cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.9.14.141 Par Nicolas Coolman (2015/09/12)
~ Démarré par Alan57 (Administrator) (2015/09/16 07:01:42)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Pas de fichier réseau
~ Mode: Scanner
~ Rapport: C:\Users\Alan57\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Alan57\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v45.0.2454.85
MSIE: Internet Explorer v11.0.9600.18036

---\\ Informations sur les produits Windows (8) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : 6Q4D6
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Windows Automatic Updates : OK

---\\ Logiciels de protection (1) - 1s
Windows Defender (Activate)

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8331.54 MB (79% free)
~ System Restore: Activé (Enable)
~ System drive C: has 1718 GB free of 1844 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: ALAN
~ User Name: Alan57
~ Logged in as Administrator

---\\ Enumération des unités disques (4) - 0s
~ Drive C: has 1718 GB free of 1844 GB (System)
~ Drive D: has 44 GB free of 61 GB
~ Drive E: has GB free of 0 GB
~ Drive K: has 3 GB free of 14 GB

---\\ Etat du Centre de Sécurité Windows (11) - 1s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [2501368] ©
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [54784] ©
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [145920] ©
[MD5.096A832FCF5A01003E96DD7FEE45618D] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2427392] ©
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [572416] ©
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [447488] ©
[MD5.A5675939CF0F99B20B5A3CFCC3C1B46A] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\System32\dnsapi.dll [657920] ©
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\Syswow64\dnsapi.dll [498688] ©
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19456] ©
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [563200] ©
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [26464] ©
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576] ©
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352] ©
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [134144] ©
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800] ©
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [108544] ©
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [142848] ©
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [401408] ©
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [282624] ©
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2025792] ©
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [94208] ©
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [120832] ©
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584] ©
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [107520] ©
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [310080] ©

---\\ Processus lancés (32) - 2s
[MD5.415695F5A54E91E869EEBFEA261361A6] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) -- C:\WINDOWS\system32\nvvsvc.exe [922912] [PID.936] ©
[MD5.A9D26626BEADF5A0641BF6B5095EF309] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [414496] [PID.964] ©
[MD5.7F5CD87CA5BDB4D83F992D8C77201483] - (.CyberLink - CyberLink Spark Media Server Monitor Servic.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952] [PID.1572] ©
[MD5.9FAF58E876A3B1DB3030A0A5805F2D86] - (.CyberLink - CyberLink Spark Media Server Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616] [PID.1612] ©
[MD5.B353F1834FCD36D77BE3F74992C147D4] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [634632] [PID.1716] ©
[MD5.5B7DE9D87B9D2713BDD6A53678DC2A49] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720] [PID.1752] ©
[MD5.E5DCAF3BA52C18B8C267B8525393750E] - (.Copyright (C) 2012-2013 - .) -- C:\Windows\runSW.exe [48856] [PID.1852]
[MD5.3ED2B00729E2D4F974C1418F1B2CDF60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe [245064] [PID.3796] ©
[MD5.042ED5CED9032D093CACF785BFA39D65] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe [305992] [PID.3804] ©
[MD5.7F7A03D03FA18A0DB2DAC37A8D620E7F] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168] [PID.2152] ©
[MD5.06A1E47AF06788E25A7A290164B1E434] - (.Intel Corporation - Intel(R) ME Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856] [PID.2060] ©
[MD5.E70FD0D2C95F559A17321D831875593D] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277824] [PID.3752] ©
[MD5.AA130938A27BB80A8B6438EF83232275] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1364256] [PID.1976] ©
[MD5.C485FB802F6C4A306B8F89BA087E5CA2] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [365376] [PID.960] ©
[MD5.9F778BA5129A23C7AEBCE965C69F5EA3] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1196832] [PID.4280] ©
[MD5.415695F5A54E91E869EEBFEA261361A6] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) -- C:\WINDOWS\system32\nvvsvc.exe [922912] [PID.5344] ©
[MD5.10E1BFE28D8C261646C1815A49C37639] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2450208] [PID.4224] ©
[MD5.22306E39EBA2D8ECF2EBE475C0057AE8] - (.Realtek - Switch USB2.0/USB3.0 for WinXP SP2+ ~ Win8..) -- C:\Windows\SwUSB.exe [454360] [PID.4528] ©
[MD5.F61140A7D41E2B3CB73D28A2F6ABC405] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848] [PID.632] ©
[MD5.775F47E28C96739D0B81DF8A46116EFB] - (...) -- C:\Users\Alan57\AppData\Roaming\cacaoweb\cacaoweb.exe [532784] [PID.5984] =>PUP.Optional.CacaoWeb
[MD5.630458699EEDA44B5AAE5DB467AF71A0] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [30878816] [PID.3448] ©
[MD5.BF86BC106E0F35BACC85DCF4A0C797A3] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22344224] [PID.3888] ©
[MD5.724CB7A116F7E1A67009D751BCF86586] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120] [PID.32] ©
[MD5.A2221900B57AEC20577996744FA4A56A] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296] [PID.2980] ©
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816] [PID.4440] ©
[MD5.FF4F87DCDAA5080281E0E70BB116086B] - (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376] [PID.1732] ©
[MD5.71738E5D624F00EFE56F7C35DB36267C] - (.Adobe Systems Incorporated - Adobe IPC Broker.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe [769904] [PID.1728] ©
[MD5.BF86BC106E0F35BACC85DCF4A0C797A3] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22344224] [PID.4260] ©
[MD5.4C2812958D3D4342FC21E47CC361D5C2] - (.Copyright © 2013 Adobe Systems, Inc. All rights reser - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe [4696432] [PID.6108]
[MD5.AE9BC27D095C2F26E082C4B3D25921FE] - (.Adobe Systems Incorporated - Adobe CEF Helper.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe [395120] [PID.4296] ©
[MD5.8EDC8091A87B0CCB5A580E38100BC99F] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504] [PID.4288] ©
[MD5.018B44D6E41ABDD08403E6B9EC3575B3] - (.Nicolas Coolman - ZHPDiag.) -- K:\NTETTOYAGE PC MEDION\ZHPDiag3.exe [1929728] [PID.600] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (17) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ads.ookla.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://c.speedtest.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.speedtest.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://android.clients.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.googleusercontent.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.googleapis.com/
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (18) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/ =>Toolbar.DeltaSearch
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Applications lancées au démarrage du système (11) - 0s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O4 - HKCU\..\Run: [cacaoweb] . (...) -- C:\Users\Alan57\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©
O4 - HKCU\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe ©
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe ©
O4 - HKLM\..\Wow6432Node\Run: [CLMLServer_For_P2G8] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe ©
O4 - HKLM\..\Wow6432Node\Run: [CLVirtualDrive] . (.CyberLink Corp. - CyberLink Virtual Drive.) -- C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe ©
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Adobe Creative Cloud] . (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ©
O4 - HKUS\S-1-5-21-1002142767-1880217941-747862732-1001\..\RunOnce: [WAB Migrate] . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files (x86)\Windows Mail\wab.exe ©

---\\ Raccourcis Global Startup (5) - 4s
O4 - GS\Desktop [Administrateur]: SpeedyPC Pro.lnk . (.SpeedyPC Software, Inc. - SpeedyPC.) C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe =>PUP.Optional.SpeedyPC
O4 - GS\Desktop [Alan57]: SpeedyPC Pro.lnk . (.SpeedyPC Software, Inc. - SpeedyPC.) C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe =>PUP.Optional.SpeedyPC
O4 - GS\Desktop [Invité]: SpeedyPC Pro.lnk . (.SpeedyPC Software, Inc. - SpeedyPC.) C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe =>PUP.Optional.SpeedyPC
O4 - GS\Desktop [UpdatusUser]: SpeedyPC Pro.lnk . (.SpeedyPC Software, Inc. - SpeedyPC.) C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe =>PUP.Optional.SpeedyPC
O4 - GS\CommonDesktop [Public]: YTD Video Downloader.lnk . (.GreenTree Applications SRL - YTD Video Downloader.) C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\ytd.exe =>

---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel (20) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©

---\\ Liste des services NT non Microsoft et non désactivés (15) - 1s
O23 - Service: CyberLink PowerDVD 10 MS Monitor Service (CyberLink PowerDVD 10 MS Monitor Service) . (.CyberLink - CyberLink Spark Media Server Monitor Servic.) - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe ©
O23 - Service: CyberLink PowerDVD 10 MS Service (CyberLink PowerDVD 10 MS Service) . (.CyberLink - CyberLink Spark Media Server Service.) - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe ©
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe ©
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe ©
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) - C:\WINDOWS\system32\nvvsvc.exe ©
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
O23 - Service: RunSwUSB (RunSwUSB) . (.Copyright (C) 2012-2013 - .) - C:\Windows\runSW.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ©
O23 - Service: @C:\Program Files (x86)\Windows Defender\MpAsDesc.dll,-310 (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (.not file.)

---\\ Tâches planifiées en automatique (14) - 3s
[MD5.00000000000000000000000000000000] [APT] [DSite] (...) -- C:\Users\Alan57\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE (.not file.) [0] =>PUP.Optional.SimpleSearches
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.5C9B001D8970C2DA36254A916F3DA8F7] [APT] [IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473] (...) -- C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368]
[MD5.5C9B001D8970C2DA36254A916F3DA8F7] [APT] [IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon] (...) -- C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368]
[MD5.16E1EA189D721E60D17D1BC8E0392702] [APT] [{820766BC-627D-4B3F-AA11-150193C0B892}] (.Google Inc..) -- c:\program files (x86)\Google\Chrome\application\chrome.exe [815944] ©
O39 - APT: DSite - (...) -- C:\WINDOWS\Tasks\DSite.job [300] =>PUP.Optional.SimpleSearches
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1082] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1086] ©
O39 - APT: DSite - (...) -- C:\WINDOWS\System32\Tasks\DSite [2638] =>PUP.Optional.SimpleSearches
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3822] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4058] ©
O39 - APT: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - (...) -- C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 [3718]
O39 - APT: IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon - (...) -- C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon [3476]

---\\ Logiciels installés (74) - 3s
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client ©
O42 - Logiciel: WinRAR 4.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: CyberLink PowerRecover - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5} ©
O42 - Logiciel: Paint.NET v3.5.10 - (.dotPDN LLC.) [HKLM][64Bits] -- {529125EF-E3AC-4B74-97E6-F688A7C0F1C0} ©
O42 - Logiciel: Vegas Pro 12.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {8830ADE1-1D35-11E2-B7CA-F04DA23A5C58} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {8AAA8780-1D35-11E2-A3A6-F04DA23A5C58} ©
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {977D1ABF-4089-4CA7-BA33-CC75808B7ACE} ©
O42 - Logiciel: NVIDIA Pilote 3D Vision 331.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision ©
O42 - Logiciel: NVIDIA Pilote graphique 331.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA PhysX System Software 9.12.0807 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Mises à jour NVIDIA 1.15.2 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: NVIDIA HD Audio Driver 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver ©
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} ©
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud ©
O42 - Logiciel: Audacity 2.0.3 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 ©
O42 - Logiciel: Landwirtschafts Simulator 2011 - (.GIANTS Software.) [HKLM][64Bits] -- FarmingSimulator2011DE_is1 ©
O42 - Logiciel: Game Capture HD v2.3.3.38 - (.Elgato Systems.) [HKLM][64Bits] -- Game Capture HD v2.3.3.38 ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: HandBrake 0.9.9.1 - (...) [HKLM][64Bits] -- HandBrake
O42 - Logiciel: HD Call Recorder for Skype 6.0.1 - (.HDSoft.) [HKLM][64Bits] -- HD Call Recorder for Skype
O42 - Logiciel: CyberLink PowerRecover - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5} ©
O42 - Logiciel: Medion Home Cinema 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7} ©
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo ©
O42 - Logiciel: Game Capture HD60 v2.1.1.3 - (.Elgato Systems.) [HKLM][64Bits] -- Software_Elgato_Game Capture HD60 ©
O42 - Logiciel: VLC media player 2.1.0 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F} ©
O42 - Logiciel: OpenOffice 4.1.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {121727D5-FDF3-4723-BA57-EB383440ED72} ©
O42 - Logiciel: Intel(R) Update Manager - (.Intel Corporation.) [HKLM][64Bits] -- {12914061-EB9B-4AE7-AC7E-0B8A607C7DF4} ©
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {12ADFB82-D5A3-43E4-B2F4-FCD9B690315B} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {13153D0E-EC16-4BB7-B9EA-E622E357F353} ©
O42 - Logiciel: YTD Video Downloader 4.7.2 - (.GreenTree Applications SRL.) [HKLM][64Bits] -- {1a413f37-ed88-4fec-9666-5c48dc4b7bb7} =>PUP.Optional.GreenTreeApp
O42 - Logiciel: Minecraft - (.Mojang.) [HKLM][64Bits] -- {1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} ©
O42 - Logiciel: Fotogalerija - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F0C818D-4A41-4E40-BAFB-BB940C82A518} ©
O42 - Logiciel: Medion Home Cinema 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} ©
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF} ©
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} ©
O42 - Logiciel: Elgato Game Capture HD - (.Elgato Systems GmbH.) [HKLM][64Bits] -- {3093C19A-C88B-4D1D-98A9-41F537152C37}
O42 - Logiciel: Fotogalerie - (.Microsoft Corporation.) [HKLM][64Bits] -- {3CBD94C1-BA15-488C-888B-D8DD296CC6DC} ©
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} ©
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090} ©
O42 - Logiciel: SpeedyPC Pro - (.SpeedyPC Software.) [HKLM][64Bits] -- {604CD5A1-4520-4844-B064-A3D884B77E91} =>PUP.Optional.SpeedyPC
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} ©
O42 - Logiciel: Galeria fotografii - (.Microsoft Corporation.) [HKLM][64Bits] -- {7595CAD2-87D0-4D01-AC02-3FDD3A891BB8} ©
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} ©
O42 - Logiciel: Galería de fotos - (.Microsoft Corporation.) [HKLM][64Bits] -- {8F7FECEC-088F-431D-A5FB-2B59E1E69943} ©
O42 - Logiciel: Skype Recorder - (.Extralabs Software.) [HKLM][64Bits] -- {996ACFC9-6BFD-4318-8CE5-31E36FBB386F}_is1
O42 - Logiciel: Fotogalleriet - (.Microsoft Corporation.) [HKLM][64Bits] -- {9F470E17-4FC3-4091-A508-D5347A16A2B9} ©
O42 - Logiciel: Συλλογή φωτογραφιών - (.Microsoft Corporation.) [HKLM][64Bits] -- {A19A8C25-272A-4CD6-8BA8-3772321A021B} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {AF312B06-5C5C-468E-89B3-BE6DE2645722} ©
O42 - Logiciel: REALTEK Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {B63CCD1C-A133-4DF8-8306-DA0387231152} ©
O42 - Logiciel: Valokuvavalikoima - (.Microsoft Corporation.) [HKLM][64Bits] -- {C32F4F5A-C9FB-427C-9F6F-9DB157611FFF} ©
O42 - Logiciel: CyberLink LabelPrint 2.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
O42 - Logiciel: MP3 Skype Recorder - (.Alexander Nikiforov.) [HKLM][64Bits] -- {CB606F47-7D0E-40DF-95BB-0E5413A1295F}
O42 - Logiciel: Raccolta foto - (.Microsoft Corporation.) [HKLM][64Bits] -- {D04EBB49-C985-4A38-8695-62000861293A} ©
O42 - Logiciel: Fotoğraf Galerisi - (.Microsoft Corporation.) [HKLM][64Bits] -- {DB7B6508-2AAB-4F26-99D4-74559A2F5E42} ©
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Fotogalleri - (.Microsoft Corporation.) [HKLM][64Bits] -- {E354D495-5DA4-4CCF-AB39-080F6A4141BE} ©
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384} ©
O42 - Logiciel: CyberLink PowerDVD Copy 1.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {E3D04529-6EDB-11D8-A372-0050BAE317E1} ©
O42 - Logiciel: Fotótár - (.Microsoft Corporation.) [HKLM][64Bits] -- {E50E3DBC-46AA-4827-B2A6-F995D81DF526} ©
O42 - Logiciel: Mediathek - (.Medion.) [HKLM][64Bits] -- {EFFED0C0-5299-422E-AFE6-8B8066D18A2A} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Galeria de Fotografias - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5E338CE-E1C6-4F7D-8300-44DBD05B9F14} ©
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} ©
O42 - Logiciel: Skype Packages - (...) [HKCU][64Bits] -- Skype Packages

---\\ HKCU & HKLM Software Keys (85) - 3s
HKLM\SOFTWARE\Wow6432Node\5e578c8abd3ebe10 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\DataMngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Elgato
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBouster
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MDC
HKLM\SOFTWARE\Wow6432Node\Mojang
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\REvision
HKLM\SOFTWARE\Wow6432Node\RtWLan
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\SpeedyPC Software =>PUP.Optional.SpeedyPC
HKLM\SOFTWARE\Wow6432Node\SwUSB
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\cacaoweb =>PUP.Optional.CacaoWeb
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DataMngr_Toolbar =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\DSiteProducts =>PUP.Optional.DSite
HKCU\SOFTWARE\Elgato Systems
HKCU\SOFTWARE\Elgato Systems GmbH
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GreenTree Applications
HKCU\SOFTWARE\Gyazo
HKCU\SOFTWARE\HDSoft
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBouster
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mojang
HKCU\SOFTWARE\mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\nuevos-programas.com =>PUP.Optional.Generic
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Paint.NET
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\SpeedyPC Software =>PUP.Optional.SpeedyPC
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\UB658
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contenu des dossiers Programmes (200) - 6s
O43 - CFD: 2013/06/13 21:51:02 - [] D -- C:\Program Files (x86)\802.11g USB2.0 adapter
O43 - CFD: 2015/09/05 21:48:43 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2013/02/28 13:55:54 - [0] D -- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 2013/07/14 20:13:23 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 2015/09/14 23:13:45 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 2014/10/28 22:30:37 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2013/02/28 14:25:34 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2014/12/25 03:31:14 - [] D -- C:\Program Files (x86)\Elgato
O43 - CFD: 2015/09/14 17:15:36 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2013/09/30 17:34:18 - [] D -- C:\Program Files (x86)\GreenTree Applications
O43 - CFD: 2015/08/13 14:39:42 - [] D -- C:\Program Files (x86)\Handbrake
O43 - CFD: 2013/12/22 15:41:36 - [] D -- C:\Program Files (x86)\HDSoft
O43 - CFD: 2013/07/04 23:11:54 - [] D -- C:\Program Files (x86)\Image Converter
O43 - CFD: 2015/09/14 23:13:21 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2014/05/25 12:32:20 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/09/14 23:14:38 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2013/07/26 14:07:26 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2013/07/25 22:30:42 - [] D -- C:\Program Files (x86)\Labtec
O43 - CFD: 2013/10/12 11:33:46 - [] D -- C:\Program Files (x86)\Landwirtschafts Simulator 2011
O43 - CFD: 2012/11/05 19:51:51 - [] D -- C:\Program Files (x86)\Mediathek
O43 - CFD: 2015/09/05 11:49:58 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2012/11/05 19:36:46 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/07/03 15:58:32 - [] D -- C:\Program Files (x86)\Minecraft
O43 - CFD: 2013/06/03 20:00:23 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/01/26 19:52:59 - [] D -- C:\Program Files (x86)\MP3 Skype Recorder
O43 - CFD: 2014/10/28 11:53:48 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2013/02/11 16:58:13 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2014/10/28 23:32:30 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/01/11 14:50:53 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 2015/09/14 21:25:12 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2013/06/13 21:59:45 - [] D -- C:\Program Files (x86)\REALTEK 11n USB Wireless LAN Driver
O43 - CFD: 2015/09/14 23:13:45 - [] D -- C:\Program Files (x86)\REALTEK USB Wireless LAN Driver
O43 - CFD: 2014/10/28 11:53:48 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2013/11/04 20:26:39 - [] D -- C:\Program Files (x86)\ScreenshotCaptor
O43 - CFD: 2015/07/17 15:25:43 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2013/10/26 14:25:21 - [] D -- C:\Program Files (x86)\Skype Recorder
O43 - CFD: 2013/07/04 10:21:06 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 2014/09/30 18:21:12 - [] D -- C:\Program Files (x86)\SpeedyPC Software =>PUP.Optional.SpeedyPC
O43 - CFD: 2013/02/28 14:17:42 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2013/11/02 14:51:45 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/09/14 23:14:37 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2012/11/05 19:36:45 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2015/08/05 21:45:31 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/08/05 21:45:31 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/08/05 21:45:31 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/08/05 21:45:31 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/08/05 21:45:31 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2014/10/28 12:04:58 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/08/05 21:46:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/08/05 21:46:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/05 21:46:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/10/28 12:08:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover
O43 - CFD: 2014/12/25 03:31:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato
O43 - CFD: 2014/09/24 20:10:43 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Embedded Lockdown Manager
O43 - CFD: 2014/10/28 12:08:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/09/14 17:15:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 2015/08/13 14:07:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 2014/10/28 12:08:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeCinema
O43 - CFD: 2014/10/28 12:08:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2014/10/28 12:08:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Landwirtschafts Simulator 2011
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/09/04 19:41:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/07/03 15:57:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
O43 - CFD: 2014/10/29 11:30:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2015/01/11 14:51:16 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
O43 - CFD: 2014/10/28 22:30:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2014/10/28 12:08:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Recorder
O43 - CFD: 2014/10/28 12:05:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 2013/08/22 17:36:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/08/05 21:46:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/09/24 17:03:53 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/08/12 19:23:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 2014/10/28 12:08:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2014/10/28 12:08:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/10/28 12:08:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
O43 - CFD: 2015/09/05 21:51:31 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2013/06/03 19:56:14 - [0] D -- C:\ProgramData\Babylon =>PUP.Optional.Babylon
O43 - CFD: 2014/10/28 12:19:10 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2013/02/28 14:21:41 - [] D -- C:\ProgramData\CLSK
O43 - CFD: 2013/06/03 20:43:16 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/07/06 21:04:29 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 2014/09/22 19:25:24 - [] D -- C:\ProgramData\Gyazo
O43 - CFD: 2013/02/28 14:25:16 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 2014/05/25 19:29:10 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2014/05/25 12:32:06 - [] D -- C:\ProgramData\Intel(R) Update Manager
O43 - CFD: 2013/06/03 20:41:37 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2014/10/28 12:19:10 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2014/12/12 00:22:46 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/10/28 12:19:10 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/09/14 23:16:49 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/10/28 23:32:43 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2012/11/05 19:52:34 - [] D -- C:\ProgramData\PowerRecover
O43 - CFD: 2014/10/28 12:05:03 - [] D -- C:\ProgramData\PRICache
O43 - CFD: 2015/06/30 18:25:59 - [] D -- C:\ProgramData\QuickTime
O43 - CFD: 2014/01/18 17:36:31 - [0] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/08/05 21:45:31 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/07/17 15:25:51 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/07/04 10:21:06 - [] D -- C:\ProgramData\Sony
O43 - CFD: 2014/09/30 18:21:15 - [] D -- C:\ProgramData\SpeedyPC Software =>PUP.Optional.SpeedyPC
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/07/26 14:07:40 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2013/10/23 11:42:22 - [] D -- C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
O43 - CFD: 2013/10/26 14:25:24 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2014/02/14 22:46:12 - [] D -- C:\ProgramData\YTD Video Downloader
O43 - CFD: 2015/09/05 21:51:33 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2013/02/28 14:23:36 - [] D -- C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 2013/02/28 14:15:48 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2013/02/28 13:55:51 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 2013/07/26 14:07:40 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2014/10/28 12:04:55 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2013/02/28 13:38:08 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/10/28 22:30:37 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2014/09/30 18:21:15 - [] D -- C:\Program Files (x86)\Common Files\SpeedyPC Software =>PUP.Optional.SpeedyPC
O43 - CFD: 2015/08/05 21:45:31 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2012/11/05 19:36:27 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/08/27 13:59:56 - [] D -- C:\Users\Alan57\AppData\Roaming\.minecraft
O43 - CFD: 2013/06/03 20:02:18 - [] D -- C:\Users\Alan57\AppData\Roaming\0A1Q1B1P1T1C1R1M1P1B
O43 - CFD: 2015/09/05 21:51:33 - [] D -- C:\Users\Alan57\AppData\Roaming\Adobe
O43 - CFD: 2015/04/17 12:28:39 - [] D -- C:\Users\Alan57\AppData\Roaming\Audacity
O43 - CFD: 2013/06/03 19:56:14 - [] D -- C:\Users\Alan57\AppData\Roaming\Babylon =>PUP.Optional.Babylon
O43 - CFD: 2014/07/01 20:25:19 - [] D -- C:\Users\Alan57\AppData\Roaming\Betcat =>PUP.Optional.Betcat
O43 - CFD: 2015/09/14 23:13:23 - [] D -- C:\Users\Alan57\AppData\Roaming\cacaoweb =>PUP.Optional.CacaoWeb
O43 - CFD: 2013/11/02 14:45:28 - [] D -- C:\Users\Alan57\AppData\Roaming\CyberLink
O43 - CFD: 2013/11/04 20:24:50 - [] D -- C:\Users\Alan57\AppData\Roaming\DonationCoder
O43 - CFD: 2014/09/30 18:21:29 - [] D -- C:\Users\Alan57\AppData\Roaming\DriverCure =>PUP.Optional.Paretologic
O43 - CFD: 2015/09/05 21:45:57 - [] D -- C:\Users\Alan57\AppData\Roaming\Dropbox
O43 - CFD: 2013/07/04 23:11:57 - [] D -- C:\Users\Alan57\AppData\Roaming\DSite =>PUP.Optional.SimpleSearches
O43 - CFD: 2013/06/04 20:16:06 - [] D -- C:\Users\Alan57\AppData\Roaming\Elgato
O43 - CFD: 2014/09/14 09:28:55 - [] D -- C:\Users\Alan57\AppData\Roaming\Gyazo
O43 - CFD: 2015/08/13 14:44:12 - [] D -- C:\Users\Alan57\AppData\Roaming\HandBrake
O43 - CFD: 2013/12/22 15:41:41 - [0] D -- C:\Users\Alan57\AppData\Roaming\HDSoft
O43 - CFD: 2014/10/28 12:21:42 - [] D -- C:\Users\Alan57\AppData\Roaming\Identities
O43 - CFD: 2014/01/03 09:23:24 - [] D -- C:\Users\Alan57\AppData\Roaming\iFree
O43 - CFD: 2013/07/05 13:00:46 - [] D -- C:\Users\Alan57\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl
O43 - CFD: 2013/06/03 18:55:14 - [] D -- C:\Users\Alan57\AppData\Roaming\Intel Corporation
O43 - CFD: 2013/06/03 19:44:44 - [] D -- C:\Users\Alan57\AppData\Roaming\Macromedia
O43 - CFD: 2015/02/12 23:38:06 - [] SD -- C:\Users\Alan57\AppData\Roaming\Microsoft
O43 - CFD: 2015/01/26 19:53:01 - [] D -- C:\Users\Alan57\AppData\Roaming\MP3SkypeRecorder
O43 - CFD: 2013/07/04 10:24:01 - [] D -- C:\Users\Alan57\AppData\Roaming\NVIDIA
O43 - CFD: 2015/01/11 14:58:17 - [] D -- C:\Users\Alan57\AppData\Roaming\OpenOffice
O43 - CFD: 2014/01/18 19:03:43 - [] D -- C:\Users\Alan57\AppData\Roaming\PDAppFlex
O43 - CFD: 2013/07/04 10:23:59 - [0] D -- C:\Users\Alan57\AppData\Roaming\Publish Providers
O43 - CFD: 2015/09/15 21:54:44 - [] D -- C:\Users\Alan57\AppData\Roaming\Skype
O43 - CFD: 2015/03/28 01:00:31 - [] D -- C:\Users\Alan57\AppData\Roaming\Sony
O43 - CFD: 2014/01/11 00:31:04 - [] D -- C:\Users\Alan57\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 2014/09/30 18:21:29 - [] D -- C:\Users\Alan57\AppData\Roaming\SpeedyPC Software =>PUP.Optional.SpeedyPC
O43 - CFD: 2015/09/14 22:44:33 - [] D -- C:\Users\Alan57\AppData\Roaming\TS3Client
O43 - CFD: 2015/08/12 22:42:42 - [] D -- C:\Users\Alan57\AppData\Roaming\vlc
O43 - CFD: 2014/07/01 20:25:19 - [] D -- C:\Users\Alan57\AppData\Roaming\Web Cake =>PUP.Optional.WebCake
O43 - CFD: 2013/07/04 10:22:08 - [] D -- C:\Users\Alan57\AppData\Roaming\WinRAR
O43 - CFD: 2015/09/16 07:01:57 - [] D -- C:\Users\Alan57\AppData\Roaming\ZHP
O43 - CFD: 2014/07/25 14:13:04 - [] D -- C:\Users\Alan57\AppData\Roaming\᷍Adobe
O43 - CFD: 2015/09/05 11:55:24 - [] D -- C:\Users\Alan57\AppData\Local\Adobe
O43 - CFD: 2015/01/26 19:53:01 - [] D -- C:\Users\Alan57\AppData\Local\Alexander_Nikiforov
O43 - CFD: 2014/10/28 12:02:15 - [0] SHD -- C:\Users\Alan57\AppData\Local\Application Data
O43 - CFD: 2013/06/03 18:58:14 - [] D -- C:\Users\Alan57\AppData\Local\Apps
O43 - CFD: 2014/03/12 23:19:14 - [] D -- C:\Users\Alan57\AppData\Local\Blizzard Entertainment
O43 - CFD: 2015/09/14 22:17:33 - [] D -- C:\Users\Alan57\AppData\Local\CrashDumps
O43 - CFD: 2013/06/07 23:24:36 - [] D -- C:\Users\Alan57\AppData\Local\Cyberlink
O43 - CFD: 2015/09/14 20:41:22 - [] D -- C:\Users\Alan57\AppData\Local\Diagnostics
O43 - CFD: 2015/09/05 22:20:19 - [] D -- C:\Users\Alan57\AppData\Local\Dropbox
O43 - CFD: 2015/09/14 20:25:01 - [] D -- C:\Users\Alan57\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/03/05 18:47:55 - [] SHD -- C:\Users\Alan57\AppData\Local\EmieBrowserModeList
O43 - CFD: 2014/10/28 22:01:45 - [] SHD -- C:\Users\Alan57\AppData\Local\EmieSiteList
O43 - CFD: 2014/10/28 22:01:45 - [] SHD -- C:\Users\Alan57\AppData\Local\EmieUserList
O43 - CFD: 2015/09/14 17:15:38 - [] D -- C:\Users\Alan57\AppData\Local\Google
O43 - CFD: 2015/08/01 12:44:55 - [] D -- C:\Users\Alan57\AppData\Local\GWX
O43 - CFD: 2014/10/28 12:02:15 - [0] SHD -- C:\Users\Alan57\AppData\Local\Historique
O43 - CFD: 2015/09/14 16:54:14 - [] D -- C:\Users\Alan57\AppData\Local\IsolatedStorage
O43 - CFD: 2014/10/28 12:23:51 - [] D -- C:\Users\Alan57\AppData\Local\Microsoft
O43 - CFD: 2014/11/12 12:20:17 - [] D -- C:\Users\Alan57\AppData\Local\Packages
O43 - CFD: 2014/03/11 13:47:07 - [] D -- C:\Users\Alan57\AppData\Local\Paint.NET
O43 - CFD: 2013/06/03 18:54:12 - [] D -- C:\Users\Alan57\AppData\Local\Power2Go8
O43 - CFD: 2013/07/11 15:33:41 - [] D -- C:\Users\Alan57\AppData\Local\Programs
O43 - CFD: 2014/03/10 13:04:42 - [] D -- C:\Users\Alan57\AppData\Local\Skype
O43 - CFD: 2013/07/04 10:23:55 - [] D -- C:\Users\Alan57\AppData\Local\Sony
O43 - CFD: 2015/09/16 07:00:38 - [] D -- C:\Users\Alan57\AppData\Local\Temp
O43 - CFD: 2014/10/28 12:02:15 - [0] SHD -- C:\Users\Alan57\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/11/04 23:15:17 - [] D -- C:\Users\Alan57\AppData\Local\ub65x
O43 - CFD: 2013/06/11 15:38:36 - [] D -- C:\Users\Alan57\AppData\Local\VirtualStore
O43 - CFD: 2014/07/21 00:20:23 - [] D -- C:\Users\Alan57\AppData\Local\Windows Live
O43 - CFD: 2014/10/28 12:03:03 - [] RD -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/01 10:00:58 - [] RD -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/09/07 12:24:10 - [0] D -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/08/13 14:39:40 - [0] D -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 2014/10/28 12:08:10 - [] D -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HDSoft
O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/10/28 12:03:03 - [] D -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedyPC Software =>PUP.Optional.SpeedyPC
O43 - CFD: 2015/09/05 21:45:42 - [] RD -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/10/28 12:03:03 - [] RD -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/10/28 12:08:10 - [] D -- C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Derniers fichiers créés dans Windows Prefetcher (1) - 16s
O45 - LFCP:[MD5.33B3F2E6183F3A10355A393E840485B1] 2015/09/16 06:58:51 A -- C:\WINDOWS\Prefetch\CACAOWEB.EXE-209A8496.pf =>PUP.Optional.CacaoWeb

---\\ Liste des pilotes du système (39) - 7s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896] ©
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176] ©
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200] ©
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] ©
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952] ©
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016] ©
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] ©
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] ©
O58 - SDL:2012/06/25 12:24:50 A . (.CyberLink - It is a virtual device driver which could c.) -- C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [92536] ©
O58 - SDL:2012/11/12 13:12:04 A . (.UB658 - AVSTREAM driver.) -- C:\WINDOWS\System32\drivers\ElgatoGC658.sys [50288] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024] ©
O58 - SDL:2012/07/03 00:16:02 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [62784] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] ©
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568] ©
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320] ©
O58 - SDL:2012/08/16 15:33:42 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [645952] ©
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248] ©
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] ©
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536] ©
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672] ©
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] ©
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] ©
O58 - SDL:2012/07/03 17:25:16 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda64v.sys [189288] ©
O58 - SDL:2013/10/28 13:53:10 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [12572960] ©
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] ©
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288] ©
O58 - SDL:2013/08/15 07:28:42 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [830680] ©
O58 - SDL:2012/08/21 18:34:12 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4106256] ©
O58 - SDL:2015/08/05 11:16:44 A . (.Realtek Semiconductor Corporation - Realtek WLAN USB NDIS Driver 37762.) -- C:\WINDOWS\System32\drivers\rtwlanu.sys [3860224] ©
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] ©
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] ©
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800] ©
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] ©

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (2) - 23s
O61 - LFC: 2015/09/16 06:58:44 A . (..) -- C:\Users\Alan57\Desktop\cacaoweb.exe [532784] =>PUP.Optional.CacaoWeb
O61 - LFC: 2015/09/15 18:45:20 A . (..) -- C:\Users\Alan57\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]

---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Recherche d'infection sur les navigateurs (4) - 0s
O69 - SBI: SearchScopes [HKCU] {00529AE5-DEF1-4A52-AA44-DFB74FCF7CEF} - (Yahoo! Search) - http://fr.search.yahoo.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com/ =>Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {97CB0378-4AD3-4D74-BAED-9FDD48C1C11A} - (Bing) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (34) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\WINDOWS\System32\aelupsvc.dll [214528] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [329216] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1360896] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [1084416] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31744] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [110080] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [110592] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1265152] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [230400] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\WINDOWS\system32\mmcss.dll [71168] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [135168] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [228864] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [84992] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [101376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [348672] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [1639424] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [59392] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [166400] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [102912] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [542208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73728] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [3705344] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [933376] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] ©

---\\ Liste des exceptions du parefeu Windows (12) - 2s
O87 - FAEL: "UDP Query User{877A036E-0B8F-49BB-9605-42B39FAB2203}C:\users\alan57\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\alan57\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "TCP Query User{24368395-9293-43C0-915E-35B5F04358FD}C:\users\alan57\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\alan57\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "{202A45A7-4FEB-46E3-87F4-18F894AA523D}" [In-None-P17-TRUE] .(...) -- C:\Users\Alan57\AppData\Roaming\Dropbox\bin\Dropbox.exe (.not file.)
O87 - FAEL: "{C4EDF10A-6464-4AE5-8016-A34C4E07F1D3}" [In-None-P6-TRUE] .(...) -- C:\Users\Alan57\AppData\Roaming\Dropbox\bin\Dropbox.exe (.not file.)
O87 - FAEL: "{F14EB07E-A48C-4596-8E4E-5960196138CA}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (.not file.)
O87 - FAEL: "{06E02701-2477-4811-AD55-9C1F79BD6AC3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (.not file.)
O87 - FAEL: "TCP Query User{29114754-60DD-4DBB-80EF-92DC33D7C032}C:\users\alan57\appdata\roaming\dropbox\bin\dropbox.exe" [In-None-P6-TRUE] .(...) -- C:\users\alan57\appdata\roaming\dropbox\bin\dropbox.exe (.not file.)
O87 - FAEL: "UDP Query User{E5B37A00-0E30-404F-9CCA-E971787DD4F9}C:\users\alan57\appdata\roaming\dropbox\bin\dropbox.exe" [In-None-P17-TRUE] .(...) -- C:\users\alan57\appdata\roaming\dropbox\bin\dropbox.exe (.not file.)
O87 - FAEL: "TCP Query User{735C2E84-24E2-462A-A716-8BB959E75787}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P6-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe
O87 - FAEL: "UDP Query User{AA85BD51-9E80-4BA1-82D2-6EDF8B530685}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P17-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe
O87 - FAEL: "TCP Query User{B25A0818-D663-4734-A632-1AC760D3D983}C:\users\alan57\appdata\roaming\cacaoweb\cacaonew4d7483.exe" [In-None-P6-TRUE] .(...) -- C:\users\alan57\appdata\roaming\cacaoweb\cacaonew4d7483.exe (.not file.) =>PUP.Optional.CacaoWeb
O87 - FAEL: "UDP Query User{2B95133A-860B-47D4-95B1-1DEA1C4754DE}C:\users\alan57\appdata\roaming\cacaoweb\cacaonew4d7483.exe" [In-None-P17-TRUE] .(...) -- C:\users\alan57\appdata\roaming\cacaoweb\cacaonew4d7483.exe (.not file.) =>PUP.Optional.CacaoWeb

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (17) - 9s

SR - Auto [2011/04/13 17:37:04] [ 70952] CyberLink PowerDVD 10 MS Monitor Service (CyberLink PowerDVD 10 MS Monitor Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe ©
SR - Auto [2011/04/13 17:37:06] [ 312616] CyberLink PowerDVD 10 MS Service (CyberLink PowerDVD 10 MS Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe ©
SS - Auto [2015/09/04 19:42:13] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/09/04 19:42:13] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [2012/08/16 15:37:50] [ 7168] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe ©
SR - Auto [2012/06/19 21:10:34] [ 634632] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe ©
SR - Auto [2012/07/19 19:00:39] [ 129856] Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe ©
SS - Demand [2014/02/28 11:32:36] [ 174368] Intel(R) Update Manager (iumsvc) . (...) - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
SR - Auto [2012/07/19 19:00:29] [ 166720] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
SR - Auto [2012/07/19 19:00:52] [ 277824] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
SR - Auto [2013/10/23 10:20:05] [ 922912] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe ©
SR - Auto [2013/10/28 13:52:30] [ 1364256] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
SR - Auto [2013/10/18 16:42:34] [ 48856] RunSwUSB (RunSwUSB) . (.Copyright (C) 2012-2013.) - C:\Windows\runSW.exe
SS - Auto [2014/12/11 10:30:48] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
SR - Auto [2013/10/23 04:02:32] [ 414496] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
SR - Auto [2012/07/19 19:00:54] [ 365376] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ©

---\\ Scan Additionnel (34) - 0s
C:\Users\Alan57\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
C:\WINDOWS\Tasks\DSite.job =>PUP.Optional.SimpleSearches
C:\WINDOWS\System32\Tasks\DSite =>PUP.Optional.SimpleSearches
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7} =>PUP.Optional.GreenTreeApp
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{604CD5A1-4520-4844-B064-A3D884B77E91} =>PUP.Optional.SpeedyPC
HKLM\SOFTWARE\Wow6432Node\5e578c8abd3ebe10 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\DataMngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBouster
HKLM\SOFTWARE\Wow6432Node\SpeedyPC Software =>PUP.Optional.SpeedyPC
HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution
HKCU\SOFTWARE\cacaoweb =>PUP.Optional.CacaoWeb
HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DataMngr_Toolbar =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DSiteProducts =>PUP.Optional.DSite
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBouster
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\nuevos-programas.com =>PUP.Optional.Generic
HKCU\SOFTWARE\SpeedyPC Software =>PUP.Optional.SpeedyPC
C:\Program Files (x86)\SpeedyPC Software =>PUP.Optional.SpeedyPC
C:\ProgramData\Babylon =>PUP.Optional.Babylon
C:\ProgramData\SpeedyPC Software =>PUP.Optional.SpeedyPC
C:\ProgramData\Tarma Installer =>PUP.Optional.Tarma
C:\Program Files (x86)\Common Files\SpeedyPC Software =>PUP.Optional.SpeedyPC
C:\Users\Alan57\AppData\Roaming\Babylon =>PUP.Optional.Babylon
C:\Users\Alan57\AppData\Roaming\Betcat =>PUP.Optional.Betcat
C:\Users\Alan57\AppData\Roaming\cacaoweb =>PUP.Optional.CacaoWeb
C:\Users\Alan57\AppData\Roaming\DriverCure =>PUP.Optional.Paretologic
C:\Users\Alan57\AppData\Roaming\DSite =>PUP.Optional.SimpleSearches
C:\Users\Alan57\AppData\Roaming\SpeedyPC Software =>PUP.Optional.SpeedyPC
C:\Users\Alan57\AppData\Roaming\Web Cake =>PUP.Optional.WebCake
C:\Users\Alan57\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedyPC Software =>PUP.Optional.SpeedyPC
C:\WINDOWS\Prefetch\CACAOWEB.EXE-209A8496.pf =>PUP.Optional.CacaoWeb
C:\Users\Alan57\Desktop\cacaoweb.exe =>PUP.Optional.CacaoWeb

---\\ Récapitulatif des éléments trouvées sur votre station (17) - 0s
http://www.nicolascoolman.fr/pup-cacaoweb/ =>PUP.Optional.CacaoWeb
http://www.nicolascoolman.fr/toolbar-deltasearch/ =>Toolbar.DeltaSearch
http://www.nicolascoolman.fr/28224126-pup-speedypc/ =>PUP.Optional.SpeedyPC
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimpleSearches
http://www.nicolascoolman.fr/blog =>PUP.Optional.GreenTreeApp
http://www.nicolascoolman.fr/blog =>PUP.Optional.Heuristic
http://www.nicolascoolman.fr/pup-babylon/ =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBouster
http://www.nicolascoolman.fr/hijacker-babsolution/ =>PUP.Optional.BabSolution
http://www.nicolascoolman.fr/hijacker-dsite/ =>PUP.Optional.DSite
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/pup-tarma/ =>PUP.Optional.Tarma
http://www.nicolascoolman.fr/blog =>PUP.Optional.Betcat
http://www.nicolascoolman.fr/blog =>PUP.Optional.Paretologic
http://www.nicolascoolman.fr/adware-webcake/ =>PUP.Optional.WebCake

~ End of the scan, 28661 items in 185 seconds (773)(0)()

Publicité


Signaler le contenu de ce document

Publicité