Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.12.1.176 Par Nicolas Coolman (2015/12/01)
~ Démarré par Lecomte (Administrator) (2015/12/01 20:15:15)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Lecomte\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Lecomte\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v46.0.2490.86
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
MSIE: Internet Explorer v11.0.10240.16590
---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, VOLUME_KMSCLIENT channel
Windows ID Activation : OK
~ Windows Partial Key : T83GX
Windows License : OK
Expiration Licence Windows : 258731 minute(s) (180 jour(s))
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK
---\\ Logiciels de protection (1) - 1s
Windows Defender (Activate)
---\\ Logiciels d'optimisation (1) - 1s
CCleaner v5.12
---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 19 NPAPI
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8370.872 MB (71% free)
System Restore: Activé (Enable)
System drive C: has 98 GB () free of 152 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-BUREAU
~ User Name: Lecomte
~ Logged in as Administrator
---\\ Enumération des unités disques (10) - 0s
~ Drive C: has 98 GB free of 152 GB (System)
~ Drive D: has 251 GB free of 264 GB
~ Drive G: has 14 GB free of 152 GB
~ Drive H: has 147 GB free of 208 GB
~ Drive I: has 17 GB free of 101 GB
~ Drive J: has 75 GB free of 167 GB
~ Drive L: has 167 GB free of 183 GB
~ Drive M: has 152 GB free of 172 GB
~ Drive N: has 109 GB free of 162 GB
~ Drive S: has 70 GB free of 170 GB
---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 0s
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - 10/09/2015 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4532304] ©
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] ©
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 10/09/2015 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [290312] ©
[MD5.E5D86250453B33900666D92ED1A92ABE] - 03/10/2015 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [2740224] ©
[MD5.A7C48B051A9C5D5054916DE5BEBBCA2D] - 05/11/2015 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [579072] ©
[MD5.ECB1943967424DFB96E03F6A098434EF] - 10/09/2015 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] ©
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [680256] ©
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] ©
[MD5.8C795953726C7D2DE72CE4748208C5ED] - 10/09/2015 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] ©
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] ©
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] ©
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] ©
[MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] ©
[MD5.C277A49F8A8295840DEBC9240B75A282] - 10/07/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] ©
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] ©
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] ©
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] ©
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] ©
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - 10/09/2015 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2116448] ©
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] ©
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] ©
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/09/2015 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] ©
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] ©
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] ©
---\\ Logiciels installés (91) - 6s
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} ©
O42 - Logiciel: ACDSee Pro 9 (64-bits) - (.ACD Systems International Inc..) [HKLM][64Bits] -- {AAB2B2D2-1B27-4EEC-B033-6F9B6FFEEF4C} ©
O42 - Logiciel: ACDSee Ultimate 9 (64-bits) - (.ACD Systems International Inc..) [HKLM][64Bits] -- {97EE2327-B39E-429C-970B-0DB6CBBEC8E1} ©
O42 - Logiciel: Acronis True Image 2016 - (.Acronis.) [HKLM][64Bits] -- {5E5999D7-85DD-4B82-B48B-5F60BDFAC502} ©
O42 - Logiciel: Acronis True Image 2016 - (.Acronis.) [HKLM][64Bits] -- {5E5999D7-85DD-4B82-B48B-5F60BDFAC502}Visible ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Photoshop 7.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop 7.0 ©
O42 - Logiciel: AOMEI Backupper Professional - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {A83692F5-3E9B-4E95-9E7E-B5DF55E6C09D}_is1 ©
O42 - Logiciel: AOMEI Partition Assistant Pro Edition 5.5 - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {02F850ED-FD0E-4ED1-BE0B-5498165BF300}_is1 ©
O42 - Logiciel: Ashampoo Burning Studio 2016 v.16.0.0 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-B4A4-B41A-6B97-C62C82CEB6A9}_is1 ©
O42 - Logiciel: Ashampoo Music Studio 5 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-5BBE-576E-893B-711D4D8298ED}_is1 ©
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex ©
O42 - Logiciel: EaseUS Partition Master 10.8 Trial Edition - (.EaseUS.) [HKLM][64Bits] -- EaseUS Partition Master Trial Edition_is1 ©
O42 - Logiciel: e-Carte Bleue La Banque Postale - (...) [HKLM][64Bits] -- {11B0F8D4-FD80-4800-ABA8-50D28FF769AF}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {39AB2E37-1A55-4292-A5D3-971E9F70D0F8} ©
O42 - Logiciel: Folder Marker Free - (.ArcticLine Software.) [HKLM][64Bits] -- Folder Marker Free_is1
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM][64Bits] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 ©
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 ©
O42 - Logiciel: Free Media Player - (.Macgo Inc..) [HKLM][64Bits] -- Free Media Player
O42 - Logiciel: Freemake Video Converter version 4.1.9 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1 ©
O42 - Logiciel: Genie Timeline - (.Genie9.) [HKLM][64Bits] -- Genie Timeline ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: GPL Ghostscript 8.70 - (...) [HKLM][64Bits] -- GPL Ghostscript 8.70
O42 - Logiciel: HomeGedScan - (.Home Software.) [HKLM][64Bits] -- HomeGedScan
O42 - Logiciel: Inpaint 5.4 - (.Teorex.) [HKLM][64Bits] -- {2AEDC172-479F-47AE-8A48-A0524D4AED5B}_is1 ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager ©
O42 - Logiciel: Java 8 Update 66 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218066F0} ©
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} ©
O42 - Logiciel: MAGIX Photos sur DVD 2013 Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- {343C08A0-03A8-40F0-A633-94947F87C61A} ©
O42 - Logiciel: MAGIX Photos sur DVD 2013 Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{343C08A0-03A8-40F0-A633-94947F87C61A} ©
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {E589FD0B-1A6C-425F-847E-429FEC9589C8} ©
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{E589FD0B-1A6C-425F-847E-429FEC9589C8} ©
O42 - Logiciel: MAGIX Video Pro X5 Update - (.MAGIX AG.) [HKLM][64Bits] -- {61E48EC3-22BD-45EA-88FE-25BE2E256FD3} ©
O42 - Logiciel: Microsoft Access MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0015-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft DCF MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0090-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Excel MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0016-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Groove MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00BA-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft InfoPath MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0044-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft OneNote MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00A1-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Outlook MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001A-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0018-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Publisher MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0019-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Skype for Business MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Word MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001B-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Mira version 2.6.0.0 - (...) [HKLM][64Bits] -- Mira_is1
O42 - Logiciel: Mises à jour NVIDIA 10.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: Movavi Video Suite 12 - (.Movavi.) [HKLM][64Bits] -- Movavi Video Suite 12 ©
O42 - Logiciel: Movavi Video Suite 12 version 12.0.0 - (.Team PK.) [HKLM][64Bits] -- {3D4391B7-3A22-4308-8F47-95D5BC57C4CC}_is1
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: Mozilla Thunderbird 38.2.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.2.0 (x86 fr) ©
O42 - Logiciel: Mozilla Thunderbird 38.4.0 (x86 fr) - (.Mozilla.) [HKCU][64Bits] -- Mozilla Thunderbird 38.4.0 (x86 fr) ©
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} ©
O42 - Logiciel: MusicBee 2.5 - (.Steven Mayall.) [HKLM][64Bits] -- MusicBee ©
O42 - Logiciel: MyBank version 1.1 - (.SoftChris.) [HKLM][64Bits] -- {AC8DF434-9E2B-4B00-98C7-ECF275AAE603}_is1
O42 - Logiciel: MyDriveConnect 4.0.4.2260 - (.TomTom.) [HKLM][64Bits] -- MyDriveConnect ©
O42 - Logiciel: MyFreeCodec - (...) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer ©
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision ©
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo ©
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core ©
O42 - Logiciel: Panneau de configuration NVIDIA 341.81 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel ©
O42 - Logiciel: PowerpointImageExtractor - (...) [HKLM][64Bits] -- PowerpointImageExtractor_is1
O42 - Logiciel: proDAD Adorage 2.0 - (.proDAD GmbH.) [HKLM][64Bits] -- proDAD-Adorage-2.0 ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A} ©
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A} ©
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {88547073-C566-4895-9005-EBE98EA3F7C7} ©
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7} ©
O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} ©
O42 - Logiciel: Soft Organizer version 5.02 - (.ChemTable Software.) [HKLM][64Bits] -- Soft Organizer_is1 ©
O42 - Logiciel: Streaming Audio Recorder V4.0.0 - (.APOWERSOFT LIMITED.) [HKLM][64Bits] -- {B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1 ©
O42 - Logiciel: Studio Video Ultimate - (.Avanquest.) [HKLM][64Bits] -- {9074000C-5331-4686-92D8-6C3066E99C63} ©
O42 - Logiciel: Suivi des soins et des remboursements de Santé - (.Emjysoft.) [HKLM][64Bits] -- {6CC28634-D98C-4DE1-9EE7-E121277996F6}_is1 ©
O42 - Logiciel: Suivi des soins et des remboursements de Santé v2.4 - (.Emjysoft.) [HKLM][64Bits] -- Suivi des soins et des remboursements de Santé_is1 ©
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {7A2BB1C8-903D-4585-9F3B-CADD67D07D37}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} ©
O42 - Logiciel: Vasco da Gama 5 HDPro - (.MotionStudios.) [HKLM][64Bits] -- {067D2172-F8F3-477D-B4EE-0B0AA967D544} ©
O42 - Logiciel: Video Explosion Ultimate - (.Avanquest Software.) [HKLM][64Bits] -- {06A965CC-D8A3-4A33-AA9A-78292E9DBBC8} ©
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM][64Bits] -- {4412F224-3849-4461-A3E9-DEEF8D252790} ©
O42 - Logiciel: VSO Downloader 4.5.0.14 - (.VSO Software.) [HKLM][64Bits] -- {A0D0BA9E-F1A6-44FF-AA14-03ED96B3D56D}_is1 ©
O42 - Logiciel: Windows Uninstaller 1.7 - (.Alex T..) [HKLM][64Bits] -- Windows Uninstaller_is1
O42 - Logiciel: WinRAR 5.30 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: WinUtilities Professional Edition 12.02 - (.YL Computing, Inc.) [HKLM][64Bits] -- {FC274982-5AAD-4C20-848D-4424A5043009}_is1
O42 - Logiciel: WonderFox DVD Video Converter 8.6 - (.WonderFox Soft, Inc..) [HKLM][64Bits] -- WonderFox DVD Video Converter
O42 - Logiciel: Zeta Uploader - (.Zeta Software GmbH.) [HKCU][64Bits] -- ZetaUploader
---\\ HKCU & HKLM Software Keys (123) - 6s
HKLM\SOFTWARE\Wow6432Node\ACD Systems
HKLM\SOFTWARE\Wow6432Node\Acronis
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\ASDMA
HKLM\SOFTWARE\Wow6432Node\Ashampoo
HKLM\SOFTWARE\Wow6432Node\Avanquest
HKLM\SOFTWARE\Wow6432Node\AVS4YOU
HKLM\SOFTWARE\Wow6432Node\CDex
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\e-Carte Bleue La Banque Postale
HKLM\SOFTWARE\Wow6432Node\EaseUS
HKLM\SOFTWARE\Wow6432Node\EaseUS Todo Backup
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Freemake
HKLM\SOFTWARE\Wow6432Node\Genie-Soft
HKLM\SOFTWARE\Wow6432Node\Genie9
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GPL Ghostscript
HKLM\SOFTWARE\Wow6432Node\hdcode
HKLM\SOFTWARE\Wow6432Node\HomeGedScan
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Lidan
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MAGIX
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MotionStudios
HKLM\SOFTWARE\Wow6432Node\MOVAVI
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Myfree Codec
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\proDAD
HKLM\SOFTWARE\Wow6432Node\Siber Systems
HKLM\SOFTWARE\Wow6432Node\Softland
HKLM\SOFTWARE\Wow6432Node\SoftVTU
HKLM\SOFTWARE\Wow6432Node\TomTom
HKLM\SOFTWARE\Wow6432Node\TSv =>PUP.Optional.Elex
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\VSO
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\Xara
HKLM\SOFTWARE\Wow6432Node\Yahoo
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\ACD Systems
HKCU\SOFTWARE\Acronis
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Antanda
HKCU\SOFTWARE\Apowersoft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArcticLine
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Avanquest
HKCU\SOFTWARE\AVS4YOU
HKCU\SOFTWARE\ChemTable Software
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\EaseUS
HKCU\SOFTWARE\Emjysoft
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\Genie9
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\IvoSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KC Softwares
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Ligos
HKCU\SOFTWARE\MacGo
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magix
HKCU\SOFTWARE\MAGIX AG
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MarineCat
HKCU\SOFTWARE\Mirage
HKCU\SOFTWARE\MOVAVI
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Myfree Codec
HKCU\SOFTWARE\NeatMP3
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\proDAD
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Siber Systems
HKCU\SOFTWARE\Softland
HKCU\SOFTWARE\SoftVTU
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Stardock
HKCU\SOFTWARE\Teorex
HKCU\SOFTWARE\TomTom
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\Vittalia =>PUP.Optional.Vittalia
HKCU\SOFTWARE\VSO
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zeta Uploader
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Liste des services NT non Microsoft et non désactivés (15) - 0s
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ©
O23 - Service: AOMEI Backupper Scheduler Service (Backupper Service) . (.AOMEI Tech Co., Ltd. - AOMEI Backupper Schedule task service.) - C:\Program Files (x86)\AOMEI Backupper\ABService.exe ©
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe ©
O23 - Service: Freemake Improver (Freemake Improver) . (.Freemake - FreemakeUtilsService.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe ©
O23 - Service: Genie Timeline Service (GenieTimelineService) . (.Genie9 - GenieTimelineService - Copyright © 2001 - 2.) - C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: Acronis Managed Machine Service Mini (mmsminisrv) . (.Acronis - Managed Machine Service Mini.) - C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) - C:\Windows\System32\nvvsvc.exe ©
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: SpyHunter 4 Service (SpyHunter 4 Service) . (...) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (.not file.)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe ©
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
O23 - Service: Acronis Sync Agent Service (syncagentsrv) . (.Acronis - TrueImage Sync Agent Service.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe ©
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe ©
---\\ Tâches planifiées en automatique (21) - 4s
[MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.6DD7175EE1C04C805941D96E9A64926E] [APT] [AutoKMS] (.CODYQX4.) -- C:\Windows\AutoKMS\AutoKMS.exe [5046784] =>HackTool.AutoKMS
[MD5.5C35525CEBE7B59FAFA05D5E98D7EDEF] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6602152] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [SBWUpdateTask_Logon_c8eb578f-002522E7EE29] (...) -- C:\Program Files (x86)\Common Files\Speedbit\SbUpdate\SBUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [SBWUpdateTask_Time_c8eb578f-002522E7EE29] (...) -- C:\Program Files (x86)\Common Files\Speedbit\SbUpdate\SBUpdate.exe (.not file.) [0]
[MD5.3183864C60DEE792D5155B15B896F7B2] [APT] [SpyHunter4Startup] (.Enigma Software Group USA, LLC..) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [8337792] =>.Superfluous.SpyHunter
[MD5.00000000000000000000000000000000] [APT] [Wise Care 365.job] (...) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Wise Turbo Checker.job] (...) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (.not file.) [0]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1086] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1090] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3988] ©
O39 - APT: AutoKMS - (.CODYQX4.) -- C:\WINDOWS\System32\Tasks\AutoKMS [3804] =>HackTool.AutoKMS
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2862] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3936] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4172] ©
O39 - APT: SBWUpdateTask_Logon_c8eb578f-002522E7EE29 - (...) -- C:\WINDOWS\System32\Tasks\SBWUpdateTask_Logon_c8eb578f-002522E7EE29 [3524]
O39 - APT: SBWUpdateTask_Time_c8eb578f-002522E7EE29 - (...) -- C:\WINDOWS\System32\Tasks\SBWUpdateTask_Time_c8eb578f-002522E7EE29 [4072]
O39 - APT: SpyHunter4Startup - (.Enigma Software Group USA, LLC..) -- C:\WINDOWS\System32\Tasks\SpyHunter4Startup [3426]
---\\ Processus lancés (32) - 0s
[MD5.8EE5AA5E63D70E3A073A98E3E6CEFE5B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [933168] [PID.1172] ©
[MD5.32B37DD6E7D423DF3CF3B196C8005F85] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.1184] ©
[MD5.25D41107A93F237755BD9D59954FC292] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1200304] [PID.1428] ©
[MD5.8EE5AA5E63D70E3A073A98E3E6CEFE5B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [933168] [PID.1436] ©
[MD5.723D70BA249750FBD05A9906652A151D] - (.Taiwan Shui Mu Chih Ching Technology Limited - Picexa service.) -- C:\Program Files (x86)\Picexa\PicexaSvc.exe [730248] [PID.2356] =>PUP.Optional.Picexa
[MD5.72E77257398095D743B6C5046C94CAB9] - (.Acronis - Acronis Scheduler 2.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1137168] [PID.2720] ©
[MD5.7987612A5228F3516E428A6D4BD626E4] - (.Genie9 - GenieTimelineService - Copyright © 2001 - 2.) -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [678064] [PID.2908] ©
[MD5.F45B7D435C949F40CB48704CEE27E9B8] - (.tsvr.com - tsvr.com.) -- C:\Users\Lecomte\AppData\Roaming\TSv\TSvr.exe [580752] [PID.2956] =>PUP.Optional.Elex
[MD5.7228CA6320ABA120DAAA69C740B73943] - (.AOMEI Tech Co., Ltd. - AOMEI Backupper Schedule task service.) -- C:\Program Files (x86)\AOMEI Backupper\ABService.exe [29912] [PID.2976] ©
[MD5.895B73F5BB93D46962258E6514A7ED8A] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896] [PID.2996]
[MD5.C2BDC7EA68CAE9E9A088F77BAC88FB92] - (.IObit - Product Updater.) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048] [PID.3036] ©
[MD5.9DA3B55B17B54789AFB8C657D4ACE4D7] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) -- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688] [PID.2028] ©
[MD5.0FE2FC59C0B9A3CA3EC2B18E1CCCF2DD] - (.TomTom - Windows Service for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [93040] [PID.2296] ©
[MD5.B048C87A82322C06F0F22C7627D60B57] - (.Acronis - File Level CDP Manager Service.) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [4463960] [PID.3124] ©
[MD5.F19FD4D79DE6C843F38110BA1594A6C7] - (.DTools LIMITED - DTools.) -- C:\ProgramData\OWMiniProO\WMiniPro.exe [295424] [PID.3132] =>PUP.Optional.WpManager
[MD5.D9652739D1007B9B5CE34CEF38E095C5] - (.Acronis - Managed Machine Service Mini.) -- C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064] [PID.3208] ©
[MD5.DB944D000B782C5675FEA922FBF523D4] - (.Genie9 - Genie Timeline Agent.) -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineAgent.exe [1357488] [PID.4780] ©
[MD5.93B671A2C4043DBB827EA325BE96A2E4] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2446000] [PID.3968] ©
[MD5.A082DE38AC82C5099692ADAA0AEFDDD4] - (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1793736] [PID.2556] ©
[MD5.534672260B59FE25BEAF96BF91CBF557] - (.ACD Systems - acdID InTouch2.) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\acdIDInTouch2.exe [2087696] [PID.6212] ©
[MD5.F2BCC39EC53F763D87D791BCA6758945] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3911248] [PID.6376] ©
[MD5.6D928BAB67FF27D1A3076DDB0B684BAC] - (...) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe [3220488] [PID.6420]
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.6748] ©
[MD5.E337785DA1958E9AB02DDB2369EF46E8] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe [307016] [PID.6768] ©
[MD5.B59CAA2A05F647A05DF4486FBCD47E75] - (...) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7568104] [PID.7016]
[MD5.793D7221E5EC69EA615349A13B702B8C] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528] [PID.7052] ©
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.6184] ©
[MD5.8FDA65209157144C3E28809D75A47526] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048] [PID.2428] ©
[MD5.1173C0D87C37D145D65E2750875B721F] - (.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744] [PID.5052] ©
[MD5.40335C8877B6B84842AF03A40E1BB206] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8591272] [PID.3288] ©
[MD5.4B0583A0A6A22D9F453BFFD467E68190] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392872] [PID.7400] ©
[MD5.3A963DBC12157655FE23030FADBC5C15] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Lecomte\ZHPDiag3.exe [1979392] [PID.6400] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (41) - 11s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api.hostip.info
G0 - GCSP: Preferences [User Data\Default][HomePage] http://insttranslate.com:8080
G0 - GCSP: Preferences [User Data\Default][HomePage] http://translate.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com
G2 - GCE: Preference [User Data\Default] [aabglcajpbohcelholbgmljkfliealko] Youtube MP3 Converter and downloader
G2 - GCE: Preference [User Data\Default] [aapbdbdomjkkjkaonfhkkikfgjllcleb] __MSG_8969005060131950570__
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfiebajnnakcjkedcfamhdfgckcbnhke] PagesJaunes
G2 - GCE: Preference [User Data\Default] [cocdiblefidhknchklabbojfoebldcig] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dhjopcafpdkbgmadfbdjkdgjefchgfhg] Meteo France
G2 - GCE: Preference [User Data\Default] [ecaabliejjdikjnkahhikeelbblahgoi] __MSG_themeName__
G2 - GCE: Preference [User Data\Default] [elicpjhcidhpjomhibiffojpinpmmpil] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eogmadihniohlnmipdhchaoagjhfnohc] Mahjong Solitaire
G2 - GCE: Preference [User Data\Default] [gdalhedleemkkdjddjgfjmcnbpejpapp] Facebook for Chrome
G2 - GCE: Preference [User Data\Default] [ggppmapmeglphhmbmdgimclmpnhckcjp] YouTube to MP3 - convert2mp3.cc
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [gmpaiomihcebnclahoknbodeiaiohcdi] HP Smart Print
G2 - GCE: Preference [User Data\Default] [hcmbnkeeammlnebnoebapffcbmbbcmpj] Traduction Français Anglais
G2 - GCE: Preference [User Data\Default] [hgdohmjplligggendhbmghhmpphabopi] YouTube To MP3!
G2 - GCE: Preference [User Data\Default] [idfnpgjblkahngbondojabhffkkdekbd] __MSG_name__
G2 - GCE: Preference [User Data\Default] [ihbiedpeaicgipncdnnkikeehnjiddck] Weather
G2 - GCE: Preference [User Data\Default] [ihmgiclibbndffejedjimfjmfoabpcke] __MSG_Kernel_AppName__
G2 - GCE: Preference [User Data\Default] [jiibmmkpgegglilfljknbciimldpedid] Youtubemp3.audio
G2 - GCE: Preference [User Data\Default] [kemfccojgjoilhfmcblgimbggikekjip] Turbo Download Manager
G2 - GCE: Preference [User Data\Default] [lkbhppfbabandkdmgjmifahoabeodiep] Solitaire
G2 - GCE: Preference [User Data\Default] [mcceagdollnkjlogmdckgjakjapmkdjf] Download Master
G2 - GCE: Preference [User Data\Default] [nfkpncleclnaihjlknbcpbjpanihohdh] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ngbcgifdaopbfflfhbcfeomijfbbcadi] Downloads
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [noaijdpnepcgjemiklgfkcfbkokogabh] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [ocifcklkibdehekfnmflempfgjhbedch] __MSG_name__
G2 - GCE: Preference [User Data\Default] [oljlcbniifdjapjocdfamhlnmpkojdkm] [http://www.video2mp3.net/chrome/v2m-updates.xml] video2mp3 =>Hijacker.Browser
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (11) - 1s
M0 - MFSP: prefs.js [Lecomte - mff8gdwc.default] http://home.speedbit.com/?s=FBRa205
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\info@youtube-mp3.org.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\printedit@DW-dev.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\s3google@translator.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\youtube2mp3@mondayx.de.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.Rayto Yagami - From Youtube To MP3.) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\youtubemp3conv@gmail.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.speedbit.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://home.speedbit.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://home.speedbit.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (1) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll ©
---\\ Applications lancées au démarrage du système (19) - 0s
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe ©
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O4 - HKLM\..\Run: [ACPW09FR] . (.ACD Systems - acdID InTouch2.) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\acdIDInTouch2.exe ©
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_0FD4756E76E38F97AFD41C47286FE2B3] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKCU\..\Run: [ACDSeeCommanderUltimate9] . (...) -- C:\Program Files\ACD Systems\ACDSee Ultimate\9.0\ACDSeeCommanderUltimate9.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKCU\..\Run: [ACDSeeCommanderPro9] . (...) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe
O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (...) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [AcronisTibMounterMonitor] . (.Acronis International GmbH - Acronis TIB Mounter Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKLM\..\Wow6432Node\Run: [ProductUpdater] . (.Copyright © 2015 - ProductUpdater.) -- C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [GoogleChromeAutoLaunch_0FD4756E76E38F97AFD41C47286FE2B3] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [ACDSeeCommanderUltimate9] . (...) -- C:\Program Files\ACD Systems\ACDSee Ultimate\9.0\ACDSeeCommanderUltimate9.exe
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [ACDSeeCommanderPro9] . (...) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
---\\ Protocole additionnel (24) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: mso-minsb.16 [64Bits] - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL ©
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL ©
---\\ Contenu des dossiers Programmes (317) - 7s
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Acronis
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 01/11/2015 - [0] D -- C:\Program Files (x86)\AoaoPhoto Digital Studio
O43 - CFD: 15/11/2015 - [] D -- C:\Program Files (x86)\AOMEI Backupper
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 5.5
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Apowersoft
O43 - CFD: 24/11/2015 - [] D -- C:\Program Files (x86)\Ashampoo
O43 - CFD: 24/11/2015 - [] D -- C:\Program Files (x86)\Avanquest
O43 - CFD: 06/10/2015 - [0] D -- C:\Program Files (x86)\AVS4YOU
O43 - CFD: 19/10/2015 - [] D -- C:\Program Files (x86)\CDex
O43 - CFD: 01/12/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 24/10/2015 - [] D -- C:\Program Files (x86)\Cyberlink
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\DAP
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\e-Carte Bleue La Banque Postale
O43 - CFD: 21/11/2015 - [] D -- C:\Program Files (x86)\EaseUS
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Emjysoft
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Folder Marker
O43 - CFD: 19/10/2015 - [] D -- C:\Program Files (x86)\Foxit Software
O43 - CFD: 05/10/2015 - [] D -- C:\Program Files (x86)\Freemake
O43 - CFD: 08/10/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\gs
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\HomeGedScan
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\idoo PC Cleaner
O43 - CFD: 05/10/2015 - [] D -- C:\Program Files (x86)\Inpaint
O43 - CFD: 25/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\MacGo
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\MAGIX
O43 - CFD: 05/10/2015 - [0] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Works Suite 2005
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\MotionStudios
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Movavi Core 5.1.0
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Movavi Video Suite 12
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 02/10/2015 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\MusicBee
O43 - CFD: 07/10/2015 - [] D -- C:\Program Files (x86)\MyDrive Connect
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\MyFree Codec
O43 - CFD: 01/10/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Picexa =>PUP.Optional.Picexa
O43 - CFD: 08/11/2015 - [] D -- C:\Program Files (x86)\PowerpointImageExtractor_V1_2
O43 - CFD: 05/10/2015 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\proDAD
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\Samsung
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Soft Organizer
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\SoftChris
O43 - CFD: 07/10/2015 - [] D -- C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 07/10/2015 - [] D -- C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\VSO
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 30/07/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 30/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 01/12/2015 - [] D -- C:\Program Files (x86)\WinUtilities
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\WonderFox Soft
O43 - CFD: 03/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 10/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ACD Systems
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
O43 - CFD: 10/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant Pro Edition 5.5
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avanquest
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 19/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
O43 - CFD: 27/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download Accelerator Plus (DAP)
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e-Carte Bleue La Banque Postale
O43 - CFD: 21/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.8
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Marker
O43 - CFD: 19/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genie9
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeGedScan
O43 - CFD: 05/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inpaint
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
O43 - CFD: 30/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotionStudios
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Video Suite 12
O43 - CFD: 06/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 28/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\onOne Software
O43 - CFD: 01/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
O43 - CFD: 24/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picexa =>PUP.Optional.Picexa
O43 - CFD: 06/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft Organizer
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftChris
O43 - CFD: 10/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 07/11/2015 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
O43 - CFD: 17/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suivi des soins et des remboursements de Santé
O43 - CFD: 30/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/09/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\ACD Systems
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\Acronis
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\AomeiBR
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Apowersoft
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Avanquest
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Avanquest Software
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\AVS4YOU
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\ClassicShell
O43 - CFD: 03/10/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 30/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 18/10/2015 - [] D -- C:\ProgramData\Emjysoft
O43 - CFD: 05/10/2015 - [] D -- C:\ProgramData\Freemake
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Genie9
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\HomeGedScan
O43 - CFD: 25/10/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\MAGIX
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 02/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 10/09/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Movavi
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Movavi Video Suite 12
O43 - CFD: 28/11/2015 - [0] D -- C:\ProgramData\Nalpeiron
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\OWMiniProO
O43 - CFD: 23/11/2015 - [0] D -- C:\ProgramData\oxInstall
O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\PC1Data
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\PRICache
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\proDAD
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\RoboForm
O43 - CFD: 06/10/2015 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 02/10/2015 - [] D -- C:\ProgramData\ShellIcons
O43 - CFD: 18/11/2015 - [0] D -- C:\ProgramData\simplitec
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\Softland
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\Stardock
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 23/11/2015 - [] HD -- C:\ProgramData\sysnfxo
O43 - CFD: 27/11/2015 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 30/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 30/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\VSO
O43 - CFD: 04/10/2015 - [0] SHD -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
O43 - CFD: 14/11/2015 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 04/10/2015 - [0] SHD -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 15/11/2015 - [] D -- C:\Program Files (x86)\Common Files\ACD Systems
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Acronis
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\Common Files\EagleGet
O43 - CFD: 05/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Freemake Shared
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Shared
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ACD Systems
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Acronis
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Adobe
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Anvsoft
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Apowersoft
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Apple Computer
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ArcticLine
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Ashampoo
O43 - CFD: 21/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Ashampoo Slideshow Studio 2015
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\AVS4YOU
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\BITS
O43 - CFD: 17/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ChemTable Software
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ClassicShell
O43 - CFD: 24/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\CyberLink
O43 - CFD: 06/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\DiskDefrag
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\DMCache
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\DM_Software
O43 - CFD: 11/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\eCyber =>PUP.Optional.Elex
O43 - CFD: 28/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Emjysoft
O43 - CFD: 22/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\FlashgetSetup
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\FolderColorize
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Foxit Software
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Genie9
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Identities
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\IDM
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Infected Scanner
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\IObit
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Macromedia
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MAGIX
O43 - CFD: 05/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\Malwarebytes
O43 - CFD: 01/12/2015 - [] SD -- C:\Users\Lecomte\AppData\Roaming\Microsoft
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MotionStudios
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MOVAVI
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Mozilla
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MusicBee
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Netscape
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\NVIDIA
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Opera Software
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\PeaZip
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\proDAD
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ProductData
O43 - CFD: 30/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\RoboForm
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\RPEng =>PUP.Optional.Generic
O43 - CFD: 06/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Samsung
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Shortcut
O43 - CFD: 18/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\simplitec
O43 - CFD: 22/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Softland
O43 - CFD: 30/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\SoftMaker
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Sun
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Thunderbird
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\TomTom
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\TSv =>PUP.Optional.Elex
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\TuneUp Software
O43 - CFD: 03/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\Windows Live Writer
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\WinRAR
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ZHP
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ACD Systems
O43 - CFD: 04/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Aiseesoft Studio
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Apowersoft
O43 - CFD: 03/10/2015 - [0] SHD -- C:\Users\Lecomte\AppData\Local\Application Data
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ashampoo
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\CDex
O43 - CFD: 17/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ChemTable Software
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ClassicShell
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Comms
O43 - CFD: 23/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Diagnostics
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Downloaded Installations
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Emjysoft
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\FreemakeVideoConverter
O43 - CFD: 25/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Google
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\GWX
O43 - CFD: 03/10/2015 - [0] SHD -- C:\Users\Lecomte\AppData\Local\Historique
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MacGo
O43 - CFD: 02/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Macromedia
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MAGIX
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MAGIX_AG
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Micro Application
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Microsoft
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Microsoft Help
O43 - CFD: 31/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MicrosoftEdge
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Micro_Application
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Mixesoft
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Movavi
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Mozilla
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MyBank
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Lecomte\AppData\Local\NVIDIA
O43 - CFD: 23/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\Ocster Backup Pro 8
O43 - CFD: 23/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\Ocster Backup Pro 9
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Opera Software
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Packages
O43 - CFD: 01/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\PackageStaging
O43 - CFD: 03/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\PeerDistRepub
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Programs
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Publishers
O43 - CFD: 06/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Samsung
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Stardock
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Temp
O43 - CFD: 03/10/2015 - [0] SHD -- C:\Users\Lecomte\AppData\Local\Temporary Internet Files
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Thunderbird
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\TileDataLayer
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\TomTom
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\VirtualStore
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Windows Live
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Windows Live Writer
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Xara
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Zeta Uploader
O43 - CFD: 03/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\{11519058-1CDB-4864-B030-3AAA05164D0F}
O43 - CFD: 30/07/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 24/11/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 19/10/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 25/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Macgo Free Media Player
O43 - CFD: 30/07/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicBee
O43 - CFD: 28/11/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 03/10/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/07/2015 - [] RSD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WonderFox Soft
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zeta Uploader
---\\ Derniers fichiers créés dans Windows Prefetcher (5) - 4s
O45 - LFCP:[MD5.3089779BD1F7460D41A2DCC92C467312] 30/11/2015 A -- C:\WINDOWS\Prefetch\AUTOKMS.EXE-10FEC7B2.pf =>HackTool.AutoKMS
O45 - LFCP:[MD5.4159E496CE24B53415626A3228B67733] 30/11/2015 A -- C:\WINDOWS\Prefetch\SH_INSTALLER.EXE-DF59248B.pf =>.Superfluous.SpyHunter
O45 - LFCP:[MD5.EB7885B3D284BFDAB04F1A080035950C] 30/11/2015 A -- C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER.EXE-13E5AEF9.pf =>.Superfluous.SpyHunter
O45 - LFCP:[MD5.87052916B67C7FB6A1AE9862CA040705] 30/11/2015 A -- C:\WINDOWS\Prefetch\SPYHUNTER4.EXE-FAC67AFB.pf =>.Superfluous.SpyHunter
O45 - LFCP:[MD5.33809A79873E22D879E7150A293F43B4] 01/12/2015 A -- C:\WINDOWS\Prefetch\TOOLDISKCLEANER.EXE-D536375E.pf =>PUP.Optional.DiskCleaner
---\\ ShellIconOverlayIdentifiers (SIOI) (16) - 0s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL ©
O106 - SIOI: 0GenieTimeLine-BackedUp [0GenieTimeLine-BackedUp] - {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-Excluded [0GenieTimeLine-Excluded] - {B77E8651-93B1-40CD-8ECF-6F33DAC805A0}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-Folder [0GenieTimeLine-Folder] - {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-NotBackedUp [0GenieTimeLine-NotBackedUp] - {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-Pending [0GenieTimeLine-Pending ] - {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: Acronis True Image Shell Sync Error Icon Overlay Extension [AcronisSyncError] - {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}. (.Acronis - Acronis True Image Shell Extensions.) -- C:\Program Files (x86)\Acronis\TrueImageHome\tishell.dll ©
O106 - SIOI: Acronis True Image Shell Sync In Progress Icon Overlay Extension [AcronisSyncInProgress] - {00F848DC-B1D4-4892-9C25-CAADC86A215D}. (.Acronis - Acronis True Image Shell Extensions.) -- C:\Program Files (x86)\Acronis\TrueImageHome\tishell.dll ©
O106 - SIOI: Acronis True Image Shell Sync Ok Icon Overlay Extension [AcronisSyncOk] - {71573297-552E-46fc-BE3D-3DFAF88D47B7}. (.Acronis - Acronis True Image Shell Extensions.) -- C:\Program Files (x86)\Acronis\TrueImageHome\tishell.dll ©
---\\ Liste des pilotes du système (70) - 1s
O58 - SDL:2015/07/10 06:09:24 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] ©
O58 - SDL:2015/07/10 06:03:12 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] ©
O58 - SDL:2015/07/10 06:05:17 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] ©
O58 - SDL:2015/07/10 06:03:16 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] ©
O58 - SDL:2015/07/10 06:05:17 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] ©
O58 - SDL:2011/11/28 13:51:44 A . (.AnvSoft Inc. - AnvSoft Virtual Audio Device.) -- C:\WINDOWS\System32\drivers\anvsnddrv.sys [33872]
O58 - SDL:2015/07/10 06:03:12 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] ©
O58 - SDL:2015/06/18 02:04:00 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] ©
O58 - SDL:2015/07/10 05:55:09 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] ©
O58 - SDL:2015/12/01 12:18:48 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\cjyeaf.sys [79064] ©
O58 - SDL:2012/10/19 03:52:32 N . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\WINDOWS\System32\drivers\Dot4.sys [151968] ©
O58 - SDL:2015/03/23 04:54:24 N . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928] ©
O58 - SDL:2014/10/27 10:47:56 A . (.eagleGet - eagleGet Network Filter.) -- C:\WINDOWS\System32\drivers\eagleGet.sys [80208] ©
O58 - SDL:2015/11/30 20:13:46 A . (...) -- C:\WINDOWS\System32\drivers\EsgScanner.sys [22704]
O58 - SDL:2014/12/15 00:59:40 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Backup Driver.) -- C:\WINDOWS\System32\drivers\eubakup.sys [60968] ©
O58 - SDL:2014/12/15 00:59:40 A . (...) -- C:\WINDOWS\System32\drivers\EUBKMON.sys [48168]
O58 - SDL:2014/12/15 00:59:40 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Access Driver.) -- C:\WINDOWS\System32\drivers\eudskacs.sys [18472] ©
O58 - SDL:2014/12/15 00:59:40 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Backup Image Preview Driver.) -- C:\WINDOWS\System32\drivers\EuFdDisk.sys [192040] ©
O58 - SDL:2015/07/10 05:55:06 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] ©
O58 - SDL:2015/11/02 15:18:26 A . (.Acronis International GmbH - File tracker minifilter driver.) -- C:\WINDOWS\System32\drivers\file_tracker.sys [323040] ©
O58 - SDL:2015/11/12 10:28:37 A . (.Acronis International GmbH - Acronis Storage Filter Management Driver.) -- C:\WINDOWS\System32\drivers\fltsrv.sys [160736] ©
O58 - SDL:2015/11/02 15:18:17 A . (.Acronis International GmbH - Acronis Storage Filter Management Driver.) -- C:\WINDOWS\System32\drivers\fltsrv2195.sys [160736] ©
O58 - SDL:2015/10/06 15:58:50 A . (.Glarysoft Ltd - The driver for the Startup Manager tool.) -- C:\WINDOWS\System32\drivers\GUBootStartup.sys [20160] ©
O58 - SDL:2010/10/19 22:34:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [56344] ©
O58 - SDL:2015/07/10 06:07:32 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] ©
O58 - SDL:2015/06/18 02:03:50 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] ©
O58 - SDL:2015/06/18 02:04:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] ©
O58 - SDL:2015/07/10 06:06:06 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] ©
O58 - SDL:2015/07/10 06:06:06 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] ©
O58 - SDL:2015/07/10 05:54:54 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] ©
O58 - SDL:2015/06/12 05:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [197616] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] ©
O58 - SDL:2015/07/10 06:09:24 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] ©
O58 - SDL:2015/07/10 06:09:24 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] ©
O58 - SDL:2015/07/10 05:54:54 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] ©
O58 - SDL:2015/07/10 06:03:10 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] ©
O58 - SDL:2015/07/10 05:54:53 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] ©
O58 - SDL:2015/09/23 19:31:22 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [12905144] ©
O58 - SDL:2015/07/10 06:07:35 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] ©
O58 - SDL:2015/07/10 06:07:35 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] ©
O58 - SDL:2015/07/10 06:09:24 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] ©
O58 - SDL:2015/10/04 19:11:11 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [888064] ©
O58 - SDL:2015/11/14 17:49:39 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4613888] ©
O58 - SDL:2015/07/10 06:03:13 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] ©
O58 - SDL:2015/07/10 06:03:13 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] ©
O58 - SDL:2015/11/12 10:28:38 A . (.Acronis International GmbH - Acronis Snapshot API.) -- C:\WINDOWS\System32\drivers\snapman.sys [333280] ©
O58 - SDL:2015/11/02 15:18:18 A . (.Acronis International GmbH - Acronis Snapshot API.) -- C:\WINDOWS\System32\drivers\snapman2439.sys [343296] ©
O58 - SDL:2015/05/21 07:02:42 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [110720] ©
O58 - SDL:2015/05/21 07:02:42 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] ©
O58 - SDL:2015/10/31 11:31:16 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (M.) -- C:\WINDOWS\System32\drivers\ssudserd.sys [206080] ©
O58 - SDL:2015/07/10 06:03:16 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] ©
O58 - SDL:2015/11/12 10:28:44 A . (.Acronis International GmbH - Acronis Backup Archive Explorer.) -- C:\WINDOWS\System32\drivers\tib.sys [1057728] ©
O58 - SDL:2015/11/02 15:18:22 A . (.Acronis International GmbH - Acronis Backup Archive Explorer.) -- C:\WINDOWS\System32\drivers\tib1117.sys [1057728] ©
O58 - SDL:2015/11/12 10:28:43 A . (.Acronis International GmbH - Acronis TIB Mounter Driver.) -- C:\WINDOWS\System32\drivers\tib_mounter.sys [198088] ©
O58 - SDL:2015/11/12 10:28:45 A . (.Acronis International GmbH - Acronis Try&Decide Volume Filter Driver.) -- C:\WINDOWS\System32\drivers\tnd.sys [553912] ©
O58 - SDL:2015/07/10 04:21:44 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/07/10 06:07:40 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] ©
O58 - SDL:2015/07/10 06:07:40 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] ©
O58 - SDL:2015/07/10 05:54:54 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] ©
O58 - SDL:2015/07/10 05:54:53 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] ©
O58 - SDL:2015/02/26 00:00:00 A . (...) -- C:\WINDOWS\System32\ambakdrv.sys [30648]
O58 - SDL:2015/02/26 00:00:00 A . (...) -- C:\WINDOWS\System32\ammntdrv.sys [151480]
O58 - SDL:2013/11/29 09:31:28 A . (...) -- C:\WINDOWS\System32\ampa.sys [17008]
O58 - SDL:2015/02/26 00:00:00 A . (...) -- C:\WINDOWS\System32\amwrtdrv.sys [17848]
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\WINDOWS\System32\epmntdrv.sys [18528]
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\WINDOWS\System32\EuGdiDrv.sys [10848]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (26) - 5s
O61 - LFC: 2015/12/01 11:52:05 A . (.YL Computing, Inc.) -- C:\Users\Lecomte\Downloads\Win Utilities Pro 12\wuinstall.exe [6387536]
O61 - LFC: 2015/11/30 18:37:46 A . (.ArcticLine Software.) -- C:\Users\Lecomte\Downloads\Programs\FolderMarkerFree.exe [4550888]
O61 - LFC: 2015/12/01 20:10:31 A . (.fredodiable.) -- C:\Users\Lecomte\Downloads\Programs\Infected Scanner.exe [6436864]
O61 - LFC: 2015/11/24 21:34:55 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\winrar-w32-5.30-fr.exe [1878048]
O61 - LFC: 2015/11/24 21:34:57 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\winrar-x64-5.30-fr.exe [2052648]
O61 - LFC: 2015/11/24 21:34:50 A . (.PortableAppZ.blogspot.com.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\WinRARPortable.exe [61977]
O61 - LFC: 2015/11/24 21:34:51 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\Ace32Loader.exe [62968]
O61 - LFC: 2015/11/24 21:34:55 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\Rar.exe [532984]
O61 - LFC: 2015/11/24 21:34:50 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\UNACEV2.DLL [77312]
O61 - LFC: 2015/11/24 21:34:52 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\UnRAR.exe [336888]
O61 - LFC: 2015/11/24 21:34:54 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\WinRAR.exe [1533944]
O61 - LFC: 2015/11/24 21:34:55 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\Rar.exe [503800]
O61 - LFC: 2015/11/24 21:34:45 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\UNACEV2.DLL [77312]
O61 - LFC: 2015/11/24 21:34:52 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\UnRAR.exe [315384]
O61 - LFC: 2015/11/24 21:34:55 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\WinRAR.exe [1437688]
O61 - LFC: 2015/11/28 16:13:14 A . (..) -- C:\Users\Lecomte\AppData\Roaming\NVIDIA\GLCache\b3a8e4b7c162e1032a8c0d73b41217fc\023efcb37a204133\8e7fb01305bf8f5d.bin [11088]
O61 - LFC: 2015/11/30 18:00:40 A . (..) -- C:\Users\Lecomte\AppData\Roaming\NVIDIA\GLCache\1160d86e22ac7aa1379289208daf7c15\023efcb37a204133\cb72a0f2395e7e0a.bin [1352]
O61 - LFC: 2015/11/27 17:31:11 A . (..) -- C:\Users\Lecomte\AppData\Roaming\IDM\DwnlData\Lecomte\AdwCleaner-5.022_1\AdwCleaner-5.022.exe [128903]
O61 - LFC: 2015/12/01 11:44:36 A . (..) -- C:\Users\Lecomte\AppData\Roaming\Genie9\GenieTimeLine\Jobs\{F4298088-7F22-4808-98AC-50A36B17C7A9}\Data\QueueTimer.bin [12]
O61 - LFC: 2015/11/27 19:54:14 A . (..) -- C:\Users\Lecomte\AppData\Roaming\Apowersoft\ApowersoftVideoHelper.dll [6168940]
O61 - LFC: 2015/11/25 17:11:32 A . (..) -- C:\Users\Lecomte\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin [4279392]
O61 - LFC: 2015/11/29 18:28:20 A . (..) -- C:\Users\Lecomte\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [39592]
O61 - LFC: 2015/11/30 20:26:25 A . (..) -- C:\Users\Lecomte\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2015/11/28 15:47:44 A . (..) -- C:\Users\Lecomte\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [433477]
O61 - LFC: 2015/12/01 20:04:18 A . (..) -- C:\Users\Lecomte\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/11/29 18:12:06 A . (..) -- C:\Users\Lecomte\AppData\Local\ACD Systems\Catalogs\9.0Pro\Default\ver.bin [12]
---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
---\\ Menu de démarrage Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
---\\ Recherche d'infection sur les navigateurs (14) - 6s
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.defaultenginename", "omniboxes"); =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.alias", "omniboxes"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.iconURL", "http://www.omniboxes.com/favicon.ico"); =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.name", "omniboxes"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.ptid", "ient07031"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.uid", "ST1000DM003-1ER162_Z4Y83VBRXXXXZ4Y83VBR"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.url", "http://www.omniboxes.com/web/?type=ds&ts=1448362929&z=dcfc5b83db7e9b09a94e32dg0zbz2b[...] =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.selectedEngine", "omniboxes"); =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("extensions.yahooprotected@gmail.com.install-event-fired", true); =>PUP.Optional.WinYahoo
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {fcd9f10e-0daa-405f-bca0-0dd3f37c59d9} - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (42) - 0s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [283136] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1335296] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [954368] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [954880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [31232] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [93696] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [106496] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1008640] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [226304] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [133120] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [324608] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [371200] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [95744] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2093056] ©
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [196096] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [167424] ©
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [187392] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [106496] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [679936] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [497152] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [72192] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2236416] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1168896] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [593920] ©
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [63488] ©
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440] ©
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1019392] ©
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [343040] ©
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [713216] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136] ©
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] ©
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016] ©
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [1015808] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [359936] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [237568] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [58368] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [200192] ©
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (20) - 11s
SR - Auto [23/09/2015] [ 1137168] Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ©
SS - Demand [10/11/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [15/09/2015] [ 29912] AOMEI Backupper Scheduler Service (Backupper Service) . (.AOMEI Tech Co., Ltd..) - C:\Program Files (x86)\AOMEI Backupper\ABService.exe ©
SR - Auto [23/01/2012] [ 1858048] FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe ©
SS - Demand [26/04/2011] [ 2702848] Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - Auto [23/11/2015] [ 108032] Freemake Improver (Freemake Improver) . (.Freemake.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe ©
SR - Auto [23/02/2015] [ 678064] Genie Timeline Service (GenieTimelineService) . (.Genie9.) - C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe ©
SS - Auto [02/10/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [02/10/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [10/11/2015] [ 2934048] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [11/08/2015] [ 4884064] Acronis Managed Machine Service Mini (mmsminisrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe ©
SS - Demand [11/11/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [18/08/2015] [ 933168] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SR - Auto [25/08/2014] [ 389896] Cyberlink RichVideo64 Service(CRVS) (RichVideo64) . (.Copyright 2004.) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
SR - Auto [21/05/2015] [ 743688] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe ©
SR - Auto [04/02/2015] [ 409800] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
SR - Auto [10/09/2015] [ 7637744] Acronis Sync Agent Service (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe ©
SR - Auto [13/07/2015] [ 93040] TomTomHOMEService (TomTomHOMEService) . (.TomTom.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe ©
SS - Demand [02/11/2015] [ 14800] WiseHDInfo (WiseHDInfo) . (.wisecleaner.com.) - C:\Windows\WiseHDInfo64.dll ©
---\\ Scan Additionnel (22) - 0s
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\TSv =>PUP.Optional.Elex
HKCU\SOFTWARE\Vittalia =>PUP.Optional.Vittalia
C:\Windows\AutoKMS\AutoKMS.exe =>HackTool.AutoKMS
C:\WINDOWS\System32\Tasks\AutoKMS =>HackTool.AutoKMS
C:\Program Files (x86)\Picexa\PicexaSvc.exe =>PUP.Optional.Picexa
C:\Users\Lecomte\AppData\Roaming\TSv\TSvr.exe =>PUP.Optional.Elex
C:\ProgramData\OWMiniProO\WMiniPro.exe =>PUP.Optional.WpManager
C:\Users\Lecomte\AppData\Local\Google\Chrome\User Data\Default\Extensions\oljlcbniifdjapjocdfamhlnmpkojdkm =>Hijacker.Browser
C:\Program Files (x86)\Picexa =>PUP.Optional.Picexa
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picexa =>PUP.Optional.Picexa
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
C:\Users\Lecomte\AppData\Roaming\eCyber =>PUP.Optional.Elex
C:\Users\Lecomte\AppData\Roaming\RPEng =>PUP.Optional.Generic
C:\Users\Lecomte\AppData\Roaming\TSv =>PUP.Optional.Elex
C:\WINDOWS\Prefetch\AUTOKMS.EXE-10FEC7B2.pf =>HackTool.AutoKMS
C:\WINDOWS\Prefetch\SH_INSTALLER.EXE-DF59248B.pf =>.Superfluous.SpyHunter
C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER.EXE-13E5AEF9.pf =>.Superfluous.SpyHunter
C:\WINDOWS\Prefetch\SPYHUNTER4.EXE-FAC67AFB.pf =>.Superfluous.SpyHunter
C:\WINDOWS\Prefetch\TOOLDISKCLEANER.EXE-D536375E.pf =>PUP.Optional.DiskCleaner
---\\ Récapitulatif des éléments trouvés sur votre station (14) - 0s
http://www.nicolascoolman.fr/?p=297 =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/?p=996 =>PUP.Optional.Elex
http://www.nicolascoolman.fr/?p=1308 =>PUP.Optional.Vittalia
http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Picexa
http://www.nicolascoolman.fr/?p=173 =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=401 =>PUP.Optional.Downware
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DiskCleaner
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Omniboxes
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/?p=666 =>PUP.Optional.QuickStart
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WinYahoo
~ End of the scan, 23870 items in 66 seconds (1079)(0)
~ Démarré par Lecomte (Administrator) (2015/12/01 20:15:15)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Lecomte\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Lecomte\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v46.0.2490.86
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
MSIE: Internet Explorer v11.0.10240.16590
---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, VOLUME_KMSCLIENT channel
Windows ID Activation : OK
~ Windows Partial Key : T83GX
Windows License : OK
Expiration Licence Windows : 258731 minute(s) (180 jour(s))
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK
---\\ Logiciels de protection (1) - 1s
Windows Defender (Activate)
---\\ Logiciels d'optimisation (1) - 1s
CCleaner v5.12
---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 19 NPAPI
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8370.872 MB (71% free)
System Restore: Activé (Enable)
System drive C: has 98 GB () free of 152 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-BUREAU
~ User Name: Lecomte
~ Logged in as Administrator
---\\ Enumération des unités disques (10) - 0s
~ Drive C: has 98 GB free of 152 GB (System)
~ Drive D: has 251 GB free of 264 GB
~ Drive G: has 14 GB free of 152 GB
~ Drive H: has 147 GB free of 208 GB
~ Drive I: has 17 GB free of 101 GB
~ Drive J: has 75 GB free of 167 GB
~ Drive L: has 167 GB free of 183 GB
~ Drive M: has 152 GB free of 172 GB
~ Drive N: has 109 GB free of 162 GB
~ Drive S: has 70 GB free of 170 GB
---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 0s
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - 10/09/2015 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4532304] ©
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] ©
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 10/09/2015 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [290312] ©
[MD5.E5D86250453B33900666D92ED1A92ABE] - 03/10/2015 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [2740224] ©
[MD5.A7C48B051A9C5D5054916DE5BEBBCA2D] - 05/11/2015 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [579072] ©
[MD5.ECB1943967424DFB96E03F6A098434EF] - 10/09/2015 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] ©
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [680256] ©
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] ©
[MD5.8C795953726C7D2DE72CE4748208C5ED] - 10/09/2015 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] ©
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] ©
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] ©
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] ©
[MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] ©
[MD5.C277A49F8A8295840DEBC9240B75A282] - 10/07/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] ©
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] ©
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] ©
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] ©
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] ©
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - 10/09/2015 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2116448] ©
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] ©
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] ©
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/09/2015 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] ©
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] ©
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] ©
---\\ Logiciels installés (91) - 6s
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} ©
O42 - Logiciel: ACDSee Pro 9 (64-bits) - (.ACD Systems International Inc..) [HKLM][64Bits] -- {AAB2B2D2-1B27-4EEC-B033-6F9B6FFEEF4C} ©
O42 - Logiciel: ACDSee Ultimate 9 (64-bits) - (.ACD Systems International Inc..) [HKLM][64Bits] -- {97EE2327-B39E-429C-970B-0DB6CBBEC8E1} ©
O42 - Logiciel: Acronis True Image 2016 - (.Acronis.) [HKLM][64Bits] -- {5E5999D7-85DD-4B82-B48B-5F60BDFAC502} ©
O42 - Logiciel: Acronis True Image 2016 - (.Acronis.) [HKLM][64Bits] -- {5E5999D7-85DD-4B82-B48B-5F60BDFAC502}Visible ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Photoshop 7.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop 7.0 ©
O42 - Logiciel: AOMEI Backupper Professional - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {A83692F5-3E9B-4E95-9E7E-B5DF55E6C09D}_is1 ©
O42 - Logiciel: AOMEI Partition Assistant Pro Edition 5.5 - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {02F850ED-FD0E-4ED1-BE0B-5498165BF300}_is1 ©
O42 - Logiciel: Ashampoo Burning Studio 2016 v.16.0.0 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-B4A4-B41A-6B97-C62C82CEB6A9}_is1 ©
O42 - Logiciel: Ashampoo Music Studio 5 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-5BBE-576E-893B-711D4D8298ED}_is1 ©
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex ©
O42 - Logiciel: EaseUS Partition Master 10.8 Trial Edition - (.EaseUS.) [HKLM][64Bits] -- EaseUS Partition Master Trial Edition_is1 ©
O42 - Logiciel: e-Carte Bleue La Banque Postale - (...) [HKLM][64Bits] -- {11B0F8D4-FD80-4800-ABA8-50D28FF769AF}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {39AB2E37-1A55-4292-A5D3-971E9F70D0F8} ©
O42 - Logiciel: Folder Marker Free - (.ArcticLine Software.) [HKLM][64Bits] -- Folder Marker Free_is1
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM][64Bits] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 ©
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 ©
O42 - Logiciel: Free Media Player - (.Macgo Inc..) [HKLM][64Bits] -- Free Media Player
O42 - Logiciel: Freemake Video Converter version 4.1.9 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1 ©
O42 - Logiciel: Genie Timeline - (.Genie9.) [HKLM][64Bits] -- Genie Timeline ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: GPL Ghostscript 8.70 - (...) [HKLM][64Bits] -- GPL Ghostscript 8.70
O42 - Logiciel: HomeGedScan - (.Home Software.) [HKLM][64Bits] -- HomeGedScan
O42 - Logiciel: Inpaint 5.4 - (.Teorex.) [HKLM][64Bits] -- {2AEDC172-479F-47AE-8A48-A0524D4AED5B}_is1 ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager ©
O42 - Logiciel: Java 8 Update 66 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218066F0} ©
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} ©
O42 - Logiciel: MAGIX Photos sur DVD 2013 Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- {343C08A0-03A8-40F0-A633-94947F87C61A} ©
O42 - Logiciel: MAGIX Photos sur DVD 2013 Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{343C08A0-03A8-40F0-A633-94947F87C61A} ©
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {E589FD0B-1A6C-425F-847E-429FEC9589C8} ©
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{E589FD0B-1A6C-425F-847E-429FEC9589C8} ©
O42 - Logiciel: MAGIX Video Pro X5 Update - (.MAGIX AG.) [HKLM][64Bits] -- {61E48EC3-22BD-45EA-88FE-25BE2E256FD3} ©
O42 - Logiciel: Microsoft Access MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0015-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft DCF MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0090-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Excel MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0016-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Groove MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00BA-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft InfoPath MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0044-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft OneNote MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00A1-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Outlook MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001A-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0018-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Publisher MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0019-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Skype for Business MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Word MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001B-040C-1000-0000000FF1CE} ©
O42 - Logiciel: Mira version 2.6.0.0 - (...) [HKLM][64Bits] -- Mira_is1
O42 - Logiciel: Mises à jour NVIDIA 10.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: Movavi Video Suite 12 - (.Movavi.) [HKLM][64Bits] -- Movavi Video Suite 12 ©
O42 - Logiciel: Movavi Video Suite 12 version 12.0.0 - (.Team PK.) [HKLM][64Bits] -- {3D4391B7-3A22-4308-8F47-95D5BC57C4CC}_is1
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: Mozilla Thunderbird 38.2.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.2.0 (x86 fr) ©
O42 - Logiciel: Mozilla Thunderbird 38.4.0 (x86 fr) - (.Mozilla.) [HKCU][64Bits] -- Mozilla Thunderbird 38.4.0 (x86 fr) ©
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} ©
O42 - Logiciel: MusicBee 2.5 - (.Steven Mayall.) [HKLM][64Bits] -- MusicBee ©
O42 - Logiciel: MyBank version 1.1 - (.SoftChris.) [HKLM][64Bits] -- {AC8DF434-9E2B-4B00-98C7-ECF275AAE603}_is1
O42 - Logiciel: MyDriveConnect 4.0.4.2260 - (.TomTom.) [HKLM][64Bits] -- MyDriveConnect ©
O42 - Logiciel: MyFreeCodec - (...) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer ©
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision ©
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo ©
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core ©
O42 - Logiciel: Panneau de configuration NVIDIA 341.81 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel ©
O42 - Logiciel: PowerpointImageExtractor - (...) [HKLM][64Bits] -- PowerpointImageExtractor_is1
O42 - Logiciel: proDAD Adorage 2.0 - (.proDAD GmbH.) [HKLM][64Bits] -- proDAD-Adorage-2.0 ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A} ©
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A} ©
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {88547073-C566-4895-9005-EBE98EA3F7C7} ©
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7} ©
O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} ©
O42 - Logiciel: Soft Organizer version 5.02 - (.ChemTable Software.) [HKLM][64Bits] -- Soft Organizer_is1 ©
O42 - Logiciel: Streaming Audio Recorder V4.0.0 - (.APOWERSOFT LIMITED.) [HKLM][64Bits] -- {B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1 ©
O42 - Logiciel: Studio Video Ultimate - (.Avanquest.) [HKLM][64Bits] -- {9074000C-5331-4686-92D8-6C3066E99C63} ©
O42 - Logiciel: Suivi des soins et des remboursements de Santé - (.Emjysoft.) [HKLM][64Bits] -- {6CC28634-D98C-4DE1-9EE7-E121277996F6}_is1 ©
O42 - Logiciel: Suivi des soins et des remboursements de Santé v2.4 - (.Emjysoft.) [HKLM][64Bits] -- Suivi des soins et des remboursements de Santé_is1 ©
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {7A2BB1C8-903D-4585-9F3B-CADD67D07D37}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} ©
O42 - Logiciel: Vasco da Gama 5 HDPro - (.MotionStudios.) [HKLM][64Bits] -- {067D2172-F8F3-477D-B4EE-0B0AA967D544} ©
O42 - Logiciel: Video Explosion Ultimate - (.Avanquest Software.) [HKLM][64Bits] -- {06A965CC-D8A3-4A33-AA9A-78292E9DBBC8} ©
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM][64Bits] -- {4412F224-3849-4461-A3E9-DEEF8D252790} ©
O42 - Logiciel: VSO Downloader 4.5.0.14 - (.VSO Software.) [HKLM][64Bits] -- {A0D0BA9E-F1A6-44FF-AA14-03ED96B3D56D}_is1 ©
O42 - Logiciel: Windows Uninstaller 1.7 - (.Alex T..) [HKLM][64Bits] -- Windows Uninstaller_is1
O42 - Logiciel: WinRAR 5.30 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: WinUtilities Professional Edition 12.02 - (.YL Computing, Inc.) [HKLM][64Bits] -- {FC274982-5AAD-4C20-848D-4424A5043009}_is1
O42 - Logiciel: WonderFox DVD Video Converter 8.6 - (.WonderFox Soft, Inc..) [HKLM][64Bits] -- WonderFox DVD Video Converter
O42 - Logiciel: Zeta Uploader - (.Zeta Software GmbH.) [HKCU][64Bits] -- ZetaUploader
---\\ HKCU & HKLM Software Keys (123) - 6s
HKLM\SOFTWARE\Wow6432Node\ACD Systems
HKLM\SOFTWARE\Wow6432Node\Acronis
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\ASDMA
HKLM\SOFTWARE\Wow6432Node\Ashampoo
HKLM\SOFTWARE\Wow6432Node\Avanquest
HKLM\SOFTWARE\Wow6432Node\AVS4YOU
HKLM\SOFTWARE\Wow6432Node\CDex
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\e-Carte Bleue La Banque Postale
HKLM\SOFTWARE\Wow6432Node\EaseUS
HKLM\SOFTWARE\Wow6432Node\EaseUS Todo Backup
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Freemake
HKLM\SOFTWARE\Wow6432Node\Genie-Soft
HKLM\SOFTWARE\Wow6432Node\Genie9
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GPL Ghostscript
HKLM\SOFTWARE\Wow6432Node\hdcode
HKLM\SOFTWARE\Wow6432Node\HomeGedScan
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Lidan
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MAGIX
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MotionStudios
HKLM\SOFTWARE\Wow6432Node\MOVAVI
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Myfree Codec
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\proDAD
HKLM\SOFTWARE\Wow6432Node\Siber Systems
HKLM\SOFTWARE\Wow6432Node\Softland
HKLM\SOFTWARE\Wow6432Node\SoftVTU
HKLM\SOFTWARE\Wow6432Node\TomTom
HKLM\SOFTWARE\Wow6432Node\TSv =>PUP.Optional.Elex
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\VSO
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\Xara
HKLM\SOFTWARE\Wow6432Node\Yahoo
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\ACD Systems
HKCU\SOFTWARE\Acronis
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Antanda
HKCU\SOFTWARE\Apowersoft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArcticLine
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Avanquest
HKCU\SOFTWARE\AVS4YOU
HKCU\SOFTWARE\ChemTable Software
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\EaseUS
HKCU\SOFTWARE\Emjysoft
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\Genie9
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\IvoSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KC Softwares
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Ligos
HKCU\SOFTWARE\MacGo
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magix
HKCU\SOFTWARE\MAGIX AG
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MarineCat
HKCU\SOFTWARE\Mirage
HKCU\SOFTWARE\MOVAVI
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Myfree Codec
HKCU\SOFTWARE\NeatMP3
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\proDAD
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Siber Systems
HKCU\SOFTWARE\Softland
HKCU\SOFTWARE\SoftVTU
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Stardock
HKCU\SOFTWARE\Teorex
HKCU\SOFTWARE\TomTom
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\Vittalia =>PUP.Optional.Vittalia
HKCU\SOFTWARE\VSO
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zeta Uploader
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Liste des services NT non Microsoft et non désactivés (15) - 0s
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ©
O23 - Service: AOMEI Backupper Scheduler Service (Backupper Service) . (.AOMEI Tech Co., Ltd. - AOMEI Backupper Schedule task service.) - C:\Program Files (x86)\AOMEI Backupper\ABService.exe ©
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe ©
O23 - Service: Freemake Improver (Freemake Improver) . (.Freemake - FreemakeUtilsService.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe ©
O23 - Service: Genie Timeline Service (GenieTimelineService) . (.Genie9 - GenieTimelineService - Copyright © 2001 - 2.) - C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: Acronis Managed Machine Service Mini (mmsminisrv) . (.Acronis - Managed Machine Service Mini.) - C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) - C:\Windows\System32\nvvsvc.exe ©
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: SpyHunter 4 Service (SpyHunter 4 Service) . (...) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (.not file.)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe ©
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
O23 - Service: Acronis Sync Agent Service (syncagentsrv) . (.Acronis - TrueImage Sync Agent Service.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe ©
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe ©
---\\ Tâches planifiées en automatique (21) - 4s
[MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.6DD7175EE1C04C805941D96E9A64926E] [APT] [AutoKMS] (.CODYQX4.) -- C:\Windows\AutoKMS\AutoKMS.exe [5046784] =>HackTool.AutoKMS
[MD5.5C35525CEBE7B59FAFA05D5E98D7EDEF] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6602152] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [SBWUpdateTask_Logon_c8eb578f-002522E7EE29] (...) -- C:\Program Files (x86)\Common Files\Speedbit\SbUpdate\SBUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [SBWUpdateTask_Time_c8eb578f-002522E7EE29] (...) -- C:\Program Files (x86)\Common Files\Speedbit\SbUpdate\SBUpdate.exe (.not file.) [0]
[MD5.3183864C60DEE792D5155B15B896F7B2] [APT] [SpyHunter4Startup] (.Enigma Software Group USA, LLC..) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [8337792] =>.Superfluous.SpyHunter
[MD5.00000000000000000000000000000000] [APT] [Wise Care 365.job] (...) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Wise Turbo Checker.job] (...) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe (.not file.) [0]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1086] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1090] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3988] ©
O39 - APT: AutoKMS - (.CODYQX4.) -- C:\WINDOWS\System32\Tasks\AutoKMS [3804] =>HackTool.AutoKMS
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2862] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3936] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4172] ©
O39 - APT: SBWUpdateTask_Logon_c8eb578f-002522E7EE29 - (...) -- C:\WINDOWS\System32\Tasks\SBWUpdateTask_Logon_c8eb578f-002522E7EE29 [3524]
O39 - APT: SBWUpdateTask_Time_c8eb578f-002522E7EE29 - (...) -- C:\WINDOWS\System32\Tasks\SBWUpdateTask_Time_c8eb578f-002522E7EE29 [4072]
O39 - APT: SpyHunter4Startup - (.Enigma Software Group USA, LLC..) -- C:\WINDOWS\System32\Tasks\SpyHunter4Startup [3426]
---\\ Processus lancés (32) - 0s
[MD5.8EE5AA5E63D70E3A073A98E3E6CEFE5B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [933168] [PID.1172] ©
[MD5.32B37DD6E7D423DF3CF3B196C8005F85] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.1184] ©
[MD5.25D41107A93F237755BD9D59954FC292] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1200304] [PID.1428] ©
[MD5.8EE5AA5E63D70E3A073A98E3E6CEFE5B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [933168] [PID.1436] ©
[MD5.723D70BA249750FBD05A9906652A151D] - (.Taiwan Shui Mu Chih Ching Technology Limited - Picexa service.) -- C:\Program Files (x86)\Picexa\PicexaSvc.exe [730248] [PID.2356] =>PUP.Optional.Picexa
[MD5.72E77257398095D743B6C5046C94CAB9] - (.Acronis - Acronis Scheduler 2.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1137168] [PID.2720] ©
[MD5.7987612A5228F3516E428A6D4BD626E4] - (.Genie9 - GenieTimelineService - Copyright © 2001 - 2.) -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [678064] [PID.2908] ©
[MD5.F45B7D435C949F40CB48704CEE27E9B8] - (.tsvr.com - tsvr.com.) -- C:\Users\Lecomte\AppData\Roaming\TSv\TSvr.exe [580752] [PID.2956] =>PUP.Optional.Elex
[MD5.7228CA6320ABA120DAAA69C740B73943] - (.AOMEI Tech Co., Ltd. - AOMEI Backupper Schedule task service.) -- C:\Program Files (x86)\AOMEI Backupper\ABService.exe [29912] [PID.2976] ©
[MD5.895B73F5BB93D46962258E6514A7ED8A] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896] [PID.2996]
[MD5.C2BDC7EA68CAE9E9A088F77BAC88FB92] - (.IObit - Product Updater.) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048] [PID.3036] ©
[MD5.9DA3B55B17B54789AFB8C657D4ACE4D7] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) -- C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688] [PID.2028] ©
[MD5.0FE2FC59C0B9A3CA3EC2B18E1CCCF2DD] - (.TomTom - Windows Service for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [93040] [PID.2296] ©
[MD5.B048C87A82322C06F0F22C7627D60B57] - (.Acronis - File Level CDP Manager Service.) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [4463960] [PID.3124] ©
[MD5.F19FD4D79DE6C843F38110BA1594A6C7] - (.DTools LIMITED - DTools.) -- C:\ProgramData\OWMiniProO\WMiniPro.exe [295424] [PID.3132] =>PUP.Optional.WpManager
[MD5.D9652739D1007B9B5CE34CEF38E095C5] - (.Acronis - Managed Machine Service Mini.) -- C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064] [PID.3208] ©
[MD5.DB944D000B782C5675FEA922FBF523D4] - (.Genie9 - Genie Timeline Agent.) -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineAgent.exe [1357488] [PID.4780] ©
[MD5.93B671A2C4043DBB827EA325BE96A2E4] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2446000] [PID.3968] ©
[MD5.A082DE38AC82C5099692ADAA0AEFDDD4] - (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1793736] [PID.2556] ©
[MD5.534672260B59FE25BEAF96BF91CBF557] - (.ACD Systems - acdID InTouch2.) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\acdIDInTouch2.exe [2087696] [PID.6212] ©
[MD5.F2BCC39EC53F763D87D791BCA6758945] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3911248] [PID.6376] ©
[MD5.6D928BAB67FF27D1A3076DDB0B684BAC] - (...) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe [3220488] [PID.6420]
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.6748] ©
[MD5.E337785DA1958E9AB02DDB2369EF46E8] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe [307016] [PID.6768] ©
[MD5.B59CAA2A05F647A05DF4486FBCD47E75] - (...) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7568104] [PID.7016]
[MD5.793D7221E5EC69EA615349A13B702B8C] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528] [PID.7052] ©
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.6184] ©
[MD5.8FDA65209157144C3E28809D75A47526] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048] [PID.2428] ©
[MD5.1173C0D87C37D145D65E2750875B721F] - (.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744] [PID.5052] ©
[MD5.40335C8877B6B84842AF03A40E1BB206] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8591272] [PID.3288] ©
[MD5.4B0583A0A6A22D9F453BFFD467E68190] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392872] [PID.7400] ©
[MD5.3A963DBC12157655FE23030FADBC5C15] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Lecomte\ZHPDiag3.exe [1979392] [PID.6400] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (41) - 11s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api.hostip.info
G0 - GCSP: Preferences [User Data\Default][HomePage] http://insttranslate.com:8080
G0 - GCSP: Preferences [User Data\Default][HomePage] http://translate.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com
G2 - GCE: Preference [User Data\Default] [aabglcajpbohcelholbgmljkfliealko] Youtube MP3 Converter and downloader
G2 - GCE: Preference [User Data\Default] [aapbdbdomjkkjkaonfhkkikfgjllcleb] __MSG_8969005060131950570__
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfiebajnnakcjkedcfamhdfgckcbnhke] PagesJaunes
G2 - GCE: Preference [User Data\Default] [cocdiblefidhknchklabbojfoebldcig] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dhjopcafpdkbgmadfbdjkdgjefchgfhg] Meteo France
G2 - GCE: Preference [User Data\Default] [ecaabliejjdikjnkahhikeelbblahgoi] __MSG_themeName__
G2 - GCE: Preference [User Data\Default] [elicpjhcidhpjomhibiffojpinpmmpil] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eogmadihniohlnmipdhchaoagjhfnohc] Mahjong Solitaire
G2 - GCE: Preference [User Data\Default] [gdalhedleemkkdjddjgfjmcnbpejpapp] Facebook for Chrome
G2 - GCE: Preference [User Data\Default] [ggppmapmeglphhmbmdgimclmpnhckcjp] YouTube to MP3 - convert2mp3.cc
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [gmpaiomihcebnclahoknbodeiaiohcdi] HP Smart Print
G2 - GCE: Preference [User Data\Default] [hcmbnkeeammlnebnoebapffcbmbbcmpj] Traduction Français Anglais
G2 - GCE: Preference [User Data\Default] [hgdohmjplligggendhbmghhmpphabopi] YouTube To MP3!
G2 - GCE: Preference [User Data\Default] [idfnpgjblkahngbondojabhffkkdekbd] __MSG_name__
G2 - GCE: Preference [User Data\Default] [ihbiedpeaicgipncdnnkikeehnjiddck] Weather
G2 - GCE: Preference [User Data\Default] [ihmgiclibbndffejedjimfjmfoabpcke] __MSG_Kernel_AppName__
G2 - GCE: Preference [User Data\Default] [jiibmmkpgegglilfljknbciimldpedid] Youtubemp3.audio
G2 - GCE: Preference [User Data\Default] [kemfccojgjoilhfmcblgimbggikekjip] Turbo Download Manager
G2 - GCE: Preference [User Data\Default] [lkbhppfbabandkdmgjmifahoabeodiep] Solitaire
G2 - GCE: Preference [User Data\Default] [mcceagdollnkjlogmdckgjakjapmkdjf] Download Master
G2 - GCE: Preference [User Data\Default] [nfkpncleclnaihjlknbcpbjpanihohdh] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ngbcgifdaopbfflfhbcfeomijfbbcadi] Downloads
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [noaijdpnepcgjemiklgfkcfbkokogabh] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [ocifcklkibdehekfnmflempfgjhbedch] __MSG_name__
G2 - GCE: Preference [User Data\Default] [oljlcbniifdjapjocdfamhlnmpkojdkm] [http://www.video2mp3.net/chrome/v2m-updates.xml] video2mp3 =>Hijacker.Browser
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (11) - 1s
M0 - MFSP: prefs.js [Lecomte - mff8gdwc.default] http://home.speedbit.com/?s=FBRa205
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\info@youtube-mp3.org.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\printedit@DW-dev.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\s3google@translator.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\youtube2mp3@mondayx.de.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi
P2 - EXT FILE: (...) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.Rayto Yagami - From Youtube To MP3.) -- C:\Users\Lecomte\AppData\Roaming\Mozilla\Firefox\Profiles\mff8gdwc.default\extensions\youtubemp3conv@gmail.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.speedbit.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://home.speedbit.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://home.speedbit.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (1) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll ©
---\\ Applications lancées au démarrage du système (19) - 0s
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe ©
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O4 - HKLM\..\Run: [ACPW09FR] . (.ACD Systems - acdID InTouch2.) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\acdIDInTouch2.exe ©
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_0FD4756E76E38F97AFD41C47286FE2B3] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKCU\..\Run: [ACDSeeCommanderUltimate9] . (...) -- C:\Program Files\ACD Systems\ACDSee Ultimate\9.0\ACDSeeCommanderUltimate9.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKCU\..\Run: [ACDSeeCommanderPro9] . (...) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe
O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (...) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [AcronisTibMounterMonitor] . (.Acronis International GmbH - Acronis TIB Mounter Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKLM\..\Wow6432Node\Run: [ProductUpdater] . (.Copyright © 2015 - ProductUpdater.) -- C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [GoogleChromeAutoLaunch_0FD4756E76E38F97AFD41C47286FE2B3] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [ACDSeeCommanderUltimate9] . (...) -- C:\Program Files\ACD Systems\ACDSee Ultimate\9.0\ACDSeeCommanderUltimate9.exe
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKUS\S-1-5-21-2887575908-1994993601-2352395661-1001\..\Run: [ACDSeeCommanderPro9] . (...) -- C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
---\\ Protocole additionnel (24) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll ©
O18 - Handler: mso-minsb.16 [64Bits] - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL ©
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL ©
---\\ Contenu des dossiers Programmes (317) - 7s
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Acronis
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 01/11/2015 - [0] D -- C:\Program Files (x86)\AoaoPhoto Digital Studio
O43 - CFD: 15/11/2015 - [] D -- C:\Program Files (x86)\AOMEI Backupper
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 5.5
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Apowersoft
O43 - CFD: 24/11/2015 - [] D -- C:\Program Files (x86)\Ashampoo
O43 - CFD: 24/11/2015 - [] D -- C:\Program Files (x86)\Avanquest
O43 - CFD: 06/10/2015 - [0] D -- C:\Program Files (x86)\AVS4YOU
O43 - CFD: 19/10/2015 - [] D -- C:\Program Files (x86)\CDex
O43 - CFD: 01/12/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 24/10/2015 - [] D -- C:\Program Files (x86)\Cyberlink
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\DAP
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\e-Carte Bleue La Banque Postale
O43 - CFD: 21/11/2015 - [] D -- C:\Program Files (x86)\EaseUS
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Emjysoft
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Folder Marker
O43 - CFD: 19/10/2015 - [] D -- C:\Program Files (x86)\Foxit Software
O43 - CFD: 05/10/2015 - [] D -- C:\Program Files (x86)\Freemake
O43 - CFD: 08/10/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\gs
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\HomeGedScan
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\idoo PC Cleaner
O43 - CFD: 05/10/2015 - [] D -- C:\Program Files (x86)\Inpaint
O43 - CFD: 25/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\MacGo
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\MAGIX
O43 - CFD: 05/10/2015 - [0] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Works Suite 2005
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\MotionStudios
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Movavi Core 5.1.0
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Movavi Video Suite 12
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 27/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 02/10/2015 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\MusicBee
O43 - CFD: 07/10/2015 - [] D -- C:\Program Files (x86)\MyDrive Connect
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\MyFree Codec
O43 - CFD: 01/10/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Picexa =>PUP.Optional.Picexa
O43 - CFD: 08/11/2015 - [] D -- C:\Program Files (x86)\PowerpointImageExtractor_V1_2
O43 - CFD: 05/10/2015 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\proDAD
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\Samsung
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Soft Organizer
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\SoftChris
O43 - CFD: 07/10/2015 - [] D -- C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 07/10/2015 - [] D -- C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\VSO
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 30/07/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 30/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 01/12/2015 - [] D -- C:\Program Files (x86)\WinUtilities
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\WonderFox Soft
O43 - CFD: 03/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 10/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ACD Systems
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
O43 - CFD: 10/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant Pro Edition 5.5
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avanquest
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 19/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
O43 - CFD: 27/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download Accelerator Plus (DAP)
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e-Carte Bleue La Banque Postale
O43 - CFD: 21/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.8
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Marker
O43 - CFD: 19/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genie9
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeGedScan
O43 - CFD: 05/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inpaint
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
O43 - CFD: 30/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotionStudios
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Video Suite 12
O43 - CFD: 06/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 28/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\onOne Software
O43 - CFD: 01/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
O43 - CFD: 24/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picexa =>PUP.Optional.Picexa
O43 - CFD: 06/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft Organizer
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftChris
O43 - CFD: 10/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 07/11/2015 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
O43 - CFD: 17/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suivi des soins et des remboursements de Santé
O43 - CFD: 30/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/09/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\ACD Systems
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\Acronis
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\AomeiBR
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Apowersoft
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 25/11/2015 - [] D -- C:\ProgramData\Avanquest
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Avanquest Software
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\AVS4YOU
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\ClassicShell
O43 - CFD: 03/10/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 30/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 18/10/2015 - [] D -- C:\ProgramData\Emjysoft
O43 - CFD: 05/10/2015 - [] D -- C:\ProgramData\Freemake
O43 - CFD: 27/11/2015 - [] D -- C:\ProgramData\Genie9
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\HomeGedScan
O43 - CFD: 25/10/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\MAGIX
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 02/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 10/09/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Movavi
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Movavi Video Suite 12
O43 - CFD: 28/11/2015 - [0] D -- C:\ProgramData\Nalpeiron
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\OWMiniProO
O43 - CFD: 23/11/2015 - [0] D -- C:\ProgramData\oxInstall
O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\PC1Data
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\PRICache
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\proDAD
O43 - CFD: 29/11/2015 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 28/11/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\RoboForm
O43 - CFD: 06/10/2015 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 02/10/2015 - [] D -- C:\ProgramData\ShellIcons
O43 - CFD: 18/11/2015 - [0] D -- C:\ProgramData\simplitec
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\Softland
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\Stardock
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 23/11/2015 - [] HD -- C:\ProgramData\sysnfxo
O43 - CFD: 27/11/2015 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 30/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 30/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 30/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\VSO
O43 - CFD: 04/10/2015 - [0] SHD -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
O43 - CFD: 14/11/2015 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 04/10/2015 - [0] SHD -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 15/11/2015 - [] D -- C:\Program Files (x86)\Common Files\ACD Systems
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Acronis
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\Common Files\EagleGet
O43 - CFD: 05/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Freemake Shared
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Shared
O43 - CFD: 29/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 03/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ACD Systems
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Acronis
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Adobe
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Anvsoft
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Apowersoft
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Apple Computer
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ArcticLine
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Ashampoo
O43 - CFD: 21/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Ashampoo Slideshow Studio 2015
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\AVS4YOU
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\BITS
O43 - CFD: 17/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ChemTable Software
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ClassicShell
O43 - CFD: 24/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\CyberLink
O43 - CFD: 06/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\DiskDefrag
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\DMCache
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\DM_Software
O43 - CFD: 11/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\eCyber =>PUP.Optional.Elex
O43 - CFD: 28/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Emjysoft
O43 - CFD: 22/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\FlashgetSetup
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\FolderColorize
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Foxit Software
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Genie9
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Identities
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\IDM
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Infected Scanner
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\IObit
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Macromedia
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MAGIX
O43 - CFD: 05/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\Malwarebytes
O43 - CFD: 01/12/2015 - [] SD -- C:\Users\Lecomte\AppData\Roaming\Microsoft
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MotionStudios
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MOVAVI
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Mozilla
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\MusicBee
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Netscape
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\NVIDIA
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Opera Software
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\PeaZip
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\proDAD
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ProductData
O43 - CFD: 30/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\RoboForm
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\RPEng =>PUP.Optional.Generic
O43 - CFD: 06/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Samsung
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Shortcut
O43 - CFD: 18/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\simplitec
O43 - CFD: 22/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Softland
O43 - CFD: 30/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\SoftMaker
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Sun
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Thunderbird
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\TomTom
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\TSv =>PUP.Optional.Elex
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\TuneUp Software
O43 - CFD: 03/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Roaming\Windows Live Writer
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\WinRAR
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\ZHP
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ACD Systems
O43 - CFD: 04/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Aiseesoft Studio
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Apowersoft
O43 - CFD: 03/10/2015 - [0] SHD -- C:\Users\Lecomte\AppData\Local\Application Data
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ashampoo
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\CDex
O43 - CFD: 17/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ChemTable Software
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\ClassicShell
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Comms
O43 - CFD: 23/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Diagnostics
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Downloaded Installations
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Emjysoft
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\FreemakeVideoConverter
O43 - CFD: 25/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Google
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\GWX
O43 - CFD: 03/10/2015 - [0] SHD -- C:\Users\Lecomte\AppData\Local\Historique
O43 - CFD: 28/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MacGo
O43 - CFD: 02/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Macromedia
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MAGIX
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MAGIX_AG
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Micro Application
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Microsoft
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Microsoft Help
O43 - CFD: 31/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MicrosoftEdge
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Micro_Application
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Mixesoft
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Movavi
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Mozilla
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\MyBank
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Lecomte\AppData\Local\NVIDIA
O43 - CFD: 23/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\Ocster Backup Pro 8
O43 - CFD: 23/11/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\Ocster Backup Pro 9
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Opera Software
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Packages
O43 - CFD: 01/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\PackageStaging
O43 - CFD: 03/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\PeerDistRepub
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Programs
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Publishers
O43 - CFD: 06/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Samsung
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Stardock
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Temp
O43 - CFD: 03/10/2015 - [0] SHD -- C:\Users\Lecomte\AppData\Local\Temporary Internet Files
O43 - CFD: 01/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Thunderbird
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\TileDataLayer
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\TomTom
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\VirtualStore
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Windows Live
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Windows Live Writer
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Xara
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Local\Zeta Uploader
O43 - CFD: 03/10/2015 - [0] D -- C:\Users\Lecomte\AppData\Local\{11519058-1CDB-4864-B030-3AAA05164D0F}
O43 - CFD: 30/07/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 24/11/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 19/10/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 25/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
O43 - CFD: 05/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 27/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 29/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Macgo Free Media Player
O43 - CFD: 30/07/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicBee
O43 - CFD: 28/11/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 03/10/2015 - [] RD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/07/2015 - [] RSD -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WonderFox Soft
O43 - CFD: 22/11/2015 - [] D -- C:\Users\Lecomte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zeta Uploader
---\\ Derniers fichiers créés dans Windows Prefetcher (5) - 4s
O45 - LFCP:[MD5.3089779BD1F7460D41A2DCC92C467312] 30/11/2015 A -- C:\WINDOWS\Prefetch\AUTOKMS.EXE-10FEC7B2.pf =>HackTool.AutoKMS
O45 - LFCP:[MD5.4159E496CE24B53415626A3228B67733] 30/11/2015 A -- C:\WINDOWS\Prefetch\SH_INSTALLER.EXE-DF59248B.pf =>.Superfluous.SpyHunter
O45 - LFCP:[MD5.EB7885B3D284BFDAB04F1A080035950C] 30/11/2015 A -- C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER.EXE-13E5AEF9.pf =>.Superfluous.SpyHunter
O45 - LFCP:[MD5.87052916B67C7FB6A1AE9862CA040705] 30/11/2015 A -- C:\WINDOWS\Prefetch\SPYHUNTER4.EXE-FAC67AFB.pf =>.Superfluous.SpyHunter
O45 - LFCP:[MD5.33809A79873E22D879E7150A293F43B4] 01/12/2015 A -- C:\WINDOWS\Prefetch\TOOLDISKCLEANER.EXE-D536375E.pf =>PUP.Optional.DiskCleaner
---\\ ShellIconOverlayIdentifiers (SIOI) (16) - 0s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Lecomte\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL ©
O106 - SIOI: 0GenieTimeLine-BackedUp [0GenieTimeLine-BackedUp] - {88A8B1ED-EFEA-4A15-8D88-FA0055DCB824}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-Excluded [0GenieTimeLine-Excluded] - {B77E8651-93B1-40CD-8ECF-6F33DAC805A0}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-Folder [0GenieTimeLine-Folder] - {CEAF16CE-C11C-4081-BE29-DDE7F45A59DB}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-NotBackedUp [0GenieTimeLine-NotBackedUp] - {88A8B1EE-EFEA-4A15-8D88-FA0055DCB824}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: 0GenieTimeLine-Pending [0GenieTimeLine-Pending ] - {88A8B1EF-EFEA-4A15-8D88-FA0055DCB824}. (...) -- C:\Program Files\Genie9\Genie Timeline\x86\GSTimelineIconOverlay.gtl
O106 - SIOI: Acronis True Image Shell Sync Error Icon Overlay Extension [AcronisSyncError] - {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}. (.Acronis - Acronis True Image Shell Extensions.) -- C:\Program Files (x86)\Acronis\TrueImageHome\tishell.dll ©
O106 - SIOI: Acronis True Image Shell Sync In Progress Icon Overlay Extension [AcronisSyncInProgress] - {00F848DC-B1D4-4892-9C25-CAADC86A215D}. (.Acronis - Acronis True Image Shell Extensions.) -- C:\Program Files (x86)\Acronis\TrueImageHome\tishell.dll ©
O106 - SIOI: Acronis True Image Shell Sync Ok Icon Overlay Extension [AcronisSyncOk] - {71573297-552E-46fc-BE3D-3DFAF88D47B7}. (.Acronis - Acronis True Image Shell Extensions.) -- C:\Program Files (x86)\Acronis\TrueImageHome\tishell.dll ©
---\\ Liste des pilotes du système (70) - 1s
O58 - SDL:2015/07/10 06:09:24 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] ©
O58 - SDL:2015/07/10 06:03:12 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] ©
O58 - SDL:2015/07/10 06:05:17 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] ©
O58 - SDL:2015/07/10 06:03:16 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] ©
O58 - SDL:2015/07/10 06:05:17 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] ©
O58 - SDL:2011/11/28 13:51:44 A . (.AnvSoft Inc. - AnvSoft Virtual Audio Device.) -- C:\WINDOWS\System32\drivers\anvsnddrv.sys [33872]
O58 - SDL:2015/07/10 06:03:12 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] ©
O58 - SDL:2015/06/18 02:04:00 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] ©
O58 - SDL:2015/07/10 05:55:09 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] ©
O58 - SDL:2015/12/01 12:18:48 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\cjyeaf.sys [79064] ©
O58 - SDL:2012/10/19 03:52:32 N . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\WINDOWS\System32\drivers\Dot4.sys [151968] ©
O58 - SDL:2015/03/23 04:54:24 N . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928] ©
O58 - SDL:2014/10/27 10:47:56 A . (.eagleGet - eagleGet Network Filter.) -- C:\WINDOWS\System32\drivers\eagleGet.sys [80208] ©
O58 - SDL:2015/11/30 20:13:46 A . (...) -- C:\WINDOWS\System32\drivers\EsgScanner.sys [22704]
O58 - SDL:2014/12/15 00:59:40 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Backup Driver.) -- C:\WINDOWS\System32\drivers\eubakup.sys [60968] ©
O58 - SDL:2014/12/15 00:59:40 A . (...) -- C:\WINDOWS\System32\drivers\EUBKMON.sys [48168]
O58 - SDL:2014/12/15 00:59:40 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Access Driver.) -- C:\WINDOWS\System32\drivers\eudskacs.sys [18472] ©
O58 - SDL:2014/12/15 00:59:40 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Backup Image Preview Driver.) -- C:\WINDOWS\System32\drivers\EuFdDisk.sys [192040] ©
O58 - SDL:2015/07/10 05:55:06 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] ©
O58 - SDL:2015/11/02 15:18:26 A . (.Acronis International GmbH - File tracker minifilter driver.) -- C:\WINDOWS\System32\drivers\file_tracker.sys [323040] ©
O58 - SDL:2015/11/12 10:28:37 A . (.Acronis International GmbH - Acronis Storage Filter Management Driver.) -- C:\WINDOWS\System32\drivers\fltsrv.sys [160736] ©
O58 - SDL:2015/11/02 15:18:17 A . (.Acronis International GmbH - Acronis Storage Filter Management Driver.) -- C:\WINDOWS\System32\drivers\fltsrv2195.sys [160736] ©
O58 - SDL:2015/10/06 15:58:50 A . (.Glarysoft Ltd - The driver for the Startup Manager tool.) -- C:\WINDOWS\System32\drivers\GUBootStartup.sys [20160] ©
O58 - SDL:2010/10/19 22:34:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [56344] ©
O58 - SDL:2015/07/10 06:07:32 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] ©
O58 - SDL:2015/06/18 02:03:50 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] ©
O58 - SDL:2015/06/18 02:04:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] ©
O58 - SDL:2015/07/10 06:06:06 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] ©
O58 - SDL:2015/07/10 06:06:06 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] ©
O58 - SDL:2015/07/10 05:54:54 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] ©
O58 - SDL:2015/06/12 05:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [197616] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] ©
O58 - SDL:2015/07/10 06:09:24 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] ©
O58 - SDL:2015/07/10 06:09:24 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] ©
O58 - SDL:2015/07/10 05:54:54 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] ©
O58 - SDL:2015/07/10 06:03:10 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] ©
O58 - SDL:2015/07/10 05:54:53 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] ©
O58 - SDL:2015/09/23 19:31:22 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [12905144] ©
O58 - SDL:2015/07/10 06:07:35 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] ©
O58 - SDL:2015/07/10 06:07:35 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] ©
O58 - SDL:2015/07/10 06:09:24 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] ©
O58 - SDL:2015/07/10 06:09:24 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] ©
O58 - SDL:2015/10/04 19:11:11 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [888064] ©
O58 - SDL:2015/11/14 17:49:39 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4613888] ©
O58 - SDL:2015/07/10 06:03:13 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] ©
O58 - SDL:2015/07/10 06:03:13 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] ©
O58 - SDL:2015/11/12 10:28:38 A . (.Acronis International GmbH - Acronis Snapshot API.) -- C:\WINDOWS\System32\drivers\snapman.sys [333280] ©
O58 - SDL:2015/11/02 15:18:18 A . (.Acronis International GmbH - Acronis Snapshot API.) -- C:\WINDOWS\System32\drivers\snapman2439.sys [343296] ©
O58 - SDL:2015/05/21 07:02:42 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [110720] ©
O58 - SDL:2015/05/21 07:02:42 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] ©
O58 - SDL:2015/10/31 11:31:16 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (M.) -- C:\WINDOWS\System32\drivers\ssudserd.sys [206080] ©
O58 - SDL:2015/07/10 06:03:16 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] ©
O58 - SDL:2015/11/12 10:28:44 A . (.Acronis International GmbH - Acronis Backup Archive Explorer.) -- C:\WINDOWS\System32\drivers\tib.sys [1057728] ©
O58 - SDL:2015/11/02 15:18:22 A . (.Acronis International GmbH - Acronis Backup Archive Explorer.) -- C:\WINDOWS\System32\drivers\tib1117.sys [1057728] ©
O58 - SDL:2015/11/12 10:28:43 A . (.Acronis International GmbH - Acronis TIB Mounter Driver.) -- C:\WINDOWS\System32\drivers\tib_mounter.sys [198088] ©
O58 - SDL:2015/11/12 10:28:45 A . (.Acronis International GmbH - Acronis Try&Decide Volume Filter Driver.) -- C:\WINDOWS\System32\drivers\tnd.sys [553912] ©
O58 - SDL:2015/07/10 04:21:44 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/07/10 06:07:40 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] ©
O58 - SDL:2015/07/10 06:07:40 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] ©
O58 - SDL:2015/07/10 05:54:54 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] ©
O58 - SDL:2015/07/10 05:54:53 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] ©
O58 - SDL:2015/02/26 00:00:00 A . (...) -- C:\WINDOWS\System32\ambakdrv.sys [30648]
O58 - SDL:2015/02/26 00:00:00 A . (...) -- C:\WINDOWS\System32\ammntdrv.sys [151480]
O58 - SDL:2013/11/29 09:31:28 A . (...) -- C:\WINDOWS\System32\ampa.sys [17008]
O58 - SDL:2015/02/26 00:00:00 A . (...) -- C:\WINDOWS\System32\amwrtdrv.sys [17848]
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\WINDOWS\System32\epmntdrv.sys [18528]
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\WINDOWS\System32\EuGdiDrv.sys [10848]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (26) - 5s
O61 - LFC: 2015/12/01 11:52:05 A . (.YL Computing, Inc.) -- C:\Users\Lecomte\Downloads\Win Utilities Pro 12\wuinstall.exe [6387536]
O61 - LFC: 2015/11/30 18:37:46 A . (.ArcticLine Software.) -- C:\Users\Lecomte\Downloads\Programs\FolderMarkerFree.exe [4550888]
O61 - LFC: 2015/12/01 20:10:31 A . (.fredodiable.) -- C:\Users\Lecomte\Downloads\Programs\Infected Scanner.exe [6436864]
O61 - LFC: 2015/11/24 21:34:55 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\winrar-w32-5.30-fr.exe [1878048]
O61 - LFC: 2015/11/24 21:34:57 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\winrar-x64-5.30-fr.exe [2052648]
O61 - LFC: 2015/11/24 21:34:50 A . (.PortableAppZ.blogspot.com.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\WinRARPortable.exe [61977]
O61 - LFC: 2015/11/24 21:34:51 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\Ace32Loader.exe [62968]
O61 - LFC: 2015/11/24 21:34:55 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\Rar.exe [532984]
O61 - LFC: 2015/11/24 21:34:50 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\UNACEV2.DLL [77312]
O61 - LFC: 2015/11/24 21:34:52 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\UnRAR.exe [336888]
O61 - LFC: 2015/11/24 21:34:54 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR-x64\WinRAR.exe [1533944]
O61 - LFC: 2015/11/24 21:34:55 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\Rar.exe [503800]
O61 - LFC: 2015/11/24 21:34:45 A . (..) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\UNACEV2.DLL [77312]
O61 - LFC: 2015/11/24 21:34:52 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\UnRAR.exe [315384]
O61 - LFC: 2015/11/24 21:34:55 A . (.Alexander Roshal.) -- C:\Users\Lecomte\Downloads\Compressed\Win Rar 5.30\WinRAR-5.30-FR(32-64)-Portable\App\WinRAR\WinRAR.exe [1437688]
O61 - LFC: 2015/11/28 16:13:14 A . (..) -- C:\Users\Lecomte\AppData\Roaming\NVIDIA\GLCache\b3a8e4b7c162e1032a8c0d73b41217fc\023efcb37a204133\8e7fb01305bf8f5d.bin [11088]
O61 - LFC: 2015/11/30 18:00:40 A . (..) -- C:\Users\Lecomte\AppData\Roaming\NVIDIA\GLCache\1160d86e22ac7aa1379289208daf7c15\023efcb37a204133\cb72a0f2395e7e0a.bin [1352]
O61 - LFC: 2015/11/27 17:31:11 A . (..) -- C:\Users\Lecomte\AppData\Roaming\IDM\DwnlData\Lecomte\AdwCleaner-5.022_1\AdwCleaner-5.022.exe [128903]
O61 - LFC: 2015/12/01 11:44:36 A . (..) -- C:\Users\Lecomte\AppData\Roaming\Genie9\GenieTimeLine\Jobs\{F4298088-7F22-4808-98AC-50A36B17C7A9}\Data\QueueTimer.bin [12]
O61 - LFC: 2015/11/27 19:54:14 A . (..) -- C:\Users\Lecomte\AppData\Roaming\Apowersoft\ApowersoftVideoHelper.dll [6168940]
O61 - LFC: 2015/11/25 17:11:32 A . (..) -- C:\Users\Lecomte\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin [4279392]
O61 - LFC: 2015/11/29 18:28:20 A . (..) -- C:\Users\Lecomte\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [39592]
O61 - LFC: 2015/11/30 20:26:25 A . (..) -- C:\Users\Lecomte\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2015/11/28 15:47:44 A . (..) -- C:\Users\Lecomte\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [433477]
O61 - LFC: 2015/12/01 20:04:18 A . (..) -- C:\Users\Lecomte\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/11/29 18:12:06 A . (..) -- C:\Users\Lecomte\AppData\Local\ACD Systems\Catalogs\9.0Pro\Default\ver.bin [12]
---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Menu de démarrage Internet (12) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (14) - 6s
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.defaultenginename", "omniboxes"); =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.alias", "omniboxes"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.iconURL", "http://www.omniboxes.com/favicon.ico"); =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.name", "omniboxes"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.ptid", "ient07031"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.uid", "ST1000DM003-1ER162_Z4Y83VBRXXXXZ4Y83VBR"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.searchengine.url", "http://www.omniboxes.com/web/?type=ds&ts=1448362929&z=dcfc5b83db7e9b09a94e32dg0zbz2b[...] =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("browser.search.selectedEngine", "omniboxes"); =>PUP.Optional.Omniboxes
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Lecomte - mff8gdwc.default] user_pref("extensions.yahooprotected@gmail.com.install-event-fired", true); =>PUP.Optional.WinYahoo
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {fcd9f10e-0daa-405f-bca0-0dd3f37c59d9} - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (42) - 0s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [283136] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1335296] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [954368] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [954880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [31232] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [93696] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [106496] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1008640] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [226304] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [133120] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [324608] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [371200] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [95744] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2093056] ©
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [196096] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [167424] ©
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [187392] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [106496] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [679936] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [497152] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [72192] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2236416] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1168896] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [593920] ©
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [63488] ©
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440] ©
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1019392] ©
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [343040] ©
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [713216] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136] ©
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] ©
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016] ©
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [1015808] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [359936] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [237568] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [58368] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [200192] ©
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (20) - 11s
SR - Auto [23/09/2015] [ 1137168] Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ©
SS - Demand [10/11/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [15/09/2015] [ 29912] AOMEI Backupper Scheduler Service (Backupper Service) . (.AOMEI Tech Co., Ltd..) - C:\Program Files (x86)\AOMEI Backupper\ABService.exe ©
SR - Auto [23/01/2012] [ 1858048] FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe ©
SS - Demand [26/04/2011] [ 2702848] Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - Auto [23/11/2015] [ 108032] Freemake Improver (Freemake Improver) . (.Freemake.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe ©
SR - Auto [23/02/2015] [ 678064] Genie Timeline Service (GenieTimelineService) . (.Genie9.) - C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe ©
SS - Auto [02/10/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [02/10/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [10/11/2015] [ 2934048] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [11/08/2015] [ 4884064] Acronis Managed Machine Service Mini (mmsminisrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe ©
SS - Demand [11/11/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [18/08/2015] [ 933168] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SR - Auto [25/08/2014] [ 389896] Cyberlink RichVideo64 Service(CRVS) (RichVideo64) . (.Copyright 2004.) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
SR - Auto [21/05/2015] [ 743688] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe ©
SR - Auto [04/02/2015] [ 409800] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
SR - Auto [10/09/2015] [ 7637744] Acronis Sync Agent Service (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe ©
SR - Auto [13/07/2015] [ 93040] TomTomHOMEService (TomTomHOMEService) . (.TomTom.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe ©
SS - Demand [02/11/2015] [ 14800] WiseHDInfo (WiseHDInfo) . (.wisecleaner.com.) - C:\Windows\WiseHDInfo64.dll ©
---\\ Scan Additionnel (22) - 0s
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\TSv =>PUP.Optional.Elex
HKCU\SOFTWARE\Vittalia =>PUP.Optional.Vittalia
C:\Windows\AutoKMS\AutoKMS.exe =>HackTool.AutoKMS
C:\WINDOWS\System32\Tasks\AutoKMS =>HackTool.AutoKMS
C:\Program Files (x86)\Picexa\PicexaSvc.exe =>PUP.Optional.Picexa
C:\Users\Lecomte\AppData\Roaming\TSv\TSvr.exe =>PUP.Optional.Elex
C:\ProgramData\OWMiniProO\WMiniPro.exe =>PUP.Optional.WpManager
C:\Users\Lecomte\AppData\Local\Google\Chrome\User Data\Default\Extensions\oljlcbniifdjapjocdfamhlnmpkojdkm =>Hijacker.Browser
C:\Program Files (x86)\Picexa =>PUP.Optional.Picexa
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picexa =>PUP.Optional.Picexa
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
C:\Users\Lecomte\AppData\Roaming\eCyber =>PUP.Optional.Elex
C:\Users\Lecomte\AppData\Roaming\RPEng =>PUP.Optional.Generic
C:\Users\Lecomte\AppData\Roaming\TSv =>PUP.Optional.Elex
C:\WINDOWS\Prefetch\AUTOKMS.EXE-10FEC7B2.pf =>HackTool.AutoKMS
C:\WINDOWS\Prefetch\SH_INSTALLER.EXE-DF59248B.pf =>.Superfluous.SpyHunter
C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER.EXE-13E5AEF9.pf =>.Superfluous.SpyHunter
C:\WINDOWS\Prefetch\SPYHUNTER4.EXE-FAC67AFB.pf =>.Superfluous.SpyHunter
C:\WINDOWS\Prefetch\TOOLDISKCLEANER.EXE-D536375E.pf =>PUP.Optional.DiskCleaner
---\\ Récapitulatif des éléments trouvés sur votre station (14) - 0s
http://www.nicolascoolman.fr/?p=297 =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/?p=996 =>PUP.Optional.Elex
http://www.nicolascoolman.fr/?p=1308 =>PUP.Optional.Vittalia
http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Picexa
http://www.nicolascoolman.fr/?p=173 =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=401 =>PUP.Optional.Downware
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DiskCleaner
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Omniboxes
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/?p=666 =>PUP.Optional.QuickStart
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WinYahoo
~ End of the scan, 23870 items in 66 seconds (1079)(0)