~ ZHPDiag v2016.6.25.107 Par Nicolas Coolman (2016/06/25)
~ Démarré par CATHERINE (Administrator) (2016/06/29 19:13:35)
~ Site: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\CATHERINE\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\CATHERINE\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Home, 64-bit (Build 10240)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 43.0.1 (x86 en-US)
MSIE: Internet Explorer v11.0.10240.16942

---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : DYH8W
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Windows Automatic Updates : OK

---\\ Logiciels de protection (2) - 3s
Suite de Sécurité Orange v15.0.2.361
Windows Defender (Deactivate)

---\\ Surveillance de Logiciels (1) - 3s
Adobe Flash Player 22 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 76 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1916.176 MB (27% free)
System Restore: Activé (Enable)
System drive C: has 3 GB () free of 29 GB =>Alerte espace disque inférieur à 20 Go

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DESKTOP-9BU5FQ9
~ User Name: CATHERINE
~ Logged in as Administrator

---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 3 GB free of 29 GB (System)

---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.1550F64C237E1E1046B7C4302AB595D7] - 28/05/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [4532304] =>.Microsoft Windows®
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [59392] =>.Microsoft Corporation
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 26/09/2015 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [290312] =>.Microsoft Windows Publisher®
[MD5.9735548D9ED3F738DB17307824D97DE1] - 28/05/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2848256] =>.Microsoft Corporation
[MD5.DA32F9BFA7851AD4247353EA03755DE6] - 05/01/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [578560] =>.Microsoft Corporation
[MD5.ECB1943967424DFB96E03F6A098434EF] - 26/09/2015 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [430592] =>.Microsoft Corporation
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [680256] =>.Microsoft Windows®
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [534064] =>.Microsoft Windows®
[MD5.8C795953726C7D2DE72CE4748208C5ED] - 26/09/2015 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [577888] =>.Microsoft Windows®
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [174080] =>.Microsoft Corporation
[MD5.55D5C5B0B9F9B65BD452136A384E6EAC] - 23/02/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [138240] =>.Microsoft Corporation
[MD5.27E248CD861AFED4DF0C48F4C853E7F0] - 25/11/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [80896] =>.Microsoft Corporation
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [415232] =>.Microsoft Corporation
[MD5.1BD49789354B1CFE28D96DC232071A02] - 28/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [272896] =>.Microsoft Corporation
[MD5.BA8DC96D1DD7785EB0589CB1777208B7] - 01/12/2015 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [2115936] =>.Microsoft Windows®
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation
[MD5.2521520142F7853E39028AE6BD66E072] - 23/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [176128] =>.Microsoft Corporation
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [116064] =>.Microsoft Windows®
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [378720] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (14) - 5s
O23 - Service: Amazon 1Button App Service (Amazon 1Button App Service) . (.Amazon Inc. - The Amazon 1Button App.) - c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe =>.Amazon Services LLC®
O23 - Service: Orange Sécurité Service 9.12 (AVP15.0.2) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\avp.exe =>.Kaspersky Lab®
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe =>.Acer Incorporated®
O23 - Service: (Dashlane Upgrade Service) . (.Dashlane SAS - DashlaneUpgradeService.) - C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe =>.Dashlane®
O23 - Service: @oem7.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) . (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) - C:\Windows\SysWOW64\esif_uf.exe =>.Intel(R) Software®
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe =>.Intel Corporation-Wireless Connectivity Solutions®
O23 - Service: Intel Bluetooth Service (ibtsiva) . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) iBtSiva Serv.) - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe =>.Intel Corporation-Wireless Connectivity Solutions®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) . (...) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe =>.Intel Corporation-Wireless Connectivity Solutions®
O23 - Service: ByteFence Security Real-time Protection (rtop) . (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) - C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence
O23 - Service: Avast SecureLine (SecureLine) . (...) - C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe =>.AVAST Software a.s.®
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe =>.Intel Corporation-Wireless Connectivity Solutions®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (25) - 51s

SS - Demand [16/06/2016] [ 270016] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [17/02/2016] [ 436032] Amazon 1Button App Service (Amazon 1Button App Service) . (.Amazon Inc..) - c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe =>.Amazon Services LLC®
SR - Auto [22/07/2015] [ 194000] Orange Sécurité Service 9.12 (AVP15.0.2) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\avp.exe =>.Kaspersky Lab®
SR - Auto [18/04/2016] [ 2860760] CCDMonitorService (CCDMonitorService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe =>.Acer Incorporated®
SS - Demand [14/05/2016] [ 300456] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Auto [25/06/2015] [ 75056] (Dashlane Upgrade Service) . (.Dashlane SAS.) - C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe =>.Dashlane®
SR - Demand [14/05/2015] [ 2573568] ePower Service (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe =>.Acer Incorporated®
SR - Auto [26/06/2015] [ 1385640] @oem7.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) . (.Intel Corporation.) - C:\Windows\SysWOW64\esif_uf.exe =>.Intel(R) Software®
SR - Auto [12/06/2015] [ 640928] Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe =>.Intel Corporation-Wireless Connectivity Solutions®
SR - Auto [18/06/2015] [ 165104] Intel Bluetooth Service (ibtsiva) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe =>.Intel Corporation-Wireless Connectivity Solutions®
SR - Auto [14/05/2016] [ 368552] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
SS - Demand [22/05/2015] [ 881152] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe =>.Intel® Trusted Connect Service®
SR - Demand [26/02/2015] [ 330240] Intel(R) Security Assist (Intel(R) Security Assist) . (.Copyright © 2014.) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
SS - Auto [26/02/2015] [ 7680] Intel(R) Security Assist Helper (isaHelperSvc) . (...) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
SR - Auto [21/04/2015] [ 174368] Intel(R) Dynamic Application Loader Host Interface (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
SS - Demand [11/06/2016] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SS - Demand [12/06/2015] [ 268192] Wireless PAN DHCP Server (MyWiFiDHCPDNS) . (.Copyright (C) 2005-2010 by Achal Dhir.) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe =>.Intel Corporation-Wireless Connectivity Solutions®
SR - Demand [09/07/2015] [ 398176] Quick Access Local Service (QALSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Quick Access\QALSvc.exe =>.Acer Incorporated®
SR - Demand [09/07/2015] [ 450400] Quick Access Service (QASvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Quick Access\QASvc.exe =>.Acer Incorporated®
SR - Auto [12/06/2015] [ 157088] Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe =>.Intel Corporation-Wireless Connectivity Solutions®
SR - Auto [26/05/2016] [ 254264] ByteFence Security Real-time Protection (rtop) . (.Copyright Byte Technologies LLC..) - C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence
SR - Auto [26/05/2016] [ 592392] Avast SecureLine (SecureLine) . (...) - C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe =>.AVAST Software a.s.®
SR - Demand [27/05/2015] [ 247040] User Experience Improvement Program (UEIPSvc) . (.acer.) - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe =>.Acer Incorporated®
SR - Auto [12/06/2015] [ 3831200] Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe =>.Intel Corporation-Wireless Connectivity Solutions®

---\\ Tâches planifiées en automatique (67) - 17s
[MD5.D246B77DF1B4302BDC1332986F26815C] [APT] [abDocsDllLoader] (...) -- C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312] (.Activate.) =>.Acer Incorporated®
[MD5.C18BF21D2A19D69F3F850B84082011DD] [APT] [ACC] (.(C) All rights reserved.) -- C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2919840] (.Activate.) =>.Acer Incorporated®
[MD5.84EE2D5485B0A173AA5F860AA59351E5] [APT] [ACCAgent] (.(C) All rights reserved.) -- C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [40288] (.Activate.) =>.Acer Incorporated®
[MD5.96AECC7364035DD88B8CE6ED625F60BE] [APT] [ACCBackgroundApplication] (.(C)All rights reserved.) -- C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4644256] (.Activate.) =>.Acer Incorporated®
[MD5.0DAE22CD426F3B569124E1DD0046B379] [APT] [AcerCloud] (.Acer.) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2740440] (.Activate.) =>.Acer Incorporated®
[MD5.E324D38B6CCF843ED4F6D521908AEE5B] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [270016] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.DF632FED5672A36779B96213A2FD42D7] [APT] [Audio Invert Utility] (.Acer Incorporated.) -- C:\Program Files (x86)\Acer\Acer Audio Invert Utility\Launcher.exe [61672] (.Activate.) =>.Acer Incorporated®
[MD5.DBA34666ADB6ECA5197C6E727F9EF2F9] [APT] [Avast SecureLine] (.AVAST Software.) -- C:\Program Files\AVAST Software\SecureLine\SecureLine.exe [3438680] (.Activate.) =>.AVAST Software a.s.®
[MD5.35564DAF01EF07EA7AE861719B2B18B8] [APT] [avast! SL Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\SecureLine\slupdate.exe [863040] (.Activate.) =>.AVAST Software a.s.®
[MD5.962C647021EF055DEDDAD5539701F4E5] [APT] [BacKGroundAgent] (.Acer Incorporated.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752] (.Activate.) =>.Acer Incorporated®
[MD5.95E024C76C8D9DECFFF08671060F66F8] [APT] [ByteFence] (.Byte Technologies LLC.) -- C:\Program Files\ByteFence\ByteFence.exe [1516344] (.Activate.) =>.Superfluous.ByteFence
[MD5.95E024C76C8D9DECFFF08671060F66F8] [APT] [ByteFence Scan] (.Byte Technologies LLC.) -- C:\Program Files\ByteFence\ByteFence.exe [1516344] (.Activate.) =>.Superfluous.ByteFence
[MD5.00000000000000000000000000000000] [APT] [DNSWAXHAW] (...) -- dnswaxhaw.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.7D29C7F1C19F0E3C7ACBC7028400C389] [APT] [FUBTrackingByPLD] (.Copyright © 2015.) -- C:\OEM\Preload\FubTracking\FubTracking.exe [30976] (.Activate.) =>.Acer Incorporated®
[MD5.4BF32B6D307C6AB0C0BA434DB9737811] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384256] (.Activate.) =>.Acer Incorporated®
[MD5.177A0DA2DA626C7310277EC34486FF52] [APT] [Quick Access] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [379232] (.Activate.) =>.Acer Incorporated®
[MD5.40CB8B3BCA8AF2F1D35B586094934834] [APT] [Registry Optimizer] (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Program Files (x86)\WinZip Registry Optimizer\Winzipro.exe [7739568] (.Activate.) =>.WinZip Computing LLC®
[MD5.40CB8B3BCA8AF2F1D35B586094934834] [APT] [Registry Optimizer_DEFAULT] (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Program Files (x86)\WinZip Registry Optimizer\Winzipro.exe [7739568] (.Activate.) =>.WinZip Computing LLC®
[MD5.40CB8B3BCA8AF2F1D35B586094934834] [APT] [Registry Optimizer_UPDATES] (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Program Files (x86)\WinZip Registry Optimizer\Winzipro.exe [7739568] (.Activate.) =>.WinZip Computing LLC®
[MD5.869314B7D03C3CDF9E9D7735C0834D55] [APT] [Software Update Application] (.Acer Incorporated.) -- C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472928] (.Activate.) =>.Acer Incorporated®
[MD5.00000000000000000000000000000000] [APT] [Start Registry Reviver for DESKTOP-9BU5FQ9@CATHERINE(logon)] (...) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe (.not file.) [0] (.Activate.) =>PUP.Optional.RegistryReviver
[MD5.00000000000000000000000000000000] [APT] [Start Registry Reviver Schedule] (...) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe (.not file.) [0] (.Activate.) =>PUP.Optional.RegistryReviver
[MD5.00000000000000000000000000000000] [APT] [Start Registry Reviver Update] (...) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe (.not file.) [0] (.Activate.) =>PUP.Optional.RegistryReviver
[MD5.00000000000000000000000000000000] [APT] [System Healer Task] (...) -- C:\PROGRA~2\SYSTEM~1\RESCUE~1.EXE (.not file.) [0] (.Activate.) =>PUP.Optional.SystemHealer
[MD5.00000000000000000000000000000000] [APT] [System HealerPeriod] (...) -- C:\Program Files (x86)\SystemHealer\SystemHealer.exe (.not file.) [0] (.Activate.) =>PUP.Optional.SystemHealer
[MD5.00000000000000000000000000000000] [APT] [System HealerStartUp] (...) -- C:\Program Files (x86)\SystemHealer\SystemHealer.exe (.not file.) [0] (.Activate.) =>PUP.Optional.SystemHealer
[MD5.00000000000000000000000000000000] [APT] [SystemHealer Monitor] (...) -- C:\Program Files (x86)\SystemHealer\HealerConsole.exe (.not file.) [0] (.Activate.) =>PUP.Optional.SystemHealer
[MD5.00000000000000000000000000000000] [APT] [SystemHealer Run Delay] (...) -- C:\Program Files (x86)\SystemHealer\SystemHealer.exe (.not file.) [0] (.Activate.) =>PUP.Optional.SystemHealer
[MD5.6C531EBEFA4718C279D1C1729C77D230] [APT] [UbtFrameworkService] (.TODO: .) -- C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [216296] (.Activate.) =>.Acer Incorporated®
[MD5.84078359DA7FF6B14A360CE97AD898A6] [APT] [WinZip Malware Protector_startup] (.Nico Mak Computing.) -- C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe [6792944] (.Activate.) =>.WinZip Computing LLC®
[MD5.00000000000000000000000000000000] [APT] [{7FD8E7D0-8178-43F0-AA40-E5F0027CBBAF}] (...) -- C:\Users\CATHERINE\Downloads\RCFR205DOGTC3.EXE (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated®
O39 - APT: Registry Optimizer_DEFAULT - (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Windows\Tasks\Registry Optimizer_DEFAULT.job [336] =>.WinZip Computing LLC®
O39 - APT: Registry Optimizer_UPDATES - (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Windows\Tasks\Registry Optimizer_UPDATES.job [344] =>.WinZip Computing LLC®
O39 - APT: Start Registry Reviver for DESKTOP-9BU5FQ9@CATHERINE(logon) - (...) -- C:\Windows\Tasks\Start Registry Reviver for DESKTOP-9BU5FQ9@CATHERINE(logon).job [364] (.Orphan.) =>PUP.Optional.RegistryReviver
O39 - APT: System HealerPeriod - (...) -- C:\Windows\Tasks\System HealerPeriod.job [312] (.Orphan.) =>PUP.Optional.SystemHealer
O39 - APT: System HealerStartUp - (...) -- C:\Windows\Tasks\System HealerStartUp.job [312] (.Orphan.) =>PUP.Optional.SystemHealer
O39 - APT: abDocsDllLoader - (...) -- C:\Windows\System32\Tasks\abDocsDllLoader [3404] =>.Acer Incorporated®
O39 - APT: ACC - (.(C) All rights reserved.) -- C:\Windows\System32\Tasks\ACC [3778] =>.Acer Incorporated®
O39 - APT: ACCAgent - (.(C) All rights reserved.) -- C:\Windows\System32\Tasks\ACCAgent [4614] =>.Acer Incorporated®
O39 - APT: ACCBackgroundApplication - (.(C)All rights reserved.) -- C:\Windows\System32\Tasks\ACCBackgroundApplication [3060] =>.Acer Incorporated®
O39 - APT: AcerCloud - (.Acer.) -- C:\Windows\System32\Tasks\AcerCloud [3388] =>.Acer Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3988] =>.Adobe Systems Incorporated®
O39 - APT: Audio Invert Utility - (.Acer Incorporated.) -- C:\Windows\System32\Tasks\Audio Invert Utility [3014] =>.Acer Incorporated®
O39 - APT: Avast SecureLine - (.AVAST Software.) -- C:\Windows\System32\Tasks\Avast SecureLine [2128] =>.AVAST Software a.s.®
O39 - APT: avast! SL Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! SL Update [3978] =>.AVAST Software a.s.®
O39 - APT: BacKGroundAgent - (.Acer Incorporated.) -- C:\Windows\System32\Tasks\BacKGroundAgent [3508] =>.Acer Incorporated®
O39 - APT: ByteFence - (.Byte Technologies LLC.) -- C:\Windows\System32\Tasks\ByteFence [3470] =>.Superfluous.ByteFence
O39 - APT: ByteFence Scan - (.Byte Technologies LLC.) -- C:\Windows\System32\Tasks\ByteFence Scan [3562] =>.Superfluous.ByteFence
O39 - APT: DNSWAXHAW - (...) -- C:\Windows\System32\Tasks\DNSWAXHAW [22222] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: FUBTrackingByPLD - (.Copyright © 2015.) -- C:\Windows\System32\Tasks\FUBTrackingByPLD [2942] =>.Acer Incorporated®
O39 - APT: Power Management - (.Acer Incorporated.) -- C:\Windows\System32\Tasks\Power Management [2998] =>.Acer Incorporated®
O39 - APT: Quick Access - (.Acer Incorporated.) -- C:\Windows\System32\Tasks\Quick Access [2956] =>.Acer Incorporated®
O39 - APT: Registry Optimizer - (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Windows\System32\Tasks\Registry Optimizer [3208] =>.WinZip Computing LLC®
O39 - APT: Registry Optimizer_DEFAULT - (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Windows\System32\Tasks\Registry Optimizer_DEFAULT [3020] =>.WinZip Computing LLC®
O39 - APT: Registry Optimizer_UPDATES - (.WinZip Computing, S.L. (WinZip Computing).) -- C:\Windows\System32\Tasks\Registry Optimizer_UPDATES [3176] =>.WinZip Computing LLC®
O39 - APT: Software Update Application - (.Acer Incorporated.) -- C:\Windows\System32\Tasks\Software Update Application [5404] =>.Acer Incorporated®
O39 - APT: Start Registry Reviver for DESKTOP-9BU5FQ9@CATHERINE(logon) - (...) -- C:\Windows\System32\Tasks\Start Registry Reviver for DESKTOP-9BU5FQ9@CATHERINE(logon) [2812] (.Orphan.) =>PUP.Optional.RegistryReviver
O39 - APT: Start Registry Reviver Schedule - (...) -- C:\Windows\System32\Tasks\Start Registry Reviver Schedule [3558] (.Orphan.) =>PUP.Optional.RegistryReviver
O39 - APT: Start Registry Reviver Update - (...) -- C:\Windows\System32\Tasks\Start Registry Reviver Update [3486] (.Orphan.) =>PUP.Optional.RegistryReviver
O39 - APT: System Healer Task - (...) -- C:\Windows\System32\Tasks\System Healer Task [3690] (.Orphan.) =>PUP.Optional.SystemHealer
O39 - APT: System HealerPeriod - (...) -- C:\Windows\System32\Tasks\System HealerPeriod [2944] (.Orphan.) =>PUP.Optional.SystemHealer
O39 - APT: System HealerStartUp - (...) -- C:\Windows\System32\Tasks\System HealerStartUp [2650] (.Orphan.) =>PUP.Optional.SystemHealer
O39 - APT: SystemHealer Monitor - (...) -- C:\Windows\System32\Tasks\SystemHealer Monitor [3378] (.Orphan.) =>PUP.Optional.SystemHealer
O39 - APT: SystemHealer Run Delay - (...) -- C:\Windows\System32\Tasks\SystemHealer Run Delay [3448] (.Orphan.) =>PUP.Optional.SystemHealer
O39 - APT: UbtFrameworkService - (.TODO: .) -- C:\Windows\System32\Tasks\UbtFrameworkService [3342] =>.Acer Incorporated®
O39 - APT: WinZip Malware Protector_startup - (.Nico Mak Computing.) -- C:\Windows\System32\Tasks\WinZip Malware Protector_startup [3258] =>.WinZip Computing LLC®

---\\ Processus lancés (43) - 5s
[MD5.6ABFDD2BA74DFA3C909FDF6746EB77B1] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [368552] [PID.1128] =>.Intel Corporation - pGFX®
[MD5.41D709EB4211F6F6411F6105FA39518F] - (.Acer Incorporated - CCD Monitor Service.) -- C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2860760] [PID.1924] =>.Acer Incorporated®
[MD5.9C7C876ACB9B707ECD08BD434C46A4D3] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\avp.exe [194000] [PID.1932] =>.Kaspersky Lab®
[MD5.976966A13B587E2FEB883B516D868B6B] - (.Amazon Inc. - The Amazon 1Button App.) -- c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe [436032] [PID.1956] =>.Amazon Services LLC®
[MD5.8828725F79A93611CB4AB80B65DEC4F9] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [640928] [PID.1968] =>.Intel Corporation-Wireless Connectivity Solutions®
[MD5.5B5E6E408108AF00180C6F960C114161] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\Windows\SysWOW64\esif_uf.exe [1385640] [PID.1984] =>.Intel(R) Software®
[MD5.9AC1CDE7BBDDD74F077EDBE7E7565569] - (.Intel Corporation - Intel(R) Wireless Bluetooth(R) iBtSiva Serv.) -- C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [165104] [PID.860] =>.Intel Corporation-Wireless Connectivity Solutions®
[MD5.EA160DB2589350DFF52C7ACCD7763187] - (...) -- C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe [592392] [PID.2244] =>.AVAST Software a.s.®
[MD5.0060A50F5E3A397E1F84B0C8F5F9898B] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [157088] [PID.2252] =>.Intel Corporation-Wireless Connectivity Solutions®
[MD5.CCDDFF7573F8D12831F98435108F03F1] - (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) -- C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [254264] [PID.2264] =>.Superfluous.ByteFence
[MD5.8BA550098E9A09FA934C05F0CF9D5857] - (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831200] [PID.2360] =>.Intel Corporation-Wireless Connectivity Solutions®
[MD5.D232A1F1DD250F9B9944F0D98045FA9B] - (.Acer Incorporated - QASvc.) -- C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400] [PID.5700] =>.Acer Incorporated®
[MD5.605750DA0741F2B28906BD27EFCB78D8] - (.Acer Incorporated - QALSvc.) -- C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [398176] [PID.5800] =>.Acer Incorporated®
[MD5.33AB22661E4DE1701F41CAFFB9DA1FEF] - (.Acer Cloud Technology - AcerCloud Client.) -- C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe [9685208] [PID.6268] =>.Acer Incorporated®
[MD5.B17FB7318D7CB8E315309F7484461369] - (.Acer Incorporated - ePowerSvc.) -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568] [PID.6584] =>.Acer Incorporated®
[MD5.40AC93BBF9EF8AF973AD1F22E6668B91] - (.Dashlane SAS - DashlaneUpgradeService.) -- C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [75056] [PID.4828] =>.Dashlane®
[MD5.DCEABCDB2EAF57CEDEF5FD5D017ABE1D] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [174368] [PID.6188] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
[MD5.AD53262AFF486D28190439D3A59C80F7] - (.acer - UEIPSvc.) -- C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040] [PID.6708] =>.Acer Incorporated®
[MD5.DF8DBBD8F5342C7BA598C606602B6352] - (.Copyright © 2014 - Intel(R) Security Assist.) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240] [PID.4656]
[MD5.70AF0E844C9A684236B96E582D2B2E61] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\avpui.exe [192768] [PID.6848] =>.Kaspersky Lab®
[MD5.F35D3FFE6557C06E3AA8760774442DB7] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Frame.) -- C:\Windows\Temp\DPTF\esif_assist_64.exe [257192] [PID.5892] =>.Intel(R) Software®
[MD5.84078359DA7FF6B14A360CE97AD898A6] - (.Nico Mak Computing - WinZip Malware Protector.) -- C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe [6792944] [PID.8032] =>.WinZip Computing LLC®
[MD5.7AB0DFD81DF095AC73DDAC2071E8A84A] - (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) -- C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe [564024] [PID.5236] =>.Superfluous.ByteFence
[MD5.AFEC4BEB911656F31FF99341B1FEABCA] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [346520] [PID.2020] =>.Intel Corporation - pGFX®
[MD5.7EF320747504299A8235C2D8AEC806DB] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [268184] [PID.5012] =>.Intel Corporation - pGFX®
[MD5.36BEE80828390E9F17D5FDE8C88C6CC2] - (...) -- C:\Windows\System32\igfxTray.exe [415128] [PID.8036] =>.Intel Corporation - pGFX®
[MD5.91FC9F1BD9C4C99BA03062E473F60B6C] - (.Acer Incorporated - QAAgent.) -- C:\Program Files\Acer\Acer Quick Access\QAAgent.exe [395104] [PID.6488] =>.Acer Incorporated®
[MD5.C5ED6DCC6D430209807CB48006F85DF9] - (.Acer Incorporated - QALockHandler.) -- C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe [387936] [PID.5648] =>.Acer Incorporated®
[MD5.4A69E5E2556FCFFDB5D3D2148F4DF464] - (.Acer Incorporated - QAAdminAgent.) -- C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe [513888] [PID.2096] =>.Acer Incorporated®
[MD5.FD7D3964459B5809D84C8A28FA6F5914] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16427256] [PID.5324] =>.Realtek Semiconductor Corp®
[MD5.DF8DBBD8F5342C7BA598C606602B6352] - (.Copyright © 2014 - Intel(R) Security Assist.) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240] [PID.7128]
[MD5.D246B77DF1B4302BDC1332986F26815C] - (...) -- C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312] [PID.3456] =>.Acer Incorporated®
[MD5.95E024C76C8D9DECFFF08671060F66F8] - (.Byte Technologies LLC - ByteFence Anti-Malware.) -- C:\Program Files\ByteFence\ByteFence.exe [1516344] [PID.6148] =>.Superfluous.ByteFence
[MD5.30730E5F04C6AE04B219307FF8EF608B] - (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [5479680] [PID.4260] =>.Acer Incorporated®
[MD5.A57A52AC228DE54AD81466E1AD0DE4CF] - (.Acer Incorporate - AudioInvertAgent.) -- C:\Program Files (x86)\Acer\Acer Audio Invert Utility\AudioInvertAgent.exe [208104] [PID.3444] =>.Acer Incorporated®
[MD5.0F3A93636876BA84D92401882F16E4C0] - (.Intel Corporation - igfxext Module.) -- C:\Windows\System32\igfxext.exe [236456] [PID.6792] =>.Intel Corporation - pGFX®
[MD5.BB9135E1FD46E99949F644AA0D4329C0] - (.Acer Incorporated - ePowerEvent.) -- C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe [407296] [PID.696] =>.Acer Incorporated®
[MD5.7D29C7F1C19F0E3C7ACBC7028400C389] - (.Copyright © 2015 - FubTracking.) -- C:\OEM\Preload\FubTracking\FubTracking.exe [30976] [PID.3460] =>.Acer Incorporated®
[MD5.DBA34666ADB6ECA5197C6E727F9EF2F9] - (.AVAST Software - SecureLine.) -- C:\Program Files\AVAST Software\SecureLine\SecureLine.exe [3438680] [PID.2328] =>.AVAST Software a.s.®
[MD5.0DAE22CD426F3B569124E1DD0046B379] - (.Acer - Acer Portal.) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2740440] [PID.5548] =>.Acer Incorporated®
[MD5.962C647021EF055DEDDAD5539701F4E5] - (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752] [PID.4928] =>.Acer Incorporated®
[MD5.96AECC7364035DD88B8CE6ED625F60BE] - (.(C)All rights reserved - ACCStd.) -- C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4644256] [PID.4708] =>.Acer Incorporated®
[MD5.1F0FD5F97808913DCE17D91E84052308] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\CATHERINE\AppData\Roaming\ZHP\ZHPDiag3.exe [2221568] [PID.6552] =>.Nicolas Coolman

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (38) - 13s
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\abb@amazon.com.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-fr@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-nl@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-pl@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-pt-BR@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-pt-PT@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-ru@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-sk@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-sl@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-sr@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-sv-SE@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-th@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-tr@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-uk@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-zh-CN@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\CATHERINE\AppData\Roaming\Mozilla\Firefox\Profiles\qwaosxk6.default\extensions\langpack-zh-TW@firefox.mozilla.org.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - EXT: (.Amazon - Amazon 1Button App for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb@amazon.com =>.Amazon
P2 - EXT: (.L'équipe FrenchMozilla> - Français Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nb-NO@firefox.mozilla.org
P2 - EXT: (.Mozilla-NL> - Nederlands (NL) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nl@firefox.mozilla.org
P2 - EXT: (.Aviary.pl> - Polski Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pl@firefox.mozilla.org
P2 - EXT: (.br.mozdev.org> - Português Brasileiro Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-BR@firefox.mozilla.org
P2 - EXT: (.Projecto de localização do Mozilla para Português> - Português Portugal Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-PT@firefox.mozilla.org
P2 - EXT: (.Mozilla Russia> - Russian (RU) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ru@firefox.mozilla.org
P2 - EXT: (.Mozilla.sk> - Slovak (SK) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sk@firefox.mozilla.org
P2 - EXT: (.mozilla.org> - Slovenski jezik Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sl@firefox.mozilla.org
P2 - EXT: (.Мозила (mozilla.org)> - српски (sr) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sr@firefox.mozilla.org
P2 - EXT: (.Mozilla-sv> - Svenska (SE) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sv-SE@firefox.mozilla.org
P2 - EXT: (.mozilla.org> - Thai Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-th@firefox.mozilla.org
P2 - EXT: (.mozilla.org.tr> - Türkçe (TR) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-tr@firefox.mozilla.org
P2 - EXT: (.Mozilla.org.ua> - Ukrainian (UA) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-uk@firefox.mozilla.org
P2 - EXT: (.mozilla.org> - Chinese Simplified (zh-CN) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-CN@firefox.mozilla.org
P2 - EXT: (.Mozilla Taiwan Community (MozTW)> - Traditional Chinese (zh-TW) Language Pack.) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-TW@firefox.mozilla.org
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@kaspersky.com/content_blocker_663BE8] - (.kaspersky.com.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\FFExt\content_blocker@kaspersky.com =>.kaspersky.com
P2 - FPN: [HKLM] [@kaspersky.com/online_banking_08806E] - (.kaspersky.com.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\FFExt\online_banking@kaspersky.com =>.kaspersky.com
P2 - FPN: [HKLM] [@kaspersky.com/virtual_keyboard_074028] - (.kaspersky.com.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\FFExt\virtual_keyboard@kaspersky.com =>.kaspersky.com

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (18) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer15.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer15.msn.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer,Proxy Management (2) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (60)

---\\ Browser Helper Object de navigateur (BHO) (3) - 1s
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} . (.Kaspersky Lab ZAO - Cumulative module contains VK, CB and OB pl.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\IEExt\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {93BC2EA7-2F17-4729-948A-D2E03FFB2412} . (.Kaspersky Lab ZAO - Cumulative module contains VK, CB and OB pl.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\IEExt\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Safe Money Plugin [64Bits] - {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} . (.Kaspersky Lab ZAO - Cumulative module contains VK, CB and OB pl.) -- C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\IEExt\ie_plugin.dll =>.Kaspersky Lab®

---\\ Applications lancées au démarrage du système (9) - 1s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [abDocsDllLoader] . (...) -- C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe =>.Acer Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [isa] . (.Copyright © 2014 - Intel(R) Security Assist.) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2876350625-3202696227-1664650241-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2876350625-3202696227-1664650241-1001\..\RunOnce: [Uninstall C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 (.not file.)

---\\ Raccourcis Global Startup (22) - 5s
O4 - GS\Desktop [Administrateur]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\avpui.exe =>.Kaspersky Lab®
O4 - GS\Desktop [Administrateur]: Ramdam Classique.LNK . (...) C:\Program Files (x86)\GOTO.games\Ramdam Classique\ramdam.exe
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\CATHERINE\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\TaskBar [Administrateur]: Acer Portal.lnk . (.Acer - Acer Portal.) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe =>.Acer Incorporated®
O4 - GS\TaskBar [Administrateur]: Acer Quick Access.lnk . (.Acer Incorporated - .) C:\Program Files (x86)\Acer\Acer Quick Access\QuickAccess.exe =>.Acer Incorporated
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Desktop [CATHERINE]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\avpui.exe =>.Kaspersky Lab®
O4 - GS\Desktop [CATHERINE]: Ramdam Classique.LNK . (...) C:\Program Files (x86)\GOTO.games\Ramdam Classique\ramdam.exe
O4 - GS\Desktop [CATHERINE]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\CATHERINE\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\TaskBar [CATHERINE]: Acer Portal.lnk . (.Acer - Acer Portal.) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe =>.Acer Incorporated®
O4 - GS\TaskBar [CATHERINE]: Acer Quick Access.lnk . (.Acer Incorporated - .) C:\Program Files (x86)\Acer\Acer Quick Access\QuickAccess.exe =>.Acer Incorporated
O4 - GS\TaskBar [CATHERINE]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: abDocs.lnk . (.acer - abDocs.) C:\Program Files (x86)\Acer\abDocs\abDocs.exe =>.Acer Incorporated®
O4 - GS\CommonDesktop [Public]: abPhoto.lnk . (.Acer Incorporated - abPhoto.) C:\Program Files (x86)\Acer\abPhoto\abPhoto.exe =>.Acer Incorporated®
O4 - GS\CommonDesktop [Public]: Acer Care Center.lnk . (.(C) All rights reserved - Care Center.) C:\Program Files (x86)\Acer\Care Center\CareCenter.exe =>.Acer Incorporated®
O4 - GS\CommonDesktop [Public]: Acheter en ligne.lnk . (...) C:\Program Files (x86)\Accessory Store\StartUrl.exe
O4 - GS\CommonDesktop [Public]: Booking.com.lnk . (...) C:\Program Files (x86)\Booking.COM\StartURL.exe
O4 - GS\CommonDesktop [Public]: eBay.lnk . (...) c:\Windows\Installer\{3DC26EA7-03E3-4353-9424-EEB7A34A7504}\_697C8F93ABDF89FB4ABDD9.exe
O4 - GS\CommonDesktop [Public]: Suite de Sécurité Orange.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Orange\Suite de Sécurité Orange 9.12\avpui.exe =>.Kaspersky Lab®
O4 - GS\CommonDesktop [Public]: WinZip Malware Protector.lnk . (.Nico Mak Computing - WinZip Malware Protector.) C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe =>.WinZip Computing LLC®
O4 - GS\CommonDesktop [Public]: WinZip Registry Optimizer.lnk . (.WinZip Computing, S.L. (WinZip Computing) - WinZip Registry Optimizer.) C:\Program Files (x86)\WinZip Registry Optimizer\Winzipro.exe =>.WinZip Computing LLC®
O4 - GS\Programs [Public]: Gestionnaire audio HD.lnk . (.Realtek Semiconductor - .) C:\Program Files (x86)\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor

---\\ Modification Domaine/Adresses DNS (10) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.171 82.163.142.173 =>PUP.Optional.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = wifimodem.orange
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{6d5dd2b3-d923-4a4d-8351-8fcbe49d179a}: NameServer = 82.163.143.171 82.163.142.173 =>PUP.Optional.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{ca763d31-3113-44cf-9cd4-9f8d52c64614}: NameServer = 82.163.143.171 82.163.142.173 =>PUP.Optional.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{cb81d6fc-d003-4c97-9c16-79f9de8dd5f6}: NameServer = 82.163.143.171 82.163.142.173 =>PUP.Optional.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{6d5dd2b3-d923-4a4d-8351-8fcbe49d179a}: DhcpNameServer = 82.163.143.171 =>PUP.Optional.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{ca763d31-3113-44cf-9cd4-9f8d52c64614}: DhcpNameServer = 82.163.143.171 =>PUP.Optional.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{cb81d6fc-d003-4c97-9c16-79f9de8dd5f6}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{cb81d6fc-d003-4c97-9c16-79f9de8dd5f6}: DhcpDomain = wifimodem.orange

---\\ Protocole additionnel (21) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation

---\\ Logiciels installés (46) - 17s
O42 - Logiciel: abDocs - (.Acer Incorporated.) [HKLM][64Bits] -- {CA4FE8B0-298C-4E5D-A486-F33B126D6A0A} =>.Acer Incorporated®
O42 - Logiciel: abDocs Office AddIn - (.Acer Incorporated.) [HKLM][64Bits] -- {DCBF3379-246B-47E1-8173-639B63940838} =>.Acer Incorporated
O42 - Logiciel: abFiles - (.Acer Incorporated.) [HKLM][64Bits] -- {13885028-098C-4799-9B71-27DAC96502D5} =>.Acer Incorporated®
O42 - Logiciel: abPhoto - (.Acer Incorporated.) [HKLM][64Bits] -- {B5AD89F2-03D3-4206-8487-018298007DD0} =>.Acer Incorporated®
O42 - Logiciel: Acer Audio Invert Utility - (.Acer Incorporated.) [HKLM][64Bits] -- {11086334-4198-44C7-8C67-7B49E4AC925A} =>.Acer Incorporated
O42 - Logiciel: Acer Care Center - (.Acer Incorporated.) [HKLM][64Bits] -- {1AF41E84-3408-499A-8C93-8891F0612719} =>.Acer Incorporated
O42 - Logiciel: Acer Explorer Agent - (.Acer Incorporated.) [HKLM][64Bits] -- {4D0F42CF-1693-43D9-BDC8-19141D023EE0} =>.Acer Incorporated
O42 - Logiciel: Acer Portal - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13} =>.Acer Incorporated®
O42 - Logiciel: Acer Power Management - (.Acer Incorporated.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479} =>.Acer Incorporated
O42 - Logiciel: Acer Quick Access - (.Acer Incorporated.) [HKLM][64Bits] -- {E3678E72-78E3-4F91-A9FB-913876FF6DA2} =>.Acer Incorporated
O42 - Logiciel: Acer UEIP Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {12A718F2-2357-4D41-9E1F-18583A4745F7} =>.Acer Incorporated
O42 - Logiciel: Adobe Flash Player 22 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Amazon 1Button App - (.Amazon.) [HKLM][64Bits] -- {B6DCCCD3-520D-4485-B642-FCC136CE12C3} =>.Amazon
O42 - Logiciel: AOP Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {4A37A114-702F-4055-A4B6-16571D4A5353} =>.Acer Incorporated®
O42 - Logiciel: Avast SecureLine - (.AVAST Software.) [HKLM][64Bits] -- {2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1 =>.AVAST Software a.s.®
O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence =>.Byte Technologies LLC
O42 - Logiciel: Dashlane Upgrade Service - (.Dashlane SAS.) [HKLM][64Bits] -- Dashlane Upgrade Service =>.Dashlane®
O42 - Logiciel: DNSUnlocker - (...) [HKLM][64Bits] -- {E1527582-8509-4011-B922-29E3FB548882}_is1 =>PUP.Optional.DNSUnlocker
O42 - Logiciel: DriverSetupUtility - (.Acer Incorporated.) [HKLM][64Bits] -- {2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6} =>.Acer Incorporated
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {3DC26EA7-03E3-4353-9424-EEB7A34A7504} =>.OEM
O42 - Logiciel: ELAN HIDI2C Filter Driver X64 13.6.3.1_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation®
O42 - Logiciel: Foxit PhantomPDF - (.Foxit Software Inc..) [HKLM][64Bits] -- {A4023BDF-82D5-412D-9D58-8C2819EBFE2E} =>.Foxit Software Inc.
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {B685D0AD-42A8-4A39-9BFE-8C063FA9AF29} =>.Intel Corporation
O42 - Logiciel: Intel(R) Dynamic Platform and Thermal Framework - (.Intel Corporation.) [HKLM][64Bits] -- {654EE65D-FAA4-4EA6-8C07-DC94E6A304D4} =>.Intel(R) Software®
O42 - Logiciel: Intel(R) PRO/Wireless Driver - (.Intel Corporation.) [HKLM][64Bits] -- {9505cd8b-b062-4d1d-ae3e-600497735a5a} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {176E2755-0A17-42C6-88E2-192AB2131278} =>.Intel Corporation
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {3ABD3A6F-4F6A-4659-820A-D272B3DA6D21} =>.Intel Corporation
O42 - Logiciel: Intel(R) Trusted Execution Engine Driver - (.Intel Corporation.) [HKLM][64Bits] -- {8A9DD4F0-A3DF-43CC-A66D-604DB6C8015A} =>.Intel Corporation
O42 - Logiciel: Intel(R) Virtual Buttons - (.Intel Corporation.) [HKLM][64Bits] -- 1992736F-C90A-481C-B21B-EE34CAD07387 =>.Intel Corporation
O42 - Logiciel: Intel(R) Wireless Bluetooth(R) - (.Intel Corporation.) [HKLM][64Bits] -- {D15F3A13-B4B5-417C-859F-1666CFE06263} =>.Intel Corporation
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {61D0924A-4791-4AD5-B6C6-38E3420B6D53} =>.Intel Corporation
O42 - Logiciel: Intel® Security Assist - (.Intel Corporation.) [HKLM][64Bits] -- {84DB01CB-7EB7-4261-9249-99A32768D991} =>.Intel Corporation
O42 - Logiciel: Logiciel Intel® PROSet/Wireless - (.Intel Corporation.) [HKLM][64Bits] -- {d9e230c1-06bb-4b78-a9f1-c1ddce14e6fc} =>.Intel Corporation-Wireless Connectivity Solutions®
O42 - Logiciel: Logiciel pour périphérique à chipset Intel® - (.Intel(R) Corporation.) [HKLM][64Bits] -- {c6cff78a-cccb-49d5-be68-ae0ec5f0d48a} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Mozilla Firefox 43.0.1 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 43.0.1 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Ramdam Classique - (...) [HKLM][64Bits] -- Ramdam Classique
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Registry Reviver - (.ReviverSoft LLC.) [HKLM][64Bits] -- Registry Reviver =>PUP.Optional.RegistryReviver
O42 - Logiciel: Suite de Sécurité Orange - (.Orange.) [HKLM][64Bits] -- {02FECEE0-16B2-43DB-BC3B-C844477FC142} =>.Orange
O42 - Logiciel: Suite de Sécurité Orange - (.Orange.) [HKLM][64Bits] -- InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142} =>.Orange
O42 - Logiciel: System Healer - (.SystemHealer.) [HKLM][64Bits] -- SystemHealer =>PUP.Optional.SystemHealer
O42 - Logiciel: WinZip Malware Protector - (.WinZip International LLC.) [HKLM][64Bits] -- WinZip Malware Protector_is1 =>.WinZip Computing LLC®
O42 - Logiciel: WinZip Registry Optimizer - (.WinZip International LLC.) [HKLM][64Bits] -- WinZip Registry Optimizer_is1 =>.WinZip Computing LLC®

---\\ HKCU & HKLM Software Keys (54) - 17s
HKLM\SOFTWARE\Wow6432Node\5da059a482fd494db3f252126fbc3d5b =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\ByteFence =>.Superfluous.ByteFence
HKLM\SOFTWARE\Wow6432Node\Clearfi
HKLM\SOFTWARE\Wow6432Node\DashlaneUpgrade
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nico Mak Computing
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OEM
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SRS Labs
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ByteFence =>.Superfluous.ByteFence
HKCU\SOFTWARE\csastats
HKCU\SOFTWARE\DashlaneUpgrade
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\Ecommfactory =>.Superfluous.Downloader
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Goto.Games
HKCU\SOFTWARE\ICSW1.22 =>Adware.InstallCore
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\OEM
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\System Healer =>PUP.Optional.SystemHealer
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Amazon

---\\ Contenu des dossiers Programmes (164) - 23s
O43 - CFD: 14/05/2016 - [] D -- C:\Program Files\Accessory Store =>.Acer Incorporated®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\Acer =>.Acer Incorporated®
O43 - CFD: 20/07/2015 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software a.s.®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\Booking.COM =>.Acer Incorporated®
O43 - CFD: 26/06/2016 - [] D -- C:\Program Files\ByteFence =>.Superfluous.ByteFence
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files\Common Files
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\DriverSetupUtility =>.Acer Incorporated®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\Elantech =>.ELAN Microelectronics Corporation®
O43 - CFD: 15/05/2016 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\Intel =>.Intel Corporation-Wireless Connectivity Solutions®
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 20/07/2015 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 20/07/2015 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 10/07/2015 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 15/05/2016 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 10/07/2015 - [] SHD -- C:\Program Files\Windows Sidebar
O43 - CFD: 29/06/2016 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation®
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files\WindowsPowerShell
O43 - CFD: 15/05/2016 - [] D -- C:\Program Files (x86)\Acer =>.Acer Incorporated®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Amazon =>.Amazon Services LLC®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Dashlane =>.Dashlane®
O43 - CFD: 26/06/2016 - [] D -- C:\Program Files (x86)\DNSWAXHAW
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Foxit PhantomPDF =>.Foxit Software Incorporated®
O43 - CFD: 21/05/2016 - [] D -- C:\Program Files (x86)\GOTO.games
O43 - CFD: 26/09/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Realtek Semiconductor Corp®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 20/06/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 20/06/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 20/07/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 14/05/2016 - [] D -- C:\Program Files (x86)\OEM
O43 - CFD: 21/05/2016 - [] D -- C:\Program Files (x86)\Orange =>.Kaspersky Lab®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 20/07/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 26/09/2015 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 16/05/2016 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 10/07/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 26/05/2016 - [] D -- C:\Program Files (x86)\WinZip Malware Protector =>.WinZip Computing LLC®
O43 - CFD: 26/05/2016 - [] D -- C:\Program Files (x86)\WinZip Registry Optimizer =>.WinZip Computing LLC®
O43 - CFD: 16/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 20/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware =>.Superfluous.ByteFence
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 29/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 21/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite de Sécurité Orange
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Healer =>PUP.Optional.SystemHealer
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Malware Protector
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Registry Optimizer =>PUP.Optional.WinZipRegistry
O43 - CFD: 24/06/2016 - [0] D -- C:\ProgramData\51994aba
O43 - CFD: 16/05/2016 - [] D -- C:\ProgramData\Acer
O43 - CFD: 29/05/2016 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 20/07/2015 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 15/05/2016 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\ByteFence =>.Superfluous.ByteFence
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 14/05/2016 - [] D -- C:\ProgramData\Dashlane
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\DriverSetupUtility
O43 - CFD: 24/06/2016 - [0] D -- C:\ProgramData\e857cca9-6f03-1 =>.Superfluous.Polluteware
O43 - CFD: 24/06/2016 - [0] D -- C:\ProgramData\e857cca9-79a5-0 =>.Superfluous.Polluteware
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Intel.sav
O43 - CFD: 29/06/2016 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 16/05/2016 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 15/05/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 23/05/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 20/07/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 15/05/2016 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 20/07/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\Nico Mak Computing
O43 - CFD: 15/05/2016 - [] D -- C:\ProgramData\OEM
O43 - CFD: 14/05/2016 - [] D -- C:\ProgramData\OEM_YAHOO
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 29/05/2016 - [] D -- C:\ProgramData\ReviverSoft
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Roaming
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 16/05/2016 - [] D -- C:\ProgramData\Synaptics
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 24/06/2016 - [] D -- C:\ProgramData\{08a067c2-412c-0} =>.Superfluous.Polluteware
O43 - CFD: 24/06/2016 - [] D -- C:\ProgramData\{18b55e70-412c-1} =>.Superfluous.Polluteware
O43 - CFD: 26/09/2015 - [] HDC -- C:\ProgramData\{2B89F58C-32F7-46EC-A448-AECDF1F22B7B}
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 16/05/2016 - [0] D -- C:\Program Files (x86)\Common Files\McAfee
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 27/06/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Acer Incorporated
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Adobe
O43 - CFD: 15/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\AVAST Software
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Foxit Software
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Intel
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Macromedia
O43 - CFD: 02/06/2016 - [] SD -- C:\Users\CATHERINE\AppData\Roaming\Microsoft
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Mozilla
O43 - CFD: 26/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Nico Mak Computing
O43 - CFD: 26/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\System Healer =>PUP.Optional.SystemHealer
O43 - CFD: 29/06/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\ZHP
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\AOP SDK
O43 - CFD: 14/05/2016 - [0] SHD -- C:\Users\CATHERINE\AppData\Local\Application Data
O43 - CFD: 28/06/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\CareCenter
O43 - CFD: 27/06/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\clear.fi
O43 - CFD: 16/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Comms
O43 - CFD: 29/06/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\CrashDumps
O43 - CFD: 26/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Dropbox
O43 - CFD: 14/05/2016 - [0] SHD -- C:\Users\CATHERINE\AppData\Local\Historique
O43 - CFD: 29/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Macromedia
O43 - CFD: 26/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Microsoft
O43 - CFD: 02/06/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\MicrosoftEdge
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Mozilla
O43 - CFD: 16/05/2016 - [0] D -- C:\Users\CATHERINE\AppData\Local\NetworkTiles
O43 - CFD: 21/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Packages
O43 - CFD: 26/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Programs
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Publishers
O43 - CFD: 29/06/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\Temp
O43 - CFD: 14/05/2016 - [0] SHD -- C:\Users\CATHERINE\AppData\Local\Temporary Internet Files
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\TileDataLayer
O43 - CFD: 21/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Local\VirtualStore
O43 - CFD: 26/05/2016 - [0] D -- C:\Users\CATHERINE\AppData\Local\Programs\Common
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 14/05/2016 - [] RD -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 20/06/2016 - [] RD -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 14/05/2016 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
O43 - CFD: 10/07/2015 - [] D -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/06/2016 - [] RD -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\CATHERINE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 0 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Acer
O43 - CFD: 0 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps
O43 - CFD: 0 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\DataSharing
O43 - CFD: 0 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\dcpsvc
O43 - CFD: 14/05/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft
O43 - CFD: 0 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Packages

---\\ Derniers fichiers créés dans Windows Prefetcher (2) - 17s
O45 - LFCP:[MD5.9A34AEE0067A52186D54ECA6E1BDF55C] 28/06/2016 A -- C:\Windows\Prefetch\REGISTRYREVIVER.EXE-361FEE62.pf =>PUP.Optional.RegistryReviver
O45 - LFCP:[MD5.5DA7D200D3CD715740BA8727C0D32E36] 29/05/2016 A -- C:\Windows\Prefetch\SYSTEMHEALER.EXE-1942CE3A.pf =>PUP.Optional.SystemHealer

---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\CATHERINE\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll =>.Microsoft Corporation®

---\\ Liste des pilotes du système (69) - 13s
O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:36 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athw8x.sys [4207104] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2015/07/22 14:04:20 A . (.Kaspersky Lab UK Ltd - Cryptographic Module.) -- C:\Windows\System32\drivers\cm_km_w.sys [247016] =>.Kaspersky Lab UK Ltd®
O58 - SDL:2015/06/26 05:53:20 A . (.Intel Corporation - DPTF ACPI Device (64-Bit).) -- C:\Windows\System32\drivers\dptf_acpi.sys [47096] =>.Intel(R) Software®
O58 - SDL:2015/06/26 05:53:22 A . (.Intel Corporation - DPTF CPU Device (64-Bit).) -- C:\Windows\System32\drivers\dptf_cpu.sys [43512] =>.Intel(R) Software®
O58 - SDL:2015/06/26 05:53:24 A . (.Intel Corporation - DPTF Zone (64-Bit).) -- C:\Windows\System32\drivers\esif_lf.sys [251384] =>.Intel(R) Software®
O58 - SDL:2015/06/09 08:36:00 A . (.ELAN Microelectronic Corp. - ELAN I2C Driver.) -- C:\Windows\System32\drivers\ETDI2C.sys [175152] =>.ELAN MICROELECTRONICS CORPORATION®
O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/06/03 10:26:44 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iagpioe.sys [41984] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/06/03 10:33:32 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iai2ce.sys [89592] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/06/03 10:35:41 A . (.Intel(R) Corporation - Intel(R) Serial IO HSUART Driver.) -- C:\Windows\System32\drivers\iauarte.sys [112640] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2015/06/18 11:28:34 A . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) USB Driver.) -- C:\Windows\System32\drivers\ibtusb.sys [167152] =>.Intel Corporation-Wireless Connectivity Solutions®
O58 - SDL:2016/05/14 21:35:44 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64lp.sys [5759240] =>.Intel Corporation - pGFX®
O58 - SDL:2015/07/10 04:41:46 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [464144] =>.Intel Corporation - Client Components Group®
O58 - SDL:2016/05/23 21:41:00 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab®
O58 - SDL:2016/05/26 21:35:04 A . (.Kaspersky Lab ZAO - Virtual Disk fre_wnet_x64.) -- C:\Windows\System32\drivers\kldisk.sys [64368] =>.Kaspersky Lab®
O58 - SDL:2012/07/27 17:38:24 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\Windows\System32\drivers\klelam.sys [29616] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2015/07/22 14:04:20 A . (.Kaspersky Lab ZAO - Filter Core [fre_win8_x64].) -- C:\Windows\System32\drivers\klflt.sys [159960] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 20:35:58 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\Windows\System32\drivers\klhk.sys [238000] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 21:41:03 A . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_win8_x64].) -- C:\Windows\System32\drivers\klif.sys [834992] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 21:41:04 A . (.AO Kaspersky Lab - Kaspersky Lab Intermediate Network Driver [.) -- C:\Windows\System32\drivers\klim6.sys [49240] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 20:36:06 A . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_win8_x.) -- C:\Windows\System32\drivers\klkbdflt.sys [49008] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 20:36:06 A . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_win8_x64].) -- C:\Windows\System32\drivers\klmouflt.sys [48504] =>.Kaspersky Lab®
O58 - SDL:2015/07/22 14:04:20 A . (.Kaspersky Lab ZAO - KLPD [fre_wnet_x64].) -- C:\Windows\System32\drivers\klpd.sys [24944] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 21:41:05 A . (.Kaspersky Lab ZAO - Network filtering component [fre_win8_x64].) -- C:\Windows\System32\drivers\klwfp.sys [77680] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 21:41:05 A . (.Kaspersky Lab ZAO - Network filtering component.) -- C:\Windows\System32\drivers\klwtp.sys [89272] =>.Kaspersky Lab®
O58 - SDL:2016/05/23 21:41:06 A . (.Kaspersky Lab ZAO - KNEPS Power [fre_wnet_amd64].) -- C:\Windows\System32\drivers\kneps.sys [190648] =>.Kaspersky Lab®
O58 - SDL:2015/07/09 11:01:44 A . (.Acer Incorporated - LMDriver.) -- C:\Windows\System32\drivers\LMDriver.sys [21344] =>.Acer Incorporated®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2015/06/21 23:16:56 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwbw02.sys [3776792] =>.Intel Corporation-Wireless Connectivity Solutions®
O58 - SDL:2015/06/21 23:17:32 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwtw02.sys [9391896] =>.Intel Corporation-Wireless Connectivity Solutions®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2015/07/09 11:01:44 A . (.Acer Incorporated - RadioShim.) -- C:\Windows\System32\drivers\RadioShim.sys [14688] =>.Acer Incorporated®
O58 - SDL:2015/06/18 09:54:00 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\Windows\System32\drivers\rt640x64.sys [895256] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/05/14 21:17:23 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4759800] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/06/26 14:56:32 A . (.Intel Corporation - Intel(R) Trusted Execution Engine Interface.) -- C:\Windows\System32\drivers\TXEIx64.sys [146232] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\Windows\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/04/14 03:59:02 A . (.Intel Corporation - Intel(R) Virtual Buttons.) -- C:\Windows\System32\drivers\VirtualButtons.sys [31280] =>.Intel(R) Software®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (3) - 5s
O61 - LFC: 2016/06/29 14:22:39 A . (..) -- C:\Users\CATHERINE\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2016/06/29 13:28:40 A . (..) -- C:\Users\CATHERINE\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_636027898446561466.bin [114561]
O61 - LFC: 2016/06/28 20:21:56 A . (..) -- C:\Users\CATHERINE\AppData\Local\Microsoft\Internet Explorer\UrlBlock\urlblock_636027304772630888.bin [112121]

---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®

---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (3) - 21s
O69 - SBI: SearchScopes [HKCU] {AA9A4890-4262-4441-8977-E2FFCBFB706C} - (Yahoo!) - http://fr.yhs4.search.yahoo.com/ =>.Yahoo Search
O69 - SBI: SearchScopes [HKLM] {AA9A4890-4262-4441-8977-E2FFCBFB706C} - (Yahoo!) - http://fr.yhs4.search.yahoo.com/ =>.Yahoo Search
O69 - SBI: SearchScopes [HKLM] {BE981136-DDBA-4123-A86D-18FB6909A6BF} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (41) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [283136] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1336832] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [954368] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [954880] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [93696] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1008640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [226304] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [324096] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [371200] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [95744] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\system32\wlidsvc.dll [2093056] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\system32\dcpsvc.dll [196096] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [680448] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [497152] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2239488] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1168896] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [593920] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\system32\dmwappushsvc.dll [63488] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\system32\XboxNetApiSvc.dll [1019392] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\system32\usocore.dll [350720] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [712704] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\system32\RDXService.dll [1016832] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [359936] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [237568] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [58368] =>.Microsoft Corporation

---\\ Recherche de clés de registre Tracing (4) - 1s
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>.Superfluous.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>.Superfluous.ByteFence
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DashlaneDownloader_RASAPI32 =>PUP.Optional.SoftwareEngine
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DashlaneDownloader_RASMANCS =>PUP.Optional.SoftwareEngine

---\\ Scan Additionnel (39) - 0s
C:\Windows\Tasks\Start Registry Reviver for DESKTOP-9BU5FQ9@CATHERINE(logon).job =>PUP.Optional.RegistryReviver
C:\Windows\Tasks\System HealerPeriod.job =>PUP.Optional.SystemHealer
C:\Windows\Tasks\System HealerStartUp.job =>PUP.Optional.SystemHealer
C:\Windows\System32\Tasks\Start Registry Reviver for DESKTOP-9BU5FQ9@CATHERINE(logon) =>PUP.Optional.RegistryReviver
C:\Windows\System32\Tasks\Start Registry Reviver Schedule =>PUP.Optional.RegistryReviver
C:\Windows\System32\Tasks\Start Registry Reviver Update =>PUP.Optional.RegistryReviver
C:\Windows\System32\Tasks\System Healer Task =>PUP.Optional.SystemHealer
C:\Windows\System32\Tasks\System HealerPeriod =>PUP.Optional.SystemHealer
C:\Windows\System32\Tasks\System HealerStartUp =>PUP.Optional.SystemHealer
C:\Windows\System32\Tasks\SystemHealer Monitor =>PUP.Optional.SystemHealer
C:\Windows\System32\Tasks\SystemHealer Run Delay =>PUP.Optional.SystemHealer
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Registry Reviver =>PUP.Optional.RegistryReviver
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1 =>PUP.Optional.DNSUnlocker
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SystemHealer =>PUP.Optional.SystemHealer
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1 =>PUP.Optional.DNSUnlocker
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SystemHealer =>PUP.Optional.SystemHealer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1 =>PUP.Optional.DNSUnlocker
HKLM\SOFTWARE\Wow6432Node\5da059a482fd494db3f252126fbc3d5b =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\ByteFence =>.Superfluous.ByteFence
HKCU\SOFTWARE\ByteFence =>.Superfluous.ByteFence
HKCU\SOFTWARE\Ecommfactory =>.Superfluous.Downloader
HKCU\SOFTWARE\ICSW1.22 =>Adware.InstallCore
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\System Healer =>PUP.Optional.SystemHealer
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware =>.Superfluous.ByteFence
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Healer =>PUP.Optional.SystemHealer
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Registry Optimizer =>PUP.Optional.WinZipRegistry
C:\ProgramData\ByteFence =>.Superfluous.ByteFence
C:\ProgramData\e857cca9-6f03-1 =>.Superfluous.Polluteware
C:\ProgramData\e857cca9-79a5-0 =>.Superfluous.Polluteware
C:\ProgramData\{08a067c2-412c-0} =>.Superfluous.Polluteware
C:\ProgramData\{18b55e70-412c-1} =>.Superfluous.Polluteware
C:\Users\CATHERINE\AppData\Roaming\System Healer =>PUP.Optional.SystemHealer
C:\Windows\Prefetch\REGISTRYREVIVER.EXE-361FEE62.pf =>PUP.Optional.RegistryReviver
C:\Windows\Prefetch\SYSTEMHEALER.EXE-1942CE3A.pf =>PUP.Optional.SystemHealer
HKLM64\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>.Superfluous.ByteFence
HKLM64\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>.Superfluous.ByteFence
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DashlaneDownloader_RASAPI32 =>PUP.Optional.SoftwareEngine
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DashlaneDownloader_RASMANCS =>PUP.Optional.SoftwareEngine

---\\ Récapitulatif des éléments trouvés sur votre station (10) - 0s
https://www.nicolascoolman.info/2016/04/29/superfluous-bytefence/ =>.Superfluous.ByteFence
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.RegistryReviver
http://www.nicolascoolman.fr/pup-optional-systemhealer/ =>PUP.Optional.SystemHealer
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DNSUnlocker
https://www.nicolascoolman.info/2016/04/30/pup-optional-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Downloader
https://www.nicolascoolman.info/2016/04/22/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WinZipRegistry
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Polluteware
http://www.nicolascoolman.fr/?p=1040 =>PUP.Optional.SoftwareEngine

~ End of the scan, 17089 items in 00h03mn59s (827)(0)