/08/07 09:02:49 - [] D -- C:\ProgramData\IncrediMail
O43 - CFD: 2015/04/19 05:40:34 - [] D -- C:\ProgramData\IObit
O43 - CFD: 2014/11/19 14:18:36 - [] D -- C:\ProgramData\Licenses
O43 - CFD: 2014/11/19 14:18:36 - [] D -- C:\ProgramData\Logs
O43 - CFD: 2014/11/27 19:00:34 - [] D -- C:\ProgramData\Mediatek Driver
O43 - CFD: 2014/08/06 09:04:23 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/05/01 19:23:31 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/08/06 09:04:23 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/08/09 21:43:14 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/06/22 13:59:08 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 2015/01/28 12:28:01 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/11/19 14:18:45 - [] D -- C:\ProgramData\Paessler
O43 - CFD: 2015/09/17 04:30:30 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 2014/12/12 22:48:51 - [0] D -- C:\ProgramData\Ralink Driver
O43 - CFD: 2015/09/17 23:44:25 - [] D -- C:\ProgramData\RogueKiller
O43 - CFD: 2015/09/04 10:13:51 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 00:53:55 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2014/08/06 23:05:18 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2014/08/07 08:45:57 - [] D -- C:\ProgramData\SUPERAntiSpyware.com
O43 - CFD: 2014/11/28 12:13:32 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 00:53:55 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2014/08/10 21:18:45 - [] D -- C:\ProgramData\Zylom
O43 - CFD: 2014/11/13 19:57:30 - [] D -- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 2015/06/27 09:30:25 - [] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 2014/08/11 21:48:58 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2015/02/20 07:41:04 - [] D -- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 2014/09/26 15:00:31 - [] D -- C:\Program Files\Common Files\AVSMedia
O43 - CFD: 2014/10/28 22:36:36 - [] D -- C:\Program Files\Common Files\Canon
O43 - CFD: 2014/08/06 11:07:21 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2014/08/06 14:18:21 - [] D -- C:\Program Files\Common Files\DivX Shared
O43 - CFD: 2015/07/20 15:30:54 - [] D -- C:\Program Files\Common Files\DVDVideoSoft
O43 - CFD: 2014/08/06 14:11:34 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2014/11/17 20:37:51 - [] D -- C:\Program Files\Common Files\IObit
O43 - CFD: 2015/04/23 23:35:04 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 2015/09/17 17:36:54 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2009/07/13 22:37:05 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2015/09/04 10:13:43 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2009/07/13 22:37:05 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2014/08/11 07:34:31 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2014/08/09 22:09:20 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 2014/08/13 09:09:46 - [] D -- C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 2015/02/01 23:16:25 - [] D -- C:\Users\Administrateur\AppData\Roaming\Adobe
O43 - CFD: 2015/02/19 00:22:41 - [] D -- C:\Users\Administrateur\AppData\Roaming\Apowersoft
O43 - CFD: 2014/08/06 10:46:32 - [] D -- C:\Users\Administrateur\AppData\Roaming\Apple Computer
O43 - CFD: 2015/08/23 18:21:46 - [] D -- C:\Users\Administrateur\AppData\Roaming\avidemux
O43 - CFD: 2015/03/25 17:36:51 - [] D -- C:\Users\Administrateur\AppData\Roaming\AVS4YOU
O43 - CFD: 2014/08/19 04:57:38 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Brother
O43 - CFD: 2014/08/28 21:09:13 - [] D -- C:\Users\Administrateur\AppData\Roaming\ca.save.print-at-home-signed
O43 - CFD: 2015/01/15 20:41:37 - [] D -- C:\Users\Administrateur\AppData\Roaming\com.inm.fusion.PixtorioViewer
O43 - CFD: 2015/01/15 20:41:36 - [] D -- C:\Users\Administrateur\AppData\Roaming\com.inm.fusion.PixtorioViewer.744790F1545733D757EA034B675902690507C2E8.1
O43 - CFD: 2014/09/06 09:55:41 - [] D -- C:\Users\Administrateur\AppData\Roaming\cYo
O43 - CFD: 2015/01/03 10:25:22 - [] D -- C:\Users\Administrateur\AppData\Roaming\DivX
O43 - CFD: 2015/06/11 16:19:13 - [] D -- C:\Users\Administrateur\AppData\Roaming\dvdcss
O43 - CFD: 2015/07/20 15:31:23 - [] D -- C:\Users\Administrateur\AppData\Roaming\DVDVideoSoft
O43 - CFD: 2015/01/25 10:48:07 - [] D -- C:\Users\Administrateur\AppData\Roaming\EasiestSoft
O43 - CFD: 2015/08/22 00:39:19 - [] D -- C:\Users\Administrateur\AppData\Roaming\Elex-tech =>PUP.Optional.Elex
O43 - CFD: 2015/04/29 19:01:32 - [] D -- C:\Users\Administrateur\AppData\Roaming\EssentialPIM
O43 - CFD: 2015/08/17 09:11:36 - [] D -- C:\Users\Administrateur\AppData\Roaming\Free Video Joiner
O43 - CFD: 2014/09/26 19:38:34 - [] D -- C:\Users\Administrateur\AppData\Roaming\FreeAudioPack
O43 - CFD: 2015/06/22 21:04:24 - [] D -- C:\Users\Administrateur\AppData\Roaming\Garmin
O43 - CFD: 2015/08/30 23:23:06 - [] D -- C:\Users\Administrateur\AppData\Roaming\GitHub
O43 - CFD: 2015/02/08 22:40:40 - [] D -- C:\Users\Administrateur\AppData\Roaming\Identities
O43 - CFD: 2014/10/22 20:47:10 - [] D -- C:\Users\Administrateur\AppData\Roaming\ImgBurn
O43 - CFD: 2014/08/26 10:07:20 - [] D -- C:\Users\Administrateur\AppData\Roaming\InstallShield
O43 - CFD: 2015/04/17 22:19:12 - [] D -- C:\Users\Administrateur\AppData\Roaming\IObit
O43 - CFD: 2014/12/12 17:16:17 - [] D -- C:\Users\Administrateur\AppData\Roaming\JGoodies
O43 - CFD: 2014/08/12 18:10:24 - [] D -- C:\Users\Administrateur\AppData\Roaming\LavasoftStatistics
O43 - CFD: 2015/03/25 20:25:25 - [] D -- C:\Users\Administrateur\AppData\Roaming\Local Store
O43 - CFD: 2014/08/06 14:01:12 - [] D -- C:\Users\Administrateur\AppData\Roaming\Macromedia
O43 - CFD: 2015/08/10 10:29:42 - [] D -- C:\Users\Administrateur\AppData\Roaming\Mediatronic
O43 - CFD: 2015/08/30 08:24:51 - [] SD -- C:\Users\Administrateur\AppData\Roaming\Microsoft
O43 - CFD: 2014/08/06 14:18:16 - [] D -- C:\Users\Administrateur\AppData\Roaming\Mozilla
O43 - CFD: 2015/08/17 21:35:10 - [] D -- C:\Users\Administrateur\AppData\Roaming\New Version Available
O43 - CFD: 2014/10/20 22:04:19 - [] D -- C:\Users\Administrateur\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 2015/03/19 07:23:27 - [] D -- C:\Users\Administrateur\AppData\Roaming\PC-FAX TX
O43 - CFD: 2014/08/06 10:47:36 - [] D -- C:\Users\Administrateur\AppData\Roaming\ProductData
O43 - CFD: 2014/08/29 03:54:14 - [] D -- C:\Users\Administrateur\AppData\Roaming\Skip-Bo
O43 - CFD: 2015/09/18 09:19:05 - [] D -- C:\Users\Administrateur\AppData\Roaming\Skype
O43 - CFD: 2014/08/07 09:15:20 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Static IncrediMail Backup
O43 - CFD: 2015/08/31 22:27:57 - [] D -- C:\Users\Administrateur\AppData\Roaming\SteelBytes
O43 - CFD: 2014/08/07 08:45:57 - [] D -- C:\Users\Administrateur\AppData\Roaming\SUPERAntiSpyware.com
O43 - CFD: 2015/08/24 16:20:43 - [] D -- C:\Users\Administrateur\AppData\Roaming\Unity
O43 - CFD: 2015/09/18 09:17:12 - [] D -- C:\Users\Administrateur\AppData\Roaming\uTorrent
O43 - CFD: 2015/08/31 07:56:23 - [] D -- C:\Users\Administrateur\AppData\Roaming\vlc
O43 - CFD: 2014/08/06 14:14:12 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Vso
O43 - CFD: 2015/02/27 20:45:57 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Windows Live Writer
O43 - CFD: 2014/08/06 10:56:38 - [] D -- C:\Users\Administrateur\AppData\Roaming\WinRAR
O43 - CFD: 2015/04/03 10:04:11 - [] D -- C:\Users\Administrateur\AppData\Roaming\Xilisoft
O43 - CFD: 2014/08/09 20:39:33 - [] D -- C:\Users\Administrateur\AppData\Roaming\YTHE
O43 - CFD: 2015/09/18 09:20:43 - [] D -- C:\Users\Administrateur\AppData\Roaming\ZHP
O43 - CFD: 2015/02/08 22:40:40 - [] D -- C:\Users\Administrateur\AppData\Roaming\Zylom
O43 - CFD: 2015/07/15 14:56:17 - [] D -- C:\Users\Administrateur\AppData\Local\Adobe
O43 - CFD: 2014/08/06 09:04:40 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Application Data
O43 - CFD: 2014/09/05 22:11:22 - [] D -- C:\Users\Administrateur\AppData\Local\Apps
O43 - CFD: 2014/08/07 08:57:56 - [] D -- C:\Users\Administrateur\AppData\Local\Comodo
O43 - CFD: 2015/08/19 23:48:48 - [] D -- C:\Users\Administrateur\AppData\Local\CrashDumps
O43 - CFD: 2014/09/06 09:55:41 - [] D -- C:\Users\Administrateur\AppData\Local\cYo
O43 - CFD: 2015/08/30 21:23:25 - [0] D -- C:\Users\Administrateur\AppData\Local\Deployment
O43 - CFD: 2015/05/01 14:33:20 - [] D -- C:\Users\Administrateur\AppData\Local\Downloaded Installations
O43 - CFD: 2014/12/30 11:47:52 - [0] D -- C:\Users\Administrateur\AppData\Local\DriverToolkit =>PUP.Optional.DriverToolkit
O43 - CFD: 2015/09/06 10:24:25 - [] D -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/04/02 08:22:50 - [] D -- C:\Users\Administrateur\AppData\Local\emadid
O43 - CFD: 2015/06/12 19:54:19 - [0] SHD -- C:\Users\Administrateur\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/12 19:54:19 - [0] SHD -- C:\Users\Administrateur\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/12 19:54:19 - [0] SHD -- C:\Users\Administrateur\AppData\Local\EmieUserList
O43 - CFD: 2015/06/22 13:30:04 - [] D -- C:\Users\Administrateur\AppData\Local\Garmin
O43 - CFD: 2015/06/22 13:52:28 - [] D -- C:\Users\Administrateur\AppData\Local\Garmin_Ltd._or_its_subsid
O43 - CFD: 2015/08/30 23:23:07 - [] D -- C:\Users\Administrateur\AppData\Local\GitHub
O43 - CFD: 2014/09/06 21:35:39 - [] D -- C:\Users\Administrateur\AppData\Local\Google
O43 - CFD: 2015/06/11 22:10:55 - [] D -- C:\Users\Administrateur\AppData\Local\GWX
O43 - CFD: 2014/08/06 09:04:40 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Historique
O43 - CFD: 2014/08/08 11:43:38 - [] D -- C:\Users\Administrateur\AppData\Local\IM
O43 - CFD: 2014/08/11 13:29:01 - [] D -- C:\Users\Administrateur\AppData\Local\Line
O43 - CFD: 2014/08/13 11:19:36 - [] D -- C:\Users\Administrateur\AppData\Local\Macromedia
O43 - CFD: 2014/08/07 09:15:05 - [] D -- C:\Users\Administrateur\AppData\Local\Magentic =>Toolbar.Magentic
O43 - CFD: 2015/09/17 01:00:32 - [] D -- C:\Users\Administrateur\AppData\Local\Microsoft
O43 - CFD: 2015/07/30 19:58:12 - [] D -- C:\Users\Administrateur\AppData\Local\Microsoft Games
O43 - CFD: 2014/12/20 02:01:59 - [0] DC -- C:\Users\Administrateur\AppData\Local\MigWiz
O43 - CFD: 2014/08/09 21:57:08 - [] D -- C:\Users\Administrateur\AppData\Local\Mozilla
O43 - CFD: 2014/08/06 23:05:23 - [] D -- C:\Users\Administrateur\AppData\Local\MétéoMédia
O43 - CFD: 2014/08/06 10:46:07 - [] D -- C:\Users\Administrateur\AppData\Local\Programs
O43 - CFD: 2014/08/10 22:15:17 - [] D -- C:\Users\Administrateur\AppData\Local\Skype
O43 - CFD: 2015/09/18 09:20:15 - [] D -- C:\Users\Administrateur\AppData\Local\Temp
O43 - CFD: 2014/08/06 09:04:40 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/08/24 16:19:06 - [] D -- C:\Users\Administrateur\AppData\Local\Unity
O43 - CFD: 2015/02/27 20:46:10 - [] D -- C:\Users\Administrateur\AppData\Local\Windows Live
O43 - CFD: 2015/02/27 20:46:04 - [] D -- C:\Users\Administrateur\AppData\Local\Windows Live Writer
O43 - CFD: 2014/10/20 20:35:34 - [] D -- C:\Users\Administrateur\AppData\Local\XBOX360_ISO_Extract
O43 - CFD: 2015/03/03 14:48:14 - [0] D -- C:\Users\Administrateur\AppData\Local\{A881CD19-705A-4358-B877-B86A6B8F027A}
O43 - CFD: 2015/02/27 20:46:27 - [0] D -- C:\Users\Administrateur\AppData\Local\{BE844609-197C-4121-A5A2-ACD605679788}
O43 - CFD: 2015/02/27 20:46:19 - [0] D -- C:\Users\Administrateur\AppData\Local\{F1B13E80-0704-40F6-ABE3-4B2BA656B14C}
O43 - CFD: 2009/07/14 00:42:04 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/09/06 10:11:25 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/03/25 17:35:17 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2015/08/30 08:23:40 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
O43 - CFD: 2014/12/12 17:15:07 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDiskReport 1.4.0
O43 - CFD: 2014/08/06 23:05:27 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LimeWire
O43 - CFD: 2009/07/14 00:37:42 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/04/23 16:12:13 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MétéoMédia
O43 - CFD: 2015/06/22 13:59:10 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
O43 - CFD: 2014/08/06 14:00:35 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RISK
O43 - CFD: 2015/09/06 10:11:25 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/08/08 11:39:51 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 2014/08/06 10:53:39 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/23 17:42:31 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zylom Games
---\\ Enumération des clés StartupReg (5) - 0s
O53 - SMSR:HKLM\...\startupreg\Advanced SystemCare 8 [Key] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe ©
O53 - SMSR:HKLM\...\startupreg\DivXMediaServer [Key] . (.DivX, LLC - DivX Media Server Launcher.) -- C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe ©
O53 - SMSR:HKLM\...\startupreg\DivXUpdate [Key] . (.© Copyright 2000 - 2011 DivX, LLC - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe ©
O53 - SMSR:HKLM\...\startupreg\PWRISOVM.EXE [Key] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe ©
---\\ Liste des pilotes du système (78) - 34s
O58 - SDL:2009/07/13 21:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] ©
O58 - SDL:2009/07/13 21:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] ©
O58 - SDL:2009/07/13 21:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] ©
O58 - SDL:2009/07/13 21:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] ©
O58 - SDL:2011/03/11 01:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] ©
O58 - SDL:2009/07/13 21:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] ©
O58 - SDL:2011/03/11 01:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] ©
O58 - SDL:2014/04/09 22:00:50 A . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032] ©
O58 - SDL:2009/07/13 21:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] ©
O58 - SDL:2009/07/13 21:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] ©
O58 - SDL:2015/04/17 11:19:51 A . (. - ATK0110 ACPI Utility.) -- C:\Windows\System32\drivers\ASACPI.sys [13216]
O58 - SDL:2015/07/03 08:24:48 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW73.sys [77824] ©
O58 - SDL:2014/08/06 10:54:35 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [10070016] ©
O58 - SDL:2014/08/06 10:54:35 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [290304] ©
O58 - SDL:2009/07/13 18:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888] ©
O58 - SDL:2009/07/08 00:45:32 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL6.SYS [2506232] ©
O58 - SDL:2009/07/13 18:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] ©
O58 - SDL:2009/07/13 18:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] ©
O58 - SDL:2009/07/13 20:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] ©
O58 - SDL:2009/07/13 18:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] ©
O58 - SDL:2009/07/13 18:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] ©
O58 - SDL:2009/07/13 18:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] ©
O58 - SDL:2009/07/13 18:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] ©
O58 - SDL:2009/07/13 21:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] ©
O58 - SDL:2009/07/13 21:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] ©
O58 - SDL:2009/07/13 21:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] ©
O58 - SDL:2009/07/13 18:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] ©
O58 - SDL:2009/07/13 18:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] ©
O58 - SDL:2009/07/13 21:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] ©
O58 - SDL:2015/02/03 09:04:18 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840]
O58 - SDL:2011/03/11 01:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] ©
O58 - SDL:2009/07/13 21:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] ©
O58 - SDL:2009/07/13 21:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] ©
O58 - SDL:2009/07/13 21:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] ©
O58 - SDL:2009/07/13 21:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] ©
O58 - SDL:2009/07/13 21:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] ©
O58 - SDL:2009/07/13 21:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] ©
O58 - SDL:2009/07/13 21:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] ©
O58 - SDL:2009/07/13 18:02:53 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28u.sys [657408] ©
O58 - SDL:2009/07/13 21:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] ©
O58 - SDL:2009/07/13 18:02:52 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvm62x32.sys [347264] ©
O58 - SDL:2010/08/12 12:07:48 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvmf6232.sys [298216] ©
O58 - SDL:2011/03/11 01:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] ©
O58 - SDL:2011/03/11 01:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] ©
O58 - SDL:2010/09/07 15:27:22 A . (.Printing Communications Assoc., Inc. (PCAUSA) - Rawether NDIS 6 SPR Protocol Driver (i386).) -- C:\Windows\System32\drivers\PcaSp60.sys [28672] ©
O58 - SDL:2014/08/06 14:13:46 A . (.VSO Software - low level access layer for CD/DVD/BD device.) -- C:\Windows\System32\drivers\pcouffin.sys [47360] ©
O58 - SDL:2009/07/13 21:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] ©
O58 - SDL:2009/07/13 21:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] ©
O58 - SDL:2015/06/27 09:41:09 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [3495640] ©
O58 - SDL:2015/04/17 11:19:24 A . (.Realtek Semiconductor Corporation - Realtek WLAN USB NDIS Driver.) -- C:\Windows\System32\drivers\RTWlanU.sys [2527448] ©
O58 - SDL:2014/04/07 07:01:52 A . (.Realtek Semiconductor Corporation - Realtek RTL8192C USB NDIS Driver.) -- C:\Windows\System32\drivers\RTWlanU_XP.sys [2511576] ©
O58 - SDL:2009/03/15 06:25:46 A . (.PowerISO Computing, Inc. - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [56268]
O58 - SDL:2009/07/13 16:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2009/07/13 21:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] ©
O58 - SDL:2009/07/13 21:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] ©
O58 - SDL:2014/06/04 15:17:30 A . (.IObit - SmartDefrag Driver.) -- C:\Windows\System32\drivers\SmartDefragDriver.sys [18624] ©
O58 - SDL:2009/07/13 21:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] ©
O58 - SDL:2015/09/17 22:59:39 A . (...) -- C:\Windows\System32\drivers\TrueSight.sys [35064]
O58 - SDL:2009/07/13 21:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] ©
O58 - SDL:2009/07/13 21:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] ©
O58 - SDL:2014/11/26 10:48:40 A . (...) -- C:\Windows\System32\drivers\WPRO_41_2001.sys [35088]
O58 - SDL:2009/07/13 17:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 17:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2011/07/29 13:54:56 A . (...) -- C:\Windows\System32\epmntdrv.sys [14216]
O58 - SDL:2011/07/29 13:54:56 A . (...) -- C:\Windows\System32\EuGdiDrv.sys [8456]
O58 - SDL:2009/07/13 17:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 17:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 17:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 17:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 17:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 17:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 17:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 17:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 17:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 17:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 17:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 17:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 17:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (3) - 37s
O61 - LFC: 2015/09/17 22:59:19 A . (..) -- C:\Users\Administrateur\Downloads\RogueKiller.exe [18780744]
O61 - LFC: 2015/09/18 01:03:40 A . (..) -- C:\Users\Administrateur\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll [52736]
O61 - LFC: 2015/09/15 05:58:23 A . (.Adobe Systems Inc.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\ctorlxpx.default\gmp-eme-adobe\13\eme-adobe.dll [6902536]
---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©
---\\ Menu de démarrage Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
---\\ Recherche d'infection sur les navigateurs (27) - 7s
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.AL", 2); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.aflt", "ast_tele_14_43_ie"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.appId", "{9CB2CD61-FFA0-406C-9D2D-8FDE6F4A4D8A}"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.cd", "2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0BtAtB0E0EyD0EtByCyBtN0D0Tzu0StCtDtByEtN1L2XzutAtFtBtFtCtFyDtN1[...] =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.cr", "354686781"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.dfltLng", ""); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.dfltSrch", true); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.dnsErr", true); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.excTlbr", false); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.general.guid", "27bbe58b-63ae-439e-a9aa-bd1934cccff1"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.hmpg", true); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.hmpgUrl", "http://astromenda.com/?f=1&a=ast_tele_14_43_ie&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0BtAtB0E[...] =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.id", "485B39B32EE5E267"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.instlDay", "16363"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.instlRef", "142905_a"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.newTabUrl", "http://astromenda.com/?f=2&a=ast_tele_14_43_ie&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0BtAtB[...] =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.prdct", "astrmndasr"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.prtnrId", "WSE_Astromenda"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.srchPrvdr", "Astromenda"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.tlbrId", ""); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.tlbrSrchUrl", "http://astromenda.com/?f=3&a=ast_tele_14_43_ie&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0BtA[...] =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.vrsn", ""); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr.vrsni", ""); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr_i.newTab", true); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr_i.smplGrp", "none"); =>PUP.Optional.Astromenda
O69 - SBI: prefs.js [Administrateur - ctorlxpx.default] user_pref("extensions.astrmndasr_i.vrsnTs", "22:3:20"); =>PUP.Optional.Astromenda
O69 - SBI: SearchScopes [HKCU] {E1AF4718-E3BE-4085-92A1-50FB30ECACD7} [DefaultScope] - (Google) - http://www.google.com/
---\\ Enumère les services démarrés par Svchost (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [475136] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [523776] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2061824] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164864] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [751104] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] ©
---\\ Liste des exceptions du parefeu Windows (41) - 10s
O87 - FAEL: "{1D917B45-5BF7-4CCB-B8CF-E5AD2B88F335}" [In-None-P6-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O87 - FAEL: "{9F589907-A201-4B36-9C3F-92FBF4C81743}" [In-None-P17-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O87 - FAEL: "{3FA68E4F-8D33-411B-A228-374EB746A2FB}" [In-None-P6-FALSE] .(.IncrediMail, Ltd. - Magentic Content Importer.) -- C:\Program Files\Magentic\bin\MgImp.exe =>Toolbar.Magentic
O87 - FAEL: "{82FF12F8-91AD-449A-8455-659AAC50EC39}" [In-None-P17-FALSE] .(.IncrediMail, Ltd. - Magentic Content Importer.) -- C:\Program Files\Magentic\bin\MgImp.exe =>Toolbar.Magentic
O87 - FAEL: "{E848DA8C-F02B-458F-9B70-F778381B213C}" [In-None-P6-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\Magentic.exe =>Toolbar.Magentic
O87 - FAEL: "{309022E0-2CAA-4DA8-83CB-5A9B88A0A1A2}" [In-None-P17-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\Magentic.exe =>Toolbar.Magentic
O87 - FAEL: "{8F98A3F5-DF3E-4A63-B7BD-45D4B750F010}" [In-None-P6-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\MgApp.exe =>Toolbar.Magentic
O87 - FAEL: "{FA7A6A8B-6AE2-47CB-B84E-7F448F670F43}" [In-None-P17-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\MgApp.exe =>Toolbar.Magentic
O87 - FAEL: "{2A1AFCFB-3088-4C02-8C46-4CAA312BB711}" [In-None-P6-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\Magentic.exe =>Toolbar.Magentic
O87 - FAEL: "{AA5A2E61-7902-4D40-840A-408866763A32}" [In-None-P17-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\Magentic.exe =>Toolbar.Magentic
O87 - FAEL: "{478E0431-0D39-4A6F-A9C7-656C4592A35B}" [In-None-P6-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\MgApp.exe =>Toolbar.Magentic
O87 - FAEL: "{BBC25618-C686-4843-BD67-73B25886170D}" [In-None-P17-FALSE] .(.Copyright (C) 2005 - Magentic Application.) -- C:\Program Files\Magentic\bin\MgApp.exe =>Toolbar.Magentic
O87 - FAEL: "TCP Query User{7C0EA19B-48ED-4A83-A8C5-050FE7AD69AD}C:\program files\comicrack\comicrack.exe" [In-None-P6-TRUE] .(...) -- C:\program files\comicrack\comicrack.exe
O87 - FAEL: "UDP Query User{98B5AB28-BDA9-4C2F-B145-A4DB4E458832}C:\program files\comicrack\comicrack.exe" [In-None-P17-TRUE] .(...) -- C:\program files\comicrack\comicrack.exe
O87 - FAEL: "TCP Query User{5912AAE8-4777-47CE-87CF-8BF30DA9CB8B}C:\program files\ipcsearch\ipcsearch.exe" [In-None-P6-TRUE] .(...) -- C:\program files\ipcsearch\ipcsearch.exe
O87 - FAEL: "UDP Query User{DE646AC0-58D0-4DD9-AFC4-931072A2F3FF}C:\program files\ipcsearch\ipcsearch.exe" [In-None-P17-TRUE] .(...) -- C:\program files\ipcsearch\ipcsearch.exe
O87 - FAEL: "{FF60BCDF-7562-4C3D-B062-5379756D628E}" [In-None-P17-TRUE] .(.Mediatek Inc. - Mediatek Wireless LAN Card Utility.) -- C:\Program Files\MediatekWiFi\Common\RaUI.exe
O87 - FAEL: "{D1D59708-AAD2-4E93-8F79-06E0D5C13372}" [In-None-P6-FALSE] .(.Copyright (C) 2001 - ContentPacker MFC Application.) -- C:\Program Files\IncrediMail\Bin\ImPackr.exe
O87 - FAEL: "{90710C26-E545-4253-B612-9B14CCD8365E}" [In-None-P17-FALSE] .(.Copyright (C) 2001 - ContentPacker MFC Application.) -- C:\Program Files\IncrediMail\Bin\ImPackr.exe
O87 - FAEL: "{FEE5CB57-B318-417A-BD33-103E27FEE68A}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftSrv.dll
O87 - FAEL: "{084751F8-3323-46CC-B6BC-5EE28969C032}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftSrv.dll
O87 - FAEL: "{94B7708B-8806-480F-B2FB-7408C6AA8478}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftDump.dll
O87 - FAEL: "{4D25F757-DED7-4D34-B9DA-3DD230CA2BA7}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftDump.dll
O87 - FAEL: "{89D30A98-88DF-4583-85E2-D864429C4AEB}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftAC.dll
O87 - FAEL: "{EB97FD23-9A10-44EB-A7A5-B7BBB7C7D123}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftAC.dll
O87 - FAEL: "{68AAD003-8B6D-49A3-861E-5A3CE0C24056}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftDownloaderHelp.dll
O87 - FAEL: "{E38F0AF1-6358-41BD-8B78-0E2AAB3DF516}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftDownloaderHelp.dll
O87 - FAEL: "{7CAF995A-3E3F-4475-996C-84DEF76409FB}" [In-None-P17-TRUE] .(.Copyleft GNU GPL v3 - hdsdump.) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftHDSDump.dll
O87 - FAEL: "{3E7C6922-0E23-43E2-9C11-9C3C77AC06F2}" [Out-None-P17-TRUE] .(.Copyleft GNU GPL v3 - hdsdump.) -- C:\Program Files\Apowersoft\Streaming Video Recorder\ApowersoftHDSDump.dll
O87 - FAEL: "{0987992D-B2DD-4978-AE72-A5F73AC21C80}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Administrateur\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{6CB7A82C-A342-4C52-9DB9-3C1330D6F146}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Administrateur\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{A5527A7C-C947-4674-9925-99AAB4DD24EA}" [In-None-P6-FALSE] .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{1990D45C-E8DE-4E55-90A1-EE657250776A}" [In-None-P17-FALSE] .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{062B2E2E-5543-477F-9187-88BC97F2D8B9}" [In-None-P6-FALSE] .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{029942BB-0798-4416-9536-F37F5A23193E}" [In-None-P17-FALSE] .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{394671C5-26DE-4ECE-9A20-E406115C0909}" [In-None-P6-FALSE] .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{32E62A2E-38D9-421F-823E-DEF8B7F7D243}" [In-None-P17-FALSE] .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{4616ACFD-CD79-4228-9997-F3D2CDD0C7A3}" [In-None-P6-FALSE] .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{40305182-F852-429A-AF77-9131D6DFD041}" [In-None-P17-FALSE] .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{982CCAD5-970D-4C1B-8BAB-46325CB695D5}" [In-None-P6-FALSE] .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{2146A1D3-8EC0-455B-91DB-84984B58FB7B}" [In-None-P17-FALSE] .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (11) - 19s
SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Demand [2015/09/16 19:14:16] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/04/03 15:42:26] [ 814880] Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe ©
SR - Auto [2014/08/06 10:54:35] [ 217088] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe ©
SS - Auto [2015/08/28 04:15:27] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/08/28 04:15:27] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Auto [2015/07/30 20:04:08] [ 2909472] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [2014/07/31 11:39:50] [ 401040] MediatekRegistryWriter (MediatekRegistryWriter) . (.Mediatek Inc..) - C:\Program Files\MediatekWiFi\Common\RaRegistry.exe
SS - Demand [2015/08/27 21:50:05] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe ©
SS - Auto [2015/07/09 13:14:04] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe ©
---\\ Recherche de clés de registre Tracing (8) - 3s
HKLM\SOFTWARE\Microsoft\Tracing\FLVPlayerSetup_RASAPI32 =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Microsoft\Tracing\FLVPlayerSetup_RASMANCS =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Microsoft\Tracing\magentic_installer_RASAPI32 =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\magentic_installer_RASMANCS =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\Magentic_RASAPI32 =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\Magentic_RASMANCS =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\upmbot_ca_12_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\upmbot_ca_12_RASMANCS =>PUP.Optional.CrossRider
---\\ Scan Additionnel (35) - 0s
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Magentic =>Toolbar.Magentic
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\focusbase =>PUP.Optional.Focusbase
HKLM\SOFTWARE\ImInstaller =>Toolbar.IncrediMail
HKLM\SOFTWARE\Magentic =>Toolbar.Magentic
HKLM\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DriverToolkit =>PUP.Optional.DriverToolkit
HKCU\SOFTWARE\ImInstaller =>Toolbar.IncrediMail
HKCU\SOFTWARE\Magentic =>Toolbar.Magentic
HKCU\SOFTWARE\Squeaky =>PUP.Optional.Squeaky
HKCU\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\AppDataLow\Software\adawarebp =>PUP.Optional.ToolbarCleaner
C:\Program Files\DriverToolkit =>PUP.Optional.DriverToolkit
C:\Program Files\Elex-tech =>PUP.Optional.Elex
C:\Program Files\Magentic =>Toolbar.Magentic
C:\Program Files\sweetpacks bundle uninstaller_Skype_1783218 =>PUP.Optional.SweetIM
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magentic by IncrediMail =>Toolbar.Magentic
C:\Users\Administrateur\AppData\Roaming\Elex-tech =>PUP.Optional.Elex
C:\Users\Administrateur\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\Administrateur\AppData\Local\DriverToolkit =>PUP.Optional.DriverToolkit
C:\Users\Administrateur\AppData\Local\Magentic =>Toolbar.Magentic
C:\Program Files\Magentic\bin\MgImp.exe =>Toolbar.Magentic
C:\Program Files\Magentic\bin\Magentic.exe =>Toolbar.Magentic
C:\Program Files\Magentic\bin\MgApp.exe =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\FLVPlayerSetup_RASAPI32 =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Microsoft\Tracing\FLVPlayerSetup_RASMANCS =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Microsoft\Tracing\magentic_installer_RASAPI32 =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\magentic_installer_RASMANCS =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\Magentic_RASAPI32 =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\Magentic_RASMANCS =>Toolbar.Magentic
HKLM\SOFTWARE\Microsoft\Tracing\upmbot_ca_12_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\upmbot_ca_12_RASMANCS =>PUP.Optional.CrossRider
---\\ Récapitulatif des éléments trouvées sur votre station (14) - 0s
http://www.nicolascoolman.fr/toolbar-magentic/ =>Toolbar.Magentic
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/pup-focusbase/ =>PUP.Optional.Focusbase
http://www.nicolascoolman.fr/blog =>Toolbar.IncrediMail
http://www.nicolascoolman.fr/pup-sweetim/ =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverToolkit
http://www.nicolascoolman.fr/blog =>PUP.Optional.Squeaky
http://www.nicolascoolman.fr/pup-toolbarcleaner/ =>PUP.Optional.ToolbarCleaner
http://www.nicolascoolman.fr/pup-elex/ =>PUP.Optional.Elex
http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/pup-astromenda/ =>PUP.Optional.Astromenda
http://www.nicolascoolman.fr/blog =>PUP.Optional.FLVPlayer
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
~ End of the scan, 22173 items in 262 seconds (1111)(0)()