Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.4.9.133 Par Nicolas Coolman (2015/09/4)
~ Démarré par demarly (Administrator) (2015/09/04 17:04:24)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\demarly\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\demarly\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows VISTA, 32-bit Service Pack 2 (Build 6002)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v45.0.2454.85
MFIE: Mozilla Thunderbird 38.2.0 (x86 fr) v38.2.0
MSIE: Internet Explorer v9.0.8112.16421
---\\ Informations sur les produits Windows (8) - 7s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : MQ3CQ
Windows License : OK
Windows Automatic Updates : OK (Auto)
---\\ Logiciels de protection (3) - 2s
Avast Free Antivirus v10.3.2225
Malwarebytes Anti-Malware version 2.1.8.1057
Windows Defender VISTA (Activate)
---\\ Surveillance de Logiciels (2) - 3s
Adobe Flash Player ActiveX
Adobe Reader X
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2095.956 MB (63% free)
~ System Restore: Activé (Enable)
~ System drive C: has 260 GB free of 335 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-DE-DEMARLY
~ User Name: demarly
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 260 GB free of 335 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (24) - 1s
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2926592] ©
[MD5.4B555106290BD117334E9A08761C035A] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [96768] ©
[MD5.62077F806BC59CBD5A404338D710D133] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1129472] ©
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [314368] ©
[MD5.85E861D0B88DB2B54ACB0839654C09F7] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\System32\dnsapi.dll [168448] © =>Hijacker.Hosts
[MD5.95F5FF73B076576C41740F1A842B9B57] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [273408] ©
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [19944] ©
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70144] ©
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [67072] ©
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [75264] ©
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [561152] ©
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [54784] ©
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [100864] ©
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [106496] ©
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [185856] ©
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1082232] ©
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [76288] ©
[MD5.E8BD98D46F2ED77132BA927FCCB47D8B] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [242688] ©
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [66560] ©
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [72192] ©
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [224640] ©
---\\ Processus lancés (17) - 2s
[MD5.FB931D6633376412D6DEAD287D597F17] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [670512] [PID.1012] ©
[MD5.733EC4DC25FB2248B6FB69B031CE4D95] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [938160] [PID.1496] ©
[MD5.FB931D6633376412D6DEAD287D597F17] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [670512] [PID.1504] ©
[MD5.FE69C498B922CE835E2E2123FBD0A272] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [108648] [PID.1696] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1888] ©
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2160] ©
[MD5.78675536D8B6E2D96B59196C2BE3EBF2] - (.Nuance Communications, Inc. - Dragon NaturallySpeaking Service.) -- C:\Program Files\Common Files\Nuance\dgnsvc.exe [311184] [PID.2220] ©
[MD5.66AF0B382E050DD2521BCB5337410916] - (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600] [PID.2348] ©
[MD5.93C82F365F9C0A2058A211E305A5CCFA] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128] [PID.2800] ©
[MD5.910FBA95EE4F56449AA81315884C8EFD] - (.Sonic Solutions - RoxSniffer9 Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [166648] [PID.2980] ©
[MD5.A4C778C47836C9786C6A648C828DFF2B] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624] [PID.3552] ©
[MD5.9638E5820858593A12005C753B03CEAE] - (.Sonic Solutions - RoxMediaDB9 Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [887544] [PID.2792] ©
[MD5.EE4FB1BB6757675625699A32E0F80E20] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4468736] [PID.1208] ©
[MD5.6EBE7CBE5F934BD68BBFE23117FD679D] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1817776] [PID.2592] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.2660] ©
[MD5.059E588FDF6B7E83227D45D026D21874] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744] [PID.1524] ©
[MD5.1F7425258815EADF2CDCB82433D4C702] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\demarly\ZHPDiag3.exe [1921024] [PID.4744] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (16) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients4.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://docs.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh5.googleusercontent.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.googleapis.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.fr/
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (7) - 1s
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\packardbell@partners.mozilla.com
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
P2 - EXT: (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\NPSWF32.dll
P2 - FPN: [HKLM] [nuance.com/DragonRIAPlugin] - (.Nuance Communications Inc..) -- C:\Program Files\Nuance\NaturallySpeaking12\Program\npDgnRia.dll
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (20)
---\\ Browser Helper Object de navigateur (BHO) (7) - 0s
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} . (.Symantec Corporation - NcoBHO.) -- C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBHO.dll ©
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL ©
O2 - BHO: Bho - {73A89C60-CF59-4EC7-9215-9B7EF05ECEA4} (Orphean)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll ©
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ©
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll ©
---\\ Internet Explorer, Barre d'outil (2) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: NCO Toolbar - [HKLM]{90222687-F593-4738-B738-FBEE9C7B26DF} . (...) -- (.not file.)
---\\ Applications lancées au démarrage du système (14) - 0s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe ©
O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe ©
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKCU\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (.not file.)
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
O4 - HKCU\..\Run: [Settings Manager] C:\Users\demarly\AppData\Roaming\Settings Manager\SettingsManager.EXE (.not file.) =>PUP.Optional.SettingsManager
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (.not file.)
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [Settings Manager] C:\Users\demarly\AppData\Roaming\Settings Manager\SettingsManager.EXE (.not file.) =>PUP.Optional.SettingsManager
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
---\\ Protocole additionnel (22) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL ©
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - c:\progra~1\google\google~3\goec62~1.dll (.not file.)
---\\ Liste des services NT non Microsoft et non désactivés (12) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: ccEvtMgr (ccEvtMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
O23 - Service: ccSetMgr (ccSetMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
O23 - Service: Dragon Service (DragonSvc) . (.Nuance Communications, Inc. - Dragon NaturallySpeaking Service.) - C:\Program Files\Common Files\Nuance\dgnsvc.exe ©
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) - C:\Windows\System32\nvvsvc.exe ©
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) . (.Sonic Solutions - RoxSniffer9 Module.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe ©
---\\ Tâches planifiées en automatique (16) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] ©
[MD5.00000000000000000000000000000000] [APT] [Extension de garantie] (...) -- C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe (.not file.) [0]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [Recovery DVD Creator] (...) -- C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe (.not file.) [0]
O39 - APT: Extension de garantie - (...) -- C:\Windows\Tasks\Extension de garantie.job [344]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056] ©
O39 - APT: Recovery DVD Creator - (...) -- C:\Windows\Tasks\Recovery DVD Creator.job [344]
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874] ©
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] ©
O39 - APT: Extension de garantie - (...) -- C:\Windows\System32\Tasks\Extension de garantie [3206]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3800] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4052] ©
O39 - APT: Recovery DVD Creator - (...) -- C:\Windows\System32\Tasks\Recovery DVD Creator [3206]
---\\ Logiciels installés (82) - 14s
O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Reader 8 - (...) [HKLM] -- AdobeReader
O42 - Logiciel: Realtek HD Audio V6.0.1.5413 - (...) [HKLM] -- AUDIO_REALTEK
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM] -- Avast ©
O42 - Logiciel: Ranch Rush - (...) [HKLM] -- BFG-Ranch Rush
O42 - Logiciel: Youda Farmer - (...) [HKLM] -- BFG-Youda Farmer
O42 - Logiciel: Youda Farmer 3: Saisons - (...) [HKLM] -- BFG-Youda Farmer 3 - Saisons
O42 - Logiciel: Big Fish: Game Manager - (...) [HKLM] -- BFGC
O42 - Logiciel: CPUID CPU-Z 1.71 - (...) [HKLM] -- CPUID CPU-Z_is1
O42 - Logiciel: Creator 9 - (...) [HKLM] -- CREATOR9
O42 - Logiciel: Mon Conte de Fées - (...) [HKLM] -- Disney's Princess Fashion Boutique
O42 - Logiciel: EPSON Scan - (...) [HKLM] -- EPSON Scanner
O42 - Logiciel: EPSON Stylus SX400 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Stylus SX400 Series ©
O42 - Logiciel: Farming Simulator 2013 - (.GIANTS Software.) [HKLM] -- FarmingSimulator2013INT_is1 ©
O42 - Logiciel: Farming Simulator 15 - (.GIANTS Software.) [HKLM] -- FarmingSimulator2015INT_is1 ©
O42 - Logiciel: FileZilla Client 3.7.3 - (.Tim Kosse.) [HKLM] -- FileZilla Client ©
O42 - Logiciel: Flash Player 9 Internet Explorer - (...) [HKLM] -- Flashplayer
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Lapin Malin Maternelle 2 + Atelier de dessin & de musique - (...) [HKLM] -- Lapin Malin Maternelle 2 + Atelier de dessin & de musique
O42 - Logiciel: LiveUpdate 3.2 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate ©
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Thunderbird 38.2.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird 38.2.0 (x86 fr) ©
O42 - Logiciel: QuickTime - (...) [HKLM] -- QuickTime
O42 - Logiciel: Express Scribe - (.NCH Software.) [HKLM] -- Scribe ©
O42 - Logiciel: Shockwave player 10 - (...) [HKLM] -- Shockwave
O42 - Logiciel: Norton 360 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- SymSetup.{2D617065-1C52-4240-B5BC-C0AE12157777} ©
O42 - Logiciel: Video NVIDIA v162.22 - (...) [HKLM] -- VIDEO_NVIDIA
O42 - Logiciel: VirtualCloneDrive - (.Elaborate Bytes.) [HKLM] -- VirtualCloneDrive ©
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: WinRAR 5.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: Microsoft Works 9 SE - (...) [HKLM] -- works9se
O42 - Logiciel: SuppSoft - (.Symantec Corporation.) [HKLM] -- {022DA2C3-81C7-4003-A6BC-1BB147B20097} ©
O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM] -- {08610298-29AE-445B-B37D-EFBE05802967} ©
O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM] -- {15634701-BACE-4449-8B25-1567DA8C9FD3} ©
O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9} ©
O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM] -- {174A3B31-4C43-43DD-866F-73C9DB887B48} ©
O42 - Logiciel: Euro Truck Simulator 2 - (.SCS Software.) [HKLM] -- {1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1 ©
O42 - Logiciel: Norton 360 Help - (.Symantec Corporation.) [HKLM] -- {1CA941F1-5006-487E-9FD4-09F812A7D6B8} ©
O42 - Logiciel: Ciel Auto-entrepreneur Standard 6.1 - (.Ciel.) [HKLM] -- {1FB9BE7A-77BB-4F26-9886-01259BF87088} ©
O42 - Logiciel: GearDrvs - (.Symantec Corporation.) [HKLM] -- {206FD69B-F9FE-4164-81BD-D52552BC9C23} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {21829177-4DED-4209-AD08-490B3AC9C01A} ©
O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E} ©
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {2D617065-1C52-4240-B5BC-C0AE12157777} ©
O42 - Logiciel: SymNet - (.Symantec Corporation.) [HKLM] -- {2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2} ©
O42 - Logiciel: Norton Confidential Web Authentification Component - (.Symantec Corporation.) [HKLM] -- {3074EB89-1BCA-4AEF-AFF4-EFB4634C1923} ©
O42 - Logiciel: ccCommon - (.Symantec.) [HKLM] -- {3CCAD2EF-CFF2-4637-82AA-AABF370282D3} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {3DE5E7D4-7B88-403C-A3FD-2017A8240C5B} ©
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {40DA9A54-48CA-4A2C-AEAF-F67715BB046E} ©
O42 - Logiciel: Norton Confidential Browser Component - (.Symantec Corporation.) [HKLM] -- {4843B611-8FCB-4428-8C23-31D0A5EAE164} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {63A6E9A9-A190-46D4-9430-2DB28654AFD8} ©
O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD} ©
O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA} ©
O42 - Logiciel: SPBBC 32bit - (.Symantec Corporation.) [HKLM] -- {77772678-817F-4401-9301-ED1D01A8DA56} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {80407BA7-7763-4395-AB98-5233F1B34E65} ©
O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM] -- {8937D274-C281-42E4-8CDB-A0B2DF979189} ©
O42 - Logiciel: Symantec Technical Support Controls - (.Symantec Corporation.) [HKLM] -- {92B1B3CC-EC78-45B8-96D0-8B3F11495864} ©
O42 - Logiciel: SeaTools for Windows - (.Seagate Technology.) [HKLM] -- {98613C99-1399-416C-A07C-1EE1C585D872} ©
O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM] -- {9DAEA76B-E50F-4272-A595-0124E826553D} ©
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {A7DB362E-16DC-4E29-8A34-E74381E00B5B} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Reader X (10.1.15) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} ©
O42 - Logiciel: NVIDIA Pilote graphique 341.81 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA GeForce Experience 2.2.2 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience ©
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 340.50 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB ©
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Roxio Creator 9 LE - (.Roxio.) [HKLM] -- {B7FB0C86-41A4-4402-9A33-912C462042A0} ©
O42 - Logiciel: Norton Confidential Web Protection Component - (.Symantec Corporation.) [HKLM] -- {D353CC51-430D-4C6F-9B7E-52003DA1E05A} ©
O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM] -- {D40EB009-0499-459c-A8AF-C9C110766215} ©
O42 - Logiciel: Dragon NaturallySpeaking 12 - (.Nuance Communications Inc..) [HKLM] -- {D5D422B9-6976-4E98-8DDF-9632CB515D7E}
O42 - Logiciel: Symantec Real Time Storage Protection Component - (.Symantec Corporation.) [HKLM] -- {D6E6FA4A-5445-4850-8365-CF216C1CBB7A} ©
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13} ©
O42 - Logiciel: AppCore - (.Symantec Corporation.) [HKLM] -- {EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: AV - (.Symantec Corporation.) [HKLM] -- {F4DB525F-A986-4249-B98B-42A8066251CA} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer ©
---\\ HKCU & HKLM Software Keys (133) - 14s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Adobee
HKLM\SOFTWARE\AGEIA Technologies
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Big Fish Games
HKLM\SOFTWARE\BinarySense
HKLM\SOFTWARE\Corel
HKLM\SOFTWARE\CPUID
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\Debug
HKLM\SOFTWARE\Disney Interactive
HKLM\SOFTWARE\Dragon Systems
HKLM\SOFTWARE\ej-technologies
HKLM\SOFTWARE\Elaborate Bytes
HKLM\SOFTWARE\Electronic Arts
HKLM\SOFTWARE\EMS
HKLM\SOFTWARE\EPSON
HKLM\SOFTWARE\FileZilla 3
HKLM\SOFTWARE\FileZilla Client
HKLM\SOFTWARE\FreeDownloadManager.ORG
HKLM\SOFTWARE\FullCircle
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\illiminable
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Link-Assistant.Com
HKLM\SOFTWARE\logishrd
HKLM\SOFTWARE\Logitech
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Maxicours
HKLM\SOFTWARE\MicroVision
HKLM\SOFTWARE\MimarSinan
HKLM\SOFTWARE\Mindscape
HKLM\SOFTWARE\MOVAVI
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NCH Software
HKLM\SOFTWARE\Nuance
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\PB_EBAY
HKLM\SOFTWARE\PB_FIRSTCHOICE
HKLM\SOFTWARE\PB_KODAK
HKLM\SOFTWARE\PB_METABOLI
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Roxio
HKLM\SOFTWARE\Sage
HKLM\SOFTWARE\SAMSUNG
HKLM\SOFTWARE\ScanSoft
HKLM\SOFTWARE\SCS Software
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\Symantec Technical Support
HKLM\SOFTWARE\TeamViewer
HKLM\SOFTWARE\The Learning Company
HKLM\SOFTWARE\Valve
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Voice
HKLM\SOFTWARE\WinRAR
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Big Fish Games
HKCU\SOFTWARE\BitComet
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\Dragon Systems
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Elaborate Bytes
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\FLEXnet
HKCU\SOFTWARE\FreeDownloadManager.ORG
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\InstallShield
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\LANGAGENT
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogiShrd
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\ManiacTools
HKCU\SOFTWARE\MediaProLab
HKCU\SOFTWARE\MimarSinan
HKCU\SOFTWARE\MOVAVI
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MultimediaTools
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Packard Bell
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Red Dot Games
HKCU\SOFTWARE\Roxio
HKCU\SOFTWARE\Sage
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\ScanSoft
HKCU\SOFTWARE\Smartcode Software
HKCU\SOFTWARE\Sonic
HKCU\SOFTWARE\SourceForge
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\THQ
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Unlimited Possibilities
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Google
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\MarkAny
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contenu des dossiers Programmes (255) - 15s
O43 - CFD: 2014/04/04 13:40:51 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2014/12/29 18:52:30 - [0] D -- C:\Program Files\AGEIA Technologies
O43 - CFD: 2014/04/02 21:54:11 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 2015/08/20 16:32:18 - [] D -- C:\Program Files\AviSynth 2.5
O43 - CFD: 2014/11/23 15:24:33 - [] D -- C:\Program Files\bfgclient
O43 - CFD: 2014/04/17 13:18:28 - [] D -- C:\Program Files\Ciel
O43 - CFD: 2015/09/02 11:18:58 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2014/12/29 11:15:37 - [] D -- C:\Program Files\CPUID
O43 - CFD: 2014/05/06 21:22:31 - [] D -- C:\Program Files\CyberLink
O43 - CFD: 2015/08/20 16:31:30 - [] D -- C:\Program Files\Demolition Company Demo
O43 - CFD: 2015/03/17 14:27:50 - [0] D -- C:\Program Files\DIGIPAIE12
O43 - CFD: 2014/04/02 14:15:34 - [] D -- C:\Program Files\Elaborate Bytes
O43 - CFD: 2015/07/25 18:37:30 - [] D -- C:\Program Files\Electronic Arts
O43 - CFD: 2014/04/03 11:13:16 - [] D -- C:\Program Files\epson
O43 - CFD: 2014/04/03 13:54:58 - [] D -- C:\Program Files\Euro Truck Simulator 2
O43 - CFD: 2014/04/17 13:17:36 - [] D -- C:\Program Files\Farming Simulator 2013
O43 - CFD: 2015/01/25 21:40:46 - [] D -- C:\Program Files\Farming Simulator 2015
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2014/05/12 09:44:09 - [] D -- C:\Program Files\FileZilla FTP Client
O43 - CFD: 2015/04/29 12:26:54 - [] D -- C:\Program Files\Free Download Manager
O43 - CFD: 2015/01/14 10:56:35 - [] D -- C:\Program Files\FreeTime
O43 - CFD: 2014/05/07 09:02:54 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/05/06 21:09:09 - [] D -- C:\Program Files\HDReg
O43 - CFD: 2015/08/20 16:39:52 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2014/08/11 18:19:29 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/04/20 14:55:15 - [] D -- C:\Program Files\Java
O43 - CFD: 2014/06/12 16:57:05 - [] D -- C:\Program Files\Logitech
O43 - CFD: 2015/09/02 12:58:48 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2015/08/13 20:28:23 - [] D -- C:\Program Files\MarkAny
O43 - CFD: 2014/04/02 22:56:20 - [] D -- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 2006/11/02 14:37:34 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2014/04/02 23:05:24 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2014/04/02 23:05:19 - [] D -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 2014/04/02 22:57:32 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 2014/05/06 21:27:46 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2014/08/11 15:06:02 - [] D -- C:\Program Files\Microsoft WSE
O43 - CFD: 2014/04/04 11:03:29 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2014/10/09 17:43:43 - [] D -- C:\Program Files\Mindscape
O43 - CFD: 2014/04/05 14:36:12 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 2014/05/06 21:16:44 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2014/10/29 19:48:21 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2015/08/28 07:47:40 - [] D -- C:\Program Files\Mozilla Thunderbird
O43 - CFD: 2014/04/02 23:07:29 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2014/04/03 08:30:20 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 2014/10/29 19:47:44 - [0] D -- C:\Program Files\MyFree Codec
O43 - CFD: 2014/04/02 18:47:30 - [] D -- C:\Program Files\NCH Software
O43 - CFD: 2014/04/07 10:43:37 - [] D -- C:\Program Files\Nuance
O43 - CFD: 2015/08/30 20:18:00 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 2014/05/06 21:48:50 - [] D -- C:\Program Files\Packard Bell
O43 - CFD: 2014/08/11 18:19:41 - [] D -- C:\Program Files\QuickTime
O43 - CFD: 2014/11/26 14:48:33 - [] D -- C:\Program Files\Ranch Rush
O43 - CFD: 2007/02/07 23:58:26 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2006/11/02 14:37:34 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2007/02/08 00:10:26 - [] D -- C:\Program Files\Roxio
O43 - CFD: 2015/08/20 16:39:58 - [] D -- C:\Program Files\Samsung
O43 - CFD: 2007/02/08 00:04:32 - [] D -- C:\Program Files\Seagate
O43 - CFD: 2015/09/02 11:16:22 - [] D -- C:\Program Files\SpeedFan
O43 - CFD: 2014/04/10 19:19:45 - [] D -- C:\Program Files\Symantec
O43 - CFD: 2006/11/02 15:01:55 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/05/16 11:46:33 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2014/04/05 14:36:13 - [] D -- C:\Program Files\Windows Calendar
O43 - CFD: 2014/04/05 14:36:09 - [] D -- C:\Program Files\Windows Collaboration
O43 - CFD: 2014/04/05 14:35:58 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2014/04/11 20:56:23 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2014/04/11 20:56:25 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2014/04/05 14:36:10 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/04/02 13:56:31 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2014/04/05 14:36:09 - [] D -- C:\Program Files\Windows Photo Gallery
O43 - CFD: 2014/04/11 20:56:34 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2014/04/05 14:36:11 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2014/12/31 08:35:33 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2014/11/25 18:15:13 - [] D -- C:\Program Files\Youda Farmer
O43 - CFD: 2014/11/23 16:08:57 - [] D -- C:\Program Files\Youda Farmer 3 - Saisons
O43 - CFD: 2015/09/04 15:27:30 - [] D -- C:\Program Files\ZHPFix
O43 - CFD: 2015/07/03 19:21:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/04/04 08:49:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/05/06 21:48:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistance Packard Bell
O43 - CFD: 2015/03/17 13:26:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ciel
O43 - CFD: 2014/12/29 11:15:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2014/04/02 19:06:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dictation and Transcription Programs
O43 - CFD: 2014/12/21 10:59:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disney Interactive
O43 - CFD: 2014/04/29 17:13:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon NaturallySpeaking 12.5
O43 - CFD: 2014/04/02 14:15:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
O43 - CFD: 2014/04/03 11:13:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 2014/04/03 13:54:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
O43 - CFD: 2014/04/02 16:12:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades
O43 - CFD: 2014/04/17 13:17:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 2013
O43 - CFD: 2014/11/14 11:47:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 2015
O43 - CFD: 2014/05/12 09:44:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2015/08/20 16:32:03 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/04/26 13:36:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/02/25 18:29:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2014/06/12 16:54:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 2006/11/02 14:56:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/05/07 12:46:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2014/08/11 18:18:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mindscape
O43 - CFD: 2014/05/06 21:48:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mon graveur de DVD
O43 - CFD: 2014/04/02 19:06:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
O43 - CFD: 2014/12/29 18:52:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2014/04/02 18:47:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de dictée et de transcription
O43 - CFD: 2014/08/11 18:19:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2014/11/26 14:48:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ranch Rush
O43 - CFD: 2015/09/02 11:18:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Services en ligne
O43 - CFD: 2014/04/29 19:56:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
O43 - CFD: 2007/02/08 00:06:52 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/04/02 18:47:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software
O43 - CFD: 2006/11/02 14:37:34 - [] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/10/01 15:33:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
O43 - CFD: 2014/05/16 11:47:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2014/12/30 21:06:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/11/25 18:14:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youda Farmer
O43 - CFD: 2014/11/23 16:08:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youda Farmer 3 - Saisons
O43 - CFD: 2014/04/04 13:45:31 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/04/02 14:44:48 - [] D -- C:\ProgramData\Application Data
O43 - CFD: 2014/04/02 21:53:11 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2014/11/23 15:24:18 - [] D -- C:\ProgramData\Big Fish
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/04/08 13:06:13 - [] D -- C:\ProgramData\Ciel
O43 - CFD: 2014/04/02 14:44:48 - [0] D -- C:\ProgramData\Desktop
O43 - CFD: 2014/04/02 14:44:48 - [0] D -- C:\ProgramData\Documents
O43 - CFD: 2015/07/25 18:37:29 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 2014/04/03 11:13:54 - [] D -- C:\ProgramData\EPSON
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2014/04/02 14:44:48 - [0] D -- C:\ProgramData\Favorites
O43 - CFD: 2014/04/07 10:43:40 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2015/04/29 12:22:54 - [] D -- C:\ProgramData\FreeDownloadManager.ORG
O43 - CFD: 2014/11/26 17:57:37 - [] D -- C:\ProgramData\FreshGames
O43 - CFD: 2014/05/06 20:16:18 - [] D -- C:\ProgramData\Google
O43 - CFD: 2007/02/08 00:10:35 - [] D -- C:\ProgramData\InstallShield
O43 - CFD: 2014/06/12 16:58:06 - [] D -- C:\ProgramData\LogiShrd
O43 - CFD: 2014/04/11 12:03:38 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 2014/04/07 12:20:08 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/08/25 12:58:27 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/05/07 12:46:17 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/07/25 18:29:42 - [] D -- C:\ProgramData\Movavi
O43 - CFD: 2015/07/25 18:27:12 - [] D -- C:\ProgramData\Movavi Video Converter 15
O43 - CFD: 2014/04/02 18:52:41 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2014/04/02 18:47:30 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 2014/04/07 10:43:37 - [] D -- C:\ProgramData\Nuance
O43 - CFD: 2015/08/30 20:16:52 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/12/29 18:54:44 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/04/20 14:55:39 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/08/11 18:19:15 - [] D -- C:\ProgramData\QuickTime
O43 - CFD: 2015/07/24 16:59:24 - [] D -- C:\ProgramData\Roxio
O43 - CFD: 2015/08/20 16:39:56 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 2015/09/02 11:18:57 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2014/09/24 09:36:58 - [] D -- C:\ProgramData\Sonic
O43 - CFD: 2014/04/02 14:44:49 - [0] D -- C:\ProgramData\Start Menu
O43 - CFD: 2014/04/02 18:57:09 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2014/04/09 07:48:03 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 2015/08/04 13:16:45 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2014/04/02 14:44:49 - [0] D -- C:\ProgramData\Templates
O43 - CFD: 2015/07/29 09:38:05 - [] D -- C:\ProgramData\WindowsSearch
O43 - CFD: 2014/04/04 13:41:14 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2014/12/01 09:18:50 - [0] D -- C:\Program Files\Common Files\BinarySense
O43 - CFD: 2015/03/17 13:28:03 - [] D -- C:\Program Files\Common Files\Ciel
O43 - CFD: 2014/04/02 23:06:17 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2014/10/22 15:57:42 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2014/04/29 17:12:53 - [] D -- C:\Program Files\Common Files\IVA
O43 - CFD: 2015/04/20 14:53:43 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 2014/06/12 16:58:42 - [] D -- C:\Program Files\Common Files\LogiShrd
O43 - CFD: 2014/05/06 21:27:46 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2014/04/17 13:19:48 - [] D -- C:\Program Files\Common Files\MSSoap
O43 - CFD: 2014/04/29 17:38:28 - [] D -- C:\Program Files\Common Files\Nuance
O43 - CFD: 2007/02/08 00:10:12 - [] D -- C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 2006/11/02 13:18:33 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2007/02/08 00:10:12 - [] D -- C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 2006/11/02 13:18:33 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2014/04/28 15:36:18 - [] D -- C:\Program Files\Common Files\Steam
O43 - CFD: 2007/02/08 00:10:27 - [] D -- C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 2014/04/10 19:19:43 - [] D -- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 2014/04/11 20:56:24 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2007/02/08 00:04:18 - [] D -- C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 2015/08/30 15:53:23 - [] D -- C:\Users\demarly\AppData\Roaming\.minecraft
O43 - CFD: 2014/04/04 13:44:21 - [] D -- C:\Users\demarly\AppData\Roaming\Adobe
O43 - CFD: 2014/04/02 22:02:46 - [] D -- C:\Users\demarly\AppData\Roaming\AVAST Software
O43 - CFD: 2015/08/16 20:29:47 - [] D -- C:\Users\demarly\AppData\Roaming\Azureus
O43 - CFD: 2014/11/30 19:54:38 - [] D -- C:\Users\demarly\AppData\Roaming\BinarySense
O43 - CFD: 2014/04/02 19:39:49 - [] D -- C:\Users\demarly\AppData\Roaming\BitComet
O43 - CFD: 2014/04/02 14:06:59 - [] D -- C:\Users\demarly\AppData\Roaming\CyberLink
O43 - CFD: 2014/12/17 17:44:20 - [] D -- C:\Users\demarly\AppData\Roaming\Dropbox
O43 - CFD: 2014/07/01 12:32:42 - [] D -- C:\Users\demarly\AppData\Roaming\EPSON
O43 - CFD: 2015/08/11 10:56:06 - [] D -- C:\Users\demarly\AppData\Roaming\FileZilla
O43 - CFD: 2014/04/07 10:54:33 - [] D -- C:\Users\demarly\AppData\Roaming\FLEXnet
O43 - CFD: 2015/04/29 12:22:50 - [] D -- C:\Users\demarly\AppData\Roaming\FreeDownloadManager.ORG
O43 - CFD: 2014/11/26 17:57:37 - [] D -- C:\Users\demarly\AppData\Roaming\freshgames
O43 - CFD: 2014/04/10 19:19:46 - [] D -- C:\Users\demarly\AppData\Roaming\GetRightToGo
O43 - CFD: 2014/04/08 19:35:06 - [] D -- C:\Users\demarly\AppData\Roaming\Google
O43 - CFD: 2014/04/02 14:04:48 - [] D -- C:\Users\demarly\AppData\Roaming\Identities
O43 - CFD: 2015/02/27 14:34:30 - [] D -- C:\Users\demarly\AppData\Roaming\java
O43 - CFD: 2014/06/12 16:57:07 - [] D -- C:\Users\demarly\AppData\Roaming\Leadertech
O43 - CFD: 2014/04/02 14:13:38 - [] D -- C:\Users\demarly\AppData\Roaming\Macromedia
O43 - CFD: 2006/11/02 14:37:34 - [0] D -- C:\Users\demarly\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/02/10 17:15:09 - [] SD -- C:\Users\demarly\AppData\Roaming\Microsoft
O43 - CFD: 2014/04/02 18:53:10 - [] D -- C:\Users\demarly\AppData\Roaming\Mozilla
O43 - CFD: 2014/04/02 18:47:27 - [] D -- C:\Users\demarly\AppData\Roaming\NCH Software
O43 - CFD: 2015/01/02 20:17:09 - [] D -- C:\Users\demarly\AppData\Roaming\Need for Speed World
O43 - CFD: 2014/04/29 17:35:14 - [] D -- C:\Users\demarly\AppData\Roaming\Nuance
O43 - CFD: 2014/12/30 21:36:18 - [] D -- C:\Users\demarly\AppData\Roaming\NVIDIA
O43 - CFD: 2014/04/02 20:29:58 - [] D -- C:\Users\demarly\AppData\Roaming\OpenOffice
O43 - CFD: 2014/04/06 16:13:17 - [] D -- C:\Users\demarly\AppData\Roaming\Packard Bell
O43 - CFD: 2014/10/01 15:19:56 - [] D -- C:\Users\demarly\AppData\Roaming\Roxio
O43 - CFD: 2015/08/20 16:39:58 - [] D -- C:\Users\demarly\AppData\Roaming\Samsung
O43 - CFD: 2014/10/29 20:25:40 - [] D -- C:\Users\demarly\AppData\Roaming\SpinTires
O43 - CFD: 2014/04/02 14:11:30 - [] D -- C:\Users\demarly\AppData\Roaming\Talkback
O43 - CFD: 2014/05/22 15:30:59 - [] D -- C:\Users\demarly\AppData\Roaming\TeamViewer
O43 - CFD: 2014/04/02 18:52:56 - [] D -- C:\Users\demarly\AppData\Roaming\Thunderbird
O43 - CFD: 2015/08/05 13:45:00 - [] D -- C:\Users\demarly\AppData\Roaming\vlc
O43 - CFD: 2014/04/21 21:48:03 - [] D -- C:\Users\demarly\AppData\Roaming\WinRAR
O43 - CFD: 2014/11/26 15:27:51 - [] D -- C:\Users\demarly\AppData\Roaming\YoudaGames
O43 - CFD: 2014/06/29 10:18:19 - [] D -- C:\Users\demarly\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 2015/09/04 17:04:39 - [] D -- C:\Users\demarly\AppData\Roaming\ZHP
O43 - CFD: 2014/05/20 20:48:50 - [] D -- C:\Users\demarly\AppData\Local\41
O43 - CFD: 2014/11/26 16:37:34 - [] D -- C:\Users\demarly\AppData\Local\Adobe
O43 - CFD: 2014/04/02 14:01:14 - [0] SHD -- C:\Users\demarly\AppData\Local\Application Data
O43 - CFD: 2014/11/30 19:34:15 - [] D -- C:\Users\demarly\AppData\Local\ApplicationHistory
O43 - CFD: 2014/04/02 17:23:27 - [] D -- C:\Users\demarly\AppData\Local\Apps
O43 - CFD: 2014/11/23 15:24:41 - [] D -- C:\Users\demarly\AppData\Local\Big Fish
O43 - CFD: 2014/04/02 17:23:45 - [0] D -- C:\Users\demarly\AppData\Local\Deployment
O43 - CFD: 2015/08/13 20:00:49 - [] D -- C:\Users\demarly\AppData\Local\Downloaded Installations
O43 - CFD: 2015/01/02 17:49:10 - [] D -- C:\Users\demarly\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 2014/08/04 13:58:31 - [] D -- C:\Users\demarly\AppData\Local\fontconfig
O43 - CFD: 2014/11/10 21:03:45 - [] D -- C:\Users\demarly\AppData\Local\Geckofx
O43 - CFD: 2014/08/04 13:58:26 - [] D -- C:\Users\demarly\AppData\Local\gegl-0.2
O43 - CFD: 2015/07/18 19:05:19 - [] D -- C:\Users\demarly\AppData\Local\GIANTS Editor 6.0.0
O43 - CFD: 2015/08/12 18:48:31 - [] D -- C:\Users\demarly\AppData\Local\GIANTS Editor 6.0.3
O43 - CFD: 2015/07/18 19:05:15 - [] D -- C:\Users\demarly\AppData\Local\GIANTSPackageRegistry
O43 - CFD: 2015/08/21 10:41:10 - [] D -- C:\Users\demarly\AppData\Local\Google
O43 - CFD: 2014/04/02 14:01:14 - [0] SHD -- C:\Users\demarly\AppData\Local\Historique
O43 - CFD: 2014/06/12 17:03:12 - [] D -- C:\Users\demarly\AppData\Local\Logitech® Webcam Software
O43 - CFD: 2015/08/25 12:58:27 - [] D -- C:\Users\demarly\AppData\Local\Microsoft
O43 - CFD: 2014/10/15 11:28:48 - [] D -- C:\Users\demarly\AppData\Local\Microsoft Games
O43 - CFD: 2014/10/15 18:21:06 - [] D -- C:\Users\demarly\AppData\Local\Microsoft Help
O43 - CFD: 2015/07/25 18:32:38 - [] D -- C:\Users\demarly\AppData\Local\Movavi
O43 - CFD: 2014/04/02 14:11:05 - [] D -- C:\Users\demarly\AppData\Local\Mozilla
O43 - CFD: 2015/08/30 16:26:36 - [] D -- C:\Users\demarly\AppData\Local\NVIDIA
O43 - CFD: 2014/05/06 21:19:44 - [0] D -- C:\Users\demarly\AppData\Local\PowerCinema
O43 - CFD: 2015/08/21 09:38:03 - [] D -- C:\Users\demarly\AppData\Local\Programs
O43 - CFD: 2015/08/14 13:06:20 - [] D -- C:\Users\demarly\AppData\Local\Samsung
O43 - CFD: 2014/05/06 21:30:51 - [] D -- C:\Users\demarly\AppData\Local\Seven Zip
O43 - CFD: 2015/09/04 17:04:20 - [] D -- C:\Users\demarly\AppData\Local\Temp
O43 - CFD: 2014/04/02 14:01:14 - [0] SHD -- C:\Users\demarly\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/09/03 20:45:10 - [] D -- C:\Users\demarly\AppData\Local\Thunderbird
O43 - CFD: 2014/09/13 11:58:40 - [] D -- C:\Users\demarly\AppData\Local\Unity
O43 - CFD: 2014/04/02 14:06:40 - [] D -- C:\Users\demarly\AppData\Local\VirtualStore
O43 - CFD: 2006/11/02 14:54:36 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/04/02 14:04:58 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2006/11/02 14:50:41 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/11/26 14:48:14 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ranch Rush
O43 - CFD: 2014/12/17 17:44:20 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/12/30 21:06:57 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/11/25 18:14:58 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Youda Farmer
O43 - CFD: 2014/11/23 16:08:32 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Youda Farmer 3 - Saisons
---\\ Enumération des clés StartupReg (15) - 1s
O53 - SMSR:HKLM\...\startupreg\command . (...) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe ©
O53 - SMSR:HKLM\...\startupreg\EA Core [Key] . (...) -- C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\EPSON Stylus SX400 Series [Key] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\System32\spool\drivers\w32x86\3\E_FATIEGE.EXE ©
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_815E570C7303114EC3E01DAA08133435 [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O53 - SMSR:HKLM\...\startupreg\ISUSPM [Key] . (.Flexera Software LLC. - Common Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O53 - SMSR:HKLM\...\startupreg\KiesAirMessage [Key] . (...) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (...) -- C:\Program Files\Samsung\Kies\Kies.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\KiesTrayAgent [Key] . (...) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\LWS [Key] . (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe ©
O53 - SMSR:HKLM\...\startupreg\NvBackend [Key] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe ©
O53 - SMSR:HKLM\...\startupreg\RoxWatchTray [Key] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe ©
O53 - SMSR:HKLM\...\startupreg\toolbar_eula_launcher [Key] . (...) -- C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
O53 - SMSR:HKLM\...\startupreg\VirtualCloneDrive [Key] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe ©
O53 - SMSR:HKLM\...\startupreg\Windows Defender [Key] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe ©
---\\ Liste des pilotes du système (98) - 16s
O58 - SDL:2015/07/21 18:53:54 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\31F742AE.sys [98520] ©
O58 - SDL:2006/11/02 11:51:38 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [420968] ©
O58 - SDL:2006/11/02 11:51:32 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297576] ©
O58 - SDL:2006/11/02 11:50:35 A . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\System32\drivers\adpu160m.sys [98408] ©
O58 - SDL:2006/11/02 11:51:00 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [147048] ©
O58 - SDL:2006/11/02 11:49:20 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14952] ©
O58 - SDL:2006/11/02 11:50:09 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [67688] ©
O58 - SDL:2006/11/02 11:50:10 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [67688] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [24016] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [76000] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! TDI Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr.sys [55200] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [49776] ©
O58 - SDL:2015/08/19 11:32:40 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [788784] ©
O58 - SDL:2015/08/19 11:33:10 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [433264] ©
O58 - SDL:2015/08/19 11:33:11 A . (.AVAST Software - avast! Stream Filter.) -- C:\Windows\System32\drivers\aswStmXP.sys [161472] ©
O58 - SDL:2015/08/19 11:33:11 A . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys [57888] ©
O58 - SDL:2015/08/19 11:33:10 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [208664] ©
O58 - SDL:2006/11/02 10:24:45 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] ©
O58 - SDL:2006/11/02 10:24:46 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] ©
O58 - SDL:2006/11/02 10:25:24 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [71808] ©
O58 - SDL:2006/11/02 10:24:44 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] ©
O58 - SDL:2006/11/02 10:24:44 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] ©
O58 - SDL:2006/11/02 10:24:47 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] ©
O58 - SDL:2006/07/24 04:00:00 A . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\Windows\System32\drivers\cdr4_xp.sys [2432] ©
O58 - SDL:2006/07/24 04:00:00 A . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\drivers\cdralw2k.sys [2560] ©
O58 - SDL:2006/11/02 11:49:28 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [16488] ©
O58 - SDL:2013/12/30 10:52:38 A . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\Windows\System32\drivers\dgderdrv.sys [20032] ©
O58 - SDL:2006/11/02 11:50:11 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [71272] ©
O58 - SDL:2006/11/02 09:30:54 A . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserializ.) -- C:\Windows\System32\drivers\E1G60I32.sys [117760] ©
O58 - SDL:2013/03/04 11:25:00 A . (.Elaborate Bytes AG - ElbyCD Windows NT/2000/XP I/O driver.) -- C:\Windows\System32\drivers\ElbyCDIO.sys [30616] ©
O58 - SDL:2006/11/02 11:51:34 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [316520] ©
O58 - SDL:2006/09/19 15:44:04 A . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [15664] ©
O58 - SDL:2006/11/02 11:50:10 A . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\drivers\HpCISSs.sys [37480] ©
O58 - SDL:2006/11/02 11:51:25 A . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\drivers\iaStorV.sys [232040] ©
O58 - SDL:2006/11/02 11:50:17 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41576] ©
O58 - SDL:2006/11/02 11:50:07 A . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\drivers\iteatapi.sys [35944] ©
O58 - SDL:2006/11/02 11:50:09 A . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\drivers\iteraid.sys [35944] ©
O58 - SDL:2006/11/02 11:50:04 A . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [65640] ©
O58 - SDL:2006/11/02 11:50:05 A . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [65640] ©
O58 - SDL:2006/11/02 11:50:10 A . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [65640] ©
O58 - SDL:2012/09/21 21:09:00 A . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Dr.) -- C:\Windows\System32\drivers\lvrs.sys [310504] ©
O58 - SDL:2012/09/21 21:09:06 A . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\System32\drivers\lvuvc.sys [4261224] ©
O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [23256] ©
O58 - SDL:2015/06/18 08:41:42 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [94936] ©
O58 - SDL:2015/09/02 13:03:41 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [98520] ©
O58 - SDL:2006/11/02 11:49:53 A . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [28776] ©
O58 - SDL:2006/11/02 11:49:59 A . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\Mraid35x.sys [33384] ©
O58 - SDL:2015/06/18 08:41:50 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [51928] ©
O58 - SDL:2006/11/02 11:50:19 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [45160] ©
O58 - SDL:2015/08/19 11:32:38 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [95112] ©
O58 - SDL:2006/11/02 09:36:50 A . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablett.) -- C:\Windows\System32\drivers\ntrigdigi.sys [20608] ©
O58 - SDL:2015/08/18 10:47:15 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10704560] ©
O58 - SDL:2006/11/02 11:50:24 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [88680] ©
O58 - SDL:2006/11/02 11:50:13 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [40040] ©
O58 - SDL:2006/09/27 23:53:22 A . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\drivers\pxhelp20.sys [36560] ©
O58 - SDL:2006/11/02 11:51:45 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [900712] ©
O58 - SDL:2006/11/02 11:50:35 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106088] ©
O58 - SDL:2007/05/10 18:25:00 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [1775712] ©
O58 - SDL:2007/01/23 11:01:00 A . (.Realtek Semiconductor Corporation - Realtek 10/100 NDIS 5.1 Driver.) -- C:\Windows\System32\drivers\Rtnicxp.sys [50176] ©
O58 - SDL:2006/11/02 08:37:21 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2006/11/02 11:50:10 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [38504] ©
O58 - SDL:2006/11/02 11:50:16 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [71784] ©
O58 - SDL:2007/01/12 03:22:14 A . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\System32\drivers\srtsp.sys [247608] ©
O58 - SDL:2007/01/12 03:22:20 A . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\System32\drivers\srtspl.sys [276792] ©
O58 - SDL:2007/01/12 03:22:18 A . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\System32\drivers\srtspx.sys [25400] ©
O58 - SDL:2006/11/02 11:50:05 A . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\drivers\symc8xx.sys [35944] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - DNS Filter Driver.) -- C:\Windows\System32\drivers\symdns.sys [12984] ©
O58 - SDL:2007/02/08 00:14:56 A . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\System32\drivers\SYMEVENT.SYS [115000] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - Firewall Filter Driver.) -- C:\Windows\System32\drivers\symfw.sys [145976] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - IDS Filter Driver.) -- C:\Windows\System32\drivers\symids.sys [40120] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - NDIS Filter Driver.) -- C:\Windows\System32\drivers\symndisv.sys [38200] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - Redirector Filter Driver.) -- C:\Windows\System32\drivers\symredrv.sys [27576] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - Network Dispatch Driver.) -- C:\Windows\System32\drivers\symtdi.sys [191544] ©
O58 - SDL:2006/11/02 11:49:56 A . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_hi.sys [31848] ©
O58 - SDL:2006/11/02 11:50:03 A . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_u3.sys [34920] ©
O58 - SDL:2006/11/02 11:51:25 A . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\drivers\uliahci.sys [235112] ©
O58 - SDL:2006/11/02 11:50:35 A . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win200.) -- C:\Windows\System32\drivers\ulsata.sys [98408] ©
O58 - SDL:2006/11/02 11:50:45 A . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\drivers\ulsata2.sys [115816] ©
O58 - SDL:2013/07/24 17:02:38 A . (.Elaborate Bytes AG - Virtual CloneDrive SCSI miniport.) -- C:\Windows\System32\drivers\VClone.sys [30720] ©
O58 - SDL:2006/11/02 11:49:30 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17512] ©
O58 - SDL:2006/11/02 11:50:41 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\vsmraid.sys [112232] ©
O58 - SDL:2006/11/02 09:09:42 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2006/11/02 09:09:45 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:1996/04/03 21:33:26 A . (...) -- C:\Windows\System32\giveio.sys [5248]
O58 - SDL:2006/11/02 09:09:41 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2006/11/02 09:09:44 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2006/11/02 09:09:44 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2006/11/02 09:09:29 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2006/11/02 09:09:35 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2006/11/02 09:09:38 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2006/11/02 09:09:40 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2006/11/02 09:09:31 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2006/11/02 09:09:20 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2006/11/02 09:09:23 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2006/11/02 09:09:24 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2006/11/02 09:09:26 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2006/11/02 09:09:22 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:2012/12/29 22:59:38 A . (.Almico Software - SpeedFan x32 Driver.) -- C:\Windows\System32\speedfan.sys [24184] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (8) - 8s
O61 - LFC: 2015/09/02 09:57:37 A . (..) -- C:\Users\demarly\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin [112]
O61 - LFC: 2015/09/04 11:00:12 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [5209282]
O61 - LFC: 2015/09/04 14:56:25 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\00007d9b\CoProc update.19931949.exe [522192]
O61 - LFC: 2015/09/04 14:57:12 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\00007d95\DAO.19929559.exe [6239952]
O61 - LFC: 2015/08/30 16:37:47 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\00007479\vops-euro_truck_simulator_2.19506266.exe [15029144]
O61 - LFC: 2015/09/01 17:43:26 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\000063ef\DRS update.18761999.exe [331952]
O61 - LFC: 2015/09/04 16:11:24 A . (..) -- C:\Users\demarly\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/08/28 15:16:32 A . (..) -- C:\Users\demarly\AppData\Local\Google\Chrome\User Data\EVWhitelist\7\_platform_specific\all\ev_hashes_whitelist.bin [674082]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (...) -- C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
---\\ Recherche d'infection sur les navigateurs (1) - 1s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (31) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [24576] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [62976] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [40448] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [40448] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [125952] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [576512] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [444928] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [315392] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [262144] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [68608] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [47104] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\Windows\System32\ipnathlp.dll [288256] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242688] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Termi.) -- C:\Windows\System32\termsrv.dll [449024] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1933848] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [758784] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [200704] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [19968] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [33280] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [111616] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [45056] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [153088] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [57344] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [162304] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [601600] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Termi.) -- C:\Windows\System32\SessEnv.dll [84992] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [81920] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [68096] ©
---\\ Liste des exceptions du parefeu Windows (28) - 4s
O87 - FAEL: "{9F114FD2-8C35-40C0-8DAF-CF2E821C34BC}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE (.not file.)
O87 - FAEL: "{323E60AA-F4D2-4116-906A-C97A4EA7EB23}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE (.not file.)
O87 - FAEL: "{6ECAE2C8-3599-4F18-96F4-12CC4254B6E5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\BitComet\BitComet.exe (.not file.)
O87 - FAEL: "{3E4C6AD2-FD05-4267-920E-46143A205B32}" [In-None-P17-TRUE] .(...) -- C:\Program Files\BitComet\BitComet.exe (.not file.)
O87 - FAEL: "{1E94B4CC-3754-4011-853D-B6784F501C02}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
O87 - FAEL: "{690E3E0A-9A07-49C6-96B3-2D8A25D80EF9}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
O87 - FAEL: "{98719F5B-8C75-4463-8752-B75E34E0E7ED}" [In-None-P6-TRUE] .(...) -- C:\Users\demarly\AppData\Roaming\Dropbox\bin\Dropbox.exe (.not file.)
O87 - FAEL: "{82021FC2-FA84-4863-8C49-9601265A0CE0}" [In-None-P17-TRUE] .(...) -- C:\Users\demarly\AppData\Roaming\Dropbox\bin\Dropbox.exe (.not file.)
O87 - FAEL: "TCP Query User{8E4BDC1B-7B7B-4FCF-9290-6317168E48AF}C:\program files\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{B0D94B09-B3DD-4AA9-8253-E7532B843AFA}C:\program files\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "{18F8FE07-89C5-4132-9A63-B67C27F2CF06}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Steam\Steam.exe (.not file.)
O87 - FAEL: "{4AFCF94A-E9C4-4EC0-A0D6-62B899838561}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Steam\Steam.exe (.not file.)
O87 - FAEL: "TCP Query User{E79D5439-7FE6-40BD-AD55-C2FC3EF177E5}C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe" [In-None-P6-TRUE] .(...) -- C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe (.not file.)
O87 - FAEL: "UDP Query User{816988A0-24E4-466A-91F0-E7D8529FB89A}C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe" [In-None-P17-TRUE] .(...) -- C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe (.not file.)
O87 - FAEL: "TCP Query User{4EE3A3E5-47E6-40BA-8DB5-161AC4AF5DB2}C:\program files\electronic arts\eadm\core.exe" [In-None-P6-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{65644B02-C5BB-42DC-A753-2776AEA39426}C:\program files\electronic arts\eadm\core.exe" [In-None-P17-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "TCP Query User{37FBC527-905B-4F06-A917-1AFAA7D34B43}C:\program files\electronic arts\eadm\core.exe" [In-None-P6-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{653374F7-B7C0-4887-B3C5-544DF7F966B0}C:\program files\electronic arts\eadm\core.exe" [In-None-P17-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "TCP Query User{8188C0BB-E06F-4A28-8B6D-3AC6C346BAC0}C:\program files\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{8904644E-BE60-4415-93D1-18BDD5D845A3}C:\program files\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{49E62B98-4DD8-47E9-A077-96851864F121}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" [In-None-P6-TRUE] .(...) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe (.not file.)
O87 - FAEL: "UDP Query User{4C17B646-54E1-42F2-AAC8-DF80B2FACCE6}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" [In-None-P17-TRUE] .(...) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe (.not file.)
O87 - FAEL: "TCP Query User{51897BF3-63A0-4A48-BA47-F8F13AFF507F}C:\program files\java\jre1.8.0_31\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre1.8.0_31\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{CA3391B7-BCA5-449F-8CEB-5C79AE4A5CA5}C:\program files\java\jre1.8.0_31\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre1.8.0_31\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{393F90EE-0113-4E0B-9CB9-49565D84E3CF}C:\users\demarly\appdata\roaming\spotify\spotify.exe" [In-None-P6-TRUE] .(...) -- C:\users\demarly\appdata\roaming\spotify\spotify.exe (.not file.)
O87 - FAEL: "UDP Query User{814D5B55-6790-479C-845B-63F4F5399059}C:\users\demarly\appdata\roaming\spotify\spotify.exe" [In-None-P17-TRUE] .(...) -- C:\users\demarly\appdata\roaming\spotify\spotify.exe (.not file.)
O87 - FAEL: "{53B34EAD-3147-4EDF-B25F-B6F6A0417D2B}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
O87 - FAEL: "{A75467D0-2163-4386-A6FF-3DC633D499FC}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (21) - 78s
SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SR - Auto [2015/08/19 11:32:50] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SR - Demand [2015/07/21 16:34:13] [ 3218624] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe ©
SR - Auto [2007/01/09 23:59:32] [ 108648] ccEvtMgr (ccEvtMgr) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
SR - Auto [2007/01/09 23:59:32] [ 108648] ccSetMgr (ccSetMgr) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
SR - Auto [2007/01/09 23:59:32] [ 108648] Symantec Lic NetConnect service (CLTNetCnService) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
SS - Demand [2007/01/12 20:40:58] [ 49248] COM Host (comHost) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe ©
SR - Auto [2013/10/15 10:58:54] [ 311184] Dragon Service (DragonSvc) . (.Nuance Communications, Inc..) - C:\Program Files\Common Files\Nuance\dgnsvc.exe ©
SR - Auto [2015/08/18 10:47:15] [ 915600] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
SS - Auto [2015/08/30 15:44:25] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/08/30 15:44:25] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [2004/10/22 04:24:18] [ 73728] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe ©
SS - Demand [2007/02/15 20:05:32] [ 2975352] LiveUpdate (LiveUpdate) . (.Symantec Corporation.) - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE ©
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
SR - Auto [2015/08/18 10:47:15] [ 1706128] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
SR - Auto [2015/08/18 01:28:47] [ 670512] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SR - Demand [2007/01/11 12:40:20] [ 887544] RoxMediaDB9 (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe ©
SR - Auto [2007/01/11 12:40:22] [ 166648] Roxio Hard Drive Watcher 9 (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe ©
SS - Demand [2006/09/14 15:54:34] [ 73728] stllssvr (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe ©
SS - Demand [2007/02/08 00:13:45] [ 1174664] Symantec Core LC (Symantec Core LC) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe ©
---\\ Scan Additionnel (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.SettingsManager
~ End of the scan, 22999 items in 178 seconds (925)(0)()
~ Démarré par demarly (Administrator) (2015/09/04 17:04:24)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\demarly\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\demarly\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows VISTA, 32-bit Service Pack 2 (Build 6002)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v45.0.2454.85
MFIE: Mozilla Thunderbird 38.2.0 (x86 fr) v38.2.0
MSIE: Internet Explorer v9.0.8112.16421
---\\ Informations sur les produits Windows (8) - 7s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : MQ3CQ
Windows License : OK
Windows Automatic Updates : OK (Auto)
---\\ Logiciels de protection (3) - 2s
Avast Free Antivirus v10.3.2225
Malwarebytes Anti-Malware version 2.1.8.1057
Windows Defender VISTA (Activate)
---\\ Surveillance de Logiciels (2) - 3s
Adobe Flash Player ActiveX
Adobe Reader X
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2095.956 MB (63% free)
~ System Restore: Activé (Enable)
~ System drive C: has 260 GB free of 335 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-DE-DEMARLY
~ User Name: demarly
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 260 GB free of 335 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (24) - 1s
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2926592] ©
[MD5.4B555106290BD117334E9A08761C035A] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [96768] ©
[MD5.62077F806BC59CBD5A404338D710D133] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1129472] ©
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [314368] ©
[MD5.85E861D0B88DB2B54ACB0839654C09F7] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\System32\dnsapi.dll [168448] © =>Hijacker.Hosts
[MD5.95F5FF73B076576C41740F1A842B9B57] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [273408] ©
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [19944] ©
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70144] ©
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [67072] ©
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [75264] ©
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [561152] ©
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [54784] ©
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [100864] ©
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [106496] ©
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [185856] ©
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1082232] ©
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [76288] ©
[MD5.E8BD98D46F2ED77132BA927FCCB47D8B] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [242688] ©
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [66560] ©
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [72192] ©
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [224640] ©
---\\ Processus lancés (17) - 2s
[MD5.FB931D6633376412D6DEAD287D597F17] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [670512] [PID.1012] ©
[MD5.733EC4DC25FB2248B6FB69B031CE4D95] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [938160] [PID.1496] ©
[MD5.FB931D6633376412D6DEAD287D597F17] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) -- C:\Windows\System32\nvvsvc.exe [670512] [PID.1504] ©
[MD5.FE69C498B922CE835E2E2123FBD0A272] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [108648] [PID.1696] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1888] ©
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2160] ©
[MD5.78675536D8B6E2D96B59196C2BE3EBF2] - (.Nuance Communications, Inc. - Dragon NaturallySpeaking Service.) -- C:\Program Files\Common Files\Nuance\dgnsvc.exe [311184] [PID.2220] ©
[MD5.66AF0B382E050DD2521BCB5337410916] - (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600] [PID.2348] ©
[MD5.93C82F365F9C0A2058A211E305A5CCFA] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128] [PID.2800] ©
[MD5.910FBA95EE4F56449AA81315884C8EFD] - (.Sonic Solutions - RoxSniffer9 Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [166648] [PID.2980] ©
[MD5.A4C778C47836C9786C6A648C828DFF2B] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624] [PID.3552] ©
[MD5.9638E5820858593A12005C753B03CEAE] - (.Sonic Solutions - RoxMediaDB9 Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [887544] [PID.2792] ©
[MD5.EE4FB1BB6757675625699A32E0F80E20] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4468736] [PID.1208] ©
[MD5.6EBE7CBE5F934BD68BBFE23117FD679D] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1817776] [PID.2592] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.2660] ©
[MD5.059E588FDF6B7E83227D45D026D21874] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744] [PID.1524] ©
[MD5.1F7425258815EADF2CDCB82433D4C702] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\demarly\ZHPDiag3.exe [1921024] [PID.4744] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (16) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients4.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://docs.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh5.googleusercontent.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.googleapis.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.fr/
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (7) - 1s
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\packardbell@partners.mozilla.com
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
P2 - EXT: (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\NPSWF32.dll
P2 - FPN: [HKLM] [nuance.com/DragonRIAPlugin] - (.Nuance Communications Inc..) -- C:\Program Files\Nuance\NaturallySpeaking12\Program\npDgnRia.dll
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (20)
---\\ Browser Helper Object de navigateur (BHO) (7) - 0s
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} . (.Symantec Corporation - NcoBHO.) -- C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBHO.dll ©
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL ©
O2 - BHO: Bho - {73A89C60-CF59-4EC7-9215-9B7EF05ECEA4} (Orphean)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll ©
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ©
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll ©
---\\ Internet Explorer, Barre d'outil (2) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: NCO Toolbar - [HKLM]{90222687-F593-4738-B738-FBEE9C7B26DF} . (...) -- (.not file.)
---\\ Applications lancées au démarrage du système (14) - 0s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe ©
O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe ©
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKCU\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (.not file.)
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
O4 - HKCU\..\Run: [Settings Manager] C:\Users\demarly\AppData\Roaming\Settings Manager\SettingsManager.EXE (.not file.) =>PUP.Optional.SettingsManager
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (.not file.)
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe ©
O4 - HKUS\S-1-5-21-729715452-3973582830-320119249-1002\..\Run: [Settings Manager] C:\Users\demarly\AppData\Roaming\Settings Manager\SettingsManager.EXE (.not file.) =>PUP.Optional.SettingsManager
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
---\\ Protocole additionnel (22) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL ©
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - c:\progra~1\google\google~3\goec62~1.dll (.not file.)
---\\ Liste des services NT non Microsoft et non désactivés (12) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: ccEvtMgr (ccEvtMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
O23 - Service: ccSetMgr (ccSetMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
O23 - Service: Dragon Service (DragonSvc) . (.Nuance Communications, Inc. - Dragon NaturallySpeaking Service.) - C:\Program Files\Common Files\Nuance\dgnsvc.exe ©
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.8.) - C:\Windows\System32\nvvsvc.exe ©
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) . (.Sonic Solutions - RoxSniffer9 Module.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe ©
---\\ Tâches planifiées en automatique (16) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] ©
[MD5.00000000000000000000000000000000] [APT] [Extension de garantie] (...) -- C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe (.not file.) [0]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [Recovery DVD Creator] (...) -- C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe (.not file.) [0]
O39 - APT: Extension de garantie - (...) -- C:\Windows\Tasks\Extension de garantie.job [344]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056] ©
O39 - APT: Recovery DVD Creator - (...) -- C:\Windows\Tasks\Recovery DVD Creator.job [344]
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874] ©
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] ©
O39 - APT: Extension de garantie - (...) -- C:\Windows\System32\Tasks\Extension de garantie [3206]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3800] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4052] ©
O39 - APT: Recovery DVD Creator - (...) -- C:\Windows\System32\Tasks\Recovery DVD Creator [3206]
---\\ Logiciels installés (82) - 14s
O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Reader 8 - (...) [HKLM] -- AdobeReader
O42 - Logiciel: Realtek HD Audio V6.0.1.5413 - (...) [HKLM] -- AUDIO_REALTEK
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM] -- Avast ©
O42 - Logiciel: Ranch Rush - (...) [HKLM] -- BFG-Ranch Rush
O42 - Logiciel: Youda Farmer - (...) [HKLM] -- BFG-Youda Farmer
O42 - Logiciel: Youda Farmer 3: Saisons - (...) [HKLM] -- BFG-Youda Farmer 3 - Saisons
O42 - Logiciel: Big Fish: Game Manager - (...) [HKLM] -- BFGC
O42 - Logiciel: CPUID CPU-Z 1.71 - (...) [HKLM] -- CPUID CPU-Z_is1
O42 - Logiciel: Creator 9 - (...) [HKLM] -- CREATOR9
O42 - Logiciel: Mon Conte de Fées - (...) [HKLM] -- Disney's Princess Fashion Boutique
O42 - Logiciel: EPSON Scan - (...) [HKLM] -- EPSON Scanner
O42 - Logiciel: EPSON Stylus SX400 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Stylus SX400 Series ©
O42 - Logiciel: Farming Simulator 2013 - (.GIANTS Software.) [HKLM] -- FarmingSimulator2013INT_is1 ©
O42 - Logiciel: Farming Simulator 15 - (.GIANTS Software.) [HKLM] -- FarmingSimulator2015INT_is1 ©
O42 - Logiciel: FileZilla Client 3.7.3 - (.Tim Kosse.) [HKLM] -- FileZilla Client ©
O42 - Logiciel: Flash Player 9 Internet Explorer - (...) [HKLM] -- Flashplayer
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Lapin Malin Maternelle 2 + Atelier de dessin & de musique - (...) [HKLM] -- Lapin Malin Maternelle 2 + Atelier de dessin & de musique
O42 - Logiciel: LiveUpdate 3.2 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate ©
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Thunderbird 38.2.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird 38.2.0 (x86 fr) ©
O42 - Logiciel: QuickTime - (...) [HKLM] -- QuickTime
O42 - Logiciel: Express Scribe - (.NCH Software.) [HKLM] -- Scribe ©
O42 - Logiciel: Shockwave player 10 - (...) [HKLM] -- Shockwave
O42 - Logiciel: Norton 360 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- SymSetup.{2D617065-1C52-4240-B5BC-C0AE12157777} ©
O42 - Logiciel: Video NVIDIA v162.22 - (...) [HKLM] -- VIDEO_NVIDIA
O42 - Logiciel: VirtualCloneDrive - (.Elaborate Bytes.) [HKLM] -- VirtualCloneDrive ©
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: WinRAR 5.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: Microsoft Works 9 SE - (...) [HKLM] -- works9se
O42 - Logiciel: SuppSoft - (.Symantec Corporation.) [HKLM] -- {022DA2C3-81C7-4003-A6BC-1BB147B20097} ©
O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM] -- {08610298-29AE-445B-B37D-EFBE05802967} ©
O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM] -- {15634701-BACE-4449-8B25-1567DA8C9FD3} ©
O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9} ©
O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM] -- {174A3B31-4C43-43DD-866F-73C9DB887B48} ©
O42 - Logiciel: Euro Truck Simulator 2 - (.SCS Software.) [HKLM] -- {1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1 ©
O42 - Logiciel: Norton 360 Help - (.Symantec Corporation.) [HKLM] -- {1CA941F1-5006-487E-9FD4-09F812A7D6B8} ©
O42 - Logiciel: Ciel Auto-entrepreneur Standard 6.1 - (.Ciel.) [HKLM] -- {1FB9BE7A-77BB-4F26-9886-01259BF87088} ©
O42 - Logiciel: GearDrvs - (.Symantec Corporation.) [HKLM] -- {206FD69B-F9FE-4164-81BD-D52552BC9C23} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {21829177-4DED-4209-AD08-490B3AC9C01A} ©
O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E} ©
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {2D617065-1C52-4240-B5BC-C0AE12157777} ©
O42 - Logiciel: SymNet - (.Symantec Corporation.) [HKLM] -- {2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2} ©
O42 - Logiciel: Norton Confidential Web Authentification Component - (.Symantec Corporation.) [HKLM] -- {3074EB89-1BCA-4AEF-AFF4-EFB4634C1923} ©
O42 - Logiciel: ccCommon - (.Symantec.) [HKLM] -- {3CCAD2EF-CFF2-4637-82AA-AABF370282D3} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {3DE5E7D4-7B88-403C-A3FD-2017A8240C5B} ©
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {40DA9A54-48CA-4A2C-AEAF-F67715BB046E} ©
O42 - Logiciel: Norton Confidential Browser Component - (.Symantec Corporation.) [HKLM] -- {4843B611-8FCB-4428-8C23-31D0A5EAE164} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Norton 360 - (.Symantec Corporation.) [HKLM] -- {63A6E9A9-A190-46D4-9430-2DB28654AFD8} ©
O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD} ©
O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA} ©
O42 - Logiciel: SPBBC 32bit - (.Symantec Corporation.) [HKLM] -- {77772678-817F-4401-9301-ED1D01A8DA56} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {80407BA7-7763-4395-AB98-5233F1B34E65} ©
O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM] -- {8937D274-C281-42E4-8CDB-A0B2DF979189} ©
O42 - Logiciel: Symantec Technical Support Controls - (.Symantec Corporation.) [HKLM] -- {92B1B3CC-EC78-45B8-96D0-8B3F11495864} ©
O42 - Logiciel: SeaTools for Windows - (.Seagate Technology.) [HKLM] -- {98613C99-1399-416C-A07C-1EE1C585D872} ©
O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM] -- {9DAEA76B-E50F-4272-A595-0124E826553D} ©
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {A7DB362E-16DC-4E29-8A34-E74381E00B5B} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Reader X (10.1.15) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} ©
O42 - Logiciel: NVIDIA Pilote graphique 341.81 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA GeForce Experience 2.2.2 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience ©
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 340.50 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB ©
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Roxio Creator 9 LE - (.Roxio.) [HKLM] -- {B7FB0C86-41A4-4402-9A33-912C462042A0} ©
O42 - Logiciel: Norton Confidential Web Protection Component - (.Symantec Corporation.) [HKLM] -- {D353CC51-430D-4C6F-9B7E-52003DA1E05A} ©
O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM] -- {D40EB009-0499-459c-A8AF-C9C110766215} ©
O42 - Logiciel: Dragon NaturallySpeaking 12 - (.Nuance Communications Inc..) [HKLM] -- {D5D422B9-6976-4E98-8DDF-9632CB515D7E}
O42 - Logiciel: Symantec Real Time Storage Protection Component - (.Symantec Corporation.) [HKLM] -- {D6E6FA4A-5445-4850-8365-CF216C1CBB7A} ©
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13} ©
O42 - Logiciel: AppCore - (.Symantec Corporation.) [HKLM] -- {EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: AV - (.Symantec Corporation.) [HKLM] -- {F4DB525F-A986-4249-B98B-42A8066251CA} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer ©
---\\ HKCU & HKLM Software Keys (133) - 14s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Adobee
HKLM\SOFTWARE\AGEIA Technologies
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Big Fish Games
HKLM\SOFTWARE\BinarySense
HKLM\SOFTWARE\Corel
HKLM\SOFTWARE\CPUID
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\Debug
HKLM\SOFTWARE\Disney Interactive
HKLM\SOFTWARE\Dragon Systems
HKLM\SOFTWARE\ej-technologies
HKLM\SOFTWARE\Elaborate Bytes
HKLM\SOFTWARE\Electronic Arts
HKLM\SOFTWARE\EMS
HKLM\SOFTWARE\EPSON
HKLM\SOFTWARE\FileZilla 3
HKLM\SOFTWARE\FileZilla Client
HKLM\SOFTWARE\FreeDownloadManager.ORG
HKLM\SOFTWARE\FullCircle
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\illiminable
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Link-Assistant.Com
HKLM\SOFTWARE\logishrd
HKLM\SOFTWARE\Logitech
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Maxicours
HKLM\SOFTWARE\MicroVision
HKLM\SOFTWARE\MimarSinan
HKLM\SOFTWARE\Mindscape
HKLM\SOFTWARE\MOVAVI
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NCH Software
HKLM\SOFTWARE\Nuance
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\PB_EBAY
HKLM\SOFTWARE\PB_FIRSTCHOICE
HKLM\SOFTWARE\PB_KODAK
HKLM\SOFTWARE\PB_METABOLI
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Roxio
HKLM\SOFTWARE\Sage
HKLM\SOFTWARE\SAMSUNG
HKLM\SOFTWARE\ScanSoft
HKLM\SOFTWARE\SCS Software
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\Symantec Technical Support
HKLM\SOFTWARE\TeamViewer
HKLM\SOFTWARE\The Learning Company
HKLM\SOFTWARE\Valve
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Voice
HKLM\SOFTWARE\WinRAR
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Big Fish Games
HKCU\SOFTWARE\BitComet
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\Dragon Systems
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Elaborate Bytes
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\FLEXnet
HKCU\SOFTWARE\FreeDownloadManager.ORG
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\InstallShield
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\LANGAGENT
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogiShrd
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\ManiacTools
HKCU\SOFTWARE\MediaProLab
HKCU\SOFTWARE\MimarSinan
HKCU\SOFTWARE\MOVAVI
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MultimediaTools
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Packard Bell
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Red Dot Games
HKCU\SOFTWARE\Roxio
HKCU\SOFTWARE\Sage
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\ScanSoft
HKCU\SOFTWARE\Smartcode Software
HKCU\SOFTWARE\Sonic
HKCU\SOFTWARE\SourceForge
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\THQ
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Unlimited Possibilities
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Google
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\MarkAny
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contenu des dossiers Programmes (255) - 15s
O43 - CFD: 2014/04/04 13:40:51 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2014/12/29 18:52:30 - [0] D -- C:\Program Files\AGEIA Technologies
O43 - CFD: 2014/04/02 21:54:11 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 2015/08/20 16:32:18 - [] D -- C:\Program Files\AviSynth 2.5
O43 - CFD: 2014/11/23 15:24:33 - [] D -- C:\Program Files\bfgclient
O43 - CFD: 2014/04/17 13:18:28 - [] D -- C:\Program Files\Ciel
O43 - CFD: 2015/09/02 11:18:58 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2014/12/29 11:15:37 - [] D -- C:\Program Files\CPUID
O43 - CFD: 2014/05/06 21:22:31 - [] D -- C:\Program Files\CyberLink
O43 - CFD: 2015/08/20 16:31:30 - [] D -- C:\Program Files\Demolition Company Demo
O43 - CFD: 2015/03/17 14:27:50 - [0] D -- C:\Program Files\DIGIPAIE12
O43 - CFD: 2014/04/02 14:15:34 - [] D -- C:\Program Files\Elaborate Bytes
O43 - CFD: 2015/07/25 18:37:30 - [] D -- C:\Program Files\Electronic Arts
O43 - CFD: 2014/04/03 11:13:16 - [] D -- C:\Program Files\epson
O43 - CFD: 2014/04/03 13:54:58 - [] D -- C:\Program Files\Euro Truck Simulator 2
O43 - CFD: 2014/04/17 13:17:36 - [] D -- C:\Program Files\Farming Simulator 2013
O43 - CFD: 2015/01/25 21:40:46 - [] D -- C:\Program Files\Farming Simulator 2015
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2014/05/12 09:44:09 - [] D -- C:\Program Files\FileZilla FTP Client
O43 - CFD: 2015/04/29 12:26:54 - [] D -- C:\Program Files\Free Download Manager
O43 - CFD: 2015/01/14 10:56:35 - [] D -- C:\Program Files\FreeTime
O43 - CFD: 2014/05/07 09:02:54 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/05/06 21:09:09 - [] D -- C:\Program Files\HDReg
O43 - CFD: 2015/08/20 16:39:52 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2014/08/11 18:19:29 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/04/20 14:55:15 - [] D -- C:\Program Files\Java
O43 - CFD: 2014/06/12 16:57:05 - [] D -- C:\Program Files\Logitech
O43 - CFD: 2015/09/02 12:58:48 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2015/08/13 20:28:23 - [] D -- C:\Program Files\MarkAny
O43 - CFD: 2014/04/02 22:56:20 - [] D -- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 2006/11/02 14:37:34 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2014/04/02 23:05:24 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2014/04/02 23:05:19 - [] D -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 2014/04/02 22:57:32 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 2014/05/06 21:27:46 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2014/08/11 15:06:02 - [] D -- C:\Program Files\Microsoft WSE
O43 - CFD: 2014/04/04 11:03:29 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2014/10/09 17:43:43 - [] D -- C:\Program Files\Mindscape
O43 - CFD: 2014/04/05 14:36:12 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 2014/05/06 21:16:44 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2014/10/29 19:48:21 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2015/08/28 07:47:40 - [] D -- C:\Program Files\Mozilla Thunderbird
O43 - CFD: 2014/04/02 23:07:29 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2014/04/03 08:30:20 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 2014/10/29 19:47:44 - [0] D -- C:\Program Files\MyFree Codec
O43 - CFD: 2014/04/02 18:47:30 - [] D -- C:\Program Files\NCH Software
O43 - CFD: 2014/04/07 10:43:37 - [] D -- C:\Program Files\Nuance
O43 - CFD: 2015/08/30 20:18:00 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 2014/05/06 21:48:50 - [] D -- C:\Program Files\Packard Bell
O43 - CFD: 2014/08/11 18:19:41 - [] D -- C:\Program Files\QuickTime
O43 - CFD: 2014/11/26 14:48:33 - [] D -- C:\Program Files\Ranch Rush
O43 - CFD: 2007/02/07 23:58:26 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2006/11/02 14:37:34 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2007/02/08 00:10:26 - [] D -- C:\Program Files\Roxio
O43 - CFD: 2015/08/20 16:39:58 - [] D -- C:\Program Files\Samsung
O43 - CFD: 2007/02/08 00:04:32 - [] D -- C:\Program Files\Seagate
O43 - CFD: 2015/09/02 11:16:22 - [] D -- C:\Program Files\SpeedFan
O43 - CFD: 2014/04/10 19:19:45 - [] D -- C:\Program Files\Symantec
O43 - CFD: 2006/11/02 15:01:55 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/05/16 11:46:33 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2014/04/05 14:36:13 - [] D -- C:\Program Files\Windows Calendar
O43 - CFD: 2014/04/05 14:36:09 - [] D -- C:\Program Files\Windows Collaboration
O43 - CFD: 2014/04/05 14:35:58 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2014/04/11 20:56:23 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2014/04/11 20:56:25 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2014/04/05 14:36:10 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/04/02 13:56:31 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2014/04/05 14:36:09 - [] D -- C:\Program Files\Windows Photo Gallery
O43 - CFD: 2014/04/11 20:56:34 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2014/04/05 14:36:11 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2014/12/31 08:35:33 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2014/11/25 18:15:13 - [] D -- C:\Program Files\Youda Farmer
O43 - CFD: 2014/11/23 16:08:57 - [] D -- C:\Program Files\Youda Farmer 3 - Saisons
O43 - CFD: 2015/09/04 15:27:30 - [] D -- C:\Program Files\ZHPFix
O43 - CFD: 2015/07/03 19:21:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/04/04 08:49:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/05/06 21:48:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistance Packard Bell
O43 - CFD: 2015/03/17 13:26:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ciel
O43 - CFD: 2014/12/29 11:15:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2014/04/02 19:06:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dictation and Transcription Programs
O43 - CFD: 2014/12/21 10:59:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disney Interactive
O43 - CFD: 2014/04/29 17:13:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon NaturallySpeaking 12.5
O43 - CFD: 2014/04/02 14:15:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
O43 - CFD: 2014/04/03 11:13:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 2014/04/03 13:54:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
O43 - CFD: 2014/04/02 16:12:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades
O43 - CFD: 2014/04/17 13:17:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 2013
O43 - CFD: 2014/11/14 11:47:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 2015
O43 - CFD: 2014/05/12 09:44:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2015/08/20 16:32:03 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/04/26 13:36:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/02/25 18:29:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2014/06/12 16:54:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 2006/11/02 14:56:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/05/07 12:46:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2014/08/11 18:18:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mindscape
O43 - CFD: 2014/05/06 21:48:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mon graveur de DVD
O43 - CFD: 2014/04/02 19:06:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
O43 - CFD: 2014/12/29 18:52:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2014/04/02 18:47:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de dictée et de transcription
O43 - CFD: 2014/08/11 18:19:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2014/11/26 14:48:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ranch Rush
O43 - CFD: 2015/09/02 11:18:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Services en ligne
O43 - CFD: 2014/04/29 19:56:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
O43 - CFD: 2007/02/08 00:06:52 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/04/02 18:47:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software
O43 - CFD: 2006/11/02 14:37:34 - [] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/10/01 15:33:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
O43 - CFD: 2014/05/16 11:47:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2014/12/30 21:06:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/11/25 18:14:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youda Farmer
O43 - CFD: 2014/11/23 16:08:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youda Farmer 3 - Saisons
O43 - CFD: 2014/04/04 13:45:31 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/04/02 14:44:48 - [] D -- C:\ProgramData\Application Data
O43 - CFD: 2014/04/02 21:53:11 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2014/11/23 15:24:18 - [] D -- C:\ProgramData\Big Fish
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/04/08 13:06:13 - [] D -- C:\ProgramData\Ciel
O43 - CFD: 2014/04/02 14:44:48 - [0] D -- C:\ProgramData\Desktop
O43 - CFD: 2014/04/02 14:44:48 - [0] D -- C:\ProgramData\Documents
O43 - CFD: 2015/07/25 18:37:29 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 2014/04/03 11:13:54 - [] D -- C:\ProgramData\EPSON
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2014/04/02 14:44:48 - [0] D -- C:\ProgramData\Favorites
O43 - CFD: 2014/04/07 10:43:40 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2015/04/29 12:22:54 - [] D -- C:\ProgramData\FreeDownloadManager.ORG
O43 - CFD: 2014/11/26 17:57:37 - [] D -- C:\ProgramData\FreshGames
O43 - CFD: 2014/05/06 20:16:18 - [] D -- C:\ProgramData\Google
O43 - CFD: 2007/02/08 00:10:35 - [] D -- C:\ProgramData\InstallShield
O43 - CFD: 2014/06/12 16:58:06 - [] D -- C:\ProgramData\LogiShrd
O43 - CFD: 2014/04/11 12:03:38 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 2014/04/07 12:20:08 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/08/25 12:58:27 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/05/07 12:46:17 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/04/02 13:56:31 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/07/25 18:29:42 - [] D -- C:\ProgramData\Movavi
O43 - CFD: 2015/07/25 18:27:12 - [] D -- C:\ProgramData\Movavi Video Converter 15
O43 - CFD: 2014/04/02 18:52:41 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2014/04/02 18:47:30 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 2014/04/07 10:43:37 - [] D -- C:\ProgramData\Nuance
O43 - CFD: 2015/08/30 20:16:52 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/12/29 18:54:44 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/04/20 14:55:39 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/08/11 18:19:15 - [] D -- C:\ProgramData\QuickTime
O43 - CFD: 2015/07/24 16:59:24 - [] D -- C:\ProgramData\Roxio
O43 - CFD: 2015/08/20 16:39:56 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 2015/09/02 11:18:57 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2014/09/24 09:36:58 - [] D -- C:\ProgramData\Sonic
O43 - CFD: 2014/04/02 14:44:49 - [0] D -- C:\ProgramData\Start Menu
O43 - CFD: 2014/04/02 18:57:09 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2014/04/09 07:48:03 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 2015/08/04 13:16:45 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2014/04/02 14:44:49 - [0] D -- C:\ProgramData\Templates
O43 - CFD: 2015/07/29 09:38:05 - [] D -- C:\ProgramData\WindowsSearch
O43 - CFD: 2014/04/04 13:41:14 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2014/12/01 09:18:50 - [0] D -- C:\Program Files\Common Files\BinarySense
O43 - CFD: 2015/03/17 13:28:03 - [] D -- C:\Program Files\Common Files\Ciel
O43 - CFD: 2014/04/02 23:06:17 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2014/10/22 15:57:42 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2014/04/29 17:12:53 - [] D -- C:\Program Files\Common Files\IVA
O43 - CFD: 2015/04/20 14:53:43 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 2014/06/12 16:58:42 - [] D -- C:\Program Files\Common Files\LogiShrd
O43 - CFD: 2014/05/06 21:27:46 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2014/04/17 13:19:48 - [] D -- C:\Program Files\Common Files\MSSoap
O43 - CFD: 2014/04/29 17:38:28 - [] D -- C:\Program Files\Common Files\Nuance
O43 - CFD: 2007/02/08 00:10:12 - [] D -- C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 2006/11/02 13:18:33 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2007/02/08 00:10:12 - [] D -- C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 2006/11/02 13:18:33 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2014/04/28 15:36:18 - [] D -- C:\Program Files\Common Files\Steam
O43 - CFD: 2007/02/08 00:10:27 - [] D -- C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 2014/04/10 19:19:43 - [] D -- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 2014/04/11 20:56:24 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2007/02/08 00:04:18 - [] D -- C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 2015/08/30 15:53:23 - [] D -- C:\Users\demarly\AppData\Roaming\.minecraft
O43 - CFD: 2014/04/04 13:44:21 - [] D -- C:\Users\demarly\AppData\Roaming\Adobe
O43 - CFD: 2014/04/02 22:02:46 - [] D -- C:\Users\demarly\AppData\Roaming\AVAST Software
O43 - CFD: 2015/08/16 20:29:47 - [] D -- C:\Users\demarly\AppData\Roaming\Azureus
O43 - CFD: 2014/11/30 19:54:38 - [] D -- C:\Users\demarly\AppData\Roaming\BinarySense
O43 - CFD: 2014/04/02 19:39:49 - [] D -- C:\Users\demarly\AppData\Roaming\BitComet
O43 - CFD: 2014/04/02 14:06:59 - [] D -- C:\Users\demarly\AppData\Roaming\CyberLink
O43 - CFD: 2014/12/17 17:44:20 - [] D -- C:\Users\demarly\AppData\Roaming\Dropbox
O43 - CFD: 2014/07/01 12:32:42 - [] D -- C:\Users\demarly\AppData\Roaming\EPSON
O43 - CFD: 2015/08/11 10:56:06 - [] D -- C:\Users\demarly\AppData\Roaming\FileZilla
O43 - CFD: 2014/04/07 10:54:33 - [] D -- C:\Users\demarly\AppData\Roaming\FLEXnet
O43 - CFD: 2015/04/29 12:22:50 - [] D -- C:\Users\demarly\AppData\Roaming\FreeDownloadManager.ORG
O43 - CFD: 2014/11/26 17:57:37 - [] D -- C:\Users\demarly\AppData\Roaming\freshgames
O43 - CFD: 2014/04/10 19:19:46 - [] D -- C:\Users\demarly\AppData\Roaming\GetRightToGo
O43 - CFD: 2014/04/08 19:35:06 - [] D -- C:\Users\demarly\AppData\Roaming\Google
O43 - CFD: 2014/04/02 14:04:48 - [] D -- C:\Users\demarly\AppData\Roaming\Identities
O43 - CFD: 2015/02/27 14:34:30 - [] D -- C:\Users\demarly\AppData\Roaming\java
O43 - CFD: 2014/06/12 16:57:07 - [] D -- C:\Users\demarly\AppData\Roaming\Leadertech
O43 - CFD: 2014/04/02 14:13:38 - [] D -- C:\Users\demarly\AppData\Roaming\Macromedia
O43 - CFD: 2006/11/02 14:37:34 - [0] D -- C:\Users\demarly\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/02/10 17:15:09 - [] SD -- C:\Users\demarly\AppData\Roaming\Microsoft
O43 - CFD: 2014/04/02 18:53:10 - [] D -- C:\Users\demarly\AppData\Roaming\Mozilla
O43 - CFD: 2014/04/02 18:47:27 - [] D -- C:\Users\demarly\AppData\Roaming\NCH Software
O43 - CFD: 2015/01/02 20:17:09 - [] D -- C:\Users\demarly\AppData\Roaming\Need for Speed World
O43 - CFD: 2014/04/29 17:35:14 - [] D -- C:\Users\demarly\AppData\Roaming\Nuance
O43 - CFD: 2014/12/30 21:36:18 - [] D -- C:\Users\demarly\AppData\Roaming\NVIDIA
O43 - CFD: 2014/04/02 20:29:58 - [] D -- C:\Users\demarly\AppData\Roaming\OpenOffice
O43 - CFD: 2014/04/06 16:13:17 - [] D -- C:\Users\demarly\AppData\Roaming\Packard Bell
O43 - CFD: 2014/10/01 15:19:56 - [] D -- C:\Users\demarly\AppData\Roaming\Roxio
O43 - CFD: 2015/08/20 16:39:58 - [] D -- C:\Users\demarly\AppData\Roaming\Samsung
O43 - CFD: 2014/10/29 20:25:40 - [] D -- C:\Users\demarly\AppData\Roaming\SpinTires
O43 - CFD: 2014/04/02 14:11:30 - [] D -- C:\Users\demarly\AppData\Roaming\Talkback
O43 - CFD: 2014/05/22 15:30:59 - [] D -- C:\Users\demarly\AppData\Roaming\TeamViewer
O43 - CFD: 2014/04/02 18:52:56 - [] D -- C:\Users\demarly\AppData\Roaming\Thunderbird
O43 - CFD: 2015/08/05 13:45:00 - [] D -- C:\Users\demarly\AppData\Roaming\vlc
O43 - CFD: 2014/04/21 21:48:03 - [] D -- C:\Users\demarly\AppData\Roaming\WinRAR
O43 - CFD: 2014/11/26 15:27:51 - [] D -- C:\Users\demarly\AppData\Roaming\YoudaGames
O43 - CFD: 2014/06/29 10:18:19 - [] D -- C:\Users\demarly\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 2015/09/04 17:04:39 - [] D -- C:\Users\demarly\AppData\Roaming\ZHP
O43 - CFD: 2014/05/20 20:48:50 - [] D -- C:\Users\demarly\AppData\Local\41
O43 - CFD: 2014/11/26 16:37:34 - [] D -- C:\Users\demarly\AppData\Local\Adobe
O43 - CFD: 2014/04/02 14:01:14 - [0] SHD -- C:\Users\demarly\AppData\Local\Application Data
O43 - CFD: 2014/11/30 19:34:15 - [] D -- C:\Users\demarly\AppData\Local\ApplicationHistory
O43 - CFD: 2014/04/02 17:23:27 - [] D -- C:\Users\demarly\AppData\Local\Apps
O43 - CFD: 2014/11/23 15:24:41 - [] D -- C:\Users\demarly\AppData\Local\Big Fish
O43 - CFD: 2014/04/02 17:23:45 - [0] D -- C:\Users\demarly\AppData\Local\Deployment
O43 - CFD: 2015/08/13 20:00:49 - [] D -- C:\Users\demarly\AppData\Local\Downloaded Installations
O43 - CFD: 2015/01/02 17:49:10 - [] D -- C:\Users\demarly\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 2014/08/04 13:58:31 - [] D -- C:\Users\demarly\AppData\Local\fontconfig
O43 - CFD: 2014/11/10 21:03:45 - [] D -- C:\Users\demarly\AppData\Local\Geckofx
O43 - CFD: 2014/08/04 13:58:26 - [] D -- C:\Users\demarly\AppData\Local\gegl-0.2
O43 - CFD: 2015/07/18 19:05:19 - [] D -- C:\Users\demarly\AppData\Local\GIANTS Editor 6.0.0
O43 - CFD: 2015/08/12 18:48:31 - [] D -- C:\Users\demarly\AppData\Local\GIANTS Editor 6.0.3
O43 - CFD: 2015/07/18 19:05:15 - [] D -- C:\Users\demarly\AppData\Local\GIANTSPackageRegistry
O43 - CFD: 2015/08/21 10:41:10 - [] D -- C:\Users\demarly\AppData\Local\Google
O43 - CFD: 2014/04/02 14:01:14 - [0] SHD -- C:\Users\demarly\AppData\Local\Historique
O43 - CFD: 2014/06/12 17:03:12 - [] D -- C:\Users\demarly\AppData\Local\Logitech® Webcam Software
O43 - CFD: 2015/08/25 12:58:27 - [] D -- C:\Users\demarly\AppData\Local\Microsoft
O43 - CFD: 2014/10/15 11:28:48 - [] D -- C:\Users\demarly\AppData\Local\Microsoft Games
O43 - CFD: 2014/10/15 18:21:06 - [] D -- C:\Users\demarly\AppData\Local\Microsoft Help
O43 - CFD: 2015/07/25 18:32:38 - [] D -- C:\Users\demarly\AppData\Local\Movavi
O43 - CFD: 2014/04/02 14:11:05 - [] D -- C:\Users\demarly\AppData\Local\Mozilla
O43 - CFD: 2015/08/30 16:26:36 - [] D -- C:\Users\demarly\AppData\Local\NVIDIA
O43 - CFD: 2014/05/06 21:19:44 - [0] D -- C:\Users\demarly\AppData\Local\PowerCinema
O43 - CFD: 2015/08/21 09:38:03 - [] D -- C:\Users\demarly\AppData\Local\Programs
O43 - CFD: 2015/08/14 13:06:20 - [] D -- C:\Users\demarly\AppData\Local\Samsung
O43 - CFD: 2014/05/06 21:30:51 - [] D -- C:\Users\demarly\AppData\Local\Seven Zip
O43 - CFD: 2015/09/04 17:04:20 - [] D -- C:\Users\demarly\AppData\Local\Temp
O43 - CFD: 2014/04/02 14:01:14 - [0] SHD -- C:\Users\demarly\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/09/03 20:45:10 - [] D -- C:\Users\demarly\AppData\Local\Thunderbird
O43 - CFD: 2014/09/13 11:58:40 - [] D -- C:\Users\demarly\AppData\Local\Unity
O43 - CFD: 2014/04/02 14:06:40 - [] D -- C:\Users\demarly\AppData\Local\VirtualStore
O43 - CFD: 2006/11/02 14:54:36 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/04/02 14:04:58 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2006/11/02 14:50:41 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/11/26 14:48:14 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ranch Rush
O43 - CFD: 2014/12/17 17:44:20 - [] RD -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/12/30 21:06:57 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/11/25 18:14:58 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Youda Farmer
O43 - CFD: 2014/11/23 16:08:32 - [] D -- C:\Users\demarly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Youda Farmer 3 - Saisons
---\\ Enumération des clés StartupReg (15) - 1s
O53 - SMSR:HKLM\...\startupreg\command . (...) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe ©
O53 - SMSR:HKLM\...\startupreg\EA Core [Key] . (...) -- C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\EPSON Stylus SX400 Series [Key] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\System32\spool\drivers\w32x86\3\E_FATIEGE.EXE ©
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_815E570C7303114EC3E01DAA08133435 [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O53 - SMSR:HKLM\...\startupreg\ISUSPM [Key] . (.Flexera Software LLC. - Common Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O53 - SMSR:HKLM\...\startupreg\KiesAirMessage [Key] . (...) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (...) -- C:\Program Files\Samsung\Kies\Kies.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\KiesTrayAgent [Key] . (...) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\LWS [Key] . (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe ©
O53 - SMSR:HKLM\...\startupreg\NvBackend [Key] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe ©
O53 - SMSR:HKLM\...\startupreg\RoxWatchTray [Key] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe ©
O53 - SMSR:HKLM\...\startupreg\toolbar_eula_launcher [Key] . (...) -- C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe
O53 - SMSR:HKLM\...\startupreg\VirtualCloneDrive [Key] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe ©
O53 - SMSR:HKLM\...\startupreg\Windows Defender [Key] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe ©
---\\ Liste des pilotes du système (98) - 16s
O58 - SDL:2015/07/21 18:53:54 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\31F742AE.sys [98520] ©
O58 - SDL:2006/11/02 11:51:38 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [420968] ©
O58 - SDL:2006/11/02 11:51:32 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297576] ©
O58 - SDL:2006/11/02 11:50:35 A . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\System32\drivers\adpu160m.sys [98408] ©
O58 - SDL:2006/11/02 11:51:00 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [147048] ©
O58 - SDL:2006/11/02 11:49:20 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14952] ©
O58 - SDL:2006/11/02 11:50:09 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [67688] ©
O58 - SDL:2006/11/02 11:50:10 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [67688] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [24016] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [76000] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! TDI Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr.sys [55200] ©
O58 - SDL:2015/08/19 11:33:09 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [49776] ©
O58 - SDL:2015/08/19 11:32:40 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [788784] ©
O58 - SDL:2015/08/19 11:33:10 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [433264] ©
O58 - SDL:2015/08/19 11:33:11 A . (.AVAST Software - avast! Stream Filter.) -- C:\Windows\System32\drivers\aswStmXP.sys [161472] ©
O58 - SDL:2015/08/19 11:33:11 A . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys [57888] ©
O58 - SDL:2015/08/19 11:33:10 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [208664] ©
O58 - SDL:2006/11/02 10:24:45 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] ©
O58 - SDL:2006/11/02 10:24:46 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] ©
O58 - SDL:2006/11/02 10:25:24 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [71808] ©
O58 - SDL:2006/11/02 10:24:44 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] ©
O58 - SDL:2006/11/02 10:24:44 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] ©
O58 - SDL:2006/11/02 10:24:47 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] ©
O58 - SDL:2006/07/24 04:00:00 A . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\Windows\System32\drivers\cdr4_xp.sys [2432] ©
O58 - SDL:2006/07/24 04:00:00 A . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\drivers\cdralw2k.sys [2560] ©
O58 - SDL:2006/11/02 11:49:28 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [16488] ©
O58 - SDL:2013/12/30 10:52:38 A . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\Windows\System32\drivers\dgderdrv.sys [20032] ©
O58 - SDL:2006/11/02 11:50:11 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [71272] ©
O58 - SDL:2006/11/02 09:30:54 A . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserializ.) -- C:\Windows\System32\drivers\E1G60I32.sys [117760] ©
O58 - SDL:2013/03/04 11:25:00 A . (.Elaborate Bytes AG - ElbyCD Windows NT/2000/XP I/O driver.) -- C:\Windows\System32\drivers\ElbyCDIO.sys [30616] ©
O58 - SDL:2006/11/02 11:51:34 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [316520] ©
O58 - SDL:2006/09/19 15:44:04 A . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [15664] ©
O58 - SDL:2006/11/02 11:50:10 A . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\drivers\HpCISSs.sys [37480] ©
O58 - SDL:2006/11/02 11:51:25 A . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\drivers\iaStorV.sys [232040] ©
O58 - SDL:2006/11/02 11:50:17 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41576] ©
O58 - SDL:2006/11/02 11:50:07 A . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\drivers\iteatapi.sys [35944] ©
O58 - SDL:2006/11/02 11:50:09 A . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\drivers\iteraid.sys [35944] ©
O58 - SDL:2006/11/02 11:50:04 A . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [65640] ©
O58 - SDL:2006/11/02 11:50:05 A . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [65640] ©
O58 - SDL:2006/11/02 11:50:10 A . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [65640] ©
O58 - SDL:2012/09/21 21:09:00 A . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Dr.) -- C:\Windows\System32\drivers\lvrs.sys [310504] ©
O58 - SDL:2012/09/21 21:09:06 A . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\System32\drivers\lvuvc.sys [4261224] ©
O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [23256] ©
O58 - SDL:2015/06/18 08:41:42 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [94936] ©
O58 - SDL:2015/09/02 13:03:41 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [98520] ©
O58 - SDL:2006/11/02 11:49:53 A . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [28776] ©
O58 - SDL:2006/11/02 11:49:59 A . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\Mraid35x.sys [33384] ©
O58 - SDL:2015/06/18 08:41:50 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [51928] ©
O58 - SDL:2006/11/02 11:50:19 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [45160] ©
O58 - SDL:2015/08/19 11:32:38 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [95112] ©
O58 - SDL:2006/11/02 09:36:50 A . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablett.) -- C:\Windows\System32\drivers\ntrigdigi.sys [20608] ©
O58 - SDL:2015/08/18 10:47:15 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10704560] ©
O58 - SDL:2006/11/02 11:50:24 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [88680] ©
O58 - SDL:2006/11/02 11:50:13 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [40040] ©
O58 - SDL:2006/09/27 23:53:22 A . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\drivers\pxhelp20.sys [36560] ©
O58 - SDL:2006/11/02 11:51:45 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [900712] ©
O58 - SDL:2006/11/02 11:50:35 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106088] ©
O58 - SDL:2007/05/10 18:25:00 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [1775712] ©
O58 - SDL:2007/01/23 11:01:00 A . (.Realtek Semiconductor Corporation - Realtek 10/100 NDIS 5.1 Driver.) -- C:\Windows\System32\drivers\Rtnicxp.sys [50176] ©
O58 - SDL:2006/11/02 08:37:21 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2006/11/02 11:50:10 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [38504] ©
O58 - SDL:2006/11/02 11:50:16 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [71784] ©
O58 - SDL:2007/01/12 03:22:14 A . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\System32\drivers\srtsp.sys [247608] ©
O58 - SDL:2007/01/12 03:22:20 A . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\System32\drivers\srtspl.sys [276792] ©
O58 - SDL:2007/01/12 03:22:18 A . (.Symantec Corporation - Symantec AutoProtect.) -- C:\Windows\System32\drivers\srtspx.sys [25400] ©
O58 - SDL:2006/11/02 11:50:05 A . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\drivers\symc8xx.sys [35944] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - DNS Filter Driver.) -- C:\Windows\System32\drivers\symdns.sys [12984] ©
O58 - SDL:2007/02/08 00:14:56 A . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\System32\drivers\SYMEVENT.SYS [115000] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - Firewall Filter Driver.) -- C:\Windows\System32\drivers\symfw.sys [145976] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - IDS Filter Driver.) -- C:\Windows\System32\drivers\symids.sys [40120] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - NDIS Filter Driver.) -- C:\Windows\System32\drivers\symndisv.sys [38200] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - Redirector Filter Driver.) -- C:\Windows\System32\drivers\symredrv.sys [27576] ©
O58 - SDL:2007/01/09 23:32:13 A . (.Symantec Corporation - Network Dispatch Driver.) -- C:\Windows\System32\drivers\symtdi.sys [191544] ©
O58 - SDL:2006/11/02 11:49:56 A . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_hi.sys [31848] ©
O58 - SDL:2006/11/02 11:50:03 A . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_u3.sys [34920] ©
O58 - SDL:2006/11/02 11:51:25 A . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\drivers\uliahci.sys [235112] ©
O58 - SDL:2006/11/02 11:50:35 A . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win200.) -- C:\Windows\System32\drivers\ulsata.sys [98408] ©
O58 - SDL:2006/11/02 11:50:45 A . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\drivers\ulsata2.sys [115816] ©
O58 - SDL:2013/07/24 17:02:38 A . (.Elaborate Bytes AG - Virtual CloneDrive SCSI miniport.) -- C:\Windows\System32\drivers\VClone.sys [30720] ©
O58 - SDL:2006/11/02 11:49:30 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17512] ©
O58 - SDL:2006/11/02 11:50:41 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\vsmraid.sys [112232] ©
O58 - SDL:2006/11/02 09:09:42 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2006/11/02 09:09:45 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:1996/04/03 21:33:26 A . (...) -- C:\Windows\System32\giveio.sys [5248]
O58 - SDL:2006/11/02 09:09:41 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2006/11/02 09:09:44 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2006/11/02 09:09:44 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2006/11/02 09:09:29 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2006/11/02 09:09:35 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2006/11/02 09:09:38 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2006/11/02 09:09:40 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2006/11/02 09:09:31 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2006/11/02 09:09:20 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2006/11/02 09:09:23 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2006/11/02 09:09:24 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2006/11/02 09:09:26 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2006/11/02 09:09:22 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:2012/12/29 22:59:38 A . (.Almico Software - SpeedFan x32 Driver.) -- C:\Windows\System32\speedfan.sys [24184] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (8) - 8s
O61 - LFC: 2015/09/02 09:57:37 A . (..) -- C:\Users\demarly\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin [112]
O61 - LFC: 2015/09/04 11:00:12 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [5209282]
O61 - LFC: 2015/09/04 14:56:25 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\00007d9b\CoProc update.19931949.exe [522192]
O61 - LFC: 2015/09/04 14:57:12 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\00007d95\DAO.19929559.exe [6239952]
O61 - LFC: 2015/08/30 16:37:47 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\00007479\vops-euro_truck_simulator_2.19506266.exe [15029144]
O61 - LFC: 2015/09/01 17:43:26 A . (..) -- C:\Users\demarly\AppData\Local\NVIDIA\NvBackend\Packages\000063ef\DRS update.18761999.exe [331952]
O61 - LFC: 2015/09/04 16:11:24 A . (..) -- C:\Users\demarly\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/08/28 15:16:32 A . (..) -- C:\Users\demarly\AppData\Local\Google\Chrome\User Data\EVWhitelist\7\_platform_specific\all\ev_hashes_whitelist.bin [674082]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (1) - 1s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (31) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [24576] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [62976] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [40448] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [40448] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [125952] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [576512] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [444928] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [315392] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [262144] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [68608] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [47104] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\Windows\System32\ipnathlp.dll [288256] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242688] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Termi.) -- C:\Windows\System32\termsrv.dll [449024] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1933848] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [758784] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [247808] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [200704] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [19968] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [33280] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [111616] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [45056] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [153088] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [57344] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [162304] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [601600] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Termi.) -- C:\Windows\System32\SessEnv.dll [84992] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [81920] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [68096] ©
---\\ Liste des exceptions du parefeu Windows (28) - 4s
O87 - FAEL: "{9F114FD2-8C35-40C0-8DAF-CF2E821C34BC}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE (.not file.)
O87 - FAEL: "{323E60AA-F4D2-4116-906A-C97A4EA7EB23}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE (.not file.)
O87 - FAEL: "{6ECAE2C8-3599-4F18-96F4-12CC4254B6E5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\BitComet\BitComet.exe (.not file.)
O87 - FAEL: "{3E4C6AD2-FD05-4267-920E-46143A205B32}" [In-None-P17-TRUE] .(...) -- C:\Program Files\BitComet\BitComet.exe (.not file.)
O87 - FAEL: "{1E94B4CC-3754-4011-853D-B6784F501C02}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
O87 - FAEL: "{690E3E0A-9A07-49C6-96B3-2D8A25D80EF9}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
O87 - FAEL: "{98719F5B-8C75-4463-8752-B75E34E0E7ED}" [In-None-P6-TRUE] .(...) -- C:\Users\demarly\AppData\Roaming\Dropbox\bin\Dropbox.exe (.not file.)
O87 - FAEL: "{82021FC2-FA84-4863-8C49-9601265A0CE0}" [In-None-P17-TRUE] .(...) -- C:\Users\demarly\AppData\Roaming\Dropbox\bin\Dropbox.exe (.not file.)
O87 - FAEL: "TCP Query User{8E4BDC1B-7B7B-4FCF-9290-6317168E48AF}C:\program files\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{B0D94B09-B3DD-4AA9-8253-E7532B843AFA}C:\program files\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "{18F8FE07-89C5-4132-9A63-B67C27F2CF06}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Steam\Steam.exe (.not file.)
O87 - FAEL: "{4AFCF94A-E9C4-4EC0-A0D6-62B899838561}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Steam\Steam.exe (.not file.)
O87 - FAEL: "TCP Query User{E79D5439-7FE6-40BD-AD55-C2FC3EF177E5}C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe" [In-None-P6-TRUE] .(...) -- C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe (.not file.)
O87 - FAEL: "UDP Query User{816988A0-24E4-466A-91F0-E7D8529FB89A}C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe" [In-None-P17-TRUE] .(...) -- C:\program files\goat simulator\binaries\win32\goatgame-win32-shipping.exe (.not file.)
O87 - FAEL: "TCP Query User{4EE3A3E5-47E6-40BA-8DB5-161AC4AF5DB2}C:\program files\electronic arts\eadm\core.exe" [In-None-P6-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{65644B02-C5BB-42DC-A753-2776AEA39426}C:\program files\electronic arts\eadm\core.exe" [In-None-P17-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "TCP Query User{37FBC527-905B-4F06-A917-1AFAA7D34B43}C:\program files\electronic arts\eadm\core.exe" [In-None-P6-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{653374F7-B7C0-4887-B3C5-544DF7F966B0}C:\program files\electronic arts\eadm\core.exe" [In-None-P17-TRUE] .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "TCP Query User{8188C0BB-E06F-4A28-8B6D-3AC6C346BAC0}C:\program files\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{8904644E-BE60-4415-93D1-18BDD5D845A3}C:\program files\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{49E62B98-4DD8-47E9-A077-96851864F121}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" [In-None-P6-TRUE] .(...) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe (.not file.)
O87 - FAEL: "UDP Query User{4C17B646-54E1-42F2-AAC8-DF80B2FACCE6}C:\programdata\electronic arts\need for speed world\data\nfsw.exe" [In-None-P17-TRUE] .(...) -- C:\programdata\electronic arts\need for speed world\data\nfsw.exe (.not file.)
O87 - FAEL: "TCP Query User{51897BF3-63A0-4A48-BA47-F8F13AFF507F}C:\program files\java\jre1.8.0_31\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre1.8.0_31\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{CA3391B7-BCA5-449F-8CEB-5C79AE4A5CA5}C:\program files\java\jre1.8.0_31\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre1.8.0_31\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{393F90EE-0113-4E0B-9CB9-49565D84E3CF}C:\users\demarly\appdata\roaming\spotify\spotify.exe" [In-None-P6-TRUE] .(...) -- C:\users\demarly\appdata\roaming\spotify\spotify.exe (.not file.)
O87 - FAEL: "UDP Query User{814D5B55-6790-479C-845B-63F4F5399059}C:\users\demarly\appdata\roaming\spotify\spotify.exe" [In-None-P17-TRUE] .(...) -- C:\users\demarly\appdata\roaming\spotify\spotify.exe (.not file.)
O87 - FAEL: "{53B34EAD-3147-4EDF-B25F-B6F6A0417D2B}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
O87 - FAEL: "{A75467D0-2163-4386-A6FF-3DC633D499FC}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Vuze\Azureus.exe (.not file.)
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (21) - 78s
SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SR - Auto [2015/08/19 11:32:50] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SR - Demand [2015/07/21 16:34:13] [ 3218624] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe ©
SR - Auto [2007/01/09 23:59:32] [ 108648] ccEvtMgr (ccEvtMgr) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
SR - Auto [2007/01/09 23:59:32] [ 108648] ccSetMgr (ccSetMgr) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
SR - Auto [2007/01/09 23:59:32] [ 108648] Symantec Lic NetConnect service (CLTNetCnService) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe ©
SS - Demand [2007/01/12 20:40:58] [ 49248] COM Host (comHost) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe ©
SR - Auto [2013/10/15 10:58:54] [ 311184] Dragon Service (DragonSvc) . (.Nuance Communications, Inc..) - C:\Program Files\Common Files\Nuance\dgnsvc.exe ©
SR - Auto [2015/08/18 10:47:15] [ 915600] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
SS - Auto [2015/08/30 15:44:25] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/08/30 15:44:25] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [2004/10/22 04:24:18] [ 73728] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe ©
SS - Demand [2007/02/15 20:05:32] [ 2975352] LiveUpdate (LiveUpdate) . (.Symantec Corporation.) - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE ©
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
SR - Auto [2015/08/18 10:47:15] [ 1706128] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
SR - Auto [2015/08/18 01:28:47] [ 670512] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SR - Demand [2007/01/11 12:40:20] [ 887544] RoxMediaDB9 (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe ©
SR - Auto [2007/01/11 12:40:22] [ 166648] Roxio Hard Drive Watcher 9 (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe ©
SS - Demand [2006/09/14 15:54:34] [ 73728] stllssvr (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe ©
SS - Demand [2007/02/08 00:13:45] [ 1174664] Symantec Core LC (Symantec Core LC) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe ©
---\\ Scan Additionnel (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.SettingsManager
~ End of the scan, 22999 items in 178 seconds (925)(0)()