Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Christelle at 25/03/2016 15:35:14
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v9.11.10586.0
MFIE: Mozilla Firefox 45.0.1 v45.0.1 (Defaut)
GCIE: Google Chrome v49.0.2623.87
---\\ System Information
Unknown Windows Home Premium Edition, 64-bit (Build 9200)
Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3978 MB (39% free)
System drive C: has 71 GB (15%) free of 447 GB
---\\ Logged in mode
Computer Name: CHRISTELLE-PC
User Name: Christelle
All Users Names: UpdatusUser, DefaultAccount, Christelle, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 71 Go of 447 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.95D730526EF81792CD6848D8D10FAA1C] - (.Microsoft Corporation - Explorateur Windows.) (.29/01/2016 07:57:09.) -- C:\Windows\Explorer.exe [4502352]
---\\ Processus lancés
[MD5.A58FD0ED18787A003E80BFF9E049D4FF] - (.Dell, Inc. - Dell DataSafe Online Service.) -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [3411784]
[MD5.F56DAF008FFD7E423292DE21A990B2D4] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\System32\taskhostw.exe [90440]
[MD5.1CD2F4A74AD6AC2DE5ECF8BB9F12C723] - (.Microsoft Corporation - Shell Infrastructure Host.) -- C:\Windows\System32\sihost.exe [72704]
[MD5.C899BCFE25F9E3E67588C3553BE1E750] - (.Intel - Intel® Rapid Start Technology Manager.) -- C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [701952]
[MD5.46FDF02BDA740CFAB469022EF1F95474] - (.Microsoft Corporation - Runtime Broker.) -- C:\Windows\System32\RuntimeBroker.exe [85720]
[MD5.BA90DF05FA2E9A2C15F3A74825315BD0] - (.SoftThinks - Dell - Dell DataSafe Local Backup.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe [4293952]
[MD5.8872B78D80682F2BE0A04EB0B3EAF554] - (.SoftThinks - Dell - DataSafe Update Launcher.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe [465216]
[MD5.904CA475F6ADD4080B0EA5144D23FDF1] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe [144384]
[MD5.F205CD085B25CFC491908EFE4E8AB8F5] - (.Pas de propriétaire - ST Service Scheduling.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe [2751808]
[MD5.BD0C18CCF84C65F091F670181032BF75] - (.Microsoft Corporation - Windows Shell Experience Host.) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe [2095968]
[MD5.8ED88C794234FC7755366E0532471360] - (.Microsoft Corporation - Search and Cortana application.) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe [9371488]
[MD5.EB8B7935A446A137163AB1F94CD11B2A] - (.Microsoft Corporation - Application Frame Host.) -- C:\Windows\System32\ApplicationFrameHost.exe [43408]
[MD5.80A11F070E9EEFCB48B357E9E0E2C7D1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [541600]
[MD5.B6C52FADECE225339D02B6923E930B5C] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [258456]
[MD5.8D2A1935AE10BE1E11A8C58B2F473560] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxTray.exe [395168]
[MD5.264B7FD1B9DF0B3B6894AF491B62E90C] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2447504]
[MD5.641B19018CB32619ADBD0AED4964E1D9] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760]
[MD5.BC5A40AEAC1CF7708D07CBC2F577F90B] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320]
[MD5.F3559B89A5DA05AEFDBCC0E3BB97C050] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136]
[MD5.4332FAE0BC295D40A3146121FB15D675] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [210120]
[MD5.50252E856A3CEE68DD021E94C61581B6] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareTray.exe [9581280]
[MD5.6BF7676296D5359AFC135A5397000053] - (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496]
[MD5.175596062987D2AD073C0C30C2CC37AB] - (.Brother Industries, Ltd. - ControlCenter Main Process.) -- C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe [393216]
[MD5.63E9C23A386FFFA84B5E03BFF9B628F0] - (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096]
[MD5.7EE68A122ED08E4AAD8DA551E34D2515] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576]
[MD5.E93D62A6DB736AA82A3EEDDFDFE73311] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8641240]
[MD5.B6F7C29ACBD3660A6E61180B2D062DE1] - (.Brother Industries, Ltd. - ControlCenter UX System.) -- C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe [1327104]
[MD5.7DB6A5CEEAC1CB15CF78552794B3DB31] - (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\SysWOW64\cmd.exe [202240]
[MD5.F023A14FE899F5401935CAC119A723CE] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Christelle\AppData\Local\Akamai\netsession_win.exe [4441920]
[MD5.80B72881A9BDDA484867F22DDC2E84DD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392136]
[MD5.BEC86CDCAE5916463ACF0154D704CE5C] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe [1644824]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59] - (.Intel Corporation - Intel web components for Intel® Identity Protection Technology.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
P2 - FPN: [HKLM] [@intel-webapi.intel.com/Intel WebAPI updater] - (.Intel Corporation - Intel web components updater - Installs and updates the Intel web comp.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.77.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.77.2] - (.Oracle Corporation - Next Generation Java Plug-in 11.77.2 for Mozilla browsers.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.41212.0.) -- c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Share.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.13.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Pas de propriétaire - Pas de description.) -- C:\Users\Christelle\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (.not file.)
M0 - MFSP: prefs.js [Christelle - zl78uj8a.default-1403110083534] www.google.fr
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G0 - GCSP: Preference [User Data\Default][HomePage] http://fr.msn.com
G1 - GCS: Preference [User Data\Default] http://www.bing.com
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] "version": "0.2" v.aohghmighlieiainnegkcijnfilokake: { (Désactivé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] "version": "6.3" v.state: 1, (Désactivé)
G2 - GCE: Preference [User Data\Default] [ccahoghmggldkcdjiebjkidpfongdfbl] Bitdefender Wallet v.17.28.1 (Désactivé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] "version": "0.0.0.20" v.state: 1, (Désactivé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Désactivé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.7.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] "version": "0.0.6.1" v.state: 1, (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =;*.offerbox.com;*.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.10586.17 (th2_release.151121-2308)) -- C:\Windows\SysWOW64\ieframe.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} . (.Zeon Corporation - PlusIEContextMenu.dll.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IndexSearch] . (.Nuance Communications, Inc. - PaperPort IndexSearch.) -- C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [PaperPort PTD] . (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [PPort12reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe
O4 - HKLM\..\Run: [ControlCenter4] . (.Brother Industries, Ltd. - ControlCenter Launcher.) -- C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe
O4 - HKLM\..\Run: [BrStsMon00] . (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Christelle\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKCU\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] Clé orpheline
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] Clé orpheline
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [IndexSearch] . (.Nuance Communications, Inc. - PaperPort IndexSearch.) -- C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe
O4 - HKLM\..\Wow6432Node\Run: [PaperPort PTD] . (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
O4 - HKLM\..\Wow6432Node\Run: [PPort12reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe
O4 - HKLM\..\Wow6432Node\Run: [ControlCenter4] . (.Brother Industries, Ltd. - ControlCenter Launcher.) -- C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe
O4 - HKLM\..\Wow6432Node\Run: [BrStsMon00] . (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-18\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
O4 - HKUS\S-1-5-18\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Christelle\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] Clé orpheline
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] Clé orpheline
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] Clé orpheline
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Christelle\Desktop\Kerkythea 2008.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Kerkythea Rendering System\Kerkythea.exe
O4 - Global Startup: C:\Documents And Settings\Christelle\Desktop\Microsoft Office Word 2003.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
O4 - Global Startup: C:\Documents And Settings\Christelle\Desktop\Windows Fax and Scan.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\WFS.exe (.not file.)
O4 - Global Startup: C:\Documents And Settings\All Users\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Application Data\Microsoft\Internet Explorer\Quick Launch\System Scan.lnk . (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fonctionnalités optionnelles.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\fodhelper.exe (.not file.)
O4 - Global Startup: C:\Users\Christelle\Desktop\Kerkythea 2008.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Kerkythea Rendering System\Kerkythea.exe
O4 - Global Startup: C:\Users\Christelle\Desktop\Microsoft Office Word 2003.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
O4 - Global Startup: C:\Users\Christelle\Desktop\Windows Fax and Scan.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\WFS.exe (.not file.)
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Dev-C++.lnk . (.Bloodshed Software.) -- C:\Dev-Cpp\devcpp.exe
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Pas de propriétaire.) -- C:\Users\CHRIST~1\AppData\Local\Temp\_Temp_jkkupgu.tmp\iexplore.exe (.not file.)
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Clé orpheline
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Ajouter à un fichier PDF existant - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Convertir au format Adobe PDF - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.exe
O8 - Extra context menu item: Se&nd to OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~4\OFFICE11\REFBARH.ICO
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim daffectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] *.dell.com
O15 - Trusted Zone: [HKCU\...\Domains\www] *.dell.com
O15 - Trusted Zone: [HKCU\...\Domains] *.localhost
O15 - Trusted Zone: [HKCU\...\Domains\www] *.localhost
O15 - Trusted Zone: [HKCU\...\Domains] http.webcompanion.com
O15 - Trusted Zone: [HKCU\...\Domains\www] http.webcompanion.com
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{294b3ce3-cf27-48f4-b6c2-afc40e674723}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CCS\Services\Tcpip\..\{43c93816-c6c9-46c3-aec7-b8bb9a6495b3}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{6b306ef7-c8cc-4be2-9cc8-a527e200a38f}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{6ca18882-c4fd-4145-a0fa-ab7e95c80ab9}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{dc42c2d2-d63f-4d7e-bca3-e2c17000d434}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CS1\Services\Tcpip\..\{294b3ce3-cf27-48f4-b6c2-afc40e674723}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CS1\Services\Tcpip\..\{43c93816-c6c9-46c3-aec7-b8bb9a6495b3}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{6b306ef7-c8cc-4be2-9cc8-a527e200a38f}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{6ca18882-c4fd-4145-a0fa-ab7e95c80ab9}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{dc42c2d2-d63f-4d7e-bca3-e2c17000d434}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.142.7 95.211.158.134
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 353.) - C:\WINDOWS\SysWOW64\nvinit.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AdobeActiveFileMonitor10.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 10.0 (component).) - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Autodesk Content Service) . (.Autodesk, Inc. - AutoCAD component.) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (DellDigitalDelivery) . (.Dell Products, LP. - Dell Digital Delivery Windows Service.) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: (igfxCUIService1.0.0.0) - Clé orpheline
O23 - Service: (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: (irstrtsv) . (.Intel Corporation - Intel(R) Rapid Start Technology Service.) - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: (LavasoftAdAwareService11) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareService.exe
O23 - Service: (LavasoftTcpService) . (.Lavasoft Limited - Pas de description.) - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - French 64-bit (mi-raysat_3dsmax2012_64) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
O23 - Service: (NIHardwareService) . (.Native Instruments GmbH - NIHardwareService.) - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: (NOBU) . (.Dell, Inc. - Dell DataSafe Online Service.) - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
O23 - Service: (nvsvc) - Clé orpheline
O23 - Service: (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: (PDFProFiltSrvPP) . (.Nuance Communications, Inc. - PDFPro IFilter Service.) - C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
O23 - Service: (ProductAgentService) . (.Bitdefender - Bitdefender Agent.) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service: (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: (SftService) . (.SoftThinks SAS - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe
O23 - Service: (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
O23 - Service: (vsserv) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
O23 - Service: (WCAssistantService) . (.Pas de propriétaire - SPWindowsService.) - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001Core.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001UA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.A9D55370A0CBADD1E1E2B4796ACD26DF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.F5A5DBADCD24BDF33BFDAA789E39C876] [APT] [AdobeAAMUpdater-1.0-Christelle-PC-Christelle] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (.Pas de propriétaire.) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (.Pas de propriétaire.) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.)
[MD5.17B1A9E252268F70A975239291FB9B5F] [APT] [Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864] (.Bitdefender.) -- C:\Program Files\Bitdefender Agent\WatchDog.exe
[MD5.00000000000000000000000000000000] [APT] [Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8] (.Pas de propriétaire.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe (.not file.)
[MD5.C856B04ABD5A57CA688EF6CC2964DFBD] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001Core] (.Pas de propriétaire.) -- C:\Users\Christelle\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001UA] (.Pas de propriétaire.) -- C:\Users\Christelle\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.)
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [{0BB2ADDB-74BD-4A5D-BCB8-C853581B7C06}] (.Pas de propriétaire.) -- c:\users\christelle\appdata\local\lollipop\lollipop.bat (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{0C0D0B47-087D-0F7D-0911-7E79047A110A}] (.Pas de propriétaire.) -- C:\WINDOWS\system32\WindowsPowershell\v1.0\powershell.exeAQQBjAHQAaQBvAG4AUAByAGUAZgBlAHIAZQBuAGMAZQA9ACIAcwB0AG8AcAAiADsAJABzAGMAPQAiAFMAaQBsAGUAbgB0AGw (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{32289950-340C-4772-B604-56EACC16E049}] (.Pas de propriétaire.) -- C:\Program Files (x86)\Google\Google SketchUp 8\Style Builder\Style Builder.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{AEB24CA1-4B97-4A93-A49F-02651C8AA08E}] (.Pas de propriétaire.) -- D:\MSETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{B30C0841-4983-4FF5-92A3-F9EF194954FA}] (.Pas de propriétaire.) -- D:\MSETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{DFDFB252-D47C-4A94-AAEE-584E5AA72BCD}] (.Pas de propriétaire.) -- c:\users\christelle\appdata\local\lollipop\lollipop.bat (.not file.)
[MD5.00000000000000000000000000000000] [APT] [AppleSoftwareUpdate] (.Pas de propriétaire.) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (.not file.)
[MD5.9CCE733E5262FB92C2331E8578512B49] [APT] [Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
[MD5.48FAE038F51676A795CEFAD780448D94] [APT] [Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
[MD5.280C014187E24860A7C860329513208F] [APT] [Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\Installer\chrmstp.exe
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\WINDOWS\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: C:\WINDOWS\system32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\WINDOWS\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\WINDOWS\system32\drivers\BasicRender.sys
O41 - Driver: (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\drivers\cdrom.sys
O41 - Driver: C:\WINDOWS\system32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\WINDOWS\system32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\WINDOWS\system32\drivers\filecrypt.sys (FileCrypt) . (.Microsoft Corporation - Windows sandboxing and encryption filter.) - C:\Windows\System32\drivers\filecrypt.sys
O41 - Driver: C:\WINDOWS\system32\drivers\gpuenergydrv.sys (GpuEnergyDrv) . (.Microsoft Corporation - GPU Energy Kernel Driver.) - C:\Windows\System32\drivers\gpuenergydrv.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\WINDOWS\system32\drivers\mssmbios.sys
O41 - Driver: C:\WINDOWS\system32\drivers\netbios.sys (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys
O41 - Driver: C:\WINDOWS\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\WINDOWS\system32\drivers\npsvctrig.sys
O41 - Driver: C:\WINDOWS\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\WINDOWS\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\drivers\pacer.sys
O41 - Driver: C:\WINDOWS\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\WINDOWS\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\WINDOWS\system32\DRIVERS\tdx.sys
O41 - Driver: C:\WINDOWS\system32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\WINDOWS\system32\drivers\ws2ifsl.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {7B77622E-DE90-48EA-B2C7-227B1DE58A01}
O42 - Logiciel: Adobe Flash Player 21 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Adobe Reader X (10.1.13) MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Advanced Audio FX Engine - (.Creative Technology Ltd.) [HKLM] -- Advanced Audio FX Engine
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU] -- Akamai
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM] -- {649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Applications recommandées Autodesk 2016 - (.Autodesk.) [HKLM] -- {D42F37CD-9AF9-4435-A474-B387C5BB6B47}
O42 - Logiciel: Autodesk Advanced Material Library Image Library 2016 - (.Autodesk.) [HKLM] -- {94AD53E7-493B-4291-8714-7A3B761D2783}
O42 - Logiciel: Autodesk App Manager 2016 - (.Autodesk.) [HKLM] -- {4ECF9E00-2978-46AF-BD80-455EFEAB7A93}
O42 - Logiciel: Autodesk AutoCAD Performance Feedback Tool 1.2.4 - (.Autodesk.) [HKLM] -- {4E20873D-BC20-495C-AFD9-B18877B7F9BB}
O42 - Logiciel: Autodesk Backburner 2012.0.0 - (.Autodesk, Inc..) [HKLM] -- {3D347E6D-5A03-4342-B5BA-6A771885F379}
O42 - Logiciel: Autodesk Content Service Language Pack - (.Autodesk.) [HKLM] -- {62F029AB-85F2-0001-866A-9FC0DD99DDBC}
O42 - Logiciel: Autodesk Material Library 2012 - (.Autodesk.) [HKLM] -- {8F0837C2-EE09-4903-88F3-1976FE7FFF4E}
O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}
O42 - Logiciel: Autodesk Material Library 2016 - (.Autodesk.) [HKLM] -- {29A7D6EC-63C2-42FD-8143-5812ABD2923F}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2012 - (.Autodesk.) [HKLM] -- {65420DC9-306E-4371-905F-F4DC3B418E52}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM] -- {606E12B9-641F-4644-A22A-FF38AE980AFD}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2016 - (.Autodesk.) [HKLM] -- {6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2012 - (.Autodesk.) [HKLM] -- {B5751715-EC10-43D9-8C95-62E1368433EF}
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2013 - (.Autodesk.) [HKLM] -- {58760EEC-8B6A-43F4-81AA-696E381DFADD}
O42 - Logiciel: Brother MFL-Pro Suite MFC-J6910DW - (.Brother Industries, Ltd..) [HKLM] -- {17795164-3BC1-4D4F-8ADA-65C895EBFC9A}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Dell DataSafe Local Backup - (.Dell Inc..) [HKLM] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04}
O42 - Logiciel: Dell DataSafe Local Backup - Support Software - (.Dell Inc..) [HKLM] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49}
O42 - Logiciel: Dell DataSafe Online - (.Dell.) [HKLM] -- {C53BCCBE-9268-4C09-82E9-611444A73B3F}
O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM] -- {693A23FB-F28B-4F7A-A720-4C1263F97F43}
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU] -- 9204f5692a8faf3b
O42 - Logiciel: Dell Webcam Central - (.Creative Technology Ltd.) [HKLM] -- Dell Webcam Central
O42 - Logiciel: Dev-C++ 5 beta 9 release (4.9.9.2) - (.Pas de propriétaire.) [HKLM] -- Dev-C++
O42 - Logiciel: Duplicate Cleaner Free 3.2.6 - (.DigitalVolcano Software Ltd.) [HKLM] -- Duplicate Cleaner Free
O42 - Logiciel: FARO LS 1.1.406.58 - (.FARO Scanner Production.) [HKLM] -- {951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}
O42 - Logiciel: FARO LS 1.1.502.0 (64bit) - (.FARO Scanner Production.) [HKLM] -- {66D83FE0-D798-4B38-86FE-FB48151E5AEF}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: GanttProject - (.Pas de propriétaire.) [HKLM] -- GanttProject
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google SketchUp 8 - (.Google, Inc..) [HKLM] -- {E3F4EA31-41D7-4789-9AC4-F26CDAF797BA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: Importation de SketchUp 2016 - (.Autodesk.) [HKLM] -- {C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Start Technology - (.Intel Corporation.) [HKLM] -- 3D073343-CEEB-4ce7-85AC-A69A7631B5D6
O42 - Logiciel: Java 8 Update 77 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218077F0}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM] -- {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 - (.Microsoft Corporation.) [HKLM] -- {95716cce-fc71-413f-8ad5-56c2892d4b3a}
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {B175520C-86A2-35A7-8619-86DC379688B9}
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403}
O42 - Logiciel: Mozilla Firefox 45.0.1 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 45.0.1 (x86 en-US)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}
O42 - Logiciel: Nuance PDF Viewer Plus - (.Nuance Communications, Inc.) [HKLM] -- {28656860-4728-433C-8AD4-D1A930437BC8}
O42 - Logiciel: Nuance PaperPort 12 - (.Nuance Communications, Inc..) [HKLM] -- {6C0A559F-8583-4B5A-8B50-20BEE15D8E64}
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM] -- {90160000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM] -- {90160000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM] -- {627FFC10-CE0A-497F-BA2B-208CAC638010}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: ST Microelectronics 3 Axis Digital Accelerometer Solution - (.ST Microelectronics.) [HKLM] -- {9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}
O42 - Logiciel: ScanManager - (.Olivier Muet.) [HKLM] -- ScanManager_is1
O42 - Logiciel: SketchUp 2014 - (.Trimble Navigation Limited.) [HKLM] -- {A608A8D3-E77C-4BEE-8F2A-F8124F5F0FE2}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype 7.18 - (.Skype Technologies S.A..) [HKLM] -- {FC965A47-4839-40CA-B618-18F486F042C6}
O42 - Logiciel: SmartSound Common Data - (.SmartSound Software Inc..) [HKLM] -- InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}
O42 - Logiciel: SmartSound Common Data - (.SmartSound Software Inc..) [HKLM] -- {B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}
O42 - Logiciel: SmartSound Sonicfire Pro 5 - (.SmartSound Software Inc..) [HKLM] -- InstallShield_{1D273D91-D7D5-4036-8B84-EB4615FF5F81}
O42 - Logiciel: SmartSound Sonicfire Pro 5 - (.SmartSound Software Inc..) [HKLM] -- {1D273D91-D7D5-4036-8B84-EB4615FF5F81}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1
O42 - Logiciel: Vimeo Video Downloader 3.25 - (.DownloadToolz, Inc..) [HKLM] -- Vimeo Video Downloader_is1
O42 - Logiciel: Web Companion - (.Lavasoft.) [HKLM] -- {bf12f58b-6479-45c4-8343-1e4605bd4df3}
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: bl - (.Your Company Name.) [HKLM] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: odf-converter-integrator - (.Pas de propriétaire.) [HKLM] -- odf-converter-integrator
O42 - Logiciel: ph - (.Your Company Name.) [HKLM] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\(null)]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\adawarebp]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Autodesk, Inc.]
[HKCU\Software\Autodesk]
[HKCU\Software\Automobile]
[HKCU\Software\Bitdefender]
[HKCU\Software\Brother]
[HKCU\Software\Bugsplat]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Tech]
[HKCU\Software\Dell]
[HKCU\Software\DropboxUpdate]
[HKCU\Software\Dropbox]
[HKCU\Software\EZDownload]
[HKCU\Software\Earth Resource Mapping]
[HKCU\Software\FLEXnet]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kerkythea Rendering System]
[HKCU\Software\Licenses]
[HKCU\Software\LogiShrd]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept (Broadcast)]
[HKCU\Software\MainConcept]
[HKCU\Software\Micromega Software System]
[HKCU\Software\Mootools]
[HKCU\Software\Motion Analysis]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Native Instruments]
[HKCU\Software\Netscape]
[HKCU\Software\NewBlue]
[HKCU\Software\Nuance]
[HKCU\Software\ODBC]
[HKCU\Software\OMP]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PACE Anti-Piracy]
[HKCU\Software\PDF Architect 2]
[HKCU\Software\PDFCreator.net]
[HKCU\Software\PDFCreator]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\ScanSoft]
[HKCU\Software\Serato]
[HKCU\Software\SketchUp]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Synaptics]
[HKCU\Software\SyncEngines]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Visioneer]
[HKCU\Software\Waves Audio]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\WsAudio_Device]
[HKCU\Software\Xenocode]
[HKCU\Software\Zeon]
[HKCU\Software\kde.org]
[HKCU\Software\teras games]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\AdobeFlashPlayerUpdate]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Autodesk]
[HKLM\Software\Avid]
[HKLM\Software\Bitdefender Agent]
[HKLM\Software\Bitdefender]
[HKLM\Software\Brother Industries, Ltd.]
[HKLM\Software\Brother]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\Dell Inc.]
[HKLM\Software\Dell]
[HKLM\Software\Google]
[HKLM\Software\IM Providers]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Kaydara]
[HKLM\Software\Khronos]
[HKLM\Software\Lavasoft]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\McAfee.com]
[HKLM\Software\Micromega Software System]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Native Instruments]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PDF Architect 2]
[HKLM\Software\PDFCreator]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\ST Microelectronics]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\ScanSoft]
[HKLM\Software\SketchUp]
[HKLM\Software\Skype]
[HKLM\Software\SmartSound Software]
[HKLM\Software\SoftThinks]
[HKLM\Software\Software]
[HKLM\Software\Sonic]
[HKLM\Software\Visioneer]
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wondershare]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Yahoo]
[HKLM\Software\ZEON]
[HKLM\Software\mamverifier]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)
O43 - CFD: 09/09/2014 - 11:52:20 ----D- C:\Program Files\Adobe
O43 - CFD: 11/11/2015 - 13:51:46 ----D- C:\Program Files\Autodesk
O43 - CFD: 03/02/2016 - 15:03:18 ----D- C:\Program Files\Bitdefender
O43 - CFD: 25/03/2016 - 15:18:42 ---AD- C:\Program Files\Bitdefender Agent
O43 - CFD: 13/03/2016 - 11:28:16 ---AD- C:\Program Files\Bonjour
O43 - CFD: 16/03/2016 - 14:17:12 ---AD- C:\Program Files\CCleaner
O43 - CFD: 16/03/2016 - 13:03:06 ----D- C:\Program Files\Common Files
O43 - CFD: 18/10/2012 - 00:59:02 ----D- C:\Program Files\Dell
O43 - CFD: 18/10/2012 - 00:42:56 ----D- C:\Program Files\Dell Inc
O43 - CFD: 03/02/2016 - 11:44:04 ---AD- C:\Program Files\Dell Support Center
O43 - CFD: 03/02/2016 - 11:20:38 ----D- C:\Program Files\DIFX
O43 - CFD: 03/02/2016 - 11:29:20 ----D- C:\Program Files\DVD Maker
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 03/02/2016 - 11:29:20 ----D- C:\Program Files\Intel
O43 - CFD: 03/02/2016 - 11:29:22 ----D- C:\Program Files\Intel Corporation
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Internet Explorer
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files\iPod
O43 - CFD: 13/03/2016 - 11:31:08 ---AD- C:\Program Files\iTunes
O43 - CFD: 16/03/2016 - 13:07:10 ----D- C:\Program Files\Lavasoft
O43 - CFD: 16/12/2014 - 19:34:28 ---AD- C:\Program Files\ma-config.com
O43 - CFD: 03/02/2016 - 11:29:24 ----D- C:\Program Files\Microsoft Games
O43 - CFD: 19/01/2014 - 14:41:46 ----D- C:\Program Files\Microsoft LifeCam
O43 - CFD: 09/01/2016 - 19:41:02 ----D- C:\Program Files\Microsoft Office 15
O43 - CFD: 14/01/2016 - 13:11:22 ---AD- C:\Program Files\Microsoft Silverlight
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files\MSBuild
O43 - CFD: 06/12/2014 - 13:56:16 ----D- C:\Program Files\Native Instruments
O43 - CFD: 06/01/2013 - 14:44:48 ----D- C:\Program Files\Nuance
O43 - CFD: 03/02/2016 - 11:29:26 ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 11/04/2015 - 15:03:00 ----D- C:\Program Files\PDFCreator
O43 - CFD: 03/02/2016 - 11:20:40 ----D- C:\Program Files\Realtek
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 03/02/2016 - 11:20:32 ----D- C:\Program Files\STMicroelectronics
O43 - CFD: 03/02/2016 - 11:19:40 ----D- C:\Program Files\Synaptics
O43 - CFD: 16/12/2014 - 19:34:28 ---AD- C:\Program Files\Total Uninstall 6
O43 - CFD: 03/02/2016 - 11:20:36 --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Windows Defender
O43 - CFD: 02/03/2016 - 02:00:52 ----D- C:\Program Files\Windows Journal
O43 - CFD: 18/10/2012 - 01:23:16 ----D- C:\Program Files\Windows Live
O43 - CFD: 03/02/2016 - 11:29:28 ----D- C:\Program Files\Windows Mail
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Windows Media Player
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 03/02/2016 - 11:53:20 ----D- C:\Program Files\Windows NT
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 03/02/2016 - 11:29:28 -SH-D- C:\Program Files\Windows Sidebar
O43 - CFD: 24/03/2016 - 20:33:06 --H-D- C:\Program Files\WindowsApps
O43 - CFD: 30/10/2015 - 08:24:26 -S--D- C:\Program Files\WindowsPowerShell
O43 - CFD: 18/10/2012 - 01:13:02 ----D- C:\Program Files\WPAN Driver
O43 - CFD: 09/09/2014 - 11:52:24 ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 03/02/2016 - 01:11:22 ---AD- C:\Program Files\Common Files\Autodesk Shared
O43 - CFD: 16/03/2016 - 11:18:54 ----D- C:\Program Files\Common Files\AV
O43 - CFD: 03/02/2016 - 15:03:32 ----D- C:\Program Files\Common Files\Bitdefender
O43 - CFD: 19/11/2012 - 19:00:52 ----D- C:\Program Files\Common Files\Canon
O43 - CFD: 03/02/2016 - 11:29:14 ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 18/10/2012 - 01:12:14 ---AD- C:\Program Files\Common Files\Intel Corporation
O43 - CFD: 16/03/2016 - 13:03:06 ----D- C:\Program Files\Common Files\Lavasoft
O43 - CFD: 28/10/2012 - 18:52:08 ----D- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 06/12/2014 - 13:55:56 ---AD- C:\Program Files\Common Files\Native Instruments
O43 - CFD: 30/10/2015 - 08:24:30 ----D- C:\Program Files\Common Files\Services
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Common Files\System
O43 - CFD: 07/04/2013 - 21:49:46 ----D- C:\Program Files\Common Files\Wondershare
O43 - CFD: 28/10/2014 - 23:28:00 ----D- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 16/03/2016 - 12:11:42 ----D- C:\ProgramData\Adobe
O43 - CFD: 09/09/2014 - 11:47:34 ----D- C:\ProgramData\ALM
O43 - CFD: 15/02/2014 - 19:43:22 ----D- C:\ProgramData\Apple
O43 - CFD: 17/02/2013 - 21:59:42 ----D- C:\ProgramData\Apple Computer
O43 - CFD: 03/02/2016 - 11:53:20 -SH-D- C:\ProgramData\Application Data
O43 - CFD: 26/12/2015 - 16:57:08 ---AD- C:\ProgramData\Autodesk
O43 - CFD: 18/02/2015 - 13:15:26 ----D- C:\ProgramData\AVAST Software
O43 - CFD: 07/11/2014 - 20:05:02 ----D- C:\ProgramData\bdch
O43 - CFD: 18/02/2015 - 13:32:40 ----D- C:\ProgramData\BDLogging
O43 - CFD: 03/02/2016 - 15:44:24 ----D- C:\ProgramData\Bitdefender
O43 - CFD: 03/02/2016 - 13:08:26 ----D- C:\ProgramData\Bitdefender Agent
O43 - CFD: 25/03/2016 - 15:17:22 ----D- C:\ProgramData\boost_interprocess
O43 - CFD: 06/01/2013 - 15:08:22 ----D- C:\ProgramData\Brother
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Bureau
O43 - CFD: 19/11/2012 - 19:12:02 --H-D- C:\ProgramData\CanonBJ
O43 - CFD: 03/11/2012 - 23:57:48 --H-D- C:\ProgramData\Common Files
O43 - CFD: 30/10/2015 - 08:24:26 ----D- C:\ProgramData\Comms
O43 - CFD: 19/02/2013 - 19:08:54 ----D- C:\ProgramData\ControlCenter4
O43 - CFD: 04/11/2012 - 10:44:18 ----D- C:\ProgramData\Creative
O43 - CFD: 18/10/2012 - 01:26:18 ----D- C:\ProgramData\Dell
O43 - CFD: 03/02/2016 - 11:53:20 -SH-D- C:\ProgramData\Documents
O43 - CFD: 20/06/2015 - 19:59:00 ----D- C:\ProgramData\Dropbox
O43 - CFD: 15/08/2015 - 11:27:18 ----D- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 11/11/2015 - 13:29:12 ----D- C:\ProgramData\FARO
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Favoris
O43 - CFD: 10/02/2016 - 15:52:02 ----D- C:\ProgramData\FLEXnet
O43 - CFD: 25/11/2012 - 22:35:52 ----D- C:\ProgramData\Google
O43 - CFD: 16/12/2014 - 19:34:28 ----D- C:\ProgramData\InstallShield
O43 - CFD: 03/02/2016 - 11:29:40 ----D- C:\ProgramData\Intel
O43 - CFD: 18/10/2012 - 01:08:10 ----D- C:\ProgramData\Intel.sav
O43 - CFD: 16/03/2016 - 13:13:48 ----D- C:\ProgramData\Lavasoft
O43 - CFD: 15/12/2014 - 19:03:28 ---AD- C:\ProgramData\ma-config.com
O43 - CFD: 18/06/2014 - 17:07:14 ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 15/12/2014 - 18:58:10 ----D- C:\ProgramData\Martau
O43 - CFD: 06/07/2014 - 21:52:38 ----D- C:\ProgramData\McAfee
O43 - CFD: 18/02/2015 - 13:18:50 ----D- C:\ProgramData\McAfee Security Scan
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 15/03/2016 - 23:30:50 -S--D- C:\ProgramData\Microsoft
O43 - CFD: 03/02/2016 - 12:05:28 ----D- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Modèles
O43 - CFD: 28/10/2012 - 11:39:50 ----D- C:\ProgramData\Mozilla
O43 - CFD: 06/12/2014 - 13:56:16 ----D- C:\ProgramData\Native Instruments
O43 - CFD: 06/01/2013 - 15:34:48 ----D- C:\ProgramData\Nuance
O43 - CFD: 03/02/2016 - 11:29:52 ----D- C:\ProgramData\NVIDIA
O43 - CFD: 03/02/2016 - 11:21:26 ----D- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 25/03/2016 - 15:34:26 ----D- C:\ProgramData\Oracle
O43 - CFD: 03/04/2013 - 18:02:38 ----D- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 11/11/2015 - 13:58:26 ----D- C:\ProgramData\Package Cache
O43 - CFD: 03/03/2015 - 11:14:58 ----D- C:\ProgramData\PDF Architect 2
O43 - CFD: 26/11/2015 - 13:08:56 ----D- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 14/03/2016 - 23:32:08 ---AD- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 18/10/2012 - 01:08:40 ----D- C:\ProgramData\Roaming
O43 - CFD: 06/01/2013 - 14:43:50 ----D- C:\ProgramData\ScanSoft
O43 - CFD: 22/01/2015 - 14:51:02 ----D- C:\ProgramData\SketchUp
O43 - CFD: 16/03/2016 - 12:19:04 ----D- C:\ProgramData\Skype
O43 - CFD: 14/11/2012 - 19:15:10 ----D- C:\ProgramData\SmartSound Software Inc
O43 - CFD: 03/02/2016 - 14:10:56 ----D- C:\ProgramData\SoftwareDistribution
O43 - CFD: 16/03/2016 - 00:45:26 ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 18/02/2015 - 13:26:58 ----D- C:\ProgramData\tEvfhHU
O43 - CFD: 03/02/2016 - 11:53:46 ----D- C:\ProgramData\USOPrivate
O43 - CFD: 03/02/2016 - 11:53:46 ----D- C:\ProgramData\USOShared
O43 - CFD: 07/04/2013 - 21:50:02 ----D- C:\ProgramData\Wondershare Video Converter Ultimate
O43 - CFD: 08/04/2013 - 10:46:24 ----D- C:\ProgramData\xml_param
O43 - CFD: 06/01/2013 - 14:44:22 ----D- C:\ProgramData\zeon
O43 - CFD: 09/09/2014 - 11:52:24 ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 03/02/2016 - 01:11:22 ---AD- C:\Program Files\Common Files\Autodesk Shared
O43 - CFD: 16/03/2016 - 11:18:54 ----D- C:\Program Files\Common Files\AV
O43 - CFD: 03/02/2016 - 15:03:32 ----D- C:\Program Files\Common Files\Bitdefender
O43 - CFD: 19/11/2012 - 19:00:52 ----D- C:\Program Files\Common Files\Canon
O43 - CFD: 03/02/2016 - 11:29:14 ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 18/10/2012 - 01:12:14 ---AD- C:\Program Files\Common Files\Intel Corporation
O43 - CFD: 16/03/2016 - 13:03:06 ----D- C:\Program Files\Common Files\Lavasoft
O43 - CFD: 28/10/2012 - 18:52:08 ----D- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 06/12/2014 - 13:55:56 ---AD- C:\Program Files\Common Files\Native Instruments
O43 - CFD: 30/10/2015 - 08:24:30 ----D- C:\Program Files\Common Files\Services
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Common Files\System
O43 - CFD: 07/04/2013 - 21:49:46 ----D- C:\Program Files\Common Files\Wondershare
O43 - CFD: 09/09/2014 - 11:45:02 ---AD- C:\Program Files (x86)\Adobe
O43 - CFD: 11/11/2015 - 13:51:50 ----D- C:\Program Files (x86)\Autodesk
O43 - CFD: 13/03/2016 - 11:28:16 ---AD- C:\Program Files (x86)\Bonjour
O43 - CFD: 06/01/2013 - 15:07:00 ----D- C:\Program Files (x86)\Brother
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\Browny02
O43 - CFD: 18/10/2012 - 01:08:12 ----D- C:\Program Files (x86)\Cisco
O43 - CFD: 25/03/2016 - 15:34:00 ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\ControlCenter4
O43 - CFD: 04/11/2012 - 10:41:20 ----D- C:\Program Files (x86)\Creative
O43 - CFD: 18/10/2012 - 01:17:06 ----D- C:\Program Files (x86)\Creative Live! Cam
O43 - CFD: 16/12/2014 - 19:34:38 ----D- C:\Program Files (x86)\Dell
O43 - CFD: 25/03/2016 - 15:18:42 ---AD- C:\Program Files (x86)\Dell DataSafe Local Backup
O43 - CFD: 03/06/2015 - 21:53:58 ---AD- C:\Program Files (x86)\Dell Digital Delivery
O43 - CFD: 18/10/2012 - 01:17:10 ----D- C:\Program Files (x86)\Dell Webcam
O43 - CFD: 24/02/2013 - 11:59:54 ----D- C:\Program Files (x86)\Documalis
O43 - CFD: 06/07/2014 - 21:48:54 ----D- C:\Program Files (x86)\DownloadToolz
O43 - CFD: 05/10/2015 - 19:56:16 ----D- C:\Program Files (x86)\Duplicate Cleaner
O43 - CFD: 30/11/2015 - 16:17:38 ----D- C:\Program Files (x86)\GanttProject-2.6
O43 - CFD: 10/12/2013 - 16:29:58 ----D- C:\Program Files (x86)\Google
O43 - CFD: 06/01/2013 - 15:05:58 --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 03/02/2016 - 11:29:34 ----D- C:\Program Files (x86)\Intel
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files (x86)\iTunes
O43 - CFD: 25/03/2016 - 15:33:26 ----D- C:\Program Files (x86)\Java
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\Kerkythea Rendering System
O43 - CFD: 16/03/2016 - 13:14:50 ----D- C:\Program Files (x86)\Lavasoft
O43 - CFD: 24/12/2013 - 23:38:08 ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 16/12/2014 - 19:34:32 ---AD- C:\Program Files (x86)\Microsoft LifeCam
O43 - CFD: 14/03/2016 - 23:27:10 ---AD- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/01/2016 - 13:11:22 ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/10/2012 - 01:24:02 ---AD- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 03/02/2016 - 11:29:36 ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 21/03/2016 - 17:57:58 ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 21/03/2016 - 17:57:58 ----D- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 06/01/2013 - 14:41:24 ---AD- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 02/04/2013 - 17:17:50 ----D- C:\Program Files (x86)\My Company Name
O43 - CFD: 06/01/2013 - 14:44:20 ----D- C:\Program Files (x86)\Nuance
O43 - CFD: 03/02/2016 - 11:29:36 ----D- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\odf-converter-integrator
O43 - CFD: 19/11/2012 - 19:08:54 ---AD- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 17/03/2016 - 10:44:42 ---AD- C:\Program Files (x86)\PDF Architect 2
O43 - CFD: 19/07/2015 - 15:33:18 ---AD- C:\Program Files (x86)\QuickTime
O43 - CFD: 18/10/2012 - 01:01:26 ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 16/12/2014 - 19:34:32 ---AD- C:\Program Files (x86)\ScanManager
O43 - CFD: 22/01/2015 - 14:51:02 ----D- C:\Program Files (x86)\SketchUp
O43 - CFD: 16/03/2016 - 12:21:48 R---D- C:\Program Files (x86)\Skype
O43 - CFD: 14/11/2012 - 19:14:58 ----D- C:\Program Files (x86)\SmartSound Software
O43 - CFD: 16/03/2016 - 11:18:52 ---AD- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 18/10/2012 - 01:06:44 ----D- C:\Program Files (x86)\ST Microelectronics
O43 - CFD: 18/10/2012 - 00:59:48 --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 05:57:08 --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 17/03/2016 - 10:39:56 ----D- C:\Program Files (x86)\VS Revo Group
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 16/12/2014 - 19:34:42 ---AD- C:\Program Files (x86)\Windows Live
O43 - CFD: 03/02/2016 - 11:29:38 ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 30/10/2015 - 08:24:26 ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 03/02/2016 - 11:29:38 -SH-D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 30/10/2015 - 08:24:26 -S--D- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 15/04/2013 - 09:06:08 ----D- C:\Program Files (x86)\Wondershare
O43 - CFD: 25/03/2016 - 15:35:40 ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 09/09/2014 - 11:46:50 ---AD- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 17/01/2015 - 12:06:22 ---AD- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 23/02/2015 - 15:36:08 ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 11/11/2015 - 13:57:50 ---AD- C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 24/12/2013 - 23:52:32 ----D- C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 14/03/2016 - 23:30:50 ---AD- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 06/01/2013 - 14:42:40 ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 03/02/2016 - 11:29:30 ----D- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 18/10/2012 - 01:20:26 ----D- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 25/03/2016 - 15:34:00 ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 14/03/2016 - 23:30:52 ---AD- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 06/12/2014 - 13:56:16 ----D- C:\Program Files (x86)\Common Files\Native Instruments
O43 - CFD: 18/10/2012 - 00:59:52 ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 02/04/2013 - 17:17:56 ---AD- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 16/12/2014 - 19:34:32 ---AD- C:\Program Files (x86)\Common Files\ScanSoft Shared
O43 - CFD: 30/10/2015 - 08:24:30 ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 16/03/2016 - 12:15:56 ---AD- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/11/2012 - 19:08:22 ----D- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 03/02/2016 - 11:29:32 ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 03/02/2016 - 11:29:32 ---AD- C:\Program Files (x86)\Common Files\System
O43 - CFD: 18/10/2012 - 01:18:30 ----D- C:\Program Files (x86)\Common Files\Windows Live
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.038356387332650843BCB352BB89A101] - 25/03/2016 - 15:16:59 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [275]
O44 - LFC:[MD5.68A4B56B1E9F805B2257BE7FC6EAEB2A] - 25/03/2016 - 15:14:45 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [67584]
O44 - LFC:[MD5.C94D199E4C401796C7792DD0D907DE53] - 25/03/2016 - 15:12:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\bdlog.txt [3147]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/03/2016 - 16:11:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/03/2016 - 16:11:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setuperr.log [0]
O44 - LFC:[MD5.60A760C1E9032A50A4D988295DC39B66] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2131886]
O44 - LFC:[MD5.34BC5F2B8F876CC4F682B7B9BACF9FB2] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfc009.dat [172510]
O44 - LFC:[MD5.8528FAC724FD1F1695CE761DC229BD34] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfc00C.dat [198606]
O44 - LFC:[MD5.FAF9ACA83E1BAC135AAA87E95B3344F7] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfh009.dat [828082]
O44 - LFC:[MD5.0F28CFC050823548AEC28890A89B519E] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfh00C.dat [933690]
O44 - LFC:[MD5.AA5CE6A85637A316E837EE9B43938EBD] - 16/03/2016 - 15:30:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wininit.ini [325]
O44 - LFC:[MD5.82446D358A9FB51CB9DA32A5C901D7A0] - 15/03/2016 - 23:30:42 ---A- . (.Safer Networking Limited - Pas de description.) -- C:\WINDOWS\SysNative\sdnclean64.exe [21040]
O44 - LFC:[MD5.696AB02D4C045E2EEBE665A652FD2945] - 11/03/2016 - 15:32:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\FNTCACHE.DAT [5312928]
O44 - LFC:[MD5.F01ADB9BD13B60B6AB9538447F901921] - 09/03/2016 - 11:37:14 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\WINDOWS\SysNative\atmfd.dll [365568]
O44 - LFC:[MD5.F01ADB9BD13B60B6AB9538447F901921] - 09/03/2016 - 11:37:13 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\WINDOWS\System32\atmfd.dll [303104]
O44 - LFC:[MD5.52623F9ED4D00357F3874DD31BB232FD] - 09/03/2016 - 11:36:56 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\WINDOWS\SysNative\atmlib.dll [45568]
O44 - LFC:[MD5.52623F9ED4D00357F3874DD31BB232FD] - 09/03/2016 - 11:36:56 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\WINDOWS\System32\atmlib.dll [37376]
O44 - LFC:[MD5.2DDEA2BEDD3169F483C9BE610ADFE8B1] - 02/03/2016 - 00:46:48 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll [8705672]
O44 - LFC:[MD5.2DDEA2BEDD3169F483C9BE610ADFE8B1] - 02/03/2016 - 00:46:47 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll [6952088]
O44 - LFC:[MD5.8CDC28FB78253481353A882FA3139FBB] - 02/03/2016 - 00:45:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\CoreUIComponents.dll [2654872]
O44 - LFC:[MD5.8CDC28FB78253481353A882FA3139FBB] - 02/03/2016 - 00:45:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\CoreUIComponents.dll [1859960]
---\\ Export de clé d'application autorisée (ECAA) (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\WINDOWS\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\WINDOWS\system32\credssp.dll
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRecentDocsHistory"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoControlPanel"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutorunSetting"=1
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.2C5B3035B86770ADD2FE9BFBAF5B35A4] - 30/10/2015 - 08:17:22 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\system32\drivers\3ware.sys [107360]
O58 - SDL:[MD5.F7D0CD345D2DA42E7042ABCD73662403] - 30/10/2015 - 08:17:22 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\WINDOWS\system32\drivers\adp80xx.sys [1135456]
O58 - SDL:[MD5.5B30BCFE6E02E45D3EE268FF001BC5E0] - 30/10/2015 - 08:17:22 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\system32\drivers\amdsata.sys [83296]
O58 - SDL:[MD5.F20B30F35A5C7888441B4DCA001ECF8E] - 30/10/2015 - 08:17:22 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\WINDOWS\system32\drivers\amdsbs.sys [259424]
O58 - SDL:[MD5.AFE838D7576C581D6483529621AB10CC] - 30/10/2015 - 08:17:22 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\system32\drivers\amdxata.sys [26976]
O58 - SDL:[MD5.157B1C973637919DCD0D0464167C86BA] - 09/01/2012 - 18:32:40 ---A- . (.Windows (R) Win 7 DDK provider - Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapt.) -- C:\WINDOWS\system32\drivers\AmpPal.sys [195584]
O58 - SDL:[MD5.E3FE8F610B1CC12BC3B2E6BC43DC97E2] - 30/10/2015 - 08:17:22 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\system32\drivers\arcsas.sys [131936]
O58 - SDL:[MD5.B18699497436228F1109132D669CF29A] - 22/01/2016 - 08:11:05 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\WINDOWS\system32\drivers\avc3.sys [1622512]
O58 - SDL:[MD5.1251FB8BF8E6B6129065326A3E8A4378] - 22/01/2016 - 08:12:22 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\WINDOWS\system32\drivers\avckf.sys [806344]
O58 - SDL:[MD5.3F5523DCEFE42B385659C5CB46A6B810] - 30/10/2015 - 08:17:22 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\system32\drivers\bcmfn.sys [9728]
O58 - SDL:[MD5.0B750A6A6D847E73CA48ADD7A0F5A393] - 30/10/2015 - 08:17:22 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\system32\drivers\bcmfn2.sys [9728]
O58 - SDL:[MD5.3701D3BF4AC12EAACB1F58847C1D32FC] - 08/09/2013 - 19:04:56 ---A- . (.Bitdefender - Bitdefender Early Launch Anti-Malware Driver.) -- C:\WINDOWS\system32\drivers\bdelam.sys [23568]
O58 - SDL:[MD5.D8FAF7CFBC81E5E15CA7A7EC8EE1B409] - 04/12/2015 - 19:27:06 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\WINDOWS\system32\drivers\bdvedisk.sys [87912]
O58 - SDL:[MD5.6447BA6FA709514B6C803D159B4C7D1E] - 30/10/2015 - 08:17:22 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\system32\drivers\bxvbda.sys [531296]
O58 - SDL:[MD5.EFE63BDFC12A1DD65FBB9E621F29B78C] - 20/10/2009 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys [10224]
O58 - SDL:[MD5.60B3B1A2544EB7843F26EC291BB590BB] - 20/10/2009 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys [10224]
O58 - SDL:[MD5.4CE9F703D1DD69FB656D1953E9C88103] - 28/05/2009 - 16:49:00 ---A- . (.Creative Technology Ltd. - Advanced Audio FX Driver (64-bit).) -- C:\WINDOWS\system32\drivers\CtAudDrv.sys [224768]
O58 - SDL:[MD5.DF214BFF646880D0EB31BDC86136B29B] - 16/06/2011 - 20:40:20 ---A- . (.Creative Technology Ltd. - Video Class Upper Filter Driver (64-bit).) -- C:\WINDOWS\system32\drivers\CtClsFlt.sys [176000]
O58 - SDL:[MD5.491275B864B704B54EC08168344E0F38] - 30/10/2015 - 08:17:22 ---A- . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\system32\drivers\evbda.sys [3436896]
O58 - SDL:[MD5.8E98D21EE06192492A5671A6144D092F] - 21/08/2012 - 13:01:20 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:[MD5.06BFA49C4D999E93E214DB4E8044DE0B] - 29/04/2015 - 13:32:17 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\WINDOWS\system32\drivers\gzflt.sys [160032]
O58 - SDL:[MD5.772A1DEEDFDBC244183B5C805D1B7D85] - 17/07/2012 - 18:12:08 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\system32\drivers\HECIx64.sys [62784]
O58 - SDL:[MD5.FF442DCDCE1F6E9FAA9C8AD0CD1D199B] - 30/10/2015 - 08:17:22 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\WINDOWS\system32\drivers\HpSAMD.sys [64352]
O58 - SDL:[MD5.436819F9B8B0032791400BD5B4934FAB] - 27/01/2012 - 16:00:28 ---A- . (.Ozmo Inc - Ozmo WPAN Protocol Driver.) -- C:\WINDOWS\system32\drivers\hswpan.sys [109056]
O58 - SDL:[MD5.9A2A2F3C69B9A30B6E78536F6D258BAD] - 30/10/2015 - 08:17:18 ---A- . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\system32\drivers\iai2c.sys [81408]
O58 - SDL:[MD5.59A20F5AD9F4AE54098154359519408E] - 30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\system32\drivers\iaLPSS2i_I2C.sys [165888]
O58 - SDL:[MD5.16A10CCEDCF5AC4CAAE43DC9FC40392F] - 30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\system32\drivers\iaLPSSi_GPIO.sys [38128]
O58 - SDL:[MD5.EB82A11613326691508D9ED9A4FE29E7] - 30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\system32\drivers\iaLPSSi_I2C.sys [113152]
O58 - SDL:[MD5.6B0029A0253098CCE28EACCFDB9E7208] - 30/10/2015 - 08:17:22 ---A- . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (inbox) - x64.) -- C:\WINDOWS\system32\drivers\iaStorAV.sys [673120]
O58 - SDL:[MD5.9652E1E35A92D8C75710C17A63B15796] - 30/10/2015 - 08:17:22 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\system32\drivers\iaStorV.sys [412000]
O58 - SDL:[MD5.FFADF691F7BF727AF5C863454A372723] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\system32\drivers\ibbus.sys [424800]
O58 - SDL:[MD5.62F0CB0A54EAF37E15EC385300957BB8] - 01/07/2015 - 21:17:44 ---A- . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) Driver.) -- C:\WINDOWS\system32\drivers\ibtfltcoex.sys [79632]
O58 - SDL:[MD5.CEFA6BDB4789F3DA003ACBDCC64F5877] - 27/08/2015 - 18:20:10 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\system32\drivers\igdkmd64.sys [3797424]
O58 - SDL:[MD5.1E7339E5130E1D9105602A5D22F86D56] - 17/03/2016 - 14:43:43 ---A- . (.Bitdefender - IGNIS filter driver.) -- C:\WINDOWS\system32\drivers\ignis.sys [290032]
O58 - SDL:[MD5.87871AB7AC797F922A6F3D4C874CED96] - 21/08/2015 - 11:50:48 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\system32\drivers\IntcDAud.sys [463112]
O58 - SDL:[MD5.B1F193AB8FB72E9FC34B3A39314ED872] - 20/07/2015 - 20:45:04 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\system32\drivers\intelaud.sys [50240]
O58 - SDL:[MD5.6DC22BDAA595BE00F19696E72F2F3312] - 17/05/2012 - 00:57:08 ---A- . (.Intel Corporation - Intel(R) Rapid Start Technology Driver.) -- C:\WINDOWS\system32\drivers\irstrtdv.sys [26504]
O58 - SDL:[MD5.846354992EBB373F452EB9182D501B08] - 27/02/2012 - 10:01:00 ---A- . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Driver.) -- C:\WINDOWS\system32\drivers\iusb3hcs.sys [16152]
O58 - SDL:[MD5.DD1F43B86AD84E53203F92FD3EF3AEB6] - 20/07/2015 - 20:45:04 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\system32\drivers\iwdbus.sys [38976]
O58 - SDL:[MD5.961F28D879D345BFA50AF51285C90F2E] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sas.sys [108888]
O58 - SDL:[MD5.6BFB8D1B3407518BE06B6F81F92FA0F5] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sas2i.sys [104800]
O58 - SDL:[MD5.BE0E47988D78F731DEC2C0CB03E765CB] - 30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sas3i.sys [99168]
O58 - SDL:[MD5.F99BF02BE9219986817BF094981EEB18] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sss.sys [82784]
O58 - SDL:[MD5.2ED29B635F35E31A1C0D3DDB7DD2AD03] - 30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\system32\drivers\megasas.sys [59744]
O58 - SDL:[MD5.22E3CB85870879CBAE13C5095A8B12E3] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\system32\drivers\megasr.sys [575840]
O58 - SDL:[MD5.D41920FBFFF2BBCBBC69A5B383AD022E] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\system32\drivers\mlx4_bus.sys [705376]
O58 - SDL:[MD5.218705233D02776AE4D19CC37D985C1B] - 30/10/2015 - 08:17:23 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\system32\drivers\mvumis.sys [63840]
O58 - SDL:[MD5.B57CE307DA101C739885B7CC0678077F] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\system32\drivers\ndfltr.sys [76128]
O58 - SDL:[MD5.6F4607E2333FE21E9E3FF8133A88B35B] - 26/03/2012 - 14:50:12 ---A- . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\system32\drivers\netaapl64.sys [22528]
O58 - SDL:[MD5.99C24A7DC1F3D4845553B4BD189274A0] - 30/10/2015 - 08:17:19 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\system32\drivers\NETwew01.sys [3343872]
O58 - SDL:[MD5.DF0BB2C179476D312B7BC0056CEC50A6] - 23/07/2015 - 04:02:12 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 353.62.) -- C:\WINDOWS\system32\drivers\nvlddmkm.sys [11142984]
O58 - SDL:[MD5.2328DC3622412EE112868645DA013075] - 23/07/2015 - 04:02:12 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 353.62.) -- C:\WINDOWS\system32\drivers\nvpciflt.sys [31376]
O58 - SDL:[MD5.604D27CC38CC23493F218D0BB834B3FF] - 30/10/2015 - 08:17:23 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\system32\drivers\nvraid.sys [150368]
O58 - SDL:[MD5.8B50D897657AB4A15FD9E251BBF7D107] - 30/10/2015 - 08:17:23 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\system32\drivers\nvstor.sys [166240]
O58 - SDL:[MD5.819AC5E0E3499D7333995C8976A3C196] - 26/02/2012 - 08:42:26 ---A- . (.NVIDIA Corporation - Stereoscopic 3D USB controller driver.) -- C:\WINDOWS\system32\drivers\nvstusb.sys [398144]
O58 - SDL:[MD5.1398A85E59698067CBBE1D66A9C13ADF] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\system32\drivers\percsas2i.sys [58208]
O58 - SDL:[MD5.35F7C7AD709D909D618D9EDF987FC3ED] - 30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\system32\drivers\percsas3i.sys [58720]
O58 - SDL:[MD5.BC08F7F3C53CBEE68670ED1314E290FD] - 03/11/2011 - 02:01:00 ---A- . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\WINDOWS\system32\drivers\PxHlpa64.sys [56208]
O58 - SDL:[MD5.FBEFF38DE03450E03E6CD9E8E37A8C74] - 30/10/2015 - 08:17:23 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Driver.) -- C:\WINDOWS\system32\drivers\rt640x64.sys [589824]
O58 - SDL:[MD5.48AC5F706780BCC34811EA89A0727189] - 04/08/2015 - 00:21:50 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RTKVHD64.sys [4518136]
O58 - SDL:[MD5.8C00FD003B32ACFD7C054D0D7988BDF4] - 03/06/2015 - 07:41:50 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\WINDOWS\system32\drivers\RtsPStor.sys [374016]
O58 - SDL:[MD5.ABBE803FE0BDAE0E5BE74DDEFBE62F23] - 30/10/2015 - 08:17:23 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\system32\drivers\sisraid2.sys [44896]
O58 - SDL:[MD5.6043DF55CFE3C7ACF477645FA64DEA98] - 30/10/2015 - 08:17:23 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\system32\drivers\sisraid4.sys [81760]
O58 - SDL:[MD5.EB5052F1D1D52C0C5C57A34ADC5F1723] - 10/07/2012 - 22:32:00 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_AMDASF.sys [24888]
O58 - SDL:[MD5.1C018231BCDD7D39CC3996ED651C6177] - 04/06/2015 - 08:07:22 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_AMDASF_Aux.sys [42184]
O58 - SDL:[MD5.8E43E3CC67E59626E65B981C0666DBFC] - 04/06/2015 - 08:07:22 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys [42696]
O58 - SDL:[MD5.8E43E3CC67E59626E65B981C0666DBFC] - 04/06/2015 - 08:07:22 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_Intel_Aux.sys [42696]
O58 - SDL:[MD5.BC2B6E9D43EFC087C46D79DBA37C299E] - 09/01/2015 - 10:25:06 ---A- . (.ST Microelectronics - Disk Class Filter Driver for Accelerometer.) -- C:\WINDOWS\system32\drivers\stdcfltn.sys [23216]
O58 - SDL:[MD5.CCDA497C880AD16D87EDFAEFCFB2EDF5] - 30/10/2015 - 08:17:23 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\WINDOWS\system32\drivers\stexstor.sys [31072]
O58 - SDL:[MD5.6C4EF0411BFF2D6D7C4515D3BBFDD9F3] - 10/06/2015 - 08:43:20 ---A- . (.STMicroelectronics - STM Accelerometer Device Driver.) -- C:\WINDOWS\system32\drivers\ST_Accel.sys [143592]
O58 - SDL:[MD5.673EC76AC2A902544AD63D6C296C4D9D] - 04/06/2015 - 08:07:24 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [613576]
O58 - SDL:[MD5.FE3D70DE933A481284FCE7D5DB5DCE50] - 16/03/2016 - 13:27:44 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\WINDOWS\system32\drivers\trufos.sys [477272]
O58 - SDL:[MD5.F957092C63CD71D85903CA0D8370F473] - 10/06/2015 - 22:08:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl64.sys [54784]
O58 - SDL:[MD5.D48ED0A08BD2FD25A833E6AC99623091] - 30/10/2015 - 08:17:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\system32\drivers\vsmraid.sys [166752]
O58 - SDL:[MD5.6990D4AFDF545669D4E6C232F26DE1FB] - 30/10/2015 - 08:17:23 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\system32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:[MD5.A556768CC1FA4F36022BEE2F0EDE2566] - 12/11/2015 - 22:50:10 ---A- . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SAM) driver.) -- C:\WINDOWS\system32\drivers\wdcsam64.sys [26880]
O58 - SDL:[MD5.4A53441C1C4D2878BEF27E381138BB2D] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\system32\drivers\winmad.sys [26976]
O58 - SDL:[MD5.40A3E8D729F458B2C9A8BD9380FF83D5] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\system32\drivers\winverbs.sys [59232]
---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
---\\ Observateur d'évènement d'application (OEA) (O66)
O66 - EventLog: ID=1000 (Application Error) - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
O66 - EventLog: ID=1000 (Application Error) - (.pdfforge - PDFCreator.) -- C:\Program Files\PDFCreator\PDFCreator.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe
O66 - EventLog: ID=1000 (Application Error) - (.Adobe Systems Incorporated - Adobe InDesign CS6.) -- C:\Program Files (x86)\Adobe\Adobe InDesign CS6\InDesign.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Video Application.) -- C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.17801.0_x64__8wekyb3d8bbwe\Video.UI.exe
O66 - EventLog: ID=1000 (Application Error) - (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\syswow64\MsiExec.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\PROGRA~2\MICROS~4\OFFICE11\OUTLOOK.EXE
O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Shell Experience Host.) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
---\\ Start Menu Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {41B254E7-C2AF-4CB4-8649-161202D81DC3} - (Bing) - http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
O69 - SBI: SearchScopes [HKCU] {CCC71BC0-23ED-4CD1-BB4E-80F59D823DAF} - (Recherche sécurisée) - http://fr.search.yahoo.com/search?fr=mcafee&p={SearchTerms}
---\\ Recherche des services démarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\WINDOWS\System32\certprop.dll [0]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\WINDOWS\System32\certprop.dll [0]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [0]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [0]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\WINDOWS\System32\iphlpsvc.dll [0]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [0]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [0]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [0]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\WINDOWS\system32\sessenv.dll [313344]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique daccès distant.) -- C:\WINDOWS\System32\rasauto.dll [0]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions daccès à distance.) -- C:\WINDOWS\System32\rasmans.dll [0]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire dinterface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [436224]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification dévénements système (SENS).) -- C:\WINDOWS\System32\sens.dll [0]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de lapplication dassistance à Microsoft NAT.) -- C:\WINDOWS\System32\ipnathlp.dll [0]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\WINDOWS\System32\tapisrv.dll [254976]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\WINDOWS\system32\wuaueng.dll [0]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\System32\qmgr.dll [0]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [559616]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [0]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [0]
---\\ Recherche particuliere à la racine de certains dossiers (SPRF) (O84)
[MD5.1BDADD718FB04B97D947C2E4ED36DC10] [SPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Christelle\AppData\Local\Temp\DeleteOnReboot.bat [438]
[MD5.5F09D271B8F4A62FC087E0D5452D2EC8] [SPRF] (.SQLite Development Team - SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine..) -- C:\Users\Christelle\AppData\Local\Temp\sqlite3.dll [681097]
[MD5.6117C3240AC6B6F7DA17B8221F054070] [SPRF] (.Absolute Software Corp. - Computrace(R) LoJack for Laptops(R) Installer.) -- C:\Users\Christelle\AppData\Roaming\LoJackSetup.exe [6246216]
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/09/2011 169624 | C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe (AdobeActiveFileMonitor10.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
SS - | Demand 03/12/2014 81088 | "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 24/03/2016 269504 | C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 07/10/2015 77104 | "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SS - | Auto 05/02/2015 31160 | "C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe (Autodesk Content Service) . (.Autodesk, Inc..) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
SR - | Auto 12/08/2015 462096 | "C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Demand 05/06/2012 266240 | "C:\Program Files (x86)\Browny02\BrYNSvc.exe (BrYNSvc) . (.Brother Industries, Ltd..) - C:\Program Files (x86)\Browny02\BrYNSvc.exe
SS - | Demand 27/08/2015 291744 | C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe (cphs) . (.Intel Corporation.) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 16/03/2015 237448 | "C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (DellDigitalDelivery) . (.Dell Products, LP..) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
SS - | Demand 11/11/2015 1369856 | "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (FLEXnet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
SS - | Auto 16/03/2016 154440 | "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 16/03/2016 154440 | "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 16/03/2012 2439272 | "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 16/03/2012 0 | C:\WINDOWS\system32\igfxCUIService.exe (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\system32\igfxCUIService.exe
SR - | Auto 11/01/2012 627936 | "c:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - c:\Program Files\Intel\iCLS Client\HeciServer.exe
SS - | Demand 17/12/2015 644880 | "C:\Program Files\iPod\bin\iPodService.exe (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 17/05/2012 193536 | C:\Windows\SysWOW64\irstrtsv.exe (irstrtsv) . (.Intel Corporation.) - C:\Windows\SysWOW64\irstrtsv.exe
SR - | Auto 01/02/2012 161560 | C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 28/01/2016 712432 | "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareService.exe (LavasoftAdAwareService11) . (.Pas de propriétaire.) - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareService.exe
SS - | Auto 16/03/2016 2751760 | C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe (LavasoftTcpService) . (.Lavasoft Limited.) - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
SR - | Auto 01/02/2012 277784 | C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 15/10/2014 2820424 | "C:\Program Files\ma-config.com\MaConfigAgent.exe (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SR - | Auto 22/02/2011 86016 | "C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe (mi-raysat_3dsmax2012_64) . (.Pas de propriétaire.) - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
SS - | Demand 21/03/2016 146888 | "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 04/10/2012 6371192 | C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (NIHardwareService) . (.Native Instruments GmbH.) - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
SR - | Auto 18/11/2014 4375880 | "C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe (NOBU) . (.Dell, Inc..) - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
SR - | Auto 18/11/2014 0 | "C:\WINDOWS\system32\nvvsvc.exe (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 21/11/2013 1364256 | "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 09/03/2010 144672 | C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe (PDFProFiltSrvPP) . (.Nuance Communications, Inc..) - C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
SR - | Auto 21/03/2016 925328 | "C:\Program Files\Bitdefender Agent\ProductAgentService.exe (ProductAgentService) . (.Bitdefender.) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
SR - | Auto 04/08/2015 312056 | "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
SS - | Auto 24/06/2014 1738168 | "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SS - | Auto 27/06/2014 2088408 | "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SS - | Auto 25/04/2014 171928 | C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - | Auto 16/02/2012 1695040 | "C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe
SS - | Auto 09/07/2015 327296 | "C:\Program Files (x86)\Skype\Updater\Updater.exe (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 19/02/2010 517096 | "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 01/02/2012 363800 | "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 17/03/2016 135176 | "C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
SR - | Auto 17/03/2016 1679672 | "C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe (vsserv) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
SS - | Auto 16/03/2016 17168 | C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (WCAssistantService) . (.Pas de propriétaire.) - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
SS - | Demand 30/10/2015 37256 | C:\WINDOWS\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\WINDOWS\system32\svchost.exe
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Christelle at 25/03/2016 15:37:22
Use the desktop link 'MBRCheck' to have full report
End of the scan (1163 lines in 02mn 08s)(0)
Run by Christelle at 25/03/2016 15:35:14
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v9.11.10586.0
MFIE: Mozilla Firefox 45.0.1 v45.0.1 (Defaut)
GCIE: Google Chrome v49.0.2623.87
---\\ System Information
Unknown Windows Home Premium Edition, 64-bit (Build 9200)
Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3978 MB (39% free)
System drive C: has 71 GB (15%) free of 447 GB
---\\ Logged in mode
Computer Name: CHRISTELLE-PC
User Name: Christelle
All Users Names: UpdatusUser, DefaultAccount, Christelle, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O82
Logged in as Administrator
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 71 Go of 447 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.95D730526EF81792CD6848D8D10FAA1C] - (.Microsoft Corporation - Explorateur Windows.) (.29/01/2016 07:57:09.) -- C:\Windows\Explorer.exe [4502352]
---\\ Processus lancés
[MD5.A58FD0ED18787A003E80BFF9E049D4FF] - (.Dell, Inc. - Dell DataSafe Online Service.) -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [3411784]
[MD5.F56DAF008FFD7E423292DE21A990B2D4] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\System32\taskhostw.exe [90440]
[MD5.1CD2F4A74AD6AC2DE5ECF8BB9F12C723] - (.Microsoft Corporation - Shell Infrastructure Host.) -- C:\Windows\System32\sihost.exe [72704]
[MD5.C899BCFE25F9E3E67588C3553BE1E750] - (.Intel - Intel® Rapid Start Technology Manager.) -- C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [701952]
[MD5.46FDF02BDA740CFAB469022EF1F95474] - (.Microsoft Corporation - Runtime Broker.) -- C:\Windows\System32\RuntimeBroker.exe [85720]
[MD5.BA90DF05FA2E9A2C15F3A74825315BD0] - (.SoftThinks - Dell - Dell DataSafe Local Backup.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe [4293952]
[MD5.8872B78D80682F2BE0A04EB0B3EAF554] - (.SoftThinks - Dell - DataSafe Update Launcher.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe [465216]
[MD5.904CA475F6ADD4080B0EA5144D23FDF1] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe [144384]
[MD5.F205CD085B25CFC491908EFE4E8AB8F5] - (.Pas de propriétaire - ST Service Scheduling.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe [2751808]
[MD5.BD0C18CCF84C65F091F670181032BF75] - (.Microsoft Corporation - Windows Shell Experience Host.) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe [2095968]
[MD5.8ED88C794234FC7755366E0532471360] - (.Microsoft Corporation - Search and Cortana application.) -- C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe [9371488]
[MD5.EB8B7935A446A137163AB1F94CD11B2A] - (.Microsoft Corporation - Application Frame Host.) -- C:\Windows\System32\ApplicationFrameHost.exe [43408]
[MD5.80A11F070E9EEFCB48B357E9E0E2C7D1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [541600]
[MD5.B6C52FADECE225339D02B6923E930B5C] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [258456]
[MD5.8D2A1935AE10BE1E11A8C58B2F473560] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxTray.exe [395168]
[MD5.264B7FD1B9DF0B3B6894AF491B62E90C] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2447504]
[MD5.641B19018CB32619ADBD0AED4964E1D9] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760]
[MD5.BC5A40AEAC1CF7708D07CBC2F577F90B] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320]
[MD5.F3559B89A5DA05AEFDBCC0E3BB97C050] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136]
[MD5.4332FAE0BC295D40A3146121FB15D675] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [210120]
[MD5.50252E856A3CEE68DD021E94C61581B6] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareTray.exe [9581280]
[MD5.6BF7676296D5359AFC135A5397000053] - (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496]
[MD5.175596062987D2AD073C0C30C2CC37AB] - (.Brother Industries, Ltd. - ControlCenter Main Process.) -- C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe [393216]
[MD5.63E9C23A386FFFA84B5E03BFF9B628F0] - (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096]
[MD5.7EE68A122ED08E4AAD8DA551E34D2515] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576]
[MD5.E93D62A6DB736AA82A3EEDDFDFE73311] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8641240]
[MD5.B6F7C29ACBD3660A6E61180B2D062DE1] - (.Brother Industries, Ltd. - ControlCenter UX System.) -- C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe [1327104]
[MD5.7DB6A5CEEAC1CB15CF78552794B3DB31] - (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\SysWOW64\cmd.exe [202240]
[MD5.F023A14FE899F5401935CAC119A723CE] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Christelle\AppData\Local\Akamai\netsession_win.exe [4441920]
[MD5.80B72881A9BDDA484867F22DDC2E84DD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392136]
[MD5.BEC86CDCAE5916463ACF0154D704CE5C] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe [1644824]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [620544]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59] - (.Intel Corporation - Intel web components for Intel® Identity Protection Technology.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
P2 - FPN: [HKLM] [@intel-webapi.intel.com/Intel WebAPI updater] - (.Intel Corporation - Intel web components updater - Installs and updates the Intel web comp.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.77.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.77.2] - (.Oracle Corporation - Next Generation Java Plug-in 11.77.2 for Mozilla browsers.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.41212.0.) -- c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Share.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.13.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Pas de propriétaire - Pas de description.) -- C:\Users\Christelle\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (.not file.)
M0 - MFSP: prefs.js [Christelle - zl78uj8a.default-1403110083534] www.google.fr
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G0 - GCSP: Preference [User Data\Default][HomePage] http://fr.msn.com
G1 - GCS: Preference [User Data\Default] http://www.bing.com
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] "version": "0.2" v.aohghmighlieiainnegkcijnfilokake: { (Désactivé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] "version": "6.3" v.state: 1, (Désactivé)
G2 - GCE: Preference [User Data\Default] [ccahoghmggldkcdjiebjkidpfongdfbl] Bitdefender Wallet v.17.28.1 (Désactivé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] "version": "0.0.0.20" v.state: 1, (Désactivé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Désactivé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.7.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] "version": "0.0.6.1" v.state: 1, (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.10586.17 (th2_release.151121-2308)) -- C:\Windows\SysWOW64\ieframe.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} . (.Zeon Corporation - PlusIEContextMenu.dll.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IndexSearch] . (.Nuance Communications, Inc. - PaperPort IndexSearch.) -- C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [PaperPort PTD] . (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [PPort12reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe
O4 - HKLM\..\Run: [ControlCenter4] . (.Brother Industries, Ltd. - ControlCenter Launcher.) -- C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe
O4 - HKLM\..\Run: [BrStsMon00] . (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Christelle\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKCU\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] Clé orpheline
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] Clé orpheline
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [IndexSearch] . (.Nuance Communications, Inc. - PaperPort IndexSearch.) -- C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe
O4 - HKLM\..\Wow6432Node\Run: [PaperPort PTD] . (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
O4 - HKLM\..\Wow6432Node\Run: [PPort12reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe
O4 - HKLM\..\Wow6432Node\Run: [ControlCenter4] . (.Brother Industries, Ltd. - ControlCenter Launcher.) -- C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe
O4 - HKLM\..\Wow6432Node\Run: [BrStsMon00] . (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-18\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
O4 - HKUS\S-1-5-18\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Christelle\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] Clé orpheline
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] Clé orpheline
O4 - HKUS\S-1-5-21-3148076255-1824893281-1223287338-1001-3148076255-1824893281-1223287338-1000\..\RunOnce: [Uninstall C:\Users\Christelle\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] Clé orpheline
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Christelle\Desktop\Kerkythea 2008.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Kerkythea Rendering System\Kerkythea.exe
O4 - Global Startup: C:\Documents And Settings\Christelle\Desktop\Microsoft Office Word 2003.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
O4 - Global Startup: C:\Documents And Settings\Christelle\Desktop\Windows Fax and Scan.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\WFS.exe (.not file.)
O4 - Global Startup: C:\Documents And Settings\All Users\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Application Data\Microsoft\Internet Explorer\Quick Launch\System Scan.lnk . (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fonctionnalités optionnelles.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\fodhelper.exe (.not file.)
O4 - Global Startup: C:\Users\Christelle\Desktop\Kerkythea 2008.lnk . (.Pas de propriétaire.) -- C:\Program Files (x86)\Kerkythea Rendering System\Kerkythea.exe
O4 - Global Startup: C:\Users\Christelle\Desktop\Microsoft Office Word 2003.lnk . (.Pas de propriétaire.) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
O4 - Global Startup: C:\Users\Christelle\Desktop\Windows Fax and Scan.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\WFS.exe (.not file.)
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Dev-C++.lnk . (.Bloodshed Software.) -- C:\Dev-Cpp\devcpp.exe
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Pas de propriétaire.) -- C:\Users\CHRIST~1\AppData\Local\Temp\_Temp_jkkupgu.tmp\iexplore.exe (.not file.)
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Christelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Clé orpheline
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Ajouter à un fichier PDF existant - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Convertir au format Adobe PDF - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - (.not file.) - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.exe
O8 - Extra context menu item: Se&nd to OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~4\OFFICE11\REFBARH.ICO
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim daffectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] *.dell.com
O15 - Trusted Zone: [HKCU\...\Domains\www] *.dell.com
O15 - Trusted Zone: [HKCU\...\Domains] *.localhost
O15 - Trusted Zone: [HKCU\...\Domains\www] *.localhost
O15 - Trusted Zone: [HKCU\...\Domains] http.webcompanion.com
O15 - Trusted Zone: [HKCU\...\Domains\www] http.webcompanion.com
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{294b3ce3-cf27-48f4-b6c2-afc40e674723}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CCS\Services\Tcpip\..\{43c93816-c6c9-46c3-aec7-b8bb9a6495b3}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{6b306ef7-c8cc-4be2-9cc8-a527e200a38f}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{6ca18882-c4fd-4145-a0fa-ab7e95c80ab9}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{dc42c2d2-d63f-4d7e-bca3-e2c17000d434}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CS1\Services\Tcpip\..\{294b3ce3-cf27-48f4-b6c2-afc40e674723}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CS1\Services\Tcpip\..\{43c93816-c6c9-46c3-aec7-b8bb9a6495b3}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{6b306ef7-c8cc-4be2-9cc8-a527e200a38f}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{6ca18882-c4fd-4145-a0fa-ab7e95c80ab9}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{dc42c2d2-d63f-4d7e-bca3-e2c17000d434}: DhcpNameServer = 82.163.142.7
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.142.7 95.211.158.134
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 353.) - C:\WINDOWS\SysWOW64\nvinit.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AdobeActiveFileMonitor10.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 10.0 (component).) - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Autodesk Content Service) . (.Autodesk, Inc. - AutoCAD component.) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (DellDigitalDelivery) . (.Dell Products, LP. - Dell Digital Delivery Windows Service.) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: (igfxCUIService1.0.0.0) - Clé orpheline
O23 - Service: (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: (irstrtsv) . (.Intel Corporation - Intel(R) Rapid Start Technology Service.) - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: (LavasoftAdAwareService11) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareService.exe
O23 - Service: (LavasoftTcpService) . (.Lavasoft Limited - Pas de description.) - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
O23 - Service: (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - French 64-bit (mi-raysat_3dsmax2012_64) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
O23 - Service: (NIHardwareService) . (.Native Instruments GmbH - NIHardwareService.) - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: (NOBU) . (.Dell, Inc. - Dell DataSafe Online Service.) - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
O23 - Service: (nvsvc) - Clé orpheline
O23 - Service: (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: (PDFProFiltSrvPP) . (.Nuance Communications, Inc. - PDFPro IFilter Service.) - C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
O23 - Service: (ProductAgentService) . (.Bitdefender - Bitdefender Agent.) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
O23 - Service: (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: (SftService) . (.SoftThinks SAS - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe
O23 - Service: (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
O23 - Service: (vsserv) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
O23 - Service: (WCAssistantService) . (.Pas de propriétaire - SPWindowsService.) - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001Core.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001UA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.A9D55370A0CBADD1E1E2B4796ACD26DF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.F5A5DBADCD24BDF33BFDAA789E39C876] [APT] [AdobeAAMUpdater-1.0-Christelle-PC-Christelle] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (.Pas de propriétaire.) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (.Pas de propriétaire.) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.)
[MD5.17B1A9E252268F70A975239291FB9B5F] [APT] [Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864] (.Bitdefender.) -- C:\Program Files\Bitdefender Agent\WatchDog.exe
[MD5.00000000000000000000000000000000] [APT] [Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8] (.Pas de propriétaire.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe (.not file.)
[MD5.C856B04ABD5A57CA688EF6CC2964DFBD] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001Core] (.Pas de propriétaire.) -- C:\Users\Christelle\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3148076255-1824893281-1223287338-1001UA] (.Pas de propriétaire.) -- C:\Users\Christelle\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.)
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [{0BB2ADDB-74BD-4A5D-BCB8-C853581B7C06}] (.Pas de propriétaire.) -- c:\users\christelle\appdata\local\lollipop\lollipop.bat (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{0C0D0B47-087D-0F7D-0911-7E79047A110A}] (.Pas de propriétaire.) -- C:\WINDOWS\system32\WindowsPowershell\v1.0\powershell.exeAQQBjAHQAaQBvAG4AUAByAGUAZgBlAHIAZQBuAGMAZQA9ACIAcwB0AG8AcAAiADsAJABzAGMAPQAiAFMAaQBsAGUAbgB0AGw (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{32289950-340C-4772-B604-56EACC16E049}] (.Pas de propriétaire.) -- C:\Program Files (x86)\Google\Google SketchUp 8\Style Builder\Style Builder.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{AEB24CA1-4B97-4A93-A49F-02651C8AA08E}] (.Pas de propriétaire.) -- D:\MSETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{B30C0841-4983-4FF5-92A3-F9EF194954FA}] (.Pas de propriétaire.) -- D:\MSETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{DFDFB252-D47C-4A94-AAEE-584E5AA72BCD}] (.Pas de propriétaire.) -- c:\users\christelle\appdata\local\lollipop\lollipop.bat (.not file.)
[MD5.00000000000000000000000000000000] [APT] [AppleSoftwareUpdate] (.Pas de propriétaire.) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (.not file.)
[MD5.9CCE733E5262FB92C2331E8578512B49] [APT] [Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
[MD5.48FAE038F51676A795CEFAD780448D94] [APT] [Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
[MD5.280C014187E24860A7C860329513208F] [APT] [Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Pas de propriétaire - Pas de description.) -- "C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\Installer\chrmstp.exe
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\WINDOWS\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: C:\WINDOWS\system32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\WINDOWS\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\WINDOWS\system32\drivers\BasicRender.sys
O41 - Driver: (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\drivers\cdrom.sys
O41 - Driver: C:\WINDOWS\system32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\WINDOWS\system32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\WINDOWS\system32\drivers\filecrypt.sys (FileCrypt) . (.Microsoft Corporation - Windows sandboxing and encryption filter.) - C:\Windows\System32\drivers\filecrypt.sys
O41 - Driver: C:\WINDOWS\system32\drivers\gpuenergydrv.sys (GpuEnergyDrv) . (.Microsoft Corporation - GPU Energy Kernel Driver.) - C:\Windows\System32\drivers\gpuenergydrv.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\WINDOWS\system32\drivers\mssmbios.sys
O41 - Driver: C:\WINDOWS\system32\drivers\netbios.sys (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys
O41 - Driver: C:\WINDOWS\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\WINDOWS\system32\drivers\npsvctrig.sys
O41 - Driver: C:\WINDOWS\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\WINDOWS\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\drivers\pacer.sys
O41 - Driver: C:\WINDOWS\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\WINDOWS\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\WINDOWS\system32\DRIVERS\tdx.sys
O41 - Driver: C:\WINDOWS\system32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\WINDOWS\system32\drivers\ws2ifsl.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {7B77622E-DE90-48EA-B2C7-227B1DE58A01}
O42 - Logiciel: Adobe Flash Player 21 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Adobe Reader X (10.1.13) MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Advanced Audio FX Engine - (.Creative Technology Ltd.) [HKLM] -- Advanced Audio FX Engine
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU] -- Akamai
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM] -- {649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Applications recommandées Autodesk 2016 - (.Autodesk.) [HKLM] -- {D42F37CD-9AF9-4435-A474-B387C5BB6B47}
O42 - Logiciel: Autodesk Advanced Material Library Image Library 2016 - (.Autodesk.) [HKLM] -- {94AD53E7-493B-4291-8714-7A3B761D2783}
O42 - Logiciel: Autodesk App Manager 2016 - (.Autodesk.) [HKLM] -- {4ECF9E00-2978-46AF-BD80-455EFEAB7A93}
O42 - Logiciel: Autodesk AutoCAD Performance Feedback Tool 1.2.4 - (.Autodesk.) [HKLM] -- {4E20873D-BC20-495C-AFD9-B18877B7F9BB}
O42 - Logiciel: Autodesk Backburner 2012.0.0 - (.Autodesk, Inc..) [HKLM] -- {3D347E6D-5A03-4342-B5BA-6A771885F379}
O42 - Logiciel: Autodesk Content Service Language Pack - (.Autodesk.) [HKLM] -- {62F029AB-85F2-0001-866A-9FC0DD99DDBC}
O42 - Logiciel: Autodesk Material Library 2012 - (.Autodesk.) [HKLM] -- {8F0837C2-EE09-4903-88F3-1976FE7FFF4E}
O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}
O42 - Logiciel: Autodesk Material Library 2016 - (.Autodesk.) [HKLM] -- {29A7D6EC-63C2-42FD-8143-5812ABD2923F}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2012 - (.Autodesk.) [HKLM] -- {65420DC9-306E-4371-905F-F4DC3B418E52}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM] -- {606E12B9-641F-4644-A22A-FF38AE980AFD}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2016 - (.Autodesk.) [HKLM] -- {6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2012 - (.Autodesk.) [HKLM] -- {B5751715-EC10-43D9-8C95-62E1368433EF}
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2013 - (.Autodesk.) [HKLM] -- {58760EEC-8B6A-43F4-81AA-696E381DFADD}
O42 - Logiciel: Brother MFL-Pro Suite MFC-J6910DW - (.Brother Industries, Ltd..) [HKLM] -- {17795164-3BC1-4D4F-8ADA-65C895EBFC9A}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Dell DataSafe Local Backup - (.Dell Inc..) [HKLM] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04}
O42 - Logiciel: Dell DataSafe Local Backup - Support Software - (.Dell Inc..) [HKLM] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49}
O42 - Logiciel: Dell DataSafe Online - (.Dell.) [HKLM] -- {C53BCCBE-9268-4C09-82E9-611444A73B3F}
O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM] -- {693A23FB-F28B-4F7A-A720-4C1263F97F43}
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU] -- 9204f5692a8faf3b
O42 - Logiciel: Dell Webcam Central - (.Creative Technology Ltd.) [HKLM] -- Dell Webcam Central
O42 - Logiciel: Dev-C++ 5 beta 9 release (4.9.9.2) - (.Pas de propriétaire.) [HKLM] -- Dev-C++
O42 - Logiciel: Duplicate Cleaner Free 3.2.6 - (.DigitalVolcano Software Ltd.) [HKLM] -- Duplicate Cleaner Free
O42 - Logiciel: FARO LS 1.1.406.58 - (.FARO Scanner Production.) [HKLM] -- {951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}
O42 - Logiciel: FARO LS 1.1.502.0 (64bit) - (.FARO Scanner Production.) [HKLM] -- {66D83FE0-D798-4B38-86FE-FB48151E5AEF}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: GanttProject - (.Pas de propriétaire.) [HKLM] -- GanttProject
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google SketchUp 8 - (.Google, Inc..) [HKLM] -- {E3F4EA31-41D7-4789-9AC4-F26CDAF797BA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: Importation de SketchUp 2016 - (.Autodesk.) [HKLM] -- {C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Start Technology - (.Intel Corporation.) [HKLM] -- 3D073343-CEEB-4ce7-85AC-A69A7631B5D6
O42 - Logiciel: Java 8 Update 77 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218077F0}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM] -- {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 - (.Microsoft Corporation.) [HKLM] -- {95716cce-fc71-413f-8ad5-56c2892d4b3a}
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {B175520C-86A2-35A7-8619-86DC379688B9}
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM] -- {BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403}
O42 - Logiciel: Mozilla Firefox 45.0.1 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 45.0.1 (x86 en-US)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}
O42 - Logiciel: Nuance PDF Viewer Plus - (.Nuance Communications, Inc.) [HKLM] -- {28656860-4728-433C-8AD4-D1A930437BC8}
O42 - Logiciel: Nuance PaperPort 12 - (.Nuance Communications, Inc..) [HKLM] -- {6C0A559F-8583-4B5A-8B50-20BEE15D8E64}
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM] -- {90160000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM] -- {90160000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM] -- {627FFC10-CE0A-497F-BA2B-208CAC638010}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: ST Microelectronics 3 Axis Digital Accelerometer Solution - (.ST Microelectronics.) [HKLM] -- {9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}
O42 - Logiciel: ScanManager - (.Olivier Muet.) [HKLM] -- ScanManager_is1
O42 - Logiciel: SketchUp 2014 - (.Trimble Navigation Limited.) [HKLM] -- {A608A8D3-E77C-4BEE-8F2A-F8124F5F0FE2}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype 7.18 - (.Skype Technologies S.A..) [HKLM] -- {FC965A47-4839-40CA-B618-18F486F042C6}
O42 - Logiciel: SmartSound Common Data - (.SmartSound Software Inc..) [HKLM] -- InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}
O42 - Logiciel: SmartSound Common Data - (.SmartSound Software Inc..) [HKLM] -- {B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}
O42 - Logiciel: SmartSound Sonicfire Pro 5 - (.SmartSound Software Inc..) [HKLM] -- InstallShield_{1D273D91-D7D5-4036-8B84-EB4615FF5F81}
O42 - Logiciel: SmartSound Sonicfire Pro 5 - (.SmartSound Software Inc..) [HKLM] -- {1D273D91-D7D5-4036-8B84-EB4615FF5F81}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1
O42 - Logiciel: Vimeo Video Downloader 3.25 - (.DownloadToolz, Inc..) [HKLM] -- Vimeo Video Downloader_is1
O42 - Logiciel: Web Companion - (.Lavasoft.) [HKLM] -- {bf12f58b-6479-45c4-8343-1e4605bd4df3}
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: bl - (.Your Company Name.) [HKLM] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: odf-converter-integrator - (.Pas de propriétaire.) [HKLM] -- odf-converter-integrator
O42 - Logiciel: ph - (.Your Company Name.) [HKLM] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\(null)]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\adawarebp]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Autodesk, Inc.]
[HKCU\Software\Autodesk]
[HKCU\Software\Automobile]
[HKCU\Software\Bitdefender]
[HKCU\Software\Brother]
[HKCU\Software\Bugsplat]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Tech]
[HKCU\Software\Dell]
[HKCU\Software\DropboxUpdate]
[HKCU\Software\Dropbox]
[HKCU\Software\EZDownload]
[HKCU\Software\Earth Resource Mapping]
[HKCU\Software\FLEXnet]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kerkythea Rendering System]
[HKCU\Software\Licenses]
[HKCU\Software\LogiShrd]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept (Broadcast)]
[HKCU\Software\MainConcept]
[HKCU\Software\Micromega Software System]
[HKCU\Software\Mootools]
[HKCU\Software\Motion Analysis]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Native Instruments]
[HKCU\Software\Netscape]
[HKCU\Software\NewBlue]
[HKCU\Software\Nuance]
[HKCU\Software\ODBC]
[HKCU\Software\OMP]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PACE Anti-Piracy]
[HKCU\Software\PDF Architect 2]
[HKCU\Software\PDFCreator.net]
[HKCU\Software\PDFCreator]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\ScanSoft]
[HKCU\Software\Serato]
[HKCU\Software\SketchUp]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Synaptics]
[HKCU\Software\SyncEngines]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Visioneer]
[HKCU\Software\Waves Audio]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\WsAudio_Device]
[HKCU\Software\Xenocode]
[HKCU\Software\Zeon]
[HKCU\Software\kde.org]
[HKCU\Software\teras games]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\AdobeFlashPlayerUpdate]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Autodesk]
[HKLM\Software\Avid]
[HKLM\Software\Bitdefender Agent]
[HKLM\Software\Bitdefender]
[HKLM\Software\Brother Industries, Ltd.]
[HKLM\Software\Brother]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\Dell Inc.]
[HKLM\Software\Dell]
[HKLM\Software\Google]
[HKLM\Software\IM Providers]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Kaydara]
[HKLM\Software\Khronos]
[HKLM\Software\Lavasoft]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\McAfee.com]
[HKLM\Software\Micromega Software System]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Native Instruments]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PDF Architect 2]
[HKLM\Software\PDFCreator]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\ST Microelectronics]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\ScanSoft]
[HKLM\Software\SketchUp]
[HKLM\Software\Skype]
[HKLM\Software\SmartSound Software]
[HKLM\Software\SoftThinks]
[HKLM\Software\Software]
[HKLM\Software\Sonic]
[HKLM\Software\Visioneer]
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wondershare]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Yahoo]
[HKLM\Software\ZEON]
[HKLM\Software\mamverifier]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)
O43 - CFD: 09/09/2014 - 11:52:20 ----D- C:\Program Files\Adobe
O43 - CFD: 11/11/2015 - 13:51:46 ----D- C:\Program Files\Autodesk
O43 - CFD: 03/02/2016 - 15:03:18 ----D- C:\Program Files\Bitdefender
O43 - CFD: 25/03/2016 - 15:18:42 ---AD- C:\Program Files\Bitdefender Agent
O43 - CFD: 13/03/2016 - 11:28:16 ---AD- C:\Program Files\Bonjour
O43 - CFD: 16/03/2016 - 14:17:12 ---AD- C:\Program Files\CCleaner
O43 - CFD: 16/03/2016 - 13:03:06 ----D- C:\Program Files\Common Files
O43 - CFD: 18/10/2012 - 00:59:02 ----D- C:\Program Files\Dell
O43 - CFD: 18/10/2012 - 00:42:56 ----D- C:\Program Files\Dell Inc
O43 - CFD: 03/02/2016 - 11:44:04 ---AD- C:\Program Files\Dell Support Center
O43 - CFD: 03/02/2016 - 11:20:38 ----D- C:\Program Files\DIFX
O43 - CFD: 03/02/2016 - 11:29:20 ----D- C:\Program Files\DVD Maker
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 03/02/2016 - 11:29:20 ----D- C:\Program Files\Intel
O43 - CFD: 03/02/2016 - 11:29:22 ----D- C:\Program Files\Intel Corporation
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Internet Explorer
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files\iPod
O43 - CFD: 13/03/2016 - 11:31:08 ---AD- C:\Program Files\iTunes
O43 - CFD: 16/03/2016 - 13:07:10 ----D- C:\Program Files\Lavasoft
O43 - CFD: 16/12/2014 - 19:34:28 ---AD- C:\Program Files\ma-config.com
O43 - CFD: 03/02/2016 - 11:29:24 ----D- C:\Program Files\Microsoft Games
O43 - CFD: 19/01/2014 - 14:41:46 ----D- C:\Program Files\Microsoft LifeCam
O43 - CFD: 09/01/2016 - 19:41:02 ----D- C:\Program Files\Microsoft Office 15
O43 - CFD: 14/01/2016 - 13:11:22 ---AD- C:\Program Files\Microsoft Silverlight
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files\MSBuild
O43 - CFD: 06/12/2014 - 13:56:16 ----D- C:\Program Files\Native Instruments
O43 - CFD: 06/01/2013 - 14:44:48 ----D- C:\Program Files\Nuance
O43 - CFD: 03/02/2016 - 11:29:26 ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 11/04/2015 - 15:03:00 ----D- C:\Program Files\PDFCreator
O43 - CFD: 03/02/2016 - 11:20:40 ----D- C:\Program Files\Realtek
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 03/02/2016 - 11:20:32 ----D- C:\Program Files\STMicroelectronics
O43 - CFD: 03/02/2016 - 11:19:40 ----D- C:\Program Files\Synaptics
O43 - CFD: 16/12/2014 - 19:34:28 ---AD- C:\Program Files\Total Uninstall 6
O43 - CFD: 03/02/2016 - 11:20:36 --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Windows Defender
O43 - CFD: 02/03/2016 - 02:00:52 ----D- C:\Program Files\Windows Journal
O43 - CFD: 18/10/2012 - 01:23:16 ----D- C:\Program Files\Windows Live
O43 - CFD: 03/02/2016 - 11:29:28 ----D- C:\Program Files\Windows Mail
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Windows Media Player
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 03/02/2016 - 11:53:20 ----D- C:\Program Files\Windows NT
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 03/02/2016 - 11:29:28 -SH-D- C:\Program Files\Windows Sidebar
O43 - CFD: 24/03/2016 - 20:33:06 --H-D- C:\Program Files\WindowsApps
O43 - CFD: 30/10/2015 - 08:24:26 -S--D- C:\Program Files\WindowsPowerShell
O43 - CFD: 18/10/2012 - 01:13:02 ----D- C:\Program Files\WPAN Driver
O43 - CFD: 09/09/2014 - 11:52:24 ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 03/02/2016 - 01:11:22 ---AD- C:\Program Files\Common Files\Autodesk Shared
O43 - CFD: 16/03/2016 - 11:18:54 ----D- C:\Program Files\Common Files\AV
O43 - CFD: 03/02/2016 - 15:03:32 ----D- C:\Program Files\Common Files\Bitdefender
O43 - CFD: 19/11/2012 - 19:00:52 ----D- C:\Program Files\Common Files\Canon
O43 - CFD: 03/02/2016 - 11:29:14 ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 18/10/2012 - 01:12:14 ---AD- C:\Program Files\Common Files\Intel Corporation
O43 - CFD: 16/03/2016 - 13:03:06 ----D- C:\Program Files\Common Files\Lavasoft
O43 - CFD: 28/10/2012 - 18:52:08 ----D- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 06/12/2014 - 13:55:56 ---AD- C:\Program Files\Common Files\Native Instruments
O43 - CFD: 30/10/2015 - 08:24:30 ----D- C:\Program Files\Common Files\Services
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Common Files\System
O43 - CFD: 07/04/2013 - 21:49:46 ----D- C:\Program Files\Common Files\Wondershare
O43 - CFD: 28/10/2014 - 23:28:00 ----D- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 16/03/2016 - 12:11:42 ----D- C:\ProgramData\Adobe
O43 - CFD: 09/09/2014 - 11:47:34 ----D- C:\ProgramData\ALM
O43 - CFD: 15/02/2014 - 19:43:22 ----D- C:\ProgramData\Apple
O43 - CFD: 17/02/2013 - 21:59:42 ----D- C:\ProgramData\Apple Computer
O43 - CFD: 03/02/2016 - 11:53:20 -SH-D- C:\ProgramData\Application Data
O43 - CFD: 26/12/2015 - 16:57:08 ---AD- C:\ProgramData\Autodesk
O43 - CFD: 18/02/2015 - 13:15:26 ----D- C:\ProgramData\AVAST Software
O43 - CFD: 07/11/2014 - 20:05:02 ----D- C:\ProgramData\bdch
O43 - CFD: 18/02/2015 - 13:32:40 ----D- C:\ProgramData\BDLogging
O43 - CFD: 03/02/2016 - 15:44:24 ----D- C:\ProgramData\Bitdefender
O43 - CFD: 03/02/2016 - 13:08:26 ----D- C:\ProgramData\Bitdefender Agent
O43 - CFD: 25/03/2016 - 15:17:22 ----D- C:\ProgramData\boost_interprocess
O43 - CFD: 06/01/2013 - 15:08:22 ----D- C:\ProgramData\Brother
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Bureau
O43 - CFD: 19/11/2012 - 19:12:02 --H-D- C:\ProgramData\CanonBJ
O43 - CFD: 03/11/2012 - 23:57:48 --H-D- C:\ProgramData\Common Files
O43 - CFD: 30/10/2015 - 08:24:26 ----D- C:\ProgramData\Comms
O43 - CFD: 19/02/2013 - 19:08:54 ----D- C:\ProgramData\ControlCenter4
O43 - CFD: 04/11/2012 - 10:44:18 ----D- C:\ProgramData\Creative
O43 - CFD: 18/10/2012 - 01:26:18 ----D- C:\ProgramData\Dell
O43 - CFD: 03/02/2016 - 11:53:20 -SH-D- C:\ProgramData\Documents
O43 - CFD: 20/06/2015 - 19:59:00 ----D- C:\ProgramData\Dropbox
O43 - CFD: 15/08/2015 - 11:27:18 ----D- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 11/11/2015 - 13:29:12 ----D- C:\ProgramData\FARO
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Favoris
O43 - CFD: 10/02/2016 - 15:52:02 ----D- C:\ProgramData\FLEXnet
O43 - CFD: 25/11/2012 - 22:35:52 ----D- C:\ProgramData\Google
O43 - CFD: 16/12/2014 - 19:34:28 ----D- C:\ProgramData\InstallShield
O43 - CFD: 03/02/2016 - 11:29:40 ----D- C:\ProgramData\Intel
O43 - CFD: 18/10/2012 - 01:08:10 ----D- C:\ProgramData\Intel.sav
O43 - CFD: 16/03/2016 - 13:13:48 ----D- C:\ProgramData\Lavasoft
O43 - CFD: 15/12/2014 - 19:03:28 ---AD- C:\ProgramData\ma-config.com
O43 - CFD: 18/06/2014 - 17:07:14 ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 15/12/2014 - 18:58:10 ----D- C:\ProgramData\Martau
O43 - CFD: 06/07/2014 - 21:52:38 ----D- C:\ProgramData\McAfee
O43 - CFD: 18/02/2015 - 13:18:50 ----D- C:\ProgramData\McAfee Security Scan
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 15/03/2016 - 23:30:50 -S--D- C:\ProgramData\Microsoft
O43 - CFD: 03/02/2016 - 12:05:28 ----D- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 24/10/2012 - 18:30:30 -SH-D- C:\ProgramData\Modèles
O43 - CFD: 28/10/2012 - 11:39:50 ----D- C:\ProgramData\Mozilla
O43 - CFD: 06/12/2014 - 13:56:16 ----D- C:\ProgramData\Native Instruments
O43 - CFD: 06/01/2013 - 15:34:48 ----D- C:\ProgramData\Nuance
O43 - CFD: 03/02/2016 - 11:29:52 ----D- C:\ProgramData\NVIDIA
O43 - CFD: 03/02/2016 - 11:21:26 ----D- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 25/03/2016 - 15:34:26 ----D- C:\ProgramData\Oracle
O43 - CFD: 03/04/2013 - 18:02:38 ----D- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 11/11/2015 - 13:58:26 ----D- C:\ProgramData\Package Cache
O43 - CFD: 03/03/2015 - 11:14:58 ----D- C:\ProgramData\PDF Architect 2
O43 - CFD: 26/11/2015 - 13:08:56 ----D- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 14/03/2016 - 23:32:08 ---AD- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 18/10/2012 - 01:08:40 ----D- C:\ProgramData\Roaming
O43 - CFD: 06/01/2013 - 14:43:50 ----D- C:\ProgramData\ScanSoft
O43 - CFD: 22/01/2015 - 14:51:02 ----D- C:\ProgramData\SketchUp
O43 - CFD: 16/03/2016 - 12:19:04 ----D- C:\ProgramData\Skype
O43 - CFD: 14/11/2012 - 19:15:10 ----D- C:\ProgramData\SmartSound Software Inc
O43 - CFD: 03/02/2016 - 14:10:56 ----D- C:\ProgramData\SoftwareDistribution
O43 - CFD: 16/03/2016 - 00:45:26 ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 18/02/2015 - 13:26:58 ----D- C:\ProgramData\tEvfhHU
O43 - CFD: 03/02/2016 - 11:53:46 ----D- C:\ProgramData\USOPrivate
O43 - CFD: 03/02/2016 - 11:53:46 ----D- C:\ProgramData\USOShared
O43 - CFD: 07/04/2013 - 21:50:02 ----D- C:\ProgramData\Wondershare Video Converter Ultimate
O43 - CFD: 08/04/2013 - 10:46:24 ----D- C:\ProgramData\xml_param
O43 - CFD: 06/01/2013 - 14:44:22 ----D- C:\ProgramData\zeon
O43 - CFD: 09/09/2014 - 11:52:24 ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 03/02/2016 - 01:11:22 ---AD- C:\Program Files\Common Files\Autodesk Shared
O43 - CFD: 16/03/2016 - 11:18:54 ----D- C:\Program Files\Common Files\AV
O43 - CFD: 03/02/2016 - 15:03:32 ----D- C:\Program Files\Common Files\Bitdefender
O43 - CFD: 19/11/2012 - 19:00:52 ----D- C:\Program Files\Common Files\Canon
O43 - CFD: 03/02/2016 - 11:29:14 ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 18/10/2012 - 01:12:14 ---AD- C:\Program Files\Common Files\Intel Corporation
O43 - CFD: 16/03/2016 - 13:03:06 ----D- C:\Program Files\Common Files\Lavasoft
O43 - CFD: 28/10/2012 - 18:52:08 ----D- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 06/12/2014 - 13:55:56 ---AD- C:\Program Files\Common Files\Native Instruments
O43 - CFD: 30/10/2015 - 08:24:30 ----D- C:\Program Files\Common Files\Services
O43 - CFD: 03/02/2016 - 11:29:18 ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files\Common Files\System
O43 - CFD: 07/04/2013 - 21:49:46 ----D- C:\Program Files\Common Files\Wondershare
O43 - CFD: 09/09/2014 - 11:45:02 ---AD- C:\Program Files (x86)\Adobe
O43 - CFD: 11/11/2015 - 13:51:50 ----D- C:\Program Files (x86)\Autodesk
O43 - CFD: 13/03/2016 - 11:28:16 ---AD- C:\Program Files (x86)\Bonjour
O43 - CFD: 06/01/2013 - 15:07:00 ----D- C:\Program Files (x86)\Brother
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\Browny02
O43 - CFD: 18/10/2012 - 01:08:12 ----D- C:\Program Files (x86)\Cisco
O43 - CFD: 25/03/2016 - 15:34:00 ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\ControlCenter4
O43 - CFD: 04/11/2012 - 10:41:20 ----D- C:\Program Files (x86)\Creative
O43 - CFD: 18/10/2012 - 01:17:06 ----D- C:\Program Files (x86)\Creative Live! Cam
O43 - CFD: 16/12/2014 - 19:34:38 ----D- C:\Program Files (x86)\Dell
O43 - CFD: 25/03/2016 - 15:18:42 ---AD- C:\Program Files (x86)\Dell DataSafe Local Backup
O43 - CFD: 03/06/2015 - 21:53:58 ---AD- C:\Program Files (x86)\Dell Digital Delivery
O43 - CFD: 18/10/2012 - 01:17:10 ----D- C:\Program Files (x86)\Dell Webcam
O43 - CFD: 24/02/2013 - 11:59:54 ----D- C:\Program Files (x86)\Documalis
O43 - CFD: 06/07/2014 - 21:48:54 ----D- C:\Program Files (x86)\DownloadToolz
O43 - CFD: 05/10/2015 - 19:56:16 ----D- C:\Program Files (x86)\Duplicate Cleaner
O43 - CFD: 30/11/2015 - 16:17:38 ----D- C:\Program Files (x86)\GanttProject-2.6
O43 - CFD: 10/12/2013 - 16:29:58 ----D- C:\Program Files (x86)\Google
O43 - CFD: 06/01/2013 - 15:05:58 --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 03/02/2016 - 11:29:34 ----D- C:\Program Files (x86)\Intel
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 13/03/2016 - 11:30:38 ----D- C:\Program Files (x86)\iTunes
O43 - CFD: 25/03/2016 - 15:33:26 ----D- C:\Program Files (x86)\Java
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\Kerkythea Rendering System
O43 - CFD: 16/03/2016 - 13:14:50 ----D- C:\Program Files (x86)\Lavasoft
O43 - CFD: 24/12/2013 - 23:38:08 ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 16/12/2014 - 19:34:32 ---AD- C:\Program Files (x86)\Microsoft LifeCam
O43 - CFD: 14/03/2016 - 23:27:10 ---AD- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/01/2016 - 13:11:22 ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/10/2012 - 01:24:02 ---AD- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 03/02/2016 - 11:29:36 ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 21/03/2016 - 17:57:58 ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 21/03/2016 - 17:57:58 ----D- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 06/01/2013 - 14:41:24 ---AD- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 02/04/2013 - 17:17:50 ----D- C:\Program Files (x86)\My Company Name
O43 - CFD: 06/01/2013 - 14:44:20 ----D- C:\Program Files (x86)\Nuance
O43 - CFD: 03/02/2016 - 11:29:36 ----D- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 16/12/2014 - 19:34:32 ----D- C:\Program Files (x86)\odf-converter-integrator
O43 - CFD: 19/11/2012 - 19:08:54 ---AD- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 17/03/2016 - 10:44:42 ---AD- C:\Program Files (x86)\PDF Architect 2
O43 - CFD: 19/07/2015 - 15:33:18 ---AD- C:\Program Files (x86)\QuickTime
O43 - CFD: 18/10/2012 - 01:01:26 ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 03/02/2016 - 11:00:18 ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 16/12/2014 - 19:34:32 ---AD- C:\Program Files (x86)\ScanManager
O43 - CFD: 22/01/2015 - 14:51:02 ----D- C:\Program Files (x86)\SketchUp
O43 - CFD: 16/03/2016 - 12:21:48 R---D- C:\Program Files (x86)\Skype
O43 - CFD: 14/11/2012 - 19:14:58 ----D- C:\Program Files (x86)\SmartSound Software
O43 - CFD: 16/03/2016 - 11:18:52 ---AD- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 18/10/2012 - 01:06:44 ----D- C:\Program Files (x86)\ST Microelectronics
O43 - CFD: 18/10/2012 - 00:59:48 --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 05:57:08 --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 17/03/2016 - 10:39:56 ----D- C:\Program Files (x86)\VS Revo Group
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 16/12/2014 - 19:34:42 ---AD- C:\Program Files (x86)\Windows Live
O43 - CFD: 03/02/2016 - 11:29:38 ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 30/10/2015 - 08:24:26 ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 30/10/2015 - 20:00:08 ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 10/03/2016 - 02:13:16 ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 03/02/2016 - 11:29:38 -SH-D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 30/10/2015 - 08:24:26 -S--D- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 15/04/2013 - 09:06:08 ----D- C:\Program Files (x86)\Wondershare
O43 - CFD: 25/03/2016 - 15:35:40 ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 09/09/2014 - 11:46:50 ---AD- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 17/01/2015 - 12:06:22 ---AD- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 23/02/2015 - 15:36:08 ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 11/11/2015 - 13:57:50 ---AD- C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 24/12/2013 - 23:52:32 ----D- C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 14/03/2016 - 23:30:50 ---AD- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 06/01/2013 - 14:42:40 ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 03/02/2016 - 11:29:30 ----D- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 18/10/2012 - 01:20:26 ----D- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 25/03/2016 - 15:34:00 ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 14/03/2016 - 23:30:52 ---AD- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 06/12/2014 - 13:56:16 ----D- C:\Program Files (x86)\Common Files\Native Instruments
O43 - CFD: 18/10/2012 - 00:59:52 ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 02/04/2013 - 17:17:56 ---AD- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 16/12/2014 - 19:34:32 ---AD- C:\Program Files (x86)\Common Files\ScanSoft Shared
O43 - CFD: 30/10/2015 - 08:24:30 ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 16/03/2016 - 12:15:56 ---AD- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/11/2012 - 19:08:22 ----D- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 03/02/2016 - 11:29:32 ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 03/02/2016 - 11:29:32 ---AD- C:\Program Files (x86)\Common Files\System
O43 - CFD: 18/10/2012 - 01:18:30 ----D- C:\Program Files (x86)\Common Files\Windows Live
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.038356387332650843BCB352BB89A101] - 25/03/2016 - 15:16:59 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [275]
O44 - LFC:[MD5.68A4B56B1E9F805B2257BE7FC6EAEB2A] - 25/03/2016 - 15:14:45 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [67584]
O44 - LFC:[MD5.C94D199E4C401796C7792DD0D907DE53] - 25/03/2016 - 15:12:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\bdlog.txt [3147]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/03/2016 - 16:11:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/03/2016 - 16:11:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setuperr.log [0]
O44 - LFC:[MD5.60A760C1E9032A50A4D988295DC39B66] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2131886]
O44 - LFC:[MD5.34BC5F2B8F876CC4F682B7B9BACF9FB2] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfc009.dat [172510]
O44 - LFC:[MD5.8528FAC724FD1F1695CE761DC229BD34] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfc00C.dat [198606]
O44 - LFC:[MD5.FAF9ACA83E1BAC135AAA87E95B3344F7] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfh009.dat [828082]
O44 - LFC:[MD5.0F28CFC050823548AEC28890A89B519E] - 17/03/2016 - 21:49:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\perfh00C.dat [933690]
O44 - LFC:[MD5.AA5CE6A85637A316E837EE9B43938EBD] - 16/03/2016 - 15:30:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wininit.ini [325]
O44 - LFC:[MD5.82446D358A9FB51CB9DA32A5C901D7A0] - 15/03/2016 - 23:30:42 ---A- . (.Safer Networking Limited - Pas de description.) -- C:\WINDOWS\SysNative\sdnclean64.exe [21040]
O44 - LFC:[MD5.696AB02D4C045E2EEBE665A652FD2945] - 11/03/2016 - 15:32:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\FNTCACHE.DAT [5312928]
O44 - LFC:[MD5.F01ADB9BD13B60B6AB9538447F901921] - 09/03/2016 - 11:37:14 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\WINDOWS\SysNative\atmfd.dll [365568]
O44 - LFC:[MD5.F01ADB9BD13B60B6AB9538447F901921] - 09/03/2016 - 11:37:13 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\WINDOWS\System32\atmfd.dll [303104]
O44 - LFC:[MD5.52623F9ED4D00357F3874DD31BB232FD] - 09/03/2016 - 11:36:56 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\WINDOWS\SysNative\atmlib.dll [45568]
O44 - LFC:[MD5.52623F9ED4D00357F3874DD31BB232FD] - 09/03/2016 - 11:36:56 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\WINDOWS\System32\atmlib.dll [37376]
O44 - LFC:[MD5.2DDEA2BEDD3169F483C9BE610ADFE8B1] - 02/03/2016 - 00:46:48 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll [8705672]
O44 - LFC:[MD5.2DDEA2BEDD3169F483C9BE610ADFE8B1] - 02/03/2016 - 00:46:47 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll [6952088]
O44 - LFC:[MD5.8CDC28FB78253481353A882FA3139FBB] - 02/03/2016 - 00:45:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SysNative\CoreUIComponents.dll [2654872]
O44 - LFC:[MD5.8CDC28FB78253481353A882FA3139FBB] - 02/03/2016 - 00:45:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\CoreUIComponents.dll [1859960]
---\\ Export de clé d'application autorisée (ECAA) (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) --
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\WINDOWS\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\WINDOWS\system32\credssp.dll
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRecentDocsHistory"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoControlPanel"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutorunSetting"=1
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.2C5B3035B86770ADD2FE9BFBAF5B35A4] - 30/10/2015 - 08:17:22 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\system32\drivers\3ware.sys [107360]
O58 - SDL:[MD5.F7D0CD345D2DA42E7042ABCD73662403] - 30/10/2015 - 08:17:22 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\WINDOWS\system32\drivers\adp80xx.sys [1135456]
O58 - SDL:[MD5.5B30BCFE6E02E45D3EE268FF001BC5E0] - 30/10/2015 - 08:17:22 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\system32\drivers\amdsata.sys [83296]
O58 - SDL:[MD5.F20B30F35A5C7888441B4DCA001ECF8E] - 30/10/2015 - 08:17:22 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\WINDOWS\system32\drivers\amdsbs.sys [259424]
O58 - SDL:[MD5.AFE838D7576C581D6483529621AB10CC] - 30/10/2015 - 08:17:22 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\system32\drivers\amdxata.sys [26976]
O58 - SDL:[MD5.157B1C973637919DCD0D0464167C86BA] - 09/01/2012 - 18:32:40 ---A- . (.Windows (R) Win 7 DDK provider - Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapt.) -- C:\WINDOWS\system32\drivers\AmpPal.sys [195584]
O58 - SDL:[MD5.E3FE8F610B1CC12BC3B2E6BC43DC97E2] - 30/10/2015 - 08:17:22 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\system32\drivers\arcsas.sys [131936]
O58 - SDL:[MD5.B18699497436228F1109132D669CF29A] - 22/01/2016 - 08:11:05 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\WINDOWS\system32\drivers\avc3.sys [1622512]
O58 - SDL:[MD5.1251FB8BF8E6B6129065326A3E8A4378] - 22/01/2016 - 08:12:22 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\WINDOWS\system32\drivers\avckf.sys [806344]
O58 - SDL:[MD5.3F5523DCEFE42B385659C5CB46A6B810] - 30/10/2015 - 08:17:22 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\system32\drivers\bcmfn.sys [9728]
O58 - SDL:[MD5.0B750A6A6D847E73CA48ADD7A0F5A393] - 30/10/2015 - 08:17:22 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\system32\drivers\bcmfn2.sys [9728]
O58 - SDL:[MD5.3701D3BF4AC12EAACB1F58847C1D32FC] - 08/09/2013 - 19:04:56 ---A- . (.Bitdefender - Bitdefender Early Launch Anti-Malware Driver.) -- C:\WINDOWS\system32\drivers\bdelam.sys [23568]
O58 - SDL:[MD5.D8FAF7CFBC81E5E15CA7A7EC8EE1B409] - 04/12/2015 - 19:27:06 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\WINDOWS\system32\drivers\bdvedisk.sys [87912]
O58 - SDL:[MD5.6447BA6FA709514B6C803D159B4C7D1E] - 30/10/2015 - 08:17:22 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\system32\drivers\bxvbda.sys [531296]
O58 - SDL:[MD5.EFE63BDFC12A1DD65FBB9E621F29B78C] - 20/10/2009 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys [10224]
O58 - SDL:[MD5.60B3B1A2544EB7843F26EC291BB590BB] - 20/10/2009 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys [10224]
O58 - SDL:[MD5.4CE9F703D1DD69FB656D1953E9C88103] - 28/05/2009 - 16:49:00 ---A- . (.Creative Technology Ltd. - Advanced Audio FX Driver (64-bit).) -- C:\WINDOWS\system32\drivers\CtAudDrv.sys [224768]
O58 - SDL:[MD5.DF214BFF646880D0EB31BDC86136B29B] - 16/06/2011 - 20:40:20 ---A- . (.Creative Technology Ltd. - Video Class Upper Filter Driver (64-bit).) -- C:\WINDOWS\system32\drivers\CtClsFlt.sys [176000]
O58 - SDL:[MD5.491275B864B704B54EC08168344E0F38] - 30/10/2015 - 08:17:22 ---A- . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\system32\drivers\evbda.sys [3436896]
O58 - SDL:[MD5.8E98D21EE06192492A5671A6144D092F] - 21/08/2012 - 13:01:20 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:[MD5.06BFA49C4D999E93E214DB4E8044DE0B] - 29/04/2015 - 13:32:17 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\WINDOWS\system32\drivers\gzflt.sys [160032]
O58 - SDL:[MD5.772A1DEEDFDBC244183B5C805D1B7D85] - 17/07/2012 - 18:12:08 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\system32\drivers\HECIx64.sys [62784]
O58 - SDL:[MD5.FF442DCDCE1F6E9FAA9C8AD0CD1D199B] - 30/10/2015 - 08:17:22 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\WINDOWS\system32\drivers\HpSAMD.sys [64352]
O58 - SDL:[MD5.436819F9B8B0032791400BD5B4934FAB] - 27/01/2012 - 16:00:28 ---A- . (.Ozmo Inc - Ozmo WPAN Protocol Driver.) -- C:\WINDOWS\system32\drivers\hswpan.sys [109056]
O58 - SDL:[MD5.9A2A2F3C69B9A30B6E78536F6D258BAD] - 30/10/2015 - 08:17:18 ---A- . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\system32\drivers\iai2c.sys [81408]
O58 - SDL:[MD5.59A20F5AD9F4AE54098154359519408E] - 30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\system32\drivers\iaLPSS2i_I2C.sys [165888]
O58 - SDL:[MD5.16A10CCEDCF5AC4CAAE43DC9FC40392F] - 30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\system32\drivers\iaLPSSi_GPIO.sys [38128]
O58 - SDL:[MD5.EB82A11613326691508D9ED9A4FE29E7] - 30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\system32\drivers\iaLPSSi_I2C.sys [113152]
O58 - SDL:[MD5.6B0029A0253098CCE28EACCFDB9E7208] - 30/10/2015 - 08:17:22 ---A- . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (inbox) - x64.) -- C:\WINDOWS\system32\drivers\iaStorAV.sys [673120]
O58 - SDL:[MD5.9652E1E35A92D8C75710C17A63B15796] - 30/10/2015 - 08:17:22 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\system32\drivers\iaStorV.sys [412000]
O58 - SDL:[MD5.FFADF691F7BF727AF5C863454A372723] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\system32\drivers\ibbus.sys [424800]
O58 - SDL:[MD5.62F0CB0A54EAF37E15EC385300957BB8] - 01/07/2015 - 21:17:44 ---A- . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) Driver.) -- C:\WINDOWS\system32\drivers\ibtfltcoex.sys [79632]
O58 - SDL:[MD5.CEFA6BDB4789F3DA003ACBDCC64F5877] - 27/08/2015 - 18:20:10 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\system32\drivers\igdkmd64.sys [3797424]
O58 - SDL:[MD5.1E7339E5130E1D9105602A5D22F86D56] - 17/03/2016 - 14:43:43 ---A- . (.Bitdefender - IGNIS filter driver.) -- C:\WINDOWS\system32\drivers\ignis.sys [290032]
O58 - SDL:[MD5.87871AB7AC797F922A6F3D4C874CED96] - 21/08/2015 - 11:50:48 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\system32\drivers\IntcDAud.sys [463112]
O58 - SDL:[MD5.B1F193AB8FB72E9FC34B3A39314ED872] - 20/07/2015 - 20:45:04 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\system32\drivers\intelaud.sys [50240]
O58 - SDL:[MD5.6DC22BDAA595BE00F19696E72F2F3312] - 17/05/2012 - 00:57:08 ---A- . (.Intel Corporation - Intel(R) Rapid Start Technology Driver.) -- C:\WINDOWS\system32\drivers\irstrtdv.sys [26504]
O58 - SDL:[MD5.846354992EBB373F452EB9182D501B08] - 27/02/2012 - 10:01:00 ---A- . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Driver.) -- C:\WINDOWS\system32\drivers\iusb3hcs.sys [16152]
O58 - SDL:[MD5.DD1F43B86AD84E53203F92FD3EF3AEB6] - 20/07/2015 - 20:45:04 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\system32\drivers\iwdbus.sys [38976]
O58 - SDL:[MD5.961F28D879D345BFA50AF51285C90F2E] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sas.sys [108888]
O58 - SDL:[MD5.6BFB8D1B3407518BE06B6F81F92FA0F5] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sas2i.sys [104800]
O58 - SDL:[MD5.BE0E47988D78F731DEC2C0CB03E765CB] - 30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sas3i.sys [99168]
O58 - SDL:[MD5.F99BF02BE9219986817BF094981EEB18] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\system32\drivers\lsi_sss.sys [82784]
O58 - SDL:[MD5.2ED29B635F35E31A1C0D3DDB7DD2AD03] - 30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\system32\drivers\megasas.sys [59744]
O58 - SDL:[MD5.22E3CB85870879CBAE13C5095A8B12E3] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\system32\drivers\megasr.sys [575840]
O58 - SDL:[MD5.D41920FBFFF2BBCBBC69A5B383AD022E] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\system32\drivers\mlx4_bus.sys [705376]
O58 - SDL:[MD5.218705233D02776AE4D19CC37D985C1B] - 30/10/2015 - 08:17:23 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\system32\drivers\mvumis.sys [63840]
O58 - SDL:[MD5.B57CE307DA101C739885B7CC0678077F] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\system32\drivers\ndfltr.sys [76128]
O58 - SDL:[MD5.6F4607E2333FE21E9E3FF8133A88B35B] - 26/03/2012 - 14:50:12 ---A- . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\system32\drivers\netaapl64.sys [22528]
O58 - SDL:[MD5.99C24A7DC1F3D4845553B4BD189274A0] - 30/10/2015 - 08:17:19 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\system32\drivers\NETwew01.sys [3343872]
O58 - SDL:[MD5.DF0BB2C179476D312B7BC0056CEC50A6] - 23/07/2015 - 04:02:12 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 353.62.) -- C:\WINDOWS\system32\drivers\nvlddmkm.sys [11142984]
O58 - SDL:[MD5.2328DC3622412EE112868645DA013075] - 23/07/2015 - 04:02:12 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 353.62.) -- C:\WINDOWS\system32\drivers\nvpciflt.sys [31376]
O58 - SDL:[MD5.604D27CC38CC23493F218D0BB834B3FF] - 30/10/2015 - 08:17:23 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\system32\drivers\nvraid.sys [150368]
O58 - SDL:[MD5.8B50D897657AB4A15FD9E251BBF7D107] - 30/10/2015 - 08:17:23 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\system32\drivers\nvstor.sys [166240]
O58 - SDL:[MD5.819AC5E0E3499D7333995C8976A3C196] - 26/02/2012 - 08:42:26 ---A- . (.NVIDIA Corporation - Stereoscopic 3D USB controller driver.) -- C:\WINDOWS\system32\drivers\nvstusb.sys [398144]
O58 - SDL:[MD5.1398A85E59698067CBBE1D66A9C13ADF] - 30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\system32\drivers\percsas2i.sys [58208]
O58 - SDL:[MD5.35F7C7AD709D909D618D9EDF987FC3ED] - 30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\system32\drivers\percsas3i.sys [58720]
O58 - SDL:[MD5.BC08F7F3C53CBEE68670ED1314E290FD] - 03/11/2011 - 02:01:00 ---A- . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\WINDOWS\system32\drivers\PxHlpa64.sys [56208]
O58 - SDL:[MD5.FBEFF38DE03450E03E6CD9E8E37A8C74] - 30/10/2015 - 08:17:23 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Driver.) -- C:\WINDOWS\system32\drivers\rt640x64.sys [589824]
O58 - SDL:[MD5.48AC5F706780BCC34811EA89A0727189] - 04/08/2015 - 00:21:50 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RTKVHD64.sys [4518136]
O58 - SDL:[MD5.8C00FD003B32ACFD7C054D0D7988BDF4] - 03/06/2015 - 07:41:50 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\WINDOWS\system32\drivers\RtsPStor.sys [374016]
O58 - SDL:[MD5.ABBE803FE0BDAE0E5BE74DDEFBE62F23] - 30/10/2015 - 08:17:23 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\system32\drivers\sisraid2.sys [44896]
O58 - SDL:[MD5.6043DF55CFE3C7ACF477645FA64DEA98] - 30/10/2015 - 08:17:23 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\system32\drivers\sisraid4.sys [81760]
O58 - SDL:[MD5.EB5052F1D1D52C0C5C57A34ADC5F1723] - 10/07/2012 - 22:32:00 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_AMDASF.sys [24888]
O58 - SDL:[MD5.1C018231BCDD7D39CC3996ED651C6177] - 04/06/2015 - 08:07:22 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_AMDASF_Aux.sys [42184]
O58 - SDL:[MD5.8E43E3CC67E59626E65B981C0666DBFC] - 04/06/2015 - 08:07:22 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys [42696]
O58 - SDL:[MD5.8E43E3CC67E59626E65B981C0666DBFC] - 04/06/2015 - 08:07:22 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\system32\drivers\Smb_driver_Intel_Aux.sys [42696]
O58 - SDL:[MD5.BC2B6E9D43EFC087C46D79DBA37C299E] - 09/01/2015 - 10:25:06 ---A- . (.ST Microelectronics - Disk Class Filter Driver for Accelerometer.) -- C:\WINDOWS\system32\drivers\stdcfltn.sys [23216]
O58 - SDL:[MD5.CCDA497C880AD16D87EDFAEFCFB2EDF5] - 30/10/2015 - 08:17:23 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\WINDOWS\system32\drivers\stexstor.sys [31072]
O58 - SDL:[MD5.6C4EF0411BFF2D6D7C4515D3BBFDD9F3] - 10/06/2015 - 08:43:20 ---A- . (.STMicroelectronics - STM Accelerometer Device Driver.) -- C:\WINDOWS\system32\drivers\ST_Accel.sys [143592]
O58 - SDL:[MD5.673EC76AC2A902544AD63D6C296C4D9D] - 04/06/2015 - 08:07:24 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [613576]
O58 - SDL:[MD5.FE3D70DE933A481284FCE7D5DB5DCE50] - 16/03/2016 - 13:27:44 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\WINDOWS\system32\drivers\trufos.sys [477272]
O58 - SDL:[MD5.F957092C63CD71D85903CA0D8370F473] - 10/06/2015 - 22:08:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl64.sys [54784]
O58 - SDL:[MD5.D48ED0A08BD2FD25A833E6AC99623091] - 30/10/2015 - 08:17:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\system32\drivers\vsmraid.sys [166752]
O58 - SDL:[MD5.6990D4AFDF545669D4E6C232F26DE1FB] - 30/10/2015 - 08:17:23 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\system32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:[MD5.A556768CC1FA4F36022BEE2F0EDE2566] - 12/11/2015 - 22:50:10 ---A- . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SAM) driver.) -- C:\WINDOWS\system32\drivers\wdcsam64.sys [26880]
O58 - SDL:[MD5.4A53441C1C4D2878BEF27E381138BB2D] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\system32\drivers\winmad.sys [26976]
O58 - SDL:[MD5.40A3E8D729F458B2C9A8BD9380FF83D5] - 30/10/2015 - 08:17:23 ---A- . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\system32\drivers\winverbs.sys [59232]
---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
---\\ Observateur d'évènement d'application (OEA) (O66)
O66 - EventLog: ID=1000 (Application Error) - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
O66 - EventLog: ID=1000 (Application Error) - (.pdfforge - PDFCreator.) -- C:\Program Files\PDFCreator\PDFCreator.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe
O66 - EventLog: ID=1000 (Application Error) - (.Adobe Systems Incorporated - Adobe InDesign CS6.) -- C:\Program Files (x86)\Adobe\Adobe InDesign CS6\InDesign.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Video Application.) -- C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.17801.0_x64__8wekyb3d8bbwe\Video.UI.exe
O66 - EventLog: ID=1000 (Application Error) - (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\syswow64\MsiExec.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\PROGRA~2\MICROS~4\OFFICE11\OUTLOOK.EXE
O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Shell Experience Host.) -- C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
---\\ Start Menu Internet (SMI) (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {41B254E7-C2AF-4CB4-8649-161202D81DC3} - (Bing) - http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
O69 - SBI: SearchScopes [HKCU] {CCC71BC0-23ED-4CD1-BB4E-80F59D823DAF} - (Recherche sécurisée) - http://fr.search.yahoo.com/search?fr=mcafee&p={SearchTerms}
---\\ Recherche des services démarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\WINDOWS\System32\certprop.dll [0]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\WINDOWS\System32\certprop.dll [0]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [0]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [0]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\WINDOWS\System32\iphlpsvc.dll [0]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [0]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [0]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [0]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\WINDOWS\system32\sessenv.dll [313344]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique daccès distant.) -- C:\WINDOWS\System32\rasauto.dll [0]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions daccès à distance.) -- C:\WINDOWS\System32\rasmans.dll [0]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire dinterface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [436224]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification dévénements système (SENS).) -- C:\WINDOWS\System32\sens.dll [0]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de lapplication dassistance à Microsoft NAT.) -- C:\WINDOWS\System32\ipnathlp.dll [0]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\WINDOWS\System32\tapisrv.dll [254976]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\WINDOWS\system32\wuaueng.dll [0]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\System32\qmgr.dll [0]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [559616]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [0]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [0]
---\\ Recherche particuliere à la racine de certains dossiers (SPRF) (O84)
[MD5.1BDADD718FB04B97D947C2E4ED36DC10] [SPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Christelle\AppData\Local\Temp\DeleteOnReboot.bat [438]
[MD5.5F09D271B8F4A62FC087E0D5452D2EC8] [SPRF] (.SQLite Development Team - SQLite is a software library that implements a self-contained, serverless, zero-configuration, transactional SQL database engine..) -- C:\Users\Christelle\AppData\Local\Temp\sqlite3.dll [681097]
[MD5.6117C3240AC6B6F7DA17B8221F054070] [SPRF] (.Absolute Software Corp. - Computrace(R) LoJack for Laptops(R) Installer.) -- C:\Users\Christelle\AppData\Roaming\LoJackSetup.exe [6246216]
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/09/2011 169624 | C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe (AdobeActiveFileMonitor10.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
SS - | Demand 03/12/2014 81088 | "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 24/03/2016 269504 | C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 07/10/2015 77104 | "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SS - | Auto 05/02/2015 31160 | "C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe (Autodesk Content Service) . (.Autodesk, Inc..) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
SR - | Auto 12/08/2015 462096 | "C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Demand 05/06/2012 266240 | "C:\Program Files (x86)\Browny02\BrYNSvc.exe (BrYNSvc) . (.Brother Industries, Ltd..) - C:\Program Files (x86)\Browny02\BrYNSvc.exe
SS - | Demand 27/08/2015 291744 | C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe (cphs) . (.Intel Corporation.) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 16/03/2015 237448 | "C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (DellDigitalDelivery) . (.Dell Products, LP..) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
SS - | Demand 11/11/2015 1369856 | "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (FLEXnet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
SS - | Auto 16/03/2016 154440 | "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 16/03/2016 154440 | "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 16/03/2012 2439272 | "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 16/03/2012 0 | C:\WINDOWS\system32\igfxCUIService.exe (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\system32\igfxCUIService.exe
SR - | Auto 11/01/2012 627936 | "c:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - c:\Program Files\Intel\iCLS Client\HeciServer.exe
SS - | Demand 17/12/2015 644880 | "C:\Program Files\iPod\bin\iPodService.exe (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 17/05/2012 193536 | C:\Windows\SysWOW64\irstrtsv.exe (irstrtsv) . (.Intel Corporation.) - C:\Windows\SysWOW64\irstrtsv.exe
SR - | Auto 01/02/2012 161560 | C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 28/01/2016 712432 | "C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareService.exe (LavasoftAdAwareService11) . (.Pas de propriétaire.) - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.10.767.8917\AdAwareService.exe
SS - | Auto 16/03/2016 2751760 | C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe (LavasoftTcpService) . (.Lavasoft Limited.) - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
SR - | Auto 01/02/2012 277784 | C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 15/10/2014 2820424 | "C:\Program Files\ma-config.com\MaConfigAgent.exe (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SR - | Auto 22/02/2011 86016 | "C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe (mi-raysat_3dsmax2012_64) . (.Pas de propriétaire.) - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
SS - | Demand 21/03/2016 146888 | "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 04/10/2012 6371192 | C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (NIHardwareService) . (.Native Instruments GmbH.) - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
SR - | Auto 18/11/2014 4375880 | "C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe (NOBU) . (.Dell, Inc..) - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
SR - | Auto 18/11/2014 0 | "C:\WINDOWS\system32\nvvsvc.exe (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 21/11/2013 1364256 | "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 09/03/2010 144672 | C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe (PDFProFiltSrvPP) . (.Nuance Communications, Inc..) - C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
SR - | Auto 21/03/2016 925328 | "C:\Program Files\Bitdefender Agent\ProductAgentService.exe (ProductAgentService) . (.Bitdefender.) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
SR - | Auto 04/08/2015 312056 | "C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
SS - | Auto 24/06/2014 1738168 | "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SS - | Auto 27/06/2014 2088408 | "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SS - | Auto 25/04/2014 171928 | C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - | Auto 16/02/2012 1695040 | "C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe
SS - | Auto 09/07/2015 327296 | "C:\Program Files (x86)\Skype\Updater\Updater.exe (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 19/02/2010 517096 | "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 01/02/2012 363800 | "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 17/03/2016 135176 | "C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
SR - | Auto 17/03/2016 1679672 | "C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe (vsserv) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
SS - | Auto 16/03/2016 17168 | C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (WCAssistantService) . (.Pas de propriétaire.) - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
SS - | Demand 30/10/2015 37256 | C:\WINDOWS\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\WINDOWS\system32\svchost.exe
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Christelle at 25/03/2016 15:37:22
Use the desktop link 'MBRCheck' to have full report
End of the scan (1163 lines in 02mn 08s)(0)