~ ZHPDiag v2015.9.24.145 Par Nicolas Coolman (2015/09/24) ~ Démarré par Alex (Administrator) (2015/10/10 17:47:08) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Pas de fichier réseau ~ Mode: Scanner ~ Rapport: C:\Users\alexa_000\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\alexa_000\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 8.1, 64-bit (Build 9600) ---\\ Navigateurs Internet (3) - 0s GCIE: Google Chrome v45.0.2454.101 MFIE: Mozilla Firefox 34.0.5 (x86 fr) v34.0.5 MSIE: Internet Explorer v11.0.9600.18036 ---\\ Informations sur les produits Windows (8) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK ~ Windows(R) Operating System, OEM_COA_NSLP channel Windows ID Activation : OK ~ Windows Partial Key : MDTBH Windows License : OK ~ Windows Remaining Initializations Number : 999 Windows Automatic Updates : OK ---\\ Logiciels de protection (2) - 1s Avast Free Antivirus v10.3.2223 Windows Defender (Deactivate) ---\\ Logiciels d'optimisation (1) - 1s CCleaner v4.05 ---\\ Surveillance de Logiciels (2) - 1s Adobe Flash Player 17 NPAPI Adobe Reader XI ---\\ Informations sur le système (6) - 0s ~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4140.908 MB (53% free) ~ System Restore: Activé (Enable) ~ System drive C: has 111 GB free of 228 GB ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: PCSALON ~ User Name: Alex ~ Logged in as Administrator ---\\ Enumération des unités disques (2) - 0s ~ Drive C: has 111 GB free of 228 GB (System) ~ Drive D: has 251 GB free of 476 GB ---\\ Etat du Centre de Sécurité Windows (11) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Recherche particulière de fichiers génériques (25) - 0s [MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [2501368] © [MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [54784] © [MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [145920] © [MD5.096A832FCF5A01003E96DD7FEE45618D] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2427392] © [MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [572416] © [MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [447488] © [MD5.A5675939CF0F99B20B5A3CFCC3C1B46A] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\System32\dnsapi.dll [657920] © [MD5.BD9C7A068C46053F8747CEA73B5930AB] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\Syswow64\dnsapi.dll [498688] © [MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19456] © [MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [563200] © [MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [26464] © [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576] © [MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352] © [MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [134144] © [MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800] © [MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [108544] © [MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [142848] © [MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [401408] © [MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [282624] © [MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2025792] © [MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [94208] © [MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [120832] © [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584] © [MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [107520] © [MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [310080] © ---\\ Processus lancés (49) - 1s [MD5.66B54471B5856E314947881E28263A6D] - (.AMD - AMD External Events Service Module.) -- C:\WINDOWS\system32\atiesrxx.exe [239616] [PID.476] © [MD5.6C9C1917F2C29AFADDC3DD10F28A9F56] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [588288] [PID.1084] © [MD5.FC7C13B5A9E9BE23B7AE72BBC7FDB278] - (.Hewlett-Packard Company - HpService.) -- C:\WINDOWS\system32\Hpservice.exe [30520] [PID.1188] © [MD5.A97E144E84A665B22AE6E6A93E4DD465] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1628] © [MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2480] © [MD5.612CB66D93ED0F2F21BB109840C7D813] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128] [PID.2772] © [MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.2828] © [MD5.337FA50FFDED5E2BC94B36BF625AB681] - (.IObit - Product Updater.) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472] [PID.2960] © [MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.2680] © [MD5.E337785DA1958E9AB02DDB2369EF46E8] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe [307016] [PID.1176] © [MD5.7AEA4DF1CA68FD45DD4BBE1F0243CE7F] - (...) -- C:\WINDOWS\SysWOW64\NMSAccessU.exe [71096] [PID.2796] [MD5.652565EA2FAB8E7366101A0B04DECBBC] - (...) -- C:\Program Files (x86)\Polar\Daemon\polard.exe [419536] [PID.1264] [MD5.BA23B49D2531575F2EB983234576C5C7] - (.IObit - StartMenu8 Services.) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72992] [PID.3260] © [MD5.2AA61246A5B813C1B12BCCFAA6F23DD8] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416] [PID.3324] © [MD5.8A9A9E9B7B76B65FF23CA56910C65CAF] - (.IObit - .) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe [1722656] [PID.3384] © [MD5.D3EFC37F285DE231585A1871EFE2958A] - (.Validity Sensors, Inc. - ValidityWBF Policy Service (VSM).) -- C:\WINDOWS\system32\valWBFPolicyService.exe [35328] [PID.3420] © [MD5.F2EC9162240C3C275ED9489C466D3039] - (.IObit - .) -- C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe [2712352] [PID.3732] © [MD5.873B2367372A8D403B4FBBAE612EC4F2] - (.IObit - .) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe [29984] [PID.3936] © [MD5.4076E418CD3EB0E09FFBCD828C35CE26] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288] [PID.4512] © [MD5.A889E7974A7B9A41AF88B77E17627D26] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer.exe [18484496] [PID.5312] © [MD5.BD0EA5C8A4EF518C46E05F99908A56CE] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [121640] [PID.5328] © [MD5.72C3147427605C9A08521204E6C26202] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe [2991856] [PID.5476] © [MD5.71207B783B99403275FE1E9E01297339] - (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe [232688] [PID.5596] © [MD5.FBC76FB8AC96C179E4D0BC806B850748] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\tv_w32.exe [230672] [PID.5828] © [MD5.24B9BA271BC87C8B9FC05A688923652F] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\tv_x64.exe [263952] [PID.5836] © [MD5.28062B17191C9450BF6C6C3EF8C7EB27] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\System32\igfxtray.exe [171992] [PID.6104] © [MD5.28FC280487F0BAAE5E8119257C4EEF8C] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\System32\hkcmd.exe [399832] [PID.5232] © [MD5.F29BEA821C753E4F00177690F70CDC13] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\System32\igfxpers.exe [442328] [PID.5788] © [MD5.076B3EE149E01ADBAC2DC529554A3FD9] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [169768] [PID.2672] © [MD5.22F7B9670AD770C7ED7F4738204C8E5C] - (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416] [PID.5544] © [MD5.BF86BC106E0F35BACC85DCF4A0C797A3] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22344224] [PID.5352] © [MD5.BF86BC106E0F35BACC85DCF4A0C797A3] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22344224] [PID.6072] © [MD5.E61BB95A7CB49696D25A0C4EBD108156] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [643880] [PID.752] © [MD5.F341DD6145F779CE5B732BC6BC6A3370] - (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816] [PID.5988] © [MD5.4016CE43255F0BE4FBE4A54F4500B021] - (.Apple Inc. - iCloud Drive.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816] [PID.5992] © [MD5.4275C55AA440DC08EA0267AED31D9654] - (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712] [PID.5296] © [MD5.C579BB138CDB548BA6A5E7ACB7884C6A] - (.Hewlett-Packard Co. - HPNetworkCommunicatorCom.) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe [992360] [PID.5236] © [MD5.799450710D1B09FAF0D220B4DA3BF431] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776] [PID.6468] © [MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [96056] [PID.6660] © [MD5.09B1747D1576FE7E5ECE2201C8F0936B] - (.Dropbox, Inc. - Dropbox.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [36710768] [PID.6764] © [MD5.3043374E292DED8C59D1C6570578F2F0] - (.Hewlett-Packard Co. - HPNetworkCommunicator.) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe [866408] [PID.7156] © [MD5.4BA3BFF03B1A10E49B590BE3C4D79C10] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 12.0 (component).) -- C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe [181152] [PID.1700] © [MD5.B3009DCDBCC5EFA49FA52562E9860E3C] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128] [PID.4696] © [MD5.A0FFCF6391B5270B2A34E379DE446878] - (.Hewlett-Packard Company - HP Support Solutions Framework Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24888] [PID.1892] © [MD5.DC39DB75281CAD6789C3AA2B14F98040] - (.Adobe Systems Incorporated - Adobe® Flash® Player Utility.) -- C:\WINDOWS\System32\Macromed\Flash\FlashUtil_ActiveX.exe [883688] [PID.4948] © [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] [PID.7696] © [MD5.84BD2148EE4A476E54C1014D1A005BE3] - (.Google - Chrome Cleanup Tool.) -- C:\Users\alexa_000\AppData\Local\Google\Chrome\User Data\SwReporter\4.30.1\software_reporter_tool.exe [1304392] [PID.1800] © [MD5.E8B7FD67DA14A7BE57A5CB80E3139E60] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [309704] [PID.1832] © [MD5.260B29F5BCC07C91CBA92910484BE023] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\alexa_000\Desktop\ZHPDiag3.exe [1938944] [PID.7656] © ---\\ Google Chrome, Démarrage,Recherche,Extensions (25) - 0s G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://chrome.google.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://csi.gstatic.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://id.google.ch G0 - GCSP: Preferences [User Data\Default][HomePage] http://r2---sn-nfpnnjvh-9anl.gvt1.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://redirector.gvt1.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.ch G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [edaibbiobngpbmeonadpbfafbkimjbdd] Logitech SetPoint G2 - GCE: Preference [User Data\Default] [efaidnbmnnnibpcajpcglclefindmkaj] __MSG_web2pdfExtnName__ G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module G2 - GCE: Preference [User Data\Default] [lmjegmlicamnimmfhcmpkclmigmmcbeh] Application Launcher for Drive (by Google) G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [npdicihegicnhaangkdmcgbjceoemeoo] __MSG_newtab_extension_search_prov_name__ G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (28) - 1s P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.FRA P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\QuickTimePlugin.class P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\extensions\jid1-G80Ec8LLEbK5fQ@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\babylon.xml =>PUP.Optional.Babylon P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\BrowserDefender.xml =>PUA.Optional.BrowserDefendert P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\BrowserProtect.xml =>PUP.Optional.Eazel P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\delta.xml P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\Mysearchdial.xml =>PUP.Optional.MySearchDial P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\Taplika.xml =>PUP.Optional.Taplika P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\trovi-search.xml =>PUP.Optional.TroviCom P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\visualbee.xml =>PUP.Optional.VisualBeeToolbar P2 - EXT FILE: (...) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\WSE Rocket.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\awesomehp.xml =>PUP.Optional.AwesomeHP P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} © P2 - EXT: (.lightningnewtab.com - Fast Start.) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\extensions\faststartff@gmail.com =>PUP.Optional.FastStart P2 - EXT: (. - Rocket New Tab.) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\extensions\{ecaa9181-d92a-47b9-8e14-bef9680f204b} P2 - EXT: (.Swisscom - My Swisscom Assistant.) -- C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\extensions\{} P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll © P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll © P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] - (...) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bluewin.ch R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/ =>PUP.Optional.MySearchDial R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/ =>PUP.Optional.MySearchDial R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 ---\\ Internet Explorer,Proxy Management (6) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (27) ---\\ Browser Helper Object de navigateur (BHO) (7) - 1s O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office 15\root\office15\ochelper.dll © O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll © O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll © O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll © O2 - BHO: Logitech SetPoint [64Bits] - {AF949550-9094-4807-95EC-D1C317803333} . (.Logitech, Inc. - Logitech SetPoint.) -- C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll © O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office 15\root\office15\grooveex.dll © O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll © ---\\ Applications lancées au démarrage du système (29) - 0s O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [ACPW06FR] . (.ACD Systems - acdID InTouch2.) -- C:\Program Files\ACD Systems\ACDSee Pro\6.0\ACDSeePro6InTouch2.exe © O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe © O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe © O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe © O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe © O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe © O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe © O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe © O4 - HKCU\..\Run: [HP Officejet Pro 8600 (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe © O4 - HKCU\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe © O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe © O4 - HKCU\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe © O4 - HKCU\..\Run: [CAHeadless] . (.Adobe Systems Incorporated - ElementsAutoAnalyzer.) -- C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe © O4 - HKCU\..\Run: [iCloudDrive] . (.Apple Inc. - iCloud Drive.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe © O4 - HKCU\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe © O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe © O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe © O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe © O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe © O4 - HKLM\..\Wow6432Node\Run: [Dropbox] . (.Dropbox, Inc. - Dropbox.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe © O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe © O4 - HKUS\S-1-5-21-2472289811-1643435496-63310710-1001\..\Run: [HP Officejet Pro 8600 (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe © O4 - HKUS\S-1-5-21-2472289811-1643435496-63310710-1001\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe © O4 - HKUS\S-1-5-21-2472289811-1643435496-63310710-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe © O4 - HKUS\S-1-5-21-2472289811-1643435496-63310710-1001\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe © O4 - HKUS\S-1-5-21-2472289811-1643435496-63310710-1001\..\Run: [CAHeadless] . (.Adobe Systems Incorporated - ElementsAutoAnalyzer.) -- C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe © O4 - HKUS\S-1-5-21-2472289811-1643435496-63310710-1001\..\Run: [iCloudDrive] . (.Apple Inc. - iCloud Drive.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe © O4 - HKUS\S-1-5-21-2472289811-1643435496-63310710-1001\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe © ---\\ Modification Domaine/Adresses DNS (4) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1 ---\\ Protocole additionnel (23) - 0s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\SysWOW64\mshtml.dll © O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\SysWOW64\urlmon.dll © O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\SysWOW64\MSVidCtl.dll © O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\SysWOW64\urlmon.dll © O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\SysWOW64\urlmon.dll © O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\SysWOW64\urlmon.dll © O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\SysWOW64\urlmon.dll © O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\SysWOW64\itss.dll © O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\SysWOW64\mshtml.dll © O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\SysWOW64\urlmon.dll © O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\SysWOW64\mshtml.dll © O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\WINDOWS\SysWOW64\inetcomm.dll © O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\SysWOW64\urlmon.dll © O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\SysWOW64\itss.dll © O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office 15\root\office15\msosb.dll © O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\SysWOW64\mshtml.dll © O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\SysWOW64\MSVidCtl.dll © O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\SysWOW64\mshtml.dll © O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll © O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll © O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\SysWOW64\mscoree.dll © O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\SysWOW64\mscoree.dll © O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\SysWOW64\mscoree.dll © ---\\ Liste des services NT non Microsoft et non désactivés (18) - 1s O23 - Service: Adobe Active File Monitor V12 (AdobeActiveFileMonitor12.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 12.0 (component).) - C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe © O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe © O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\system32\atiesrxx.exe © O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe © O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe © O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe © O23 - Service: Service Mise à jour Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe © O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © O23 - Service: @oem30.inf,%hpservice_desc%;HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\WINDOWS\system32\Hpservice.exe © O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe © O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe © O23 - Service: NMSAccess (NMSAccess) . (...) - C:\WINDOWS\SysWOW64\NMSAccessU.exe O23 - Service: Polar Daemon (Polar Daemon) . (...) - C:\Program Files (x86)\Polar\Daemon\polard.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe © O23 - Service: StartMenu8 Service (StartMenuService) . (.IObit - StartMenu8 Services.) - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe © O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe © O23 - Service: @oem27.inf,%WBFService_SvcDesc%;Validity WBF Policy Service (valWBFPolicyService) . (.Validity Sensors, Inc. - ValidityWBF Policy Service (VSM).) - C:\WINDOWS\system32\valWBFPolicyService.exe © ---\\ Tâches planifiées en automatique (46) - 4s [MD5.B0FE8D243A4EC6727D7EC5019C4B26B1] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268464] © [MD5.F5A5DBADCD24BDF33BFDAA789E39C876] [APT] [AdobeAAMUpdater-1.0-Pcsalon-Alex] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496] © [MD5.A1E0CF2503BDA21A5344C7A00B5BD035] [APT] [Apple Diagnostics] (.Apple Inc..) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [43816] © [MD5.B3B87E58466CE9B6662819820010106C] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] © [MD5.4C0A720AB377391D7D2EDE1ED905A420] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3676952] © [MD5.311BCE25242D9D00CBD7BB9D8B6E1315] [APT] [Dealply] (...) -- C:\Users\alexa_000\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe [102968] =>PUP.Optional.Dealply [MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskMachineCore] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512] © [MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskMachineUA] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512] © [MD5.C3D143E19B20E4CB3F1A9B7FE317A99C] [APT] [FaxApplications.exe_{10CD4115-0F60-4132-8ED0-73812D713EF8}] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\FaxApplications.exe [3887720] © [MD5.4654B14F6E7CD4C70892F3017F5FDF0C] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities\initialize.exe [92448] © [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] © [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] © [MD5.4463F96DA2A90FB8386DC2DDD1D7AA8C] [APT] [HP AR Program Upload - 072697b4beb34d31907f5ca5fa095c2bf1437a895cc44bb8905439cd55a7b629] (.TODO: .) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPRewards.exe [3513960] [MD5.4463F96DA2A90FB8386DC2DDD1D7AA8C] [APT] [HP AR Program Upload - 12036a4ff7c645588ea15561c10ed6fd8339981e42834f859d1cbf18b9ef9c78] (.TODO: .) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPRewards.exe [3513960] [MD5.4463F96DA2A90FB8386DC2DDD1D7AA8C] [APT] [HP AR Program Upload - 1bb18dd2ddf14282a52392607f632d645baf9f0dfcfc4b33b1d26924367b49c8] (.TODO: .) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPRewards.exe [3513960] [MD5.4463F96DA2A90FB8386DC2DDD1D7AA8C] [APT] [HP AR Program Upload - 1e8282b91c7e4f8ab8fd20db8bc962d0666dbfdd00a144a0a63ca28e0ddcac0e] (.TODO: .) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPRewards.exe [3513960] [MD5.4463F96DA2A90FB8386DC2DDD1D7AA8C] [APT] [HP AR Program Upload - 69c4fde3b7874d1eb71fe87debbc0dcbd66877e7fe4944cbbe9422d164d3330f] (.TODO: .) -- C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPRewards.exe [3513960] [MD5.7A89177D2D3163773748AC335C0EFE73] [APT] [Rocket Updater] (...) -- C:\Users\alexa_000\AppData\Roaming\RocketUpdater\UpdateProc\UpdateTask.exe [95232] =>PUP.Optional.RocketUpdater [MD5.8B487D97AB896B1E7A8CC8CF1C4034E2] [APT] [StartMenuAutoupdate] (.IObit.) -- C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [392480] © [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] © O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] © O39 - APT: Dealply - (...) -- C:\WINDOWS\Tasks\Dealply.job [310] =>PUP.Optional.Dealply O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job [1194] © O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job [1198] © O39 - APT: GlaryInitialize - (.Glarysoft Ltd.) -- C:\WINDOWS\Tasks\GlaryInitialize.job [338] © O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1088] © O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1092] © O39 - APT: Rocket Updater - (...) -- C:\WINDOWS\Tasks\Rocket Updater.job [312] =>PUP.Optional.RocketUpdater O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [2806] © O39 - APT: AdobeAAMUpdater-1.0-Pcsalon-Alex - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-Pcsalon-Alex [2024] © O39 - APT: Apple Diagnostics - (.Apple Inc..) -- C:\WINDOWS\System32\Tasks\Apple Diagnostics [3416] © O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\WINDOWS\System32\Tasks\avast! Emergency Update [4052] © O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [1610] © O39 - APT: Dealply - (...) -- C:\WINDOWS\System32\Tasks\Dealply [2370] =>PUP.Optional.Dealply O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore [3096] © O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA [3332] © O39 - APT: GlaryInitialize - (.Glarysoft Ltd.) -- C:\WINDOWS\System32\Tasks\GlaryInitialize [1782] © O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3828] © O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4064] © O39 - APT: HP AR Program Upload - 072697b4beb34d31907f5ca5fa095c2bf1437a895cc44bb8905439cd55a7b629 - (.TODO: .) -- C:\WINDOWS\System32\Tasks\HP AR Program Upload - 072697b4beb34d31907f5ca5fa095c2bf1437a895cc44bb8905439cd55a7b629 [2176] O39 - APT: HP AR Program Upload - 12036a4ff7c645588ea15561c10ed6fd8339981e42834f859d1cbf18b9ef9c78 - (.TODO: .) -- C:\WINDOWS\System32\Tasks\HP AR Program Upload - 12036a4ff7c645588ea15561c10ed6fd8339981e42834f859d1cbf18b9ef9c78 [2176] O39 - APT: HP AR Program Upload - 1bb18dd2ddf14282a52392607f632d645baf9f0dfcfc4b33b1d26924367b49c8 - (.TODO: .) -- C:\WINDOWS\System32\Tasks\HP AR Program Upload - 1bb18dd2ddf14282a52392607f632d645baf9f0dfcfc4b33b1d26924367b49c8 [3540] O39 - APT: HP AR Program Upload - 1e8282b91c7e4f8ab8fd20db8bc962d0666dbfdd00a144a0a63ca28e0ddcac0e - (.TODO: .) -- C:\WINDOWS\System32\Tasks\HP AR Program Upload - 1e8282b91c7e4f8ab8fd20db8bc962d0666dbfdd00a144a0a63ca28e0ddcac0e [3540] O39 - APT: HP AR Program Upload - 69c4fde3b7874d1eb71fe87debbc0dcbd66877e7fe4944cbbe9422d164d3330f - (.TODO: .) -- C:\WINDOWS\System32\Tasks\HP AR Program Upload - 69c4fde3b7874d1eb71fe87debbc0dcbd66877e7fe4944cbbe9422d164d3330f [2176] O39 - APT: Rocket Updater - (...) -- C:\WINDOWS\System32\Tasks\Rocket Updater [2372] =>PUP.Optional.RocketUpdater O39 - APT: StartMenuAutoupdate - (.IObit.) -- C:\WINDOWS\System32\Tasks\StartMenuAutoupdate [3158] © ---\\ Logiciels installés (103) - 6s O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner © O42 - Logiciel: Package de pilotes Windows - C Technologies AB (PayPen) Input Pen (09/28/2 - (.C Technologies AB.) [HKLM][64Bits] -- FF0C660232778E730A83A02DA620652B3CF36C07 O42 - Logiciel: Logitech SetPoint 6.52 - (.Logitech.) [HKLM][64Bits] -- sp6 © O42 - Logiciel: Synaptics TouchPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey © O42 - Logiciel: Microsoft Visio Professionnel 2013 - fr-fr - (.Microsoft Corporation.) [HKLM][64Bits] -- VisioProRetail - fr-fr © O42 - Logiciel: Adobe Photoshop Lightroom 5.2 64-bit - (.Adobe.) [HKLM][64Bits] -- {54E6C675-3AD4-42E4-957F-31666ABF1603} © O42 - Logiciel: Adobe Photoshop Lightroom 5 64-bit - (.Adobe.) [HKLM][64Bits] -- {6C1A010F-9108-4162-A26F-9FEC4AC0F0F0} © O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} © O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM][64Bits] -- {709A2D23-C25E-47B5-9268-CB6FEE648504} © O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} © O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE} © O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {93F2A022-6C37-48B8-B241-FFABD9F60C30} © O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 © O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {C4123106-B685-48E6-B9BD-E4F911841EB4} © O42 - Logiciel: ACDSee Pro 6 - (.ACD Systems International Inc..) [HKLM][64Bits] -- {CAF674E0-808C-4CF4-8868-A755EBABA228} © O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D7B824DE-DA32-4772-9E5E-39C5158136A7} © O42 - Logiciel: Logiciel de base du périphérique HP Officejet Pro 8600 - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {E588CA1D-AD74-4E04-8C53-AD9735C4CA54} © O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} © O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI © O42 - Logiciel: Adobe Photoshop Elements 12 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 12 © O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast © O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM][64Bits] -- Dropbox © O42 - Logiciel: Glary Utilities 2.56.0.1822 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities_is1 © O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome © O42 - Logiciel: DesignPro 5 - (.Avery Dennison.) [HKLM][64Bits] -- InstallShield_{3D51664C-293A-4621-926E-0436DE7553A6} © O42 - Logiciel: Start Menu 8 - (.IObit.) [HKLM][64Bits] -- IObit_StartMenu8_is1 © O42 - Logiciel: USB Flash Security Ver.3.2.2 - (...) [HKLM][64Bits] -- KASHU_UsbEnterVer.3.2.2 O42 - Logiciel: USB Flash Security Ver.3.3.0 - (...) [HKLM][64Bits] -- KASHU_UsbEnterVer.3.3.0 O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{305DC1A8-3469-4E43-8415-781D567B7A73} © O42 - Logiciel: MAGIX Vidéo deluxe MX Premium - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{C42B1668-AF91-4112-93D8-F70F3532B248} © O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{DDBABB3F-0A51-40D0-999D-E42C65221093} © O42 - Logiciel: Mozilla Firefox 34.0.5 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 34.0.5 (x86 fr) © O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService © O42 - Logiciel: PDF Password Cracker v3.2 - (.CrackPDF.com, Inc..) [HKLM][64Bits] -- PDF Password Cracker v3.2_is1 O42 - Logiciel: Microsoft Photo 2006 Suite Edition - (.Microsoft Corporation.) [HKLM][64Bits] -- PictureItSuite_v11 © O42 - Logiciel: Swisscom Quick Help - (.Swisscom (Switzerland) AG.) [HKLM][64Bits] -- Swisscom Quick Help O42 - Logiciel: SyncBackPro - (.2BrightSparks.) [HKLM][64Bits] -- SyncBackPro_is1 © O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer © O42 - Logiciel: TrueCrypt - (.TrueCrypt Foundation.) [HKLM][64Bits] -- TrueCrypt © O42 - Logiciel: VirtualCloneDrive - (.Elaborate Bytes.) [HKLM][64Bits] -- VirtualCloneDrive © O42 - Logiciel: VLC media player 2.0.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player © O42 - Logiciel: VSO Image Resizer 1.3.4d - (.VSO-Software.) [HKLM][64Bits] -- VSO Image Resizer_is1 © O42 - Logiciel: winpcap-nmap 4.02 - (...) [HKLM][64Bits] -- winpcap-nmap O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst © O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver © O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} © O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM][64Bits] -- {099218A5-A723-43DC-8DB5-6173656A1E94} © O42 - Logiciel: PSE12 STI Installer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {11F9A376-342F-4297-82DA-1F6EA8ED4B6B} © O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {12ADFB82-D5A3-43E4-B2F4-FCD9B690315B} © O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} © O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} © O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} © O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} © O42 - Logiciel: Skype™ 7.2 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} © O42 - Logiciel: Polar Daemon - (.Polar Electro Oy.) [HKLM][64Bits] -- {2BA9320D-E061-4C71-ACCB-AC0E9D4FC82B} O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {305DC1A8-3469-4E43-8415-781D567B7A73} © O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E} © O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} © O42 - Logiciel: HP FWUpdateEDO2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {415FA9AD-DA10-4ABE-97B6-5051D4795C90} © O42 - Logiciel: dLAN Cockpit - (.devolo AG.) [HKLM][64Bits] -- {450CFD4D-7E60-3839-D0FA-56DB08675447} © O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} © O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} © O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {6C5F8503-55D2-4398-858C-362B7A7AF51C} © O42 - Logiciel: Pazera Free MOV to AVI Converter 1.5 - (.Jacek Pazera.) [HKLM][64Bits] -- {770103E9-E1C3-48C9-812B-2982C7070575}_is1 © O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} © O42 - Logiciel: HERMA Label Designer plus 1.1 - (.HERMA GmbH.) [HKLM][64Bits] -- {7DA64485-2CEE-4F7B-84AB-B287236703B6} O42 - Logiciel: CLX.NetBanking BCVs - (.CREALOGIX.) [HKLM][64Bits] -- {81BA18DA-1E5F-44AB-B3B1-FE98CFAC8EE3} © O42 - Logiciel: Easyweather version 7.8 - (...) [HKLM][64Bits] -- {83C98CF2-952F-41EC-8702-D80490A59A2C}_is1 O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE} © O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} © O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} © O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE} © O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE} © O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} © O42 - Logiciel: HP Wireless Button Driver - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {941DE69D-6CEE-4171-8F1F-3D7E352AA498} © O42 - Logiciel: AviReplayer version 1.0.0.4 - (...) [HKLM][64Bits] -- {9B17E6D0-F62B-42FB-9D6B-2A5C28668422}_is1 O42 - Logiciel: CLX.PayPen - CLX.PayPen Wireless - (.CREALOGIX.) [HKLM][64Bits] -- {9F4F40C8-E498-4754-A18F-7F0179F285E4} © O42 - Logiciel: Polar WebSync - (.Polar Electro Oy.) [HKLM][64Bits] -- {A3C03067-855A-4B5B-B08B-A1BFD68FCAF8} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} © O42 - Logiciel: oPlayer - (.object.) [HKLM][64Bits] -- {AA1B7F27-A49D-4D7F-9755-570AF5597160} O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} © O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-000000000006} © O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} © O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {AFA1153A-F547-409B-B837-3A0D6C5A3FEC} © O42 - Logiciel: OcxSetup version 1.0.5.16 - (...) [HKLM][64Bits] -- {B3696FEF-0B27-459F-A661-A4134B6A063E}_is1 O42 - Logiciel: OpenOffice 4.1.0 - (.Apache Software Foundation.) [HKLM][64Bits] -- {B3B009FC-6909-4E00-9F43-FFB5CA93D606} © O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} © O42 - Logiciel: LabelAssistant - (.HERMA.) [HKLM][64Bits] -- {C08E10CD-AB9A-4A58-968B-4FC56D9E53BC} O42 - Logiciel: MAGIX Vidéo deluxe MX Premium - (.MAGIX AG.) [HKLM][64Bits] -- {C42B1668-AF91-4112-93D8-F70F3532B248} © O42 - Logiciel: I.R.I.S. OCR - (.HP.) [HKLM][64Bits] -- {CA6BCA2F-EDEB-408F-850B-31404BE16A61} © O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} © O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {DDBABB3F-0A51-40D0-999D-E42C65221093} © O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} © O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E4B931AF-C59A-4D92-8767-8E2D5F53144E} © O42 - Logiciel: FileMaker Pro 12 Advanced - (.FileMaker, Inc..) [HKLM][64Bits] -- {EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B} O42 - Logiciel: FileMaker Pro 12 Advanced - (.FileMaker, Inc..) [HKLM][64Bits] -- {EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B}_FileMaker O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} © O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {F4D99A13-F63A-4FC1-8799-CFFDB78DDFB3} © O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {F6F30C28-38AA-4DBA-AE0B-7E30238E61BB} © O42 - Logiciel: Serif PhotoPlus X2 - (.Serif (Europe) Ltd.) [HKLM][64Bits] -- {FC935397-C56E-4EE3-B9BC-1F7F3EA6CE41} © O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM][64Bits] -- {fdc5e555-5c80-4585-8de4-2f8454a4534f} © O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe © O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent ---\\ HKCU & HKLM Software Keys (156) - 7s HKLM\SOFTWARE\Wow6432Node\2BrightSparks HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\Ahead HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\AVAST Software HKLM\SOFTWARE\Wow6432Node\Avery Dennison HKLM\SOFTWARE\Wow6432Node\awesomehpSoftware =>PUP.Optional.AwesomeHP HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon HKLM\SOFTWARE\Wow6432Node\Boonty HKLM\SOFTWARE\Wow6432Node\Bunndle HKLM\SOFTWARE\Wow6432Node\CREALOGIX HKLM\SOFTWARE\Wow6432Node\DataMngr =>PUP.Optional.Datamngr HKLM\SOFTWARE\Wow6432Node\Dropbox HKLM\SOFTWARE\Wow6432Node\DropboxUpdate HKLM\SOFTWARE\Wow6432Node\Elaborate Bytes HKLM\SOFTWARE\Wow6432Node\FileMaker HKLM\SOFTWARE\Wow6432Node\GlarySoft HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\HP HKLM\SOFTWARE\Wow6432Node\IePlugin HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\IObit HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\Logitech HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\MAGIX HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\mquadr.at HKLM\SOFTWARE\Wow6432Node\Nero HKLM\SOFTWARE\Wow6432Node\Nikon HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\OpenOffice HKLM\SOFTWARE\Wow6432Node\PDFCreator HKLM\SOFTWARE\Wow6432Node\Polar Electro HKLM\SOFTWARE\Wow6432Node\Serif HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Sonic HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab HKLM\SOFTWARE\Wow6432Node\supWPM =>PUP.Optional.WpManager HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak HKLM\SOFTWARE\Wow6432Node\TeamViewer HKLM\SOFTWARE\Wow6432Node\VBMZ HKLM\SOFTWARE\Wow6432Node\VideoLAN HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\vso HKLM\SOFTWARE\Wow6432Node\WinPcap HKLM\SOFTWARE\Wow6432Node\WinRAR HKLM\SOFTWARE\Wow6432Node\Xara HKLM\SOFTWARE\Wow6432Node\Yahoo HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader HKCU\SOFTWARE\2BrightSparks HKCU\SOFTWARE\ACD Systems HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AMS Software HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\ATI HKCU\SOFTWARE\Avast Software HKCU\SOFTWARE\Avery Dennison HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Bugsplat HKCU\SOFTWARE\CDDB HKCU\SOFTWARE\combit HKCU\SOFTWARE\Commercial Research HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit HKCU\SOFTWARE\CREALOGIX HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr HKCU\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply HKCU\SOFTWARE\Delta =>Toolbar.DeltaSearch HKCU\SOFTWARE\Dropbox HKCU\SOFTWARE\DropboxUpdate HKCU\SOFTWARE\DSS HKCU\SOFTWARE\e538bdfe638e510 =>PUP.Optional.Heuristic HKCU\SOFTWARE\Elaborate Bytes HKCU\SOFTWARE\FileMaker HKCU\SOFTWARE\Foxit Software HKCU\SOFTWARE\Glarysoft HKCU\SOFTWARE\Google HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\HP HKCU\SOFTWARE\i-FunBox.com HKCU\SOFTWARE\I.R.I.S. HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\InstallCore =>Adware.InstallCore HKCU\SOFTWARE\Intel HKCU\SOFTWARE\Iris HKCU\SOFTWARE\ispy HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\Leadertech HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\LOCKimmo.com HKCU\SOFTWARE\LogiShrd HKCU\SOFTWARE\Logitech HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Magix HKCU\SOFTWARE\MAGIX AG HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\MainConcept (Consumer) HKCU\SOFTWARE\mks HKCU\SOFTWARE\mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\mysearchdial.com =>PUP.Optional.MySearchDial HKCU\SOFTWARE\Nero HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\onthegoSoft HKCU\SOFTWARE\OpenOffice HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro HKCU\SOFTWARE\PC SOFT HKCU\SOFTWARE\PDF Architect HKCU\SOFTWARE\PDFCreator HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\polar HKCU\SOFTWARE\redsn0w HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Reuss/Ziemes HKCU\SOFTWARE\Rocket Browser =>PUP.Optional.RocketBrowser HKCU\SOFTWARE\RocketUpdater =>PUP.Optional.RocketUpdater HKCU\SOFTWARE\Serif HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic HKCU\SOFTWARE\Swisscom HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak HKCU\SOFTWARE\Taplika Browser =>PUP.Optional.Taplika HKCU\SOFTWARE\TeamViewer HKCU\SOFTWARE\TeleCharger HKCU\SOFTWARE\telecharger-gratuit HKCU\SOFTWARE\Tracker Software HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\VSO HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\应用程序向导生成的本地应用程序 HKCU\SOFTWARE\AppDataLow\Google HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\Adobe HKCU\SOFTWARE\AppDataLow\Software\JavaSoft HKCU\SOFTWARE\AppDataLow\Software\Re_markit =>PUP.Optional.ReMarkIt HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar ---\\ Contenu des dossiers Programmes (340) - 8s O43 - CFD: 2013/04/08 12:36:38 - [] D -- C:\Program Files (x86)\2BrightSparks O43 - CFD: 2014/09/05 17:10:21 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2013/03/22 19:30:25 - [] D -- C:\Program Files (x86)\Apple Software Update O43 - CFD: 2013/08/14 20:47:28 - [] D -- C:\Program Files (x86)\Avery Dennison O43 - CFD: 2013/06/20 18:40:31 - [] D -- C:\Program Files (x86)\Axon Data O43 - CFD: 2013/03/22 19:30:23 - [] D -- C:\Program Files (x86)\Bonjour O43 - CFD: 2015/02/03 22:10:12 - [] D -- C:\Program Files (x86)\BoontyGames O43 - CFD: 2015/09/29 11:49:47 - [] D -- C:\Program Files (x86)\CLX.NetBanking BCVs O43 - CFD: 2015/09/29 11:58:57 - [] D -- C:\Program Files (x86)\CLX.PayPen O43 - CFD: 2015/09/15 16:34:03 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2013/08/06 19:31:13 - [] D -- C:\Program Files (x86)\DealPly =>PUP.Optional.Dealply O43 - CFD: 2013/08/06 20:04:35 - [] D -- C:\Program Files (x86)\DealPlyLive =>PUP.Optional.Dealply O43 - CFD: 2013/04/21 16:51:16 - [] D -- C:\Program Files (x86)\Delta O43 - CFD: 2013/12/06 18:51:25 - [0] D -- C:\Program Files (x86)\Deskshare O43 - CFD: 2015/10/05 15:32:19 - [] D -- C:\Program Files (x86)\Dropbox O43 - CFD: 2014/11/10 11:51:18 - [] D -- C:\Program Files (x86)\Easyweather O43 - CFD: 2013/04/22 16:22:47 - [] D -- C:\Program Files (x86)\Elaborate Bytes O43 - CFD: 2015/02/03 22:24:54 - [] D -- C:\Program Files (x86)\Emoticon O43 - CFD: 2014/01/18 15:40:34 - [] D -- C:\Program Files (x86)\FileMaker O43 - CFD: 2014/07/08 17:48:21 - [] D -- C:\Program Files (x86)\Foxit Software O43 - CFD: 2014/09/01 10:30:54 - [] D -- C:\Program Files (x86)\Glary Utilities O43 - CFD: 2015/07/21 13:55:36 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2013/12/26 12:48:31 - [] D -- C:\Program Files (x86)\HERMA O43 - CFD: 2015/09/26 16:21:04 - [] D -- C:\Program Files (x86)\Hewlett-Packard O43 - CFD: 2014/01/16 21:27:49 - [] D -- C:\Program Files (x86)\HP O43 - CFD: 2013/07/02 12:29:12 - [] D -- C:\Program Files (x86)\i-Funbox DevTeam O43 - CFD: 2013/08/14 20:47:31 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2013/03/22 19:12:25 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 2015/09/12 22:09:41 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\Program Files (x86)\IObit O43 - CFD: 2015/06/15 18:32:44 - [] D -- C:\Program Files (x86)\iTunes O43 - CFD: 2015/10/10 17:15:13 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2015/03/09 23:16:06 - [] D -- C:\Program Files (x86)\KASHU O43 - CFD: 2013/04/21 13:54:08 - [] D -- C:\Program Files (x86)\MAGIX O43 - CFD: 2014/01/02 19:31:21 - [] D -- C:\Program Files (x86)\Micro Application O43 - CFD: 2013/04/12 18:35:28 - [] D -- C:\Program Files (x86)\Microsoft Digital Image 2006 O43 - CFD: 2013/03/22 19:07:20 - [] D -- C:\Program Files (x86)\Microsoft Office O43 - CFD: 2015/08/12 16:31:32 - [] D -- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 2013/05/14 23:20:08 - [] D -- C:\Program Files (x86)\Microsoft SkyDrive O43 - CFD: 2013/05/14 23:20:48 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/01/06 21:25:46 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2015/01/07 19:25:51 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2013/12/03 16:57:44 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2013/04/21 13:53:43 - [] D -- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 2013/06/20 18:45:04 - [] D -- C:\Program Files (x86)\Nero O43 - CFD: 2014/07/08 18:20:56 - [0] D -- C:\Program Files (x86)\NetCrawl =>PUP.Optional.NetCrawl O43 - CFD: 2013/08/27 13:50:08 - [] D -- C:\Program Files (x86)\object O43 - CFD: 2014/05/26 15:37:46 - [] D -- C:\Program Files (x86)\OpenOffice 4 O43 - CFD: 2013/04/21 16:52:46 - [] D -- C:\Program Files (x86)\pazera-software O43 - CFD: 2015/02/25 21:58:20 - [] D -- C:\Program Files (x86)\PDF Password Cracker v3.2 O43 - CFD: 2014/07/08 20:07:58 - [] D -- C:\Program Files (x86)\PDFCreator O43 - CFD: 2015/06/26 18:01:11 - [] D -- C:\Program Files (x86)\Polar O43 - CFD: 2014/11/07 09:33:42 - [] D -- C:\Program Files (x86)\QuickTime O43 - CFD: 2015/09/28 15:53:20 - [] D -- C:\Program Files (x86)\Re-markit-soft =>PUP.Optional.ReMarkIt O43 - CFD: 2013/12/03 16:57:44 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2014/01/02 19:32:35 - [] D -- C:\Program Files (x86)\Serif O43 - CFD: 2015/03/21 13:41:49 - [] RD -- C:\Program Files (x86)\Skype O43 - CFD: 2015/10/10 17:08:31 - [] D -- C:\Program Files (x86)\SpeedFan O43 - CFD: 2015/08/29 10:52:05 - [0] D -- C:\Program Files (x86)\SupTab =>PUP.Optional.SupTab O43 - CFD: 2015/09/23 17:32:45 - [0] D -- C:\Program Files (x86)\Swisscom O43 - CFD: 2015/10/07 21:58:17 - [] D -- C:\Program Files (x86)\TeamViewer O43 - CFD: 2013/08/27 13:34:56 - [] D -- C:\Program Files (x86)\VideoLAN O43 - CFD: 2013/03/24 20:20:27 - [] D -- C:\Program Files (x86)\VSO O43 - CFD: 2015/08/21 17:24:56 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2013/05/15 22:15:02 - [] D -- C:\Program Files (x86)\Windows Live O43 - CFD: 2015/03/21 19:48:10 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/03/21 19:48:10 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2015/03/21 19:48:10 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2015/03/21 19:48:10 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2015/03/21 19:48:10 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2013/12/03 17:06:17 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 2014/02/18 12:58:56 - [] D -- C:\Program Files (x86)\WinPcap O43 - CFD: 2015/03/21 13:43:42 - [] D -- C:\Program Files (x86)\WinRAR O43 - CFD: 2013/12/03 17:06:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2BrightSparks O43 - CFD: 2015/03/21 19:48:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2015/03/21 19:48:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ACD Systems O43 - CFD: 2015/03/21 19:48:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2014/01/02 19:33:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applications Serif O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avery Dennison O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviReplayer O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CLX.NetBanking BCVs O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CLX.PayPen - CLX.PayPen Wireless O43 - CFD: 2015/10/05 15:32:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easyweather O43 - CFD: 2013/12/03 17:06:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HERMA O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HERMA Label Designer plus 1.1 FR O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes O43 - CFD: 2013/12/03 17:06:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech O43 - CFD: 2013/12/03 17:06:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Photo 2006 Suite Edition O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero O43 - CFD: 2015/08/29 17:15:50 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0 O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free MOV to AVI Converter O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Cracker v3.2 O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator O43 - CFD: 2015/06/26 18:01:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polar O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 2014/11/12 16:06:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8 O43 - CFD: 2015/08/29 17:15:50 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 2015/09/23 17:32:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Swisscom O43 - CFD: 2015/03/21 19:48:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2013/09/30 06:00:03 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 2013/12/03 17:06:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO O43 - CFD: 2015/08/29 17:15:50 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2014/11/07 09:32:03 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 O43 - CFD: 2014/08/13 11:38:22 - [0] D -- C:\ProgramData\374311380 O43 - CFD: 2013/04/06 01:27:18 - [] D -- C:\ProgramData\ACD Systems O43 - CFD: 2014/09/06 16:38:45 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2014/01/27 19:27:09 - [] D -- C:\ProgramData\Apple O43 - CFD: 2013/03/24 21:39:44 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2014/01/26 19:45:06 - [] D -- C:\ProgramData\AVAST Software O43 - CFD: 2013/08/14 20:47:28 - [] D -- C:\ProgramData\Avery O43 - CFD: 2013/04/21 16:51:06 - [0] D -- C:\ProgramData\Babylon =>PUP.Optional.Babylon O43 - CFD: 2015/02/03 22:09:19 - [] D -- C:\ProgramData\BOONTY O43 - CFD: 2013/03/22 18:56:59 - [0] SHD -- C:\ProgramData\Bureau O43 - CFD: 2013/03/24 22:14:24 - [] D -- C:\ProgramData\CREALOGIX O43 - CFD: 2013/07/02 11:59:42 - [] D -- C:\ProgramData\DealPlyLive =>PUP.Optional.Dealply O43 - CFD: 2013/12/01 14:34:16 - [] D -- C:\ProgramData\DeskShare O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/06/18 02:01:00 - [] D -- C:\ProgramData\Dropbox O43 - CFD: 2015/06/15 18:32:59 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 O43 - CFD: 2013/04/22 16:47:08 - [] D -- C:\ProgramData\FileMaker O43 - CFD: 2015/08/31 21:50:55 - [0] D -- C:\ProgramData\Garmin O43 - CFD: 2013/08/08 22:18:21 - [] D -- C:\ProgramData\Google O43 - CFD: 2013/12/05 12:06:17 - [] D -- C:\ProgramData\Hewlett-Packard O43 - CFD: 2014/01/16 21:27:50 - [] D -- C:\ProgramData\HP O43 - CFD: 2015/03/21 13:36:10 - [] D -- C:\ProgramData\IePluginService =>Trojan.SProtector O43 - CFD: 2015/03/24 22:18:11 - [] D -- C:\ProgramData\IObit O43 - CFD: 2013/12/06 12:54:08 - [] D -- C:\ProgramData\IsolatedStorage O43 - CFD: 2013/06/14 15:02:51 - [] D -- C:\ProgramData\Logishrd O43 - CFD: 2013/06/14 15:02:43 - [] D -- C:\ProgramData\Logitech O43 - CFD: 2015/08/13 20:46:19 - [] D -- C:\ProgramData\MAGIX O43 - CFD: 2013/03/22 18:56:59 - [0] SHD -- C:\ProgramData\Menu Démarrer O43 - CFD: 2014/01/02 19:31:07 - [] D -- C:\ProgramData\Micro Application O43 - CFD: 2015/08/29 17:15:50 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2013/05/14 23:20:04 - [] D -- C:\ProgramData\Microsoft SkyDrive O43 - CFD: 2013/03/22 18:56:59 - [0] SHD -- C:\ProgramData\Modèles O43 - CFD: 2013/05/21 16:57:44 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2014/01/16 21:28:23 - [] D -- C:\ProgramData\mquadr.at O43 - CFD: 2013/06/20 18:44:38 - [] D -- C:\ProgramData\Nero O43 - CFD: 2015/09/15 16:38:17 - [] D -- C:\ProgramData\Oracle O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\PRICache O43 - CFD: 2015/10/05 15:31:43 - [] D -- C:\ProgramData\ProductData =>PUP.Optional.Generic O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 2015/09/01 11:20:05 - [] D -- C:\ProgramData\RogueKiller O43 - CFD: 2015/03/21 13:41:47 - [] D -- C:\ProgramData\Skype O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2013/04/19 12:28:51 - [] D -- C:\ProgramData\Sun O43 - CFD: 2013/03/22 20:03:36 - [] D -- C:\ProgramData\Synaptics O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2013/11/18 13:43:41 - [] D -- C:\ProgramData\Validity O43 - CFD: 2013/07/02 11:58:16 - [] D -- C:\ProgramData\VisualBee =>PUP.Optional.VisualBeeToolbar O43 - CFD: 2015/03/28 01:39:16 - [] D -- C:\ProgramData\WindSolutions O43 - CFD: 2014/03/11 13:24:49 - [] D -- C:\ProgramData\WPM =>PUP.Optional.WpManager O43 - CFD: 2013/03/27 21:56:09 - [] D -- C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F} O43 - CFD: 2014/01/16 21:28:23 - [] HD -- C:\ProgramData\{89A46015-73F4-44D6-BED8-B852DA8ACAA6} O43 - CFD: 2013/03/27 22:00:09 - [0] D -- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} O43 - CFD: 2013/03/27 21:56:10 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} O43 - CFD: 2014/09/05 17:11:54 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2015/01/31 12:24:40 - [] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 2015/02/03 22:09:16 - [] D -- C:\Program Files (x86)\Common Files\BOONTY Shared O43 - CFD: 2015/08/29 13:19:30 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 2013/12/26 12:48:31 - [] D -- C:\Program Files (x86)\Common Files\HERMA O43 - CFD: 2013/12/23 13:13:37 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2015/09/15 16:34:03 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2013/03/23 18:39:05 - [] D -- C:\Program Files (x86)\Common Files\LogiShrd O43 - CFD: 2014/01/18 15:41:44 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared O43 - CFD: 2013/04/21 13:54:08 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Services O43 - CFD: 2013/04/21 13:55:21 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Shared O43 - CFD: 2015/08/29 17:15:50 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 2014/01/02 19:34:27 - [] D -- C:\Program Files (x86)\Common Files\MSSoap O43 - CFD: 2013/06/20 18:45:35 - [] D -- C:\Program Files (x86)\Common Files\Nero O43 - CFD: 2013/04/12 18:33:08 - [] D -- C:\Program Files (x86)\Common Files\Nikon O43 - CFD: 2013/11/20 22:29:21 - [] D -- C:\Program Files (x86)\Common Files\PC SOFT O43 - CFD: 2014/09/05 17:09:13 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2015/03/21 13:41:49 - [] D -- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 2014/09/05 17:09:13 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared O43 - CFD: 2015/03/21 19:48:10 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2013/05/14 23:19:49 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 2013/04/08 12:36:51 - [] D -- C:\Users\alexa_000\AppData\Roaming\2BrightSparks O43 - CFD: 2013/04/06 01:27:51 - [] D -- C:\Users\alexa_000\AppData\Roaming\ACD Systems O43 - CFD: 2015/03/21 16:58:13 - [] D -- C:\Users\alexa_000\AppData\Roaming\Adobe O43 - CFD: 2014/03/10 23:19:14 - [] D -- C:\Users\alexa_000\AppData\Roaming\AMS Software O43 - CFD: 2014/07/01 16:17:52 - [] D -- C:\Users\alexa_000\AppData\Roaming\Apowersoft O43 - CFD: 2015/01/01 23:11:21 - [] D -- C:\Users\alexa_000\AppData\Roaming\Apple Computer O43 - CFD: 2014/02/11 20:35:02 - [] D -- C:\Users\alexa_000\AppData\Roaming\ArchiFacile O43 - CFD: 2014/01/26 19:46:35 - [] D -- C:\Users\alexa_000\AppData\Roaming\AVAST Software O43 - CFD: 2013/08/14 20:48:42 - [] D -- C:\Users\alexa_000\AppData\Roaming\Avery O43 - CFD: 2014/03/10 23:41:06 - [] D -- C:\Users\alexa_000\AppData\Roaming\awesomehp =>PUP.Optional.AwesomeHP O43 - CFD: 2013/04/21 16:51:06 - [] D -- C:\Users\alexa_000\AppData\Roaming\Babylon =>PUP.Optional.Babylon O43 - CFD: 2015/02/26 21:29:02 - [0] D -- C:\Users\alexa_000\AppData\Roaming\Bat To Exe Converter O43 - CFD: 2015/01/10 19:40:13 - [] D -- C:\Users\alexa_000\AppData\Roaming\CoSoSys O43 - CFD: 2013/05/10 18:37:08 - [] D -- C:\Users\alexa_000\AppData\Roaming\CREALOGIX AG O43 - CFD: 2014/02/22 17:33:00 - [] D -- C:\Users\alexa_000\AppData\Roaming\de.devolo.dLAN.Cockpit O43 - CFD: 2013/07/02 11:59:40 - [] D -- C:\Users\alexa_000\AppData\Roaming\Dealply =>PUP.Optional.Dealply O43 - CFD: 2015/10/10 17:16:48 - [] D -- C:\Users\alexa_000\AppData\Roaming\Dropbox O43 - CFD: 2014/03/06 13:41:42 - [] D -- C:\Users\alexa_000\AppData\Roaming\Emjysoft O43 - CFD: 2013/08/08 21:15:10 - [] D -- C:\Users\alexa_000\AppData\Roaming\eTeks O43 - CFD: 2013/11/19 16:30:58 - [] D -- C:\Users\alexa_000\AppData\Roaming\EurekaLab s.a.s O43 - CFD: 2014/01/18 15:40:34 - [] D -- C:\Users\alexa_000\AppData\Roaming\FileMaker O43 - CFD: 2014/01/18 15:51:05 - [0] D -- C:\Users\alexa_000\AppData\Roaming\FileMaker Pro O43 - CFD: 2013/04/27 23:05:08 - [0] D -- C:\Users\alexa_000\AppData\Roaming\FileMaker Pro Advanced O43 - CFD: 2014/07/08 17:48:40 - [] D -- C:\Users\alexa_000\AppData\Roaming\Foxit Software O43 - CFD: 2015/08/31 21:50:24 - [] D -- C:\Users\alexa_000\AppData\Roaming\Garmin O43 - CFD: 2014/02/23 12:16:53 - [] D -- C:\Users\alexa_000\AppData\Roaming\GlarySoft O43 - CFD: 2015/02/03 21:59:15 - [] D -- C:\Users\alexa_000\AppData\Roaming\GoodGameEmpire =>PUP.Optional.GoodGameEmpire O43 - CFD: 2013/08/08 22:18:21 - [] D -- C:\Users\alexa_000\AppData\Roaming\Google O43 - CFD: 2015/03/02 17:39:03 - [] D -- C:\Users\alexa_000\AppData\Roaming\gtk-2.0 O43 - CFD: 2013/12/05 12:06:28 - [] D -- C:\Users\alexa_000\AppData\Roaming\hpqLog O43 - CFD: 2015/10/05 15:36:07 - [] D -- C:\Users\alexa_000\AppData\Roaming\HpUpdate O43 - CFD: 2013/03/23 18:25:59 - [] D -- C:\Users\alexa_000\AppData\Roaming\Identities O43 - CFD: 2013/07/02 11:57:50 - [] D -- C:\Users\alexa_000\AppData\Roaming\iFunbox_UserCache O43 - CFD: 2015/03/24 22:18:17 - [] D -- C:\Users\alexa_000\AppData\Roaming\IObit O43 - CFD: 2013/12/06 12:54:08 - [] D -- C:\Users\alexa_000\AppData\Roaming\IsolatedStorage O43 - CFD: 2013/12/06 18:15:45 - [] D -- C:\Users\alexa_000\AppData\Roaming\iSpy O43 - CFD: 2013/03/23 18:39:05 - [] D -- C:\Users\alexa_000\AppData\Roaming\Leadertech O43 - CFD: 2013/03/23 18:34:42 - [] D -- C:\Users\alexa_000\AppData\Roaming\Logishrd O43 - CFD: 2013/03/23 18:39:22 - [] D -- C:\Users\alexa_000\AppData\Roaming\Logitech O43 - CFD: 2013/03/22 19:03:12 - [] D -- C:\Users\alexa_000\AppData\Roaming\Macromedia O43 - CFD: 2015/08/13 20:46:19 - [] D -- C:\Users\alexa_000\AppData\Roaming\MAGIX O43 - CFD: 2015/08/29 17:15:49 - [] SD -- C:\Users\alexa_000\AppData\Roaming\Microsoft O43 - CFD: 2013/05/21 16:57:57 - [] D -- C:\Users\alexa_000\AppData\Roaming\Mozilla O43 - CFD: 2013/06/20 18:48:59 - [] D -- C:\Users\alexa_000\AppData\Roaming\Nero O43 - CFD: 2014/07/08 17:48:29 - [] D -- C:\Users\alexa_000\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy O43 - CFD: 2014/05/26 15:38:09 - [] D -- C:\Users\alexa_000\AppData\Roaming\OpenOffice O43 - CFD: 2014/03/06 13:54:57 - [0] D -- C:\Users\alexa_000\AppData\Roaming\passport_photo O43 - CFD: 2014/07/09 11:16:00 - [] D -- C:\Users\alexa_000\AppData\Roaming\PDAppFlex O43 - CFD: 2014/03/04 17:25:47 - [] D -- C:\Users\alexa_000\AppData\Roaming\PDF Architect O43 - CFD: 2014/03/04 17:25:19 - [] D -- C:\Users\alexa_000\AppData\Roaming\pdfforge O43 - CFD: 2015/03/09 23:09:50 - [] D -- C:\Users\alexa_000\AppData\Roaming\PenProtect O43 - CFD: 2013/04/13 21:39:19 - [] D -- C:\Users\alexa_000\AppData\Roaming\Polar WebSync O43 - CFD: 2015/03/24 22:18:13 - [] D -- C:\Users\alexa_000\AppData\Roaming\ProductData O43 - CFD: 2013/07/16 15:24:08 - [] D -- C:\Users\alexa_000\AppData\Roaming\redsn0w O43 - CFD: 2014/07/08 17:20:14 - [] D -- C:\Users\alexa_000\AppData\Roaming\RocketUpdater =>PUP.Optional.RocketUpdater O43 - CFD: 2014/01/02 19:34:54 - [] D -- C:\Users\alexa_000\AppData\Roaming\Serif O43 - CFD: 2015/02/03 22:08:49 - [] D -- C:\Users\alexa_000\AppData\Roaming\Shortcut O43 - CFD: 2015/03/21 14:01:53 - [] D -- C:\Users\alexa_000\AppData\Roaming\Skype O43 - CFD: 2015/02/26 21:32:37 - [] D -- C:\Users\alexa_000\AppData\Roaming\sparta111 O43 - CFD: 2015/02/26 21:40:45 - [0] D -- C:\Users\alexa_000\AppData\Roaming\StormFall =>PUP.Optional.StormFall O43 - CFD: 2014/02/23 13:21:10 - [] D -- C:\Users\alexa_000\AppData\Roaming\SumatraPDF O43 - CFD: 2015/09/15 16:33:26 - [] D -- C:\Users\alexa_000\AppData\Roaming\Sun O43 - CFD: 2015/03/21 13:36:10 - [] D -- C:\Users\alexa_000\AppData\Roaming\SupTab =>PUP.Optional.SupTab O43 - CFD: 2013/03/22 20:03:36 - [] D -- C:\Users\alexa_000\AppData\Roaming\Synaptics O43 - CFD: 2014/07/08 17:32:37 - [] D -- C:\Users\alexa_000\AppData\Roaming\Systweak =>PUP.Optional.Systweak O43 - CFD: 2014/01/05 22:25:28 - [] D -- C:\Users\alexa_000\AppData\Roaming\TeamViewer O43 - CFD: 2015/03/09 23:28:23 - [] D -- C:\Users\alexa_000\AppData\Roaming\TrueCrypt O43 - CFD: 2015/09/23 17:26:35 - [] D -- C:\Users\alexa_000\AppData\Roaming\uTorrent O43 - CFD: 2015/04/02 18:39:23 - [] D -- C:\Users\alexa_000\AppData\Roaming\vlc O43 - CFD: 2015/10/08 21:16:58 - [] D -- C:\Users\alexa_000\AppData\Roaming\Vso O43 - CFD: 2015/03/28 01:43:24 - [] D -- C:\Users\alexa_000\AppData\Roaming\WindSolutions O43 - CFD: 2013/03/24 21:46:17 - [] D -- C:\Users\alexa_000\AppData\Roaming\WinRAR O43 - CFD: 2015/10/10 17:47:18 - [] D -- C:\Users\alexa_000\AppData\Roaming\ZHP O43 - CFD: 2015/10/10 17:24:01 - [] D -- C:\Users\alexa_000\AppData\Local\130BD2F4-DE71-4F48-B07E-C75828FE2E87.aplzod O43 - CFD: 2013/04/08 12:36:40 - [] D -- C:\Users\alexa_000\AppData\Local\2BrightSparks O43 - CFD: 2014/03/20 12:27:56 - [] D -- C:\Users\alexa_000\AppData\Local\6872 O43 - CFD: 2013/12/12 17:49:15 - [] D -- C:\Users\alexa_000\AppData\Local\ACD Systems O43 - CFD: 2015/10/10 16:17:00 - [] D -- C:\Users\alexa_000\AppData\Local\Adobe O43 - CFD: 2013/10/08 15:08:41 - [] D -- C:\Users\alexa_000\AppData\Local\Apple O43 - CFD: 2013/11/02 13:33:25 - [] D -- C:\Users\alexa_000\AppData\Local\Apple Computer O43 - CFD: 2015/01/01 23:11:40 - [] D -- C:\Users\alexa_000\AppData\Local\Apple Inc O43 - CFD: 2013/12/03 17:03:56 - [0] SHD -- C:\Users\alexa_000\AppData\Local\Application Data O43 - CFD: 2015/10/10 17:16:50 - [] D -- C:\Users\alexa_000\AppData\Local\CrashDumps O43 - CFD: 2013/07/02 11:59:42 - [] D -- C:\Users\alexa_000\AppData\Local\DealPlyLive =>PUP.Optional.Dealply O43 - CFD: 2013/12/01 14:35:00 - [] D -- C:\Users\alexa_000\AppData\Local\DeskShare Data O43 - CFD: 2015/09/30 00:27:45 - [] D -- C:\Users\alexa_000\AppData\Local\Diagnostics O43 - CFD: 2013/04/06 01:26:55 - [] D -- C:\Users\alexa_000\AppData\Local\Downloaded Installations O43 - CFD: 2015/07/24 12:45:37 - [] D -- C:\Users\alexa_000\AppData\Local\Dropbox O43 - CFD: 2014/03/25 16:16:32 - [0] D -- C:\Users\alexa_000\AppData\Local\ElevatedDiagnostics O43 - CFD: 2015/06/15 20:20:10 - [0] SHD -- C:\Users\alexa_000\AppData\Local\EmieBrowserModeList O43 - CFD: 2015/06/15 20:20:10 - [0] SHD -- C:\Users\alexa_000\AppData\Local\EmieSiteList O43 - CFD: 2015/06/15 20:20:10 - [0] SHD -- C:\Users\alexa_000\AppData\Local\EmieUserList O43 - CFD: 2014/03/06 13:41:42 - [] D -- C:\Users\alexa_000\AppData\Local\Emjysoft O43 - CFD: 2014/02/26 20:38:59 - [] D -- C:\Users\alexa_000\AppData\Local\FileMaker O43 - CFD: 2013/12/06 12:54:11 - [] D -- C:\Users\alexa_000\AppData\Local\FileViewPro O43 - CFD: 2015/08/31 21:50:29 - [] D -- C:\Users\alexa_000\AppData\Local\Garmin_Ltd._or_its_subsid O43 - CFD: 2015/02/03 21:59:13 - [0] D -- C:\Users\alexa_000\AppData\Local\GGEmpire O43 - CFD: 2015/09/26 19:04:58 - [] D -- C:\Users\alexa_000\AppData\Local\Google O43 - CFD: 2015/06/03 14:07:50 - [] D -- C:\Users\alexa_000\AppData\Local\GWX O43 - CFD: 2014/01/09 16:18:22 - [] D -- C:\Users\alexa_000\AppData\Local\HERMA O43 - CFD: 2015/09/26 16:26:11 - [] D -- C:\Users\alexa_000\AppData\Local\Hewlett-Packard O43 - CFD: 2013/12/03 17:03:56 - [0] SHD -- C:\Users\alexa_000\AppData\Local\Historique O43 - CFD: 2014/01/16 21:27:50 - [] D -- C:\Users\alexa_000\AppData\Local\HP O43 - CFD: 2013/07/16 15:20:43 - [] D -- C:\Users\alexa_000\AppData\Local\libimobiledevice O43 - CFD: 2013/12/06 10:52:14 - [] D -- C:\Users\alexa_000\AppData\Local\Macromedia O43 - CFD: 2015/08/29 17:15:51 - [] D -- C:\Users\alexa_000\AppData\Local\Microsoft O43 - CFD: 2013/11/30 23:47:38 - [] D -- C:\Users\alexa_000\AppData\Local\Microsoft Help O43 - CFD: 2013/12/10 22:00:27 - [] D -- C:\Users\alexa_000\AppData\Local\Mozilla O43 - CFD: 2013/11/18 22:37:56 - [] D -- C:\Users\alexa_000\AppData\Local\mquadr.at O43 - CFD: 2015/10/07 22:02:36 - [] D -- C:\Users\alexa_000\AppData\Local\Packages O43 - CFD: 2014/07/02 23:38:33 - [0] D -- C:\Users\alexa_000\AppData\Local\pangu O43 - CFD: 2013/04/08 12:36:30 - [] D -- C:\Users\alexa_000\AppData\Local\Programs O43 - CFD: 2015/03/18 13:32:20 - [] D -- C:\Users\alexa_000\AppData\Local\Rohos O43 - CFD: 2015/03/21 13:41:54 - [] D -- C:\Users\alexa_000\AppData\Local\Skype O43 - CFD: 2015/02/26 21:40:55 - [0] D -- C:\Users\alexa_000\AppData\Local\Sparta O43 - CFD: 2013/12/01 14:34:15 - [] D -- C:\Users\alexa_000\AppData\Local\Spoon O43 - CFD: 2015/02/06 17:28:12 - [0] D -- C:\Users\alexa_000\AppData\Local\StormFall =>PUP.Optional.StormFall O43 - CFD: 2015/08/12 20:50:19 - [0] D -- C:\Users\alexa_000\AppData\Local\swisscom O43 - CFD: 2015/03/26 18:21:54 - [] D -- C:\Users\alexa_000\AppData\Local\TeamViewer O43 - CFD: 2015/10/10 17:46:58 - [] D -- C:\Users\alexa_000\AppData\Local\Temp O43 - CFD: 2013/12/03 17:03:56 - [0] SHD -- C:\Users\alexa_000\AppData\Local\Temporary Internet Files O43 - CFD: 2013/08/08 19:04:11 - [] D -- C:\Users\alexa_000\AppData\Local\VirtualStore O43 - CFD: 2013/08/06 19:34:24 - [0] D -- C:\Users\alexa_000\AppData\Local\VisualBeeExe =>PUP.Optional.VisualBeeToolbar O43 - CFD: 2013/12/06 16:34:39 - [] D -- C:\Users\alexa_000\AppData\Local\WDSetup O43 - CFD: 2013/08/02 19:58:00 - [] D -- C:\Users\alexa_000\AppData\Local\Windows Live O43 - CFD: 2013/04/21 14:11:58 - [] D -- C:\Users\alexa_000\AppData\Local\Xara O43 - CFD: 2015/09/15 16:36:27 - [] D -- C:\Users\alexa_000\AppData\Local\YSearchUtil O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/08/29 17:15:49 - [] RD -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/08/29 17:15:49 - [] D -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HERMA Label Designer plus 1.1 FR O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/08/29 17:15:49 - [] RD -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2015/08/29 17:15:49 - [] HD -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup-Disabled O43 - CFD: 2015/08/29 17:15:49 - [] RD -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2015/08/29 17:15:49 - [] D -- C:\Users\alexa_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ ShellIconOverlayIdentifiers (SIOI) (18) - 0s O106 - SIOI: DropboxExt1 Class [ DropboxExt1] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt2 Class [ DropboxExt2] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt5 Class [ DropboxExt3] - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt6 Class [ DropboxExt4] - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt3 Class [ DropboxExt5] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt7 Class [ DropboxExt6] - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt4 Class [ DropboxExt7] - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt8 Class [ DropboxExt8] - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft SkyDrive Shell Extension.) -- C:\Users\alexa_000\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll © O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft SkyDrive Shell Extension.) -- C:\Users\alexa_000\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll © O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft SkyDrive Shell Extension.) -- C:\Users\alexa_000\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll © O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office 15\root\office15\grooveex.dll © O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office 15\root\office15\grooveex.dll © O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office 15\root\office15\grooveex.dll © O106 - SIOI: DropboxExt1 Class [DropboxExt1] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt2 Class [DropboxExt2] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: DropboxExt3 Class [DropboxExt3] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll © O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll © ---\\ Liste des pilotes du système (70) - 1s O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896] © O58 - SDL:2011/05/13 19:57:58 A . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\WINDOWS\System32\drivers\Accelerometer.sys [43320] © O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176] © O58 - SDL:2013/12/13 11:23:16 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [36096] © O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200] © O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] © O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952] © O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016] © O58 - SDL:2015/07/20 17:43:17 A . (.AVAST Software - avast! HWID.) -- C:\WINDOWS\System32\drivers\aswHwid.sys [28656] © O58 - SDL:2015/07/20 17:43:17 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [90968] © O58 - SDL:2015/07/20 17:43:16 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr2.sys [93528] © O58 - SDL:2015/07/20 17:43:17 A . (.AVAST Software - avast! Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [65224] © O58 - SDL:2015/07/20 17:42:51 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [1048856] © O58 - SDL:2015/07/20 17:43:17 A . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswSP.sys [447944] © O58 - SDL:2015/07/20 17:43:17 A . (.AVAST Software - Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStm.sys [150160] © O58 - SDL:2015/07/20 17:43:17 A . (.AVAST Software - avast! VM Monitor.) -- C:\WINDOWS\System32\drivers\aswVmm.sys [274808] © O58 - SDL:2013/12/13 11:23:36 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [13207552] © O58 - SDL:2013/12/13 11:23:36 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [626176] © O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] © O58 - SDL:2013/07/01 18:50:06 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\WINDOWS\System32\drivers\BCMWL63a.SYS [8536752] © O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] © O58 - SDL:2012/04/24 03:01:00 A . (.Corel Corporation - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [10864] © O58 - SDL:2012/04/24 03:01:00 A . (.Corel Corporation - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [11376] © O58 - SDL:2013/06/04 10:42:04 A . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\WINDOWS\System32\drivers\Dot4.sys [146856] © O58 - SDL:2013/06/04 10:42:04 A . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928] © O58 - SDL:2010/12/17 00:58:14 A . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) -- C:\WINDOWS\System32\drivers\ElbyCDIO.sys [40816] © O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024] © O58 - SDL:2012/08/21 14:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [33240] © O58 - SDL:2010/10/20 00:34:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [56344] © O58 - SDL:2011/05/13 19:58:16 A . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\WINDOWS\System32\drivers\hpdskflt.sys [30008] © O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] © O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568] © O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320] © O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248] © O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] © O58 - SDL:2014/01/30 00:02:28 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [5363200] © O58 - SDL:2013/01/03 10:17:38 A . (.Logitech, Inc. - Logitech Equad USB Driver..) -- C:\WINDOWS\System32\drivers\LEqdUsb.sys [79240] © O58 - SDL:2013/01/03 10:17:38 A . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\WINDOWS\System32\drivers\LHidEqd.sys [15752] © O58 - SDL:2013/01/03 10:17:38 A . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\WINDOWS\System32\drivers\LHidFilt.Sys [77192] © O58 - SDL:2013/01/03 10:17:38 A . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\WINDOWS\System32\drivers\LMouFilt.Sys [61832] © O58 - SDL:2015/08/31 15:01:48 A . (.Logitech, Inc. - Logitech Non-Plug and Play Driver..) -- C:\WINDOWS\System32\drivers\LNonPnP.sys [18960] © O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408] © O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536] © O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760] © O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] © O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672] © O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] © O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] © O58 - SDL:2013/07/25 16:53:46 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\System32\drivers\netaapl64.sys [23040] © O58 - SDL:2013/03/01 03:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] © O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] © O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288] © O58 - SDL:2013/04/05 11:37:14 A . (...) -- C:\WINDOWS\System32\drivers\PayPen.sys [20864] O58 - SDL:2013/07/19 03:01:00 A . (.Corel Corporation - Px Engine Device Driver for 64-bit (x86-64).) -- C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336] © O58 - SDL:2013/06/18 16:46:17 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [591360] © O58 - SDL:2011/01/12 09:10:44 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsPStor.sys [333928] © O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040] © O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] © O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] © O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] © O58 - SDL:2011/10/14 05:37:44 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [396848] © O58 - SDL:2015/03/09 23:23:42 A . (.TrueCrypt Foundation - TrueCrypt Driver.) -- C:\WINDOWS\System32\drivers\truecrypt.sys [231376] © O58 - SDL:2015/09/01 11:20:07 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [37624] O58 - SDL:2014/07/28 14:52:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] © O58 - SDL:2011/01/15 18:21:04 A . (.Elaborate Bytes AG - VirtualCloneCD Driver.) -- C:\WINDOWS\System32\drivers\VClone.sys [36352] © O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808] © O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800] © O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] © O58 - SDL:2015/03/11 21:31:48 A . (.Western Digital Technologies - WD SCSI Architecture Model (SAM) driver.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys [14464] © O58 - SDL:2012/08/31 10:40:24 A . (.Hewlett-Packard Development Company, L.P. - HP Wireless Button Driver.) -- C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800] © ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (3) - 6s O61 - LFC: 2015/10/10 16:34:29 A . (..) -- C:\Users\alexa_000\AppData\Local\Microsoft\Windows\INetCache\IE\8H0CWLCL\urlblockindex[1].bin [16] O61 - LFC: 2015/10/10 17:37:53 A . (..) -- C:\Users\alexa_000\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082] O61 - LFC: 2015/10/08 19:57:41 A . (..) -- C:\Users\alexa_000\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [200709] ---\\ Associations Shell Spawning (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe © O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\WINDOWS\System32\eventvwr.exe © O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe © O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\wscript.exe © O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe © O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de démarrage Internet (12) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe © ---\\ Recherche d'infection sur les navigateurs (84) - 4s O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.admin", false); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.aflt", "babsst"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.autoRvrt", "false"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.dfltLng", "en"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.excTlbr", false); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.ffxUnstlRst", true); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.id", "eee6b49a000000000000422cf43a6cf9"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.instlDay", "15855"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.instlRef", "sst"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.newTab", false); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.prdct", "delta"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.prtnrId", "delta"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.rvrt", "false"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.smplGrp", "none"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.tlbrId", "base"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.tlbrSrchUrl", ""); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.vrsn", "1.8.21.5"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.vrsnTs", "1.8.21.517:54:43"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta.vrsni", "1.8.21.5"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta_i.babExt", ""); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta_i.babTrack", "affID=121845&tt=300513_new"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.delta_i.srcExt", "ss"); =>Toolbar.DeltaSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.irmysearch.aflt", "tele_14_15_ie"); =>PUP.Optional.MyWebSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzuyEtDtB0C0FyEtByDyE0ByB0A0ByEzy0AtN0D0Tzu0SzztBzytN1L2XzutBtFtCzztFtBtFtDtN1[...] =>PUP.Optional.MyWebSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.irmysearch.cr", "1077917611"); =>PUP.Optional.MyWebSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.irmysearch.instlRef", "140305_b"); =>PUP.Optional.MyWebSearch O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.AL", 2); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.aflt", "tele_14_15_ie"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzuyEtDtB0C0FyEtByDyE0ByB0A0ByEzy0AtN0D0Tzu0SzztBzytN1L2XzutBtFtCzztFtBtFtDt[...] =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.cntry", "CH"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.cr", "1077917611"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.dfltLng", ""); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.dfltSrch", true); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.dnsErr", true); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497[...] =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.excTlbr", false); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.hdrMd5", "A1BE6F1C0688F603F7E8E6A304D9E083"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.hmpg", true); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele_14_15_ie&cd=2XzuyEtN2Y1L1QzuyEtDtB0C0FyEtB[...] =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.id", "402CF4254B7AB49A"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.instlDay", "16168"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.instlRef", "140305_b"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.lastB", "http://start.mysearchdial.com/?f=1&a=tele_14_10_IE&cd=2XzuyEtN2Y1L1QzuyEtDtB0C0FyEtByD[...] =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.29.012:40:28"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele_14_15_ie&cd=2XzuyEtN2Y1L1QzuyEtDtB0C0FyE[...] =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"90\",\"lastVrsn\":\"90\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"s[...] =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.prdct", "mysearchdial"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.prtnrId", "mysearchdial"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.sg", "none"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.tlbrId", "base"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele_14_15_ie&cd=2XzuyEtN2Y1L1QzuyEtDtB0C0F[...] =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.vrsn", "1.8.29.0"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial.vrsni", "1.8.29.0"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial_i.hmpg", true); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial_i.newTab", false); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial_i.smplGrp", "none"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.29.020:14:43"); =>PUP.Optional.MySearchDial O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.admin", false); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.aflt", "babsst"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.appId", "{9C69AD01-2505-4FA3-BF08-38DCFB0BF6B3}"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.autoRvrt", "false"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.dfltLng", "en"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.excTlbr", false); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.id", "eee6b49a000000000000422cf43a6cf9"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.instlDay", "15888"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.instlRef", "sst"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.newTab", false); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.prdct", "visualbee"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.prtnrId", "visualbee"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.rvrt", "false"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.smplGrp", "none"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.tlbrId", "vbeeyh"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.tlbrSrchUrl", ""); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.vrsn", "1.8.9.1"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.vrsnTs", "1.8.9.111:59:51"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: prefs.js [Alex - nw4gvyv3.default] user_pref("extensions.visualbee.vrsni", "1.8.9.1"); =>PUP.Optional.VisualBeeToolbar O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (awesomehp) - http://www.awesomehp.com/ =>PUP.Optional.AwesomeHP O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKCU] {FB642BB2-CEB3-4EBC-86ED-815B488ECFA4} - (Yahoo Search) - http://ch.search.yahoo.com/ ---\\ Enumère les fichiers Crack & Keygen (1) - 7s O82 - LFC: 2013/11/04 18:55:18 A . (...) -- C:\Users\alexa_000\Desktop\Sauvegarde disque Julien\Telechargements\Minecraft1.7.2Cracked.rar [115551840] =>.Crack,Keygen ---\\ Enumère les services démarrés par Svchost (34) - 0s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\WINDOWS\System32\aelupsvc.dll [214528] © O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] © O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] © O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [329216] © O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1360896] © O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [1084416] © O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208] © O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31744] © O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [110080] © O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] © O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [110592] © O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1265152] © O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [230400] © O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\WINDOWS\system32\mmcss.dll [71168] © O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [135168] © O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [228864] © O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\WINDOWS\System32\SessEnv.dll [339968] © O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [84992] © O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [101376] © O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [348672] © O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\WINDOWS\System32\GeofenceMonitorService.dll [522240] © O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [1639424] © O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [59392] © O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848] © O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [166400] © O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [102912] © O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [542208] © O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [226816] © O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73728] © O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] © O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\System32\tapisrv.dll [313344] © O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [3705344] © O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [933376] © O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [640000] © ---\\ Liste des exceptions du parefeu Windows (20) - 2s O87 - FAEL: "UDP Query User{FC19FAFA-A1A0-4487-A87E-B63FE71BA35F}E:\english\deviceclient\search tool 3.6.exe" [In-None-P17-TRUE] .(...) -- E:\english\deviceclient\search tool 3.6.exe (.not file.) O87 - FAEL: "TCP Query User{27E09CEB-6A56-4360-842B-5B9DE9F0A7A0}E:\english\deviceclient\search tool 3.6.exe" [In-None-P6-TRUE] .(...) -- E:\english\deviceclient\search tool 3.6.exe (.not file.) O87 - FAEL: "{58E1EBA8-F8F4-4555-BD4E-84024C969097}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{F2AB0EE7-5C4B-448A-9B18-DF9F6B45A779}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "TCP Query User{DDB32DE0-A52C-425F-B275-D6881A480495}G:\ipcamera.exe" [In-None-P6-TRUE] .(...) -- G:\ipcamera.exe (.not file.) O87 - FAEL: "UDP Query User{64536421-14E4-4510-8F37-503CC7A25DEA}G:\ipcamera.exe" [In-None-P17-TRUE] .(...) -- G:\ipcamera.exe (.not file.) O87 - FAEL: "TCP Query User{B05163C1-41B6-44D2-8792-25B450257964}E:\digitus plug&view\dn-16027_dn-16036_dn-16037_dn-16040\search utility\search.exe" [In-None-P6-TRUE] .(...) -- E:\digitus plug&view\dn-16027_dn-16036_dn-16037_dn-16040\search utility\search.exe (.not file.) O87 - FAEL: "UDP Query User{56F908CE-4528-4A19-ACF6-F68CFDCA1814}E:\digitus plug&view\dn-16027_dn-16036_dn-16037_dn-16040\search utility\search.exe" [In-None-P17-TRUE] .(...) -- E:\digitus plug&view\dn-16027_dn-16036_dn-16037_dn-16040\search utility\search.exe (.not file.) O87 - FAEL: "TCP Query User{E9F04011-B62F-4C30-B08B-44FE17225F3C}C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe" [In-None-P6-TRUE] .(.FileMaker, Inc. - FileMaker Pro Advanced.) -- C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe O87 - FAEL: "UDP Query User{B22F2DD2-D89F-45BD-A721-489514F53819}C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe" [In-None-P17-TRUE] .(.FileMaker, Inc. - FileMaker Pro Advanced.) -- C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe O87 - FAEL: "TCP Query User{B978511A-239B-4D4D-9D2B-F21C30BB5757}C:\program files (x86)\filemaker\filemaker pro 10\filemaker pro.exe" [In-None-P6-TRUE] .(.FileMaker, Inc. - FileMaker Pro.) -- C:\program files (x86)\filemaker\filemaker pro 10\filemaker pro.exe O87 - FAEL: "UDP Query User{460D2403-8921-40E7-B0AF-ACBAD2DB7385}C:\program files (x86)\filemaker\filemaker pro 10\filemaker pro.exe" [In-None-P17-TRUE] .(.FileMaker, Inc. - FileMaker Pro.) -- C:\program files (x86)\filemaker\filemaker pro 10\filemaker pro.exe O87 - FAEL: "TCP Query User{AD713DD8-0499-4513-AE3B-9C0033E96A8F}C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe" [In-None-P6-TRUE] .(.FileMaker, Inc. - FileMaker Pro Advanced.) -- C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe O87 - FAEL: "UDP Query User{5E9A43EA-E59B-45AC-82B2-540AE3E153BB}C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe" [In-None-P17-TRUE] .(.FileMaker, Inc. - FileMaker Pro Advanced.) -- C:\program files (x86)\filemaker\filemaker pro 12 advanced\filemaker pro advanced.exe O87 - FAEL: "{2F677A2B-823E-4DCE-BC6E-2F73DEFE8CB9}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{FD57BB81-739F-40C0-821D-40A616E6EEB9}" [Out-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{B499F694-49B6-40CC-B87E-73CB69E1ED06}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{769E578F-A241-48FF-8B2C-61F2600946FC}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{08DB7327-31A9-4686-8B9F-38651DCBF153}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{67D1D979-A14A-4C58-B196-B42E922C8232}" [Out-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\alexa_000\AppData\Roaming\uTorrent\uTorrent.exe ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (31) - 15s SR - Auto [2013/09/03 06:27:02] [ 181152] Adobe Active File Monitor V12 (AdobeActiveFileMonitor12.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe © SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe © SS - Demand [2015/03/21 13:37:48] [ 268464] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe © SR - Auto [2013/12/13 11:23:32] [ 239616] (AMD External Events Utility) . (.AMD.) - C:\WINDOWS\system32\atiesrxx.exe © SR - Auto [2015/01/20 00:30:38] [ 77128] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe © SR - Auto [2015/07/20 17:42:59] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe © SR - Auto [2011/08/31 00:05:32] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe © SS - Demand [2015/02/03 22:09:16] [ 69120] Boonty Games (Boonty Games) . (.BOONTY.) - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe © SS - Demand [2014/01/30 00:02:44] [ 279000] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe © SS - Auto [2015/07/22 15:50:54] [ 134512] Service Mise à jour Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © SS - Demand [2015/07/22 15:50:54] [ 134512] Service Mise à jour Dropbox (dbupdatem) (dbupdatem) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © SR - Auto [2011/05/24 10:33:30] [ 1840128] FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe © SS - Demand [2011/04/26 13:54:12] [ 2702848] Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe SS - Demand [2014/01/18 15:41:44] [ 655624] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe © SS - Auto [2015/08/31 13:23:40] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © SS - Demand [2015/08/31 13:23:40] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © SS - Demand [2013/03/22 19:59:46] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe © SR - Auto [2011/05/13 19:58:10] [ 30520] @oem30.inf,%hpservice_desc%;HP Service (hpsrv) . (.Hewlett-Packard Company.) - C:\WINDOWS\system32\Hpservice.exe © SR - Auto [2015/07/26 21:38:30] [ 24888] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe © SR - Demand [2015/04/07 00:28:50] [ 643880] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe © SS - Demand [2013/02/08 20:30:42] [ 359664] Logitech Bluetooth Service (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe © SR - Auto [2015/08/10 14:00:38] [ 2909472] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe © SS - Demand [2014/11/26 18:40:36] [ 114800] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe © SR - Auto [2009/01/12 09:15:52] [ 71096] NMSAccess (NMSAccess) . (...) - C:\WINDOWS\SysWOW64\NMSAccessU.exe SR - Auto [2012/12/12 15:20:18] [ 419536] Polar Daemon (Polar Daemon) . (...) - C:\Program Files (x86)\Polar\Daemon\polard.exe SS - Demand [2013/03/01 03:48:58] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe © SS - Auto [2015/01/02 20:45:12] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe © SR - Auto [2014/09/23 14:10:10] [ 72992] StartMenu8 Service (StartMenuService) . (.IObit.) - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe © SR - Auto [2015/09/11 17:34:16] [ 5702416] TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe © SR - Auto [2013/10/30 12:52:06] [ 35328] @oem27.inf,%WBFService_SvcDesc%;Validity WBF Policy Service (valWBFPolicyService) . (.Validity Sensors, Inc..) - C:\WINDOWS\system32\valWBFPolicyService.exe © ---\\ Scan Additionnel (61) - 0s C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\babylon.xml =>PUP.Optional.Babylon C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\BrowserDefender.xml =>PUA.Optional.BrowserDefendert C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\BrowserProtect.xml =>PUP.Optional.Eazel C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\Mysearchdial.xml =>PUP.Optional.MySearchDial C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\Taplika.xml =>PUP.Optional.Taplika C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\trovi-search.xml =>PUP.Optional.TroviCom C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\searchplugins\visualbee.xml =>PUP.Optional.VisualBeeToolbar C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\awesomehp.xml =>PUP.Optional.AwesomeHP C:\Users\alexa_000\AppData\Roaming\Mozilla\Firefox\Profiles\nw4gvyv3.default\extensions\faststartff@gmail.com =>PUP.Optional.FastStart C:\Users\alexa_000\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe =>PUP.Optional.Dealply C:\Users\alexa_000\AppData\Roaming\RocketUpdater\UpdateProc\UpdateTask.exe =>PUP.Optional.RocketUpdater C:\WINDOWS\Tasks\Dealply.job =>PUP.Optional.Dealply C:\WINDOWS\Tasks\Rocket Updater.job =>PUP.Optional.RocketUpdater C:\WINDOWS\System32\Tasks\Dealply =>PUP.Optional.Dealply C:\WINDOWS\System32\Tasks\Rocket Updater =>PUP.Optional.RocketUpdater HKLM\SOFTWARE\Wow6432Node\awesomehpSoftware =>PUP.Optional.AwesomeHP HKLM\SOFTWARE\Wow6432Node\Babylon =>PUP.Optional.Babylon HKLM\SOFTWARE\Wow6432Node\DataMngr =>PUP.Optional.Datamngr HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab HKLM\SOFTWARE\Wow6432Node\supWPM =>PUP.Optional.WpManager HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr HKCU\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply HKCU\SOFTWARE\Delta =>Toolbar.DeltaSearch HKCU\SOFTWARE\e538bdfe638e510 =>PUP.Optional.Heuristic HKCU\SOFTWARE\InstallCore =>Adware.InstallCore HKCU\SOFTWARE\mysearchdial.com =>PUP.Optional.MySearchDial HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro HKCU\SOFTWARE\Rocket Browser =>PUP.Optional.RocketBrowser HKCU\SOFTWARE\RocketUpdater =>PUP.Optional.RocketUpdater HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak HKCU\SOFTWARE\Taplika Browser =>PUP.Optional.Taplika HKCU\SOFTWARE\AppDataLow\Software\Re_markit =>PUP.Optional.ReMarkIt HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar C:\Program Files (x86)\DealPly =>PUP.Optional.Dealply C:\Program Files (x86)\DealPlyLive =>PUP.Optional.Dealply C:\Program Files (x86)\NetCrawl =>PUP.Optional.NetCrawl C:\Program Files (x86)\Re-markit-soft =>PUP.Optional.ReMarkIt C:\Program Files (x86)\SupTab =>PUP.Optional.SupTab C:\ProgramData\Babylon =>PUP.Optional.Babylon C:\ProgramData\DealPlyLive =>PUP.Optional.Dealply C:\ProgramData\IePluginService =>Trojan.SProtector C:\ProgramData\ProductData =>PUP.Optional.Generic C:\ProgramData\VisualBee =>PUP.Optional.VisualBeeToolbar C:\ProgramData\WPM =>PUP.Optional.WpManager C:\Users\alexa_000\AppData\Roaming\awesomehp =>PUP.Optional.AwesomeHP C:\Users\alexa_000\AppData\Roaming\Babylon =>PUP.Optional.Babylon C:\Users\alexa_000\AppData\Roaming\Dealply =>PUP.Optional.Dealply C:\Users\alexa_000\AppData\Roaming\GoodGameEmpire =>PUP.Optional.GoodGameEmpire C:\Users\alexa_000\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy C:\Users\alexa_000\AppData\Roaming\RocketUpdater =>PUP.Optional.RocketUpdater C:\Users\alexa_000\AppData\Roaming\StormFall =>PUP.Optional.StormFall C:\Users\alexa_000\AppData\Roaming\SupTab =>PUP.Optional.SupTab C:\Users\alexa_000\AppData\Roaming\Systweak =>PUP.Optional.Systweak C:\Users\alexa_000\AppData\Local\DealPlyLive =>PUP.Optional.Dealply C:\Users\alexa_000\AppData\Local\StormFall =>PUP.Optional.StormFall C:\Users\alexa_000\AppData\Local\VisualBeeExe =>PUP.Optional.VisualBeeToolbar ---\\ Récapitulatif des éléments trouvées sur votre station (34) - 0s http://www.nicolascoolman.fr/pup-babylon/ =>PUP.Optional.Babylon http://www.nicolascoolman.fr/pua-browserdefendert/ =>PUA.Optional.BrowserDefendert http://www.nicolascoolman.fr/hijacker-eazel/ =>PUP.Optional.Eazel http://www.nicolascoolman.fr/blog =>PUP.Optional.MySearchDial http://www.nicolascoolman.fr/blog =>PUP.Optional.Taplika http://www.nicolascoolman.fr/hijacker-trovicom/ =>PUP.Optional.TroviCom http://www.nicolascoolman.fr/adware-visualbeetoolbar/ =>PUP.Optional.VisualBeeToolbar http://www.nicolascoolman.fr/pup-awesomehp/ =>PUP.Optional.AwesomeHP http://www.nicolascoolman.fr/blog =>PUP.Optional.FastStart http://www.nicolascoolman.fr/pup-dealply/ =>PUP.Optional.Dealply http://www.nicolascoolman.fr/blog =>PUP.Optional.RocketUpdater http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak http://www.nicolascoolman.fr/pup-1clickdownloader/ =>PUP.Optional.1ClickDownloader http://www.nicolascoolman.fr/hijacker-babsolution/ =>PUP.Optional.BabSolution http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit http://www.nicolascoolman.fr/toolbar-deltasearch/ =>Toolbar.DeltaSearch http://www.nicolascoolman.fr/blog =>PUP.Optional.Heuristic http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore http://www.nicolascoolman.fr/pup-optimizerpro/ =>PUP.Optional.OptimizerPro http://www.nicolascoolman.fr/blog =>PUP.Optional.RocketBrowser http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic http://www.nicolascoolman.fr/pup-remarkit/ =>PUP.Optional.ReMarkIt http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar http://www.nicolascoolman.fr/pup-netcrawl/ =>PUP.Optional.NetCrawl http://www.nicolascoolman.fr/trojan-sprotector/ =>Trojan.SProtector http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic http://www.nicolascoolman.fr/blog =>PUP.Optional.GoodGameEmpire http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy http://www.nicolascoolman.fr/blog =>PUP.Optional.StormFall http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart ~ End of the scan, 25964 items in 70 seconds (1336)(1)()