cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.11.18.170 Par Nicolas Coolman (2015/11/18)
~ Démarré par Sculteur (Administrator) (2015/11/20 15:25:03)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Sculteur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Sculteur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (1) - 0s
MSIE: Internet Explorer v11.0.9600.18097

---\\ Informations sur les produits Windows (10) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7TP9F
Windows License : OK
~ Windows Remaining Initializations Number : 2
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection (4) - 2s
Malwarebytes Anti-Malware version 2.2.0.1024
Microsoft Security Client v4.8.0204.0
Microsoft Security Essentials v4.8.204.0
Windows Defender W7 (Deactivate)

---\\ Logiciels de protection et autres (Superflus) (1) - 3s
ESET Online Scanner v3

---\\ Logiciels d'optimisation (2) - 3s
CCleaner v5.11
Wise Registry Cleaner 8.81 v8.81

---\\ Surveillance de Logiciels (1) - 3s
Adobe Flash Player 19 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4017.528 MB (43% free)
System Restore: Activé (Enable)
System drive C: has 161 GB () free of 225 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: SCULTEUR-PC
~ User Name: Sculteur
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 161 GB free of 225 GB (System)
~ Drive D: has 134 GB free of 226 GB
~ Drive F: has 22 GB free of 30 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - 14/07/2011 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.033E70DEEE5FED5E9A3E197A2DB1A618] - 30/10/2015 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2487808] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.492D07D79E7024CA310867B526D9636D] - 14/07/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 14/07/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 09/12/2014 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.73ADDCC406B86E7DA4416691E8E74BDA] - 20/10/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - 24/01/2014 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] ©

---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s
O23 - Service: Office Manager Agent Service (AgSvc) . (.© All rights reserved - AgSvc.) - C:\Program Files\Acer\Acer Office Manager Agent\AgSvc.exe
O23 - Service: Acer SmartBoot Service (ASLSvc) . (.Acer Incorporated - Acer SmartBoot Service.) - C:\Program Files\Acer\Acer SmartBoot\ASLSvc.exe ©
O23 - Service: Office Manager Console Service (ConSvc) . (.© All rights reserved - ConSvc.) - C:\Program Files\Acer\Acer Office Manager Console\ConSvc.exe
O23 - Service: EgisTec Ticket Service (EgisTec Ticket Service) . (.Egis Technology Inc. - Egis Ticket Service.) - C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe ©
O23 - Service: eLock Service (eLockService) . (.© All rights reserved - eLock Management.) - C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: Empowering Technology Service (ETService) . (.Copyright © 2007 - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (...) - F:\My Downloads\Foxit Reader\Foxit Cloud\FCUpdateService.exe (.not file.)
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe ©
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) . (.Copyright CANON INC. 2006-2013 - Inkjet Printer/Scanner/Fax Extended Survey.) - C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe ©
O23 - Service: Live Updater Service (Live Updater Service) . (.Acer Incorporated - Updater Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe ©
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - F:\My Downloads\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ©

---\\ Tâches planifiées en automatique (16) - 3s
[MD5.00000000000000000000000000000000] [APT] [avast! Emergency Update] (...) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe (.not file.) [0]
[MD5.E49FD011745BFC5621C586CCD07FF81E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6564776] ©
[MD5.00000000000000000000000000000000] [APT] [Format Factory] (...) -- C:\Users\Sculteur\AppData\Local\Temp\is-VGMLQ.tmp\prsetup.exe (.not file.) [0]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000Core] (.Google Inc..) -- C:\Users\Sculteur\AppData\Local\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000UA] (.Google Inc..) -- C:\Users\Sculteur\AppData\Local\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [Opera scheduled Autoupdate 1430085054] (...) -- C:\Program Files (x86)\Opera\launcher.exe (.not file.) [0]
[MD5.A93B9EA5E9AAA2CD3711C948A934EB47] [APT] [UALU notificatin] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Updater\UALU.exe [22392] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000Core.job [1038] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000UA.job [1090] ©
O39 - APT: avast! Emergency Update - (...) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182]
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2778] ©
O39 - APT: Format Factory - (...) -- C:\Windows\System32\Tasks\Format Factory [3352]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000Core [3670] ©
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3388505862-976835932-1959853125-1000UA [4066] ©
O39 - APT: Opera scheduled Autoupdate 1430085054 - (...) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1430085054 [3858]
O39 - APT: UALU notificatin - (.Acer Incorporated.) -- C:\Windows\System32\Tasks\UALU notificatin [3986] ©

---\\ Processus lancés (16) - 1s
[MD5.F5CC69C9B18F2E2EE6B50EF593298B31] - (.Egis Technology Inc. - Egis Ticket Service.) -- C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe [218160] [PID.1136] ©
[MD5.73AEB9AEB90AF4E631EEAE50787B81CB] - (.Acer Incorporated - Acer SmartBoot Service.) -- C:\Program Files\Acer\Acer SmartBoot\ASLSvc.exe [502784] [PID.1568] ©
[MD5.CC9447DEA05700BD741712461D1AC2FC] - (.© All rights reserved - eLock Management.) -- C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe [30080] [PID.1676]
[MD5.594CD09B24A7C071C208D12E988F0679] - (.Copyright © 2007 - Acer Empowering Technology Framework Servic.) -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [30080] [PID.1048]
[MD5.32096F187020A54D29C95B3A1467D963] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [28264] [PID.2088] ©
[MD5.C5E4602D85029C666A42890A3B2DFA45] - (.Copyright CANON INC. 2006-2013 - Inkjet Printer/Scanner/Fax Extended Survey.) -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe [140936] [PID.2120] ©
[MD5.6BB516A31DE232DAB436FF3A117E1E80] - (.Acer Incorporated - Updater Service.) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe [255376] [PID.2148] ©
[MD5.CC436BB2A26391F3DEBE316F6FB0474F] - (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Sculteur\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008] [PID.3204] ©
[MD5.07E3052088B2BA8F245A43A611D21C8E] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.11.226\SSScheduler.exe [330456] [PID.3252] ©
[MD5.B05E1CE24CC555E189FCEB1AD07DFCED] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8551848] [PID.3928] ©
[MD5.9B5672B036B2BD2FC1DFB7D2AFC7C7E6] - (.© All rights reserved - AgSvc.) -- C:\Program Files\Acer\Acer Office Manager Agent\AgSvc.exe [138856] [PID.5116]
[MD5.2CABF840668C9931E53ABDEAACF8FED2] - (.© All rights reserved - ConSvc.) -- C:\Program Files\Acer\Acer Office Manager Console\ConSvc.exe [278632] [PID.2184]
[MD5.50C7CE53EF461870410355F1F2E7D515] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [326168] [PID.2912] ©
[MD5.374EBDA379A8F38E0CFC2211611E7167] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.2632] ©
[MD5.115881683FAE067D7848893207A725AE] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\System32\Macromed\Flash\FlashUtil64_19_0_0_245_ActiveX.exe [876232] [PID.948] ©
[MD5.6B9C3522C2C242CECB928854C2E9EDA9] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Sculteur\AppData\Roaming\ZHP\ZHPDiag3.exe [1971200] [PID.3132] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (10) - 0s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dlicgoleoecfenjeffhbkmenpljagehp] Social Search
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ladimmjldcgbeamniagencjbodhnmgen] Online Accounts Extension
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (12) - 1s
M0 - MFSP: prefs.js [Sculteur - cdpttbvi.default] https://www.google.be/?hl=fr&gws_rd=cr&ei=v543VtbEK8OVaOzmmLgH
P2 - EXT FILE: (...) -- C:\Users\Sculteur\AppData\Roaming\Mozilla\Firefox\Profiles\cdpttbvi.default\extensions\bingsearch.full@microsoft.com.xpi
P2 - EXT FILE: (...) -- C:\Users\Sculteur\AppData\Roaming\Mozilla\Firefox\Profiles\cdpttbvi.default\extensions\info@youtube-mp3.org.xpi
P2 - EXT FILE: (...) -- C:\Users\Sculteur\AppData\Roaming\Mozilla\Firefox\Profiles\cdpttbvi.default\extensions\{80668482-7b27-4245-a652-0e5b4fce9629}.xpi
P2 - EXT FILE: (...) -- C:\Users\Sculteur\AppData\Roaming\Mozilla\Firefox\Profiles\cdpttbvi.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Sculteur\AppData\Roaming\Mozilla\Firefox\Profiles\cdpttbvi.default\searchplugins\bing-.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] - (...) -- F:\My Downloads\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] - (...) -- F:\My Downloads\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp] - (...) -- F:\My Downloads\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf] - (...) -- F:\My Downloads\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.1] - (.VideoLAN.) -- G:\VLC\npvlc.dll ©

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (20) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (24)

---\\ Browser Helper Object de navigateur (BHO) (3) - 0s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean)
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL ©
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean)

---\\ Applications lancées au démarrage du système (16) - 0s
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe ©
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Sculteur\AppData\Local\Google\Update\GoogleUpdate.exe ©
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Sculteur\AppData\Local\Microsoft\BingSvc\BingSvc.exe ©
O4 - HKCU\..\Run: [RegistryOptimizer Tray] F:\My Downloads\Fix-It Registry Optimizer\RegistryOptimizerTray.exe (.not file.)
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Sculteur\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe ©
O4 - HKLM\..\Wow6432Node\Run: [CanonQuickMenu] . (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-3388505862-976835932-1959853125-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O4 - HKUS\S-1-5-21-3388505862-976835932-1959853125-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Sculteur\AppData\Local\Google\Update\GoogleUpdate.exe ©
O4 - HKUS\S-1-5-21-3388505862-976835932-1959853125-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Sculteur\AppData\Local\Microsoft\BingSvc\BingSvc.exe ©
O4 - HKUS\S-1-5-21-3388505862-976835932-1959853125-1000\..\Run: [RegistryOptimizer Tray] F:\My Downloads\Fix-It Registry Optimizer\RegistryOptimizerTray.exe (.not file.)
O4 - HKUS\S-1-5-21-3388505862-976835932-1959853125-1000\..\RunOnce: [Uninstall C:\Users\Sculteur\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe ©

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel (25) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll ©
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office 15\root\office15\msosb.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll ©
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©

---\\ Logiciels installés (63) - 5s
O42 - Logiciel: Acer eLock Management - (.Acer Incorporated.) [HKLM][64Bits] -- {5CC23DEB-D22A-4345-9CFF-F8C602BCE792} ©
O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} ©
O42 - Logiciel: Acer eSettings Management - (.Acer Incorporated.) [HKLM][64Bits] -- {13D85C14-2B85-419F-AC41-C7F21E68B25D} ©
O42 - Logiciel: Acer Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C} ©
O42 - Logiciel: Acer Office Manager Agent - (.Acer Incorporated.) [HKLM][64Bits] -- {3F3EDE05-BE5A-4492-AE55-E823880A207B} ©
O42 - Logiciel: Acer Office Manager Console - (.Acer Incorporated.) [HKLM][64Bits] -- {89054479-B94C-41F2-9749-22DB9F9209D0} ©
O42 - Logiciel: Acer PowerSaver - (.Acer Incorporated.) [HKLM][64Bits] -- {A1FFD720-0806-40E9-9554-DB22D593FDEF} ©
O42 - Logiciel: Acer QuickMigration - (.Acer Incorporated.) [HKLM][64Bits] -- {D38FA7FF-84E7-42F7-ACAC-E85DF086F008} ©
O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Registration ©
O42 - Logiciel: Acer SmartBoot - (.Acer Incorporated.) [HKLM][64Bits] -- {9E65215B-9DE9-401A-8541-C82FE2D2BC66} ©
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Belgium e-ID middleware 4.0.7 (build 7466) - (.Belgian Government.) [HKLM][64Bits] -- {824563DE-75AD-4166-9DC0-B6482F207466} ©
O42 - Logiciel: Canon IJ Scan Utility - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Scan_Utility ©
O42 - Logiciel: Canon Inkjet Printer/Scanner/Fax Extended Survey Program - (.Canon Inc..) [HKLM][64Bits] -- CANONIJPLM100 ©
O42 - Logiciel: Canon MG3500 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series ©
O42 - Logiciel: Canon MG3500 series On-screen Manual - (.Canon Inc..) [HKLM][64Bits] -- Canon MG3500 series On-screen Manual ©
O42 - Logiciel: Canon My Printer - (.Canon Inc..) [HKLM][64Bits] -- CanonMyPrinter ©
O42 - Logiciel: Canon Quick Menu - (.Canon Inc..) [HKLM][64Bits] -- CanonQuickMenu ©
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: Code de la Route Pratic - (.Micro Application.) [HKLM][64Bits] -- Code de la Route Pratic ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Enregistrement utilisateur de Canon MG3500 series - (.‭Canon Inc..) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG3500 series ©
O42 - Logiciel: Enregistrement utilisateur de Canon MP160 - (...) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MP160
O42 - Logiciel: ESET Online Scanner v3 - (...) [HKLM][64Bits] -- ESET Online Scanner
O42 - Logiciel: Evernote v. 4.5.2 - (.Evernote Corp..) [HKLM][64Bits] -- {F77EF646-19EB-11E1-9A9E-984BE15F174E} ©
O42 - Logiciel: Folder Colorizer version 1.3.3 - (.Softorino.) [HKLM][64Bits] -- {A133E9CD-2879-4F30-87D4-1604AFD5C5CC}_is1 ©
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM][64Bits] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7} ©
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} ©
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} ©
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: LifeScan USB Device Driver vSL2.0 (Driver Removal) - (.LifeScan Inc.) [HKLM][64Bits] -- LFSVCOMM&10C4&85A7
O42 - Logiciel: Logiciel OneTouch - (...) [HKLM][64Bits] -- {82FEBE5D-61EC-4365-A213-2B278780945E}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} ©
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe ©
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6} ©
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE} ©
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE} ©
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE} ©
O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 ©
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 ©
O42 - Logiciel: Pilote Lecteur du logiciel OneTouch® v1.10.0.0 - (.LifeScan.) [HKLM][64Bits] -- InstallShield_{A2C173E1-FB29-4B31-8ED6-CBEE8025E00A} ©
O42 - Logiciel: PL-2303 USB-to-Serial - (.Prolific Technology INC.) [HKLM][64Bits] -- {ECC3713C-08A4-40E3-95F1-7D0704F1CE5E} ©
O42 - Logiciel: ProShield - (.Egis Technology Inc..) [HKLM][64Bits] -- {08CCD7B4-9EED-4926-805D-C4FFF869989A} ©
O42 - Logiciel: ProShield - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{08CCD7B4-9EED-4926-805D-C4FFF869989A} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Secure Eraser - (.ASCOMP Software GmbH.) [HKLM][64Bits] -- Secure Eraser_is1 ©
O42 - Logiciel: Skype™ 7.14 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} ©
O42 - Logiciel: Veriton ControlCenter - (.Acer Incorporated.) [HKLM][64Bits] -- {A78190D6-A513-4C5D-BC20-CFE14F1CD5E3} ©
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Welcome Center ©
O42 - Logiciel: Wise Registry Cleaner 8.81 - (.WiseCleaner.com, Inc..) [HKLM][64Bits] -- Wise Registry Cleaner_is1 ©
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 ©

---\\ HKCU & HKLM Software Keys (98) - 5s
HKLM\SOFTWARE\Wow6432Node\Acer
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Altiris
HKLM\SOFTWARE\Wow6432Node\BEID
HKLM\SOFTWARE\Wow6432Node\Borland
HKLM\SOFTWARE\Wow6432Node\Canon
HKLM\SOFTWARE\Wow6432Node\DivXNetworks
HKLM\SOFTWARE\Wow6432Node\EgisTec IPS
HKLM\SOFTWARE\Wow6432Node\Eset
HKLM\SOFTWARE\Wow6432Node\Evernote
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LDCF
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NCH Software
HKLM\SOFTWARE\Wow6432Node\NCH Swift Sound
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OEM
HKLM\SOFTWARE\Wow6432Node\OneTouch
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Silicon Laboratories, Inc.
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Trolltech
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VirualDiskRedist
HKLM\SOFTWARE\Wow6432Node\WinPj
HKLM\SOFTWARE\Wow6432Node\WiseCleaner
HKLM\SOFTWARE\Wow6432Node\WLITE
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\WXLITE
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Acer
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Anvsoft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASCOMP
HKCU\SOFTWARE\Avanquest
HKCU\SOFTWARE\BEID
HKCU\SOFTWARE\Bitdefender
HKCU\SOFTWARE\Borland
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\Dashlane_profiles
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Evernote
HKCU\SOFTWARE\Format Factory
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\NCH Swift Sound
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OEM
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Paltalk
HKCU\SOFTWARE\PhotoFiltre 7
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegistryOptimizer
HKCU\SOFTWARE\Skyhook Wireless
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Softorino
HKCU\SOFTWARE\Tracker Software
HKCU\SOFTWARE\Trend Micro
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\undelete360
HKCU\SOFTWARE\VideoConverter-Media
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\Wondershare
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Xilisoft
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\LastScanTime
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contenu des dossiers Programmes (235) - 5s
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Acer
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Belgium Identity Card
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Canon
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\ESET
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Evernote
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 21/10/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\LifeScan
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 09/01/2015 - [] D -- C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\NCH Software
O43 - CFD: 27/04/2015 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Silabs
O43 - CFD: 19/11/2015 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Windows Virtual PC
O43 - CFD: 21/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 21/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
O43 - CFD: 09/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
O43 - CFD: 09/01/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
O43 - CFD: 17/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASCOMP Software
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
O43 - CFD: 09/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3500 series
O43 - CFD: 26/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3500 series Manual
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
O43 - CFD: 29/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 16/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
O43 - CFD: 30/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy & Secure Eraser
O43 - CFD: 26/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MG3500 series
O43 - CFD: 09/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix-It Registry Optimizer
O43 - CFD: 29/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Colorizer
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 09/01/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 04/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logiciel OneTouch
O43 - CFD: 09/01/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 17/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 29/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 09/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\newsXpresso
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
O43 - CFD: 22/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 29/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 19/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/11/2010 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 09/01/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 26/12/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
O43 - CFD: 13/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Acer
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 09/12/2014 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 21/10/2015 - [] HD -- C:\ProgramData\CanonBJ
O43 - CFD: 29/09/2015 - [] HD -- C:\ProgramData\CanonIJEGV
O43 - CFD: 09/01/2015 - [] HD -- C:\ProgramData\CanonIJETV
O43 - CFD: 03/07/2015 - [] HD -- C:\ProgramData\CanonIJMyPrinter
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\CanonIJPLM
O43 - CFD: 24/12/2014 - [] HD -- C:\ProgramData\CanonIJQuickMenu
O43 - CFD: 19/11/2015 - [] HD -- C:\ProgramData\CanonIJScan
O43 - CFD: 26/02/2015 - [] D -- C:\ProgramData\CanonIJWSpt
O43 - CFD: 21/10/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 09/12/2014 - [] D -- C:\ProgramData\EgisTec
O43 - CFD: 09/12/2014 - [] D -- C:\ProgramData\EgisTec IPS
O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\explauncher
O43 - CFD: 09/12/2014 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 09/12/2014 - [] D -- C:\ProgramData\Intel
O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\launcher
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 09/12/2014 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Micro Application
O43 - CFD: 21/10/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 27/12/2014 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 09/12/2014 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\OEM
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\PC1Data
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\restore
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 25/01/2015 - [0] D -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 29/09/2015 - [] D -- C:\ProgramData\VIPRE
O43 - CFD: 10/12/2014 - [] D -- C:\ProgramData\VirtualizedApplications
O43 - CFD: 09/12/2014 - [] D -- C:\ProgramData\Wave Systems Corp
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Avanquest Software
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 29/09/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 17/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Adobe
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Anvsoft
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Apowersoft
O43 - CFD: 13/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\ASCOMP Software
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\AVG
O43 - CFD: 26/02/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Canon
O43 - CFD: 28/09/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Dashlane
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Dropbox
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\dvdcss
O43 - CFD: 05/08/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\FolderColorize
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Foxit Software
O43 - CFD: 09/12/2014 - [] D -- C:\Users\Sculteur\AppData\Roaming\Identities
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\LockAP
O43 - CFD: 09/12/2014 - [] D -- C:\Users\Sculteur\AppData\Roaming\Macromedia
O43 - CFD: 21/11/2010 - [0] D -- C:\Users\Sculteur\AppData\Roaming\Media Center Programs
O43 - CFD: 30/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Micro Application
O43 - CFD: 19/11/2015 - [] SD -- C:\Users\Sculteur\AppData\Roaming\Microsoft
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Mozilla
O43 - CFD: 04/08/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\MPC-HC
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Opera Software
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 27/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\RegistryKeys
O43 - CFD: 27/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\RegistryOptimizer
O43 - CFD: 20/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Skype
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\SoftGrid Client
O43 - CFD: 29/09/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\spotmau
O43 - CFD: 12/09/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Sun
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Thunderbird
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\TuneUp Software
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\vlc
O43 - CFD: 26/10/2015 - [0] D -- C:\Users\Sculteur\AppData\Roaming\Windows Live Writer
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\WinZip
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Wise Registry Cleaner
O43 - CFD: 28/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\WiseUpdate
O43 - CFD: 16/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Wondershare
O43 - CFD: 17/10/2015 - [0] D -- C:\Users\Sculteur\AppData\Roaming\Wondershare Video Converter Ultimate
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\www.shadowexplorer.com
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Xilisoft
O43 - CFD: 20/11/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\ZHP
O43 - CFD: 17/10/2015 - [0] D -- C:\Users\Sculteur\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
O43 - CFD: 30/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Adobe
O43 - CFD: 09/12/2014 - [0] SHD -- C:\Users\Sculteur\AppData\Local\Application Data
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Apps
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Avg
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Avg2015
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\AvgSetupLog
O43 - CFD: 17/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\CEF
O43 - CFD: 09/12/2014 - [0] D -- C:\Users\Sculteur\AppData\Local\Deployment
O43 - CFD: 29/09/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Diagnostics
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Downloaded Installations
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\EgisTec
O43 - CFD: 09/12/2014 - [] D -- C:\Users\Sculteur\AppData\Local\EgisTec IPS
O43 - CFD: 27/03/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Foxit Reader
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Google
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Sculteur\AppData\Local\GWX
O43 - CFD: 09/12/2014 - [0] SHD -- C:\Users\Sculteur\AppData\Local\Historique
O43 - CFD: 16/01/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Macromedia
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\MFAData
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Microsoft
O43 - CFD: 15/05/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Microsoft Help
O43 - CFD: 16/01/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Mozilla
O43 - CFD: 26/04/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Opera Software
O43 - CFD: 26/09/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Packages
O43 - CFD: 27/05/2015 - [] D -- C:\Users\Sculteur\AppData\Local\plansq
O43 - CFD: 09/12/2014 - [] D -- C:\Users\Sculteur\AppData\Local\Programs
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Skype
O43 - CFD: 10/12/2014 - [] D -- C:\Users\Sculteur\AppData\Local\SoftGrid Client
O43 - CFD: 22/10/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\SoftorinoUpdates
O43 - CFD: 20/11/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Temp
O43 - CFD: 09/12/2014 - [0] SHD -- C:\Users\Sculteur\AppData\Local\Temporary Internet Files
O43 - CFD: 30/06/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection0F55E9E0-302D-4136-9F82-B67859449380
O43 - CFD: 17/06/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection15E77422-8783-4677-8DE7-2FB64DE6B095
O43 - CFD: 04/07/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection58A87C05-C17E-48A8-B690-126EC6F67ED4
O43 - CFD: 16/09/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection5C12FBBB-0814-467F-8D1E-444D4B1B792C
O43 - CFD: 07/11/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection5E7B9CE8-A05D-4F88-9075-7AA6EEE9C3FE
O43 - CFD: 27/10/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection652BEB9C-964C-45DD-B3CB-866B98C4F08E
O43 - CFD: 20/08/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection69A267B7-F5FF-4482-B5A5-4FF3F795F065
O43 - CFD: 02/06/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection6C382165-5457-4612-8601-0D4F55BA9694
O43 - CFD: 08/07/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection6CA49854-74F8-4A28-BB13-D4A33364EA44
O43 - CFD: 17/09/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection7E2DBA07-DF7E-4DDB-86C0-16E349DE4094
O43 - CFD: 07/10/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetection8A8B68D4-4554-4479-B79A-FF438F3F5496
O43 - CFD: 22/10/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetectionA27D5C4D-8C09-43EB-880E-2955DC95135B
O43 - CFD: 11/06/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetectionB7A37483-CA8E-457C-874F-57F4FDF9CB46
O43 - CFD: 28/09/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetectionB94B65DF-8263-4E93-B2B7-65EB7E4997B5
O43 - CFD: 08/03/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetectionBEB01268-42F6-40E8-9330-6B3E334FCFFE
O43 - CFD: 31/07/2015 - [0] D -- C:\Users\Sculteur\AppData\Local\TempTaskUpdateDetectionD7F61896-F3C7-4C1A-8170-474BE3C7F547
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Thunderbird
O43 - CFD: 21/03/2015 - [] D -- C:\Users\Sculteur\AppData\Local\VirtualStore
O43 - CFD: 16/08/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Windows Live
O43 - CFD: 14/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Windows Live Writer
O43 - CFD: 17/10/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Wondershare
O43 - CFD: 17/11/2015 - [] D -- C:\Users\Sculteur\AppData\Local\Xilisoft
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Sculteur\AppData\Local\YesMessenger
O43 - CFD: 21/10/2015 - [] RD -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/10/2015 - [] RD -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 19/11/2015 - [0] D -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
O43 - CFD: 09/01/2015 - [] RD -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/01/2015 - [0] D -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 13/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 11/11/2015 - [] RD -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Sculteur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC

---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s
O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Sculteur\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\SkyDriveShell.dll ©
O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Sculteur\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\SkyDriveShell.dll ©
O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Sculteur\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\SkyDriveShell.dll ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll ©

---\\ Enumération des clés StartupReg (13) - 0s
O53 - SMSR:HKLM\...\startupreg\Acer PowerSaver [Key] . (.Acer Incorporated - Acer PowerSaver Tray.) -- C:\Program Files\Acer\Acer PowerSaver\PowerSaverTray.exe ©
O53 - SMSR:HKLM\...\startupreg\Acer SmartBoot [Key] . (.Acer Incorporated - Acer SmartBoot Tray.) -- C:\Program Files\Acer\Acer SmartBoot\ASLTray.exe ©
O53 - SMSR:HKLM\...\startupreg\AgStdAlo [Key] . (.© All rights reserved - AgStdAlo.) -- C:\Program Files\Acer\Acer Office Manager Agent\AgStdAlo.exe
O53 - SMSR:HKLM\...\startupreg\AutoLockProcess [Key] . (.© All rights reserved - eLock Management.) -- C:\Program Files\Acer\Empowering Technology\eLock\autolockprocess\autolockprocess.exe
O53 - SMSR:HKLM\...\startupreg\CanonQuickMenu [Key] . (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE ©
O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O53 - SMSR:HKLM\...\startupreg\EgisTecPMMUpdate [Key] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe ©
O53 - SMSR:HKLM\...\startupreg\EgisUpdate [Key] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe ©
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Sculteur\AppData\Local\Google\Update\GoogleUpdate.exe ©
O53 - SMSR:HKLM\...\startupreg\ProShieldTSR [Key] . (.Egis Technology Inc. - Security solution.) -- C:\Program Files\Acer ProShield\EgisTSR.exe ©
O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O53 - SMSR:HKLM\...\startupreg\Sidebar [Key] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O53 - SMSR:HKLM\...\startupreg\SkyDrive [Key] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Sculteur\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe ©

---\\ Liste des pilotes du système (74) - 5s
O58 - SDL:2015/01/22 08:58:53 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\0F830E96.sys [129752] ©
O58 - SDL:2015/01/14 12:24:05 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\113A40FF.sys [129752] ©
O58 - SDL:2015/09/15 06:44:08 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\12CC5982.sys [113880] ©
O58 - SDL:2015/02/28 11:13:09 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\143E60CD.sys [129752] ©
O58 - SDL:2015/08/16 07:51:42 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\1738653B.sys [113880] ©
O58 - SDL:2015/09/28 07:45:56 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\1FC60089.sys [113880] ©
O58 - SDL:2015/06/25 07:54:19 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\32EB0851.sys [113880] ©
O58 - SDL:2015/10/12 06:48:58 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\37EF1ACC.sys [113880] ©
O58 - SDL:2015/07/05 09:20:12 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\4A27575E.sys [113880] ©
O58 - SDL:2015/07/04 06:22:57 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\4E490193.sys [113880] ©
O58 - SDL:2015/07/25 08:01:58 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\5925362A.sys [113880] ©
O58 - SDL:2015/09/21 08:08:59 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\72486F3C.sys [113880] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/07/14 07:04:10 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/07/14 07:04:10 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2014/09/26 16:06:58 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1c62x64.sys [495376] ©
O58 - SDL:2010/08/05 18:20:22 A . (.Windows (R) Win 7 DDK provider - Filter Driver for the Toaster Stack.) -- C:\Windows\System32\drivers\eLock2burnerlockdriver.sys [16416] ©
O58 - SDL:2008/03/11 15:03:00 A . (.Acer, Inc. - ELock File System Filter Driver.) -- C:\Windows\System32\drivers\eLock2FSCTLDriver.sys [100384] ©
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/10/19 09:34:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2011/07/14 07:04:10 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2012/08/28 21:18:16 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [9000256] ©
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2012/06/19 00:40:50 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [342528] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2015/10/05 08:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/10/05 08:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/11/20 10:10:23 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2015/10/05 08:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] ©
O58 - SDL:2014/12/09 08:52:24 A . (.Egis Technology Inc. - PSD Mini Filter Driver.) -- C:\Windows\System32\drivers\mwlPSDFilter.sys [22648] ©
O58 - SDL:2014/12/09 08:52:24 A . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\System32\drivers\mwlPSDNserv.sys [20520] ©
O58 - SDL:2014/12/09 08:52:24 A . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\System32\drivers\mwlPSDVDisk.sys [62776] ©
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2011/07/14 07:04:10 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2011/07/14 07:04:10 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2010/11/11 20:36:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2544488] ©
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2014/09/03 06:49:36 A . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\Windows\System32\drivers\ser2pl64.sys [169984] ©
O58 - SDL:2010/08/03 13:47:44 A . (.Silicon Laboratories - Silicon Labs VCP Serial Enumerator.) -- C:\Windows\System32\drivers\silabenm.sys [27336] ©
O58 - SDL:2010/08/03 13:47:44 A . (.Silicon Laboratories - Silicon Labs CP210x USB to UART Bridge Driv.) -- C:\Windows\System32\drivers\silabser.sys [67584] ©
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2013/10/07 13:58:38 A . (.Paragon - Image Mounter File I/O.) -- C:\Windows\System32\drivers\UimFIO.sys [472016] ©
O58 - SDL:2013/10/07 13:58:38 A . (.Windows (R) 2000 DDK provider - Image Mounter SCSI Port Driver.) -- C:\Windows\System32\drivers\uimx64.sys [90960]
O58 - SDL:2013/10/07 13:58:38 A . (.Paragon - Image Mounter.) -- C:\Windows\System32\drivers\Uim_IMx64.sys [633680] ©
O58 - SDL:2013/10/07 13:58:38 A . (.Paragon - Image Mounter plugin.) -- C:\Windows\System32\drivers\uim_vimx64.sys [390352] ©
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©

---\\ Associations Shell Spawning (9) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Recherche d'infection sur les navigateurs (5) - 5s
O69 - SBI: prefs.js [Sculteur - cdpttbvi.default] user_pref("extensions.xpiState", "{\"app-profile\":{\"avg@toolbar\":{\"d\":\"C:\\\\Users\\\\Sculteur\\\\AppData\\\\Roaming\\\\Mozi[...] =>Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKCU] {012E1000-F331-11DB-8314-0800200C9A66} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Goo) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {D4B841C9-AF60-4DBE-B58E-2C2D41AF777B} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [859648] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2608128] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] ©

---\\ Liste des exceptions du parefeu Windows (4) - 1s
O87 - FAEL: "{1517792B-07DE-4515-9E88-EA473829CD6B}" [In-None-P6-TRUE] .(.© All rights reserved - ConSvc.) -- C:\Program Files\Acer\Acer Office Manager Console\ConSvc.exe
O87 - FAEL: "{3A058650-BEE9-4E88-BDE9-360E01337B07}" [In-None-P17-TRUE] .(.© All rights reserved - ConSvc.) -- C:\Program Files\Acer\Acer Office Manager Console\ConSvc.exe
O87 - FAEL: "{70A3C307-7B9A-42CD-AB8E-1D6521B8A57E}" [In-None-P6-TRUE] .(.© All rights reserved - AgSvc.) -- C:\Program Files\Acer\Acer Office Manager Agent\AgSvc.exe
O87 - FAEL: "{49FA25E8-429E-4D46-BA45-3030FDE343CB}" [In-None-P17-TRUE] .(.© All rights reserved - AgSvc.) -- C:\Program Files\Acer\Acer Office Manager Agent\AgSvc.exe

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (18) - 13s

SS - Demand [11/11/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [02/05/2012] [ 138856] Office Manager Agent Service (AgSvc) . (.© All rights reserved.) - C:\Program Files\Acer\Acer Office Manager Agent\AgSvc.exe
SR - Auto [12/05/2009] [ 502784] Acer SmartBoot Service (ASLSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer SmartBoot\ASLSvc.exe ©
SR - Auto [02/05/2012] [ 278632] Office Manager Console Service (ConSvc) . (.© All rights reserved.) - C:\Program Files\Acer\Acer Office Manager Console\ConSvc.exe
SS - Demand [30/08/2012] [ 276288] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe ©
SR - Auto [02/02/2012] [ 218160] EgisTec Ticket Service (EgisTec Ticket Service) . (.Egis Technology Inc..) - C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe ©
SR - Auto [13/06/2011] [ 30080] eLock Service (eLockService) . (.© All rights reserved.) - C:\Program Files\Acer\Empowering Technology\eLock\Service\eLockServ.exe
SR - Auto [14/06/2011] [ 30080] Empowering Technology Service (ETService) . (.Copyright © 2007.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
SR - Auto [29/02/2012] [ 28264] GREGService (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe ©
SS - Demand [12/08/2014] [ 136120] Google Updater Service (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SR - Auto [14/05/2013] [ 140936] Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) . (.Copyright CANON INC. 2006-2013.) - C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe ©
SR - Auto [07/02/2012] [ 255376] Live Updater Service (Live Updater Service) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe ©
SR - Auto [01/02/2011] [ 326168] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
SS - Disabled [05/10/2015] [ 1513784] (MBAMScheduler) . (.Malwarebytes.) - F:\My Downloads\Malwarebytes Anti-Malware\mbamscheduler.exe ©
SS - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - F:\My Downloads\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
SR - Auto [01/02/2011] [ 2656280] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ©

---\\ Scan Additionnel (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.

---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s
http://www.nicolascoolman.fr/blog =>Toolbar.AVGSearch

~ End of the scan, 68027 items in 64 seconds (817)(0)

Publicité


Signaler le contenu de ce document

Publicité