cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.9.10.139 Par Nicolas Coolman (2015/09/10)
~ Démarré par CELINE (Administrator) (2015/09/10 17:38:23)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\CELINE\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\CELINE\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v45.0.2454.85
MSIE: Internet Explorer v11.0.9600.18015

---\\ Informations sur les produits Windows (4) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection (3) - 6s
Avast Free Antivirus v10.3.2225
Trusteer Sécurité des points d'accès v3.5.1507.65
Windows Defender W7 (Activate)

---\\ Logiciels de protection et autres (Superflus) (1) - 7s
Spybot - Search & Destroy v2.4.40

---\\ Logiciels d'optimisation (1) - 8s
CCleaner v4.19

---\\ Surveillance de Logiciels (2) - 8s
Adobe Flash Player 18 NPAPI
Adobe Reader X

---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 18 Model 1 Stepping 0, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3644.28 MB (26% free)
~ System Restore: Activé (Enable)
~ System drive C: has 72 GB free of 357 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: CELINE-TOSH
~ User Name: CELINE
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 72 GB free of 357 GB (System)
~ Drive D: has 0 GB free of 357 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (25) - 3s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.A55305B1CACD38EAC176CC532B2053AC] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427392] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.492D07D79E7024CA310867B526D9636D] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.43E1F4B0EFDC244D2A83995CCD7846F7] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [296320] ©

---\\ Processus lancés (59) - 7s
[MD5.5F309AC157D5C702DD8B85B28B7E4347] - (.IBM Corp. - RapportMgmtService.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2255128] [PID.332]
[MD5.833D43CFBAC21365D36CF797377457D9] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [204288] [PID.540] ©
[MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [118048] [PID.736] =>PUP.Optional.Elex
[MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe [118048] [PID.1084] =>PUP.Optional.Elex
[MD5.E89228A828C7AB42DD4C2E813E887ACC] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [482304] [PID.1464] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1852] ©
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2320] ©
[MD5.991944BA69BEB326F5DDEF36DB454BCA] - (...) -- C:\Program Files (x86)\F3E07FC0-1441283256-11E0-A35F-E89A8F8FD5E3\knsjCC3F.tmp [1380352] [PID.2440] =>PUP.Optional.CrossRider
[MD5.7159FAC47B8F0D10F3EE4FBED368499E] - (.IBM Corp. - RapportInjService_x64.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe [233752] [PID.2500]
[MD5.0EEE927ED2CD3F3FD437E724D529BF43] - (.Elex do Brasil Participações Ltda - YACTray.) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe [368000] [PID.3304] =>PUP.Optional.Elex
[MD5.397086C5E5B49608666859AA1F498CA8] - (.IBM Corp. - RapportService.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe [3021080] [PID.3620]
[MD5.9B127FAD05A69E8B66FFBEE9C58D64B6] - (.TOSHIBA Corporation - Monitor of TOSHIBA ReelTime.) -- C:\Program Files\Toshiba\ReelTime\TosReelTimeMonitor.exe [38304] [PID.3724] ©
[MD5.A3F33A34AABB4B608120FA7662871972] - (.Toshiba Europe GmbH - Toshiba TEMPRO.) -- C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720] [PID.3760] ©
[MD5.3A25973E0B5C1C6ED5A64EF0F85386B2] - (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\Toshiba\Power Saver\TPwrMain.exe [566696] [PID.3772] ©
[MD5.12F8C04F7C124AF6BD4612E2E0AF449B] - (.TOSHIBA Corporation - TOSHIBA eco Utility.) -- C:\Program Files\Toshiba\TECO\Teco.exe [1544104] [PID.3780] ©
[MD5.7159FAC47B8F0D10F3EE4FBED368499E] - (.IBM Corp. - RapportInjService_x64.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe [233752] [PID.3860]
[MD5.68D6C7F99BC73B88954D844FCCBEB2A0] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408] [PID.3892] ©
[MD5.97A1AFD42B8016D132C7BF38C955C6E1] - (.TOSHIBA CORPORATION - ConfigFree Task Tray Menu.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [304560] [PID.3564] ©
[MD5.6BB1E28B8180EC841A5309FA0F2CAD7A] - (.TOSHIBA Corporation - Message Center.) -- C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [597928] [PID.3584] ©
[MD5.446E4DE3F5C4FD2A3956DCEDF82DEEC9] - (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe [846936] [PID.3196] ©
[MD5.DEB55C327597E42FA14E41F5858F3263] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [6501656] [PID.4088] ©
[MD5.F34001FB7E4EA94D404339CD8B15D84C] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\CELINE\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360] [PID.1484] ©
[MD5.8E2C799D3476EAC32C3BA0DF7CE6AF19] - (.TOSHIBA Corporation - TDCSrv Application.) -- C:\Windows\system32\TODDSrv.exe [138656] [PID.2248] ©
[MD5.CDC97FA5C42B07FB0D4600E17C32F582] - (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe [489384] [PID.2712] ©
[MD5.BB752714D14CB1F13969D721F1A3A60F] - (.TOSHIBA - TOSHIBA Sleep Service.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [252792] [PID.2216] ©
[MD5.B810B8C3EA2658054C931B5713D7C206] - (.TOSHIBA Corporation - TOSHIBA Service Station.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1294712] [PID.456] ©
[MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.2220] ©
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.4152] ©
[MD5.3F30DA4C4A2042CD58AA3AC2DA1E122B] - (.Toshiba - Toshiba Places Icon Utility.) -- C:\Program Files\Toshiba\TOSHIBA Places Icon Utility\TosDIMonitor.exe [1470848] [PID.4168] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.4348] ©
[MD5.88D881B1B9D87923B8C17E2437F0B27B] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\CELINE\AppData\Roaming\Dropbox\bin\Dropbox.exe [39175960] [PID.4420] ©
[MD5.F765C813D82D95DBD57AFA347DC243B4] - (.Ratio Applications - TVTime Service.) -- C:\ProgramData\XOGpQlDRsq\PUjAgu.exe [2731488] [PID.4572] =>PUP.Optional.RatioApplications
[MD5.9B9B368A8FF5CAF91D7A333CF62CD2CC] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928] [PID.4688] ©
[MD5.2ECC833EA37CECE0052D4D9ADC184177] - (.TOSHIBA Corporation - TOSHIBA eco Utility Service.) -- C:\Program Files\Toshiba\TECO\TecoService.exe [294328] [PID.4740] ©
[MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.4964] ©
[MD5.D777F1417D9BB9F66CD9D9C3B61F730F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168] [PID.5460] ©
[MD5.EDB4B432DB13EA3D1EB2356310D33263] - (.TOSHIBA Corporation - TosSmartSrv.exe.) -- C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [137632] [PID.2052] ©
[MD5.9F8410CCC72B3470C96DA415BE0CF423] - (.TOSHIBA Corporation - TOSHIBA PC Health Monitor.) -- C:\Program Files\Toshiba\TPHM\TPCHSrv.exe [828336] [PID.5404] ©
[MD5.9F59546ED4A073D7DAAB76F48167FEDB] - (.TOSHIBA Corporation - TosSENotify.exe.mui.) -- C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosSENotify.exe [1147296] [PID.5696] ©
[MD5.8A07221789D46B2EA7DFCA2BC807572A] - (.TOSHIBA CORPORATION - ConfigFree Switch Manager Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe [62848] [PID.6332] ©
[MD5.73DC8073B4479A22DC0645168D231384] - (.TOSHIBA Corporation - TOSHIBA PC Health Monitor.) -- C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe [675248] [PID.6536] ©
[MD5.83E91963C4452BE6899503CF9EBFD3ED] - (.TOSHIBA Corporation - TSS TMachInfo Service.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [54136] [PID.7092] ©
[MD5.41E7C4FA6491747402CFCA77CC1C7AAB] - (.TOSHIBA CORPORATION - ConfigFree Service Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [249200] [PID.1596] ©
[MD5.CAB0EEAF5295FC96DDD3E19DCE27E131] - (.TOSHIBA CORPORATION - ConfigFree Service Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [46448] [PID.6836] ©
[MD5.7DCE7A74764EB7C67D21A32BC579453D] - (.Oracle Corporation - Java(TM) Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [507264] [PID.6916] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.3180] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.3272] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.2548] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.6544] ©
[MD5.C4ECEA407BD2E03B181DCF4642EF462A] - (...) -- C:\Users\CELINE\AppData\Local\gmsd_fr_005010083\upgmsd_fr_005010083.exe [3331728] [PID.116] =>PUP.Optional.CrossRider
[MD5.EB62BA0B8AE868D814CF0D2B03A88144] - (...) -- C:\Program Files (x86)\gmsd_fr_005010083\gmsd_fr_005010083.exe [3983504] [PID.2240] =>PUP.Optional.CrossRider
[MD5.4CFB06B19EBFBE37D101D8F706CCCB5F] - (. - 465 Setup.) -- C:\Users\CELINE\AppData\Local\Temp\is-M7U5L.tmp\465.exe [535652] [PID.8160]
[MD5.F8A121E9FD212284A446CE191FAE8C60] - (. - Setup/Uninstall.) -- C:\Users\CELINE\AppData\Local\Temp\is-8AF4Q.tmp\465.tmp [757760] [PID.6452]
[MD5.565359C69EAF59FEAC843CCA7EE6D82F] - (.PhraseProfessor - PP Setup.) -- C:\Users\CELINE\AppData\Local\Temp\is-2NIJL.tmp\465.exe [1188040] [PID.3136]
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.5356] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.8060] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.6168] ©
[MD5.16E1EA189D721E60D17D1BC8E0392702] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.6864] ©
[MD5.886A7A8D794D4C8DB2D8ADC9990CCD7D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\CELINE\Downloads\ZHPDiag3.exe [1925632] [PID.4044] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (6) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.istartsurf.com/ =>PUP.Optional.IsStart
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [bbjllphbppobebmjpjcijfbakobcheof] Rapport
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (1) - 1s
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (23) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com?type=hp&ts=1433416428&from=mych123&uid=hitachixhts547575a9e384_110520j2740054h62tkex&z=81f750db57387981da49933gez4cac3zbg7q2zcg7t
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com?type=hp&ts=1433416428&from=mych123&uid=hitachixhts547575a9e384_110520j2740054h62tkex&z=81f750db57387981da49933gez4cac3zbg7q2zcg7t
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.v9.com?type=hp&ts=1433416428&from=mych123&uid=hitachixhts547575a9e384_110520j2740054h62tkex&z=81f750db57387981da49933gez4cac3zbg7q2zcg7t
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com?type=hp&ts=1433416428&from=mych123&uid=hitachixhts547575a9e384_110520j2740054h62tkex&z=81f750db57387981da49933gez4cac3zbg7q2zcg7t
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://toshiba.eu/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com?type=hp&ts=1433416428&from=mych123&uid=hitachixhts547575a9e384_110520j2740054h62tkex&z=81f750db57387981da49933gez4cac3zbg7q2zcg7t
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com?type=hp&ts=1433416428&from=mych123&uid=hitachixhts547575a9e384_110520j2740054h62tkex&z=81f750db57387981da49933gez4cac3zbg7q2zcg7t
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {cfcb809c-3a22-4616-a916-6c007bd9d920} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (15516)

---\\ Browser Helper Object de navigateur (BHO) (4) - 0s
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ©
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll ©
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL ©

---\\ Internet Explorer, Barre d'outil (2) - 0s
O3 - Toolbar: 0x9C80CBCF223A1646A9166C007BD9D920 - [HKCU]{CFCB809C-3A22-4616-A916-6C007BD9D920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll =>Toolbar.Agent
O3 - Toolbar: FileConverter 1.5 Toolbar - [HKLM]{cfcb809c-3a22-4616-a916-6c007bd9d920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll =>Toolbar.Agent

---\\ Applications lancées au démarrage du système (33) - 1s
O4 - HKLM\..\Run: [TosReelTimeMonitor] C:\Program Files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe (.not file.)
O4 - HKLM\..\Run: [Toshiba TEMPRO] . (.Toshiba Europe GmbH - Toshiba TEMPRO.) -- C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe ©
O4 - HKLM\..\Run: [TPwrMain] C:\Program Files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE (.not file.)
O4 - HKLM\..\Run: [Teco] C:\Program Files (x86)\TOSHIBA\TECO\Teco.exe (.not file.)
O4 - HKLM\..\Run: [TosSENotify] . (.TOSHIBA Corporation - .) -- C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosWaitSrv.exe ©
O4 - HKLM\..\Run: [TosWaitSrv] C:\Program Files (x86)\TOSHIBA\TPHM\TosWaitSrv.exe (.not file.)
O4 - HKLM\..\Run: [TosNC] C:\Program Files (x86)\Toshiba\BulletinBoard\TosNcCore.exe (.not file.)
O4 - HKLM\..\Run: [TosVolRegulator] . (.TOSHIBA Corporation - Toshiba Volume Regulator.) -- C:\Program Files\Toshiba\TosVolRegulator\TosVolRegulator.exe ©
O4 - HKLM\..\Run: [Toshiba Registration] . (.Toshiba Europe GmbH - Toshiba Notebook Registration Reminder.) -- C:\Program Files\Toshiba\Registration\ToshibaReminder.exe ©
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [TCrdMain] C:\Program Files (x86)\TOSHIBA\FlashCards\TCrdMain.exe (.not file.)
O4 - HKLM\..\Run: [SpaceSoundPro] C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe (.not file.) =>PUP.Optional.SpaceSoundPro
O4 - HKCU\..\Run: [TOPI.EXE] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe ©
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\CELINE\AppData\Roaming\Spotify\SpotifyWebHelper.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe ©
O4 - HKLM\..\Wow6432Node\Run: [TSleepSrv] . (.TOSHIBA - TOSHIBA Sleep Service.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe ©
O4 - HKLM\..\Wow6432Node\Run: [ToshibaServiceStation] . (.TOSHIBA Corporation - TOSHIBA Service Station.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe ©
O4 - HKLM\..\Wow6432Node\Run: [gmsd_fr_005010083] . (...) -- C:\Program Files (x86)\gmsd_fr_005010083\gmsd_fr_005010083.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\RunOnce: [upgmsd_fr_005010083.exe] . (...) -- C:\Users\CELINE\AppData\Local\gmsd_fr_005010083\upgmsd_fr_005010083.exe =>PUP.Optional.CrossRider
O4 - HKUS\.DEFAULT\..\Run: [TOPI.EXE] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe ©
O4 - HKUS\S-1-5-18\..\Run: [TOPI.EXE] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\Run: [TOPI.EXE] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [TOPI.EXE] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-1113189542-3680472427-4044992524-1001\..\Run: [TOPI.EXE] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe ©
O4 - HKUS\S-1-5-21-1113189542-3680472427-4044992524-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKUS\S-1-5-21-1113189542-3680472427-4044992524-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\CELINE\AppData\Roaming\Spotify\SpotifyWebHelper.exe ©

---\\ Raccourcis Global Startup (3) - 6s
O4 - GS\Desktop [Administrateur]: AnyProtect.lnk . (.AnyProtect.com - AnyProtect.) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Desktop [CELINE]: AnyProtect.lnk . (.AnyProtect.com - AnyProtect.) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Desktop [Invité]: AnyProtect.lnk . (.AnyProtect.com - AnyProtect.) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect

---\\ Modification Domaine/Adresses DNS (12) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.1.100.1 192.1.100.2 192.1.100.7
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = etude.local
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.1.100.1 192.1.100.2 192.1.100.7
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = etude.local
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.1.100.1 192.1.100.2 192.1.100.7
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = etude.local

---\\ Protocole additionnel (21) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL ©

---\\ Liste des services NT non Microsoft et non désactivés (17) - 3s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) . (.TOSHIBA CORPORATION - ConfigFree Service Process.) - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe ©
O23 - Service: ConfigFree Service (ConfigFree Service) . (.TOSHIBA CORPORATION - ConfigFree Service Process.) - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: YAC Service (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.YetAnotherCleaner
O23 - Service: Numerical Order Lower Case (norunyki) . (...) - C:\Program Files (x86)\F3E07FC0-1441283256-11E0-A35F-E89A8F8FD5E3\knsjCC3F.tmp =>PUP.Optional.CrossRider
O23 - Service: PUjAgu (PUjAgu) . (.Ratio Applications - TVTime Service.) - C:\ProgramData\XOGpQlDRsq\PUjAgu.exe =>PUP.Optional.RatioApplications
O23 - Service: Rapport Management Service (RapportMgmtService) . (.IBM Corp. - RapportMgmtService.) - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe ©
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe ©
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe ©
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) . (.TOSHIBA Corporation - TDCSrv Application.) - C:\Windows\system32\TODDSrv.exe ©
O23 - Service: TOSHIBA Power Saver (TosCoSrv) . (.TOSHIBA Corporation - TOSHIBA Power Saver.) - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe ©
O23 - Service: TOSHIBA eco Utility Service (TOSHIBA eco Utility Service) . (.TOSHIBA Corporation - TOSHIBA eco Utility Service.) - C:\Program Files\Toshiba\TECO\TecoService.exe ©

---\\ Enumère les données de BootExecute (1) - 0s
O34 - HKLM BootExecute: (sdnclean64.exe)

---\\ Tâches planifiées en automatique (23) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] ©
[MD5.947835240308F523C9D980C89D35E76D] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4825880] ©
[MD5.97A1AFD42B8016D132C7BF38C955C6E1] [APT] [ConfigFree Startup Programs] (.TOSHIBA CORPORATION.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [304560] ©
[MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001Core] (.Dropbox, Inc..) -- C:\Users\CELINE\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512] ©
[MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001UA] (.Dropbox, Inc..) -- C:\Users\CELINE\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001Core - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001Core.job [1148] ©
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001UA - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001UA.job [1200] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] ©
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] ©
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2774] ©
O39 - APT: ConfigFree Startup Programs - (.TOSHIBA CORPORATION.) -- C:\Windows\System32\Tasks\ConfigFree Startup Programs [3492] ©
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001Core - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001Core [3776] ©
O39 - APT: DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001UA - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1113189542-3680472427-4044992524-1001UA [4172] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] ©

---\\ Logiciels installés (87) - 10s
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA ©
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey ©
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {24811C12-F4A9-4D0F-8494-A7B8FE46123C} ©
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {34565B7E-F28D-BEEE-75BB-06E7659FC76F} ©
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {43DBC64B-3DD1-47E2-8788-D3C3B110C574} ©
O42 - Logiciel: TOSHIBA Disc Creator - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {5DA0E02F-970B-424B-BF41-513A5018E4C0} ©
O42 - Logiciel: WMV9/VC-1 Video Playback - (.ATI Technologies Inc..) [HKLM][64Bits] -- {645C958A-F505-A126-F618-DDF4F9C3FE43} ©
O42 - Logiciel: TOSHIBA eco Utility - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {6FF9A012-0254-41E9-81E2-F538C4B53611} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: TOSHIBA PC Health Monitor - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4} ©
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04} ©
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {D4322448-B6AF-4316-B859-D8A0E84DCB38} ©
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {F67FA545-D8E5-4209-86B1-AEE045D1003F} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM][64Bits] -- AnyProtect =>PUP.Optional.AnyProtect
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast ©
O42 - Logiciel: DailyPcClean Support - (.Tuto4PC.Com.) [HKLM][64Bits] -- dpcc_en_009010079_is1 =>PUP.Optional.DailyPCClean
O42 - Logiciel: Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM][64Bits] -- eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1 ©
O42 - Logiciel: FileConverter 1.5 Toolbar - (.FileConverter 1.5.) [HKLM][64Bits] -- FileConverter_1.5 Toolbar
O42 - Logiciel: myphotobook.fr - (.myphotobook GmbH.) [HKLM][64Bits] -- fr.myphotobook.creator.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1 ©
O42 - Logiciel: GamesDesktop 001.005010083 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_fr_005010083_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: HomePlayer 1.5.9e - (.HomePlayer.) [HKLM][64Bits] -- HomePlayer
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E} ©
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C} ©
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{43DBC64B-3DD1-47E2-8788-D3C3B110C574} ©
O42 - Logiciel: TOSHIBA Web Camera Application - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02} ©
O42 - Logiciel: TOSHIBA Recovery Media Creator Reminder - (.TOSHIBA.) [HKLM][64Bits] -- InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492} ©
O42 - Logiciel: TOSHIBA Hardware Setup - (.TOSHIBA.) [HKLM][64Bits] -- InstallShield_{C4FFA951-9678-4D51-84B4-AFD15D3C45AD} ©
O42 - Logiciel: TOSHIBA Supervisor Password - (.TOSHIBA.) [HKLM][64Bits] -- InstallShield_{CBD6B23D-41D5-4A46-8019-6208516C9712} ©
O42 - Logiciel: TRORMCLauncher - (...) [HKLM][64Bits] -- InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F} ©
O42 - Logiciel: YAC(Yet Another Cleaner!) - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM][64Bits] -- iSafe =>PUP.Optional.Elex
O42 - Logiciel: Trusteer Sécurité des points d'accès - (.Trusteer.) [HKLM][64Bits] -- Rapport_msi ©
O42 - Logiciel: TV Time - (.Ratio Applications.) [HKLM][64Bits] -- TVTime =>PUP.Optional.RatioApplications
O42 - Logiciel: Sony Ericsson Update Engine - (.Sony Ericsson Communications AB.) [HKLM][64Bits] -- Update Engine
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: PlayStation(R)Store - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {0E532C84-4275-41B3-9D81-D4A1A20D8EE7} ©
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {12ADFB82-D5A3-43E4-B2F4-FCD9B690315B} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Rapport - (.Trusteer.) [HKLM][64Bits] -- {1DD81E7D-0D28-4CEB-87B2-C041A4FCB215} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: TOSHIBA Online Product Information - (.TOSHIBA.) [HKLM][64Bits] -- {2290A680-4083-410A-ADCC-7092C67FC052} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF} ©
O42 - Logiciel: Java 7 Update 45 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF} ©
O42 - Logiciel: Microsoft Primary Interoperability Assemblies 2005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2C303EE0-A595-3543-A71A-931C7AC40EDE} ©
O42 - Logiciel: TOSHIBA ConfigFree - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {38C52F7D-A6CB-4CE7-A189-8AABE8774D8A} ©
O42 - Logiciel: Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM][64Bits] -- {3D047C6C-19EE-46E3-C14B-9FA84260DF9B} ©
O42 - Logiciel: TOSHIBA Places Icon Utility - (.TOSHIBA.) [HKLM][64Bits] -- {461F6F0D-7173-4902-9604-AB1A29108AF2} ©
O42 - Logiciel: Media Go Video Playback Engine 2.0.114.09020 - (.Sony.) [HKLM][64Bits] -- {49D9CE9D-C8B7-B941-90E1-608044A0FC8D} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} ©
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} ©
O42 - Logiciel: TOSHIBA Wireless LAN Indicator - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {5BA99779-6E12-49EF-BE49-F35B1EDB4DF9} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} ©
O42 - Logiciel: TOSHIBA Sleep Utility - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {654F7484-88C5-46DC-AB32-C66BCB0E2102} ©
O42 - Logiciel: TOSHIBA Web Camera Application - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {6F3C8901-EBD3-470D-87F8-AC210F6E5E02} ©
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {8064A378-46F4-4A4E-8AF5-153D0D4018DD} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} ©
O42 - Logiciel: Media Go - (.Sony.) [HKLM][64Bits] -- {8D92969D-A6A3-44C8-9D63-D377E94F44B5} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: Toshiba Manuals - (.TOSHIBA.) [HKLM][64Bits] -- {90FF4432-21B7-4AF6-BA6E-FB8C1FED9173} ©
O42 - Logiciel: Realtek WLAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9D3D8C60-A55F-4fed-B2B9-173001290E16} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: TOSHIBA Service Station - (.TOSHIBA.) [HKLM][64Bits] -- {AC6569FA-6919-442A-8552-073BE69E247A} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Reader X (10.1.15) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001} ©
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 ©
O42 - Logiciel: TOSHIBA Recovery Media Creator - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {B65BBB06-1F8E-48F5-8A54-B024A9E15FDF} ©
O42 - Logiciel: TOSHIBA Assist - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {C2A276E3-154E-44DC-AAF1-FFDD7FD30E35} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: myphotobook.fr - (.myphotobook GmbH.) [HKLM][64Bits] -- {E73C43E8-DA31-A945-1639-EC882A1E7D87} ©
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} ©
O42 - Logiciel: TOSHIBA TEMPRO - (.Toshiba Europe GmbH.) [HKLM][64Bits] -- {F082CB11-4794-4259-99A1-D91BA762AD15} ©
O42 - Logiciel: Sony PC Companion 2.10.281 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FDB3B167-F4FA-461D-976F-286304A57B2A} ©
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox ©
O42 - Logiciel: Popcorn Time - (.Popcorn Official.) [HKCU][64Bits] -- Popcorn Time ©
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify ©

---\\ HKCU & HKLM Software Keys (92) - 10s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AMD
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Elex-tech
HKLM\SOFTWARE\Wow6432Node\FileConverter_1.5 =>Toolbar.Agent
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee
HKLM\SOFTWARE\Wow6432Node\MOBILEPCSTARTERKIT =>PUP.Optional.MobilePCStarterKit
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\REALTEK Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RtWLan
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony
HKLM\SOFTWARE\Wow6432Node\Sony Corporation
HKLM\SOFTWARE\Wow6432Node\TOSHIBA
HKLM\SOFTWARE\Wow6432Node\TOSHIBA CORPORATION
HKLM\SOFTWARE\Wow6432Node\Trusteer
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AC3filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\ALLCinema
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Avast Software
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\IncrediMail
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opendisc
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Research In Motion
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony
HKCU\SOFTWARE\Sony Corporation
HKCU\SOFTWARE\Spotify
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\TOSHIBA
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Trusteer
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\FileConverter_1.5 =>Toolbar.Agent
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar

---\\ Contenu des dossiers Programmes (233) - 15s
O43 - CFD: 2011/06/22 04:43:56 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/09/10 17:32:46 - [] D -- C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 2011/08/02 23:06:40 - [] D -- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 2011/08/02 23:22:55 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 2015/09/03 22:37:12 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/05/21 15:06:35 - [] D -- C:\Program Files (x86)\Elex-tech =>PUP.Optional.Elex
O43 - CFD: 2015/09/10 09:28:37 - [] D -- C:\Program Files (x86)\F3E07FC0-1441283256-11E0-A35F-E89A8F8FD5E3 =>PUP.Optional.CrossRider
O43 - CFD: 2012/12/23 00:54:48 - [] D -- C:\Program Files (x86)\FileConverter_1.5 =>Toolbar.Agent
O43 - CFD: 2015/09/10 17:12:04 - [] D -- C:\Program Files (x86)\gmsd_fr_005010083 =>PUP.Optional.CrossRider
O43 - CFD: 2014/05/31 09:40:39 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/09/03 20:26:18 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/09/09 16:24:51 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2013/12/22 16:19:45 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/09/03 11:18:34 - [] D -- C:\Program Files (x86)\Lavasoft
O43 - CFD: 2011/09/24 22:46:13 - [0] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2011/11/06 18:13:01 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 2011/11/06 18:36:03 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/13 10:04:17 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2011/06/22 04:27:33 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2011/08/02 23:42:01 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/09/04 11:34:56 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/09/04 11:35:04 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2011/09/25 15:25:01 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2012/12/22 14:36:08 - [] D -- C:\Program Files (x86)\myphotobook.fr
O43 - CFD: 2011/06/22 04:15:39 - [] D -- C:\Program Files (x86)\Photo-Service
O43 - CFD: 2015/09/03 20:26:24 - [0] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2011/08/02 23:22:40 - [] D -- C:\Program Files (x86)\Realtek WLAN Driver
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/04/16 08:22:55 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2014/02/10 22:50:29 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 2013/10/06 21:34:20 - [] D -- C:\Program Files (x86)\Sony Ericsson
O43 - CFD: 2014/02/10 22:49:22 - [] D -- C:\Program Files (x86)\Sony Media Go Install
O43 - CFD: 2015/09/03 23:10:01 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 2011/08/02 23:42:18 - [] D -- C:\Program Files (x86)\TOSHIBA
O43 - CFD: 2012/10/28 10:22:28 - [] D -- C:\Program Files (x86)\TOSHIBA Games
O43 - CFD: 2011/06/22 04:20:17 - [] D -- C:\Program Files (x86)\Toshiba TEMPRO
O43 - CFD: 2013/04/06 17:15:02 - [] D -- C:\Program Files (x86)\Trusteer
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2013/07/13 09:09:18 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/09/03 14:19:57 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2011/10/16 08:42:29 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/15 13:16:27 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2011/10/16 08:42:26 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010/11/21 05:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2011/10/16 08:42:29 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/09/05 14:58:53 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2014/11/01 16:05:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2011/08/02 23:06:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
O43 - CFD: 2015/02/18 16:59:50 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 2014/11/01 14:29:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/09/08 11:53:14 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/09/10 17:12:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
O43 - CFD: 2013/03/19 22:08:35 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/08/19 07:45:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 2013/12/16 16:25:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 2011/10/08 23:11:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomePlayer
O43 - CFD: 2013/12/22 16:20:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2011/11/06 18:17:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/08/13 10:07:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/09/03 14:26:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MOBILEPCSTARTERKIT =>PUP.Optional.MobilePCStarterKit
O43 - CFD: 2011/06/22 04:15:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Service
O43 - CFD: 2015/04/16 08:23:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/08/20 18:20:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 2015/09/03 23:09:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
O43 - CFD: 2015/09/03 22:57:36 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2010/11/21 09:16:41 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2011/09/24 12:38:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
O43 - CFD: 2015/08/31 18:36:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Sécurité des points d'accès
O43 - CFD: 2012/08/06 20:15:15 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2015/09/05 14:58:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/09/08 22:04:20 - [] D -- C:\ProgramData\6WdsManPro6 =>PUP.Optional.WdsManPro
O43 - CFD: 2012/12/22 14:36:42 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2011/08/02 23:08:26 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2014/04/12 10:24:17 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/09/08 08:56:55 - [] D -- C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro
O43 - CFD: 2012/04/13 21:36:14 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2009/07/14 07:08:56 - [0] SD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/06/15 13:36:13 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 2015/09/08 22:04:18 - [] D -- C:\ProgramData\DWdsManProD =>PUP.Optional.WdsManPro
O43 - CFD: 2015/09/07 22:15:54 - [0] D -- C:\ProgramData\eWdsManProe =>PUP.Optional.WdsManPro
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/09/04 09:11:03 - [] D -- C:\ProgramData\Glehegseaa
O43 - CFD: 2012/11/13 21:06:53 - [] D -- C:\ProgramData\Google
O43 - CFD: 2011/11/27 10:37:58 - [] D -- C:\ProgramData\IM
O43 - CFD: 2011/11/27 10:36:19 - [] D -- C:\ProgramData\IncrediMail
O43 - CFD: 2015/09/08 22:04:20 - [] D -- C:\ProgramData\iWdsManProi =>PUP.Optional.WdsManPro
O43 - CFD: 2012/09/30 18:05:50 - [0] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2011/09/24 22:56:41 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/09/03 23:09:26 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/09 15:58:29 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/04/13 13:59:05 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2011/06/22 04:14:13 - [] D -- C:\ProgramData\Nero
O43 - CFD: 2013/12/22 16:21:50 - [0] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/09/08 11:11:55 - [] D -- C:\ProgramData\OWdsManProO =>PUP.Optional.WdsManPro
O43 - CFD: 2015/09/03 19:53:39 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/09/08 22:04:21 - [0] D -- C:\ProgramData\QWdsManProQ =>PUP.Optional.WdsManPro
O43 - CFD: 2015/04/16 08:23:25 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/07/03 20:14:55 - [] D -- C:\ProgramData\Sony
O43 - CFD: 2014/02/10 22:49:51 - [] D -- C:\ProgramData\Sony Corporation
O43 - CFD: 2013/10/06 21:35:04 - [] D -- C:\ProgramData\Sony Ericsson
O43 - CFD: 2015/09/03 23:17:57 - [] D -- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2011/06/22 03:41:34 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2011/08/02 23:34:58 - [] D -- C:\ProgramData\TOSHIBA
O43 - CFD: 2011/09/24 11:33:17 - [] D -- C:\ProgramData\ToshibaEurope
O43 - CFD: 2013/04/06 17:12:51 - [] D -- C:\ProgramData\Trusteer
O43 - CFD: 2015/09/04 09:06:15 - [] D -- C:\ProgramData\TVTime
O43 - CFD: 2012/10/28 10:14:50 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2015/09/04 09:05:59 - [] D -- C:\ProgramData\XOGpQlDRsq
O43 - CFD: 2015/09/08 11:29:57 - [] D -- C:\ProgramData\ZombieNews =>PUP.Optional.ZombieNews
O43 - CFD: 2015/09/08 22:04:19 - [0] D -- C:\ProgramData\ZWdsManProZ =>PUP.Optional.WdsManPro
O43 - CFD: 2013/11/25 00:16:20 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2012/12/22 14:35:30 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2011/08/02 23:06:50 - [] D -- C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 2014/05/14 23:51:07 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2011/06/22 03:42:23 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2013/12/22 16:21:23 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2011/09/24 22:50:10 - [] D -- C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 2013/09/15 23:39:31 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/04/16 08:22:54 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2014/02/10 22:50:35 - [] D -- C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2011/11/11 11:43:35 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2011/06/22 04:22:30 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2011/06/22 04:19:17 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 2012/06/15 18:46:54 - [] D -- C:\Users\CELINE\AppData\Roaming\Adobe
O43 - CFD: 2015/09/10 17:25:50 - [] SHD -- C:\Users\CELINE\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 2011/09/24 12:38:11 - [] D -- C:\Users\CELINE\AppData\Roaming\ATI
O43 - CFD: 2014/04/12 10:28:55 - [] D -- C:\Users\CELINE\AppData\Roaming\AVAST Software
O43 - CFD: 2015/09/10 16:41:37 - [] D -- C:\Users\CELINE\AppData\Roaming\Dropbox
O43 - CFD: 2015/09/08 12:05:43 - [] D -- C:\Users\CELINE\AppData\Roaming\Elex-tech =>PUP.Optional.Elex
O43 - CFD: 2012/12/22 14:36:20 - [] D -- C:\Users\CELINE\AppData\Roaming\fr.myphotobook.creator.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1
O43 - CFD: 2011/09/24 12:37:29 - [] D -- C:\Users\CELINE\AppData\Roaming\Identities
O43 - CFD: 2011/06/22 04:15:38 - [] D -- C:\Users\CELINE\AppData\Roaming\Macromedia
O43 - CFD: 2010/11/21 09:16:41 - [0] D -- C:\Users\CELINE\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/06/08 22:29:38 - [] SD -- C:\Users\CELINE\AppData\Roaming\Microsoft
O43 - CFD: 2014/04/13 13:59:33 - [] D -- C:\Users\CELINE\AppData\Roaming\Mozilla
O43 - CFD: 2015/08/20 12:10:21 - [] D -- C:\Users\CELINE\AppData\Roaming\Skype
O43 - CFD: 2014/02/10 22:55:19 - [] D -- C:\Users\CELINE\AppData\Roaming\Sony
O43 - CFD: 2015/09/09 16:47:28 - [] D -- C:\Users\CELINE\AppData\Roaming\Spotify
O43 - CFD: 2011/09/24 23:50:21 - [] D -- C:\Users\CELINE\AppData\Roaming\Toshiba
O43 - CFD: 2011/09/26 19:39:55 - [] D -- C:\Users\CELINE\AppData\Roaming\TOSHIBA Online Product Information
O43 - CFD: 2012/11/29 22:51:41 - [] D -- C:\Users\CELINE\AppData\Roaming\vlc
O43 - CFD: 2014/05/01 00:32:56 - [0] D -- C:\Users\CELINE\AppData\Roaming\Windows Live Writer
O43 - CFD: 2015/09/05 14:59:24 - [] D -- C:\Users\CELINE\AppData\Roaming\WinRAR
O43 - CFD: 2015/09/10 17:38:59 - [] D -- C:\Users\CELINE\AppData\Roaming\ZHP
O43 - CFD: 2012/01/29 12:25:31 - [] D -- C:\Users\CELINE\AppData\Local\Adobe
O43 - CFD: 2011/09/24 11:31:40 - [0] SHD -- C:\Users\CELINE\AppData\Local\Application Data
O43 - CFD: 2011/08/02 23:06:59 - [] D -- C:\Users\CELINE\AppData\Local\ATI
O43 - CFD: 2013/08/24 12:19:35 - [] D -- C:\Users\CELINE\AppData\Local\avgchrome
O43 - CFD: 2015/08/14 10:17:43 - [] D -- C:\Users\CELINE\AppData\Local\CEF
O43 - CFD: 2015/08/11 16:29:51 - [] D -- C:\Users\CELINE\AppData\Local\Diagnostics
O43 - CFD: 2014/02/10 22:48:46 - [] D -- C:\Users\CELINE\AppData\Local\Downloaded Installations
O43 - CFD: 2015/06/15 13:36:18 - [] D -- C:\Users\CELINE\AppData\Local\Dropbox
O43 - CFD: 2015/06/26 17:03:34 - [0] SHD -- C:\Users\CELINE\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/26 17:03:31 - [0] SHD -- C:\Users\CELINE\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/26 17:03:33 - [0] SHD -- C:\Users\CELINE\AppData\Local\EmieUserList
O43 - CFD: 2015/09/10 17:26:17 - [] D -- C:\Users\CELINE\AppData\Local\gmsd_fr_005010083 =>PUP.Optional.CrossRider
O43 - CFD: 2014/05/31 09:40:48 - [] D -- C:\Users\CELINE\AppData\Local\Google
O43 - CFD: 2015/06/09 11:38:04 - [] D -- C:\Users\CELINE\AppData\Local\GWX
O43 - CFD: 2011/09/24 11:31:40 - [0] SHD -- C:\Users\CELINE\AppData\Local\Historique
O43 - CFD: 2011/11/27 10:37:56 - [] D -- C:\Users\CELINE\AppData\Local\IM
O43 - CFD: 2014/04/13 20:44:17 - [] D -- C:\Users\CELINE\AppData\Local\Macromedia
O43 - CFD: 2015/06/08 22:29:38 - [] D -- C:\Users\CELINE\AppData\Local\Microsoft
O43 - CFD: 2012/02/08 00:26:00 - [] D -- C:\Users\CELINE\AppData\Local\Microsoft Help
O43 - CFD: 2014/11/01 14:36:49 - [0] DC -- C:\Users\CELINE\AppData\Local\MigWiz
O43 - CFD: 2014/04/13 13:59:34 - [] D -- C:\Users\CELINE\AppData\Local\Mozilla
O43 - CFD: 2015/09/08 10:46:48 - [] D -- C:\Users\CELINE\AppData\Local\Popcorn Time
O43 - CFD: 2015/09/09 21:20:46 - [] D -- C:\Users\CELINE\AppData\Local\Popcorn-Time
O43 - CFD: 2012/12/11 23:10:17 - [] D -- C:\Users\CELINE\AppData\Local\Programs
O43 - CFD: 2014/04/20 17:29:02 - [] D -- C:\Users\CELINE\AppData\Local\Skype
O43 - CFD: 2014/02/10 22:54:08 - [] D -- C:\Users\CELINE\AppData\Local\Sony
O43 - CFD: 2015/09/09 16:46:13 - [] D -- C:\Users\CELINE\AppData\Local\Spotify
O43 - CFD: 2015/09/10 17:39:02 - [] D -- C:\Users\CELINE\AppData\Local\Temp
O43 - CFD: 2011/09/24 11:31:40 - [0] SHD -- C:\Users\CELINE\AppData\Local\Temporary Internet Files
O43 - CFD: 2011/09/26 19:39:52 - [] D -- C:\Users\CELINE\AppData\Local\Toshiba
O43 - CFD: 2013/04/06 17:15:15 - [] D -- C:\Users\CELINE\AppData\Local\Trusteer
O43 - CFD: 2015/09/04 09:18:01 - [0] D -- C:\Users\CELINE\AppData\Local\TVTime
O43 - CFD: 2011/09/24 11:37:21 - [0] D -- C:\Users\CELINE\AppData\Local\VirtualStore
O43 - CFD: 2014/05/01 00:32:24 - [] D -- C:\Users\CELINE\AppData\Local\Windows Live
O43 - CFD: 2014/05/01 00:33:05 - [] D -- C:\Users\CELINE\AppData\Local\Windows Live Writer
O43 - CFD: 2014/06/23 13:06:43 - [0] D -- C:\Users\CELINE\AppData\Local\{003BED0E-DFAA-49A0-917F-B4CA71634D5B}
O43 - CFD: 2013/09/16 08:04:18 - [0] D -- C:\Users\CELINE\AppData\Local\{1B6C6BA8-0C45-4411-9BBC-C5B869DEA084}
O43 - CFD: 2014/01/20 18:55:34 - [0] D -- C:\Users\CELINE\AppData\Local\{2424D441-F613-49D8-8B07-93961D42F5F0}
O43 - CFD: 2013/01/11 10:52:45 - [0] D -- C:\Users\CELINE\AppData\Local\{27E52FC7-010E-4AD6-A262-A8CC42DC71D0}
O43 - CFD: 2013/06/15 19:49:19 - [0] D -- C:\Users\CELINE\AppData\Local\{2CF079CC-2DCD-4897-B184-EE32F326B8CF}
O43 - CFD: 2013/08/11 16:50:37 - [0] D -- C:\Users\CELINE\AppData\Local\{3600B256-308D-4CEB-8C13-E8777AA5DF7E}
O43 - CFD: 2014/04/06 15:55:12 - [0] D -- C:\Users\CELINE\AppData\Local\{3981A76F-8034-4891-B19C-39593BC7A904}
O43 - CFD: 2014/06/22 18:43:25 - [0] D -- C:\Users\CELINE\AppData\Local\{3ABC0E41-5CD9-4631-8D81-132859FBC357}
O43 - CFD: 2014/05/01 00:33:29 - [0] D -- C:\Users\CELINE\AppData\Local\{3DC6A49D-AA70-442D-8B67-42B44FE81055}
O43 - CFD: 2012/06/28 15:26:55 - [0] D -- C:\Users\CELINE\AppData\Local\{41835559-2C6D-46C6-90BD-5E694DA1E770}
O43 - CFD: 2013/08/03 09:08:05 - [0] D -- C:\Users\CELINE\AppData\Local\{4548755D-1091-4084-A3E6-F69579335F0F}
O43 - CFD: 2013/12/22 09:48:26 - [0] D -- C:\Users\CELINE\AppData\Local\{45D35B6A-DD36-47D2-869C-0D09EACC539B}
O43 - CFD: 2014/06/26 19:30:01 - [0] D -- C:\Users\CELINE\AppData\Local\{4F700806-804E-42DD-8D1F-6F9168D05F34}
O43 - CFD: 2014/06/22 18:44:49 - [0] D -- C:\Users\CELINE\AppData\Local\{53B096D9-A9F8-4410-977D-8EC0AC3761F8}
O43 - CFD: 2012/04/19 21:26:10 - [0] D -- C:\Users\CELINE\AppData\Local\{53D40BA3-050D-442C-BB52-5E5FE72F6E0A}
O43 - CFD: 2012/04/13 20:20:31 - [0] D -- C:\Users\CELINE\AppData\Local\{553AC344-C529-4A6B-8992-ECA2140E64DD}
O43 - CFD: 2014/06/27 20:57:11 - [0] D -- C:\Users\CELINE\AppData\Local\{58EC8024-8E5F-4F9D-8134-A49E37452ABC}
O43 - CFD: 2012/08/06 18:59:58 - [0] D -- C:\Users\CELINE\AppData\Local\{5BE328AD-9171-45C7-B6B8-101D65C0FF7A}
O43 - CFD: 2013/07/02 23:45:43 - [0] D -- C:\Users\CELINE\AppData\Local\{63ACDC54-2CD4-4CBA-A2E8-FC0486525075}
O43 - CFD: 2013/05/06 20:39:51 - [0] D -- C:\Users\CELINE\AppData\Local\{67FB76DD-EBDE-44F9-920F-031F99C68CFB}
O43 - CFD: 2012/04/13 19:37:43 - [0] D -- C:\Users\CELINE\AppData\Local\{71087B3D-0398-45AF-A2A1-B2BD0202D165}
O43 - CFD: 2012/08/06 18:59:46 - [0] D -- C:\Users\CELINE\AppData\Local\{7A8DF2A0-FF92-41EC-A4B1-3DCB65CBCC54}
O43 - CFD: 2014/08/10 17:58:17 - [0] D -- C:\Users\CELINE\AppData\Local\{7E3B6AF9-C9E4-4FC8-B539-16DCF3D3099F}
O43 - CFD: 2014/10/13 11:30:28 - [0] D -- C:\Users\CELINE\AppData\Local\{83EA11DA-95A4-4776-9E2E-1CC185FC3E7C}
O43 - CFD: 2014/06/25 20:34:30 - [0] D -- C:\Users\CELINE\AppData\Local\{851DF194-5998-4960-8751-F48DFDBBE39E}
O43 - CFD: 2014/06/24 13:13:36 - [0] D -- C:\Users\CELINE\AppData\Local\{9BEE4856-60BB-48FC-8D5E-1E60D32F885A}
O43 - CFD: 2012/06/28 15:26:37 - [0] D -- C:\Users\CELINE\AppData\Local\{AC3715DE-A9A8-40AF-93C7-FFC0CBF55EE1}
O43 - CFD: 2013/12/21 17:28:56 - [0] D -- C:\Users\CELINE\AppData\Local\{ACD28D02-BF0E-420D-B9C6-69B523E712ED}
O43 - CFD: 2013/06/26 22:23:33 - [0] D -- C:\Users\CELINE\AppData\Local\{B6C1B58B-1B4B-4C82-9E88-A03D3BF88299}
O43 - CFD: 2013/07/23 20:57:41 - [0] D -- C:\Users\CELINE\AppData\Local\{C6580277-395C-4B6D-9DC8-6BA71386E6D0}
O43 - CFD: 2013/07/04 22:10:46 - [0] D -- C:\Users\CELINE\AppData\Local\{DC525A05-5869-4480-A56E-AB1490277A56}
O43 - CFD: 2012/04/22 18:43:16 - [0] D -- C:\Users\CELINE\AppData\Local\{EA8271E7-5514-482B-990B-BB95A7750E8C}
O43 - CFD: 2014/06/22 18:43:54 - [0] D -- C:\Users\CELINE\AppData\Local\{EEFE64FD-B361-4529-B22E-CB552981FEA7}
O43 - CFD: 2013/09/24 09:26:19 - [0] D -- C:\Users\CELINE\AppData\Local\{F9E4C32C-3F34-4763-A646-2C168A26BB4C}
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/09/09 21:15:43 - [] RD -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/09/10 17:32:45 - [] D -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
O43 - CFD: 2015/08/31 10:54:02 - [] D -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 2011/10/08 23:11:34 - [0] D -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HomePlayer
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2012/12/22 14:36:08 - [] D -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\myphotobook.fr
O43 - CFD: 2015/09/08 10:46:49 - [] D -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
O43 - CFD: 2015/09/09 21:15:43 - [] RD -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/09/05 14:58:55 - [] D -- C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Derniers fichiers créés dans Windows Prefetcher (8) - 10s
O45 - LFCP:[MD5.4A81F21010CE8890B146998BAF17CD33] 2015/08/14 09:13:29 A -- C:\Windows\Prefetch\DESK365.EXE-3AE48D4B.pf =>PUP.Optional.22Find
O45 - LFCP:[MD5.E287643E5988D380EB2C90B88F89C660] 2015/09/03 11:41:13 A -- C:\Windows\Prefetch\PLUS-HD-2.2-CHROMEINSTALLER.E-3AC300FE.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.CA3E50A0A7406C010265F2CDC3C912CD] 2015/09/03 11:41:03 A -- C:\Windows\Prefetch\PLUS-HD-2.2-CODEDOWNLOADER.EX-2403C8AC.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.A0AD7D741D4087AEB563F0153BC61AE7] 2015/09/03 11:41:06 A -- C:\Windows\Prefetch\PLUS-HD-2.2-FIREFOXINSTALLER.-87C6B857.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.1022976B5FA0809A71F1948C04BFAE20] 2015/09/03 11:42:04 A -- C:\Windows\Prefetch\PLUS-HD-2.2-UPDATER.EXE-0607D2B3.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.CEE6B3EFBD3B148A4EAE789832AD1BF9] 2015/09/03 12:18:03 A -- C:\Windows\Prefetch\PRICORA-CHROMEINSTALLER.EXE-646DF196.pf =>PUP.Optional.Pricora
O45 - LFCP:[MD5.7750BCE570025A4564D2FC59CF81ECD2] 2015/09/03 12:18:01 A -- C:\Windows\Prefetch\PRICORA-CODEDOWNLOADER.EXE-4B807304.pf =>PUP.Optional.Pricora
O45 - LFCP:[MD5.2059C06C5EA57F9A5AFD965B420F0CC9] 2015/09/03 20:56:02 A -- C:\Windows\Prefetch\TORNTV 2-CODEDOWNLOADER.EXE-839BFC52.pf =>PUP.Optional.TornTV

---\\ Enumération des clés StartupReg (12) - 0s
O53 - SMSR:HKLM\...\startupreg\3D BubbleSound [Key] . (...) -- C:\Program Files\BubbleSound\3D BubbleSound.exe (.not file.) =>PUP.Optional.BubbleSound
O53 - SMSR:HKLM\...\startupreg\ALLUpdate [Key] . (...) -- C:\Program Files (x86)\OpenSubtitlesPlayer\ALLUpdate.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Bubble Dock [Key] . (...) -- C:\Users\CELINE\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.) =>PUP.Optional.BubbleDock
O53 - SMSR:HKLM\...\startupreg\Dropbox Update [Key] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\CELINE\AppData\Local\Dropbox\Update\DropboxUpdate.exe ©
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_1F03CB916D7A1E3A473E4171EDCA27D3 [Key] . (...) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\HomePlayer [Key] . (...) -- C:\Users\CELINE\Downloads\HomePlayer\HomePlayer.exe
O53 - SMSR:HKLM\...\startupreg\HSON [Key] . (.TOSHIBA Corporation - .) -- C:\Program Files (x86)\TOSHIBA\TBS\HSON.exe (.not file.) ©
O53 - SMSR:HKLM\...\startupreg\Sidebar [Key] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O53 - SMSR:HKLM\...\startupreg\SmartAudio [Key] . (.Conexant systems, Inc. - SmartAudio Control Panel application.) -- C:\Program Files\CONEXANT\SAII\SAIICpl.exe ©
O53 - SMSR:HKLM\...\startupreg\Sony PC Companion [Key] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe ©
O53 - SMSR:HKLM\...\startupreg\Spotify Web Helper [Key] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\CELINE\AppData\Roaming\Spotify\SpotifyWebHelper.exe ©
O53 - SMSR:HKLM\...\startupreg\StartCCC [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ©

---\\ Liste des pilotes du système (76) - 6s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/08/12 17:00:26 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656] ©
O58 - SDL:2015/08/12 17:00:26 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968] ©
O58 - SDL:2015/08/12 17:00:23 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528] ©
O58 - SDL:2015/08/12 17:00:26 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224] ©
O58 - SDL:2015/08/14 09:29:15 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [1048344] ©
O58 - SDL:2015/08/12 17:00:27 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [447944] ©
O58 - SDL:2015/08/12 17:00:29 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672] ©
O58 - SDL:2015/08/12 17:00:28 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808] ©
O58 - SDL:2010/09/24 07:46:32 A . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW76.sys [116752] ©
O58 - SDL:2011/05/26 01:58:22 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [9263104] ©
O58 - SDL:2011/05/25 23:28:50 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [300544] ©
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2011/01/27 12:34:12 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\Windows\System32\drivers\CHDRT64.sys [1577088] ©
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2009/12/14 12:44:24 A . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\Windows\System32\drivers\CSCrySec.sys [85048] ©
O58 - SDL:2009/12/14 12:44:24 A . (.Infowatch - Virtual Volume Container Driver (wnet).) -- C:\Windows\System32\drivers\CSVirtualDiskDrv.sys [66104] ©
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2013/07/03 20:44:36 A . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver Filter.) -- C:\Windows\System32\drivers\ggflt.sys [14448] ©
O58 - SDL:2013/07/03 20:44:36 A . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver.) -- C:\Windows\System32\drivers\ggsemc.sys [27760] ©
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/21 05:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2015/04/17 04:43:55 A . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\iSafeNetFilter.sys [52392] =>PUP.Optional.YetAnotherCleaner
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2011/02/08 19:07:00 A . (.TOSHIBA Corporation - TOSHIBA Universal Camera Filter Driver.) -- C:\Windows\System32\drivers\PGEffect.sys [38096] ©
O58 - SDL:2009/06/15 13:58:50 A . (.TOSHIBA - Generic IO & Memory Access.) -- C:\Windows\System32\drivers\QIOMem.sys [12800] ©
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2015/08/12 13:04:36 A . (.IBM Corp. - RapportHades64.) -- C:\Windows\System32\drivers\RapportHades64.sys [139896]
O58 - SDL:2015/08/12 13:04:36 A . (.IBM Corp. - RapportKE.) -- C:\Windows\System32\drivers\RapportKE64.sys [394584]
O58 - SDL:2007/01/18 15:10:22 A . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\Windows\System32\drivers\RimSerial_AMD64.sys [30336] ©
O58 - SDL:2010/03/31 11:10:18 A . (.Realtek Semiconductor Corporation - Realtek RTL8187B NDIS Driver.) -- C:\Windows\System32\drivers\rtl8187B.sys [450048] ©
O58 - SDL:2010/04/01 14:01:10 A . (.Realtek Semiconductor Corporation - Realtek RTL8187S PCIE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8187Se.sys [442368] ©
O58 - SDL:2011/01/05 01:08:58 A . (.Realtek Semiconductor Corporation - Realtek RTL81892CE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8192ce.sys [1109096] ©
O58 - SDL:2010/12/17 16:04:28 A . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8192se.sys [1221224] ©
O58 - SDL:2010/12/22 16:24:00 A . (.Realtek Semiconductor Corporation - Realtek RTL819xP NDIS Driverr.) -- C:\Windows\System32\drivers\rtl819xp.sys [626792] ©
O58 - SDL:2013/05/02 06:52:40 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driverr.) -- C:\Windows\System32\drivers\rtwlane.sys [1514568] ©
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2011/02/03 19:59:06 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [1413680] ©
O58 - SDL:2009/07/30 20:22:04 A . (.TOSHIBA Corporation. - TOSHIBA ODD Writing Driver for x64..) -- C:\Windows\System32\drivers\tdcmdpst.sys [27784] ©
O58 - SDL:2009/06/19 19:15:22 A . (.TOSHIBA Corporation - TOSHIBA TVALZ Filter Driver for x64.) -- C:\Windows\System32\drivers\TVALZFL.sys [14472] ©
O58 - SDL:2009/07/14 15:31:18 A . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and.) -- C:\Windows\System32\drivers\TVALZ_O.SYS [26840] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
O58 - SDL:2009/06/10 23:01:11 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\drivers\VSTAZL6.SYS [292864] ©
O58 - SDL:2009/06/10 23:01:11 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\drivers\VSTCNXT6.SYS [740864] ©
O58 - SDL:2009/06/10 23:01:11 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\drivers\VSTDPV6.SYS [1485312] ©

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (16) - 31s
O61 - LFC: 2015/09/05 14:53:33 A . (..) -- C:\Users\CELINE\Downloads\7z920.exe [1138397]
O61 - LFC: 2015/09/05 14:58:27 A . (..) -- C:\Users\CELINE\Downloads\wrar521fr.exe [1857120]
O61 - LFC: 2015/09/09 16:45:52 A . (.Copyright (C) 2015 The Chromium Embedded Framework Au.) -- C:\Users\CELINE\AppData\Roaming\Spotify\libcef.dll [45067320]
O61 - LFC: 2015/09/09 16:45:52 A . (.Copyright (C) 2011 Google Inc..) -- C:\Users\CELINE\AppData\Roaming\Spotify\libEGL.dll [80952]
O61 - LFC: 2015/09/09 16:45:52 A . (.Copyright (C) 2011 Google Inc..) -- C:\Users\CELINE\AppData\Roaming\Spotify\libGLESv2.dll [1649208]
O61 - LFC: 2015/09/09 16:45:52 A . (..) -- C:\Users\CELINE\AppData\Roaming\Spotify\natives_blob.bin [410937]
O61 - LFC: 2015/09/09 16:45:52 A . (..) -- C:\Users\CELINE\AppData\Roaming\Spotify\snapshot_blob.bin [449780]
O61 - LFC: 2015/09/09 16:45:52 A . (..) -- C:\Users\CELINE\AppData\Roaming\Spotify\wow_helper.exe [73272]
O61 - LFC: 2015/09/07 19:50:22 A . (.Copyright (C) 2011 Google Inc..) -- C:\Users\CELINE\AppData\Local\Popcorn Time\libEGL.dll [73728]
O61 - LFC: 2015/09/07 19:50:22 A . (.Copyright (C) 2011 Google Inc..) -- C:\Users\CELINE\AppData\Local\Popcorn Time\libGLESv2.dll [1481728]
O61 - LFC: 2015/09/07 19:50:24 A . (..) -- C:\Users\CELINE\AppData\Local\Popcorn Time\nw.exe [46286848]
O61 - LFC: 2015/09/07 19:49:00 A . (..) -- C:\Users\CELINE\AppData\Local\Popcorn Time\Popcorn Time.exe [430080]
O61 - LFC: 2015/09/10 17:10:34 A . (..) -- C:\Users\CELINE\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/09/07 16:15:17 A . (..) -- C:\Users\CELINE\AppData\Local\gmsd_fr_005010083\upgmsd_fr_005010083.exe [3331728] =>PUP.Optional.CrossRider
O61 - LFC: 2015/09/10 17:15:29 A . (..) -- C:\Users\CELINE\AppData\Local\gmsd_fr_005010083\Download\myoffergroup_fr.exe [4854016] =>PUP.Optional.CrossRider
O61 - LFC: 2015/09/03 22:47:01 A . (..) -- C:\Users\CELINE\AppData\Local\ATI\ACE\Manifest.Bin [27473]

---\\ Associations Shell Spawning (9) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- c:\program files (x86)\google\chrome\application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Recherche d'infection sur les navigateurs (17) - 7s
O69 - SBI: prefs.js [CELINE - i7yjgzqf.default-1441316526168] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [CELINE - i7yjgzqf.default-1441316526168] user_pref("browser.search.searchengine.ptid", "cmi"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [CELINE - i7yjgzqf.default-1441316526168] user_pref("browser.search.searchengine.uid", "HitachiXHTS547575A9E384_110520J2740054H62TKEX"); =>PUP.Optional.SearchEngine
O69 - SBI: SearchScopes [HKCU] {02A73A08-D77F-44E3-B512-A32FB28752BA} - (eBay) - http://rover.ebay.com/
O69 - SBI: SearchScopes [HKCU] {0EC7331F-8C86-4217-8895-3E83807C7D03} - (Web Search) - http://search.certified-toolbar.com?si=38268&bs=true&tid=77&q={searchTerms} =>PUP.Optional.CertifiedToolbar
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web) - http://www.max-start.com/
O69 - SBI: SearchScopes [HKCU] {205F338C-C1E5-4CC5-90BA-B81D8CC134EC} - (FileConverter 1.5 Customized Web Search) - http://search.conduit.com/ =>PUP.Optional.Conduit
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (delta-homes) - http://search.delta-homes.com/ =>PUP.Optional.Qvo6
O69 - SBI: SearchScopes [HKCU] {38C3B1BE-12E1-DE82-D485-4FDD4F9C228E} - (delta-homes) - http://search.delta-homes.com/ =>PUP.Optional.Qvo6
O69 - SBI: SearchScopes [HKCU] {425ED333-6083-428a-92C9-0CFC28B9D1BF} - (V9) - http://www.v9.com/
O69 - SBI: SearchScopes [HKCU] {51DD106F-E180-4C45-8D2B-08BCD7238B20} - (Ask Search) - http://websearch.ask.com/ =>Toolbar.Ask
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} - (Search Results) - http://dts.search-results.com/ =>PUP.Optional.Bandoo
O69 - SBI: SearchScopes [HKCU] {ADD3095B-4E53-4C91-B879-17F3FD4B380F} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} - (MyStart Search) - http://mystart.incredimail.com/ =>PUP.Optional.VMNToolbar
O69 - SBI: SearchScopes [HKCU] {E8A95DF8-ACB8-462E-A862-92A563177E62} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (SweetIM Search) - http://search.sweetim.com/ =>PUP.Optional.SweetIM
O69 - SBI: SearchScopes [HKCR] [DefaultScope] - (Web Search) - http://search.certified-toolbar.com?si=38268&bs=true&tid=77&q={searchTerms} =>PUP.Optional.CertifiedToolbar

---\\ Enumère les services démarrés par Svchost (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2606080] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ©

---\\ Liste des exceptions du parefeu Windows (16) - 3s
O87 - FAEL: "{E31DCABF-1E52-46E7-8AB8-6BF721CE70E1}" [In-None-P6-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\HomePlayer.exe
O87 - FAEL: "{E7147984-192C-4511-B949-4BDBA1BCE5E4}" [In-None-P17-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\HomePlayer.exe
O87 - FAEL: "{4643C076-A9C1-49D6-9B47-7C670521738A}" [In-None-P6-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\VLC\vlc.exe
O87 - FAEL: "{682C6E4B-68D7-442D-8392-39AB48314F2C}" [In-None-P17-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\VLC\vlc.exe
O87 - FAEL: "{4801E93C-766B-4B19-ACA0-56C8D08E232C}" [In-None-P6-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\HomePlayer.exe
O87 - FAEL: "{44B874AA-B0F3-4CC6-83BC-B9A5EEC939D9}" [In-None-P17-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\HomePlayer.exe
O87 - FAEL: "{0A7DD134-AF82-4366-8351-BA91CC01AF91}" [In-None-P6-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\VLC\vlc.exe
O87 - FAEL: "{FF6B9B43-98BC-489B-AFB5-A9AD12F8ED15}" [In-None-P17-TRUE] .(...) -- C:\Users\CELINE\Downloads\HomePlayer\VLC\vlc.exe
O87 - FAEL: "{BCF7499D-E28A-43F1-A60F-143661FCBAC3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{DC21E187-5077-40EE-B775-9389E144C5D5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{40CC02C6-68C3-456A-8904-17D8893D13A2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{EFB286B1-11DE-4C20-9990-531DADFCBF5E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "TCP Query User{2F5BDE80-4754-49E3-AB62-40F1D48DC2E3}C:\users\celine\appdata\local\popcorn time\nw.exe" [In-None-P6-TRUE] .(...) -- C:\users\celine\appdata\local\popcorn time\nw.exe
O87 - FAEL: "UDP Query User{F3BDD6F8-D07A-45B4-B4B2-DAD47FA8E6B0}C:\users\celine\appdata\local\popcorn time\nw.exe" [In-None-P17-TRUE] .(...) -- C:\users\celine\appdata\local\popcorn time\nw.exe
O87 - FAEL: "TCP Query User{6A743027-D650-477A-BA70-B27975D2901A}C:\users\celine\appdata\local\popcorn time\nw.exe" [In-None-P6-TRUE] .(...) -- C:\users\celine\appdata\local\popcorn time\nw.exe
O87 - FAEL: "UDP Query User{3C33A608-599F-4E38-A1B4-CE030B78C997}C:\users\celine\appdata\local\popcorn time\nw.exe" [In-None-P17-TRUE] .(...) -- C:\users\celine\appdata\local\popcorn time\nw.exe

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (27) - 92s

SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Demand [2015/08/12 20:25:56] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2011/05/26 00:09:58] [ 204288] (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe ©
SR - Auto [2015/08/12 16:58:34] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SR - Auto [2010/01/28 16:44:40] [ 249200] ConfigFree WiMAX Service (cfWiMAXService) . (.TOSHIBA CORPORATION.) - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe ©
SR - Auto [2009/03/10 18:51:20] [ 46448] ConfigFree Service (ConfigFree Service) . (.TOSHIBA CORPORATION.) - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe ©
SS - Auto [2015/09/01 09:30:50] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/09/01 09:30:50] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2012/11/13 21:06:43] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SS - Demand [2005/04/04 00:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SR - Auto [2015/05/21 10:48:50] [ 118048] YAC Service (iSafeService) . (.Elex do Brasil Participações Ltda.) - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.YetAnotherCleaner
SR - Auto [2015/09/10 08:04:32] [ 1380352] Numerical Order Lower Case (norunyki) . (...) - C:\Program Files (x86)\F3E07FC0-1441283256-11E0-A35F-E89A8F8FD5E3\knsjCC3F.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/09/04 09:05:35] [ 2731488] PUjAgu (PUjAgu) . (.Ratio Applications.) - C:\ProgramData\XOGpQlDRsq\PUjAgu.exe =>PUP.Optional.RatioApplications
SR - Auto [2015/08/12 13:04:22] [ 2255128] Rapport Management Service (RapportMgmtService) . (.IBM Corp..) - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
SR - Auto [2014/06/24 10:41:42] [ 1738168] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe ©
SR - Auto [2014/06/27 11:52:26] [ 2088408] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe ©
SR - Auto [2014/04/25 14:12:20] [ 171928] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe ©
SS - Auto [2014/12/11 10:30:48] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
SS - Demand [2015/06/10 11:11:26] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe ©
SS - Demand [2011/02/10 09:25:36] [ 112080] Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) . (.Toshiba Europe GmbH.) - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe ©
SR - Demand [2010/11/29 14:58:30] [ 54136] TMachInfo (TMachInfo) . (.TOSHIBA Corporation.) - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe ©
SR - Auto [2010/10/20 14:41:00] [ 138656] TOSHIBA Optical Disc Drive Service (TODDSrv) . (.TOSHIBA Corporation.) - C:\Windows\system32\TODDSrv.exe ©
SR - Auto [2010/12/09 17:45:26] [ 489384] TOSHIBA Power Saver (TosCoSrv) . (.TOSHIBA Corporation.) - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe ©
SR - Auto [2011/04/07 13:59:32] [ 294328] TOSHIBA eco Utility Service (TOSHIBA eco Utility Service) . (.TOSHIBA Corporation.) - C:\Program Files\Toshiba\TECO\TecoService.exe ©
SR - Demand [2010/12/08 15:42:54] [ 137632] TOSHIBA HDD SSD Alert Service (TOSHIBA HDD SSD Alert Service) . (.TOSHIBA Corporation.) - C:\Program Files\Toshiba\TOSHIBA HDD SSD Alert\TosSmartSrv.exe ©
SR - Demand [2011/04/05 19:38:16] [ 828336] TPCH Service (TPCHSrv) . (.TOSHIBA Corporation.) - C:\Program Files\Toshiba\TPHM\TPCHSrv.exe ©

---\\ Recherche de clés de registre Tracing (6) - 8s
HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASAPI32 =>PUP.Optional.TornTV
HKLM\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASMANCS =>PUP.Optional.TornTV
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\1ClickDownloader_RASAPI32 =>PUP.Optional.1ClickDownloader
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\1ClickDownloader_RASMANCS =>PUP.Optional.1ClickDownloader
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FLVPlayerSetup_RASAPI32 =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FLVPlayerSetup_RASMANCS =>PUP.Optional.FLVPlayer

---\\ Scan Additionnel (68) - 0s
C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.Elex
C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe =>PUP.Optional.Elex
C:\Program Files (x86)\F3E07FC0-1441283256-11E0-A35F-E89A8F8FD5E3\knsjCC3F.tmp =>PUP.Optional.CrossRider
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe =>PUP.Optional.Elex
C:\ProgramData\XOGpQlDRsq\PUjAgu.exe =>PUP.Optional.RatioApplications
C:\Users\CELINE\AppData\Local\gmsd_fr_005010083\upgmsd_fr_005010083.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\gmsd_fr_005010083\gmsd_fr_005010083.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\FileConverter_1.5\prxtbFile.dll =>Toolbar.Agent
HKLM\SYSTEM\CurrentControlSet\Services\iSafeService =>PUP.Optional.YetAnotherCleaner
C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.YetAnotherCleaner
HKLM\SYSTEM\CurrentControlSet\Services\norunyki =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\PUjAgu =>PUP.Optional.RatioApplications
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect =>PUP.Optional.AnyProtect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\dpcc_en_009010079_is1 =>PUP.Optional.DailyPCClean
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_fr_005010083_is1 =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iSafe =>PUP.Optional.Elex
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\TVTime =>PUP.Optional.RatioApplications
HKLM\SOFTWARE\Wow6432Node\FileConverter_1.5 =>Toolbar.Agent
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\MOBILEPCSTARTERKIT =>PUP.Optional.MobilePCStarterKit
HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\AppDataLow\Software\FileConverter_1.5 =>Toolbar.Agent
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Program Files (x86)\Elex-tech =>PUP.Optional.Elex
C:\Program Files (x86)\F3E07FC0-1441283256-11E0-A35F-E89A8F8FD5E3 =>PUP.Optional.CrossRider
C:\Program Files (x86)\FileConverter_1.5 =>Toolbar.Agent
C:\Program Files (x86)\gmsd_fr_005010083 =>PUP.Optional.CrossRider
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MOBILEPCSTARTERKIT =>PUP.Optional.MobilePCStarterKit
C:\ProgramData\6WdsManPro6 =>PUP.Optional.WdsManPro
C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro
C:\ProgramData\DWdsManProD =>PUP.Optional.WdsManPro
C:\ProgramData\eWdsManProe =>PUP.Optional.WdsManPro
C:\ProgramData\iWdsManProi =>PUP.Optional.WdsManPro
C:\ProgramData\OWdsManProO =>PUP.Optional.WdsManPro
C:\ProgramData\QWdsManProQ =>PUP.Optional.WdsManPro
C:\ProgramData\ZombieNews =>PUP.Optional.ZombieNews
C:\ProgramData\ZWdsManProZ =>PUP.Optional.WdsManPro
C:\Users\CELINE\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Users\CELINE\AppData\Roaming\Elex-tech =>PUP.Optional.Elex
C:\Users\CELINE\AppData\Local\gmsd_fr_005010083 =>PUP.Optional.CrossRider
C:\Users\CELINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
C:\Windows\Prefetch\DESK365.EXE-3AE48D4B.pf =>PUP.Optional.22Find
C:\Windows\Prefetch\PLUS-HD-2.2-CHROMEINSTALLER.E-3AC300FE.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.2-CODEDOWNLOADER.EX-2403C8AC.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.2-FIREFOXINSTALLER.-87C6B857.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.2-UPDATER.EXE-0607D2B3.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PRICORA-CHROMEINSTALLER.EXE-646DF196.pf =>PUP.Optional.Pricora
C:\Windows\Prefetch\PRICORA-CODEDOWNLOADER.EXE-4B807304.pf =>PUP.Optional.Pricora
C:\Windows\Prefetch\TORNTV 2-CODEDOWNLOADER.EXE-839BFC52.pf =>PUP.Optional.TornTV
C:\Windows\System32\drivers\iSafeNetFilter.sys =>PUP.Optional.YetAnotherCleaner
C:\Users\CELINE\AppData\Local\gmsd_fr_005010083\Download\myoffergroup_fr.exe =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASAPI32 =>PUP.Optional.TornTV
HKLM64\SOFTWARE\Microsoft\Tracing\Torntv Downloader_RASMANCS =>PUP.Optional.TornTV
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\1ClickDownloader_RASAPI32 =>PUP.Optional.1ClickDownloader
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\1ClickDownloader_RASMANCS =>PUP.Optional.1ClickDownloader
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FLVPlayerSetup_RASAPI32 =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FLVPlayerSetup_RASMANCS =>PUP.Optional.FLVPlayer

---\\ Récapitulatif des éléments trouvées sur votre station (33) - 0s
http://www.nicolascoolman.fr/pup-elex/ =>PUP.Optional.Elex
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.RatioApplications
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/blog =>Toolbar.Agent
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpaceSoundPro
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.YetAnotherCleaner
http://www.nicolascoolman.fr/pup-optional-dailypcclean/ =>PUP.Optional.DailyPCClean
http://www.nicolascoolman.fr/blog =>PUP.Optional.GamesDesktop
http://www.nicolascoolman.fr/blog =>PUP.Optional.MobilePCStarterKit
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordSurfer
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.ZombieNews
http://www.nicolascoolman.fr/hijacker-22find/ =>PUP.Optional.22Find
http://www.nicolascoolman.fr/adware-pricora/ =>PUP.Optional.Pricora
http://www.nicolascoolman.fr/hijacker-torntv/ =>PUP.Optional.TornTV
http://www.nicolascoolman.fr/blog =>PUP.Optional.BubbleSound
http://www.nicolascoolman.fr/pup-bubbledock/ =>PUP.Optional.BubbleDock
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/hijacker-qvo6/ =>PUP.Optional.Qvo6
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/adware-bandoo/ =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/spyware-vmntoolbar/ =>PUP.Optional.VMNToolbar
http://www.nicolascoolman.fr/pup-sweetim/ =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/pup-1clickdownloader/ =>PUP.Optional.1ClickDownloader
http://www.nicolascoolman.fr/blog =>PUP.Optional.FLVPlayer

~ End of the scan, 48187 items in 251 seconds (1056)(0)()

Publicité


Signaler le contenu de ce document

Publicité