cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.29.105 Par Nicolas Coolman (2015/07/29)
~ Démarré par DETOHDELLWIN7 (Administrator) (2015/07/30 15:37:52)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\DETOHDELLWIN7\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\DETOHDELLWIN7\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 32-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 39.0 (x86 fr) v39.0
MSIE: Internet Explorer v11.0.9600.17691

---\\ Informations sur les produits Windows (4) - 8s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Symantec Endpoint Protection v12.1.601.4699

---\\ Surveillance de Logiciels (1) - 2s
Adobe Flash Player 18 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3009.628 MB (29% free)
~ System Restore: Activé (Enable)
~ System drive C: has 50 GB free of 229 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: UPGC-PC
~ User Name: DETOHDELLWIN7
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 50 GB free of 229 GB (System)
~ Drive D: has 212 GB free of 233 GB
~ Drive F: has 1 GB free of 7 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (24) - 1s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [96256]
[MD5.EA6EA6912F27F05C61D8D747517EB47E] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1888256]
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [304128]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [187904]
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1212352]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [71168]
[MD5.7FE680A3DFA421C4A8E4879AE4C5AAB0] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [245632]

---\\ Processus lancés (39) - 6s
[MD5.79B0615E2E58962AF356A5F28FF34C2D] - (.Dell Inc. - DW WLAN Card Wireless Network Service.) -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [40960] [PID.1472]
[MD5.50883FD236BEFC3BC9E1F8EABBC07022] - (.Dell Inc. - DW WLAN Card Wireless Network Controller.) -- C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE [5620224] [PID.1564]
[MD5.01B32228059E865F207CCE46C209517A] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\EasyPHP-DevServer-14.1VC11\binaries\apache\bin\eds-httpd.exe [22016] [PID.1832]
[MD5.0E06DF5547EB74BE35A217408CCB6CB0] - (...) -- C:\Apple\Library\System\machd.exe [73216] [PID.1916]
[MD5.CC3B33DA6A5B7CDA6DB67E5BDDA88139] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [827256] [PID.1964]
[MD5.E4E5EBC93C25E1618F84897842F63086] - (.Dell Inc. - Status Database.) -- C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe [222648] [PID.372]
[MD5.62448A42B0B2B0ABC63A143A517548A4] - (.Aladdin Knowledge Systems Ltd. - Aladdin HASP License Manager Service.) -- C:\Windows\System32\hasplms.exe [2869760] [PID.968]
[MD5.CA5F60A5005B08409299DD3F181A61A4] - (...) -- C:\Program Files\InternetEverywhere\InternetEverywhere_Service.exe [350776] [PID.1100]
[MD5.01B32228059E865F207CCE46C209517A] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\EasyPHP-DevServer-14.1VC11\binaries\apache\bin\eds-httpd.exe [22016] [PID.1288]
[MD5.F46B38C64563A6190220D56D78E14426] - (.My Digital Life Forums - KMS Server Emulator Service.) -- C:\Users\DETOHDELLWIN7\AppData\Local\Temp\F546.tmp\KMSServerService.exe [260608] [PID.2224]
[MD5.6375E4815DD8E522383FAC88541B0312] - (.Copyright (C) 2012 - .) -- C:\ProgramData\MobileBrServ\mbbservice.exe [233864] [PID.2248]
[MD5.2CBB107DFE68F3807515A90386622D5B] - (...) -- C:\EasyPHP-DevServer-14.1VC11\binaries\mysql\bin\eds-mysqld.exe [10964480] [PID.2304]
[MD5.3487C0E169D17C593D3D05E044BF48BD] - (.Bitdefender - 60-Second Scan Service.) -- C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe [1221384] [PID.2336]
[MD5.3F4163CFD36E7BDE26F51D0D350836F6] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\ccSvcHst.exe [137224] [PID.2412]
[MD5.3E8A5A96D9A251C5590723F700331160] - (...) -- C:\Apple\Library\System\nmserver.exe [116736] [PID.2704]
[MD5.D8E66216822CE08266AE9A975A5E41BF] - (.Dell Inc. - Printer Status Watcher.) -- C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe [116144] [PID.2776]
[MD5.FCCE439008237E6CB327CC30DB1D976B] - (.Symantec Corporation - Symantec CMC Smc.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\Smc.exe [1661160] [PID.3584]
[MD5.3F4163CFD36E7BDE26F51D0D350836F6] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\ccSvcHst.exe [137224] [PID.4236]
[MD5.BAC15D03EFC8249216D1D610F3B1E67F] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [695528] [PID.5188]
[MD5.99BA92A80D4560425A5A8ADCC4104D5F] - (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE [6852608] [PID.3452]
[MD5.A4E5CB215352857AC8C48C1990A52062] - (.Dell Inc. - Printer Status Provider.) -- C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpsp.exe [906680] [PID.1432]
[MD5.5323A3FAA2BDF60EAC8AADD5C842555F] - (.Dell Inc. - UPD R.) -- C:\Program Files\Dell Printers\Additional Color Laser Software\Updater\dlupdr.exe [1103208] [PID.5940]
[MD5.D192592FD0A99D9F360906D3F6DFBFF1] - (.Wondershare - Wondershare Studio.) -- C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928] [PID.6080]
[MD5.7B039F42EFF34A3F77B5716E93C72D94] - (...) -- C:\Program Files\InternetEverywhere\InternetEverywhere_Launcher.exe [948792] [PID.656]
[MD5.229F9A301B7B44C0E551C83629222B5E] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\BitTorrent\BitTorrent.exe [1999976] [PID.5456]
[MD5.36175CB59779F47DB2D6E18F06D2F2CF] - (.Bitdefender - 60-Second Interface.) -- C:\Program Files\Bitdefender\60-Second Virus Scanner\pdiface.exe [261984] [PID.324]
[MD5.8153201FD797490D62D0D7D567F0FA60] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [1113976] [PID.2172]
[MD5.B0627D05BA5000ED87AE1E4E73B348B0] - (.Broadcom Corporation. - Bluetooth Stack COM Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe [3748216] [PID.7272]
[MD5.A40F9A5E4E1929D86FC255C4AF9B3DC0] - (.Broadcom Corporation. - Bluetooth Headset Helper.) -- C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe [151416] [PID.7580]
[MD5.178BFCA9B0229F9F4F916B6CC159F4F1] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugincontainer.exe [1102608] [PID.6492] =>PUP.Optional.CrossRider
[MD5.E7B0E0F8E42C9005DF5A34AB6447BC8C] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\2\Plugin.exe [1217296] [PID.3280] =>PUP.Optional.CrossRider
[MD5.E74A107270984E688F4514D7A0917DC6] - (...) -- C:\Program Files\Common Files\322cb724-1680-423d-8862-1b52ca5027ad\updater.exe [1034512] [PID.3472] =>PUP.Optional.CrossRider
[MD5.56410BF05D6F3B336BAD07F0BD086CAA] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\5\Plugin.exe [782608] [PID.6936] =>PUP.Optional.CrossRider
[MD5.4ECA98C99C0CC26A9E324CFA9B70B634] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\8\Plugin.exe [708880] [PID.4428] =>PUP.Optional.CrossRider
[MD5.BA4021F90B464B223671B72659195DA5] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\3\Plugin.exe [619280] [PID.4344] =>PUP.Optional.CrossRider
[MD5.3AE7C40E830FDA744185A4CE718288C2] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\6\Plugin.exe [592144] [PID.3688] =>PUP.Optional.CrossRider
[MD5.BA4021F90B464B223671B72659195DA5] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\3\Plugin.exe [619280] [PID.1388] =>PUP.Optional.CrossRider
[MD5.1362D6B603E947569599B83EE47B3A2A] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\7\Plugin.exe [459536] [PID.6612] =>PUP.Optional.CrossRider
[MD5.1362D6B603E947569599B83EE47B3A2A] - (...) -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\7\Plugin.exe [459536] [PID.5164] =>PUP.Optional.CrossRider

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (22) - 4s
M0 - MFSP: prefs.js [DETOHDELLWIN7 - 6skc0l3b.default] http://us.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_wnzp_15_26¶m1=1¶m2=f%3D1%26b%3DFirefox%26cc%3Dci%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyCyCtByBtAyB0FyC0EtA0DyDtC0D0D0DtN0D0Tzu0StCtByCzztN1L2XzutAtFtCtDtFtCtDtFtDtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyBtCyCtAtAtC0FtBtGyBtB0A0DtGyB0DyCtAtGyE0F0B0BtGyD0DyDyDyEzyyB0DyC0C0BtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyDtA0A0A0EyCyE0AtGyEtD0B0EtGyE0F0EzztGzy0EyCtAtG0DyCtCzytD0BtD0CyDtB0B0A2QtN0A0LzuyE%26cr%3D1697803619%26a%3Dwny_wnzp_15_26%26os%3DWindows 7 Professional
P2 - EXT FILE: (...) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\extensions\jid1-FB1bBgFMk5H6Wg@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\extensions\{f8cebe5f-eff9-4d1f-9903-4b0aeac5f138}.xpi
P2 - EXT FILE: (...) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\searchplugins\Ask.xml
P2 - EXT FILE: (...) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\searchplugins\search-provided-by-yahoo.xml =>PUP.Optional.BDYahoo
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\Ask.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.lightningnewtab.com - Fast Start.) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\extensions\faststartff@gmail.com =>PUP.Optional.FastStart
P2 - EXT: (. - Movies Search App (Dist. by Bandoo Media, Inc.).) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\extensions\{c0caa5fe-7c9c-4dca-a265-63cf55379d1a}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_209.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.1] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (8) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {3806b089-6759-411d-b2c3-b7995a9f34d7} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (31)

---\\ Browser Helper Object de navigateur (BHO) (O2) (3) - 1s
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} . (.Symantec Corporation - IPS Browser Helper DLL.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\IPS\IPSBHO.dll
O2 - BHO: Sale Charger - {7a38e53c-e000-41e4-9b5a-47447db81c2b} . (...) -- C:\Program Files\Sale Charger\Extensions\7a38e53c-e000-41e4-9b5a-47447db81c2b.dll
O2 - BHO: Movies Search App (Dist. by Bandoo Media, Inc.) - {c0caa5fe-7c9c-4dca-a265-63cf55379d1a} . (.IAC Search and Media, Inc. - dtx Dynamic Link Library.) -- C:\Program Files\Movies App\Datamngr\SRToolBar\IE\searchresultsDx.dll =>PUP.Optional.Bandoo

---\\ Internet Explorer Toolbars (O3) (1) - 0s
O3 - Toolbar: Movies Search App (Dist. by Bandoo Media, Inc.) - [HKLM]{c0caa5fe-7c9c-4dca-a265-63cf55379d1a} . (.IAC Search and Media, Inc. - dtx Dynamic Link Library.) -- C:\Program Files\Movies App\Datamngr\SRToolBar\IE\searchresultsDx.dll =>PUP.Optional.Bandoo

---\\ Applications lancées au démarrage du sytème (O4) (27) - 2s
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\BitTorrent\BitTorrent.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKCU\..\Run: [GrooveMonitor] . (.Microsoft Corporation - Microsoft SharePoint Workspace Monitor.) -- C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKCU\..\Run: [BackgroundContainerV2] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
O4 - HKCU\..\Run: [EasyPHP] . (.EasyPHP - EasyPHP DevServer VC11 Manager.) -- C:\EasyPHP-DevServer-14.1VC11\EasyPHP-DevServer-14.1VC11.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\BitTorrent\BitTorrent.exe
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [GrooveMonitor] . (.Microsoft Corporation - Microsoft SharePoint Workspace Monitor.) -- C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [BackgroundContainerV2] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
O4 - HKUS\S-1-5-21-1325418853-736242907-710285110-1000\..\Run: [EasyPHP] . (.EasyPHP - EasyPHP DevServer VC11 Manager.) -- C:\EasyPHP-DevServer-14.1VC11\EasyPHP-DevServer-14.1VC11.exe

---\\ Modification Domaine/Adresses DNS (O17) (12) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 213.136.96.8 213.136.96.7
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 213.136.96.8 213.136.96.7
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 213.136.96.8 213.136.96.7
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (20) - 3s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apache (Apache) . (.Apache Software Foundation - Apache HTTP Server.) - C:\EasyPHP-DevServer-14.1VC11\binaries\apache\bin\eds-httpd.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dell Printer Status Watcher (DLPWD) . (.Dell Inc. - Printer Status Watcher.) - C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe
O23 - Service: Dell Printer Status Database (DLSDB) . (.Dell Inc. - Status Database.) - C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe
O23 - Service: HASP License Manager (hasplms) . (.Aladdin Knowledge Systems Ltd. - Aladdin HASP License Manager Service.) - C:\Windows\System32\hasplms.exe
O23 - Service: Internet Everywhere Service (InternetEverywhere_Service) . (...) - C:\Program Files\InternetEverywhere\InternetEverywhere_Service.exe
O23 - Service: KMSServerService (KMSServerService) . (.My Digital Life Forums - KMS Server Emulator Service.) - C:\Users\DETOHDELLWIN7\AppData\Local\Temp\F546.tmp\KMSServerService.exe
O23 - Service: Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2012 - .) - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: MySQL (MySQL) . (...) - C:\EasyPHP-DevServer-14.1VC11\binaries\mysql\bin\eds-mysqld.exe
O23 - Service: Bitdefender 60-Second Virus Scanner Service (pdserv) . (.Bitdefender - 60-Second Scan Service.) - C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe
O23 - Service: RelevantKnowledge (RelevantKnowledge) . (...) - C:\Program Files\RelevantKnowledge\rlservice.exe (.not file.) =>PUP.Optional.RelevantKnowledge
O23 - Service: Symantec Endpoint Protection (SepMasterService) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\ccSvcHst.exe
O23 - Service: Service Mgr SaleCharger (Service Mgr SaleCharger) . (...) - C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugincontainer.exe =>PUP.Optional.SaleCharger
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TunMirror (TunMirror) . (...) - C:\Users\DETOHDELLWIN7\AppData\Local\Temp\F546.tmp\TunMirror.exe (.not file.)
O23 - Service: Update Mgr SaleCharger (Update Mgr SaleCharger) . (...) - C:\Program Files\Common Files\322cb724-1680-423d-8862-1b52ca5027ad\updater.exe =>PUP.Optional.SaleCharger
O23 - Service: Update Rad Rater (Update Rad Rater) . (...) - C:\Program Files\Rad Rater\updateRadRater.exe (.not file.) =>PUP.Optional.RadRater
O23 - Service: DW WLAN Tray Service (wltrysvc) . (.Dell Inc. - DW WLAN Card Wireless Network Service.) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE

---\\ Tâches planifiées en automatique (O39) (10) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.9B3355B29942AF67F014EA90CE1EA960] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.00000000000000000000000000000000] [APT] [AutoKMS] (...) -- C:\WINDOWS\AutoKMS\AutoKMS.exe (.not file.) [0] =>HackTool.AutoKMS
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Acrobat Update Task - (...) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874]
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{0C407024-CBF9-42EF-AA2A-35750025BAA3} [3222]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{22E1C600-3DEE-47BD-9A6D-61A10B777C4A} [3176]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{4763B065-8FCC-4E8A-805A-A72EE26F8AC2} [3318]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{E8C961F2-B11C-44BD-9356-118154A3A51A} [3192]

---\\ Logiciels installés (O42) (98) - 17s
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Bible Analyzer 5 - (.BibleAnalyzer.com.) [HKLM] -- BibleAnalyzer5
O42 - Logiciel: Package de pilotes Windows - Broadcom (BcmVWL) Net (10/21/2011 6.20.55.1) - (.Broadcom.) [HKLM] -- D3D5243E35F0E912D4EBC814E30F950D23D4C15B
O42 - Logiciel: DW WLAN Card Utility - (.Dell Inc..) [HKLM] -- DW WLAN Card Utility
O42 - Logiciel: EtiketaGoGo v3.3.2 - (.Generation Software.) [HKLM] -- EtiketaGoGo v3.3.2_is1
O42 - Logiciel: Internet Everywhere - (.Internet Everywhere.) [HKLM] -- InternetEverywhere
O42 - Logiciel: KC Softwares IDPhotoStudio - (.KC Softwares.) [HKLM] -- KC Softwares IDPhotoStudio_is1
O42 - Logiciel: Mobile Broadband HL Service - (.Huawei Technologies Co.,Ltd.) [HKLM] -- Mobile Broadband HL Service
O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 2.0 - FRA - (.Microsoft Corporation.) [HKLM] -- Module linguistique de la visionneuse d'aide Microsoft 2.0 - FRA
O42 - Logiciel: Mozilla Firefox 39.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 39.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM] -- Notepad++
O42 - Logiciel: Sale Charger - (.Sale Charger.) [HKLM] -- Sale Charger
O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM] -- TAP-Windows
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1
O42 - Logiciel: UsbFix - (.El Desaparecido - www.usbfix.net - www.sosvirus.net.) [HKLM] -- Usbfix
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Microsoft NuGet - Visual Studio 2012 - (.Microsoft Corporation.) [HKLM] -- {00EC8ABC-3C5A-40F8-A8CB-E7DCD5ABFA05}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {07287123-B8AC-41CE-8346-3D777245C35B}
O42 - Logiciel: WCF Data Services 5.0 (for OData v3) Primary Components - (.Microsoft Corporation.) [HKLM] -- {0BCC836F-0B28-4090-B58A-64883BAA3B2F}
O42 - Logiciel: Blend for Visual Studio SDK for Silverlight 5 - (.Microsoft Corporation.) [HKLM] -- {0C03A66F-1FF0-45F9-8D67-0D806EBFFBA1}
O42 - Logiciel: Dell Logiciel d'imprimante - (.Dell Inc..) [HKLM] -- {105F3CE5-FE55-408E-BF30-E78F85BA0B12}
O42 - Logiciel: Tools for .Net 3.5 - (.Microsoft Corporation.) [HKLM] -- {1690CE56-2231-4E59-9006-A0876D949EA8}
O42 - Logiciel: LocalESPCui for fr-fr - (.Microsoft.) [HKLM] -- {19237788-1FD2-E24E-8B1F-AED171DC45D1}
O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack Language Pack - fra - (.Microsoft Corporation.) [HKLM] -- {1B65CF1B-3637-3A82-958C-EE0E4C2838BF}
O42 - Logiciel: Microsoft Expression Blend SDK for Silverlight 4 - (.Microsoft Corporation.) [HKLM] -- {1C997E1C-5CE9-4AF3-AAA9-DC65E6090827}
O42 - Logiciel: Microsoft Report Viewer Add-On for Visual Studio 2012 - (.Microsoft Corporation.) [HKLM] -- {1DB43E5A-2F24-4F51-92B0-A2C0EBF5C742}
O42 - Logiciel: Microsoft Web Platform Installer 4.0 - (.Microsoft Corporation.) [HKLM] -- {1F4DF099-EA5C-482D-9901-C0A8B539B417}
O42 - Logiciel: Windows Software Development Kit DirectX x86 Remote - (.Microsoft Corporation.) [HKLM] -- {23176E97-26CB-C72A-19EB-BFB21AC1D15A}
O42 - Logiciel: Visual Studio Extensions for Windows Library for JavaScript - (.Microsoft Corporation.) [HKLM] -- {23F9C27A-E520-4C87-AF99-E5A7D021F24A}
O42 - Logiciel: Skype™ 7.6 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Java 7 Update 67 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F03217067FF}
O42 - Logiciel: PreEmptive Analytics Visual Studio Components - (.PreEmptive Solutions.) [HKLM] -- {2C76E3DA-BA76-4FAD-B1B1-72B46D639028}
O42 - Logiciel: Visual Studio 2012 Update 4 (KB2707250) - (.Microsoft Corporation.) [HKLM] -- {312d9252-c71c-4c84-b171-f4ad46e22098}
O42 - Logiciel: Java SE Development Kit 7 Update 65 - (.Oracle.) [HKLM] -- {32A3A4F4-B792-11D6-A78A-00B0D0170650}
O42 - Logiciel: Datacard ID Works v6.5 French Language Pack - (.Datacard Group.) [HKLM] -- {34AB9E0E-E25E-4680-BBD5-A7C5F18756B2}
O42 - Logiciel: Dotfuscator and Analytics Community Edition - (.PreEmptive Solutions.) [HKLM] -- {372D17F6-A54E-4A01-B264-1314890FFE61}
O42 - Logiciel: Blend for Visual Studio SDK for .NET 4.5 - (.Microsoft Corporation.) [HKLM] -- {37E53780-3944-4A6A-842F-727128E8616E}
O42 - Logiciel: WCF RIA Services V1.0 SP2 - (.Microsoft Corporation.) [HKLM] -- {3A523AF9-D32F-4C85-8388-0335731F3405}
O42 - Logiciel: Windows Software Development Kit for Windows Store Apps DirectX x86 Remote - (.Microsoft Corporation.) [HKLM] -- {42F61556-29ED-8122-F39E-6F04EA5FF279}
O42 - Logiciel: Datacard ID Works Enterprise - (.Datacard Group.) [HKLM] -- {4B51AFA2-2A84-11D4-8119-00C04FA0B02B}
O42 - Logiciel: Module linguistique de Dotfuscator and Analytics Community Edition - (.PreEmptive Solutions.) [HKLM] -- {4B9F673F-EBCA-4E5B-ADD7-FB1138862C44}
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: Blend for Visual Studio 2012 - (.Microsoft Corporation.) [HKLM] -- {57F20F04-014D-453F-B6A3-AE9485C4DFAB}
O42 - Logiciel: Microsoft Web Deploy 3.5 - (.Microsoft Corporation.) [HKLM] -- {5CD1B40A-969C-4D7A-B5C2-DAFCB82C53CD}
O42 - Logiciel: MySQL Installer - (.Oracle Corporation.) [HKLM] -- {5DA0FBEC-F39B-4887-9386-F16571714C8E}
O42 - Logiciel: Windows Software Development Kit - (.Microsoft Corporation.) [HKLM] -- {60D5EF2A-4E0C-2C30-38F6-59C26E134F4A}
O42 - Logiciel: Sentinel System Driver Installer 7.4.0 - (.SafeNet, Inc..) [HKLM] -- {62B74257-2E1B-48FB-843C-0FBA43FE1327}
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
O42 - Logiciel: SharpDevelop 5.0 - (.ic#code.) [HKLM] -- {68447A0A-23F4-44F4-83DA-73536C2C625C}
O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack - (.Microsoft Corporation.) [HKLM] -- {6C44519A-497D-382C-8596-E972C77057C2}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: WCF Data Services Tools for Visual Studio 11 FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {73105938-42A2-457F-9E9D-DB9514BE89E2}
O42 - Logiciel: Microsoft LightSwitch for Visual Studio 2012 Core - (.Microsoft Corporation.) [HKLM] -- {7437A4B9-314F-3B8F-827B-22909146E471}
O42 - Logiciel: Types CLR du système Microsoft pour SQL Server 2012 - (.Microsoft Corporation.) [HKLM] -- {7927D9E5-963C-4AE1-8419-544D0D454435}
O42 - Logiciel: Symantec Endpoint Protection - (.Symantec Corporation.) [HKLM] -- {7AB2DF87-9A30-4EDD-97E5-3271A9DD9F1D}
O42 - Logiciel: Microsoft Silverlight 5 SDK - FRA - (.Microsoft Corporation.) [HKLM] -- {80125E8C-304D-4637-974A-2547049B0E24}
O42 - Logiciel: Blend for Visual Studio Add-in for Adobe FXG Import - (.Microsoft Corporation.) [HKLM] -- {834B6E00-F509-40F2-A677-E86261184576}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 2.0 - FRA - (.Microsoft Corporation.) [HKLM] -- {8E2132F6-071A-3768-8691-B7D12FD7531D}
O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Web - fr - (.Microsoft Corporation.) [HKLM] -- {8F7E535A-DB51-30B5-A482-F087A718ACBE}
O42 - Logiciel: Hotfix for Office (KB950278) - (.Microsoft.) [HKLM] -- {90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{FED55BA1-5A70-44B4-8EB1-E72274AED780}
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
O42 - Logiciel: Microsoft Expression Blend SDK for .NET 4 - (.Microsoft Corporation.) [HKLM] -- {9B3A1C97-A361-463E-8817-444F9F88CDFE}
O42 - Logiciel: Microsoft LightSwitch pour Visual Studio 2012 CoreRes - FRA - (.Microsoft Corporation.) [HKLM] -- {A0D887F7-79CA-39C7-9B12-346AF8CC4A89}
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM] -- {A1439D4F-FD46-47F2-A1D3-FEE097C29A09}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: PreEmptive Analytics Client French Language Pack - (.PreEmptive Solutions.) [HKLM] -- {A9514D8B-004D-4685-A1CF-ACFD30EBD238}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM] -- {AC76BA86-1033-FFFF-7760-000000000006}
O42 - Logiciel: Composants requis pour SSDT - (.Microsoft Corporation.) [HKLM] -- {ACFCFF42-CA92-499C-8549-CC7A05CBEC34}
O42 - Logiciel: Windows App Certification Kit Native Components - (.Microsoft Corporation.) [HKLM] -- {AD17194D-3829-E59E-99A4-EC47097722CA}
O42 - Logiciel: IIS 8.0 Express - (.Microsoft Corporation.) [HKLM] -- {B8FFB7D6-6ABD-47C3-8BAD-86FF5D8F3EDC}
O42 - Logiciel: Module Microsoft Report Viewer pour Visual Studio 2012 - (.Microsoft Corporation.) [HKLM] -- {BAD4734F-5B17-49A5-AE47-DB474B0D224F}
O42 - Logiciel: JavaScript Tooling - (.Microsoft Corporation.) [HKLM] -- {BB6DA14B-F187-488D-9294-38BDEEE6EA84}
O42 - Logiciel: LocalESPC - (.Microsoft Corporation.) [HKLM] -- {BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6}
O42 - Logiciel: JavaScript Tooling - (.Microsoft Corporation.) [HKLM] -- {BE4F3A79-8954-499C-AEF9-E8A3BC235677}
O42 - Logiciel: Windows Runtime Intellisense Content - fr-fr - (.Microsoft Corporation.) [HKLM] -- {BECE69E4-6664-3C4F-DDBF-A4E226B8957C}
O42 - Logiciel: WCF Data Services 5.0 (for OData v3) FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {BF9DC8DC-0891-405A-9AFC-21F1D10FBDB0}
O42 - Logiciel: Blend for Visual Studio 2012 FRA resources - (.Microsoft Corporation.) [HKLM] -- {C0AD26D9-8705-42E7-BD41-BE7E95A7DC31}
O42 - Logiciel: Tools for .Net 3.5 - FRA Lang Pack - (.Microsoft Corporation.) [HKLM] -- {C37962EE-EE24-4E9F-8A41-514ACD79177C}
O42 - Logiciel: Microsoft Web Deploy dbSqlPackage Provider - FRA - (.Microsoft Corporation.) [HKLM] -- {C76D761C-FF45-442C-A3BA-601C4E1167FD}
O42 - Logiciel: Microsoft Silverlight 4 SDK - Français - (.Microsoft Corporation.) [HKLM] -- {C7954680-C2B0-4DA7-B0D6-3E2F69D663D7}
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM] -- {C965F01C-76EA-4BD7-973E-46236AE312D7}
O42 - Logiciel: Bitdefender 60-Second Virus Scanner - (.Bitdefender.) [HKLM] -- {CCEA2053-D975-4E38-AC09-4D5E6DAC6B6F}
O42 - Logiciel: Windows App Certification Kit x86 - (.Microsoft Corporation.) [HKLM] -- {CEE1F4AA-FAAE-6574-8AE6-93727FD6C246}
O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM] -- {CF097717-F174-4144-954A-FBC4BF301036}
O42 - Logiciel: Update for (KB2504637) - (.Microsoft Corporation.) [HKLM] -- {CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637
O42 - Logiciel: Windows Software Development Kit for Windows Store Apps - (.Microsoft Corporation.) [HKLM] -- {D11F66FF-82B3-DDB8-1146-525370552BE1}
O42 - Logiciel: AxCrypt 1.7.3156.0 - (.Axantum Software AB.) [HKLM] -- {DB066768-5A50-4C44-815B-4E8A6A39335E}
O42 - Logiciel: Entity Framework Designer pour Visual Studio 2012 - FRA - (.Microsoft Corporation.) [HKLM] -- {EC42741E-B83C-4D71-A932-98A84B60BA70}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
O42 - Logiciel: Fichiers support d'instal. Microsoft SQL Server 2008 (français) - (.Microsoft Corporation.) [HKLM] -- {F05F9FC5-A369-4989-8923-33A191F08232}
O42 - Logiciel: Realtek Ethernet Controller All-In-One Windows Driver - (.Realtek.) [HKLM] -- {F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}
O42 - Logiciel: IIS Express Application Compatibility Database for x86 - (...) [HKLM] -- {fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU] -- BitTorrent

---\\ HKCU & HKLM Software Keys (138) - 17s
HKLM\SOFTWARE\Acudata
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Ahead
HKLM\SOFTWARE\Aladdin Knowledge Systems
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\Audible
HKLM\SOFTWARE\Axantum
HKLM\SOFTWARE\Bitdefender 60Seconds
HKLM\SOFTWARE\BitDefender Parental Control
HKLM\SOFTWARE\Broadcom
HKLM\SOFTWARE\Cisco Systems
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Datacard
HKLM\SOFTWARE\Datamngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Debian
HKLM\SOFTWARE\Dell
HKLM\SOFTWARE\Dell Computer Corporation
HKLM\SOFTWARE\Dell Inc.
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\Harmony_Hollow_Software
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\iSkysoft
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Lavasoft
HKLM\SOFTWARE\LogMeInRescueCallingCard
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\MAXSOFT-OCRON
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NCH Software
HKLM\SOFTWARE\NCH Swift Sound
HKLM\SOFTWARE\Nero
HKLM\SOFTWARE\Notepad++
HKLM\SOFTWARE\NuGet
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\ORACLE
HKLM\SOFTWARE\PJ
HKLM\SOFTWARE\PreEmptive Solutions
HKLM\SOFTWARE\Rainbow Technologies
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RTLSetup
HKLM\SOFTWARE\SaleCharger
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SOSVirus
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWPM =>PUP.Optional.WpManager
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\TAP-Windows
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\WafCX
HKLM\SOFTWARE\WebToGo
HKLM\SOFTWARE\Widcomm
HKLM\SOFTWARE\WinPj
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\Wondershare
HKLM\SOFTWARE\zbshareware
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\APNDTX
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple
HKCU\SOFTWARE\Avg Secure Update
HKCU\SOFTWARE\Axantum
HKCU\SOFTWARE\BcmSetup
HKCU\SOFTWARE\BibleAnalyzer5
HKCU\SOFTWARE\Bitdefender
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Broadcom
HKCU\SOFTWARE\BrotherSoft
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DataCard
HKCU\SOFTWARE\Dell
HKCU\SOFTWARE\EA Collector Software
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Harmony_Hollow_Software
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\iSkysoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KC Softwares
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MySQL
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\NCH Swift Sound
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PC SOFT
HKCU\SOFTWARE\Popajar =>PUP.Optional.Conduit
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
HKCU\SOFTWARE\ProgSense =>PUP.Optional.ProgSense
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\SharpDevelop
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SmileysWeLove
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Symantec
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tbccint_HKLM =>PUP.Optional.Conduit
HKCU\SOFTWARE\The Silicon Realms Toolworks
HKCU\SOFTWARE\USB Disk Security
HKCU\SOFTWARE\UsbFix
HKCU\SOFTWARE\WebToGo
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wondershare
HKCU\SOFTWARE\WSVCUPlugin
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Toolbar
HKCU\SOFTWARE\AppDataLow\Software\BackgroundContainerV2
HKCU\SOFTWARE\AppDataLow\Software\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Harmony_Hollow_Software
HKCU\SOFTWARE\AppDataLow\Software\ilividbandoomoviestoolbar =>PUP.Optional.Bandoo
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (267) - 15s
O43 - CFD: 2015/03/16 15:36:14 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2015/03/19 21:22:29 - [0] D -- C:\Program Files\Apowersoft
O43 - CFD: 2015/01/27 09:02:46 - [] D -- C:\Program Files\Application Verifier
O43 - CFD: 2015/06/26 17:35:26 - [] D -- C:\Program Files\Axantum
O43 - CFD: 2015/07/16 08:07:54 - [] D -- C:\Program Files\Bible Analyzer 5
O43 - CFD: 2015/07/24 16:43:54 - [] D -- C:\Program Files\Bitdefender
O43 - CFD: 2015/06/26 17:41:11 - [] D -- C:\Program Files\Bonjour
O43 - CFD: 2014/08/12 10:45:35 - [] D -- C:\Program Files\Cisco
O43 - CFD: 2015/07/24 17:17:52 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2015/07/09 10:07:02 - [] D -- C:\Program Files\Conduit
O43 - CFD: 2015/03/10 11:54:02 - [] D -- C:\Program Files\Datacard
O43 - CFD: 2014/08/12 10:21:20 - [] D -- C:\Program Files\Dell
O43 - CFD: 2015/05/06 16:12:40 - [] D -- C:\Program Files\Dell Printers
O43 - CFD: 2014/08/12 10:22:28 - [] D -- C:\Program Files\DIFX
O43 - CFD: 2014/08/28 09:53:39 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2015/07/23 17:54:05 - [] D -- C:\Program Files\EtiketaGoGo
O43 - CFD: 2014/03/14 09:24:06 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2015/05/12 15:27:39 - [] D -- C:\Program Files\Google
O43 - CFD: 2015/01/27 08:45:54 - [] D -- C:\Program Files\HTML Help Workshop
O43 - CFD: 2015/07/06 08:05:53 - [] D -- C:\Program Files\IIS
O43 - CFD: 2015/01/27 08:56:36 - [] D -- C:\Program Files\IIS Express
O43 - CFD: 2015/06/18 06:39:49 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2015/07/15 07:37:01 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 2015/03/13 08:08:43 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/07/06 17:37:53 - [] D -- C:\Program Files\InternetEverywhere
O43 - CFD: 2014/08/11 17:29:20 - [] D -- C:\Program Files\Java
O43 - CFD: 2015/07/07 15:29:16 - [] D -- C:\Program Files\KC Softwares
O43 - CFD: 2015/01/27 08:56:48 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 2014/03/31 13:53:04 - [] D -- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 2015/01/27 08:58:58 - [] D -- C:\Program Files\Microsoft ASP.NET
O43 - CFD: 2015/01/27 08:45:33 - [] D -- C:\Program Files\Microsoft Help Viewer
O43 - CFD: 2014/03/31 13:54:58 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2015/07/06 13:31:56 - [] D -- C:\Program Files\Microsoft SDKs
O43 - CFD: 2015/01/27 09:06:14 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2015/07/01 19:06:56 - [] D -- C:\Program Files\Microsoft SQL Server
O43 - CFD: 2015/01/27 09:03:54 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 2014/03/31 13:54:57 - [] D -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 2014/03/31 13:55:24 - [] D -- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 2015/01/27 09:07:53 - [] D -- C:\Program Files\Microsoft Visual Studio 11.0
O43 - CFD: 2014/03/31 13:54:11 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 2015/07/01 18:56:48 - [] D -- C:\Program Files\Microsoft Visual Studio 9.0
O43 - CFD: 2015/01/27 08:55:43 - [] D -- C:\Program Files\Microsoft WCF Data Services
O43 - CFD: 2015/07/01 18:53:34 - [] D -- C:\Program Files\Microsoft Web Designer Tools
O43 - CFD: 2015/01/27 08:57:17 - [] D -- C:\Program Files\Microsoft Web Tools
O43 - CFD: 2015/07/01 19:03:45 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/05/05 09:34:48 - [] D -- C:\Program Files\Movies App =>PUP.Optional.CrossRider
O43 - CFD: 2015/07/11 09:44:15 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/07/11 09:44:15 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2015/01/27 09:00:37 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2014/11/20 12:41:15 - [] D -- C:\Program Files\MySQL
O43 - CFD: 2015/04/15 17:12:25 - [] D -- C:\Program Files\NCH Software
O43 - CFD: 2015/07/14 12:45:52 - [] D -- C:\Program Files\Nero
O43 - CFD: 2015/05/26 09:20:17 - [] D -- C:\Program Files\Notepad++
O43 - CFD: 2015/01/27 08:56:02 - [] D -- C:\Program Files\NuGet
O43 - CFD: 2014/03/31 14:17:58 - [] D -- C:\Program Files\Oracle
O43 - CFD: 2015/01/13 10:49:40 - [0] D -- C:\Program Files\Rad Rater
O43 - CFD: 2014/03/14 12:48:51 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/07/14 04:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2014/12/26 09:07:40 - [0] D -- C:\Program Files\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
O43 - CFD: 2015/05/05 08:57:40 - [] D -- C:\Program Files\Sale Charger
O43 - CFD: 2014/12/05 15:43:28 - [] D -- C:\Program Files\SharpDevelop
O43 - CFD: 2015/07/11 09:47:37 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2015/02/18 11:10:11 - [] D -- C:\Program Files\SupTab =>PUP.Optional.SupTab
O43 - CFD: 2015/07/24 17:17:52 - [] D -- C:\Program Files\Symantec
O43 - CFD: 2015/02/19 09:11:27 - [] D -- C:\Program Files\TAP-Windows
O43 - CFD: 2015/07/09 10:22:39 - [] D -- C:\Program Files\Tbccint =>PUP.Optional.Conduit
O43 - CFD: 2009/07/14 04:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2015/02/23 09:28:13 - [] D -- C:\Program Files\USB Disk Security
O43 - CFD: 2014/12/24 16:10:29 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2014/08/12 10:22:52 - [] D -- C:\Program Files\WIDCOMM
O43 - CFD: 2014/09/04 17:46:33 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2014/09/04 17:46:55 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2015/01/27 08:52:51 - [] D -- C:\Program Files\Windows Kits
O43 - CFD: 2014/08/28 09:53:39 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2015/03/11 21:47:05 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/03/14 09:24:06 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2014/08/28 09:53:38 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2014/08/28 09:53:39 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2014/08/28 09:53:39 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2014/08/25 07:53:13 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2014/08/12 10:24:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/03/14 09:16:40 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/26 17:41:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Axantum AxCrypt
O43 - CFD: 2015/07/16 08:07:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bible Analyzer 5
O43 - CFD: 2015/06/26 17:41:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour
O43 - CFD: 2015/03/10 11:54:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Datacard
O43 - CFD: 2014/08/08 09:34:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Démarrage
O43 - CFD: 2015/07/24 08:45:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP DevServer 14.1 VC11
O43 - CFD: 2015/02/20 17:22:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free WMA MP3 Converter
O43 - CFD: 2009/07/14 09:02:05 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/05/06 16:12:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Imprimantes Dell
O43 - CFD: 2015/07/06 17:37:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Everywhere
O43 - CFD: 2014/08/11 17:29:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2014/08/08 11:01:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 2015/07/07 15:29:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KC Softwares
O43 - CFD: 2009/07/14 04:42:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/06 13:32:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
O43 - CFD: 2014/03/31 13:56:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/01/27 09:06:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/01/27 09:05:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 4 SDK - Français
O43 - CFD: 2015/01/27 09:05:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK - Français
O43 - CFD: 2015/07/01 19:06:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
O43 - CFD: 2015/07/06 13:31:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
O43 - CFD: 2015/07/14 12:50:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
O43 - CFD: 2015/05/26 09:20:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/03/03 15:32:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - OraClient11g_home1
O43 - CFD: 2014/03/31 13:56:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
O43 - CFD: 2014/09/12 16:31:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/07/22 13:24:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/07/24 17:18:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec Endpoint Protection
O43 - CFD: 2009/07/14 09:00:41 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/08/08 09:23:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 2015/06/26 17:41:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/06/24 14:30:55 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDev 17
O43 - CFD: 2015/01/27 09:02:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
O43 - CFD: 2014/08/22 15:51:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/07/30 10:52:11 - [] D -- C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad
O43 - CFD: 2015/03/16 15:36:43 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/07/27 15:42:39 - [] D -- C:\ProgramData\Ahead
O43 - CFD: 2015/06/26 17:40:40 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2009/07/14 04:53:55 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/08/12 08:47:17 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/07/24 16:12:46 - [] D -- C:\ProgramData\bdch
O43 - CFD: 2015/07/24 15:59:09 - [] D -- C:\ProgramData\BDLogging
O43 - CFD: 2015/07/16 08:07:54 - [] D -- C:\ProgramData\Bible Analyzer
O43 - CFD: 2015/07/24 16:41:20 - [] D -- C:\ProgramData\Bitdefender
O43 - CFD: 2014/03/14 09:24:06 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/08/12 09:56:58 - [] D -- C:\ProgramData\Cisco Systems
O43 - CFD: 2014/03/24 14:48:48 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 2015/03/10 11:54:11 - [] D -- C:\ProgramData\Datacard
O43 - CFD: 2015/06/26 17:41:12 - [] D -- C:\ProgramData\Datamngr =>PUP.Optional.Datamngr
O43 - CFD: 2015/05/06 16:12:06 - [] D -- C:\ProgramData\Dell
O43 - CFD: 2009/07/14 04:53:55 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 04:53:55 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2014/03/14 09:24:06 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 04:53:55 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/09/04 11:00:40 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/01/15 11:08:01 - [] D -- C:\ProgramData\IePluginServices =>Trojan.SProtector
O43 - CFD: 2015/06/08 16:34:37 - [] D -- C:\ProgramData\Lavasoft
O43 - CFD: 2014/03/14 17:47:30 - [] D -- C:\ProgramData\Logs
O43 - CFD: 2014/08/22 10:20:45 - [] D -- C:\ProgramData\MailUpdate =>PUP.Optional.MailUpdate
O43 - CFD: 2014/03/14 09:24:06 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2014/08/08 09:42:56 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 2015/07/07 16:47:59 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/01 18:59:50 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/02/19 09:03:10 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 2015/01/27 09:58:05 - [] D -- C:\ProgramData\Microsoft Visual Studio
O43 - CFD: 2015/01/24 11:52:02 - [] D -- C:\ProgramData\MobileBrServ
O43 - CFD: 2014/03/14 09:24:06 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/03/14 12:53:39 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2014/11/20 12:41:14 - [] D -- C:\ProgramData\MySQL
O43 - CFD: 2015/02/20 17:29:40 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 2015/07/14 12:45:54 - [] D -- C:\ProgramData\Nero
O43 - CFD: 2014/08/11 17:30:00 - [0] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/07/06 15:57:52 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/01/27 09:01:02 - [] D -- C:\ProgramData\PreEmptive Solutions
O43 - CFD: 2015/03/16 15:40:22 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/01/27 08:34:54 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/07/11 09:47:48 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 04:53:55 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2014/03/31 11:47:05 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2015/07/24 17:16:22 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 2014/03/14 17:47:30 - [] D -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 04:53:55 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/01/27 09:02:30 - [] D -- C:\ProgramData\Windows App Certification Kit
O43 - CFD: 2015/07/22 13:24:14 - [0] D -- C:\ProgramData\WinZip
O43 - CFD: 2015/06/12 16:20:31 - [] D -- C:\ProgramData\Wondershare
O43 - CFD: 2015/06/26 17:41:12 - [] D -- C:\ProgramData\Wondershare Video Converter Ultimate
O43 - CFD: 2015/07/30 10:53:41 - [] D -- C:\Program Files\Common Files\322cb724-1680-423d-8862-1b52ca5027ad
O43 - CFD: 2015/03/16 15:40:23 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2015/07/14 12:47:01 - [] D -- C:\Program Files\Common Files\Ahead
O43 - CFD: 2014/09/12 09:45:47 - [] D -- C:\Program Files\Common Files\Aladdin Shared
O43 - CFD: 2015/07/24 16:41:01 - [] D -- C:\Program Files\Common Files\Bitdefender
O43 - CFD: 2014/03/31 13:55:23 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2015/05/06 16:06:44 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2014/08/11 17:29:45 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 2015/01/27 08:41:42 - [] D -- C:\Program Files\Common Files\Merge Modules
O43 - CFD: 2015/01/27 09:01:28 - [] D -- C:\Program Files\Common Files\Microsoft
O43 - CFD: 2015/07/01 18:55:54 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2015/06/26 17:35:28 - [] D -- C:\Program Files\Common Files\PC SOFT
O43 - CFD: 2015/03/10 11:55:23 - [] D -- C:\Program Files\Common Files\SafeNet Sentinel
O43 - CFD: 2009/07/14 02:37:05 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2014/09/12 16:31:45 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2009/07/14 02:37:05 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2015/07/24 17:55:24 - [] D -- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 2014/08/28 09:53:37 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2015/06/26 17:35:28 - [] D -- C:\Program Files\Common Files\Wondershare
O43 - CFD: 2015/03/16 17:20:37 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Adobe
O43 - CFD: 2015/07/27 16:01:17 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Ahead
O43 - CFD: 2014/11/09 14:40:51 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Apowersoft
O43 - CFD: 2015/07/16 08:13:34 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Bible Analyzer
O43 - CFD: 2015/07/30 15:38:28 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\BitTorrent
O43 - CFD: 2015/03/16 17:20:29 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\com.adobe.formscentral.FormsCentralForAcrobat
O43 - CFD: 2014/10/06 10:41:05 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\DMCache
O43 - CFD: 2015/07/07 15:52:34 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Downloaded Installations
O43 - CFD: 2015/07/27 15:26:28 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\dvdcss
O43 - CFD: 2015/06/26 17:40:51 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Eusing
O43 - CFD: 2014/12/05 15:45:36 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\ICSharpCode
O43 - CFD: 2014/03/14 09:24:24 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Identities
O43 - CFD: 2014/10/23 08:35:05 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\IDM
O43 - CFD: 2015/07/07 10:08:46 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\InternetEverywhere
O43 - CFD: 2015/01/13 11:04:48 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
O43 - CFD: 2015/07/07 15:29:15 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\KC Softwares
O43 - CFD: 2015/06/08 16:34:37 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Lavasoft
O43 - CFD: 2014/03/20 16:33:33 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Macromedia
O43 - CFD: 2014/08/20 10:02:35 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\MailUpdate =>PUP.Optional.MailUpdate
O43 - CFD: 2009/07/14 09:00:41 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/07/29 12:09:22 - [] SD -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft
O43 - CFD: 2014/03/14 12:53:45 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla
O43 - CFD: 2015/05/26 14:36:21 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Notepad++
O43 - CFD: 2014/12/05 15:45:38 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\NuGet
O43 - CFD: 2015/06/26 17:38:20 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 2015/05/05 09:54:27 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Orbit
O43 - CFD: 2015/05/05 08:58:55 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\ProgSense =>PUP.Optional.ProgSense
O43 - CFD: 2015/07/24 15:49:35 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\QuickScan
O43 - CFD: 2015/07/30 15:37:18 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Skype
O43 - CFD: 2014/12/24 16:08:03 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\smileyswelove =>PUP.Optional.SmileyBar
O43 - CFD: 2015/03/23 20:42:53 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\SolidDocuments
O43 - CFD: 2014/08/08 11:26:26 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\SQL Developer
O43 - CFD: 2014/12/26 09:07:22 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\systweak =>PUP.Optional.Systweak
O43 - CFD: 2014/03/14 13:02:47 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\TuneUp Software
O43 - CFD: 2015/01/13 10:56:38 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/27 15:28:58 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\vlc
O43 - CFD: 2014/03/14 17:55:27 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\WinRAR
O43 - CFD: 2015/06/12 15:15:07 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Wondershare Video Converter Ultimate
O43 - CFD: 2015/05/11 09:03:45 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 2014/08/08 09:38:21 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Zbshareware Lab
O43 - CFD: 2015/07/30 15:38:26 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\ZHP
O43 - CFD: 2015/06/12 15:15:15 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
O43 - CFD: 2015/03/16 15:45:18 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Adobe
O43 - CFD: 2015/07/14 12:55:28 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Ahead
O43 - CFD: 2014/03/14 09:24:13 - [0] SHD -- C:\Users\DETOHDELLWIN7\AppData\Local\Application Data
O43 - CFD: 2014/08/11 17:16:01 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Apps
O43 - CFD: 2015/01/29 14:43:39 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\assembly
O43 - CFD: 2015/07/24 16:12:51 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\bdch
O43 - CFD: 2014/08/12 10:24:45 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Broadcom
O43 - CFD: 2015/07/09 10:22:41 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Conduit
O43 - CFD: 2015/03/03 09:08:41 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Deployment
O43 - CFD: 2015/06/15 09:32:03 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Diagnostics
O43 - CFD: 2015/07/26 11:15:42 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/03/18 14:20:06 - [] SHD -- C:\Users\DETOHDELLWIN7\AppData\Local\EmieBrowserModeList
O43 - CFD: 2014/09/16 18:06:51 - [] SHD -- C:\Users\DETOHDELLWIN7\AppData\Local\EmieSiteList
O43 - CFD: 2014/09/16 18:06:51 - [] SHD -- C:\Users\DETOHDELLWIN7\AppData\Local\EmieUserList
O43 - CFD: 2015/05/12 15:22:37 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Google
O43 - CFD: 2014/03/14 09:24:13 - [0] SHD -- C:\Users\DETOHDELLWIN7\AppData\Local\Historique
O43 - CFD: 2014/03/20 16:33:33 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Macromedia
O43 - CFD: 2014/03/14 12:59:59 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\MFAData
O43 - CFD: 2015/07/22 17:19:55 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Microsoft
O43 - CFD: 2015/01/22 19:05:17 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Microsoft Help
O43 - CFD: 2015/07/02 13:05:52 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Microsoft_Corporation
O43 - CFD: 2014/08/20 10:03:17 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Mozilla
O43 - CFD: 2014/03/14 17:36:16 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Programs
O43 - CFD: 2014/09/12 16:31:59 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Skype
O43 - CFD: 2015/07/24 17:19:17 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Symantec
O43 - CFD: 2015/07/30 15:37:41 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Temp
O43 - CFD: 2014/03/14 09:24:13 - [0] SHD -- C:\Users\DETOHDELLWIN7\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/05/07 07:36:42 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\VirtualStore
O43 - CFD: 2015/06/12 10:23:00 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Local\Wondershare
O43 - CFD: 2009/07/14 04:42:04 - [] RD -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/11 21:49:57 - [] RD -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/02/20 17:22:48 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free WMA MP3 Converter
O43 - CFD: 2009/07/14 04:37:42 - [] RD -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/11/20 12:41:19 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 2015/05/26 09:20:16 - [0] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/07/28 07:44:48 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Périphériques Bluetooth
O43 - CFD: 2015/06/26 17:41:09 - [] RD -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/08/22 15:51:36 - [] D -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Enumération des clés de registre StartupReg (SMSR) (O53) (4) - 0s
O53 - SMSR:HKLM\...\startupreg\DellSystemDetect [Key] . (...) -- C:\Users\DETOHDELLWIN7\AppData\Local\Apps\2.0\7QM1V429.24E\27XA5G7C.6CQ\dell..tion_0f612f649c4a10af_0005.0009_14e1a3fbfbaf942c\DellSystemDetect.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\iLivid [Key] . (...) -- C:\Users\DETOHDELLWIN7\AppData\Local\iLivid\iLivid.exe (.not file.) =>PUP.Optional.Bandoo
O53 - SMSR:HKLM\...\startupreg\InstallerLauncher [Key] . (...) -- C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\pdiface [Key] . (.Bitdefender - 60-Second Interface.) -- C:\Program Files\Bitdefender\60-Second Virus Scanner\pdiface.exe

---\\ Liste des pilotes du système (SDL) (O58) (91) - 12s
O58 - SDL:2009/07/14 01:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976]
O58 - SDL:2009/07/14 01:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552]
O58 - SDL:2009/07/14 01:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512]
O58 - SDL:2010/03/23 06:53:10 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\drivers\ae1000w7.sys [841504]
O58 - SDL:2009/01/16 12:42:28 A . (.Aladdin Knowledge Systems Ltd. - Ancillary Function Driver.) -- C:\Windows\System32\drivers\aksfridge.sys [352256]
O58 - SDL:2009/07/14 01:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400]
O58 - SDL:2011/03/11 05:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256]
O58 - SDL:2009/07/14 01:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312]
O58 - SDL:2011/03/11 05:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400]
O58 - SDL:2009/07/14 01:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368]
O58 - SDL:2009/07/14 01:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608]
O58 - SDL:2009/07/13 22:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888]
O58 - SDL:2014/08/12 10:18:09 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [170552]
O58 - SDL:2014/08/12 10:18:07 A . (.Broadcom Corporation - Broadcom iLine10(tm) PCI Network Adapter Pr.) -- C:\Windows\System32\drivers\bcm42rly.sys [18536]
O58 - SDL:2014/08/12 10:18:06 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter Virtual Wir.) -- C:\Windows\System32\drivers\bcmvwl32.sys [17728]
O58 - SDL:2014/08/12 10:18:06 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL6.SYS [4877888]
O58 - SDL:2009/07/13 22:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568]
O58 - SDL:2009/07/13 22:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248]
O58 - SDL:2009/07/14 00:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128]
O58 - SDL:2009/07/13 22:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336]
O58 - SDL:2009/07/13 22:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:2009/07/13 22:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904]
O58 - SDL:2014/08/12 10:18:09 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [507704]
O58 - SDL:2014/08/12 10:18:09 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [152400]
O58 - SDL:2014/08/12 10:18:09 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [175144]
O58 - SDL:2014/08/12 10:18:09 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [33832]
O58 - SDL:2014/08/12 10:18:09 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [18728]
O58 - SDL:2009/07/13 22:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080]
O58 - SDL:2009/07/14 01:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952]
O58 - SDL:2009/07/14 01:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720]
O58 - SDL:2009/07/14 01:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712]
O58 - SDL:2009/07/13 22:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160]
O58 - SDL:2009/07/09 14:18:56 A . (.Aladdin Knowledge Systems Ltd. - Hardlock Device Driver for Windows NT.) -- C:\Windows\System32\drivers\hardlock.sys [587776]
O58 - SDL:2009/07/13 22:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624]
O58 - SDL:2012/07/17 17:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys [55104]
O58 - SDL:2009/07/14 01:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152]
O58 - SDL:2011/03/11 05:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160]
O58 - SDL:2009/07/14 01:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040]
O58 - SDL:2009/07/14 01:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824]
O58 - SDL:2009/07/14 01:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168]
O58 - SDL:2009/07/14 01:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864]
O58 - SDL:2009/07/14 01:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848]
O58 - SDL:2009/07/14 01:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800]
O58 - SDL:2009/07/14 01:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584]
O58 - SDL:2012/12/07 10:34:48 A . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\Windows\System32\drivers\ndiskhaz.sys [25416]
O58 - SDL:2009/07/14 01:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624]
O58 - SDL:2014/08/12 10:18:06 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [35088]
O58 - SDL:2011/03/11 05:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120]
O58 - SDL:2011/03/11 05:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744]
O58 - SDL:2009/07/14 01:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488]
O58 - SDL:2009/07/14 01:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064]
O58 - SDL:2012/07/17 03:58:08 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\drivers\Rt86win7.sys [521832]
O58 - SDL:2009/07/13 20:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2007/04/27 07:40:00 A . (.SafeNet, Inc. - Sentinel System Driver (NT Parallel driver).) -- C:\Windows\System32\drivers\sentinel.sys [90688]
O58 - SDL:2009/07/13 23:45:33 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\serial.sys [83456]
O58 - SDL:2009/07/14 01:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016]
O58 - SDL:2009/07/14 01:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888]
O58 - SDL:2007/04/27 07:40:00 A . (.SafeNet, Inc. - Sentinel System USB Driver.) -- C:\Windows\System32\drivers\SNTNLUSB.SYS [35328]
O58 - SDL:2009/07/14 01:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072]
O58 - SDL:2015/07/24 17:17:52 A . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\System32\drivers\SYMEVENT.SYS [127096]
O58 - SDL:2015/07/24 17:16:43 A . (.Symantec Corporation - Symantec CMC Firewall SysPlant.) -- C:\Windows\System32\drivers\SysPlant.sys [92080]
O58 - SDL:2011/03/10 00:20:40 A . (.Symantec Corporation - Symantec CMC Firewall Teefer3.) -- C:\Windows\System32\drivers\Teefer.sys [50096]
O58 - SDL:2012/12/15 03:05:16 A . (.MBB - Mobile Broadband NDIS 6.20 Miniport Driver.) -- C:\Windows\System32\drivers\usb2mbim7.sys [173568]
O58 - SDL:2009/07/14 01:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976]
O58 - SDL:2015/02/27 14:54:04 A . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\drivers\VirtualAudio.sys [27496]
O58 - SDL:2009/07/14 01:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904]
O58 - SDL:2015/07/24 17:16:44 A . (.Symantec Corporation - Symantec Network Access Control Protocol Dr.) -- C:\Windows\System32\drivers\WGX.SYS [32208]
O58 - SDL:2009/11/23 10:17:14 A . (.ZTE Corporation - ZTE Dummy MSD Driver.) -- C:\Windows\System32\drivers\ZTEmbbmsd.sys [15360]
O58 - SDL:2012/03/30 07:57:46 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbgps.sys [107392]
O58 - SDL:2012/03/30 07:57:46 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys [107392]
O58 - SDL:2012/03/30 07:57:46 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbnmea.sys [107392]
O58 - SDL:2012/03/30 07:57:46 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbnmeaext.sys [107392]
O58 - SDL:2012/03/30 07:57:46 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbnmeaext2.sys [107392]
O58 - SDL:2012/03/30 07:57:46 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbser6k.sys [107392]
O58 - SDL:2012/03/30 07:57:46 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbvoice.sys [107392]
O58 - SDL:2013/09/09 07:17:34 A . (.ZTE Incorporated - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ZTEusbwwan.sys [196096]
O58 - SDL:2009/07/13 21:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 21:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 21:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 21:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 21:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 21:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 21:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 21:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 21:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 21:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 21:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 21:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 21:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 21:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 21:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (17) - 25s
O61 - LFC: 2015/07/28 11:54:37 A . (.Tesline-Service SRL.) -- C:\Users\DETOHDELLWIN7\Desktop\Securite info\rbrowser\Rohos Mini Drive Portable.exe [1822720]
O61 - LFC: 2015/07/23 16:16:34 A . (.EasyPHP Team.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\EasyPHP-DevServer-14.1VC11-install.exe [35082749]
O61 - LFC: 2015/07/24 13:29:13 A . (.EasyPHP Team.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\PHP-5.3.29-for-EasyPHP-DevServer-14.1VC11-setup.exe [11286431]
O61 - LFC: 2015/07/24 13:47:59 A . (.Free Software Foundation.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\iconv.dll [888832]
O61 - LFC: 2015/07/24 13:48:00 A . (.IBM Corporation and others.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\icudt40.dll [13922304]
O61 - LFC: 2015/07/24 13:48:01 A . (.IBM Corporation and others.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\icuin40.dll [1015808]
O61 - LFC: 2015/07/24 13:48:01 A . (.IBM Corporation and others.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\icuuc40.dll [946176]
O61 - LFC: 2015/07/24 13:48:01 A . (..) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\libxml2.dll [975360]
O61 - LFC: 2015/07/24 13:48:01 A . (..) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\libxslt.dll [166400]
O61 - LFC: 2015/07/24 13:48:01 A . (.The PHP Group.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\php_yaz.dll [45056]
O61 - LFC: 2015/07/24 13:48:02 A . (.Index Data.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\yaz3.dll [1105920]
O61 - LFC: 2015/07/24 13:48:02 A . (.Index Data.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\yaz_icu3.dll [28672]
O61 - LFC: 2015/07/24 13:48:02 A . (.(C) 1995-2004 Jean-loup Gailly & Mark Adler.) -- C:\Users\DETOHDELLWIN7\Desktop\Dossier Logiciels\Dossier pmb\dll-de-yaz-3-0-50\zlib1.dll [73728]
O61 - LFC: 2015/07/27 16:39:30 A . (..) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Ahead\NeroVision\nve-am.bin [82]
O61 - LFC: 2015/07/27 16:39:29 A . (..) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Ahead\NeroVision\nve-mtmpl.bin [12]
O61 - LFC: 2015/07/27 16:39:29 A . (..) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\Ahead\NeroVision\nve-vobmap.bin [48]
O61 - LFC: 2015/07/27 12:01:37 A . (..) -- C:\Users\DETOHDELLWIN7\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [89807]

---\\ Associations Shell Spawning (O67) (1) - 0s
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe

---\\ Menu de démarrage Internet (SMI) (O68) (8) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (11) - 15s
O69 - SBI: prefs.js [DETOHDELLWIN7 - 6skc0l3b.default] user_pref("browser.search.order.1", "Ask.com"); =>Toolbar.Ask
O69 - SBI: prefs.js [DETOHDELLWIN7 - 6skc0l3b.default] user_pref("browser.search.selectedEngine", "Ask.com"); =>Toolbar.Ask
O69 - SBI: prefs.js [DETOHDELLWIN7 - 6skc0l3b.default] user_pref("extensions.faststartff@gmail.com.install-event-fired", true); =>PUP.Optional.FastStart
O69 - SBI: prefs.js [DETOHDELLWIN7 - 6skc0l3b.default] user_pref("extensions.xpiState", "{\"app-profile\":{\"faststartff@gmail.com\":{\"d\":\"C:\\\\Users\\\\DETOHDELLWIN7\\\\AppData\\\\[...] =>PUP.Optional.FastStart
O69 - SBI: prefs.js [DETOHDELLWIN7 - 6skc0l3b.default] user_pref("keyword.URL", "http://dts.search.ask.com/sr?src=ffb&gct=ds&appid=0&systemid=406&v=n15946-703&apn_dtid=BND406&apn_ptnrs=[...] =>PUP.Optional.Bandoo
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Search Provided by Yahoo) - http://us.yhs4.search.yahoo.com/
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (istartsurf) - http://www.istartsurf.com/ =>PUP.Optional.IsStart
O69 - SBI: SearchScopes [HKCU] {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {9AD09901-06DD-4DDD-A62D-6D2243B771AB} - (MyPlayCity) - http://start.myplaycity.com/
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} - (Ask.com) - http://dts.search.ask.com/ =>PUP.Optional.Bandoo
O69 - SBI: SearchScopes [HKCU] {DE6DA2C1-83C5-48C8-B243-47A070264955} - (Harmony Hollow Software Customized Web Search) - http://search.conduit.com/ =>PUP.Optional.Conduit

---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) (3) - 87s
O82 - LFC: 2011/11/28 23:34:12 A . (...) -- C:\Users\DETOHDELLWIN7\Desktop\erdolzad\Loader by Daz 2.1\Windows Loader.exe [3717080] =>.Crack,Keygen
O82 - LFC: 2011/09/08 14:30:56 A . (...) -- C:\Users\DETOHDELLWIN7\Desktop\Devellopement BD\Edraw Soft Edraw Max 6.5.3.2114 Portable Preacracked\Edraw Max 6.5.exe [31401] =>.Crack,Keygen
O82 - LFC: 2012/11/11 20:42:16 A . (...) -- C:\Users\DETOHDELLWIN7\Desktop\Devellopement BD\Edraw Soft Edraw Max 6.5.3.2114 Portable Preacracked\Edraw Max 6.5 by speedzodiac\%AppData%\Adobe\Acrobat\8.0\UserCache.bin [73335] =>.Crack,Keygen

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [475136]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [523776]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1973728]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164864]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (95) - 6s
O87 - FAEL: "{97E7B17B-C74A-4ED0-BD20-D5857E4FA46F}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
O87 - FAEL: "{52F9E8B0-0057-415B-BB40-A0172E33DE51}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
O87 - FAEL: "{FE27EEC3-973B-4D8C-A86B-0B124D293662}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgdiagex.exe
O87 - FAEL: "{4D7BFAD6-EDDB-47B0-8768-C4BC6B4AEC06}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgdiagex.exe
O87 - FAEL: "{7DEB3920-E1A3-4075-85E1-CB18D8BE993C}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgmfapx.exe
O87 - FAEL: "{F3FDDD0C-5EAF-4EFF-9F5E-C5E7AFDDEBF0}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgmfapx.exe
O87 - FAEL: "{A8EBF15D-D83B-4E44-8191-1D110CB0140C}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgemcx.exe
O87 - FAEL: "{599153EF-AB9C-48C5-86E9-F47A18E139E8}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVG\AVG2014\avgemcx.exe
O87 - FAEL: "{7B5607FE-85C2-40F3-A9B2-1519197FBDA8}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "TCP Query User{1E858C31-253A-4089-ABFD-48731130C19A}C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe" [In-None-P6-TRUE] .(...) -- C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe
O87 - FAEL: "UDP Query User{98AF2C1C-AC77-4B1D-8D98-D09C1DBFD242}C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe" [In-None-P17-TRUE] .(...) -- C:\wamp\bin\apache\apache2.4.4\bin\httpd.exe
O87 - FAEL: "{8A6DB459-DB90-4592-A59C-C23803B9B60B}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{0B56D419-B834-4069-9060-2C0BB18F4CC0}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{E05B1751-86C1-4D7B-B61C-62F58C61773F}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{5F3F45D5-B2C8-42FE-B3A4-473F277C213E}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{091C1BB2-24FC-4792-8A20-7DB724069453}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{43B799BC-4407-4572-BC0E-BD14BE7BF645}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{3F26A8D8-3565-486A-9A84-0DD3157652D7}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{11E287D1-556A-4729-AE0D-9C8E8DA75287}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{926AE529-7837-471A-9C6D-9704C50E5732}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{CE867722-F48E-4AAF-A9EE-846412954D2B}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{EE8E9CAD-5A89-4490-AA03-36EEB97BF3FC}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{02CAB0DD-BF9F-4024-947E-9EC686ABC3BF}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{82FAAFF9-E3F2-4911-A8E9-1D3534C391A7}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{CAB80FA5-41AE-4349-AE67-68C8B2C71F52}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{D60765D3-D27C-4BB5-A63D-ECE1CE9881D1}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{290DA1B3-2D33-4347-A459-832FCDA5CC38}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{D1182D32-06D4-4B45-9F3E-62696F5DE5C2}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{CE5A8224-0B94-492D-9CB3-5E7FCB2DFE22}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{0FDB5D60-0389-49E0-AB97-97C11594C0C2}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{B33FDE99-4D04-47E8-B266-FFCC1833052A}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "TCP Query User{7A86EF56-7ADE-499E-BB22-1524252C51B5}C:\program files\java\jdk1.7.0_65\bin\jmc.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jdk1.7.0_65\bin\jmc.exe
O87 - FAEL: "UDP Query User{00EFB8D2-B06F-47CE-BF46-E8592E20E09C}C:\program files\java\jdk1.7.0_65\bin\jmc.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jdk1.7.0_65\bin\jmc.exe
O87 - FAEL: "{8327DB7E-1C8D-45C9-9126-49D4548F422D}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{B83EFEE7-699D-4B5D-81A2-0B3F7B56D8FD}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{000A36BB-14A1-42CE-88D1-4A8D46DE21E6}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDSendToExplorer.exe
O87 - FAEL: "{FC4DDFFC-CF0F-4B5C-ACC2-3242898B2D7D}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDSendToExplorer.exe
O87 - FAEL: "{6666FC63-484C-46DF-AB67-A753A390F2CF}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{D2E73E00-0CC0-4D4F-AAA0-710BA41A33DD}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{D4C28BA0-FB4E-4915-9E49-0993EE77F02C}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{08B0DEF6-0AF8-495E-9BED-022E3B1412AA}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{0229B0EB-705C-4838-B345-87B703A0583B}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDSendToExplorer.exe
O87 - FAEL: "{8A2A9CB9-9408-4D26-857B-90777C308FEF}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDSendToExplorer.exe
O87 - FAEL: "{CDB614EC-1DE0-463D-B93A-DE08149EC6A5}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{4E54B3DB-65D5-4EC4-A662-4653C6A7C3D1}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Dell\DW WLAN Card\WFDTray.exe
O87 - FAEL: "{925573FA-76B3-422B-871B-108A7175B915}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{DF9E32B2-989F-4B74-81C6-D8901D8C39F0}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{03F1D799-2A90-4D41-B254-52C6904143DF}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{CCF4C647-C137-4516-A5EC-111F74AE21C5}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer
O87 - FAEL: "{674FB2B4-43B3-4C2E-994F-64CF893C1841}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe
O87 - FAEL: "{63F8513E-6677-45A4-A77E-B2CB9137EE03}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\Video Download Capture.exe
O87 - FAEL: "{677A2043-5824-4B6C-8D19-8DF7F5ECE749}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll
O87 - FAEL: "{943241E8-594E-441B-910F-8F11AE785814}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftSrv.dll
O87 - FAEL: "{10574914-B661-49D5-AECA-766C7BD6489E}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll
O87 - FAEL: "{154DB60F-F2E4-43CD-8524-69C9F4A8E6EE}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDump.dll
O87 - FAEL: "{8B072203-B5D2-4DD2-910B-83330D941CE1}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll
O87 - FAEL: "{B7DBF7B6-5CCD-4854-AAF3-33723C9C3C81}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftAC.dll
O87 - FAEL: "{96D1FCEF-B261-48F9-B80E-D641904F5ECF}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
O87 - FAEL: "{3B154824-B958-4D6B-A9BF-026D4BF034D0}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftPlayer.dll
O87 - FAEL: "{850ECAEE-FA9D-421F-8D99-E0C9DAC368AE}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
O87 - FAEL: "{758F3AA2-58F5-47A4-9C54-459705755452}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
O87 - FAEL: "{7094A465-9BCA-49E2-AA3D-15047BC97368}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
O87 - FAEL: "{D1B2C6EA-AD8D-47EF-BC5E-6A0402C5DBE5}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Apowersoft\Video Download Capture\ApowersoftHDSDump.dll
O87 - FAEL: "TCP Query User{2F4D3B52-C7C8-42C2-98AC-0714D3B980CB}C:\program files\orbitdownloader\orbitnet.exe" [In-None-P6-TRUE] .(...) -- C:\program files\orbitdownloader\orbitnet.exe
O87 - FAEL: "UDP Query User{59D95BC0-EA68-4E8C-BD7C-E1F91AAC11F4}C:\program files\orbitdownloader\orbitnet.exe" [In-None-P17-TRUE] .(...) -- C:\program files\orbitdownloader\orbitnet.exe
O87 - FAEL: "{4D37DEDF-0264-4D9C-BD3B-E8D8A43479D7}" [In-None-P6-TRUE] .(.IAC Search and Media, Inc. - DtUser.) -- C:\Program Files\Movies App\Datamngr\SRToolBar\IE\dtuser.exe =>PUP.Optional.CrossRider
O87 - FAEL: "{AAAA6327-7EB5-4894-BCFD-CC6EE6C4920E}" [In-None-P17-TRUE] .(.IAC Search and Media, Inc. - DtUser.) -- C:\Program Files\Movies App\Datamngr\SRToolBar\IE\dtuser.exe =>PUP.Optional.CrossRider
O87 - FAEL: "{4C58B9F0-7370-4123-BE29-CFB016A3CDE6}" [In-None-P6-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\BitTorrent\BitTorrent.exe
O87 - FAEL: "{9C469942-D8F9-46DF-9B5E-B6B07C2C740E}" [In-None-P17-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\DETOHDELLWIN7\AppData\Roaming\BitTorrent\BitTorrent.exe
O87 - FAEL: "TCP Query User{8C08ECE7-26CE-4498-8391-13308E77D527}C:\program files\wondershare\vcu\mediaserver.exe" [In-None-P6-TRUE] .(...) -- C:\program files\wondershare\vcu\mediaserver.exe
O87 - FAEL: "UDP Query User{AA8C3DD7-B56D-42B7-AD89-B013D656329A}C:\program files\wondershare\vcu\mediaserver.exe" [In-None-P17-TRUE] .(...) -- C:\program files\wondershare\vcu\mediaserver.exe
O87 - FAEL: "TCP Query User{108CC08F-CF2D-427F-827F-414202FD3B11}C:\program files\wondershare\vcu\medialibserver.exe" [In-None-P6-TRUE] .(...) -- C:\program files\wondershare\vcu\medialibserver.exe
O87 - FAEL: "UDP Query User{D0200800-0900-4BA8-B89F-650451F72195}C:\program files\wondershare\vcu\medialibserver.exe" [In-None-P17-TRUE] .(...) -- C:\program files\wondershare\vcu\medialibserver.exe
O87 - FAEL: "TCP Query User{D8123B1C-734A-4F9F-9E93-1BFDA2CFE913}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe" [In-None-P6-TRUE] .(...) -- C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
O87 - FAEL: "UDP Query User{8AB54E47-A3A1-4AAE-B351-744B52B4ECAC}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe" [In-None-P17-TRUE] .(...) -- C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
O87 - FAEL: "TCP Query User{02C920C6-D34A-4BEF-B64B-8AA2A334D733}C:\wamp\www\bin\apache\apache2.4.9\bin\httpd.exe" [In-None-P6-TRUE] .(...) -- C:\wamp\www\bin\apache\apache2.4.9\bin\httpd.exe
O87 - FAEL: "UDP Query User{BAECC575-58C1-49BE-9E02-EB40AA110C22}C:\wamp\www\bin\apache\apache2.4.9\bin\httpd.exe" [In-None-P17-TRUE] .(...) -- C:\wamp\www\bin\apache\apache2.4.9\bin\httpd.exe
O87 - FAEL: "TCP Query User{77022C05-7E0D-43A6-AC09-81401A13F112}C:\program files\airdroid\airdroid.exe" [In-None-P6-TRUE] .(...) -- C:\program files\airdroid\airdroid.exe
O87 - FAEL: "UDP Query User{41553CFD-37D5-4E90-8D4E-1F90EDD8745B}C:\program files\airdroid\airdroid.exe" [In-None-P17-TRUE] .(...) -- C:\program files\airdroid\airdroid.exe
O87 - FAEL: "{BA0C2486-5957-42EF-B720-698B6CEDFEA7}" [In-None-P6-TRUE] .(.Aladdin Knowledge Systems Ltd. - Aladdin HASP License Manager Service.) -- C:\Windows\System32\hasplms.exe
O87 - FAEL: "{05064326-EE07-40C0-843D-DA8B79321C0C}" [In-None-P17-TRUE] .(.Aladdin Knowledge Systems Ltd. - Aladdin HASP License Manager Service.) -- C:\Windows\System32\hasplms.exe
O87 - FAEL: "{21BEC53D-565E-4179-BEA7-644602F308BB}" [In-None-P6-TRUE] .(...) -- C:\Program Files\MyHotspot\MyHotspot.exe
O87 - FAEL: "{F929BF30-8D61-47BF-898F-3B4FE03DE41E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\MyHotspot\MyHotspot.exe
O87 - FAEL: "{205EEE42-815C-48A2-877B-51901AF7C1CF}" [In-None-P6-TRUE] .(...) -- C:\Program Files\MyHotspot\HotspotService.exe
O87 - FAEL: "{D2F211D5-B9BB-4799-989F-E669C63730A9}" [In-None-P17-TRUE] .(...) -- C:\Program Files\MyHotspot\HotspotService.exe
O87 - FAEL: "{AC12FFA4-6290-4F30-BF26-53D67E1975F8}" [In-None-P6-TRUE] .(...) -- C:\Program Files\MyHotspot\MyHotspot.exe
O87 - FAEL: "{964B4E30-294F-4AD5-9825-901166F40E61}" [In-None-P17-TRUE] .(...) -- C:\Program Files\MyHotspot\MyHotspot.exe
O87 - FAEL: "{22BBB979-4E88-4B0F-89F1-92366EA26065}" [In-None-P6-TRUE] .(...) -- C:\Program Files\MyHotspot\HotspotService.exe
O87 - FAEL: "{B5488D25-988C-48CA-8967-C39C9E912FE7}" [In-None-P17-TRUE] .(...) -- C:\Program Files\MyHotspot\HotspotService.exe
O87 - FAEL: "{820E5505-309E-4606-B5CF-8EAA9D8ED58A}" [In-None-P6-TRUE] .(...) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe =>PUP.Optional.RelevantKnowledge
O87 - FAEL: "{A95A7618-C098-41A0-A035-E319050D29D5}" [In-None-P17-TRUE] .(...) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe =>PUP.Optional.RelevantKnowledge
O87 - FAEL: "{4E0B3850-5426-459D-AFE1-420F69E73E67}" [In-None-P6-TRUE] .(.Symantec Corporation - Symantec CMC Smc.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\Smc.exe
O87 - FAEL: "{461BD44F-C56E-448F-AC80-349596993DC1}" [In-None-P17-TRUE] .(.Symantec Corporation - Symantec CMC Smc.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\Smc.exe
O87 - FAEL: "{33056A00-27C8-4577-A48E-02B5E04F8F07}" [In-None-P6-TRUE] .(.Symantec Corporation - Symantec Network Access Control.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\snac.exe
O87 - FAEL: "{F9E4CC15-20D5-4CF2-B4BF-4ECCC7579942}" [In-None-P17-TRUE] .(.Symantec Corporation - Symantec Network Access Control.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.601.4699.105\Bin\snac.exe

---\\ Recherche de clés de registre Tracing (O100) (8) - 4s
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\amt_istartsurf_RASAPI32 =>PUP.Optional.IsStart
HKLM\SOFTWARE\Microsoft\Tracing\amt_istartsurf_RASMANCS =>PUP.Optional.IsStart
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_utorrent_RASAPI32 =>PUP.Optional.Softonic
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_utorrent_RASMANCS =>PUP.Optional.Softonic
HKLM\SOFTWARE\Microsoft\Tracing\SupTab_v5_RASAPI32 =>PUP.Optional.SupTab
HKLM\SOFTWARE\Microsoft\Tracing\SupTab_v5_RASMANCS =>PUP.Optional.SupTab

---\\ Scan Additionnel (O88) (63) - 0s
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugincontainer.exe =>PUP.Optional.CrossRider
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\2\Plugin.exe =>PUP.Optional.CrossRider
C:\Program Files\Common Files\322cb724-1680-423d-8862-1b52ca5027ad\updater.exe =>PUP.Optional.CrossRider
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\5\Plugin.exe =>PUP.Optional.CrossRider
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\8\Plugin.exe =>PUP.Optional.CrossRider
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\3\Plugin.exe =>PUP.Optional.CrossRider
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\6\Plugin.exe =>PUP.Optional.CrossRider
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugins\7\Plugin.exe =>PUP.Optional.CrossRider
C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\searchplugins\search-provided-by-yahoo.xml =>PUP.Optional.BDYahoo
C:\Program Files\Mozilla Firefox\browser\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
C:\Users\DETOHDELLWIN7\AppData\Roaming\Mozilla\Firefox\Profiles\6skc0l3b.default\extensions\faststartff@gmail.com =>PUP.Optional.FastStart
C:\Program Files\Movies App\Datamngr\SRToolBar\IE\searchresultsDx.dll =>PUP.Optional.Bandoo
HKLM\SYSTEM\CurrentControlSet\Services\RelevantKnowledge =>PUP.Optional.RelevantKnowledge
HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr SaleCharger =>PUP.Optional.SaleCharger
C:\ProgramData\322cb724-1680-423d-8862-1b52ca5027ad\plugincontainer.exe =>PUP.Optional.SaleCharger
HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr SaleCharger =>PUP.Optional.SaleCharger
C:\Program Files\Common Files\322cb724-1680-423d-8862-1b52ca5027ad\updater.exe =>PUP.Optional.SaleCharger
HKLM\SYSTEM\CurrentControlSet\Services\Update Rad Rater =>PUP.Optional.RadRater
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Datamngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWPM =>PUP.Optional.WpManager
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\Popajar =>PUP.Optional.Conduit
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
HKCU\SOFTWARE\ProgSense =>PUP.Optional.ProgSense
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tbccint_HKLM =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Conduit =>PUP.Optional.Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\ilividbandoomoviestoolbar =>PUP.Optional.Bandoo =>PUP.Optional.Bandoo
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar =>PUP.Optional.SmartBar
C:\Program Files\Movies App =>PUP.Optional.CrossRider
C:\Program Files\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\Program Files\SupTab =>PUP.Optional.SupTab
C:\Program Files\Tbccint =>PUP.Optional.Conduit
C:\ProgramData\Datamngr =>PUP.Optional.Datamngr
C:\ProgramData\IePluginServices =>Trojan.SProtector
C:\ProgramData\MailUpdate =>PUP.Optional.MailUpdate
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\Users\DETOHDELLWIN7\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
C:\Users\DETOHDELLWIN7\AppData\Roaming\MailUpdate =>PUP.Optional.MailUpdate
C:\Users\DETOHDELLWIN7\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\DETOHDELLWIN7\AppData\Roaming\ProgSense =>PUP.Optional.ProgSense
C:\Users\DETOHDELLWIN7\AppData\Roaming\smileyswelove =>PUP.Optional.SmileyBar
C:\Users\DETOHDELLWIN7\AppData\Roaming\systweak =>PUP.Optional.Systweak
C:\Program Files\Movies App\Datamngr\SRToolBar\IE\dtuser.exe =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\DatamngrCoordinator =>PUP.Optional.MoviesToolbar
C:\Program Files\Movies App\Datamngr\DatamngrCoordinator.exe =>PUP.Optional.MoviesToolbar
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\amt_istartsurf_RASAPI32 =>PUP.Optional.IsStart
HKLM\SOFTWARE\Microsoft\Tracing\amt_istartsurf_RASMANCS =>PUP.Optional.IsStart
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_utorrent_RASAPI32 =>PUP.Optional.Softonic
HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_utorrent_RASMANCS =>PUP.Optional.Softonic
HKLM\SOFTWARE\Microsoft\Tracing\SupTab_v5_RASAPI32 =>PUP.Optional.SupTab
HKLM\SOFTWARE\Microsoft\Tracing\SupTab_v5_RASMANCS =>PUP.Optional.SupTab

---\\ Récapitulatif des éléments trouvées sur votre station (28) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.BDYahoo
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/blog =>PUP.Optional.FastStart
http://www.nicolascoolman.fr/adware-bandoo/ =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/adware-relevantknowledge/ =>PUP.Optional.RelevantKnowledge
http://www.nicolascoolman.fr/blog =>PUP.Optional.SaleCharger
http://www.nicolascoolman.fr/blog =>PUP.Optional.RadRater
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/adware-installcore/ =>PUP.Optional.InstallCore
http://www.nicolascoolman.fr/blog =>PUP.Optional.ProgSense
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/adware-pricegong/ =>PUP.Optional.PriceGong
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/rogue-registrypowercleaner/ =>PUP.Optional.RegistryPowerCleaner
http://www.nicolascoolman.fr/trojan-sprotector/ =>Trojan.SProtector
http://www.nicolascoolman.fr/blog =>PUP.Optional.MailUpdate
http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/adware-smileybar/ =>PUP.Optional.SmileyBar
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/blog =>PUP.Optional.DllFilesFixer
http://www.nicolascoolman.fr/blog =>PUP.Optional.MoviesToolbar
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector

~ End of the scan, 32690 items in 281 seconds (1106)(3)()

Publicité


Signaler le contenu de ce document

Publicité