cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2015.6.16.57 - Nicolas Coolman (16/06/2015)
~ Lancé par Jacques (16/06/2015 11:08:01)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://www.forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17843
MFIE: Mozilla Firefox 38.0.5 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : QMTQ6
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Logiciels de protection du système
ESET NOD32 Antivirus v8.0.312.3
Malwarebytes Anti-Malware version 2.1.6.1022
Windows Defender W7 (Activate)

---\\ Logiciels d'optimisation du système
CCleaner v5.05

---\\ Logiciels de partage PeerToPeer
µTorrent v2.2.1 =>P2P.µTorrent

---\\ Surveillance de Logiciels
Adobe Flash Player 17 NPAPI
Java 7 Update 60 (64-bit)

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8147 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 30 GB (20%) free of 148 GB

---\\ Mode de connexion au système
~ Computer Name: JACQUES-PC
~ User Name: Jacques
~ All Users Names: UpdatusUser, Jacques, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Jacques\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Jacques\AppData\Roaming\
~ %Desktop% : C:\Users\Jacques\Textes\Desktop\
~ %Favorites% : C:\Users\Jacques\Textes\Favorites\
~ %LocalAppData% : C:\Users\Jacques\AppData\Local\
~ %StartMenu% : C:\Users\Jacques\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 30 Go of 148 Go)
D: Hard drive, Flash drive, Thumb drive (Free 531 Go of 955 Go)
E: Hard drive, Flash drive, Thumb drive (Free 16 Go of 20 Go)
F: Hard drive, Flash drive, Thumb drive (Free 830 Go of 2771 Go)
G: Hard drive, Flash drive, Thumb drive (Free 720 Go of 977 Go)
H: CD-ROM drive (Not Inserted)
I: CD-ROM drive (Not Inserted)
J: Hard drive, Flash drive, Thumb drive (Free 852 Go of 2794 Go)
Z: Hard drive, Flash drive, Thumb drive (Free 606 Go of 886 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyMusic: Modified
~ Security Center: 41 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 01:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.13/07/2009 - 20:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/05/2015 - 12:50:20.) -- C:\Windows\System32\wininet.dll [2426880]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.16/07/2014 - 21:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 22:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 01:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 20:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 18:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 22:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 22:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 22:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.13/07/2009 - 18:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 19:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.26/04/2011 - 21:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 22:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.23/01/2014 - 21:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.13/07/2009 - 19:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 22:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 19:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.10/11/2014 - 20:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 22:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/430
~ Mes musiques (My Musics) : 1/2
~ Mes Videos (My Videos) : 1/12
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 2/1677
~ Mon Bureau (My Desktop) : 1/137
~ Menu demarrer (Programs) : 1/55
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.66EC5D362C066EB729B1C7879E27DA02] - (.ASUSTeK Computer Inc. - Digi+ Power Control Help.) -- C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe [1154176] [PID.2964]
[MD5.576C72830E3FD6ACE2910545B6130803] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328] [PID.2604]
[MD5.65DEE05CFD5528E56259836128FA51CB] - (.ASUSTeK Computer Inc. - ASUS WiFi GO! Server.) -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe [3979904] [PID.2668]
[MD5.BA711A07D2FBF8E9D03AA665834D1648] - (.2BrightSparks Pte Ltd - SyncBackFree.) -- C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [15076392] [PID.4400]
[MD5.AD3AE4808D35F984C48AB7117C4C4163] - (.ASUSTeK Computer Inc. - TurboVHelp.) -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe [1111680] [PID.4500]
[MD5.4624731A850366C5E049C93BCB5D41FD] - (.ASUSTeK Computer Inc. - EPUHelp.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe [1256576] [PID.5052]
[MD5.BB2A997DFEB559D6F3ABE23B85F8BE18] - (.ASUSTeK Computer Inc. - AI Suite II.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe [1501824] [PID.5484]
[MD5.30890F842E7D5026A41C49AEA1207B2D] - (.Microsoft Corporation - Microsoft LifeCam VX6000 Device Application.) -- C:\Windows\vVX6000.exe [764784] [PID.5736]
[MD5.07162D5F388E5BC82B4E54E5B4A1D212] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [28785280] [PID.5880]
[MD5.50E999CDFBCFEBC7B14452E35D1E4C83] - (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\OneDrive.exe [382664] [PID.5888]
[MD5.E7C1F79DA8971BA3A975002EE95616E6] - (.Panasonic Corporation - Pas de description.) -- C:\Program Files (x86)\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe [292240] [PID.5932]
[MD5.9388731AD7465CDF96429D29E896E04F] - (...) -- C:\Program Files (x86)\C-Organizer Pro\C-OrganizerPro.exe [20994248] [PID.5952]
[MD5.6364FA7D825B600251A4D1DE7D6FF695] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.5964]
[MD5.766AE515B1749F2141E418CC6C08515B] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440] [PID.6004]
[MD5.90A3525C7399B7784D28F99EA1A51C4C] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [673616] [PID.6092]
[MD5.E1D0DAC43EFE2BD3877806044E010C5E] - (.ASUSTek Computer Inc. - AiChargerPlus MFC Application.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [465536] [PID.6120]
[MD5.2DA13E8BAEF5ED8A723BD769EB8E0A05] - (.ASUSTeK Computer Inc. - WiFil GO! File Transfer.) -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe [1376896] [PID.5228]
[MD5.A77DF6A5B3BF58D267C5169E4362DC7D] - (.Pas de propriétaire - Firemin.) -- D:\Téléchargements\firemin_2086\firemin_2086\Firemin.exe [1274880] [PID.5692]
[MD5.7CF9319F0CEB0479A953C1505F9E0118] - (.FSL - FreeSoftLand - FLS Launcher.) -- E:\FSL_Launcher\FSL_Launcher.exe [1287168] [PID.6172]
[MD5.4CF0A7A0DF43980D061A95484FE7D81C] - (...) -- C:\Program Files (x86)\DFX\DFX.exe [1269208] [PID.6180]
[MD5.E0FFBB56997C8B70E8FE5454CFA4E96B] - (.Lotus Development Corporation - EasyClip.) -- C:\lotus\organize\easyclip.exe [87040] [PID.6204]
[MD5.2A21FE60A9BC5247BD8C57409A2B97F8] - (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456] [PID.6228]
[MD5.4CCB397421008B590F98A14DEFD90D7E] - (...) -- C:\Program Files\Serviio\bin\ServiioConsole.exe [368640] [PID.6248]
[MD5.684E9163A19D8072D64E142389D6C342] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6404864] [PID.6308]
[MD5.37892A9BE41EC3D06A21328535A7B4B3] - (.Acronis - Acronis TIB Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105544] [PID.6396]
[MD5.E43917F639B4A24F0E6E0290F6C9ADDA] - (.Pas de propriétaire - DFX.) -- C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe [130520] [PID.6908]
[MD5.1886DA4ADB90A186E52674FC3A8AFE98] - (.ASUSTeK Computer Inc. - AlertHelper.) -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe [1112704] [PID.9188]
[MD5.0BC671A381A4473832BF89502236CDA6] - (.ASUSTeK Computer Inc. - Network Service Help.) -- C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelp.exe [3111552] [PID.8856]
[MD5.D1B0B38332970E909B7CB46AEEA0C03E] - (.ASUSTeK Computer Inc. - NetiCtrlTray.) -- C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetiCtrlTray.exe [889984] [PID.8884]
[MD5.327BE07623C29959235A1B6C431DF083] - (.ASUSTeK Computer Inc. - ASUS DLNA Player.) -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AsDLNAServerReal.exe [658048] [PID.9176]
[MD5.A1413E56F0C42D457EFC99088EF75611] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Jacques\AppData\Roaming\Dropbox\bin\Dropbox.exe [43871584] [PID.7268]
[MD5.E7B58CE9BD61BF575E2880088F4E5447] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8218112] [PID.8836]
[MD5.5A19667A580B1CE886EAF968B9743F45] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383264] [PID.1100]
[MD5.4FFEF08A63B8D6BDDF4487A7BFE8416D] - (.Acronis - File Level CDP Manager Service.) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [3808248] [PID.1324]
[MD5.F7692E60147E56A1CEEE144974F41830] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe [918448] [PID.2088]
[MD5.0466B91EE5767A769E9F8EDB8EF94DDB] - (.ASUSTeK Computer Inc. - Pas de description.) -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936] [PID.2228]
[MD5.AD8947D621FDCA48F1F39F4624B60AA1] - (.ASUSTeK Computer Inc. - AsSysCtr Application.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120] [PID.2272]
[MD5.1EEA984FC844D49B491535D486817075] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.25\AsusFanControlService.exe [1493120] [PID.2296]
[MD5.FB51E8E39E3FDB6757874653B743BE72] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576] [PID.2468]
[MD5.D1A8631ADA1E71178D3DBF5AA2BC1E85] - (.Foxit Software Inc. - Foxit Cloud Safe Update Service.) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392] [PID.2564]
[MD5.5C89EF3DDAFB3AE71091C956C3F1AFCE] - (.Freemake - FreemakeUtilsService.) -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032] [PID.2588]
[MD5.23BA2103F69C7E12138240C86030F954] - (.Ellora Assets Corp. - CaptureLibService.) -- C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216] [PID.2380]
[MD5.205E1B699FD3F2F9B036EEA2EC30C620] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76888] [PID.3344]
[MD5.958E956E119EB7B9ABA142AFED1B5FF4] - (...) -- C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe [186760] [PID.3384]
[MD5.D2E25B1FE392E6E1C9A149F17920C318] - (...) -- C:\Program Files\Serviio\bin\ServiioService.exe [327680] [PID.3404]
[MD5.8715A0D10CFFC8DEE923957F07DAA042] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe [244040] [PID.4464]
[MD5.90D95B25F8413F937A2E155F196D892C] - (.Intel Corporation - Intel(R) Integrated Clock Controller Servic.) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160768] [PID.4120]
[MD5.7D4B9A48430ED57ACA6373B71D5904CA] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.8660]
[MD5.9E3A069B85D240C9FA7FC43C9245043D] - (.Acronis - TrueImage Sync Agent Service.) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7093272] [PID.6872]
~ Processes Running: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Jacques\AppData\Roaming\Mozilla\Firefox\Profiles\n5e3xl32.Rooster\prefs.js
C:\Users\Jacques\AppData\Roaming\Mozilla\Firefox\Profiles\tea5xyxf.default\prefs.js
M2 - MFEP: Extension [Jacques - n5e3xl32.Rooster] firefox@ghostery.com.xpi
M2 - MFEP: Extension [Jacques - n5e3xl32.Rooster] YoutubeDownloader@PeterOlayev.com.xpi
M2 - MFEP: Extension [Jacques - n5e3xl32.Rooster] {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
M2 - MFEP: Extension [Jacques - n5e3xl32.Rooster] {64161300-e22b-11db-8314-0800200c9a66}.xpi
M2 - MFEP: Extension [Jacques - n5e3xl32.Rooster] {b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
M2 - MFEP: Extension [Jacques - n5e3xl32.Rooster] {73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
M2 - MFEP: Extension [Jacques - tea5xyxf.default] firefox@ghostery.com.xpi
M2 - MFEP: Extension [Jacques - tea5xyxf.default] YoutubeDownloader@PeterOlayev.com.xpi
M2 - MFEP: Extension [Jacques - tea5xyxf.default] {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
M2 - MFEP: Extension [Jacques - tea5xyxf.default] {64161300-e22b-11db-8314-0800200c9a66}.xpi
M2 - MFEP: Extension [Jacques - tea5xyxf.default] {b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
M2 - MFEP: Extension [Jacques - tea5xyxf.default] {73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
~ Firefox Browser: 49 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [Jacques]: µTorrent.lnk . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 1 Legitimates Filtered in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [RtHDVBg_DTS] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Broadcom Corporation - Broadcom 802.11 Network Adapter Wireless Ne.) -- C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
O4 - HKLM\..\Run: [VX6000] . (.Microsoft Corporation - Microsoft LifeCam VX6000 Device Application.) -- C:\Windows\vVX6000.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll
O4 - HKLM\..\RunOnce: [NCInstallQueue] rundll32 netman.dll,ProcessQueue
O4 - HKCU\..\Run: [NetMeter] . (.Hoo Technologies - Net Meter.) -- E:\NetMeter\HooNetMeter.exe
O4 - HKCU\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] . (.Garmin Ltd. or its subsidiaries - Garmin Express Tray.) -- C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe =>.Garmin Corporation
O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Jacques\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.3.1166.0618\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\17.3.4724.0224\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [HPUsageTracking] . (.Hewlett-Packard Company - HP UT Driver.) -- C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS AiChargerPlus Execute] . (.ASUSTek Computer Inc. - AiChargerPlus MFC Application.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS WiFi GO! FileTransfer Execute] . (.ASUSTeK Computer Inc. - WiFil GO! File Transfer.) -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe
O4 - HKLM\..\Wow6432Node\Run: [LifeCam] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
O4 - HKLM\..\Wow6432Node\Run: [DFX] . (...) -- C:\Program Files (x86)\DFX\DFX.exe
O4 - HKLM\..\Wow6432Node\Run: [VirtualCloneDrive] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe =>.Elaborate Bytes AG
O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [AcronisTibMounterMonitor] . (.Acronis - Acronis TIB Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\tray.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\tray.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\Run: [NetMeter] . (.Hoo Technologies - Net Meter.) -- E:\NetMeter\HooNetMeter.exe
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\Run: [GarminExpressTrayApp] . (.Garmin Ltd. or its subsidiaries - Garmin Express Tray.) -- C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe =>.Garmin Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Jacques\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.3.1166.0618\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\17.3.4724.0224\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1586295603-3309264540-1617057598-1000\..\RunOnce: [Uninstall C:\Users\Jacques\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{E1586725-10AC-4BDE-9646-F915284A67F1}: NameServer = 8.8.8.8,8.8.8.4 =>.Google DNS Redirections
O17 - HKLM\System\CCS\Services\Tcpip\..\{2A764C35-9EE2-4233-B54D-CA9B5E410592}: DhcpNameServer = 192.168.1.1 135.19.0.18 70.80.0.66
O17 - HKLM\System\CCS\Services\Tcpip\..\{E1586725-10AC-4BDE-9646-F915284A67F1}: DhcpNameServer = 192.168.1.1 135.19.0.18 70.80.0.66
O17 - HKLM\System\CS1\Services\Tcpip\..\{E1586725-10AC-4BDE-9646-F915284A67F1}: NameServer = 8.8.8.8,8.8.8.4 =>.Google DNS Redirections
O17 - HKLM\System\CS1\Services\Tcpip\..\{2A764C35-9EE2-4233-B54D-CA9B5E410592}: DhcpNameServer = 192.168.1.1 135.19.0.18 70.80.0.66
O17 - HKLM\System\CS1\Services\Tcpip\..\{E1586725-10AC-4BDE-9646-F915284A67F1}: DhcpNameServer = 192.168.1.1 135.19.0.18 70.80.0.66
O17 - HKLM\System\CS2\Services\Tcpip\..\{E1586725-10AC-4BDE-9646-F915284A67F1}: NameServer = 8.8.8.8,8.8.8.4 =>.Google DNS Redirections
O17 - HKLM\System\CS2\Services\Tcpip\..\{2A764C35-9EE2-4233-B54D-CA9B5E410592}: DhcpNameServer = 192.168.1.1 135.19.0.18 70.80.0.66
O17 - HKLM\System\CS2\Services\Tcpip\..\{E1586725-10AC-4BDE-9646-F915284A67F1}: DhcpNameServer = 192.168.1.1 135.19.0.18 70.80.0.66
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 135.19.0.18 70.80.0.66
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (.Foxit Software Inc. - Foxit Cloud Safe Update Service.) - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: ScsiAccess (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe
O23 - Service: Serviio (Serviio) . (...) - C:\Program Files\Serviio\bin\ServiioService.exe
~ Services: 24 Legitimates Filtered in 00mn 03s



---\\ Tâches planifiées en automatique (O39)
[MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000Core] (.Dropbox, Inc..) -- C:\Users\Jacques\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512]
[MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000UA] (.Dropbox, Inc..) -- C:\Users\Jacques\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512]
[MD5.75EBB039D441E97D641EC4269B167859] [APT] [GarminUpdaterTask] (...) -- C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [25944]
[MD5.5C9B001D8970C2DA36254A916F3DA8F7] [APT] [IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473] (...) -- C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368]
[MD5.5C9B001D8970C2DA36254A916F3DA8F7] [APT] [IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon] (...) -- C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368]
[MD5.00000000000000000000000000000000] [APT] [{6AB243A4-F22E-4726-9909-984A98147E26}] (...) -- E:\revouninstaller-portable\Revouninstaller.exe (.not file.) [0]
[MD5.6DCD56ED00C5B0E53247224897D79512] [APT] [{7DA0ABD7-E27D-4607-88A8-0E152B56E50B}] (.Nenad Hrg (SoftwareOK.com).) -- E:\Q-Dir\Q-Dir.exe [778240]
[MD5.07DEF0939D518B3FA9949BFAF709EE8B] [APT] [{F452FF38-4A2E-4F0B-8121-54413C77D879}] (...) -- C:\Program Files (x86)\COMMON~1\RandSync\SETUPH~1.exe [45056]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000Core - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000Core.job [1152]
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000Core - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000Core [1152]
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000UA - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000UA.job [1204]
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000UA - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1586295603-3309264540-1617057598-1000UA [1204]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
~ Scheduled Task: 29 Legitimates Filtered in 00mn 01s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (ndisrd) . (.NT Kernel Resources - NDISRD helper driver.) - C:\Windows\System32\DRIVERS\ndisrd.sys
~ Drivers: 78 Legitimates Filtered in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Advanced Diary v3.7.1 - (.CSoftLab.) [HKLM][64Bits] -- Advanced Diary_is1
O42 - Logiciel: C-Organizer Pro v 5.1 - (.CSoftLab.) [HKLM][64Bits] -- C-Organizer Professional_is1
O42 - Logiciel: E.Y.E: Divine Cybermancy Demo - (.Streum On Studio.) [HKLM][64Bits] -- Steam App 214820
O42 - Logiciel: Forté Agent - (.Forté Internet Software, Inc..) [HKLM][64Bits] -- Forte Agent
O42 - Logiciel: GSAK 8.5.1.40 - (.CWE computer services.) [HKLM][64Bits] -- GSAK_is1
O42 - Logiciel: Guide PV500 - (...) [HKLM][64Bits] -- Silent Package Run-Time Sample
O42 - Logiciel: Jigsaws Galore Version 7 - (.Gray Design Associates.) [HKLM][64Bits] -- Jigsaws Galore 7_is1
O42 - Logiciel: MAKuisine version 1.2 - (.MAKapp.) [HKLM][64Bits] -- {7E3C1BE9-8D6E-4B41-A9EF-1CF10940EC68}_is1
O42 - Logiciel: Nonosweeper v2.1 - (.Simplism Games.) [HKLM][64Bits] -- Nonosweeper_is1
O42 - Logiciel: Organizer Conversion Utility - (...) [HKLM][64Bits] -- Organizer Conversion Utility
O42 - Logiciel: Toponav Province Québec V2.5 - (...) [HKCU][64Bits] -- Toponav Province Québec V2.5
O42 - Logiciel: TrakMaps Topo Québec 20k v3.0.3 - (.TrakMaps.) [HKLM][64Bits] -- {1313FA6B-97AF-44FC-AA2D-01B631037B08}
O42 - Logiciel: World of CryptoPics 2.01 Full Version - (.Yariv Hastilow.) [HKLM][64Bits] -- World of CryptoPics_is1
~ Logic: 40 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Alphaval]
[HKCU\Software\CSoftLab]
[HKCU\Software\Ease-Soft]
[HKCU\Software\Forte]
[HKCU\Software\GSAK]
[HKCU\Software\Hoo Technologies]
[HKCU\Software\Marc Bjorklund]
[HKCU\Software\Popotte]
[HKCU\Software\TrakMaps]
[HKCU\Software\fizzymagic]
[HKCU\Software\gDroid]
[HKCU\Software\ƒAƒvƒŠƒP[ƒVƒ‡ƒ“ ƒEƒBƒU[ƒh‚Ő¶¬‚³‚ꂽƒ[ƒJƒ‹ ƒAƒvƒŠƒP[ƒVƒ‡ƒ“]
[HKLM\Software\Wow6432Node\Forte]
[HKLM\Software\Wow6432Node\OSAF]
[HKLM\Software\Wow6432Node\PS]
[HKLM\Software\Wow6432Node\USBSecure]
~ Key Software: 553 Legitimates Filtered in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 04/01/2015 - 12:07:13 - [] ----D C:\Program Files (x86)\Advanced Diary
O43 - CFD: 16/06/2015 - 09:39:52 - [] ----D C:\Program Files (x86)\C-Organizer Pro
O43 - CFD: 16/01/2015 - 18:29:49 - [] ----D C:\Program Files (x86)\EPUBSOFT
O43 - CFD: 13/06/2015 - 21:28:41 - [] ----D C:\Program Files (x86)\gsak
O43 - CFD: 12/02/2015 - 19:55:09 - [] ----D C:\Program Files (x86)\iFoxSoft
O43 - CFD: 30/11/2014 - 19:32:50 - [] ----D C:\Program Files (x86)\Led - Copie
O43 - CFD: 04/01/2015 - 18:19:05 - [] ----D C:\Program Files (x86)\MAKuisine
O43 - CFD: 10/08/2013 - 18:05:30 - [] ----D C:\Program Files (x86)\Nonosweeper
O43 - CFD: 22/01/2015 - 11:03:16 - [] ----D C:\Program Files (x86)\Popotte
O43 - CFD: 06/10/2013 - 16:58:16 - [] ----D C:\Program Files (x86)\TrakMaps
O43 - CFD: 10/08/2013 - 18:25:24 - [] ----D C:\Program Files (x86)\World of CryptoPics
O43 - CFD: 27/10/2013 - 17:27:16 - [] ----D C:\Program Files (x86)\Common Files\PS
O43 - CFD: 04/12/2012 - 10:52:03 - [] ----D C:\Program Files (x86)\Common Files\RandSync
O43 - CFD: 28/09/2014 - 13:19:02 - [] ----D C:\ProgramData\Epubsoft
O43 - CFD: 13/12/2012 - 19:47:39 - [] ----D C:\ProgramData\FanXpert2
O43 - CFD: 26/12/2014 - 19:52:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Diary
O43 - CFD: 01/06/2015 - 09:52:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\C-Organizer Pro
O43 - CFD: 16/01/2015 - 18:29:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPUBSOFT
O43 - CFD: 24/03/2015 - 17:58:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GSAK
O43 - CFD: 03/12/2012 - 17:28:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jigsaws Galore
O43 - CFD: 04/01/2015 - 18:19:07 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAKuisine
O43 - CFD: 10/08/2013 - 18:05:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nonosweeper
O43 - CFD: 22/01/2015 - 11:03:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popotte
O43 - CFD: 28/09/2014 - 12:37:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reader for pc
O43 - CFD: 24/02/2013 - 19:53:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio Plugins
O43 - CFD: 10/08/2013 - 18:25:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of CryptoPics
O43 - CFD: 06/10/2014 - 17:27:39 - [0] ----D C:\Users\Jacques\AppData\Roaming\11750
O43 - CFD: 04/05/2015 - 12:05:11 - [0] ----D C:\Users\Jacques\AppData\Roaming\20229
O43 - CFD: 27/07/2013 - 18:36:23 - [] ----D C:\Users\Jacques\AppData\Roaming\3E57FB9A-F84E-49A2-8ED7-B6E9E2A7F191
O43 - CFD: 13/06/2015 - 21:29:33 - [] ----D C:\Users\Jacques\AppData\Roaming\gsak
O43 - CFD: 31/05/2014 - 21:51:46 - [] ----D C:\Users\Jacques\AppData\Roaming\Jigsaws Galore
O43 - CFD: 04/01/2015 - 18:19:06 - [] ----D C:\Users\Jacques\AppData\Roaming\MAKuisine
O43 - CFD: 10/08/2013 - 18:09:30 - [] ----D C:\Users\Jacques\AppData\Roaming\Nonosweeper
O43 - CFD: 31/05/2014 - 21:51:46 - [] ----D C:\Users\Jacques\AppData\Roaming\World of CryptoPics
O43 - CFD: 15/06/2015 - 19:53:46 - [0] -SH-D C:\Users\Jacques\AppData\Local\EmieBrowserModeList
O43 - CFD: 01/06/2015 - 16:49:26 - [] ----D C:\Users\Jacques\AppData\Local\GWX
O43 - CFD: 18/06/2013 - 10:14:32 - [] ----D C:\Users\Jacques\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toponav Province Québec V2.5
O43 - CFD: 06/10/2013 - 16:58:27 - [] ----D C:\Users\Jacques\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TrakMaps Topo Québec 20k v3.0.3
~ Program Folder: 417 Legitimates Filtered in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.E73AD9919FA1B8A811A5C62CA4BCD742] - 02/06/2015 - 11:21:41 ---A- . (...) -- C:\Windows\wininit.ini [1667]
O44 - LFC:[MD5.0B32E5FC073EEC5761598739844DA14B] - 05/06/2015 - 07:43:29 ---A- . (...) -- C:\IFRToolLog.txt [374]
O44 - LFC:[MD5.551BA3E088A3473C7843738937F2967D] - 15/06/2015 - 17:18:16 ---A- . (...) -- C:\Windows\MB.idx [3303]
O44 - LFC:[MD5.DA17EBE63F9DB667AEDDC282BA8B7AB7] - 16/06/2015 - 08:40:21 ---A- . (...) -- C:\Windows\PE_Rom.dll [1048576]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/06/2015 - 08:45:25 ---A- . (...) -- C:\Windows\Path.idx [0]
~ Files: 138 Legitimates Filtered in 00mn 01s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
~ CSB: 15 Legitimates Filtered in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
O51 - MPSK:{f989f7c8-38de-11e2-af55-806e6f6e6963}\AutoRun\command. (...) -- D:\.\Bin\ASSETUP.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ SMSR Keys: 3 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
~ MWPS: 17 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:29/08/2012 - 12:46:14 ---A- . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\Drivers\dfx11_1x64.sys [28008]
O58 - SDL:13/07/2009 - 20:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:04/01/2013 - 17:12:18 ---A- . (.GFI Software - GFI Boot Time Operations Driver.) -- C:\Windows\System32\Drivers\gfibto.sys [14456]
O58 - SDL:10/06/2009 - 15:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:12/08/2011 - 05:13:36 R--A- . (.NT Kernel Resources - NDISRD helper driver.) -- C:\Windows\System32\Drivers\ndisrd.sys [32360]
O58 - SDL:13/07/2009 - 20:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:07/03/2013 - 08:49:18 ---A- . (...) -- C:\Windows\System32\epmntdrv.sys [17480]
O58 - SDL:07/03/2013 - 08:49:18 ---A- . (...) -- C:\Windows\System32\EuGdiDrv.sys [9800]
O58 - SDL:04/01/2008 - 00:34:42 ----- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp32.sys [10216]
O58 - SDL:04/01/2008 - 00:34:48 ----- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp64.sys [11832]
O58 - SDL:24/08/2010 - 02:16:40 R--A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [13440]
O58 - SDL:03/08/2010 - 00:21:24 R--A- . (...) -- C:\Windows\SysWOW64\drivers\AsUpIO.sys [14464]
O58 - SDL:02/04/2009 - 07:30:14 ---A- . (...) -- C:\Windows\SysWOW64\drivers\ASUSHWIO.SYS [10296]
O58 - SDL:07/03/2013 - 08:49:20 ---A- . (...) -- C:\Windows\SysWOW64\epmntdrv.sys [13896]
O58 - SDL:07/03/2013 - 08:49:20 ---A- . (...) -- C:\Windows\SysWOW64\EuGdiDrv.sys [9160]
~ Drivers: 112 Legitimates Filtered in 00mn 00s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: Ad-Remover By C_XX - (.C_XX.) [HKLM] -- Ad-Remover
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Keys: Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{3A07F98B-EC10-4FC4-A93F-EEC169254536}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{64D008AB-FE75-42C9-9214-5874BCBF8169}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Firewall: 2 Legitimates Filtered in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 13/05/2015 268464 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 10/10/2012 277024 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 07/05/2015 715784 | (Garmin Device Interaction Service) . (.Garmin Ltd. or its subsidiaries.) - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
SS - | Auto 10/02/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 10/02/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 28/02/2014 174368 | (iumsvc) . (...) - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
SS - | Auto 14/04/2015 1080120 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SS - | Auto 03/12/2012 1259880 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Auto 18/02/2015 315488 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 25/04/2014 73728 | (Sony SCSI Helper Service) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
SS - | Demand 18/02/2015 835776 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 15/02/2013 1143720 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
SR - | Auto 27/08/2013 3808248 | (afcdpsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
SR - | Auto 28/10/2011 918448 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
SR - | Auto 02/02/2012 951936 | (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
SR - | Auto 17/02/2012 149120 | (AsSysCtrlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
SR - | Auto 22/02/2012 1493120 | (AsusFanControlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.25\AsusFanControlService.exe
SR - | Auto 28/11/2011 1084192 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Auto 28/11/2012 233328 | (DTSAudioSvc) . (.DTS, Inc.) - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
SR - | Auto 28/01/2015 1349576 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
SR - | Auto 02/06/2015 244392 | (FoxitCloudUpdateService) . (.Foxit Software Inc..) - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
SR - | Auto 13/11/2014 108032 | (Freemake Improver) . (.Freemake.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
SR - | Auto 22/05/2014 9216 | (FreemakeVideoCapture) . (.Ellora Assets Corp..) - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
SR - | Auto 29/11/2011 13592 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Demand 27/05/2011 160768 | (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
SR - | Auto 15/08/2011 178344 | (Intel(R) PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe
SR - | Auto 18/01/2013 884512 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 22/07/1658 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto 03/06/2015 186760 | (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Gold\ScsiAccess.exe
SR - | Auto 21/03/2015 327680 | (Serviio) . (...) - C:\Program Files\Serviio\bin\ServiioService.exe
SR - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 20/03/2013 7093272 | (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
SR - | Auto 13/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 29/11/2012 48128 | (wltrysvc) . (.Broadcom Corporation.) - C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.exe
SR - | Auto 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 13/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 06s



---\\ Scan Additionnel (O88)
Database Version : 13008 - (16/06/2015)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 2
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0

[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] =>P2P.BitTorrent^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent =>P2P.BitTorrent^
~ Additionnel Scan: 396231 Items scanned in 00mn 13s



---\\ Informations complémentaires sur les modules
~ http://www.nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://www.nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ http://www.nicolascoolman.fr/o51-mountpoints2-shell-key-mpsk/ =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
~ AMI: 3 Legitimates Filtered in 00mn 00s



~ 1376 Legitimates filtered by white list
End of the scan (611 lines in 00mn 37s)(0.10)

Publicité


Signaler le contenu de ce document

Publicité