Mon pc est trop lent

Fermé
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021 - Modifié par ambrosleroi le 20/05/2014 à 15:15
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 - 20 mai 2014 à 20:38
bonjour à tous
j'ai grand besoin d'aide car mon pc est grave lent. il peut mettre des minutes a excecuter un programme ett de nombreuses minutes pour redemarer. j'ai acheter le pc avec mcafee comme anti virus incorporé par acer et a ce jour il a expiré. ne voulant plus renouvelé mon abonement avec mcaffee j'ain installer avast. mais jai beau essayer de dessinstaller mcafee mais il est toujour là. ce qui fait que je ne peux pas activer le par feu de avast. ...
j'ai ensuite installer adwcleaner sans oublier malwerbyte en passant ZHPdiag mais il est toujours lent et je viens d'installer cleaner pour nettoyer et pareil. pouvez vous m'aider. je vous remercie d'avance
je viens de recevoir ça après analyse avec malwerbyte
Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 20/05/2014
Heure de l'examen: 13:13:07
Fichier journal:
Administrateur: Oui

Version: 2.00.1.1004
Base de données Malveillants: v2014.05.14.06
Base de données Rootkits: v2014.03.27.01
Licence: Gratuite
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Chameleon: Désactivé(e)

Système d'exploitation: Windows 8
Processeur: x64
Système de fichiers: NTFS
Utilisateur: user

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 285226
Temps écoulé: 1 h, 25 min, 47 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Shuriken: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Clés du Registre: 3
PUP.Optional.Webget.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{dc264a72-fa75-4948-b881-ea8eff8e5dd2}, , [5df1d77a4b303bfb7ded3e0edd27b749],
PUP.Optional.Webget.A, HKU\S-1-5-21-2752213232-3105361922-2378072398-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{DC264A72-FA75-4948-B881-EA8EFF8E5DD2}, , [5df1d77a4b303bfb7ded3e0edd27b749],
PUP.Optional.Webget.A, HKU\S-1-5-21-2752213232-3105361922-2378072398-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{DC264A72-FA75-4948-B881-EA8EFF8E5DD2}, , [5df1d77a4b303bfb7ded3e0edd27b749],

Valeurs du Registre: 0
(No malicious items detected)

Données du Registre: 0
(No malicious items detected)

Dossiers: 1
PUP.Optional.Conduit.A, C:\Users\user\AppData\Local\Temp\CT3319415, , [5cf21f3299e2082ee0c1d897da28659b],

Fichiers: 7
PUP.Optional.Conduit.A, C:\Users\user\AppData\Local\Temp\86e79276-c02b-4f82-9b8f-1c5c808004f6\01net_Revo_Uninstaller.exe, , [301eb0a199e2ad8951593a0a718fff01],
PUP.Optional.Conduit.A, C:\Users\user\Downloads\01net_Revo_Uninstaller.exe, , [222c99b8e893cb6b8cdd0835df21be42],
PUP.Optional.NextInterActive, C:\Users\user\Downloads\McAfeeSetup.exe, , [b9952b26e39864d2f177330924e015eb],
PUP.Optional.Trovi.A, C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\mu3kxpss.default\searchplugins\trovi-search.xml, , [4b03e170b3c881b55a4d770845bd04fc],
PUP.Optional.Webget.A, C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\mu3kxpss.default\extensions\{9edd0ea8-2819-47c2-8320-b007d5996f8a}.xpi, , [3b131b367cff42f49cd4a0e24db51ce4],
PUP.Optional.Conduit.A, C:\Users\user\AppData\Local\Temp\CT3319415\ddt.csf, , [5cf21f3299e2082ee0c1d897da28659b],
PUP.Optional.Conduit.A, C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences, Bon: (), Mauvais: ( "homepage": "http://search.conduit.com/?ctid=CT2269050&SearchSource=48",), ,[0d4169e888f3b87e5048e58fc73d936d]

Secteurs physiques: 0
(No malicious items detected)


(end)
A voir également:

25 réponses

bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
20 mai 2014 à 15:32
Bonjour,
Deux antivirus sur le même ordinateur cela ne fait pas bon ménage donc :

Pour désinstaller Mac Afee télécharge et ouvre cet outil de désinstallation de Mac Afee : http://download.mcafee.com/products/licensed/cust_support_patches/MCPR.exe

Une fois Mac Afee désinstallé ton ordinateur est-il plus rapide ?
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 15:40
ok je cherche a desinstaller et je te fais signe
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 16:13
ok je crois avoir fait ce que tu m'as demandé. il est un peu lent mais plus rapide que ce que j'ai connu avant
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 16:14
je fais quoi a présent
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
20 mai 2014 à 16:17
Re,
Télécharge, installe et ouvre ZHPdiag lance l'analyse en cliquant sur Configurer puis sur la loupe sans + ni-, une fois l'analyse terminée tu auras un rapport ZHPDiag.txt sur le bureau tu le postes sur https://www.cjoint.com/ dont voici un tutoriel : https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers puis met le lien généré par Cjoint dans ta réponse.
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 16:21
ok
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 16:48
voici ce que j'ai reçu
~ Rapport de ZHPDiag v2014.5.14.63 - Nicolas Coolman (14/05/2014)
~ Lancé par user (20/05/2014 14:22:47)
~ Adresse du Site Web https://nicolascoolman.webs.com/
~ Blog d'analyse software : http://nicolascoolman.byethost7.com
~ Forums gratuits d'Assistance à la désinfection : https://nicolascoolman.webs.com/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16899
MFIE: Mozilla Firefox 28.0
GCIE: Google Chrome v34.0.1847.137 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : QGJYG
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2018
Malwarebytes Anti-Malware version 2.0.1.1004
Windows Defender W8

---\\ Logiciels d'optimisation du système
CCleaner v4.13

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 13 Plugin

---\\ Informations sur le système
~ Processor: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1738 MB (21% free)
System Restore: Activé (Enable)
System drive C: has 89 GB (63%) free of 139 GB

---\\ Mode de connexion au système
~ Computer Name: AMBROS
~ User Name: user
~ All Users Names: user, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\user\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\user\AppData\Roaming\
~ %Desktop% : C:\Users\user\Desktop\
~ %Favorites% : C:\Users\user\Favorites\
~ %LocalAppData% : C:\Users\user\AppData\Local\
~ %StartMenu% : C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 89 Go of 139 Go)
D: Hard drive, Flash drive, Thumb drive (Free 121 Go of 139 Go)
E: CD-ROM drive (Free 0 Go of 0 Go)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.0E8E6463F81C80AFBED533E0F1F8895D] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 11:34:21.) -- C:\Windows\Explorer.exe [2391280]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 03:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.2B7920C7885AC45FD0E27DD860F095A1] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.07/03/2014 - 00:08:30.) -- C:\Windows\System32\wininet.dll [2240000]
[MD5.75DD70A14145499C9F7D903CF9A8C91B] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.12/04/2014 - 09:10:31.) -- C:\Windows\System32\Winlogon.exe [578048]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 03:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.7C0E0EDF18D6CC565D7BFBB451709FA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.04/09/2013 - 03:11:23.) -- C:\Windows\system32\Drivers\AFD.sys [576512]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 05:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 02:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 02:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.431141C6859990824D17F71C30A78728] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.15/01/2014 - 23:42:58.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 06:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 02:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 02:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.7A761AEE58658378BBA45D360F874CB0] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.26/02/2014 - 23:18:55.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 02:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.7BE3EDFFA3216F989A6BDCB14795DD08] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/01/2014 - 03:39:40.) -- C:\Windows\system32\Drivers\ntfs.sys [1939288]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 02:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 02:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 02:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 05:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.78A5BBA3819FFFC62FFEC3E2220D102D] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.01/06/2013 - 11:26:33.) -- C:\Windows\system32\Drivers\volsnap.sys [327936]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/4
~ Mes musiques (My Musics) : 1/605
~ Mes Videos (My Videos) : 1/11
~ Mes Favoris (My Favorites) : 1/7
~ Mes Documents (My Documents) : 1/23
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 1/21
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.06602AAC468BFACD8E5344DB0AE3DDD3] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [230912] [PID.3016]
[MD5.1B38F4C2BCDB133B757E22BEB61FB3FC] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1176176] [PID.1432]
[MD5.D9960AD13DA81CDABEA74FB8630560CF] - (...) -- C:\Program Files (x86)\Airtel Mobile Internet\Airtel Mobile Internet.exe [536576] [PID.1448]
[MD5.345B1798395CEA9C178AFF1784FA2A37] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032] [PID.3388]
[MD5.615E58F9963734185756AEE4959BA964] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480] [PID.3948]
[MD5.9F98821AE94E8CC78F7A5D423791B839] - (.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe [12971328] [PID.5132]
[MD5.3E364978E4C74D3BCEA29FB41743CB5A] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704] [PID.5480]
[MD5.D831B91EF72F301633ECB30B19BD6626] - (.Google - Hangouts Plugin.) -- C:\Users\user\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe [64384] [PID.3380]
[MD5.E1B4EE856AD8A31B64D9E2AB20542D96] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7874560] [PID.5848]
~ Processes Running: Scanned in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.conduit.com
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] SiteAdvisor v.3.65.135.1 (Désactivé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2013.75, (Désactivé)
G2 - GCE: Preference [User Data\Default] [jgaeopgjojikeoiidmfaejkifhgjoooe] Command & Conquer Tiberium Alliances v.1.0.8 (Activé)
G2 - GCE: Preference [User Data\Default] [lneaknkopdijkpnocmklfnjbeapigfbh] Google Maps v.5.2.7 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Documents Google]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [SiteAdvisor]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [Command & Conquer Tiberium Alliances]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [Google Maps]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 30 Scanned in 00mn 21s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\mu3kxpss.default\prefs.js
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files (x86)\mcafee\msc\NPMCSN~1.dll (.not file.)
P2 - FPN: [HKLM] [@Skype Technologies S.A..com/Skype Web Plugin] - (.Skype - Skype Web Plugin.) -- C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 5.3.1.18536.) -- C:\Users\user\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O1DPlugin] - (.Google - Version 5.3.1.18536.) -- C:\Users\user\AppData\Roaming\Mozilla\plugins\npo1d.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\user\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\user\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
~ Firefox Browser: 7 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer13.msn.com&ocid=AARDHP&pc=MAARJS
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O2 - BHO: (no name) [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} Clé orpheline
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.dll =>.Microsoft Corporation
O2 - BHO: IESpeakDoc [64Bits] - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} Clé orpheline
~ BHO: 13 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Acheter en ligne.lnk . (...) -- C:\Program Files (x86)\Accessory Store\StartUrl.exe (.not file.)
~ Global Startup: 1 Scanned in 00mn 04s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKCU\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [BUDUmeka] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKCU\..\Run: [AcerCloud] . (.Acer Incorporated - AcerCloud.) -- C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (...) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [AmIcoSinglun64] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Wow6432Node\Run: [Norton Online Backup] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe =>.Symantec Corporation
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm Atheros Commnucations - Extension Core.) -- C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\BtvStack.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [BUDUmeka] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [AcerCloud] . (.Acer Incorporated - AcerCloud.) -- C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Spotify Web Helper] . (...) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{E7E3F0A0-CA3B-40C2-813E-C9BAC79EA7AE}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CCS\Services\Tcpip\..\{F835145F-949D-4038-A967-2D9BF94FE47D}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CCS\Services\Tcpip\..\{FD633C79-7710-483C-85AF-5B346C0547FD}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CS1\Services\Tcpip\..\{E7E3F0A0-CA3B-40C2-813E-C9BAC79EA7AE}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CS1\Services\Tcpip\..\{F835145F-949D-4038-A967-2D9BF94FE47D}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CS1\Services\Tcpip\..\{FD633C79-7710-483C-85AF-5B346C0547FD}: NameServer = 208.67.222.222 41.223.208.60
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Qualcomm Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Pas de propriétaire - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) . (...) - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Norton Online Backup (NOBU) . (.Symantec Corporation - Norton Online Backup Service.) - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe =>.Symantec Corporation
O23 - Service: NTI IScheduleSvc (NTI IScheduleSvc) . (.NTI Corporation - Backup Manager Module.) - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) . (.Dritek System INC. - RfBtnSvc Application.) - C:\Windows\RfBtnSvc64.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
~ Services: 14 Scanned in 01mn 47s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.7E935A00974D8C84A81BB0DE3817D497] [APT] [AcerCloud] (.Acer Incorporated.) -- C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [18247424]
[MD5.09E7C37DF4A911C8A9AA8BF88ACD10AA] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257712]
[MD5.1E1324A5D695E8A8268D7D253282C761] [APT] [ALU] (...) -- C:\Program Files (x86)\Acer\Live Updater\updater.exe [3356816]
[MD5.BD0BA490E0300E859DB99DA3AB024371] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [39568]
[MD5.9E76CDD50C3DDDB739150D778EEC0B93] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [804304]
[MD5.03E07421C99D99D2DB8F4E5CCB890B23] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4524312]
[MD5.4942FBE3BA93C1536EC775A0104C11E9] [APT] [EgisUpdate] (.Egis Technology Inc..) -- C:\Program Files\EgisTec IPS\EgisUpdate.exe [202832]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core] (.Google Inc..) -- C:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA] (.Google Inc..) -- C:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.773C84EA68CF5359A6B4C82D6A96A938] [APT] [PMMUpdate] (.Egis Technology Inc..) -- C:\Program Files\EgisTec IPS\PMMUpdate.exe [467024]
[MD5.CFDF0015D4DC1EE66B395054EB330B06] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [5314192]
[MD5.345B1798395CEA9C178AFF1784FA2A37] [APT] [{DA857ACC-AE1E-46E5-8934-B23ECE4FF66C}] (.Google Inc..) -- c:\program files (x86)\google\chrome\application\chrome.exe [841032]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core.job [1028]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core [1028]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA.job [1080]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA [1080]
~ Scheduled Task: 22 Scanned in 00mn 21s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: (ccSet_NARA) . (.Symantec Corporation - Common Client Settings Driver.) - C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Mini Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys
O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 48 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {7954190E-2C5D-3D11-DDF2-413603A2AC61}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {1E654AA2-629D-C426-2561-01AAC1371950}
O42 - Logiciel: Acer Backup Manager - (.NTI Corporation.) [HKLM][64Bits] -- InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}
O42 - Logiciel: Acer Device Fast-lane - (.Acer Incorporated.) [HKLM][64Bits] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7}
O42 - Logiciel: Acer Docs - (.Acer Incorporated.) [HKLM][64Bits] -- {CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
O42 - Logiciel: Acer Docs Office AddIn - (.Acer.) [HKLM][64Bits] -- {DCBF3379-246B-47E1-8173-639B63940838}
O42 - Logiciel: Acer Media - (.Acer Incorporated.) [HKLM][64Bits] -- {E9AF1707-3F3A-49E2-8345-4F2D629D0876}
O42 - Logiciel: Acer Photo - (.Acer Incorporated.) [HKLM][64Bits] -- {B5AD89F2-03D3-4206-8487-018298007DD0}
O42 - Logiciel: Acer Portal - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
O42 - Logiciel: Acer Power Management - (.Acer Incorporated.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Acer Recovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: Adobe Flash Player 13 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Airtel Mobile Internet - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Airtel Mobile Internet
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- AmUStor
O42 - Logiciel: Backup Manager v4 - (.NTI Corporation.) [HKLM][64Bits] -- {9DDDF20E-9FD1-4434-A43E-E7889DBC9420}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {1417495E-B9EE-417A-ADF0-769FFA5E4B84}
O42 - Logiciel: ETDWare PS/2-X64 11.6.16.003_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {8E29C1CE-346A-3F59-AE22-8C5B7F230498}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM][64Bits] -- LManager
O42 - Logiciel: Live Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.1.1004 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mobile Partner - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Mobile Partner
O42 - Logiciel: Mozilla Firefox 28.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 28.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}
O42 - Logiciel: MyWinLocker 4 - (.Egis Technology Inc..) [HKLM][64Bits] -- {39F15B50-A977-4CA6-B1C3-6A8724CDA025}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: Norton Online Backup - (.Symantec Corporation.) [HKLM][64Bits] -- {40A66DF6-22D3-44B5-A7D3-83B118A2C0DC} =>.Symantec Corporation
O42 - Logiciel: Norton Online Backup ARA - (.Symantec Corporation.) [HKLM][64Bits] -- NARA =>.Symantec Corporation
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: Office Addin - (.Acer.) [HKLM][64Bits] -- {6D2BBE1D-E600-4695-BA37-0B0E605542CC}
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Shredder - (.Egis Technology Inc..) [HKLM][64Bits] -- {C2695E83-CF1D-43D1-84FE-B3BEC561012A}
O42 - Logiciel: Skype Web Plugin - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B51DD93B-3CB5-4D9D-BFF2-FD19DBBBFD9A}
O42 - Logiciel: Skype(TM) 6.13 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Sony PC Companion 2.10.197 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 9
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Visual Studio Tools for the Office system 3.0 Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer
O42 - Logiciel: avast! Free Antivirus v9.0.2018 - (.Avast Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: clear.fi SDK - Video 2 - (.CyberLink Corp..) [HKLM][64Bits] -- {EBA33CAD-E071-48d5-A168-FBA4EEB42E93}
O42 - Logiciel: clear.fi SDK- Movie 2 - (.CyberLink Corp..) [HKLM][64Bits] -- {35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {A694AF57-9891-4D62-824C-7E55A1361A14} =>Toolbar.eBay
~ Logic: 47 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\Brother]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Dritek]
[HKCU\Software\Elantech]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SYNCJM]
[HKCU\Software\Skype]
[HKCU\Software\Sony Corporation]
[HKCU\Software\Sony]
[HKCU\Software\TeamViewer]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Atheros]
[HKLM\Software\Brother]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\EgisTec IPS]
[HKLM\Software\EgisTec Shredder]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Skype]
[HKLM\Software\SonicFocus]
[HKLM\Software\Symantec]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Brother]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\EgisTec IPS]
[HKLM\Software\Wow6432Node\EgisTec MyWinLockerSuite]
[HKLM\Software\Wow6432Node\EgisTec MyWinLocker]
[HKLM\Software\Wow6432Node\EgisTec Shredder]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Huawei technologies]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NewTech Infosystems]
[HKLM\Software\Wow6432Node\Norton]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WiFi Driver Installation]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SkypeWebPlugin]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\VirualDiskRedist]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 219 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/04/2014 - 21:10:03 - [] ----D C:\Program Files (x86)\Acer
O43 - CFD: 20/04/2014 - 21:02:14 - [] ----D C:\Program Files (x86)\Airtel Mobile Internet
O43 - CFD: 30/01/2014 - 09:21:16 - [] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 30/01/2014 - 09:21:19 - [] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 30/01/2014 - 09:31:14 - [] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 30/01/2014 - 09:21:08 - [] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 20/05/2014 - 14:03:18 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 03/01/2013 - 18:31:39 - [] ----D C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 03/01/2013 - 18:31:52 - [] ----D C:\Program Files (x86)\EgisTec MyWinLocker
O43 - CFD: 03/01/2013 - 18:30:45 - [] ----D C:\Program Files (x86)\EgisTec MyWinLockerSuite
O43 - CFD: 03/01/2013 - 18:32:20 - [] ----D C:\Program Files (x86)\EgisTec Shredder
O43 - CFD: 30/04/2014 - 12:17:04 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 27/03/2014 - 14:48:27 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 17/04/2014 - 11:16:09 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 11/05/2014 - 13:25:25 - [] ----D C:\Program Files (x86)\ITbrain Agent
O43 - CFD: 30/01/2014 - 09:18:35 - [] ----D C:\Program Files (x86)\Launch Manager
O43 - CFD: 14/05/2014 - 14:16:34 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 15/05/2014 - 17:44:54 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 15/05/2014 - 17:44:45 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 15/05/2014 - 17:34:27 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 16/05/2014 - 17:05:32 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 16/04/2014 - 20:13:18 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 19/04/2014 - 17:27:43 - [] ----D C:\Program Files (x86)\Mobile Partner
O43 - CFD: 16/04/2014 - 21:00:50 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 19/04/2014 - 21:47:58 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 15/05/2014 - 17:45:25 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 30/01/2014 - 09:58:30 - [] ----D C:\Program Files (x86)\Norton Online Backup ARA =>.Symantec Corporation
O43 - CFD: 30/01/2014 - 09:58:22 - [] ----D C:\Program Files (x86)\NortonInstaller
O43 - CFD: 03/01/2013 - 18:32:54 - [] ----D C:\Program Files (x86)\NTI
O43 - CFD: 30/01/2014 - 11:09:09 - [] ----D C:\Program Files (x86)\OEM
O43 - CFD: 30/01/2014 - 09:28:05 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 03/01/2013 - 16:12:30 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 09/04/2014 - 17:52:30 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 09/04/2014 - 16:50:49 - [] ----D C:\Program Files (x86)\SkypeWebPlugin
O43 - CFD: 03/02/2014 - 22:40:28 - [] ----D C:\Program Files (x86)\Sony
O43 - CFD: 18/05/2014 - 09:22:11 - [0] ----D C:\Program Files (x86)\Sony Media Go Install
O43 - CFD: 03/05/2014 - 17:55:09 - [0] ----D C:\Program Files (x86)\Sony Mobile
O43 - CFD: 30/01/2014 - 09:40:12 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 30/01/2014 - 09:58:35 - [] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 02/05/2014 - 14:42:52 - [] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 30/01/2014 - 09:26:12 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 15/05/2014 - 16:42:47 - [0] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 15/05/2014 - 08:52:08 - [] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 15/05/2014 - 08:51:07 - [] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 15/05/2014 - 21:10:04 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/01/2014 - 17:50:10 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 30/01/2014 - 17:50:10 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 08:13:01 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 08:12:59 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 08/02/2014 - 18:44:22 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 08:13:01 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 08:12:59 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 20/05/2014 - 14:22:35 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 07/04/2014 - 21:23:12 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 30/01/2014 - 09:21:19 - [] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 15/05/2014 - 17:44:44 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 03/01/2013 - 18:31:37 - [] ----D C:\Program Files (x86)\Common Files\EgisTec
O43 - CFD: 30/01/2014 - 09:25:13 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 16/05/2014 - 17:06:27 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 07/04/2014 - 21:26:08 - [] ----D C:\Program Files (x86)\Common Files\QCA_Bluetooth
O43 - CFD: 26/07/2012 - 08:13:01 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 09/04/2014 - 17:52:30 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 16/05/2014 - 16:45:34 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 30/01/2014 - 10:04:46 - [] ----D C:\ProgramData\Acer
O43 - CFD: 30/01/2014 - 09:21:20 - [] ----D C:\ProgramData\AMD
O43 - CFD: 30/01/2014 - 09:31:14 - [] ----D C:\ProgramData\AmUStor
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 07/04/2014 - 21:48:10 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 30/04/2014 - 12:05:37 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 03/01/2013 - 18:33:21 - [] ----D C:\ProgramData\BackupManager
O43 - CFD: 30/01/2014 - 09:58:36 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 28/03/2014 - 14:59:16 - [] ----D C:\ProgramData\Brother
O43 - CFD: 30/01/2014 - 11:01:01 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 23/04/2014 - 21:10:23 - [] ----D C:\ProgramData\clear.fi
O43 - CFD: 30/01/2014 - 10:03:14 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 30/01/2014 - 10:03:14 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 20/04/2014 - 21:02:45 - [] ----D C:\ProgramData\DatacardService
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 30/01/2014 - 09:54:17 - [] ----D C:\ProgramData\EgisTec
O43 - CFD: 30/01/2014 - 11:14:11 - [] ----D C:\ProgramData\EgisTec IPS
O43 - CFD: 30/04/2014 - 12:17:19 - [] ----D C:\ProgramData\Google
O43 - CFD: 25/04/2014 - 10:54:25 - [] ----D C:\ProgramData\HP
O43 - CFD: 30/01/2014 - 10:02:33 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 14/05/2014 - 14:15:35 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 20/05/2014 - 14:09:15 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 30/01/2014 - 11:01:01 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 15/05/2014 - 17:41:44 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 16/05/2014 - 17:21:20 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 19/04/2014 - 17:27:43 - [] ----D C:\ProgramData\Mobile Partner
O43 - CFD: 30/01/2014 - 11:01:01 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 03/02/2014 - 23:10:51 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 09/02/2014 - 20:35:38 - [] ----D C:\ProgramData\Norton
O43 - CFD: 30/01/2014 - 09:58:22 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 22/04/2014 - 15:14:43 - [] ----D C:\ProgramData\OEM
O43 - CFD: 08/02/2014 - 18:56:14 - [] ----D C:\ProgramData\PRICache
O43 - CFD: 07/04/2014 - 21:12:13 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 16/04/2014 - 20:16:20 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 09/04/2014 - 17:52:56 - [] ----D C:\ProgramData\Skype
O43 - CFD: 03/02/2014 - 22:40:28 - [] ----D C:\ProgramData\Sony
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 30/01/2014 - 09:58:35 - [] ----D C:\ProgramData\Symantec
O43 - CFD: 30/01/2014 - 10:02:35 - [] ----D C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 26/04/2014 - 21:15:21 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/04/2014 - 21:31:12 - [] ----D C:\Users\user\AppData\Roaming\acer
O43 - CFD: 30/01/2014 - 11:06:14 - [] ----D C:\Users\user\AppData\Roaming\Adobe
O43 - CFD: 07/04/2014 - 21:47:56 - [] ----D C:\Users\user\AppData\Roaming\Atheros
O43 - CFD: 30/04/2014 - 12:19:08 - [] ----D C:\Users\user\AppData\Roaming\AVAST Software
O43 - CFD: 18/05/2014 - 08:34:50 - [] ----D C:\Users\user\AppData\Roaming\clear.fiMVPSDK21
O43 - CFD: 18/05/2014 - 08:34:04 - [] ----D C:\Users\user\AppData\Roaming\CyberLink
O43 - CFD: 15/05/2014 - 14:57:33 - [0] ----D C:\Users\user\AppData\Roaming\Google
O43 - CFD: 30/01/2014 - 11:07:18 - [] ----D C:\Users\user\AppData\Roaming\lm
O43 - CFD: 30/01/2014 - 11:06:18 - [] ----D C:\Users\user\AppData\Roaming\Macromedia
O43 - CFD: 20/05/2014 - 08:35:08 - [] -S--D C:\Users\user\AppData\Roaming\Microsoft
O43 - CFD: 30/04/2014 - 17:55:09 - [] ----D C:\Users\user\AppData\Roaming\Mozilla
O43 - CFD: 20/05/2014 - 14:18:35 - [] ----D C:\Users\user\AppData\Roaming\Skype
O43 - CFD: 16/04/2014 - 20:28:56 - [] ----D C:\Users\user\AppData\Roaming\Sony
O43 - CFD: 21/04/2014 - 21:30:45 - [] ----D C:\Users\user\AppData\Roaming\Spotify
O43 - CFD: 02/05/2014 - 18:36:46 - [] ----D C:\Users\user\AppData\Roaming\TeamViewer
O43 - CFD: 26/04/2014 - 21:10:24 - [] ----D C:\Users\user\AppData\Roaming\WildTangent
O43 - CFD: 20/05/2014 - 14:25:46 - [] ----D C:\Users\user\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 22/04/2014 - 15:11:33 - [] ----D C:\Users\user\AppData\Local\Acer
O43 - CFD: 22/04/2014 - 15:09:38 - [] ----D C:\Users\user\AppData\Local\AcerCloud
O43 - CFD: 30/01/2014 - 11:03:59 - [] -SH-D C:\Users\user\AppData\Local\Application Data
O43 - CFD: 03/02/2014 - 22:30:52 - [] ----D C:\Users\user\AppData\Local\Apps
O43 - CFD: 16/04/2014 - 21:39:46 - [] ----D C:\Users\user\AppData\Local\assembly
O43 - CFD: 18/05/
0
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
20 mai 2014 à 16:53
Il ne faut pas poster le rapport directement dans le message, mais via Cjoint comme je te l'ai indiqué dans la procédure, de cet façon j'aurai ton rapport complet ce qui n'est pas le cas actuellement.
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 16:58
beh c'est ce que j'ai fais.
j'ai envoyé le resultat qui est venu sur mon bureau a partir de cjoint et jai ouvert le mail reçu et j'ai envoyé ce qu'il y avait. c'est pas ça sinon dit moi comment m'y pren dre
0
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
20 mai 2014 à 17:01
C'est expliqué dans la procédure de ZHPdiag, je te rappelle le mode d'emploi Cjoint :
https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 17:01
voila un autre
est ce ça?
~ Rapport de ZHPDiag v2014.5.14.63 - Nicolas Coolman (14/05/2014)
~ Lancé par user (20/05/2014 14:22:47)
~ Adresse du Site Web https://nicolascoolman.webs.com/
~ Blog d'analyse software : http://nicolascoolman.byethost7.com
~ Forums gratuits d'Assistance à la désinfection : https://nicolascoolman.webs.com/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16899
MFIE: Mozilla Firefox 28.0
GCIE: Google Chrome v34.0.1847.137 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : QGJYG
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2018
Malwarebytes Anti-Malware version 2.0.1.1004
Windows Defender W8

---\\ Logiciels d'optimisation du système
CCleaner v4.13

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 13 Plugin

---\\ Informations sur le système
~ Processor: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1738 MB (21% free)
System Restore: Activé (Enable)
System drive C: has 89 GB (63%) free of 139 GB

---\\ Mode de connexion au système
~ Computer Name: AMBROS
~ User Name: user
~ All Users Names: user, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\user\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\user\AppData\Roaming\
~ %Desktop% : C:\Users\user\Desktop\
~ %Favorites% : C:\Users\user\Favorites\
~ %LocalAppData% : C:\Users\user\AppData\Local\
~ %StartMenu% : C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 89 Go of 139 Go)
D: Hard drive, Flash drive, Thumb drive (Free 121 Go of 139 Go)
E: CD-ROM drive (Free 0 Go of 0 Go)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.0E8E6463F81C80AFBED533E0F1F8895D] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 11:34:21.) -- C:\Windows\Explorer.exe [2391280]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 03:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.2B7920C7885AC45FD0E27DD860F095A1] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.07/03/2014 - 00:08:30.) -- C:\Windows\System32\wininet.dll [2240000]
[MD5.75DD70A14145499C9F7D903CF9A8C91B] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.12/04/2014 - 09:10:31.) -- C:\Windows\System32\Winlogon.exe [578048]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 03:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.7C0E0EDF18D6CC565D7BFBB451709FA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.04/09/2013 - 03:11:23.) -- C:\Windows\system32\Drivers\AFD.sys [576512]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 05:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 02:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 02:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.431141C6859990824D17F71C30A78728] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.15/01/2014 - 23:42:58.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 06:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 02:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 02:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.7A761AEE58658378BBA45D360F874CB0] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.26/02/2014 - 23:18:55.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 02:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.7BE3EDFFA3216F989A6BDCB14795DD08] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/01/2014 - 03:39:40.) -- C:\Windows\system32\Drivers\ntfs.sys [1939288]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 02:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 02:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 02:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 05:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.78A5BBA3819FFFC62FFEC3E2220D102D] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.01/06/2013 - 11:26:33.) -- C:\Windows\system32\Drivers\volsnap.sys [327936]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/4
~ Mes musiques (My Musics) : 1/605
~ Mes Videos (My Videos) : 1/11
~ Mes Favoris (My Favorites) : 1/7
~ Mes Documents (My Documents) : 1/23
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 1/21
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.06602AAC468BFACD8E5344DB0AE3DDD3] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [230912] [PID.3016]
[MD5.1B38F4C2BCDB133B757E22BEB61FB3FC] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1176176] [PID.1432]
[MD5.D9960AD13DA81CDABEA74FB8630560CF] - (...) -- C:\Program Files (x86)\Airtel Mobile Internet\Airtel Mobile Internet.exe [536576] [PID.1448]
[MD5.345B1798395CEA9C178AFF1784FA2A37] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032] [PID.3388]
[MD5.615E58F9963734185756AEE4959BA964] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480] [PID.3948]
[MD5.9F98821AE94E8CC78F7A5D423791B839] - (.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe [12971328] [PID.5132]
[MD5.3E364978E4C74D3BCEA29FB41743CB5A] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704] [PID.5480]
[MD5.D831B91EF72F301633ECB30B19BD6626] - (.Google - Hangouts Plugin.) -- C:\Users\user\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe [64384] [PID.3380]
[MD5.E1B4EE856AD8A31B64D9E2AB20542D96] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7874560] [PID.5848]
~ Processes Running: Scanned in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.conduit.com
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] SiteAdvisor v.3.65.135.1 (Désactivé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2013.75, (Désactivé)
G2 - GCE: Preference [User Data\Default] [jgaeopgjojikeoiidmfaejkifhgjoooe] Command & Conquer Tiberium Alliances v.1.0.8 (Activé)
G2 - GCE: Preference [User Data\Default] [lneaknkopdijkpnocmklfnjbeapigfbh] Google Maps v.5.2.7 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Documents Google]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [SiteAdvisor]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [Command & Conquer Tiberium Alliances]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [Google Maps]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 30 Scanned in 00mn 21s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\mu3kxpss.default\prefs.js
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files (x86)\mcafee\msc\NPMCSN~1.dll (.not file.)
P2 - FPN: [HKLM] [@Skype Technologies S.A..com/Skype Web Plugin] - (.Skype - Skype Web Plugin.) -- C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 5.3.1.18536.) -- C:\Users\user\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O1DPlugin] - (.Google - Version 5.3.1.18536.) -- C:\Users\user\AppData\Roaming\Mozilla\plugins\npo1d.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\user\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\user\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
~ Firefox Browser: 7 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer13.msn.com&ocid=AARDHP&pc=MAARJS
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O2 - BHO: (no name) [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} Clé orpheline
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.dll =>.Microsoft Corporation
O2 - BHO: IESpeakDoc [64Bits] - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} Clé orpheline
~ BHO: 13 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Acheter en ligne.lnk . (...) -- C:\Program Files (x86)\Accessory Store\StartUrl.exe (.not file.)
~ Global Startup: 1 Scanned in 00mn 04s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKCU\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [BUDUmeka] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKCU\..\Run: [AcerCloud] . (.Acer Incorporated - AcerCloud.) -- C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (...) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [AmIcoSinglun64] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Wow6432Node\Run: [Norton Online Backup] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe =>.Symantec Corporation
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm Atheros Commnucations - Extension Core.) -- C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\BtvStack.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [BUDUmeka] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [AcerCloud] . (.Acer Incorporated - AcerCloud.) -- C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe
O4 - HKUS\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run: [Spotify Web Helper] . (...) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{E7E3F0A0-CA3B-40C2-813E-C9BAC79EA7AE}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CCS\Services\Tcpip\..\{F835145F-949D-4038-A967-2D9BF94FE47D}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CCS\Services\Tcpip\..\{FD633C79-7710-483C-85AF-5B346C0547FD}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CS1\Services\Tcpip\..\{E7E3F0A0-CA3B-40C2-813E-C9BAC79EA7AE}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CS1\Services\Tcpip\..\{F835145F-949D-4038-A967-2D9BF94FE47D}: NameServer = 208.67.222.222 41.223.208.60
O17 - HKLM\System\CS1\Services\Tcpip\..\{FD633C79-7710-483C-85AF-5B346C0547FD}: NameServer = 208.67.222.222 41.223.208.60
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Qualcomm Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Pas de propriétaire - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) . (...) - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Norton Online Backup (NOBU) . (.Symantec Corporation - Norton Online Backup Service.) - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe =>.Symantec Corporation
O23 - Service: NTI IScheduleSvc (NTI IScheduleSvc) . (.NTI Corporation - Backup Manager Module.) - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) . (.Dritek System INC. - RfBtnSvc Application.) - C:\Windows\RfBtnSvc64.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
~ Services: 14 Scanned in 01mn 47s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.7E935A00974D8C84A81BB0DE3817D497] [APT] [AcerCloud] (.Acer Incorporated.) -- C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [18247424]
[MD5.09E7C37DF4A911C8A9AA8BF88ACD10AA] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257712]
[MD5.1E1324A5D695E8A8268D7D253282C761] [APT] [ALU] (...) -- C:\Program Files (x86)\Acer\Live Updater\updater.exe [3356816]
[MD5.BD0BA490E0300E859DB99DA3AB024371] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [39568]
[MD5.9E76CDD50C3DDDB739150D778EEC0B93] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [804304]
[MD5.03E07421C99D99D2DB8F4E5CCB890B23] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4524312]
[MD5.4942FBE3BA93C1536EC775A0104C11E9] [APT] [EgisUpdate] (.Egis Technology Inc..) -- C:\Program Files\EgisTec IPS\EgisUpdate.exe [202832]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core] (.Google Inc..) -- C:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA] (.Google Inc..) -- C:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.773C84EA68CF5359A6B4C82D6A96A938] [APT] [PMMUpdate] (.Egis Technology Inc..) -- C:\Program Files\EgisTec IPS\PMMUpdate.exe [467024]
[MD5.CFDF0015D4DC1EE66B395054EB330B06] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [5314192]
[MD5.345B1798395CEA9C178AFF1784FA2A37] [APT] [{DA857ACC-AE1E-46E5-8934-B23ECE4FF66C}] (.Google Inc..) -- c:\program files (x86)\google\chrome\application\chrome.exe [841032]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core.job [1028]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001Core [1028]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA.job [1080]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2752213232-3105361922-2378072398-1001UA [1080]
~ Scheduled Task: 22 Scanned in 00mn 21s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: (ccSet_NARA) . (.Symantec Corporation - Common Client Settings Driver.) - C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Mini Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys
O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 48 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {7954190E-2C5D-3D11-DDF2-413603A2AC61}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {1E654AA2-629D-C426-2561-01AAC1371950}
O42 - Logiciel: Acer Backup Manager - (.NTI Corporation.) [HKLM][64Bits] -- InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}
O42 - Logiciel: Acer Device Fast-lane - (.Acer Incorporated.) [HKLM][64Bits] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7}
O42 - Logiciel: Acer Docs - (.Acer Incorporated.) [HKLM][64Bits] -- {CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
O42 - Logiciel: Acer Docs Office AddIn - (.Acer.) [HKLM][64Bits] -- {DCBF3379-246B-47E1-8173-639B63940838}
O42 - Logiciel: Acer Media - (.Acer Incorporated.) [HKLM][64Bits] -- {E9AF1707-3F3A-49E2-8345-4F2D629D0876}
O42 - Logiciel: Acer Photo - (.Acer Incorporated.) [HKLM][64Bits] -- {B5AD89F2-03D3-4206-8487-018298007DD0}
O42 - Logiciel: Acer Portal - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
O42 - Logiciel: Acer Power Management - (.Acer Incorporated.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Acer Recovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: Adobe Flash Player 13 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Airtel Mobile Internet - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Airtel Mobile Internet
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- AmUStor
O42 - Logiciel: Backup Manager v4 - (.NTI Corporation.) [HKLM][64Bits] -- {9DDDF20E-9FD1-4434-A43E-E7889DBC9420}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {1417495E-B9EE-417A-ADF0-769FFA5E4B84}
O42 - Logiciel: ETDWare PS/2-X64 11.6.16.003_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {8E29C1CE-346A-3F59-AE22-8C5B7F230498}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM][64Bits] -- LManager
O42 - Logiciel: Live Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.1.1004 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mobile Partner - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Mobile Partner
O42 - Logiciel: Mozilla Firefox 28.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 28.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}
O42 - Logiciel: MyWinLocker 4 - (.Egis Technology Inc..) [HKLM][64Bits] -- {39F15B50-A977-4CA6-B1C3-6A8724CDA025}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: Norton Online Backup - (.Symantec Corporation.) [HKLM][64Bits] -- {40A66DF6-22D3-44B5-A7D3-83B118A2C0DC} =>.Symantec Corporation
O42 - Logiciel: Norton Online Backup ARA - (.Symantec Corporation.) [HKLM][64Bits] -- NARA =>.Symantec Corporation
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: Office Addin - (.Acer.) [HKLM][64Bits] -- {6D2BBE1D-E600-4695-BA37-0B0E605542CC}
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Shredder - (.Egis Technology Inc..) [HKLM][64Bits] -- {C2695E83-CF1D-43D1-84FE-B3BEC561012A}
O42 - Logiciel: Skype Web Plugin - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B51DD93B-3CB5-4D9D-BFF2-FD19DBBBFD9A}
O42 - Logiciel: Skype(TM) 6.13 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Sony PC Companion 2.10.197 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 9
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Visual Studio Tools for the Office system 3.0 Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer
O42 - Logiciel: avast! Free Antivirus v9.0.2018 - (.Avast Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: clear.fi SDK - Video 2 - (.CyberLink Corp..) [HKLM][64Bits] -- {EBA33CAD-E071-48d5-A168-FBA4EEB42E93}
O42 - Logiciel: clear.fi SDK- Movie 2 - (.CyberLink Corp..) [HKLM][64Bits] -- {35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {A694AF57-9891-4D62-824C-7E55A1361A14} =>Toolbar.eBay
~ Logic: 47 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\Brother]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Dritek]
[HKCU\Software\Elantech]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SYNCJM]
[HKCU\Software\Skype]
[HKCU\Software\Sony Corporation]
[HKCU\Software\Sony]
[HKCU\Software\TeamViewer]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Atheros]
[HKLM\Software\Brother]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\EgisTec IPS]
[HKLM\Software\EgisTec Shredder]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Skype]
[HKLM\Software\SonicFocus]
[HKLM\Software\Symantec]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Brother]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\EgisTec IPS]
[HKLM\Software\Wow6432Node\EgisTec MyWinLockerSuite]
[HKLM\Software\Wow6432Node\EgisTec MyWinLocker]
[HKLM\Software\Wow6432Node\EgisTec Shredder]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Huawei technologies]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NewTech Infosystems]
[HKLM\Software\Wow6432Node\Norton]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WiFi Driver Installation]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SkypeWebPlugin]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\VirualDiskRedist]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 219 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/04/2014 - 21:10:03 - [] ----D C:\Program Files (x86)\Acer
O43 - CFD: 20/04/2014 - 21:02:14 - [] ----D C:\Program Files (x86)\Airtel Mobile Internet
O43 - CFD: 30/01/2014 - 09:21:16 - [] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 30/01/2014 - 09:21:19 - [] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 30/01/2014 - 09:31:14 - [] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 30/01/2014 - 09:21:08 - [] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 20/05/2014 - 14:03:18 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 03/01/2013 - 18:31:39 - [] ----D C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 03/01/2013 - 18:31:52 - [] ----D C:\Program Files (x86)\EgisTec MyWinLocker
O43 - CFD: 03/01/2013 - 18:30:45 - [] ----D C:\Program Files (x86)\EgisTec MyWinLockerSuite
O43 - CFD: 03/01/2013 - 18:32:20 - [] ----D C:\Program Files (x86)\EgisTec Shredder
O43 - CFD: 30/04/2014 - 12:17:04 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 27/03/2014 - 14:48:27 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 17/04/2014 - 11:16:09 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 11/05/2014 - 13:25:25 - [] ----D C:\Program Files (x86)\ITbrain Agent
O43 - CFD: 30/01/2014 - 09:18:35 - [] ----D C:\Program Files (x86)\Launch Manager
O43 - CFD: 14/05/2014 - 14:16:34 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 15/05/2014 - 17:44:54 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 15/05/2014 - 17:44:45 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 15/05/2014 - 17:34:27 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 16/05/2014 - 17:05:32 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 16/04/2014 - 20:13:18 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 19/04/2014 - 17:27:43 - [] ----D C:\Program Files (x86)\Mobile Partner
O43 - CFD: 16/04/2014 - 21:00:50 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 19/04/2014 - 21:47:58 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 15/05/2014 - 17:45:25 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 30/01/2014 - 09:58:30 - [] ----D C:\Program Files (x86)\Norton Online Backup ARA =>.Symantec Corporation
O43 - CFD: 30/01/2014 - 09:58:22 - [] ----D C:\Program Files (x86)\NortonInstaller
O43 - CFD: 03/01/2013 - 18:32:54 - [] ----D C:\Program Files (x86)\NTI
O43 - CFD: 30/01/2014 - 11:09:09 - [] ----D C:\Program Files (x86)\OEM
O43 - CFD: 30/01/2014 - 09:28:05 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 03/01/2013 - 16:12:30 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 09/04/2014 - 17:52:30 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 09/04/2014 - 16:50:49 - [] ----D C:\Program Files (x86)\SkypeWebPlugin
O43 - CFD: 03/02/2014 - 22:40:28 - [] ----D C:\Program Files (x86)\Sony
O43 - CFD: 18/05/2014 - 09:22:11 - [0] ----D C:\Program Files (x86)\Sony Media Go Install
O43 - CFD: 03/05/2014 - 17:55:09 - [0] ----D C:\Program Files (x86)\Sony Mobile
O43 - CFD: 30/01/2014 - 09:40:12 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 30/01/2014 - 09:58:35 - [] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 02/05/2014 - 14:42:52 - [] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 30/01/2014 - 09:26:12 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 15/05/2014 - 16:42:47 - [0] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 15/05/2014 - 08:52:08 - [] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 15/05/2014 - 08:51:07 - [] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 15/05/2014 - 21:10:04 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/01/2014 - 17:50:10 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 30/01/2014 - 17:50:10 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 08:13:01 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 08:12:59 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 08/02/2014 - 18:44:22 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 08:13:01 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 08:12:59 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 20/05/2014 - 14:22:35 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 07/04/2014 - 21:23:12 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 30/01/2014 - 09:21:19 - [] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 15/05/2014 - 17:44:44 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 03/01/2013 - 18:31:37 - [] ----D C:\Program Files (x86)\Common Files\EgisTec
O43 - CFD: 30/01/2014 - 09:25:13 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 16/05/2014 - 17:06:27 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 07/04/2014 - 21:26:08 - [] ----D C:\Program Files (x86)\Common Files\QCA_Bluetooth
O43 - CFD: 26/07/2012 - 08:13:01 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 09/04/2014 - 17:52:30 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 16/05/2014 - 16:45:34 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 30/01/2014 - 10:04:46 - [] ----D C:\ProgramData\Acer
O43 - CFD: 30/01/2014 - 09:21:20 - [] ----D C:\ProgramData\AMD
O43 - CFD: 30/01/2014 - 09:31:14 - [] ----D C:\ProgramData\AmUStor
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 07/04/2014 - 21:48:10 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 30/04/2014 - 12:05:37 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 03/01/2013 - 18:33:21 - [] ----D C:\ProgramData\BackupManager
O43 - CFD: 30/01/2014 - 09:58:36 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 28/03/2014 - 14:59:16 - [] ----D C:\ProgramData\Brother
O43 - CFD: 30/01/2014 - 11:01:01 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 23/04/2014 - 21:10:23 - [] ----D C:\ProgramData\clear.fi
O43 - CFD: 30/01/2014 - 10:03:14 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 30/01/2014 - 10:03:14 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 20/04/2014 - 21:02:45 - [] ----D C:\ProgramData\DatacardService
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 30/01/2014 - 09:54:17 - [] ----D C:\ProgramData\EgisTec
O43 - CFD: 30/01/2014 - 11:14:11 - [] ----D C:\ProgramData\EgisTec IPS
O43 - CFD: 30/04/2014 - 12:17:19 - [] ----D C:\ProgramData\Google
O43 - CFD: 25/04/2014 - 10:54:25 - [] ----D C:\ProgramData\HP
O43 - CFD: 30/01/2014 - 10:02:33 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 14/05/2014 - 14:15:35 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 20/05/2014 - 14:09:15 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 30/01/2014 - 11:01:01 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 15/05/2014 - 17:41:44 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 16/05/2014 - 17:21:20 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 19/04/2014 - 17:27:43 - [] ----D C:\ProgramData\Mobile Partner
O43 - CFD: 30/01/2014 - 11:01:01 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 03/02/2014 - 23:10:51 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 09/02/2014 - 20:35:38 - [] ----D C:\ProgramData\Norton
O43 - CFD: 30/01/2014 - 09:58:22 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 22/04/2014 - 15:14:43 - [] ----D C:\ProgramData\OEM
O43 - CFD: 08/02/2014 - 18:56:14 - [] ----D C:\ProgramData\PRICache
O43 - CFD: 07/04/2014 - 21:12:13 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 16/04/2014 - 20:16:20 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 09/04/2014 - 17:52:56 - [] ----D C:\ProgramData\Skype
O43 - CFD: 03/02/2014 - 22:40:28 - [] ----D C:\ProgramData\Sony
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 30/01/2014 - 09:58:35 - [] ----D C:\ProgramData\Symantec
O43 - CFD: 30/01/2014 - 10:02:35 - [] ----D C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 07:22:08 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 26/04/2014 - 21:15:21 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/04/2014 - 21:31:12 - [] ----D C:\Users\user\AppData\Roaming\acer
O43 - CFD: 30/01/2014 - 11:06:14 - [] ----D C:\Users\user\AppData\Roaming\Adobe
O43 - CFD: 07/04/2014 - 21:47:56 - [] ----D C:\Users\user\AppData\Roaming\Atheros
O43 - CFD: 30/04/2014 - 12:19:08 - [] ----D C:\Users\user\AppData\Roaming\AVAST Software
O43 - CFD: 18/05/2014 - 08:34:50 - [] ----D C:\Users\user\AppData\Roaming\clear.fiMVPSDK21
O43 - CFD: 18/05/2014 - 08:34:04 - [] ----D C:\Users\user\AppData\Roaming\CyberLink
O43 - CFD: 15/05/2014 - 14:57:33 - [0] ----D C:\Users\user\AppData\Roaming\Google
O43 - CFD: 30/01/2014 - 11:07:18 - [] ----D C:\Users\user\AppData\Roaming\lm
O43 - CFD: 30/01/2014 - 11:06:18 - [] ----D C:\Users\user\AppData\Roaming\Macromedia
O43 - CFD: 20/05/2014 - 08:35:08 - [] -S--D C:\Users\user\AppData\Roaming\Microsoft
O43 - CFD: 30/04/2014 - 17:55:09 - [] ----D C:\Users\user\AppData\Roaming\Mozilla
O43 - CFD: 20/05/2014 - 14:18:35 - [] ----D C:\Users\user\AppData\Roaming\Skype
O43 - CFD: 16/04/2014 - 20:28:56 - [] ----D C:\Users\user\AppData\Roaming\Sony
O43 - CFD: 21/04/2014 - 21:30:45 - [] ----D C:\Users\user\AppData\Roaming\Spotify
O43 - CFD: 02/05/2014 - 18:36:46 - [] ----D C:\Users\user\AppData\Roaming\TeamViewer
O43 - CFD: 26/04/2014 - 21:10:24 - [] ----D C:\Users\user\AppData\Roaming\WildTangent
O43 - CFD: 20/05/2014 - 14:25:46 - [] ----D C:\Users\user\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 22/04/2014 - 15:11:33 - [] ----D C:\Users\user\AppData\Local\Acer
O43 - CFD: 22/04/2014 - 15:09:38 - [] ----D C:\Users\user\AppData\Local\AcerCloud
O43 - CFD: 30/01/2014 - 11:03:59 - [] -SH-D C:\Users\user\AppData\Local\Application Data
O43 - CFD: 03/02/2014 - 22:30:52 - [] ----D C:\Users\user\AppData\Local\Apps
O43 - CFD: 16/04/2014 - 21:39:46 - [] ----D C:\Users\user\AppData\Local\assembly
O43 - C
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 17:08
ok je vais reprendre. stp ne me lache pas . j'ai vraiment besoin d'aide.
merci
0
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
Modifié par bazfile le 20/05/2014 à 17:09
Non je te demande de mettre le rapport qui est sur ton bureau sur Cjoint tout est expliqué clairement, donc je te réexplique tu cliques sur https://www.cjoint.com/ sur la page qui s'ouvre tu cliques sur Choisissez un fichier tu sélectionnes le rapport de ZHPdiag qui est sur ton bureau ensuite tu cliques sur Créer le lien Cjoint le lien apparaîtra tu le copies et tu le colles dans ta réponse.

Un problème=une solution, le tout étant de la trouver :-)
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 17:13
je reçois toujours le même que je t'ai posté
0
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
20 mai 2014 à 17:13
@bazfile

Fais lui passer usbfix
0
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
20 mai 2014 à 17:23
Tu as raison le rapport est plus court :).
0
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
20 mai 2014 à 17:26
"O4 - HKCU\..\Run: [BUDUmeka] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe"

Infection USB
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 17:30
je trouve le usbfix comment? excuse moi mais je suis un peu novice. dois je le telecharger?
0
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
20 mai 2014 à 17:32
Je viens de m'apercevoir dans le rapport de ZHPdiag que tu n'as que 1738 MB de mémoire vive, avec Windows 8 64 bits c'est un peu léger, cela expliquerait que ton ordinateur soit lent, appuis simultanément sur les touches de ton clavier Windows et R la fenêtre Exécuter apparaît dans cette fenêtre tu tapes msconfig une fenêtre apparaît va dans l'onglet Démarrer puis clique sur Options avancées regarde et dis-moi si la case Mémoire maximale est cochée, je te demande juste de regarder et de me dire si la case est cochée, tu ne fais rien d'autre.
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 17:37
non il l'est pas
0
bazfile Messages postés 56476 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 24 novembre 2024 19 294
Modifié par bazfile le 20/05/2014 à 17:47
Donc c'est bon, tu peux fermer cette fenêtre
Tu as très peu de mémoire vive, en général avec Windows 8 les ordinateurs sont vendu avec un minimum de 4GO tu n'as pas la moitié.
Appuis simultanément sur les touches de ton clavier Windows et Pause dans la fenêtre qui apparaît regarde dans Mémoire installée (RAM) et dis-moi la quantité de RAM en Go inscrite.
0
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
20 mai 2014 à 17:49
@Baz

Priorité usbfix !!
0
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
20 mai 2014 à 17:40
# Télécharge UsbFix par El Desaparecido sur ton Bureau.
# Si ton antivirus affiche une alerte, ignore-la et désactive l'antivirus temporairement.

# Branche toutes tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir.
# Double clique sur UsbFix.exe.

# Clique sur Options, dans le menu BBCode choisis CCM.
# Valide en cliquant sur Appliquer.
# UsbFix se relancera pour prendre en compte tes réglages, Clique sur Nettoyage.


# Laisse travailler l'outil, ton bureau ne sera pas accessible durant la phase de nettoyage, c'est normal.

# À la fin du scan, un rapport va s'afficher, poste-le dans ta prochaine réponse sur le forum.
# Le rapport est aussi sauvegardé à la racine du disque système ( C:\UsbFix [Clean ?] Nom de l'ordinateur.txt ).
( CTRL+A pour sélectionner, CTRL+C pour copier et CTRL+V pour coller )
# ->> Tutoriel (aide) en images sur le site de l'auteur.
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
Modifié par ambrosleroi le 20/05/2014 à 17:57
je ne parviens pas à executer l'application usb fix
on me fait savoir que windows a bloqué
jai executer en tant qu'administrateur mais c'est pareilhttp://cjoint.com/14mi/DEurZz4zzcV_capture_1.png
0
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
Modifié par lilidurhone le 20/05/2014 à 18:00
Désactive smartscreen

https://forums.commentcamarche.net/forum/affich-37641559-desactiver-le-smartscreen-sous-windows


Si problème il y a il existe toujours une solution
~~~~~~ Cs ~~~~~~
0
ambrosleroi Messages postés 66 Date d'inscription samedi 3 mai 2014 Statut Membre Dernière intervention 26 septembre 2021
20 mai 2014 à 18:14
voici le rapport
[b]############################## | UsbFix V 7.171 | [Nettoyage][/b]

Utilisateur: user (Administrateur) # AMBROS
Mis à jour le 18/05/2014 par El Desaparecido - SosVirus
Lancé à 16:07:00 | 20/05/2014

Site Web : [url=http://www.usbfix.net/]https://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]https://www.usb-antivirus.com/fr/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]https://depannageinformatique.org/acheter/reservation/?f=6[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Contact : [url=http://www.usbfix.net/contact/]https://www.usb-antivirus.com/fr/contact/[/url]

PC: Acer (ZA10_BZ)
CPU: AMD C-70 APU with Radeon(tm) HD Graphics
RAM -> [Total : 1738 Mo| Free : 183 Mo]
Bios: Insyde Corp.
Boot: Normal boot

OS: Microsoft Windows 8 (6.2.9200 64-Bit)
WB: Windows Internet Explorer : 10.0.9200.16899
WB: Google Chrome : 34.0.1847.137
WB: Mozilla Firefox : 28.0

SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: Windows Defender [(!) Disabled | Updated]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender [(!) Disabled | Updated]
AS: avast! Antivirus [Enabled | Updated]
FW: avast! Antivirus [(!) Disabled]
FW: Windows FireWall [Enabled]

C:\ (%SystemDrive%) -> Disque fixe # 139 Go (89 Go libre(s) - 64%) [Acer] # NTFS
D:\ -> Disque fixe # 139 Go (121 Go libre(s) - 87%) [DATA] # NTFS
E:\ -> CD-ROM
G:\ -> Disque amovible # 954 Mo (417 Mo libre(s) - 44%) [KINGSTON 1G] # FAT

[b]################## | Processus Stoppés |[/b]

C:\Windows\System32\atiesrxx.exe (ID: 948|ParentID: 704)
C:\Windows\System32\atieclxx.exe (ID: 1088|ParentID: 948)
C:\Windows\System32\spoolsv.exe (ID: 1592|ParentID: 704|Système)
C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\AdminService.exe (ID: 1848|ParentID: 704|Système)
C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe (ID: 1884|ParentID: 704|Système)
C:\Windows\System32\taskhostex.exe (ID: 2000|ParentID: 704|user)
C:\Windows\explorer.exe (ID: 452|ParentID: 2024|user)
C:\Program Files (x86)\Launch Manager\dsiwmis.exe (ID: 2300|ParentID: 704|Système)
C:\Program Files (x86)\Acer\Acer Portal\ccd.exe (ID: 2308|ParentID: 1884|Système)
C:\Windows\System32\conhost.exe (ID: 2496|ParentID: 2308|Système)
C:\Program Files (x86)\Launch Manager\LMutilps32.exe (ID: 2572|ParentID: 2300|Système)
C:\Program Files\Elantech\ETDService.exe (ID: 2620|ParentID: 704|Système)
C:\ProgramData\DatacardService\HWDeviceService64.exe (ID: 2720|ParentID: 704|Système)
C:\Program Files\Elantech\ETDCtrl.exe (ID: 3008|ParentID: 2620|user)
C:\ProgramData\DatacardService\DCSHelper.exe (ID: 3016|ParentID: 2720|user)
C:\Program Files (x86)\Launch Manager\LManager.exe (ID: 1432|ParentID: 1932|user)
C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (ID: 2284|ParentID: 704|user)
C:\ProgramData\DatacardService\DCSHelper.exe (ID: 1436|ParentID: 2720|user)
C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe (ID: 2644|ParentID: 2996|Système)
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (ID: 2124|ParentID: 704|Système)
C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (ID: 2768|ParentID: 704|Système)
C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe (ID: 2112|ParentID: 704|Système)
C:\Windows\RfBtnSvc64.exe (ID: 1000|ParentID: 704|Système)
C:\Program Files (x86)\Airtel Mobile Internet\Airtel Mobile Internet.exe (ID: 1448|ParentID: 1436|user)
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (ID: 3116|ParentID: 704|Système)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 3388|ParentID: 2360|user)
C:\Windows\System32\SearchIndexer.exe (ID: 3860|ParentID: 704|Système)
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe (ID: 3372|ParentID: 820|user)
C:\Program Files\Elantech\ETDCtrlHelper.exe (ID: 4368|ParentID: 3008|user)
C:\Windows\System32\wbem\unsecapp.exe (ID: 4700|ParentID: 820|Système)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4772|ParentID: 3388|user)
C:\Windows\System32\wbem\unsecapp.exe (ID: 4788|ParentID: 820|Système)
C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\BtvStack.exe (ID: 4868|ParentID: 452|user)
C:\Windows\System32\RuntimeBroker.exe (ID: 4960|ParentID: 820|user)
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (ID: 4992|ParentID: 452|user)
C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (ID: 5064|ParentID: 704|Système)
C:\Program Files (x86)\Skype\Phone\Skype.exe (ID: 3948|ParentID: 452|user)
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (ID: 4548|ParentID: 1432|user)
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (ID: 5132|ParentID: 3116|user)
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (ID: 5408|ParentID: 5192|user)
C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe (ID: 5640|ParentID: 3116|Système)
C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe (ID: 5656|ParentID: 3116|Système)
C:\Windows\System32\wbem\unsecapp.exe (ID: 2348|ParentID: 820|user)
C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (ID: 3768|ParentID: 5064|Système)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 3944|ParentID: 704|SERVICE RÉSEAU)
C:\Users\user\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe (ID: 3380|ParentID: 4248|user)
C:\Program Files\EgisTec IPS\PmmUpdate.exe (ID: 5540|ParentID: 704|user)
C:\Program Files\EgisTec IPS\EgisUpdate.exe (ID: 1780|ParentID: 5448|user)
C:\Windows\System32\WUDFHost.exe (ID: 5184|ParentID: 1120|SERVICE LOCAL)

[b]################## | Autorun |[/b]


[b]################## | Recherche générique |[/b]


(!) Fichiers temporaires supprimés.

[b]################## | Registre |[/b]

Supprimé! HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\Software\.\.\.\.\Mountpoints2\{4c0c76b1-c949-11e3-be8d-74e543a3ba87}
Supprimé! HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\Software\.\.\.\.\Mountpoints2\{4d1efd49-c622-11e3-be87-089e0109e62b}
Supprimé! HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\Software\.\.\.\.\Mountpoints2\{4d1efe4a-c622-11e3-be87-089e0109e62b}
Supprimé! HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\Software\.\.\.\.\Mountpoints2\{964a06d6-c8cb-11e3-be8c-74e543a3ba87}
Supprimé! HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\Software\.\.\.\.\Mountpoints2\{964a077d-c8cb-11e3-be8c-74e543a3ba87}

[b]################## | Regedit Run |[/b]

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Google Update] "C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKCU\..\Run : [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
04 - HKCU\..\Run : [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
04 - HKCU\..\Run : [BUDUmeka] wscript.exe //B "C:\Users\user\AppData\Local\Temp\BUDUmeka.vbs"
04 - HKCU\..\Run : [AcerCloud] "C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe" startup
04 - HKCU\..\Run : [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
04 - HKLM\..\Run : [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
04 - HKLM\..\Run : [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
04 - HKLM\..\Run : [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - HKLM\..\Policies\Explorer\run : [BtvStack] "C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\BtvStack.exe"
04 - [x64] HKLM\..\Run : [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
04 - [x64] HKLM\..\Run : [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
04 - [x64] HKLM\..\Policies\Explorer\run : [BtvStack] "C:\Program Files (x86)\Acer\WDAgent\Bluetooth Suite\BtvStack.exe"
04 - HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run : [Google Update] "C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run : [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
04 - HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run : [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
04 - HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run : [BUDUmeka] wscript.exe //B "C:\Users\user\AppData\Local\Temp\BUDUmeka.vbs"
04 - HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run : [AcerCloud] "C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe" startup
04 - HKU\S-1-5-21-2752213232-3105361922-2378072398-1001\..\Run : [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
04 - HKU\S-1-5-19\..\RunOnce : [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
04 - HKU\S-1-5-20\..\RunOnce : [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}
04 - HKU\S-1-5-18\..\RunOnce : [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid}

[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]

[20/05/2014 - 14:09:17 | ASH | 1423976 Ko] - C:\hiberfil.sys
[20/05/2014 - 14:09:20 | ASH | 2097152 Ko] - C:\pagefile.sys
[20/05/2014 - 14:09:20 | ASH | 262144 Ko] - C:\swapfile.sys
[30/01/2014 - 11:57:33 | SHD] - C:\$Recycle.Bin
[20/05/2014 - 14:36:39 | N | 1 Ko] - C:\PhysicalDisk0_MBR.bin
[03/01/2013 - 15:59:52 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[02/06/2012 - 14:30:55 | N | 0 Ko] - C:\BOOTNXT
[26/07/2012 - 07:22:08 | SHD] - C:\Documents and Settings
[26/07/2012 - 07:33:46 | D] - C:\PerfLogs
[30/01/2014 - 17:49:58 | HD] - C:\sources
[22/04/2014 - 15:11:28 | D] - C:\AcerCloud
[22/04/2014 - 15:20:36 | D] - C:\OEM
[27/04/2014 - 11:56:15 | D] - C:\Users
[14/05/2014 - 14:15:35 | HD] - C:\ProgramData
[15/05/2014 - 17:22:44 | RHD] - C:\MSOCache
[15/05/2014 - 17:41:44 | D] - C:\Windows
[20/05/2014 - 00:23:06 | SHD] - C:\System Volume Information
[20/05/2014 - 08:54:46 | D] - C:\AdwCleaner
[20/05/2014 - 14:06:59 | D] - C:\Program Files
[20/05/2014 - 14:09:15 | D] - C:\Program Files (x86)
[20/05/2014 - 16:01:12 | D] - C:\UsbFix

[b]################## | D:\ - Disque Fixe (NTFS) |[/b]

[01/08/2013 - 21:28:12 | N | 16359 Ko] - D:\23042013006.MP4
[15/10/2013 - 17:57:54 | N | 1351968 Ko] - D:\SANY0087.MP4
[23/10/2013 - 11:40:10 | N | 139392 Ko] - D:\SANY0109.MP4
[23/10/2013 - 15:35:22 | N | 569376 Ko] - D:\SANY0126.MP4
[15/10/2013 - 12:47:08 | N | 3911 Ko] - D:\SANY0083.JPG
[15/10/2013 - 12:50:02 | N | 3450 Ko] - D:\SANY0084.JPG
[15/10/2013 - 12:50:52 | N | 3869 Ko] - D:\SANY0085.JPG
[23/10/2013 - 13:16:44 | N | 5842 Ko] - D:\SAM_1799.JPG
[23/10/2013 - 13:17:34 | N | 3478 Ko] - D:\SANY0114.JPG
[23/10/2013 - 13:18:26 | N | 3776 Ko] - D:\SANY0115.JPG
[23/10/2013 - 14:16:44 | N | 7944 Ko] - D:\SAM_1799_1.JPG
[23/10/2013 - 14:34:24 | N | 6487 Ko] - D:\SAM_1814.JPG
[23/10/2013 - 14:34:34 | N | 7854 Ko] - D:\SAM_1815.JPG
[23/10/2013 - 14:41:26 | N | 7259 Ko] - D:\SAM_1813_1.JPG
[23/10/2013 - 15:22:06 | N | 4243 Ko] - D:\SANY0125.JPG
[23/10/2013 - 15:34:24 | N | 6487 Ko] - D:\SAM_1814_1.JPG
[23/10/2013 - 16:50:50 | N | 3140 Ko] - D:\SANY0133.JPG
[23/10/2013 - 16:51:52 | N | 3039 Ko] - D:\SANY0135.JPG
[26/10/2013 - 20:47:22 | N | 1788 Ko] - D:\SAM_1800.JPG
[01/11/2013 - 11:55:56 | N | 4001 Ko] - D:\SANY0077.JPG
[01/11/2013 - 11:56:04 | N | 3355 Ko] - D:\SANY0128.JPG
[01/11/2013 - 11:57:22 | N | 3719 Ko] - D:\SANY0089.JPG
[01/11/2013 - 11:58:06 | N | 4310 Ko] - D:\SANY0119.JPG
[01/11/2013 - 11:58:14 | N | 4028 Ko] - D:\SANY0120.JPG
[01/11/2013 - 11:58:30 | N | 3417 Ko] - D:\SANY0131.JPG
[27/11/2013 - 14:03:00 | N | 3972 Ko] - D:\SAM_1884.JPG
[28/03/2014 - 20:01:54 | N | 7897 Ko] - D:\SAM_1797.JPG
[28/03/2014 - 20:01:58 | N | 7897 Ko] - D:\SAM_1797_1.JPG
[28/03/2014 - 20:02:03 | N | 7969 Ko] - D:\SAM_1798.JPG
[17/04/2014 - 11:16:52 | N | 5818 Ko] - D:\DSC01669.JPG
[17/04/2014 - 11:17:04 | N | 5520 Ko] - D:\DSC01670.JPG
[17/04/2014 - 11:17:16 | N | 5546 Ko] - D:\DSC01671.JPG
[17/04/2014 - 11:17:34 | N | 5652 Ko] - D:\DSC01672.JPG
[17/04/2014 - 11:18:34 | N | 5867 Ko] - D:\DSC01673.JPG
[17/04/2014 - 11:19:16 | N | 5457 Ko] - D:\DSC01674.JPG
[17/04/2014 - 11:19:44 | N | 5280 Ko] - D:\DSC01675.JPG
[17/04/2014 - 11:20:12 | N | 5112 Ko] - D:\DSC01676.JPG
[17/04/2014 - 11:20:42 | N | 5310 Ko] - D:\DSC01677.JPG
[17/04/2014 - 11:21:52 | N | 5508 Ko] - D:\DSC01678.JPG
[17/04/2014 - 11:22:22 | N | 5793 Ko] - D:\DSC01679.JPG
[17/04/2014 - 11:25:28 | N | 5431 Ko] - D:\DSC01682.JPG
[17/04/2014 - 11:25:52 | N | 5827 Ko] - D:\DSC01683.JPG
[17/04/2014 - 11:27:22 | N | 5775 Ko] - D:\DSC01687.JPG
[17/04/2014 - 11:27:52 | N | 5423 Ko] - D:\DSC01689.JPG
[17/04/2014 - 11:29:08 | N | 5925 Ko] - D:\DSC01690.JPG
[17/04/2014 - 11:36:42 | N | 5758 Ko] - D:\DSC01693.JPG
[17/04/2014 - 16:32:09 | N | 5121 Ko] - D:\DSC01688.JPG
[17/04/2014 - 16:32:27 | N | 4929 Ko] - D:\DSC01686.JPG
[17/04/2014 - 16:32:38 | N | 5186 Ko] - D:\DSC01685.JPG
[17/04/2014 - 16:32:52 | N | 5071 Ko] - D:\DSC01684.JPG
[17/04/2014 - 16:33:21 | N | 5140 Ko] - D:\DSC01680.JPG
[17/04/2014 - 16:34:28 | N | 4628 Ko] - D:\DSC01667.JPG
[17/04/2014 - 16:34:37 | N | 4733 Ko] - D:\DSC01666.JPG
[17/04/2014 - 16:34:45 | N | 4691 Ko] - D:\DSC01665.JPG
[17/04/2014 - 17:33:04 | N | 5955 Ko] - D:\DSC01691.JPG
[17/04/2014 - 17:33:23 | N | 5795 Ko] - D:\DSC01692.JPG
[25/04/2014 - 17:59:45 | N | 2795 Ko] - D:\2013-12-24.jpg
[30/01/2014 - 11:57:34 | SHD] - D:\$RECYCLE.BIN
[23/10/2013 - 14:42:36 | N | 692550 Ko] - D:\SAM_1816.AVI
[23/10/2013 - 16:50:04 | N | 168475 Ko] - D:\SAM_1832.AVI
[30/01/2014 - 09:06:36 | SHD] - D:\System Volume Information
[20/04/2014 - 11:49:47 | D] - D:\2013-10-08
[20/04/2014 - 11:49:49 | D] - D:\2013-10-09
[20/04/2014 - 11:50:29 | D] - D:\2013-10-10
[20/04/2014 - 11:50:30 | D] - D:\2013-10-11
[20/04/2014 - 11:51:01 | D] - D:\2013-10-15
[20/04/2014 - 11:51:06 | D] - D:\2013-10-18
[20/04/2014 - 11:52:33 | D] - D:\2014-01-02
[20/04/2014 - 11:52:35 | D] - D:\2014-01-05
[20/04/2014 - 11:52:35 | D] - D:\2014-01-08
[20/04/2014 - 11:53:27 | D] - D:\2014-01-10
[20/04/2014 - 11:53:29 | D] - D:\20130424
[20/04/2014 - 11:53:30 | D] - D:\20130425
[20/04/2014 - 11:53:32 | D] - D:\20130426
[20/04/2014 - 11:53:41 | D] - D:\20130427
[20/04/2014 - 11:53:45 | D] - D:\20130428
[20/04/2014 - 11:53:51 | D] - D:\20130430
[20/04/2014 - 11:53:57 | D] - D:\20130502
[20/04/2014 - 11:54:00 | D] - D:\20130503
[20/04/2014 - 11:54:02 | D] - D:\20130504
[20/04/2014 - 11:54:03 | D] - D:\ambros caro
[20/04/2014 - 11:54:04 | D] - D:\AVRIL2013
[20/04/2014 - 11:54:07 | D] - D:\Etat civil Ambroise 2014
[20/04/2014 - 11:54:08 | D] - D:\Garantie financières
[20/04/2014 - 11:54:14 | D] - D:\Justificatifs pour recours
[20/04/2014 - 11:54:16 | D] - D:\mariage en France
[20/04/2014 - 11:54:20 | D] - D:\PHOTOS
[21/04/2014 - 10:44:17 | D] - D:\foto numerik
[21/04/2014 - 11:24:09 | D] - D:\Acer Crystal Eye
[26/04/2014 - 11:21:39 | D] - D:\Office_2007
[18/05/2014 - 08:19:48 | D] - D:\20130429
[18/05/2014 - 08:37:08 | D] - D:\Bluetooth Folder
[20/05/2014 - 08:36:48 | D] - D:\2013-10-12

[b]################## | G:\ - Disque USB (FAT) |[/b]

[29/09/2013 - 09:01:44 | N | 5615 Ko] - G:\Drivers_Huawei_4.23.13.00.zip
[21/11/2013 - 20:15:08 | N | 714 Ko] - G:\beProv270.zip
[27/11/2013 - 11:15:58 | N | 2145 Ko] - G:\mdpascrk.zip
[24/03/2014 - 09:15:02 | N | 10 Ko] - G:\SEEE_24__03_14.xlsx
[27/09/2013 - 01:16:38 | D] - G:\.Trashes
[27/11/2013 - 11:05:16 | N | 1880 Ko] - G:\Serie1-pp1-10_Millard.pdf
[27/11/2013 - 11:33:18 | N | 1995 Ko] - G:\route.pdf
[26/12/2013 - 19:55:56 | N | 48 Ko] - G:\FORMULAIRE_LONG_SEJOUR-2.pdf
[26/12/2013 - 20:04:30 | N | 12 Ko] - G:\Conjoint_de_Francais_-_Etablissement_dec_2013.pdf
[26/12/2013 - 20:14:10 | N | 7 Ko] - G:\Formulaire_demande_transcription_mariage.pdf
[22/03/2014 - 13:25:36 | N | 8 Ko] - G:\attestation_CAF_02.2014.pdf
[22/03/2014 - 13:26:42 | N | 220 Ko] - G:\BoardingPass.pdf
[24/03/2014 - 09:54:00 | N | 1243 Ko] - G:\FORMULAIRE_ATTRIBUTION_UNIV_PUB.pdf
[26/03/2014 - 17:39:42 | N | 0 Ko] - G:\billet_d'avril_2013-1.lnk
[22/03/2014 - 13:35:42 | N | 3010 Ko] - G:\doc_prof6.jpg
[22/03/2014 - 13:47:32 | N | 2020 Ko] - G:\certif.jpg
[22/03/2014 - 14:35:30 | N | 263 Ko] - G:\AMBRO-1.jpg
[22/03/2014 - 15:08:34 | N | 234 Ko] - G:\AMBRO-2.jpg
[24/03/2014 - 10:02:42 | N | 3392 Ko] - G:\SEEE_24.03.2014.jpg
[26/03/2014 - 16:56:24 | N | 785 Ko] - G:\DEMANDE VISA (2).jpg
[26/03/2014 - 16:56:24 | N | 785 Ko] - G:\DEMANDE VISA.jpg
[22/03/2014 - 13:34:42 | N | 144 Ko] - G:\reconduction_de_date_par_la_mairie.jpeg
[22/03/2014 - 13:34:56 | N | 230 Ko] - G:\lettre_2.jpeg
[22/03/2014 - 13:35:12 | N | 236 Ko] - G:\lettre_1.jpeg
[22/03/2014 - 13:35:56 | N | 178 Ko] - G:\certificat_de_publication_des_bancs.jpeg
[22/03/2014 - 13:36:08 | N | 155 Ko] - G:\billet_d'avril_2013-1.jpeg
[22/03/2014 - 13:36:24 | N | 155 Ko] - G:\billet_d'avril_2013.jpeg
[30/12/2013 - 19:47:26 | N | 328 Ko] - G:\Mobile+GMaps.jar
[30/12/2013 - 19:55:50 | N | 1150 Ko] - G:\Speed_Heaven_Fugitive_3D_360.jar
[30/12/2013 - 20:07:44 | N | 771 Ko] - G:\Gangstar_Rio_360_5e4a3_ww.jar
[30/12/2013 - 20:13:42 | N | 1936 Ko] - G:\AGoodDayToDieHard_360.jar
[30/12/2013 - 20:18:46 | N | 2178 Ko] - G:\Element_III_360.jar
[26/03/2014 - 17:20:04 | N | 1509 Ko] - G:\John+Carter+360x640.jar
[22/04/2014 - 17:31:06 | N | 69 Ko | SHA1: 69A0D228CD6F414B34F115FAD2CCA0E55E95E316] - G:\dqdhpq.exe
[18/03/2014 - 12:07:34 | N | 20 Ko] - G:\cvguy.docx
[22/03/2014 - 12:54:30 | N | 12 Ko] - G:\attes.docx
[10/09/2013 - 04:11:06 | D] - G:\USB Disk Security 6.2.0.18 [DC 20.12.2012] (2012) ??
[12/11/2013 - 12:38:22 | D] - G:\FOUND.000
[15/09/2013 - 12:12:38 | D] - G:\Kaspersky_Antivirus_&_Internet_Security_2013
[12/11/2013 - 11:41:14 | D] - G:\System_Volume_Information
[14/11/2013 - 18:05:06 | D] - G:\Tina_Christ
[14/11/2013 - 18:05:14 | D] - G:\Amenan_Leontine
[17/11/2013 - 09:09:06 | D] - G:\Readiris
[18/11/2013 - 19:05:06 | D] - G:\System Volume Information

[b]################## | Vaccin |[/b]

D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

[b]################## | E.O.F | [url=http://www.sosvirus.net/]https://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]https://www.usbfix.net/[/url] |[/b]
0