cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2015.6.4.54 - Nicolas Coolman (31/05/2015)
~ Lancé par Ours (03/08/2015 07:52:56)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17914
MFIE: Mozilla Firefox 39.0 (Defaut)
GCIE: Google Chrome v44.0.2403.125

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 9YQTR
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Logiciels de protection du système
Avast Free Antivirus v10.2.2218
Trend Micro Titanium Internet Security v3.00
Windows Defender W7 (Deactivate)

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 18 NPAPI

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4006 MB (25% free)
System Restore: Activé (Enable)
System drive C: has 84 GB (43%) free of 196 GB

---\\ Mode de connexion au système
~ Computer Name: OURS-PORTABLE
~ User Name: Ours
~ All Users Names: Ours, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Ours\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Ours\AppData\Roaming\
~ %Desktop% : C:\Users\Ours\Desktop\
~ %Favorites% : C:\Users\Ours\Favorites\
~ %LocalAppData% : C:\Users\Ours\AppData\Local\
~ %StartMenu% : C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 84 Go of 196 Go)
D: Hard drive, Flash drive, Thumb drive (Free 243 Go of 244 Go)
E: Hard drive, Flash drive, Thumb drive (Free 218 Go of 233 Go)
F: Hard drive, Flash drive, Thumb drive (Free 209 Go of 233 Go)
G: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 46 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.E066FDC3A2074D926903B8C31EF3B347] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.20/06/2015 - 19:26:01.) -- C:\Windows\System32\wininet.dll [2427392]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:28.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:34.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.1877EB1495CFBDAB27D6A32F6DDF3818] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.01/07/2015 - 20:27:34.) -- C:\Windows\system32\Drivers\MRxSmb.sys [159232]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:22.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:04.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/5
~ Mes Favoris (My Favorites) : 1/8
~ Mes Documents (My Documents) : 1/151
~ Mon Bureau (My Desktop) : 1/9
~ Menu demarrer (Programs) : 1/42
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.5BB1F77C8AF725A15EC9366498D275BB] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992] [PID.3292]
[MD5.7D2C5F5A9DF7AE26B4E62E2D7032B96B] - (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [82944] [PID.3336]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.3356]
[MD5.09349FBDD20EB24255EAC2871299355B] - (.ASUSTek Computer Inc. - USB Charger+.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [502704] [PID.3364]
[MD5.A391896CD406E6377F5CEF31FDC12019] - (.ASUSTeK - ACEngSvr Module.) -- C:\Windows\SysWOW64\ACEngSvr.exe [155648] [PID.2400]
[MD5.05470C684B62C2F86325D8685E4513CB] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104] [PID.3488]
[MD5.AF67EA73906F7C70888C39F09BA81CB7] - (.CyberLink - MediaEspresso DeviceDetector.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [965728] [PID.4888]
[MD5.4DB47E14FF62720ADA91BE1E40226ACF] - (.pdfforge http://www.pdfforge.org/ - PDFCreator.) -- D:\Program Files (x86)\PDFCreator\PDFCreator.exe [2641920] [PID.0]
[MD5.7EE22E13DEC8A6D18F4643C1EA34B0F0] - (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe [984400] [PID.6100]
[MD5.79A3B950988F8D2B81906D0C0473158B] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624] [PID.4932]
[MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016] [PID.5196]
[MD5.22EC0852DBF032A93D8DA697065FA189] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336] [PID.1496]
[MD5.F92E855A150B9C6A9D19E1E4247EE1E2] - (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe [2563472] [PID.5292] =>Toolbar.AVGSearch
[MD5.65C6AA484AD2287D20541C7735989437] - (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [5515496] [PID.5460]
[MD5.715C62B9A059001BFA2A0224F4691AFD] - (.Intel Corporation - Bluetooth Media Player Controller.) -- C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe [839744] [PID.6768]
[MD5.1CE7982AA6A983F4C49A32C8D624237B] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.6304]
[MD5.2B145A50EE1EF53989887A711A9F2981] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [271016] [PID.7684]
[MD5.05704EB8BF443999EBE4E9D2C075C26A] - (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe [3423920] [PID.7788]
[MD5.DE377B81E5FD0F3F24B9EC74051FE975] - (.CyberLink Corp. - CyberLink MediaShow Main Program.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\MediaEspresso.exe [326752] [PID.7316]
[MD5.E57E2B81EF0463738007CF89664F78CD] - (.Skillbrains - Lightshot.) -- C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe [477184] [PID.6384] =>PUP.SkillBrains
[MD5.12E2FC1F74265881402DE856D01EFFFE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8214016] [PID.11600]
[MD5.D2230317777033CD0456990BFC4994E5] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [411936] [PID.368]
[MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [84536] [PID.1776]
[MD5.7910158929571214A959D5A6D16DD9C0] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1796]
[MD5.54236E79A44F909612391C8A2D70D512] - (.Avast Software s.r.o. - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336] [PID.1820]
[MD5.0CC5D45987A29D5F2806F4C344ACEA75] - (.ASUS - InsOnSrv.) -- C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [64128] [PID.2156]
[MD5.4C4A576818EA028257C624AE36FF7A03] - (.Atheros - Atheros Coex Service Application.) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400] [PID.2180]
[MD5.456645830A7C1B62E47C54A638781669] - (.ASUS - InsOnWMI.) -- C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe [100992] [PID.2448]
[MD5.0E00A57C4CABA756788A2230941CC506] - (.HD.Quality.i5V19.06 - HD.Quality.i5V19.06 exe.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-1-6.exe [1326672] [PID.2540]
[MD5.3A24E50E6F554DFEEDFAB6E543B3968B] - (.HD.Quality.i5V19.06 - HD.Quality.i5V19.06 exe.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-6.exe [1390160] [PID.2572]
[MD5.5FF7B9916A10E8E69E7C0D16F0B4787A] - (.Intel Corporation - Bluetooth Device Monitor.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [921664] [PID.2672]
[MD5.F665EE65E60513C59E2ADBEF33989AB1] - (.ClaraLabs - ClaraUpdater.) -- C:\Program Files (x86)\Common Files\ClaraUpdater\ClaraUpdater.exe [926832] [PID.1612] =>Adware.SupTab
[MD5.45D6780D0525D7BC29E2E3605CA73C18] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608] [PID.3676]
[MD5.0416266CCBC2B95EAE2C6E0AA5D228FD] - (.Splashtop Inc. - Windows Metadata Export Service.) -- C:\ASUS.SYS\SIONExportService.exe [338208] [PID.1640]
[MD5.09E2679BC114A4B4CF99517CCA848F0D] - (.AVG Secure Search - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\ToolbarUpdater.exe [1842576] [PID.4108] =>Toolbar.AVGSearch
[MD5.2A363DD60EF0DAE404103357ABD8AD8B] - (.Schneider Electric Inc. - USB Link Service Application.) -- D:\Program Files (x86)\Schneider Electric\Vijeo-Designer\Vijeo-Frame\XBTZG935\XBTZG935svr.exe [90112] [PID.4240]
[MD5.65C26928DEC067BD134B5634F9B24BA4] - (.Pas de propriétaire - loggings Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\loggingserver.exe [168336] [PID.4316] =>Toolbar.AVGSearch
[MD5.20427929646784A482DF34EF8C4FED23] - (.Intel Corporation - Bluetooth OBEX Service.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [995392] [PID.4388]
[MD5.616F6E52CAE254727A886BA8EDA1BEEA] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.5064]
[MD5.E43D73CAF1023976EFBA1D0F0E69E271] - (.Intel Corporation - Bluetooth Media Service.) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1335360] [PID.6132]
[MD5.F5AB4D2E36625F355E81539239765107] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [103608] [PID.4920]
[MD5.F6B95483E4272794688DA06813D7075F] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1839616] [PID.5304]
[MD5.0803906D607A9B83184447B75B60ECC2] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.4832]
[MD5.EB79C6C91A99930015EF29AE7FA802D1] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2655768] [PID.6724]
[MD5.E4B976BBA2661E8FCA283FC48F7EFBEE] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe [653952] [PID.4228]
~ Processes Running: Scanned in 00mn 03s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Ours\AppData\Roaming\Mozilla\Firefox\Profiles\2ox2duve.default\prefs.js
M0 - MFSP: prefs.js [Ours - 2ox2duve.default] http://www.google.fr
M2 - MFEP: Extension [Ours - 2ox2duve.default] AVJYFVOD75109374@HCDE39471360.com
M2 - MFEP: Extension [Ours - 2ox2duve.default] firebug@software.joehewitt.com.xpi
M2 - MFEP: Extension [Ours - 2ox2duve.default] html5notifications@paxal.net.xpi
M2 - MFEP: Extension [Ours - 2ox2duve.default] {d47a9f51-8281-43fa-f450-f28ef8735e9a}.xpi
M2 - MFEP: Extension [Ours - 2ox2duve.default] {e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml =>Toolbar.AVGSearch
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.40416.0.) -- C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
~ Firefox Browser: 26 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17840 (winblue_r11.150522-0826)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 17 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Trend Micro NSC BHO [64Bits] - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} . (.Trend Micro Inc. - Trend Micro NSC IE Plug-In.) -- C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: IESpeakDoc [64Bits] - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} . (.Atheros Commnucations - Bluetooth IE PlugIn.) -- C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Avast Software s.r.o. - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG Secure Search - toolbar.dll.) -- C:\Program Files (x86)\AVG Secure Search\18.7.0.147\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: TmBpIeBHO [64Bits] - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} . (.Trend Micro Inc. - Trend Micro Browser Plug-In (IE).) -- C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O2 - BHO: Google Dictionary Compression sdch [64Bits] - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} . (.Google Inc. - Fast Search.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
~ BHO: 15 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [VizorHtmlDialog.exe] . (.Trend Micro Inc. - Trend Titanium.) -- C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe
O4 - HKLM\..\Run: [Trend Micro Client Framework] . (.Trend Micro Inc. - Trend Micro Client Session Agent Monitor.) -- C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
O4 - HKLM\..\Run: [Trend Micro Titanium] . (.Trend Micro Inc. - VizorShortCut Dynamic Link Library.) -- C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [AmIcoSinglun64] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [AtherosBtStack] . (.Atheros Communications - Serveur Stack Bluetooth.) -- C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
O4 - HKLM\..\Run: [AthBtTray] . (.Atheros Commnucations - Bluetooth Suite Common Rescource.) -- C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
O4 - HKLM\..\Run: [SynAsusAcpi] C:\Program Files (x86)\Synaptics\SynTP\SynAsusAcpi.exe (.not file.)
O4 - HKLM\..\Run: [IntelTBRunOnce] \b \nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs (.not file.)
O4 - HKLM\..\Run: [Setwallpaper] c:\programdata\SetWallpaper.cmd (.not file.)
O4 - HKLM\..\Run: [IntelPAN] . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
O4 - HKLM\..\Run: [BTMTrayAgent] . (.Intel Corporation - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (.not file.)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\system32\nvspcap64.dll
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.DT Soft Ltd
O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Ours\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKCU\..\Run: [LightShot] C:\Users\Ours\AppData\Local\Skillbrains\lightshot\LightShot.exe (.not file.) =>PUP.SkillBrains
O4 - HKLM\..\Wow6432Node\Run: [Nuance PDF Reader-reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files (x86)\ASUS\APRP\APRP.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ecareme - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [SonicMasterTray] . (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePSTShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch
O4 - HKLM\..\Wow6432Node\Run: [mpck_fr_017010005] Clé orpheline =>PUP.MobilePCStarterKit
O4 - HKLM\..\Wow6432Node\Run: [Boxore Client] C:\Program Files (x86)\Boxore\Boxore Client\boxore.exe (.not file.) =>Adware.Boxore
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [Lightshot] . (.Pas de propriétaire - Starter Module.) -- C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe =>PUP.SkillBrains
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1653707670-1058410537-4083382807-1001\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.DT Soft Ltd
O4 - HKUS\S-1-5-21-1653707670-1058410537-4083382807-1001\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Ours\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKUS\S-1-5-21-1653707670-1058410537-4083382807-1001\..\Run: [LightShot] C:\Users\Ours\AppData\Local\Skillbrains\lightshot\LightShot.exe (.not file.) =>PUP.SkillBrains
~ Application: Scanned in 00mn 05s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 9 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{5CF9DAE4-E479-4BF7-A48C-1A6039B189AF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{8848100D-DFC9-40F5-8099-3C7F73043C99}: DhcpNameServer = 10.11.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DD995508-490E-46B4-9F63-FFD4C66DD0BA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{5CF9DAE4-E479-4BF7-A48C-1A6039B189AF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8848100D-DFC9-40F5-8099-3C7F73043C99}: DhcpNameServer = 10.11.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DD995508-490E-46B4-9F63-FFD4C66DD0BA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{5CF9DAE4-E479-4BF7-A48C-1A6039B189AF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{8848100D-DFC9-40F5-8099-3C7F73043C99}: DhcpNameServer = 10.11.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DD995508-490E-46B4-9F63-FFD4C66DD0BA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Client Connect LTD - Search Protect.) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll =>PUP.SearchProtect
~ AppInit DLL: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Servi (AMPPALR3) . (.Intel Corporation - Intel® Centrino® Wireless Bluetooth® 3.0 +.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) . (.ASUS - InsOnSrv.) - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent (Atheros Bt&Wlan Coex Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o. - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor (Bluetooth Device Monitor) . (.Intel Corporation - Bluetooth Device Monitor.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service (Bluetooth OBEX Service) . (.Intel Corporation - Bluetooth OBEX Service.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed (BTHSSecurityMgr) . (.Intel(R) Corporation - Intel(R) BlueTooth(R) HS Security Manager S.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: ClaraUpdater (ClaraUpdater) . (.ClaraLabs - ClaraUpdater.) - C:\Program Files (x86)\Common Files\ClaraUpdater\ClaraUpdater.exe =>Adware.SupTab
O23 - Service: Search Protect Service (CltMngSvc) . (...) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe (.not file.) =>PUP.SearchProtect
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.GlobalUpdate
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: SAGEM MorphoSmart Service Provider Usb Server (MSO_SpUsb_Service) . (.Sagem Securite - Serv_SpUsb.) - C:\Morpho\MorphoSmart USB Drivers\Serv_SpUsb.exe
O23 - Service: MySQL56 (MySQL56) . (...) - C:\ProgramData\MySQL\MySQL Server 5.6\my.ini
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.5.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Service Software Update (Software_update) (Software_update) . (.The Software Group - Software Update.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TiMiniService (TiMiniService) . (.Trend Micro Inc. - Titanium mini-service.) - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (vToolbarUpdater18.7.0) . (.AVG Secure Search - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
O23 - Service: XBTZG935 USB Link Cable (XBTZG935 USB Link Cable) . (.Schneider Electric Inc. - USB Link Service Application.) - D:\Program Files (x86)\Schneider Electric\Vijeo-Designer\Vijeo-Frame\XBTZG935\XBTZG935svr.exe
~ Services: 29 Scanned in 00mn 26s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.7D2C5F5A9DF7AE26B4E62E2D7032B96B] [APT] [ACMON] (.ASUS.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [82944]
[MD5.9B3355B29942AF67F014EA90CE1EA960] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.9511B23DAE049EAC7579B5DB822EC001] [APT] [AIRecoveryRemind] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryRemind.exe [509568]
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP1] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP2] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP3] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.AnyProtect
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (...) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768]
[MD5.09C748AB133FA903E115793B714EE786] [APT] [ASUS P4G] (.ASUS.) -- C:\Program Files\P4G\BatteryLife.exe [1001088]
[MD5.BC3DA234CDA880578526DAB028F40268] [APT] [ASUS SmartLogon Console Sensor] (.ASUS.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305792]
[MD5.5BB1F77C8AF725A15EC9366498D275BB] [APT] [ATKOSD2] (.ASUS.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992]
[MD5.8F2072A82910E649893E10B9139B2860] [APT] [avabvbavad] (...) -- C:\Users\Ours\AppData\Local\avabvbavad\avabvbavad.exe [2135552] =>Adware.Pirrit
[MD5.FAAE091936E04BDE3B6041AB5C16BC7B] [APT] [avast! Emergency Update] (.Avast Software s.r.o..) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1298776]
[MD5.00000000000000000000000000000000] [APT] [AVG-Secure-Search-Update_JUNE2013_TB_rmv] (...) -- C:\Windows\TEMP\{7A93598B-E74F-4FCD-A0AB-930822C9E656}.exe (.not file.) [0] =>Toolbar.AVGSearch
[MD5.AF67EA73906F7C70888C39F09BA81CB7] [APT] [DeviceDetector] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [965728]
[MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001Core] (.Dropbox, Inc..) -- C:\Users\Ours\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512]
[MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001UA] (.Dropbox, Inc..) -- C:\Users\Ours\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512]
[MD5.0E00A57C4CABA756788A2230941CC506] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-1-6] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-1-6.exe [1326672]
[MD5.4A8011F475D42AD6EB5CE0256FAEF7D0] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-1-7] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-1-7.exe [984656]
[MD5.EFBBD96B29EB4935F7FE716796039F2A] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-3] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-3.exe [1410128]
[MD5.2FBE3DB80DB0F8DFF3D79005215E1952] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-4] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-4.exe [1428048]
[MD5.34D958E3F8F1D8E1D2A0975BEBFC7269] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-5] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-5.exe [1133136]
[MD5.34D958E3F8F1D8E1D2A0975BEBFC7269] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-5_user] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-5.exe [1133136]
[MD5.3A24E50E6F554DFEEDFAB6E543B3968B] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-6] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-6.exe [1390160]
[MD5.4A8011F475D42AD6EB5CE0256FAEF7D0] [APT] [e88f1ca7-5f1a-4947-a8ea-328914815086-7] (.HD.Quality.i5V19.06.) -- C:\Program Files (x86)\HD.Quality.i5V19.06\e88f1ca7-5f1a-4947-a8ea-328914815086-7.exe [984656]
[MD5.3C14AAE26EA06BADAC98520773772CEB] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608] =>PUP.GlobalUpdate
[MD5.3C14AAE26EA06BADAC98520773772CEB] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608] =>PUP.GlobalUpdate
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.DE6928F6623EEAD69AFFF62E26676C85] [APT] [MySQLNotifierTask] (.Oracle Corporation.) -- C:\Program Files (x86)\MySQL\MySQL Notifier 1.1.5\MySQLNotifier.exe [771584]
[MD5.00000000000000000000000000000000] [APT] [NY6lail7Z1Ebm] (...) -- C:\Users\Ours\AppData\Roaming\NY6lail7Z1Ebm.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Run_Bobby_Browser] (...) -- C:\Users\Ours\AppData\Local\BoBrowser\Application\bobrowser.exe (.not file.) [0] =>PUP.BoBrowser
[MD5.3E1ECCF50446216C64E2DD95EC4DF7FE] [APT] [SoftwareUpdateTaskMachineCore] (.The Software Group.) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [113664] =>Adware.Boxore
[MD5.3E1ECCF50446216C64E2DD95EC4DF7FE] [APT] [SoftwareUpdateTaskMachineUA] (.The Software Group.) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [113664] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [Tny_cassiopesa] (...) -- C:\Users\Ours\AppData\Roaming\TNY_CA~1\UPDATE~1\UPDATE~1.exe (.not file.) [0]
[MD5.3D9C36AEF23B3ECFDFD1375BBF1ACAA7] [APT] [update-S-1-5-21-1653707670-1058410537-4083382807-1001] (...) -- C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [105760] =>PUP.SkillBrains
[MD5.3D9C36AEF23B3ECFDFD1375BBF1ACAA7] [APT] [update-sys] (...) -- C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [105760] =>PUP.SkillBrains
[MD5.09349FBDD20EB24255EAC2871299355B] [APT] [USBChargerPlus] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [502704]
[MD5.00000000000000000000000000000000] [APT] [{5B622577-0D27-4CD6-BCCE-777CC78728E7}] (...) -- F:\sdelcc\version 6.1\Install.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{AE7E95AC-580F-4137-BAB8-53E0EC324327}] (...) -- F:\sdelcc\version 6.1\Install.exe (.not file.) [0]
[MD5.47811D50390A86A17102D7496E6EABB9] [APT] [{EE2D388C-3E9E-4903-979F-59F8C2A36879}] (.Trend Micro Inc..) -- C:\Users\Ours\Downloads\HijackThis.exe [388608]
O39 - APT: - (..) -- C:\Windows\Tasks\a4262845-2465-4686-bf2b-231b441cf839-10_user.job [2088]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: APSnotifierPP1 - (...) -- C:\Windows\Tasks\APSnotifierPP1.job [378] =>PUP.AnyProtect
O39 - APT: APSnotifierPP1 - (...) -- C:\Windows\System32\Tasks\APSnotifierPP1 [378] =>PUP.AnyProtect
O39 - APT: APSnotifierPP2 - (...) -- C:\Windows\Tasks\APSnotifierPP2.job [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP2 - (...) -- C:\Windows\System32\Tasks\APSnotifierPP2 [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP3 - (...) -- C:\Windows\Tasks\APSnotifierPP3.job [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP3 - (...) -- C:\Windows\System32\Tasks\APSnotifierPP3 [376] =>PUP.AnyProtect
O39 - APT: AVG-Secure-Search-Update_JUNE2013_TB_rmv - (...) -- C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job [352] =>Toolbar.AVGSearch
O39 - APT: AVG-Secure-Search-Update_JUNE2013_TB_rmv - (...) -- C:\Windows\System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv [352] =>Toolbar.AVGSearch
O39 - APT: - (..) -- C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job [338] =>PUP.BidailySync
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001Core - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001Core.job [1140]
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001Core - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001Core [1140]
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001UA - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001UA.job [1192]
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001UA - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1653707670-1058410537-4083382807-1001UA [1192]
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-1-6 - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-1-6.job [3132]
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-1-6 - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-1-6 [3132]
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-1-7 - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-1-7.job [3468]
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-1-7 - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-1-7 [3468]
O39 - APT: - (..) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-10_user.job [2106]
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-3 - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-3.job [4152] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-3 - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-3 [4152] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-4 - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-4.job [4152] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-4 - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-4 [4152] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-5 - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5.job [2440] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-5 - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5 [2440] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-5_user - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5_user.job [2440] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-5_user - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5_user [2440] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-6 - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-6.job [5512] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-6 - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-6 [5512] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-7 - (.HD.Quality.i5V19.06.) -- C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-7.job [5512] =>PUP.CrossRider
O39 - APT: e88f1ca7-5f1a-4947-a8ea-328914815086-7 - (.HD.Quality.i5V19.06.) -- C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-7 [5512] =>PUP.CrossRider
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [980] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [980] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [984] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [984] =>PUP.GlobalUpdate
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
O39 - APT: NY6lail7Z1Ebm - (...) -- C:\Windows\Tasks\NY6lail7Z1Ebm.job [898]
O39 - APT: NY6lail7Z1Ebm - (...) -- C:\Windows\System32\Tasks\NY6lail7Z1Ebm [898]
O39 - APT: - (..) -- C:\Windows\Tasks\NY6lail7Z1Ebmu0z.job [1000]
O39 - APT: SoftwareUpdateTaskMachineCore - (.The Software Group.) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [910] =>Adware.Boxore
O39 - APT: SoftwareUpdateTaskMachineCore - (.The Software Group.) -- C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineCore [910] =>Adware.Boxore
O39 - APT: SoftwareUpdateTaskMachineUA - (.The Software Group.) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [914] =>Adware.Boxore
O39 - APT: SoftwareUpdateTaskMachineUA - (.The Software Group.) -- C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA [914] =>Adware.Boxore
O39 - APT: Tny_cassiopesa - (...) -- C:\Windows\Tasks\Tny_cassiopesa.job [288]
O39 - APT: Tny_cassiopesa - (...) -- C:\Windows\System32\Tasks\Tny_cassiopesa [288]
O39 - APT: update-S-1-5-21-1653707670-1058410537-4083382807-1001 - (...) -- C:\Windows\Tasks\update-S-1-5-21-1653707670-1058410537-4083382807-1001.job [386]
O39 - APT: update-S-1-5-21-1653707670-1058410537-4083382807-1001 - (...) -- C:\Windows\System32\Tasks\update-S-1-5-21-1653707670-1058410537-4083382807-1001 [386]
O39 - APT: update-sys - (...) -- C:\Windows\Tasks\update-sys.job [386]
O39 - APT: update-sys - (...) -- C:\Windows\System32\Tasks\update-sys [386]
~ Scheduled Task: 83 Scanned in 00mn 08s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.Avast Software s.r.o. - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.Avast Software s.r.o. - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.Avast Software s.r.o. - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (ATKWMIACPIIO) . (.ASUS - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (innfd_1_10_0_14) . (. - .) - C:\Windows\System32\drivers\innfd_1_10_0_14.sys (.not file.)
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: (nvkflt) . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) - C:\Windows\System32\DRIVERS\nvkflt.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (scfd_1_10_0_16) . (. - .) - C:\Windows\System32\drivers\scfd_1_10_0_16.sys (.not file.)
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (tmtdi) . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - C:\Windows\System32\DRIVERS\tmtdi.sys
O41 - Driver: (VDWINIO) . (.Schneider Electric Inc. - VdWinIo Driver.) - C:\Windows\system32\Drivers\VdWinIo.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 87 Scanned in 00mn 02s



---\\ Logiciels installés (O42)
O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {38253529-D97D-4901-AE53-5CC9736D3A2E}
O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {2B81872B-A054-48DA-BE3B-FA5C164C303A}
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_mm17_silver_asus
O42 - Logiciel: ASUS Music Maker - (.MAGIX AG.) [HKLM][64Bits] -- {DD47370C-E0F1-407F-9DB0-3FF98907F1BC}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {33B98264-A889-4913-A0CA-C364A75032B3}
O42 - Logiciel: ASUS SmartLogon - (.ASUS.) [HKLM][64Bits] -- {64452561-169F-4A36-A2FF-B5E118EC65F5}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS USB Charger Plus - (.AsusTek Computer Inc..) [HKLM][64Bits] -- {AECA3622-E634-4A55-A696-70A511CBE06E}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG Secure Search =>Toolbar.AVGSearch
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- AmUStor
O42 - Logiciel: Asmedia ASM104x USB 3.0 Host Controller Driver - (.Asmedia Technology.) [HKLM][64Bits] -- {E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}
O42 - Logiciel: AsusScr_N5_En - (.ASUS.) [HKLM][64Bits] -- AsusScr_N5_En
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: AutoCAD 2007 - Français - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-5001-040C-0002-0060B0CE6BBA}
O42 - Logiciel: Autodesk DWG TrueView 2016 - Français (French) - (.Autodesk.) [HKLM][64Bits] -- DWG TrueView 2016 - Français (French)
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: Bluetooth Win7 Suite (64) - (.Atheros Communications.) [HKLM][64Bits] -- {230D1595-57DA-4933-8C4E-375797EBB7E1}
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {DE778E8E-5286-41FF-A85E-D41A6384DD83} =>Adware.Boxore
O42 - Logiciel: Cooking Dash - (.Oberon Media Inc..) [HKLM][64Bits] -- Cooking Dash
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink MediaEspresso - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink MediaEspresso - (.CyberLink Corp..) [HKLM][64Bits] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
O42 - Logiciel: DraftSight - (.Dassault Systèmes.) [HKLM][64Bits] -- {A7E24CE8-F9D0-408F-A37C-5BF0716D3E91}
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {0E1FE502-7536-4155-BBC6-7BE8E465DE08}
O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Governor of Poker - (.Oberon Media Inc..) [HKLM][64Bits] -- Governor of Poker
O42 - Logiciel: HD.Quality.i5V19.06 - (.HD.Quality.i5V19.06.) [HKLM][64Bits] -- HD.Quality.i5V19.06
O42 - Logiciel: Hotel Dash Suite Success - (.Oberon Media Inc..) [HKLM][64Bits] -- Hotel Dash Suite Success
O42 - Logiciel: I - Cinema - (.iCinema.) [HKLM][64Bits] -- I - Cinema =>PUP.CrossRider
O42 - Logiciel: InstantOn - (.ASUS.) [HKLM][64Bits] -- {749F674B-2674-47E8-879C-5626A06B2A91}
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM][64Bits] -- ProInst
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor 2.0 - (.Intel.) [HKLM][64Bits] -- {B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}
O42 - Logiciel: Jewel Quest 3 - (.Oberon Media Inc..) [HKLM][64Bits] -- Jewel Quest 3
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Lightshot-5.2.1.1 - (.Skillbrains.) [HKLM][64Bits] -- {30A5B3C9-2084-4063-A32A-628A98DE512B}_is1 =>PUP.SkillBrains
O42 - Logiciel: Logiciel Intel(R) PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM][64Bits] -- {25FBDA9A-E868-4B3B-B9FF-D923818511A1}
O42 - Logiciel: Luxor 3 - (.Oberon Media Inc..) [HKLM][64Bits] -- Luxor 3
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Mahjongg dimensions - (.Oberon Media Inc..) [HKLM][64Bits] -- Mahjongg dimensions
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 39.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Music Now! - (.Splashtop Inc..) [HKLM][64Bits] -- InstallShield_{7C6A4E35-5EEE-426A-A7BF-EA95CDC54DEA}
O42 - Logiciel: Music Now! - (.Splashtop Inc..) [HKLM][64Bits] -- {7C6A4E35-5EEE-426A-A7BF-EA95CDC54DEA}
O42 - Logiciel: MyFreeCodec - (...) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: MySQL Connector C++ 1.1.3 - (.Oracle and/or its affiliates.) [HKLM][64Bits] -- {5C7A1ED6-DC5F-4017-B363-3E80644B4BD0}
O42 - Logiciel: MySQL Connector J - (.Oracle Corporation.) [HKLM][64Bits] -- {9B0DB369-396B-4A81-94FE-5631916D6C6F}
O42 - Logiciel: MySQL Connector Net 6.8.3 - (.Oracle.) [HKLM][64Bits] -- {38157422-F952-42F7-88AA-CC16A63CD109}
O42 - Logiciel: MySQL Connector/C 6.1 - (.Oracle Corporation.) [HKLM][64Bits] -- {BDD417A0-EBEC-46E4-8879-426B9C617C53}
O42 - Logiciel: MySQL Documents 5.6 - (.Oracle Corporation.) [HKLM][64Bits] -- {790BC099-47CC-4215-9BF3-B20AC3D348B2}
O42 - Logiciel: MySQL Examples and Samples 5.6 - (.Oracle Corporation.) [HKLM][64Bits] -- {8934A43E-D901-4337-8313-0C084FBB8ADE}
O42 - Logiciel: MySQL For Excel 1.2.1 - (.Oracle.) [HKLM][64Bits] -- {EC5F887C-FCEE-45D7-BF7B-C0EA767CC45B}
O42 - Logiciel: MySQL Installer - (.Oracle Corporation.) [HKLM][64Bits] -- {F0A890B5-DE46-4468-A1DF-8F4DE5C478D0}
O42 - Logiciel: MySQL Notifier 1.1.5 - (.Oracle.) [HKLM][64Bits] -- {DB02F4B3-3FC4-4FED-B2A2-7CDCF88D87D3}
O42 - Logiciel: MySQL Server 5.6 - (.Oracle Corporation.) [HKLM][64Bits] -- {FB2E13E5-05CE-4C27-B645-A6FB7D0AB412}
O42 - Logiciel: MySQL Utilities - (.Oracle.) [HKLM][64Bits] -- {E967FF67-DE28-4BB0-857C-87A825CCF003}
O42 - Logiciel: MySQL Workbench 6.1 CE - (.Oracle Corporation.) [HKLM][64Bits] -- {207EB27E-0075-4CFD-8340-A5E386EB85F8}
O42 - Logiciel: NVIDIA GeForce Experience 2.1.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65}
O42 - Logiciel: NVIDIA Pilote 3D Vision 340.52 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote graphique 340.52 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Nuance PDF Reader - (.Nuance Communications, Inc..) [HKLM][64Bits] -- {B480904D-F73F-4673-B034-8A5F492C9184}
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Package de pilotes Windows - ASUSTeK COMPUTER INC. (WinUSB) AndroidUsbDevic - (.ASUSTeK COMPUTER INC..) [HKLM][64Bits] -- 42BF92E84C3822CFCC4329A118548A6F06D9B443
O42 - Logiciel: Package de pilotes Windows - ASUSTeK COMPUTER INC. Net (03/09/2011 1.0.0.0 - (.ASUSTeK COMPUTER INC..) [HKLM][64Bits] -- 8494E7F1F174A958CB4D75A08ECD3351E6B9E3C6
O42 - Logiciel: Package de pilotes Windows - ASUSTeK COMPUTER INC. WPD (02/26/2011 1.0.0.0 - (.ASUSTeK COMPUTER INC..) [HKLM][64Bits] -- 0A5ADA590E34A19257D5C55ED5CB1E3223ADFAD4
O42 - Logiciel: Package de pilotes Windows - Intel (NETwLv64) net (10/07/2010 13.4.0.139) - (.Intel.) [HKLM][64Bits] -- EA1C8ECD4E416637C38F0079F98C8C7B0A112265
O42 - Logiciel: Package de pilotes Windows - NVIDIA Corporation (WinUSB) USB (01/31/2011 1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- 2FFA4C3FF0E34536E4C0E78BBC991651DB8D2A30
O42 - Logiciel: PeaZip 5.4.0 - (.Giorgio Tani.) [HKLM][64Bits] -- {5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1
O42 - Logiciel: Plants vs Zombies - (.Oberon Media Inc..) [HKLM][64Bits] -- Plants vs Zombies
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Sagem MorphoSmart USB 64 bits Drivers - (.Morpho.) [HKLM][64Bits] -- {F6B60574-5AB0-4BF7-AA22-430E68A55AC6}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Story Album Viewer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}
O42 - Logiciel: Samsung Story Album Viewer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {698BBAD8-B116-495D-B879-0F07A533E57F}
O42 - Logiciel: Search Protect - (.Client Connect LTD.) [HKLM][64Bits] -- SearchProtect =>PUP.SearchProtect
O42 - Logiciel: SecurityKISS Tunnel v0.3.0 - (...) [HKLM][64Bits] -- SecurityKISS Tunnel_is1
O42 - Logiciel: SketchUp 2014 - (.Trimble Navigation Limited.) [HKLM][64Bits] -- {FFF3FC8A-02ED-4581-9D08-7BFDA09242DC}
O42 - Logiciel: SonicMaster - (.Synopsys.) [HKLM][64Bits] -- {09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Trend Micro Titanium Internet Security - (.Trend Micro Inc..) [HKLM][64Bits] -- {ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}
O42 - Logiciel: Trend Micro Titanium Internet Security - (.Trend Micro Inc..) [HKLM][64Bits] -- {ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}
O42 - Logiciel: USB Link Cable (XBTZG935) - (...) [HKLM][64Bits] -- XBTZG935
O42 - Logiciel: VdWinIo Driver - (...) [HKLM][64Bits] -- VdWinIo
O42 - Logiciel: Vijeo Designer 6.1 - (.Schneider Electric.) [HKLM][64Bits] -- {E5438A25-0080-42FD-8A5A-36305A6CC41D}
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: WinZip 16.5 - (.WinZip Computing, S.L. .) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240D3}
O42 - Logiciel: World of Goo - (.Oberon Media Inc..) [HKLM][64Bits] -- World of Goo
O42 - Logiciel: syncables desktop SE - (.syncables.) [HKLM][64Bits] -- {341697D8-9923-445E-B42A-529E5A99CB7A}
~ Logic: 73 Scanned in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\ATK0100]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVG Secure Search] =>Toolbar.AVGSearch
[HKCU\Software\Atheros]
[HKCU\Software\Autodesk]
[HKCU\Software\BoBrowser] =>PUP.BoBrowser
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\BugSplat]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Clubic]
[HKCU\Software\CyberLink]
[HKCU\Software\Dassault Systemes]
[HKCU\Software\Disc Soft]
[HKCU\Software\DropboxUpdate]
[HKCU\Software\ECAREME]
[HKCU\Software\FLEXnet]
[HKCU\Software\Google]
[HKCU\Software\HD.Quality.i5V19.06-nv-ie] =>PUP.CrossRider
[HKCU\Software\HD.Quality.i5V19.06-nv]
[HKCU\Software\HD.Quality.i5V19.06]
[HKCU\Software\I - Cinema-nv-ie] =>PUP.CrossRider
[HKCU\Software\I - Cinema-nv] =>PUP.CrossRider
[HKCU\Software\I - Cinema] =>PUP.CrossRider
[HKCU\Software\InstallPath]
[HKCU\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKCU\Software\Intel]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\MySQL AB]
[HKCU\Software\MySQL]
[HKCU\Software\Myfree Codec]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Nico Mak Computing]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro
[HKCU\Software\Oracle]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SWActivation]
[HKCU\Software\Samsung]
[HKCU\Software\Schneider Electric]
[HKCU\Software\Screenshoter]
[HKCU\Software\SearchProtect] =>PUP.SearchProtect
[HKCU\Software\SketchUp]
[HKCU\Software\SkillBrains] =>PUP.SkillBrains
[HKCU\Software\Software]
[HKCU\Software\Store] =>PUP.Nosibay
[HKCU\Software\Synaptics]
[HKCU\Software\Trolltech]
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive
[HKCU\Software\Tutorials] =>PUP.AgenceExclusive
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WTools] =>PUP.Nosibay
[HKCU\Software\WinZip Computing]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zeon]
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate
[HKCU\Software\tutoriales]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATHEROS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ArenaHD] =>PUP.CrossRider
[HKLM\Software\Autodesk]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\DeviceVM]
[HKLM\Software\Disc Soft]
[HKLM\Software\Google]
[HKLM\Software\HighDefAction] =>PUP.CrossRider
[HKLM\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nico Mak Computing]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Splashtop Inc.]
[HKLM\Software\Synaptics]
[HKLM\Software\TrendMicro]
[HKLM\Software\Waves Audio]
[HKLM\Software\WebBar] =>PUP.WebBar
[HKLM\Software\Wow6432Node\ATK0100]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVG Security Toolbar] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Autodesk]
[HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Clara]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Crossbrowse] =>PUP.CrossBrowser
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Dassault Systemes]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\FastSearch]
[HKLM\Software\Wow6432Node\GAMESDESKTOP] =>Adware.GamesDesktop
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HD.Quality.i5V19.06-nv-ie] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\HD.Quality.i5V19.06-nv]
[HKLM\Software\Wow6432Node\HighDefAction] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\I - Cinema-nv-ie] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\I - Cinema-nv] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Infonaut_1.10.0.14] =>PUP.Infonaut
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MicroQuill]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MySQL AB]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nico Mak Computing]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\PDFCreator]
[HKLM\Software\Wow6432Node\PeaZip]
[HKLM\Software\Wow6432Node\PeaZip_additional]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SPPDCOM] =>Rogue.PCSpeedUp
[HKLM\Software\Wow6432Node\ScanSoft]
[HKLM\Software\Wow6432Node\Schneider Electric]
[HKLM\Software\Wow6432Node\SketchUp]
[HKLM\Software\Wow6432Node\SkillBrains] =>PUP.SkillBrains
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Splashtop Inc.]
[HKLM\Software\Wow6432Node\SuperClick_1.10.0.16] =>PUP.SuperClick
[HKLM\Software\Wow6432Node\TrendMicro]
[HKLM\Software\Wow6432Node\Tutorials] =>PUP.AgenceExclusive
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WexTech Systems]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\YorkNewCin] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Zeon]
[HKLM\Software\Wow6432Node\b1636830-5c8c-4dc6-a4dd-1b93a74679d2] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\office]
[HKLM\Software\Wow6432Node\syncables]
[HKLM\Software\Wow6432Node]
[HKLM\Software\YorkNewCin] =>PUP.CrossRider
~ Key Software: 376 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/06/2015 - 22:17:06 - [] ----D C:\Program Files (x86)\168fd3ee-aba3-48fb-8168-b9daf649fc86
O43 - CFD: 20/06/2015 - 21:05:26 - [] ----D C:\Program Files (x86)\5a51f642-00a0-48f7-9257-d11215105ac3
O43 - CFD: 07/08/2014 - 22:20:40 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 17/06/2015 - 22:17:06 - [] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 19/09/2011 - 12:19:41 - [] ----D C:\Program Files (x86)\AnswerWorks 4.0
O43 - CFD: 03/08/2011 - 07:37:21 - [] ----D C:\Program Files (x86)\ASM104xUSB3
O43 - CFD: 24/01/2012 - 22:54:53 - [] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 03/08/2011 - 07:45:20 - [] ----D C:\Program Files (x86)\ASUS Music Maker
O43 - CFD: 03/08/2011 - 07:42:09 - [] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 09/06/2015 - 20:32:14 - [] ----D C:\Program Files (x86)\Autodesk
O43 - CFD: 24/07/2015 - 19:28:41 - [] ----D C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 03/08/2011 - 07:39:38 - [] ----D C:\Program Files (x86)\Bluetooth Suite
O43 - CFD: 24/01/2012 - 23:22:43 - [] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 17/06/2015 - 22:16:11 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 21/06/2015 - 01:30:55 - [] ----D C:\Program Files (x86)\Crossbrowse =>PUP.CrossBrowser
O43 - CFD: 08/12/2011 - 23:41:10 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 19/09/2011 - 13:01:08 - [] ----D C:\Program Files (x86)\Dassault Systemes
O43 - CFD: 21/06/2015 - 01:46:01 - [0] ----D C:\Program Files (x86)\FastSearch
O43 - CFD: 17/06/2015 - 22:16:52 - [] ----D C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 20/06/2015 - 22:23:28 - [] ----D C:\Program Files (x86)\gmsd_fr_005010007 =>PUP.CrossRider
O43 - CFD: 13/04/2011 - 04:33:29 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 21/06/2015 - 01:59:06 - [] ----D C:\Program Files (x86)\GUPlayer
O43 - CFD: 20/06/2015 - 22:24:01 - [] ----D C:\Program Files (x86)\HD.Quality.i5V19.06
O43 - CFD: 21/06/2015 - 01:48:20 - [] ----D C:\Program Files (x86)\I - Cinema =>PUP.CrossRider
O43 - CFD: 08/08/2014 - 09:06:48 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 24/12/2012 - 12:44:05 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 24/07/2015 - 20:49:54 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 28/01/2012 - 11:16:45 - [] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 21/06/2015 - 09:02:26 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 26/12/2014 - 08:34:02 - [] ----D C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 19/09/2011 - 15:17:32 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/06/2015 - 14:39:46 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 13/04/2011 - 04:42:56 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 19/09/2011 - 10:18:24 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 19/09/2011 - 10:16:34 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 19/09/2011 - 14:25:17 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 19/09/2011 - 10:18:15 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 02/08/2015 - 11:35:13 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 02/08/2015 - 11:35:17 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 19/09/2011 - 10:18:26 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 08/09/2011 - 22:42:38 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 23/08/2013 - 08:31:38 - [] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 17/06/2014 - 19:27:13 - [] ----D C:\Program Files (x86)\MySQL
O43 - CFD: 13/04/2011 - 04:33:04 - [] ----D C:\Program Files (x86)\Nuance
O43 - CFD: 07/08/2014 - 22:20:40 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 20/06/2015 - 21:00:36 - [] ----D C:\Program Files (x86)\Optimizer Pro 3.97 =>PUP.OptimizerPro
O43 - CFD: 07/08/2014 - 19:45:11 - [] ----D C:\Program Files (x86)\PeaZip
O43 - CFD: 20/06/2015 - 21:04:34 - [0] ----D C:\Program Files (x86)\predm =>Adware.Downware
O43 - CFD: 03/08/2011 - 07:36:27 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 23/08/2013 - 08:32:01 - [] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 08/08/2014 - 09:09:55 - [] ----D C:\Program Files (x86)\Schneider Electric
O43 - CFD: 20/06/2015 - 21:04:35 - [] ----D C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect
O43 - CFD: 15/07/2014 - 10:19:43 - [] ----D C:\Program Files (x86)\SketchUp
O43 - CFD: 02/08/2015 - 18:59:19 - [] ----D C:\Program Files (x86)\Skillbrains =>PUP.SkillBrains
O43 - CFD: 20/06/2015 - 21:04:10 - [] ----D C:\Program Files (x86)\Software
O43 - CFD: 13/04/2011 - 04:49:28 - [] ----D C:\Program Files (x86)\syncables
O43 - CFD: 03/08/2011 - 07:36:55 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 24/08/2013 - 23:34:00 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/04/2011 - 04:45:11 - [] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 22/09/2011 - 10:29:01 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 11/06/2015 - 14:42:35 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 22/09/2011 - 10:29:00 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 18/02/2011 - 22:09:10 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/09/2011 - 10:29:00 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 03/08/2015 - 07:51:55 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 03/08/2011 - 07:39:35 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 21/06/2015 - 10:04:18 - [] ----D C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 09/06/2015 - 06:11:52 - [] ----D C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 24/07/2015 - 20:51:11 - [] ----D C:\Program Files (x86)\Common Files\ClaraUpdater =>Adware.SupTab
O43 - CFD: 17/06/2014 - 23:29:25 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 03/08/2011 - 07:44:23 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 03/08/2011 - 07:45:32 - [] ----D C:\Program Files (x86)\Common Files\InstantOn
O43 - CFD: 03/08/2011 - 07:29:34 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 03/08/2011 - 07:45:11 - [] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 15/07/2014 - 21:25:27 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 13/04/2011 - 04:48:00 - [] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 03/08/2011 - 07:33:49 - [] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 08/08/2014 - 08:40:07 - [] ----D C:\Program Files (x86)\Common Files\Schneider Electric Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 27/07/2012 - 19:57:24 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/04/2011 - 04:33:36 - [] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 03/08/2015 - 07:30:35 - [0] ----D C:\ProgramData\8836fcf800006a17
O43 - CFD: 30/04/2013 - 15:55:42 - [0] ----D C:\ProgramData\Adobe
O43 - CFD: 03/08/2011 - 07:37:04 - [] ----D C:\ProgramData\AmUStor
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 07/09/2011 - 19:03:13 - [] ----D C:\ProgramData\ASUS Music Maker
O43 - CFD: 02/08/2015 - 11:57:00 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 21/06/2015 - 09:17:49 - [] ----D C:\ProgramData\Autodesk
O43 - CFD: 20/06/2015 - 21:12:26 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 07/08/2014 - 19:23:57 - [] ----D C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 07/09/2011 - 18:32:44 - [] ----D C:\ProgramData\ChangeFolderView
O43 - CFD: 08/12/2011 - 23:37:33 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 10/06/2015 - 18:44:15 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 19/09/2011 - 13:01:09 - [] ----D C:\ProgramData\Dassault Systemes
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 13/04/2011 - 04:33:02 - [] ----D C:\ProgramData\Downloaded Installations
O43 - CFD: 17/06/2015 - 21:30:45 - [] ----D C:\ProgramData\Dropbox
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 10/06/2015 - 19:22:55 - [] ----D C:\ProgramData\FLEXnet
O43 - CFD: 07/09/2011 - 18:29:44 - [] ----D C:\ProgramData\FolderView
O43 - CFD: 13/04/2011 - 04:33:20 - [] ----D C:\ProgramData\Google
O43 - CFD: 24/01/2012 - 23:22:41 - [] ----D C:\ProgramData\Intel
O43 - CFD: 03/08/2011 - 07:45:24 - [] ----D C:\ProgramData\MAGIX
O43 - CFD: 21/06/2015 - 09:02:26 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 24/07/2015 - 20:45:57 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 14/05/2012 - 09:38:32 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 17/06/2014 - 19:26:22 - [] ----D C:\ProgramData\MySQL
O43 - CFD: 22/09/2011 - 10:53:28 - [] ----D C:\ProgramData\Nuance
O43 - CFD: 02/08/2015 - 11:31:57 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 07/08/2014 - 22:20:26 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 13/04/2011 - 04:48:44 - [] ----D C:\ProgramData\OberonGameConsole
O43 - CFD: 03/08/2011 - 07:44:40 - [] ----D C:\ProgramData\P4G
O43 - CFD: 21/06/2015 - 09:41:22 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 24/01/2012 - 23:23:34 - [] ----D C:\ProgramData\Roaming
O43 - CFD: 20/06/2015 - 21:10:27 - [] ----D C:\ProgramData\Rsirrueivra
O43 - CFD: 28/01/2012 - 11:17:12 - [] ----D C:\ProgramData\Samsung
O43 - CFD: 13/04/2011 - 04:33:05 - [] ----D C:\ProgramData\ScanSoft
O43 - CFD: 15/07/2014 - 10:19:44 - [] ----D C:\ProgramData\SketchUp
O43 - CFD: 03/08/2011 - 07:36:42 - [] ----D C:\ProgramData\SonicFocus
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 03/08/2011 - 07:57:33 - [] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 07/09/2011 - 18:31:14 - [] ----D C:\ProgramData\Trend Micro
O43 - CFD: 03/08/2011 - 07:47:38 - [] ----D C:\ProgramData\USBChargerPlus
O43 - CFD: 24/08/2013 - 09:51:45 - [] ----D C:\ProgramData\WinZip
O43 - CFD: 20/06/2015 - 22:34:45 - [] ----D C:\ProgramData\{fb5e57cb-99d1-5401-fb5e-e57cb99d5f2e}
O43 - CFD: 09/01/2015 - 02:53:23 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/06/2014 - 21:25:48 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 03/08/2011 - 07:37:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asmedia Technology
O43 - CFD: 13/04/2011 - 04:49:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 03/08/2011 - 07:45:20 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Music Maker
O43 - CFD: 24/01/2012 - 22:54:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
O43 - CFD: 08/12/2011 - 23:42:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
O43 - CFD: 21/06/2015 - 10:04:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
O43 - CFD: 20/06/2015 - 21:16:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 03/08/2011 - 07:39:36 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
O43 - CFD: 10/06/2015 - 18:44:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 19/09/2011 - 13:01:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dassault Systèmes
O43 - CFD: 29/07/2009 - 07:08:01 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 20/06/2015 - 21:16:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop
O43 - CFD: 13/04/2011 - 04:33:29 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 03/08/2011 - 07:44:00 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 24/01/2012 - 23:22:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
O43 - CFD: 02/08/2015 - 18:59:20 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
O43 - CFD: 14/07/2009 - 06:57:09 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 19/09/2011 - 15:07:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 10/06/2015 - 19:38:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 08/08/2014 - 09:08:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Morpho
O43 - CFD: 03/08/2011 - 07:55:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music Now!
O43 - CFD: 23/08/2013 - 08:31:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
O43 - CFD: 17/06/2014 - 19:26:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 13/04/2011 - 04:33:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance
O43 - CFD: 08/08/2014 - 08:15:17 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 19/09/2011 - 14:19:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 07/08/2014 - 19:45:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeaZip
O43 - CFD: 23/08/2013 - 08:32:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 08/08/2014 - 08:40:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Schneider Electric
O43 - CFD: 18/05/2013 - 18:16:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecurityKISS Tunnel
O43 - CFD: 15/07/2014 - 10:20:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2014
O43 - CFD: 21/06/2015 - 08:22:24 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 13/04/2011 - 04:49:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\syncables
O43 - CFD: 14/07/2009 - 09:44:38 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 03/08/2011 - 07:36:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virage Logic, Corp
O43 - CFD: 13/04/2011 - 04:45:08 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 26/09/2012 - 00:32:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
O43 - CFD: 03/08/2015 - 07:51:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 21/06/2015 - 08:24:50 - [] ----D C:\Users\Ours\AppData\Roaming\4E435451-1434827028-3034-4431-F46D04FD6E7A
O43 - CFD: 20/06/2015 - 21:04:49 - [] ----D C:\Users\Ours\AppData\Roaming\4E435451-1434827089-3034-4431-F46D04FD6E7A
O43 - CFD: 08/09/2011 - 18:09:26 - [] ----D C:\Users\Ours\AppData\Roaming\Adobe
O43 - CFD: 21/06/2015 - 01:31:49 - [] -SH-D C:\Users\Ours\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 07/09/2011 - 18:48:25 - [] ----D C:\Users\Ours\AppData\Roaming\ASUS WebStorage
O43 - CFD: 21/06/2015 - 09:17:49 - [] ----D C:\Users\Ours\AppData\Roaming\Autodesk
O43 - CFD: 20/06/2015 - 21:20:34 - [] ----D C:\Users\Ours\AppData\Roaming\AVAST Software
O43 - CFD: 07/10/2011 - 20:24:28 - [] ----D C:\Users\Ours\AppData\Roaming\CyberLink
O43 - CFD: 10/06/2015 - 18:48:01 - [] ----D C:\Users\Ours\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 19/09/2011 - 13:01:23 - [] ----D C:\Users\Ours\AppData\Roaming\DraftSight
O43 - CFD: 01/08/2015 - 20:45:32 - [] ----D C:\Users\Ours\AppData\Roaming\Dropbox
O43 - CFD: 22/09/2011 - 10:53:40 - [] ----D C:\Users\Ours\AppData\Roaming\FLEXnet
O43 - CFD: 07/09/2011 - 18:30:05 - [] ----D C:\Users\Ours\AppData\Roaming\Identities
O43 - CFD: 17/06/2015 - 22:01:32 - [] ----D C:\Users\Ours\AppData\Roaming\IGC
O43 - CFD: 24/01/2012 - 23:23:41 - [] ----D C:\Users\Ours\AppData\Roaming\Intel
O43 - CFD: 08/09/2011 - 18:09:29 - [] ----D C:\Users\Ours\AppData\Roaming\Macromedia
O43 - CFD: 07/09/2011 - 19:03:09 - [] ----D C:\Users\Ours\AppData\Roaming\MAGIX
O43 - CFD: 10/06/2015 - 18:45:32 - [] ----D C:\Users\Ours\AppData\Roaming\MailUpdate =>PUP.MailUpdate
O43 - CFD: 14/07/2009 - 09:44:38 - [0] ----D C:\Users\Ours\AppData\Roaming\Media Center Programs
O43 - CFD: 10/06/2015 - 18:46:02 - [] -S--D C:\Users\Ours\AppData\Roaming\Microsoft
O43 - CFD: 08/09/2011 - 18:34:41 - [] ----D C:\Users\Ours\AppData\Roaming\Mozilla
O43 - CFD: 17/06/2014 - 18:42:32 - [] ----D C:\Users\Ours\AppData\Roaming\MySQL
O43 - CFD: 17/06/2015 - 22:16:33 - [0] ----D C:\Users\Ours\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 22/09/2011 - 10:53:28 - [] ----D C:\Users\Ours\AppData\Roaming\Nuance
O43 - CFD: 18/06/2014 - 10:40:58 - [] ----D C:\Users\Ours\AppData\Roaming\Oracle
O43 - CFD: 07/08/2014 - 19:47:57 - [] ----D C:\Users\Ours\AppData\Roaming\PeaZip
O43 - CFD: 23/08/2013 - 08:27:33 - [] ----D C:\Users\Ours\AppData\Roaming\Samsung
O43 - CFD: 08/08/2014 - 08:58:23 - [] ----D C:\Users\Ours\AppData\Roaming\Schneider Electric
O43 - CFD: 15/07/2014 - 10:20:15 - [] ----D C:\Users\Ours\AppData\Roaming\SketchUp
O43 - CFD: 10/06/2015 - 18:46:21 - [0] ----D C:\Users\Ours\AppData\Roaming\Store =>PUP.Nosibay
O43 - CFD: 10/06/2015 - 18:46:25 - [] ----D C:\Users\Ours\AppData\Roaming\WTools =>PUP.Nosibay
O43 - CFD: 22/09/2011 - 10:51:47 - [] ----D C:\Users\Ours\AppData\Roaming\Zeon
O43 - CFD: 03/08/2015 - 07:54:02 - [] ----D C:\Users\Ours\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 20/06/2015 - 21:17:28 - [] ----D C:\Users\Ours\AppData\Local\14852
O43 - CFD: 20/06/2015 - 22:42:44 - [] ----D C:\Users\Ours\AppData\Local\4E435451-1434834415-3034-4431-F46D04FD6E7A
O43 - CFD: 09/06/2015 - 17:25:51 - [0] ----D C:\Users\Ours\AppData\Local\Adobe
O43 - CFD: 07/09/2011 - 18:29:13 - [] -SH-D C:\Users\Ours\AppData\Local\Application Data
O43 - CFD: 18/06/2014 - 10:40:57 - [] ----D C:\Users\Ours\AppData\Local\assembly
O43 - CFD: 07/09/2011 - 18:29:15 - [] ----D C:\Users\Ours\AppData\Local\ASUS
O43 - CFD: 21/06/2015 - 09:16:40 - [] ----D C:\Users\Ours\AppData\Local\Autodesk
O43 - CFD: 24/07/2015 - 19:37:01 - [] ----D C:\Users\Ours\AppData\Local\avabvbavad
O43 - CFD: 15/07/2014 - 09:57:40 - [] ----D C:\Users\Ours\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 07/09/2011 - 18:31:19 - [] ----D C:\Users\Ours\AppData\Local\BMExplorer
O43 - CFD: 21/06/2015 - 02:00:28 - [] ----D C:\Users\Ours\AppData\Local\BoBrowser =>PUP.BoBrowser
O43 - CFD: 20/06/2015 - 21:06:40 - [] ----D C:\Users\Ours\AppData\Local\Boxore =>Adware.Boxore
O43 - CFD: 17/06/2015 - 22:20:39 - [] ----D C:\Users\Ours\AppData\Local\Chromium
O43 - CFD: 21/06/2015 - 02:06:51 - [] ----D C:\Users\Ours\AppData\Local\CrashDumps
O43 - CFD: 19/09/2011 - 13:02:13 - [] ----D C:\Users\Ours\AppData\Local\CrashRpt
O43 - CFD: 21/01/2012 - 15:24:42 - [] ----D C:\Users\Ours\AppData\Local\Cyberlink
O43 - CFD: 15/11/2014 - 14:34:26 - [0] ----D C:\Users\Ours\AppData\Local\Diagnostics
O43 - CFD: 10/06/2015 - 19:34:40 - [] ----D C:\Users\Ours\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 17/06/2015 - 21:58:47 - [] ----D C:\Users\Ours\AppData\Local\Downloaded Installations
O43 - CFD: 17/06/2015 - 21:30:45 - [] ----D C:\Users\Ours\AppData\Local\Dropbox
O43 - CFD: 20/06/2015 - 20:58:56 - [0] -SH-D C:\Users\Ours\AppData\Local\EmieSiteList
O43 - CFD: 20/06/2015 - 20:58:56 - [0] -SH-D C:\Users\Ours\AppData\Local\EmieUserList
O43 - CFD: 17/06/2015 - 22:16:51 - [] ----D C:\Users\Ours\AppData\Local\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 20/06/2015 - 23:23:38 - [] ----D C:\Users\Ours\AppData\Local\gmsd_fr_005010007 =>PUP.CrossRider
O43 - CFD: 24/02/2013 - 08:16:21 - [] ----D C:\Users\Ours\AppData\Local\Google
O43 - CFD: 21/06/2015 - 08:37:02 - [] ----D C:\Users\Ours\AppData\Local\GWX
O43 - CFD: 07/09/2011 - 18:29:13 - [] -SH-D C:\Users\Ours\AppData\Local\Historique
O43 - CFD: 04/07/2012 - 00:30:28 - [] ----D C:\Users\Ours\AppData\Local\Macromedia
O43 - CFD: 18/06/2014 - 07:32:25 - [] ----D C:\Users\Ours\AppData\Local\Microsoft
O43 - CFD: 21/10/2014 - 07:25:47 - [] ----D C:\Users\Ours\AppData\Local\Microsoft Help
O43 - CFD: 24/07/2014 - 18:00:03 - [] ----D C:\Users\Ours\AppData\Local\Mozilla
O43 - CFD: 20/06/2015 - 21:04:45 - [] ----D C:\Users\Ours\AppData\Local\mpck_fr_017010005 =>PUP.MobilePCStarterKit
O43 - CFD: 17/06/2014 - 18:32:14 - [] ----D C:\Users\Ours\AppData\Local\NVIDIA
O43 - CFD: 07/08/2014 - 21:51:29 - [] ----D C:\Users\Ours\AppData\Local\NVIDIA Corporation
O43 - CFD: 08/09/2011 - 18:07:44 - [] ----D C:\Users\Ours\AppData\Local\Power2Go
O43 - CFD: 07/08/2014 - 19:44:54 - [] ----D C:\Users\Ours\AppData\Local\Programs
O43 - CFD: 28/01/2012 - 12:46:30 - [] ----D C:\Users\Ours\AppData\Local\Samsung
O43 - CFD: 20/06/2015 - 21:04:43 - [] ----D C:\Users\Ours\AppData\Local\SearchProtect =>PUP.SearchProtect
O43 - CFD: 20/06/2015 - 23:19:52 - [] ----D C:\Users\Ours\AppData\Local\SmartWeb =>PUP.SmartWeb
O43 - CFD: 03/08/2015 - 07:51:57 - [] ----D C:\Users\Ours\AppData\Local\Temp
O43 - CFD: 07/09/2011 - 18:29:13 - [] -SH-D C:\Users\Ours\AppData\Local\Temporary Internet Files
O43 - CFD: 21/06/2015 - 08:04:47 - [] ----D C:\Users\Ours\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 06:54:32 - [] R---D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 21/06/2015 - 07:57:39 - [] R---D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 03/08/2011 - 07:53:36 - [] ----D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
O43 - CFD: 02/08/2015 - 11:57:00 - [] R---D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
O43 - CFD: 03/08/2011 - 07:58:18 - [] ----D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
O43 - CFD: 01/08/2015 - 20:45:31 - [] ----D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 14/07/2009 - 06:49:38 - [] R---D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 17/06/2014 - 19:21:53 - [] ----D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 21/06/2015 - 08:22:24 - [] R---D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 07/09/2011 - 18:31:11 - [] ----D C:\Users\Ours\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium Internet Security
~ Program Folder: 256 Scanned in 00mn 01s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.7564C7CEE0D358FE6B465B55B21A5250] - 02/08/2015 - 10:33:20 --H-- . (...) -- C:\dvmexp.idx [12]
O44 - LFC:[MD5.BBA08F0BBBF78E6DEFB584F98E3B596C] - 02/08/2015 - 10:39:10 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1782994]
O44 - LFC:[MD5.295C8C5EE156FF1907D6490B9238AD6F] - 02/08/2015 - 10:39:10 ---A- . (...) -- C:\Windows\System32\perfc009.dat [133902]
O44 - LFC:[MD5.6858C9B405F9107D03EEBF637F56EDD3] - 02/08/2015 - 10:39:10 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [164324]
O44 - LFC:[MD5.2826C12C02C30482D558DEBEFD603B2F] - 02/08/2015 - 10:39:10 ---A- . (...) -- C:\Windows\System32\perfh009.dat [694676]
O44 - LFC:[MD5.0F726086A9AE68225CE21D817E26E091] - 02/08/2015 - 10:39:10 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [793418]
O44 - LFC:[MD5.1D136CED3789FC15E98E353BF03BEEA5] - 02/08/2015 - 10:52:37 ---A- . (...) -- C:\Windows\setupact.log [87563]
O44 - LFC:[MD5.A51A0ECACD689F6E2BC06FD214A9F12C] - 03/08/2015 - 06:29:05 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.7F8BB3624A07CC967A330FE75F333C06] - 03/08/2015 - 06:47:29 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1427804]
O44 - LFC:[MD5.E87CEC9106770381A8E64E32739D8369] - 24/07/2015 - 18:26:14 ---A- . (...) -- C:\Windows\PFRO.log [173862]
O44 - LFC:[MD5.A04F190FCD762E7BCC9BFC70563C52DB] - 24/07/2015 - 18:35:20 ---A- . (.Avast Software s.r.o. - avast! self protection module.) -- C:\Windows\System32\Drivers\aswsp.sys [442264]
O44 - LFC:[MD5.474EA5201E3883F747D540D3EF57C1F2] - 24/07/2015 - 18:59:40 ---A- . (.Microsoft Corporation - Application Experience Program Inventory Co.) -- C:\Windows\System32\aeinv.dll [1145856]
O44 - LFC:[MD5.0919F433ED64E6CD1912C016F1E80BE7] - 24/07/2015 - 18:59:40 ---A- . (.Microsoft Corporation - Compatibility Upgrade Migration Host.) -- C:\Windows\System32\acmigration.dll [67584]
O44 - LFC:[MD5.658B5EC540CD94D76889D0E8390B1C04] - 24/07/2015 - 18:59:40 ---A- . (.Microsoft Corporation - Device Inventory Library.) -- C:\Windows\System32\devinv.dll [433664]
O44 - LFC:[MD5.5D507961F680D0A0392CC5EB6515E70A] - 24/07/2015 - 18:59:40 ---A- . (.Microsoft Corporation - General Telemetry.) -- C:\Windows\System32\generaltel.dll [726528]
O44 - LFC:[MD5.D236055773550118989C0C81CBE79A29] - 24/07/2015 - 18:59:40 ---A- . (.Microsoft Corporation - Inventory Agent.) -- C:\Windows\System32\invagent.dll [765440]
O44 - LFC:[MD5.BBA5CB528CB7482E118D0FEAF808987A] - 24/07/2015 - 18:59:40 ---A- . (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\Windows\System32\CompatTelRunner.exe [17856]
O44 - LFC:[MD5.5663847B3DCC8382B1D1F1EEB4A92994] - 24/07/2015 - 18:59:40 ---A- . (.Microsoft Corporation - Mise à jour des données de compatibilité de.) -- C:\Windows\System32\aepdu.dll [227328]
O44 - LFC:[MD5.782C216AFEE0561680706698F70B2A93] - 24/07/2015 - 18:59:41 ---A- . (.Microsoft Corporation - Compatibility Appraiser.) -- C:\Windows\System32\appraiser.dll [1085440]
O44 - LFC:[MD5.0D9514850CC3A99A6600643F2888858B] - 24/07/2015 - 18:59:48 ---A- . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\System32\consent.exe [112064]
O44 - LFC:[MD5.91593D4FB7D89249014564A5F3EC389B] - 24/07/2015 - 18:59:48 ---A- . (.Microsoft Corporation - Messages internationaux de Windows® Install.) -- C:\Windows\System32\msimsg.dll [25088]
O44 - LFC:[MD5.978DC0A1FBE9CC91B21B40AF66CB396A] - 24/07/2015 - 18:59:48 ---A- . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656]
O44 - LFC:[MD5.CDAD406033C31DB34185DDAECDD35FE2] - 24/07/2015 - 18:59:48 ---A- . (.Microsoft Corporation - Windows® installer.) -- C:\Windows\System32\msihnd.dll [504320]
O44 - LFC:[MD5.81CB8D34112178CE1826C86BA5F268C3] - 24/07/2015 - 18:59:49 ---A- . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe [128000]
O44 - LFC:[MD5.5489E74E56C0255159C8AE2C70744458] - 24/07/2015 - 18:59:49 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll [1941504]
O44 - LFC:[MD5.D9A91A779B5059E72D7FAD2B38275EA4] - 24/07/2015 - 18:59:49 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll [3242496]
O44 - LFC:[MD5.E8560BC8E1B85A5A081AEF43626187B1] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Base cryptographic API DLL.) -- C:\Windows\System32\cryptbase.dll [44032]
O44 - LFC:[MD5.9F2CCDE3F30C224C082984B6F95D3D95] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Bibliothèque de chiffrement Windows.) -- C:\Windows\System32\ncrypt.dll [309760]
O44 - LFC:[MD5.B1D191D0EDEB86197A5FD5030B65420F] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll [22016]
O44 - LFC:[MD5.55750A7588D91B102EB17E69BFF2AAF1] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - DLL des événements d’audit de la sécurité.) -- C:\Windows\System32\msaudite.dll [146432]
O44 - LFC:[MD5.7C26CACB82ECA09874B984B155B06AD4] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - DLL du schéma d’audit de sécurité.) -- C:\Windows\System32\adtschema.dll [686080]
O44 - LFC:[MD5.C0A6C3D6E02B61B5D100FE17306C276F] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [95680]
O44 - LFC:[MD5.C3F0594AF92FE71B13A44177FDB80784] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - LSA SSPI RPC interface DLL.) -- C:\Windows\System32\sspisrv.dll [29184]
O44 - LFC:[MD5.97D879A884E7CDFED51AD63348A35254] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe [31232]
O44 - LFC:[MD5.09730D830B2B69B626817F4A95945308] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll [210944]
O44 - LFC:[MD5.EEB192537935BB12A998CAB8F5A07E78] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Nom d’audit des objets système.) -- C:\Windows\System32\msobjs.dll [60416]
O44 - LFC:[MD5.F01A58E45BB8E28CCE6BCF272FF0F9A8] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Programme de stratégie d’audit.) -- C:\Windows\System32\auditpol.exe [64000]
O44 - LFC:[MD5.C3F6A9A41CC8591EF0370708E54DE474] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\secur32.dll [28160]
O44 - LFC:[MD5.48A88348F1539CC7C8CB4E032DD79DAA] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\sspicli.dll [136192]
O44 - LFC:[MD5.9EA6DA45B95599C27B1661C1D99307D7] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll [342016]
O44 - LFC:[MD5.3B96392CBE54FF44BEAEB0B4BCC65487] - 24/07/2015 - 18:59:55 ---A- . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll [86528]
O44 - LFC:[MD5.D5844B744F7BAF826965DD634FF8DB00] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1461760]
O44 - LFC:[MD5.7A7328E427694CC7244235C3BC299F80] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys [155584]
O44 - LFC:[MD5.45A03A0B6461EFBEE77E0A6AC2816EDA] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [129024]
O44 - LFC:[MD5.21AF322605D8C7F2A627C22634D1C9C9] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [290816]
O44 - LFC:[MD5.750C44D6F7A708F0C6618F075A0A68A7] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [315392]
O44 - LFC:[MD5.F66102F990EE913261ED7907403718ED] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [729088]
O44 - LFC:[MD5.A66FF313F2F8A6CBF9BB2B0CC92D5ACD] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll [1216512]
O44 - LFC:[MD5.1877EB1495CFBDAB27D6A32F6DDF3818] - 24/07/2015 - 18:59:56 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys [159232]
O44 - LFC:[MD5.71187FA11F58012C188453877E16EB8B] - 24/07/2015 - 19:00:04 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll [1480192]
O44 - LFC:[MD5.7EE0A3B9E904AF4744E4D8F00CB5CA32] - 24/07/2015 - 19:00:04 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll [140288]
O44 - LFC:[MD5.C5752F5CE47B6B00F914AE91087C0CB4] - 24/07/2015 - 19:00:04 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll [229376]
O44 - LFC:[MD5.7BC3E861F7E8EB543A630090FAE779E0] - 24/07/2015 - 19:00:04 ---A- . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\System32\cryptsvc.dll [188416]
O44 - LFC:[MD5.E3EB94B45A2735D4559558B5899732E8] - 24/07/2015 - 19:00:07 ---A- . (.Microsoft Corporation - Microsoft OLE pour Windows.) -- C:\Windows\System32\ole32.dll [2087424]
O44 - LFC:[MD5.41D59904967A4033FB4497DCED7320AD] - 24/07/2015 - 19:01:15 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2885632]
O44 - LFC:[MD5.D74E2BE157B8A2A9CF29BEBB052B8A42] - 24/07/2015 - 19:01:16 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [25193984]
O44 - LFC:[MD5.78E4D3781E5632BA88E5153510BEB625] - 24/07/2015 - 19:01:17 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1545728]
O44 - LFC:[MD5.120E3CE08505A9637CAB72D35A2D2E8C] - 24/07/2015 - 19:01:17 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [615936]
O44 - LFC:[MD5.6A70888EEC05B45C8990E8977C480019] - 24/07/2015 - 19:01:17 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [14453248]
O44 - LFC:[MD5.FC165889E97E37BCB55C5B79BEB3D331] - 24/07/2015 - 19:01:18 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864]
O44 - LFC:[MD5.EFFFE1C77ACCE66C82CCFD18A9687F48] - 24/07/2015 - 19:06:16 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll [404992]
O44 - LFC:[MD5.C4EA3D63E8BF077ECD1E93BF6556AE99] - 24/07/2015 - 19:06:16 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3207168]
O44 - LFC:[MD5.960D313FFBC9C4C14D9DFDB1FEB21CBD] - 24/07/2015 - 19:06:16 ---A- . (.Microsoft Corporation - Remote Desktop Protocol Group Policy Extens.) -- C:\Windows\System32\RdpGroupPolicyExtension.dll [16384]
O44 - LFC:[MD5.F6D23F6707CAEA235E4C84A4AC87EB2A] - 24/07/2015 - 19:06:17 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll [3180544]
O44 - LFC:[MD5.84CEF9B2D8ED8006B3975DC1D8109B3D] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [696320]
O44 - LFC:[MD5.AA3E844A2595B1AA5825C70CA50D963E] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2603008]
O44 - LFC:[MD5.80381DD7C4797A601E59F8E001B46793] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [3154944]
O44 - LFC:[MD5.2896A06239E19379CE44FAFCDB1675B1] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Setup UI.) -- C:\Windows\System32\WinSetupUI.dll [91136]
O44 - LFC:[MD5.3EDB01024BA86C5B4D2CB307DC5D3AC0] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [37376]
O44 - LFC:[MD5.BC80574FF264848F8613A3F6F7AF7642] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [192000]
O44 - LFC:[MD5.00DCC688DF459A9FEE42C7397668C62B] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [98304]
O44 - LFC:[MD5.00383E521D3D039968B92A0998BA76FD] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [37888]
O44 - LFC:[MD5.D79E3C2D45315ADCAA267A05355DFBF5] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Update client proxy stub for intern.) -- C:\Windows\System32\wu.upgrade.ps.dll [12288]
O44 - LFC:[MD5.F56E83C1EFEDEF919033CBFF071602B6] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [36864]
O44 - LFC:[MD5.3F9239D5F65F1318A53EBAEC01C092F1] - 24/07/2015 - 19:06:22 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [139776]
O44 - LFC:[MD5.2D0E2C197BA9CD67105DE5BBFBEF72A7] - 24/07/2015 - 19:06:23 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [46080]
O44 - LFC:[MD5.08D58C21888BC2DC754F591C23709C33] - 24/07/2015 - 19:06:23 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [372224]
O44 - LFC:[MD5.37C6F4906A4B3F837780AF078A1718BA] - 24/07/2015 - 19:06:23 ---A- . (.Microsoft Corporation - DCI Manager.) -- C:\Windows\System32\dciman32.dll [14336]
O44 - LFC:[MD5.1C4FF36152EBDF5C10A612FC9B2E1F8A] - 24/07/2015 - 19:06:23 ---A- . (.Microsoft Corporation - Font Subsetting DLL.) -- C:\Windows\System32\fontsub.dll [100864]
O44 - LFC:[MD5.D57C03D365BC71C7A30504644515F3F8] - 24/07/2015 - 19:06:23 ---A- . (.Microsoft Corporation - Language Pack.) -- C:\Windows\System32\lpk.dll [41984]
O44 - LFC:[MD5.60696836CAD56F1B47059E1BA739787D] - 24/07/2015 - 19:06:24 ---A- . (.Microsoft Corporation - Fournisseur de service Windows CE WMDM.) -- C:\Windows\System32\cewmdm.dll [254976]
O44 - LFC:[MD5.88E26FC9F8BDE0635F379BB8FE6BFFF1] - 24/07/2015 - 19:06:52 ---A- . (.Microsoft Corporation - Convertisseur Microsoft HTML.) -- C:\Windows\System32\html.iec [417792]
O44 - LFC:[MD5.C95EE658B7816B3588418E948EF55F83] - 24/07/2015 - 19:06:52 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [88064]
O44 - LFC:[MD5.8DA3623D372E5147914973383D998980] - 24/07/2015 - 19:06:52 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [199680]
O44 - LFC:[MD5.E066FDC3A2074D926903B8C31EF3B347] - 24/07/2015 - 19:06:53 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2427392]
O44 - LFC:[MD5.F30702F2607AEE462A6AB8715E72FC03] - 24/07/2015 - 19:06:53 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll [1359360]
O44 - LFC:[MD5.796A89701B2560FF453FF08FF941A169] - 24/07/2015 - 19:06:53 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [816640]
O44 - LFC:[MD5.74F367C596EEF3106EBC65625F04C807] - 24/07/2015 - 19:06:53 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [92160]
O44 - LFC:[MD5.9B9D2B99A865CB3B9BAA9BE77A300680] - 24/07/2015 - 19:06:55 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [54784]
O44 - LFC:[MD5.B5164F4515C4BC4F45FBF5B3A99685C0] - 24/07/2015 - 19:06:55 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [584192]
O44 - LFC:[MD5.142D20CA55870589B009D53C37C0B75C] - 24/07/2015 - 19:06:55 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe [144384]
O44 - LFC:[MD5.AF3D4DA49A9C9C9778953CE9D7470C11] - 24/07/2015 - 19:06:56 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [66560]
O44 - LFC:[MD5.BB33A140CA61A22B5882486881E2191A] - 24/07/2015 - 19:06:56 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [800768]
O44 - LFC:[MD5.58243D92748201D38AACDAEA22527412] - 24/07/2015 - 19:06:56 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2125824]
O44 - LFC:[MD5.DAECFA33350D863D49157506587D5EF8] - 24/07/2015 - 19:06:57 ---A- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll [4096]
O44 - LFC:[MD5.BCE51D1B0F7BC8977CDAECD24A0D4C88] - 24/07/2015 - 19:06:57 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [801280]
O44 - LFC:[MD5.80E899C111219316B94BBA72FAFF7D11] - 24/07/2015 - 19:06:57 ---A- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe [968704]
O44 - LFC:[MD5.7EEC52D1B800230A4E8EC81B92D61118] - 24/07/2015 - 19:06:57 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll [389832]
O44 - LFC:[MD5.A51BF63E9EA6DDED50A69797EAD23576] - 24/07/2015 - 19:06:59 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640]
O44 - LFC:[MD5.4887D79B5CE61A00FCC5C53AA2216007] - 24/07/2015 - 19:06:59 ---A- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [77824]
O44 - LFC:[MD5.3A46FC42EDE2021399FCD9E4A7A406F8] - 24/07/2015 - 19:06:59 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [34304]
O44 - LFC:[MD5.44D98BF1ED7B520602A55446E28D8840] - 24/07/2015 - 19:06:59 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [720384]
O44 - LFC:[MD5.50AAC6B4AFD93060456134A29C35FB1E] - 24/07/2015 - 19:07:00 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [114688]
O44 - LFC:[MD5.837BD6BB879405B416A4326C8B723D83] - 24/07/2015 - 19:07:01 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [5923840]
O44 - LFC:[MD5.2A795629E0746D82A229A01EEE75FCE5] - 24/07/2015 - 19:07:01 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [814080]
O44 - LFC:[MD5.EF4384572BB59E124E5376424F33EACE] - 24/07/2015 - 19:52:25 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [580632]
O44 - LFC:[MD5.D337E22EAC75490C0A1990A2456523A6] - 24/07/2015 - 20:01:24 ---A- . (...) -- C:\Windows\System32\ServiceFilter.ini [2133]
~ Files: 109 Scanned in 00mn 27s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.1AB5961FEF0859801D8A233EE797BF62] - 02/08/2015 - 22:44:00 ---A- - C:\Windows\Prefetch\GLOBALUPDATE.EXE-35F6B904.pf =>PUP.GlobalUpdate
O45 - LFCP:[MD5.23290E3D6FA8EF178715A3660A100CA6] - 02/08/2015 - 22:44:03 ---A- - C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-68CB7B8C.pf =>PUP.GlobalUpdate
~ Prefetcher: 2 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
O51 - MPSK:{ebc9ede7-0ede-11e5-ad1f-742f6881a1b8}\AutoRun\command. (...) -- H:\Setup.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe
O53 - SMSR:HKLM\...\startupreg\CLMLServer [Key] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
~ SMSR Keys: 3 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
~ MWPS: 17 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 5 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864]
O58 - SDL:26/02/2011 - 01:42:18 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\System32\Drivers\AiCharger.sys [16768]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440]
O58 - SDL:11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904]
O58 - SDL:14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128]
O58 - SDL:11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008]
O58 - SDL:08/08/2011 - 07:32:08 ---A- . (.Windows (R) Win 7 DDK provider - Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual A.) -- C:\Windows\System32\Drivers\AmpPal.sys [299008]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856]
O58 - SDL:27/01/2011 - 18:23:36 ---A- . (.ASMedia Technology Inc - ASMedia USB3 Hub Driver.) -- C:\Windows\System32\Drivers\asmthub3.sys [125416]
O58 - SDL:27/01/2011 - 18:23:38 ---A- . (.ASMedia Technology Inc - ASMEDIA XHCI Host Controller Driver.) -- C:\Windows\System32\Drivers\asmtxhci.sys [385512]
O58 - SDL:20/06/2015 - 20:15:47 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29168] =>.ALWIL Software
O58 - SDL:20/06/2015 - 20:15:47 ---A- . (.Avast Software s.r.o. - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [89944]
O58 - SDL:20/06/2015 - 20:15:47 ---A- . (.Avast Software s.r.o. - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93528]
O58 - SDL:20/06/2015 - 20:15:47 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65736] =>.ALWIL Software
O58 - SDL:20/06/2015 - 20:15:44 ---A- . (.Avast Software s.r.o. - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1047320]
O58 - SDL:24/07/2015 - 18:35:20 ---A- . (.Avast Software s.r.o. - avast! self protection module.) -- C:\Windows\System32\Drivers\aswsp.sys [442264]
O58 - SDL:20/06/2015 - 20:15:47 ---A- . (.Avast Software s.r.o. - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [137288]
O58 - SDL:20/06/2015 - 20:15:47 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [272248] =>.ALWIL Software
O58 - SDL:27/06/2011 - 01:37:00 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrx.sys [2753536]
O58 - SDL:10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [270848]
O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432]
O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704]
O58 - SDL:14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720]
O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104]
O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976]
O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720]
O58 - SDL:13/03/2011 - 18:58:42 ---A- . (.Atheros - Atheros A2DP driver.) -- C:\Windows\System32\Drivers\btath_a2dp.sys [298656]
O58 - SDL:13/03/2011 - 18:58:42 ---A- . (.Atheros - Atheros BUS driver.) -- C:\Windows\System32\Drivers\btath_bus.sys [28832]
O58 - SDL:13/03/2011 - 18:58:42 ---A- . (.Atheros - Atheros FILTER driver.) -- C:\Windows\System32\Drivers\btath_flt.sys [36000]
O58 - SDL:13/03/2011 - 18:58:44 ---A- . (.Atheros - Atheros HCRP driver.) -- C:\Windows\System32\Drivers\btath_hcrp.sys [201376]
O58 - SDL:13/03/2011 - 18:58:44 ---A- . (.Atheros - Atheros FILTER driver.) -- C:\Windows\System32\Drivers\btath_lwflt.sys [55456]
O58 - SDL:13/03/2011 - 18:58:44 ---A- . (.Atheros - Atheros AVRCP driver.) -- C:\Windows\System32\Drivers\btath_rcp.sys [154272]
O58 - SDL:13/03/2011 - 18:58:44 ---A- . (.Atheros - BtFilter Driver.) -- C:\Windows\System32\Drivers\btfilter.sys [280224]
O58 - SDL:19/05/2011 - 01:17:02 ---A- . (.Intel Corporation - Bluetooth Audio Driver.) -- C:\Windows\System32\Drivers\btmaud.sys [51712]
O58 - SDL:19/05/2011 - 01:17:04 ---A- . (.Intel Corporation - Bluetooth Auxiliary Driver.) -- C:\Windows\System32\Drivers\btmaux.sys [53248]
O58 - SDL:10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480]
O58 - SDL:14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488]
O58 - SDL:10/06/2015 - 17:44:32 ---A- . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\Windows\System32\Drivers\dtlitescsibus.sys [30264] =>.DT Soft Ltd
O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016]
O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:19/10/2010 - 22:34:26 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [56344]
O58 - SDL:20/11/2010 - 14:33:36 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [78720]
O58 - SDL:26/04/2011 - 04:07:36 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStor.sys [557848]
O58 - SDL:11/03/2011 - 07:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496]
O58 - SDL:10/10/2012 - 02:22:28 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [5343584]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112]
O58 - SDL:20/07/2009 - 10:29:40 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [15416]
O58 - SDL:24/08/2010 - 10:55:44 ---A- . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -- C:\Windows\System32\Drivers\L1C62x64.sys [76912]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736]
O58 - SDL:14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264]
O58 - SDL:02/07/2014 - 21:48:32 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 340.52.) -- C:\Windows\System32\Drivers\nvkflt.sys [299352]
O58 - SDL:02/07/2014 - 21:48:32 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 340.52.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12866008]
O58 - SDL:02/07/2014 - 21:48:32 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 340.52.) -- C:\Windows\System32\Drivers\nvpciflt.sys [32544]
O58 - SDL:11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352]
O58 - SDL:11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272]
O58 - SDL:31/03/2014 - 17:42:44 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [40392]
O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816]
O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592]
O58 - SDL:07/07/2011 - 10:39:06 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [2914408]
O58 - SDL:10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:14/07/2009 - 01:00:40 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\serial.sys [94208]
O58 - SDL:10/06/2009 - 21:35:57 ---A- . (.Silicon Integrated Systems Corp. - NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device.) -- C:\Windows\System32\Drivers\SiSG664.sys [56832]
O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584]
O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464]
O58 - SDL:20/06/2015 - 20:24:07 ---A- . (...) -- C:\Windows\System32\Drivers\SPPD.sys [22512]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.Google Inc - ADB Interface.) -- C:\Windows\System32\Drivers\ssadadb.sys [38080]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - SAMSUNG Android USB Composite Device Driver.) -- C:\Windows\System32\Drivers\ssadbus.sys [169288]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ssadcm.sys [17224]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ssadcmnt.sys [17224]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - SAMSUNG Android USB Modem Filter Driver.) -- C:\Windows\System32\Drivers\ssadmdfl.sys [21320]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - SAMSUNG Android USB Modem.) -- C:\Windows\System32\Drivers\ssadmdm.sys [188232]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - SAMSUNG Android USB Diagnostic Serial Port Device Driver.) -- C:\Windows\System32\Drivers\ssadserd.sys [158024]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ssadwh.sys [17736]
O58 - SDL:21/06/2013 - 01:07:34 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ssadwhnt.sys [17736]
O58 - SDL:21/06/2013 - 01:07:50 ---A- . (.MCCI Corporation - SAMSUNG USB Composite Device Driver.) -- C:\Windows\System32\Drivers\sscdbus.sys [169288]
O58 - SDL:21/06/2013 - 01:07:50 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\sscdcm.sys [17224]
O58 - SDL:21/06/2013 - 01:07:50 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\sscdcmnt.sys [17224]
O58 - SDL:21/06/2013 - 01:07:50 ---A- . (.MCCI Corporation - SAMSUNG Mobile Modem Filter Driver.) -- C:\Windows\System32\Drivers\sscdmdfl.sys [21320]
O58 - SDL:21/06/2013 - 01:07:50 ---A- . (.MCCI Corporation - SAMSUNG Mobile Modem WDM.) -- C:\Windows\System32\Drivers\sscdmdm.sys [188232]
O58 - SDL:21/06/2013 - 01:07:50 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\sscdwh.sys [17736]
O58 - SDL:21/06/2013 - 01:07:50 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\sscdwhnt.sys [17736]
O58 - SDL:22/01/2014 - 07:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [108800]
O58 - SDL:22/01/2014 - 07:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:05/05/2011 - 13:32:56 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [1439792]
O58 - SDL:01/07/2011 - 03:46:40 ---A- . (.The OpenVPN Project - TAP-Win32 Virtual Network Driver.) -- C:\Windows\System32\Drivers\tap0901.sys [31232]
O58 - SDL:17/09/2010 - 09:52:28 ---A- . (.Trend Micro Inc. - TrendMicro Activity Monitor Module.) -- C:\Windows\System32\Drivers\tmactmon.sys [90704]
O58 - SDL:17/09/2010 - 09:52:28 ---A- . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\Windows\System32\Drivers\tmcomm.sys [144464]
O58 - SDL:17/09/2010 - 09:52:28 ---A- . (.Trend Micro Inc. - TrendMicro Event Management Module.) -- C:\Windows\System32\Drivers\tmevtmgr.sys [67664]
O58 - SDL:17/09/2010 - 09:52:28 ---A- . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) -- C:\Windows\System32\Drivers\tmtdi.sys [105552]
O58 - SDL:29/11/2010 - 23:00:04 ---A- . (.Intel(R) Corporation - TurboB Device Driver.) -- C:\Windows\System32\Drivers\TurboB.sys [16120]
O58 - SDL:08/08/2014 - 07:41:28 ---A- . (.Schneider Electric Inc. - VdWinIo Driver.) -- C:\Windows\System32\Drivers\VdWinIo.sys [17528]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872]
O58 - SDL:22/10/2010 - 01:42:36 ---A- . (.Telemecanique - XBTZG935.) -- C:\Windows\System32\Drivers\XBTZG935.sys [14976]
O58 - SDL:08/07/2010 - 10:03:48 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athrx.sys [2228736]
O58 - SDL:08/08/2014 - 07:41:28 ---A- . (.Schneider Electric Inc. - VdWinIo Driver.) -- C:\Windows\SysWOW64\drivers\VdWinIo.sys [17528]
O58 - SDL:18/07/2013 - 06:34:28 ---A- . (...) -- C:\Windows\SysWOW64\FsUsbExDisk.Sys [37344]
~ Drivers: 107 Scanned in 00mn 07s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 01/08/2015 - 07:55:04 ---A- . (.Dropbox, Inc..) -- C:\Users\Ours\AppData\Local\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\3.8.5\DropboxClient_3.8.5.exe [48888168]
O61 - LFC: 01/08/2015 - 07:55:10 ---A- . (...) -- C:\Users\Ours\AppData\Local\NVIDIA\NvBackend\Packages\00007b99\CoProc update.19811111.exe [515016]
O61 - LFC: 01/08/2015 - 07:55:10 ---A- . (...) -- C:\Users\Ours\AppData\Local\NVIDIA\NvBackend\Packages\00007b9c\DAO.19811313.exe [5918368]
O61 - LFC: 02/08/2015 - 07:55:11 ---A- . (...) -- C:\Users\Ours\AppData\Local\Temp\72895_updater.exe [0]
O61 - LFC: 02/08/2015 - 07:55:23 ---A- . (.Skillbrains.) -- C:\Users\Ours\Downloads\setup-lightshot3-2-0-0.exe [2620112] =>PUP.SkillBrains
O61 - LFC: 03/08/2015 - 07:55:23 ---A- . (.Nicolas Coolman.) -- C:\Users\Ours\Downloads\ZHPDiag2 - Copie.exe [6880102] =>.Nicolas Coolman
O61 - LFC: 03/08/2015 - 07:55:23 ---A- . (.Nicolas Coolman.) -- C:\Users\Ours\Downloads\ZHPDiag2.exe [6880102] =>.Nicolas Coolman
O61 - LFC: 29/07/2015 - 07:55:10 ---A- . (...) -- C:\Users\Ours\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [5125685]
O61 - LFC: 29/07/2015 - 07:55:10 ---A- . (.NVIDIA Corporation.) -- C:\Users\Ours\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [628664]
O61 - LFC: 29/07/2015 - 07:55:10 ---A- . (.NVIDIA Corporation.) -- C:\Users\Ours\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984]
O61 - LFC: 29/07/2015 - 07:55:10 ---A- . (.NVIDIA Corporation.) -- C:\Users\Ours\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1357240]
~ 2815 Fichiers temporaires (Temporary files)
~ 25 Fichiers cookies (Cookies files)
~ Files: 11 Scanned in 00mn 20s



---\\ Fichiers Alternate Data Stream (ADS) (O62)
O62 - ADS:Alternate Data Stream File - C:\Windows\System32\CSVer.dll:Zone.Identifier
~ ADS: Scanned in 00mn 04s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 03/07/2009 - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys (ASMMAP64) .(.ASUS - Memory mapping Driver.) - LEGACY_ASMMAP64
O64 - Services: CurCS - 20/06/2015 - C:\Windows\system32\drivers\aswHwid.sys (aswHwid) .(...) - LEGACY_ASWHWID
O64 - Services: CurCS - 20/06/2015 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.Avast Software s.r.o. - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 20/06/2015 - C:\Windows\system32\drivers\aswRdr2.sys (aswRdr) .(.Avast Software s.r.o. - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 20/06/2015 - C:\Windows\System32\Drivers\aswRvrt.sys (aswRvrt) .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - 20/06/2015 - C:\Windows\system32\drivers\aswSnx.sys (aswSnx) .(.Avast Software s.r.o. - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 24/07/2015 - C:\Windows\system32\drivers\aswSP.sys (aswSP) .(.Avast Software s.r.o. - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 20/06/2015 - C:\Windows\system32\drivers\aswStm.sys (aswStm) .(.Avast Software s.r.o. - Stream Filter.) - LEGACY_ASWSTM
O64 - Services: CurCS - 20/06/2015 - C:\Windows\System32\Drivers\aswVmm.sys (aswVmm) .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - 26/07/2010 - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys (ATKWMIACPIIO) .(.ASUS - ATK WMIACPI Utility.) - LEGACY_ATKWMIACPIIO
O64 - Services: CurCS - 02/07/2014 - C:\Windows\System32\DRIVERS\nvkflt.sys (nvkflt) .(.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) - LEGACY_NVKFLT
O64 - Services: CurCS - 25/07/2014 - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NvStreamKms) .(.NVIDIA Corporation - Nvidia Streaming Kernel Service.) - LEGACY_NVSTREAMKMS
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 17/09/2010 - C:\Windows\System32\DRIVERS\tmactmon.sys (tmactmon) .(.Trend Micro Inc. - TrendMicro Activity Monitor Module.) - LEGACY_TMACTMON
O64 - Services: CurCS - 17/09/2010 - C:\Windows\System32\DRIVERS\tmcomm.sys (tmcomm) .(.Trend Micro Inc. - TrendMicro Common Module.) - LEGACY_TMCOMM
O64 - Services: CurCS - 17/09/2010 - C:\Windows\System32\DRIVERS\tmevtmgr.sys (tmevtmgr) .(.Trend Micro Inc. - TrendMicro Event Management Module.) - LEGACY_TMEVTMGR
O64 - Services: CurCS - 17/09/2010 - C:\Windows\System32\DRIVERS\tmtdi.sys (tmtdi) .(.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - LEGACY_TMTDI
O64 - Services: CurCS - 29/11/2010 - C:\Windows\System32\DRIVERS\TurboB.sys (TurboB) .(.Intel(R) Corporation - TurboB Device Driver.) - LEGACY_TURBOB
O64 - Services: CurCS - 20/06/2015 - C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys (VBoxAswDrv) .(.Avast Software - VirtualBox Support Driver.) - LEGACY_VBOXASWDRV
O64 - Services: CurCS - 08/08/2014 - C:\Windows\system32\Drivers\VdWinIo.sys (VDWINIO) .(.Schneider Electric Inc. - VdWinIo Driver.) - LEGACY_VDWINIO
~ Legacy: 91 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.scr> [HKCU\..\open\Command] (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\NOTEPAD.exe =>.Microsoft Corporation
~ FASS Keys: 12 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [Ours - 2ox2duve.default] user_pref("avg.install.newtab", false);
O69 - SBI: prefs.js [Ours - 2ox2duve.default] user_pref("extensions.crossrider.bic", "14e032bb9e3d19be7c9b3056444a4da7"); =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} - (Trovi) - http://www.trovi.com =>Hijacker.TroviCom
O69 - SBI: SearchScopes [HKCU] {9143e921-7c9a-4d27-ac43-eaccc78cc55a} - (AVG Secure Search) - http://isearch.avg.com =>Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} [DefaultScope] - (Cassiopesa) - http://www.cassiopesa.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [683520]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2603008]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Services: 32 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.90E1D86D979B92738A47D7072CB22DA8] [SPRF][07/07/2010] (...) -- C:\ProgramData\FullRemove.exe [131472]
[MD5.AC88E0D65B4621BD6B9B418F51CA8F64] [SPRF][06/02/2015] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropENU.dll [117032]
[MD5.6B79F0E347B0698A2FB48C8A4E11C992] [SPRF][14/02/2014] (.Autodesk, Inc. - Autodesk i-drop control.) -- C:\Windows\Downloaded Program Files\IDropFRA.dll [110920]
~ Files: 3 Scanned in 00mn 00s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "E8E877ED6825FF148AE54DA13648DD38" . (.Boxore Client.) -- C:\Windows\Installer\{DE778E8E-5286-41FF-A85E-D41A6384DD83}\Boxore.ico =>Adware.Boxore
~ Update Products: 1 Scanned in 00mn 01s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: ASUS WebStorage Drive - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf}
~ MNS: 1 Scanned in 00mn 00s



---\\ Recherche de clés de registre Tracing (O100)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AVG-Secure-Search-Update_JUNE2013_TB_RASAPI32 =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AVG-Secure-Search-Update_JUNE2013_TB_RASMANCS =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SuperClickAutoUpdateClient_RASAPI32 =>PUP.SuperClick
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SuperClickAutoUpdateClient_RASMANCS =>PUP.SuperClick
~ BTK: 140 Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 24/07/2015 268976 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 17/09/2010 267480 | (Amsp) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
SS - | Demand 19/09/2011 77944 | (Autodesk Licensing Service) . (.Autodesk.) - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
SS - | Auto 22/07/1658 0 | (CltMngSvc) . (...) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>PUP.SearchProtect
SS - | Demand 10/10/2012 277024 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 07/08/2008 3276800 | (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - | Demand 09/06/2015 1357104 | (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
SS - | Auto 20/06/2015 68608 | (globalUpdate) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.GlobalUpdate
SS - | Demand 20/06/2015 68608 | (globalUpdatem) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.GlobalUpdate
SS - | Auto 10/11/2014 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 10/11/2014 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 13/04/2011 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 01/08/2015 148136 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 27/07/2011 340240 | (MyWiFiDHCPDNS) . (...) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
SS - | Auto 20/06/2015 113664 | (Software_update) . (.The Software Group.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
SS - | Demand 20/06/2015 113664 | (Software_update_m) . (.The Software Group.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
SS - | Demand 29/11/2010 149504 | (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 25/01/2011 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe
SR - | Auto 08/08/2011 1166848 | (AMPPALR3) . (.Intel Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
SR - | Auto 16/06/2009 84536 | (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
SR - | Auto 02/06/2011 64128 | (ASUS InstantOn) . (.ASUS.) - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
SR - | Auto 13/03/2011 138400 | (Atheros Bt&Wlan Coex Agent) . (.Atheros.) - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
SR - | Auto 13/03/2011 74912 | (AtherosSvc) . (.Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
SR - | Auto 15/12/2009 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - | Auto 20/06/2015 343336 | (avast! Antivirus) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Demand 20/06/2015 4034896 | (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
SR - | Auto 19/05/2011 921664 | (Bluetooth Device Monitor) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
SR - | Demand 19/05/2011 1335360 | (Bluetooth Media Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
SR - | Auto 19/05/2011 995392 | (Bluetooth OBEX Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
SR - | Auto 03/06/2011 134928 | (BTHSSecurityMgr) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
SR - | Auto 24/07/2015 926832 | (ClaraUpdater) . (.ClaraLabs.) - C:\Program Files (x86)\Common Files\ClaraUpdater\ClaraUpdater.exe =>Adware.SupTab
SR - | Demand 21/05/2015 1272560 | (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe =>.DT Soft Ltd
SR - | Auto 27/07/2011 1517328 | (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
SR - | Auto 14/01/2011 1839616 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SR - | Auto 06/10/2010 325656 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 15/11/2010 168960 | (MSO_SpUsb_Service) . (.Sagem Securite.) - C:\Morpho\MorphoSmart USB Drivers\Serv_SpUsb.exe
SR - | Auto 17/06/2014 14258 | (MySQL56) . (...) - C:\ProgramData\MySQL\MySQL Server 5.6\my.ini
SR - | Auto 25/07/2014 1720608 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 25/07/2014 18956064 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 02/07/2014 935368 | (NVSvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 27/07/2011 844560 | (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SR - | Demand 17/04/2009 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SR - | Auto 02/07/2014 411936 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 17/09/2010 241488 | (TiMiniService) . (.Trend Micro Inc..) - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
SR - | Auto 06/10/2010 2655768 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 24/07/2015 1842576 | (vToolbarUpdater18.7.0) . (.AVG Secure Search.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
SR - | Auto 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 22/10/2010 90112 | (XBTZG935 USB Link Cable) . (.Schneider Electric Inc..) - D:\Program Files (x86)\Schneider Electric\Vijeo-Designer\Vijeo-Frame\XBTZG935\XBTZG935svr.exe
~ Services: Scanned in 00mn 22s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Ours at 03/08/2015 07:57:44
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Ours at 03/08/2015 07:57:46
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Liste des émulateurs de CD/DVD (MBR Hook)
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
~ Emulateurs: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13008 - (31/05/2015)
Clés trouvées (Keys found) : 70
Valeurs trouvées (Values found) : 2
Dossiers trouvés (Folders found) : 29
Fichiers trouvés (Files found) : 69

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] =>Toolbar.AVGSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\ClaraUpdater] =>Adware.SupTab^
[HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc] =>PUP.SearchProtect^
[HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate) (globalUpdate] =>PUP.GlobalUpdate^
[HKLM\SYSTEM\CurrentControlSet\Services\Software_update) (Software_update] =>Adware.Boxore^
[HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.7.0] =>Toolbar.AVGSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search] =>Toolbar.AVGSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{DE778E8E-5286-41FF-A85E-D41A6384DD83}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\I - Cinema] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1] =>PUP.SkillBrains^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>PUP.SearchProtect^
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\protector_dll.protectorbho.1] =>PUP.BProtector
[HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>PUP.ToparcadeHits
[HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>PUP.ToparcadeHits
[HKLM\Software\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}] =>PUP.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\protector_dll.protectorbho] =>PUP.BProtector
[HKLM\Software\Classes\AppID\ScriptHelper.EXE] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.PugiObj] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.PugiObj.1] =>Toolbar.AVGSearch
[HKLM\Software\Classes\S] =>Toolbar.Agent
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi.1] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE.1] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKCU\Software\Boxore] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>PUP.Conduit
[HKLM\Software\Classes\AppID\secman.DLL] =>PUP.Babylon
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI.1] =>Toolbar.AVGSearch
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0DA5D75B5B33B4B83724742699814F] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C506B89D971FBA3418F37674F3BC1244] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E95E6C2F69DE1E4449ECD2AA116D329A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FEA78903E905F6C41BA2E3CC615507CA] =>Adware.Boxore^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:LightShot =>PUP.SkillBrains^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:vProt =>Toolbar.AVGSearch^
C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch^
C:\Program Files (x86)\Crossbrowse =>PUP.CrossBrowser^
C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate^
C:\Program Files (x86)\gmsd_fr_005010007 =>PUP.CrossRider^
C:\Program Files (x86)\I - Cinema =>PUP.CrossRider^
C:\Program Files (x86)\Optimizer Pro 3.97 =>PUP.OptimizerPro^
C:\Program Files (x86)\predm =>Adware.Downware^
C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect^
C:\Program Files (x86)\Skillbrains =>PUP.SkillBrains^
C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch^
C:\Program Files (x86)\Common Files\ClaraUpdater =>Adware.SupTab^
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop^
C:\Users\Ours\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect^
C:\Users\Ours\AppData\Roaming\MailUpdate =>PUP.MailUpdate^
C:\Users\Ours\AppData\Roaming\Nosibay =>PUP.BubbleDock^
C:\Users\Ours\AppData\Roaming\Store =>PUP.Nosibay^
C:\Users\Ours\AppData\Roaming\WTools =>PUP.Nosibay^
C:\Users\Ours\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch^
C:\Users\Ours\AppData\Local\BoBrowser =>PUP.BoBrowser^
C:\Users\Ours\AppData\Local\Boxore =>Adware.Boxore^
C:\Users\Ours\AppData\Local\globalUpdate =>PUP.GlobalUpdate^
C:\Users\Ours\AppData\Local\gmsd_fr_005010007 =>PUP.CrossRider^
C:\Users\Ours\AppData\Local\mpck_fr_017010005 =>PUP.MobilePCStarterKit^
C:\Users\Ours\AppData\Local\SearchProtect =>PUP.SearchProtect^
C:\Users\Ours\AppData\Local\SmartWeb =>PUP.SmartWeb^
C:\Program Files (x86)\Software =>Adware.Boxore
C:\Users\Ours\AppData\LocalLow\AVG Secure Search =>Toolbar.AVGSearch
C:\Users\Ours\AppData\Local\Temp\avg@toolbar =>Toolbar.AVGSearch
C:\Program Files (x86)\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch^
C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe =>PUP.SkillBrains^
C:\Program Files (x86)\Common Files\ClaraUpdater\ClaraUpdater.exe =>Adware.SupTab^
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\ToolbarUpdater.exe =>Toolbar.AVGSearch^
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.7.0\loggingserver.exe =>Toolbar.AVGSearch^
C:\Users\Ours\AppData\Local\avabvbavad\avabvbavad.exe =>Adware.Pirrit^
C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.GlobalUpdate^
C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore^
C:\Program Files (x86)\Skillbrains\Updater\Updater.exe =>PUP.SkillBrains^
C:\Windows\Tasks\APSnotifierPP1.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP1 =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP2.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP2 =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP3.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP3 =>PUP.AnyProtect^
C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job =>Toolbar.AVGSearch^
C:\Windows\System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv =>Toolbar.AVGSearch^
C:\Windows\Tasks\Bidaily Synchronize Task =>PUP.BidailySync^
C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-3.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-3 =>PUP.CrossRider^
C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-4.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-4 =>PUP.CrossRider^
C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5 =>PUP.CrossRider^
C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5_user.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-5_user =>PUP.CrossRider^
C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-6.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-6 =>PUP.CrossRider^
C:\Windows\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-7.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\e88f1ca7-5f1a-4947-a8ea-328914815086-7 =>PUP.CrossRider^
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.GlobalUpdate^
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.GlobalUpdate^
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.GlobalUpdate^
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.GlobalUpdate^
C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job =>Adware.Boxore^
C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineCore =>Adware.Boxore^
C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job =>Adware.Boxore^
C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA =>Adware.Boxore^
[HKCU\Software\AVG Secure Search] =>Toolbar.AVGSearch^
[HKCU\Software\BoBrowser] =>PUP.BoBrowser^
[HKCU\Software\HD.Quality.i5V19.06-nv-ie] =>PUP.CrossRider^
[HKCU\Software\I - Cinema-nv-ie] =>PUP.CrossRider^
[HKCU\Software\I - Cinema-nv] =>PUP.CrossRider^
[HKCU\Software\I - Cinema] =>PUP.CrossRider^
[HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro^
[HKCU\Software\SearchProtect] =>PUP.SearchProtect^
[HKCU\Software\SkillBrains] =>PUP.SkillBrains^
[HKCU\Software\Store] =>PUP.Nosibay^
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive^
[HKCU\Software\WTools] =>PUP.Nosibay^
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\ArenaHD] =>PUP.CrossRider^
[HKLM\Software\HighDefAction] =>PUP.CrossRider^
[HKLM\Software\WebBar] =>PUP.WebBar^
[HKLM\Software\Wow6432Node\AVG Security Toolbar] =>Toolbar.AVGSearch^
[HKLM\Software\Wow6432Node\Crossbrowse] =>PUP.CrossBrowser^
[HKLM\Software\Wow6432Node\GAMESDESKTOP] =>Adware.GamesDesktop^
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\Wow6432Node\HD.Quality.i5V19.06-nv-ie] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\HighDefAction] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\I - Cinema-nv-ie] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\I - Cinema-nv] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\Infonaut_1.10.0.14] =>PUP.Infonaut^
[HKLM\Software\Wow6432Node\SPPDCOM] =>Rogue.PCSpeedUp^
[HKLM\Software\Wow6432Node\SkillBrains] =>PUP.SkillBrains^
[HKLM\Software\Wow6432Node\SuperClick_1.10.0.16] =>PUP.SuperClick^
[HKLM\Software\Wow6432Node\YorkNewCin] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\b1636830-5c8c-4dc6-a4dd-1b93a74679d2] =>PUP.CrossRider^
[HKLM\Software\YorkNewCin] =>PUP.CrossRider^
~ Additionnel Scan: 426688 Items scanned in 01mn 28s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ http://nicolascoolman.fr/o51-mountpoints2-shell-key-mpsk/ =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
~ AMI: 5 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://www.nicolascoolman.fr/blog/ =>PUP.SkillBrains
http://www.nicolascoolman.fr/blog/ =>Adware.SupTab
http://www.nicolascoolman.fr/blog/ =>PUP.MobilePCStarterKit
http://nicolascoolman.fr/adware-boxore =>Adware.Boxore
http://nicolascoolman.fr/pup-searchprotect =>PUP.SearchProtect
http://nicolascoolman.fr/pup-globalupdate =>PUP.GlobalUpdate
http://nicolascoolman.fr/pup-anyprotect =>PUP.AnyProtect
http://www.nicolascoolman.fr/blog/ =>Adware.Pirrit
http://www.nicolascoolman.fr/blog/ =>PUP.BoBrowser
http://www.nicolascoolman.fr/blog/ =>PUP.BidailySync
http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider
http://www.nicolascoolman.fr/blog/ =>PUP.BrowserExtensions
http://nicolascoolman.fr/pup-optimizerpro =>PUP.OptimizerPro
http://www.nicolascoolman.fr/blog/ =>PUP.Nosibay
http://nicolascoolman.fr/spyware-agenceexclusive =>PUP.AgenceExclusive
http://www.nicolascoolman.fr/blog/ =>PUP.WebBar
http://www.nicolascoolman.fr/blog/ =>PUP.CrossBrowser
http://www.nicolascoolman.fr/blog/ =>Adware.GamesDesktop
http://www.nicolascoolman.fr/blog/ =>PUP.Infonaut
http://nicolascoolman.fr/rogue-pcspeedup =>Rogue.PCSpeedUp
http://www.nicolascoolman.fr/blog/ =>PUP.SuperClick
http://nicolascoolman.fr/adware-downware =>Adware.Downware
http://www.nicolascoolman.fr/blog/ =>PUP.MailUpdate
http://nicolascoolman.fr/pup-bubbledock =>PUP.BubbleDock
http://nicolascoolman.fr/pup-smartwebsearch =>PUP.SmartWeb
http://nicolascoolman.fr/hijacker-trovicom =>Hijacker.TroviCom
http://www.nicolascoolman.fr/blog/ =>Toolbar.Agent
http://nicolascoolman.fr/pup-whitesmoke =>PUP.Whitesmoke
http://nicolascoolman.fr/pup-bprotector =>PUP.BProtector
http://nicolascoolman.fr/pup-toparcadehits =>PUP.ToparcadeHits
http://www.nicolascoolman.fr/blog/ =>PUP.Conduit
http://nicolascoolman.fr/adware-predictad =>Adware.PredictAd
http://www.nicolascoolman.fr/blog/ =>Spyware.AgenceExclusive
http://nicolascoolman.fr/pup-babylon =>PUP.Babylon
~ MSI: 34 link(s) detected in 00mn 00s



End of the scan (1934 lines in 06mn 29s)(0.11)

Publicité


Signaler le contenu de ce document

Publicité