Free : Problème de transmission de fichier : wifi ou ethernet ?
Résolu/Fermé
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
-
Modifié par baladur13 le 17/07/2014 à 21:11
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014 - 17 juil. 2014 à 21:00
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014 - 17 juil. 2014 à 21:00
J'ai un problème sur mon ordinateur à chaque fois que je veux lancer un téléchargement au bout de 40 - 80 mo il y a une érreur réseau qui s'affiche
A voir également:
- Free : Problème de transmission de fichier : wifi ou ethernet ?
- Word 2013 free download - Télécharger - Traitement de texte
- Sketchup free - Télécharger - 3D
- Free office - Télécharger - Suite bureautique
- Free ocr - Télécharger - Divers Bureautique
- Duplicate cleaner free - Télécharger - Divers Utilitaires
5 réponses
Ryan453
Messages postés
810
Date d'inscription
lundi 1 juillet 2013
Statut
Membre
Dernière intervention
25 mars 2020
76
13 juil. 2014 à 23:27
13 juil. 2014 à 23:27
Tu ne subirais pas des micros coupures de réseaux par hasard ?
C'est souvent la cause de ce problème.
C'est souvent la cause de ce problème.
Bonjour, je ne sais pas du tout. Sinon je voudrais bien savoir comment savoir si je subit des coupures de connexion.
PS : je suis chez free
PS : je suis chez free
Ryan453
Messages postés
810
Date d'inscription
lundi 1 juillet 2013
Statut
Membre
Dernière intervention
25 mars 2020
76
17 juil. 2014 à 04:22
17 juil. 2014 à 04:22
Par exemple ton PC se déconnecte du wifi, et se reconnecte juste après, sa arrive souvent chez Free justement, c'était mon cas mais ça s'est arrêter...
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
17 juil. 2014 à 13:54
17 juil. 2014 à 13:54
Non je ne subit pas de coupure de connexion.
Ryan453
Messages postés
810
Date d'inscription
lundi 1 juillet 2013
Statut
Membre
Dernière intervention
25 mars 2020
76
17 juil. 2014 à 15:06
17 juil. 2014 à 15:06
As tu essayer avec un autre navigateur ?
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
17 juil. 2014 à 15:25
17 juil. 2014 à 15:25
oui, avec IE et tjrs le même problème.
Ryan453
Messages postés
810
Date d'inscription
lundi 1 juillet 2013
Statut
Membre
Dernière intervention
25 mars 2020
76
17 juil. 2014 à 15:43
17 juil. 2014 à 15:43
Cela se produit avec tout les téléchargement ou juste un fichier ?
Ryan453
Messages postés
810
Date d'inscription
lundi 1 juillet 2013
Statut
Membre
Dernière intervention
25 mars 2020
76
17 juil. 2014 à 17:46
17 juil. 2014 à 17:46
Lance RogueKiller , mais d'abord ferme tout tes programme, histoire de vérifier un petit truc... lance le en tant qu'admin et lance un scan, ensuite colle le rapport ici.
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
17 juil. 2014 à 18:39
17 juil. 2014 à 18:39
voila le rapport : RogueKiller V9.2.3.0 (x64) [Jul 11 2014] par Adlice Software
Mail : https://www.adlice.com/contact/
Remontées : https://forum.adlice.com/
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : https://www.adlice.com/
Système d'exploitation : Windows 8.1 (6.3.9200 ) 64 bits version
Démarrage : Mode normal
Utilisateur : ramzy [Droits d'admin]
Mode : Recherche -- Date : 07/17/2014 18:38:14
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrées de registre : 12 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-445915333-4135183564-3990401680-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce | Application Restart #2 : C:\Users\ramzy\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\ramzy\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --enable-touch-events --flag-switches-begin --flag-switches-end --restore-last-session -> TROUVÉ
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-445915333-4135183564-3990401680-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce | Application Restart #2 : C:\Users\ramzy\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\ramzy\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --enable-touch-events --flag-switches-begin --flag-switches-end --restore-last-session -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\OATool -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\TDKLIB -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\OATool -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\TDKLIB -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4} | DhcpNameServer : 150.200.3.2 -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4} | DhcpNameServer : 150.200.3.2 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
¤¤¤ Tâches planifiées : 2 ¤¤¤
[Suspicious.Path] Rocket Updater.job -- C:\Users\ramzy\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE (/Check) -> TROUVÉ
[Suspicious.Path] \\Rocket Updater -- C:\Users\ramzy\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE (/Check) -> TROUVÉ
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: CHARGE) ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: WDC WD5000LPVX-22V0TT0 +++++
--- User ---
[MBR] a42e1dc26bc6bc3adaab8af1466dd41a
[BSP] be973148778c5e21e3d4e703eff23715 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK
Mail : https://www.adlice.com/contact/
Remontées : https://forum.adlice.com/
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : https://www.adlice.com/
Système d'exploitation : Windows 8.1 (6.3.9200 ) 64 bits version
Démarrage : Mode normal
Utilisateur : ramzy [Droits d'admin]
Mode : Recherche -- Date : 07/17/2014 18:38:14
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrées de registre : 12 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-445915333-4135183564-3990401680-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce | Application Restart #2 : C:\Users\ramzy\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\ramzy\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --enable-touch-events --flag-switches-begin --flag-switches-end --restore-last-session -> TROUVÉ
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-445915333-4135183564-3990401680-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce | Application Restart #2 : C:\Users\ramzy\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\ramzy\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --enable-touch-events --flag-switches-begin --flag-switches-end --restore-last-session -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\OATool -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\TDKLIB -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\OATool -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\TDKLIB -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4} | DhcpNameServer : 150.200.3.2 -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4} | DhcpNameServer : 150.200.3.2 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
¤¤¤ Tâches planifiées : 2 ¤¤¤
[Suspicious.Path] Rocket Updater.job -- C:\Users\ramzy\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE (/Check) -> TROUVÉ
[Suspicious.Path] \\Rocket Updater -- C:\Users\ramzy\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE (/Check) -> TROUVÉ
¤¤¤ Fichiers : 0 ¤¤¤
¤¤¤ Fichier HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: CHARGE) ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: WDC WD5000LPVX-22V0TT0 +++++
--- User ---
[MBR] a42e1dc26bc6bc3adaab8af1466dd41a
[BSP] be973148778c5e21e3d4e703eff23715 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
17 juil. 2014 à 18:40
17 juil. 2014 à 18:40
tout ce qui est suspect je le supprime?
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
17 juil. 2014 à 18:13
17 juil. 2014 à 18:13
d'accord.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Ryan453
Messages postés
810
Date d'inscription
lundi 1 juillet 2013
Statut
Membre
Dernière intervention
25 mars 2020
76
17 juil. 2014 à 18:57
17 juil. 2014 à 18:57
Sa fait un petit paquet lol, oui supprime.
Ensuite lance ZHPDiag en mode recherche et poste le rapport
Ensuite lance ZHPDiag en mode recherche et poste le rapport
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
17 juil. 2014 à 19:06
17 juil. 2014 à 19:06
Je ferme tout les programmes là aussi?
Ryan453
Messages postés
810
Date d'inscription
lundi 1 juillet 2013
Statut
Membre
Dernière intervention
25 mars 2020
76
17 juil. 2014 à 19:09
17 juil. 2014 à 19:09
C'est mieux pour éviter les beugs.
loboroxe
Messages postés
10
Date d'inscription
dimanche 13 juillet 2014
Statut
Membre
Dernière intervention
17 juillet 2014
17 juil. 2014 à 21:00
17 juil. 2014 à 21:00
voila le rapport de ZHPDiag : ~ Rapport de ZHPDiag v2014.7.16.105 - Nicolas Coolman (16/07/2014)
~ Lancé par ramzy (17/07/2014 19:21:49)
~ Adresse du Site Web https://nicolascoolman.eu
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17207
GCIE: Google Chrome v36.0.1985.125 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : XD6R3
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
avast! Premier v9.0.2021
Windows Defender W8 (Deactivate)
---\\ Logiciels d'optimisation du système
CCleaner v4.15
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Reader XI
Java 7 Update 60
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 55 Stepping 3, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3979 MB (46% free)
System Restore: Activé (Enable)
System drive C: has 373 GB (83%) free of 448 GB
---\\ Mode de connexion au système
~ Computer Name: PACKARD-BELL
~ User Name: ramzy
~ All Users Names: ramzy, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\ramzy\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\ramzy\AppData\Roaming\
~ %Desktop% : C:\Users\ramzy\Desktop\
~ %Favorites% : C:\Users\ramzy\Favorites\
~ %LocalAppData% : C:\Users\ramzy\AppData\Local\
~ %StartMenu% : C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 373 Go of 448 Go)
D: CD-ROM drive (Not Inserted)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Explorateur Windows.) (.04/03/2014 - 13:25:49.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 23:58:27.) -- C:\Windows\System32\wininet.dll [2266112]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.22/02/2014 - 10:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/12/2013 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.30/05/2014 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.498288DD5CA42C2D36D125893E968C53] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.18/03/2014 - 09:19:14.) -- C:\Windows\system32\Drivers\HDAudBus.sys [77312]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.0696F66E4D423793951A60562F794D14] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.03/04/2014 - 03:23:05.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402432]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.20/03/2014 - 04:41:24.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.22/08/2013 - 20:11:06.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.4BB9BC49DEE1A319EC58274A7BBED663] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/03/2014 - 13:42:44.) -- C:\Windows\system32\Drivers\volsnap.sys [310616]
~ Generic Processes: Scanned in 00mn 01s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/116
~ Mes musiques (My Musics) : 1/4
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 1/1013
~ Mon Bureau (My Desktop) : 2/8
~ Menu demarrer (Programs) : 1/29
~ Hidden Files: Scanned in 00mn 04s
---\\ Processus lancés
[MD5.2F03C763EE0DFB4DE56176737DEFB2E2] - (.Microsoft Corporation - Touch Keyboard and Handwriting Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [21184] [PID.2764]
[MD5.DD9EAE1C80561C509A8B8801E16BAA38] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1104384] [PID.3940]
[MD5.26AFC1F16494FFE66F2197153B342A27] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432] [PID.1244]
[MD5.65B475F5CBD02FC1DED9B13209BE44B7] - (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [53504] [PID.4000]
[MD5.1DE859B82E381A645C44284A5044BC33] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896] [PID.6536]
[MD5.2F5572C210B6A8E0C5EC4D3288E6C671] - (.Acer Incorporated - Gesture Detection.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\GestureDetection.exe [2320256] [PID.2412]
[MD5.95BEBCAF62541B9FD006F3B5EC893AD0] - (.Acer Incorporated - Launch Screen Grasp.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\Launch Screen Grasp.exe [38440] [PID.4680]
[MD5.07172AE32812C00603887C0D54DEADA0] - (.Microsoft Corporation - Microsoft Office Document Cache Sync Client.) -- C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.exe [79600] [PID.6980]
[MD5.BCD68F99E6751218BE8D513BF24896F3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8076800] [PID.1924]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.fr/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [aapbdbdomjkkjkaonfhkkikfgjllcleb] Google Translate v.1.2.5 (Activé)
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Docs v.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Extutil v.0.1 (Activé) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activé) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2021.112, (Activé)
G2 - GCE: Preference [User Data\Default] [ibnjmihbbanannlbobkbmnmckjnmdnom] Rocket New Tab v.0.2.4, (Désactivé) =>PUP.RockTurner
G2 - GCE: Preference [User Data\Default] [kmendfapggjehodndflmmgagdbamhnfd] CryptoTokenExtension v.0.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mkfokfffehpeedafpekjeddnmnjhmcmk] Norton Identity Protection v.2014.7.0.48, (Désactivé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [njgpiocdhdmnglomggfjkkonjjfahnom] Norton Identity Safe v.1.0.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Google+ Hangouts v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [oiokahphinmbmakkehgelkmpolmnbkdh] Battlefield Play4Free v.1.0.96.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [Google Translate]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Google Docs]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgpiocdhdmnglomggfjkkonjjfahnom [Norton Identity Safe]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [Battlefield Play4Free]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 36 Scanned in 00mn 13s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.5.1f3.) -- C:\Users\ramzy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Firefox Browser: 2 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/ =>PUP.RockTurner
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer13.msn.com&ocid=AARDHP&pc=MAARJS
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17031 (winblue_gdr.140221-1952)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} Clé orpheline
O2 - BHO: (no name) [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} Clé orpheline
~ BHO: 6 Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [ramzy]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ramzy\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [ramzy]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ramzy\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 2 Scanned in 00mn 03s
---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [BacKGround Agent] . (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm®Atheros® - Extension Core.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
O4 - HKUS\S-1-5-21-445915333-4135183564-3990401680-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D43CDC24-A3D6-4BA5-AF31-F31032D9FB88}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4}: DhcpDomain = WDS02.COM
O17 - HKLM\System\CS1\Services\Tcpip\..\{D43CDC24-A3D6-4BA5-AF31-F31032D9FB88}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4}: DhcpDomain = WDS02.COM
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll =>PUP.SearchProtect
~ AppInit DLL: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent - WildTangent Games App Integration Service.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Launch Manager Service (LMSvc) . (.Acer Incorporate - LMSvc.) - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
O23 - Service: c:\Program Files (x86)\Nero\Update\NASvc.exe (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
~ Services: 11 Scanned in 00mn 12s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.D2151ED5147A70F77AA6C07B10F4499D] [APT] [AcerCloud] (...) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2524416]
[MD5.0C9D9446E7430E2D40F1A88EACD76F6E] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4150312]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.1AD8512A5C40AD1A0558498D8E0AC2AA] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [808448]
[MD5.11543DEB4316B9DBB42999C83495838F] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4624152]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.284B7132DF91F48C83E61A2B437F1776] [APT] [Launch Manager] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMLauncher.exe [437288]
[MD5.95BEBCAF62541B9FD006F3B5EC893AD0] [APT] [Launch Screen Grasp_First] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\Launch Screen Grasp.exe [38440]
[MD5.63FC3383151D90D4E7CF135661CE8342] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5306408]
[MD5.A90ECB8E6F0C23756E858560EF30753C] [APT] [Prelauncher] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\InputTask.exe [23592]
[MD5.A90ECB8E6F0C23756E858560EF30753C] [APT] [prelauncher_First] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\InputTask.exe [23592]
[MD5.4F57B40BEE426AEEB16E54042E8A0FE6] [APT] [Quick Access] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Quick Access\QALauncher.exe [322088]
[MD5.2F5572C210B6A8E0C5EC4D3288E6C671] [APT] [Screen Grasp GestureDetection] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\GestureDetection.exe [2320256]
[MD5.C4D6627A4AF540BC70DFFAB03D169797] [APT] [Synaptics TouchPad Enhancements] (.Synaptics Incorporated.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778352]
[MD5.47AACF204D22F4CD64CDD9B1C0BACF2A] [APT] [Notification] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [282152]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1088]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1088]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1092]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1092]
~ Scheduled Task: 21 Scanned in 00mn 13s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 40 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: AOP Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {4A37A114-702F-4055-A4B6-16571D4A5353}
O42 - Logiciel: Acer Docs Office AddIn - (.Acer.) [HKLM][64Bits] -- {DCBF3379-246B-47E1-8173-639B63940838}
O42 - Logiciel: Acer Portal - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {77D28FF5-242F-488A-8215-937D6A4D69E0}
O42 - Logiciel: Adobe Reader XI (11.0.07) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-01839e4e-604a-4c64-9b5f-fa161516c954
O42 - Logiciel: Battlefield Play4Free - (.EA Digital illusions.) [HKLM][64Bits] -- {87686C21-8A15-4b4d-A3F1-11141D9BE094}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Canaux de jeu - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-genres
O42 - Logiciel: Canaux de jeu - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-main
O42 - Logiciel: Cradle Of Egypt Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-d9f4f044-e406-49a0-8225-d09406211f2e
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-1d34fa71-fc61-49a0-bf41-2fbd0d143b09
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {176E2755-0A17-42C6-88E2-192AB2131278}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {BCCACFE6-91A0-4F32-80A0-ADC0CA048C7B}
O42 - Logiciel: Intel(R) Trusted Execution Engine Driver - (.Intel Corporation.) [HKLM][64Bits] -- {3685B5E8-A0A8-494B-B035-B221547A4B63}
O42 - Logiciel: Java 7 Update 60 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F03217060FF}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Luxor Evolved - (.WildTangent.) [HKLM][64Bits] -- WTA-1537fdda-11fb-43cd-ad02-a81c94607ea9
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-1ed7b411-1a2d-493a-96cf-0b27c3791d38
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {551AC8F2-FEA2-4B45-ACF7-C98681233CC9}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: Office Addin - (.Acer.) [HKLM][64Bits] -- {6D2BBE1D-E600-4695-BA37-0B0E605542CC}
O42 - Logiciel: Packard Bell Games - (.Pokki.) [HKCU][64Bits] -- Pokki_c3e2005ede46d0c9848c79a4f19e87561ed8d0aa
O42 - Logiciel: Packard Bell Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- {C18D55BD-1EC6-466D-B763-8EEDDDA9100E}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Quick Access - (.Packard Bell.) [HKLM][64Bits] -- {C1FA525F-D701-4B31-9D32-504FC0CF0B98}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: Packard Bell Screen Grasp - (.Packard Bell.) [HKLM][64Bits] -- {84443E5D-0767-438B-B1C8-6A52FAB2101B}
O42 - Logiciel: Packard Bell Touch Tools - (.Packard Bell.) [HKLM][64Bits] -- {BB1F8130-3CB3-4896-9D28-770DFFFDE59C}
O42 - Logiciel: Peggle Nights - (.WildTangent.) [HKLM][64Bits] -- WTA-206d19b3-6f63-4dc9-a99f-483e8d871741
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-dc19bffc-d5d1-40ae-9371-ab272dd7f4ed
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Search Protect - (.Client Connect LTD.) [HKLM][64Bits] -- SearchProtect =>PUP.SearchProtect
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {19B0831B-0C18-4103-86E4-90FCD04CD3B9}
O42 - Logiciel: The Chronicles of Emerland Solitaire - (.WildTangent.) [HKLM][64Bits] -- WTA-988907e9-dad5-4bc7-9946-d4600839f89f
O42 - Logiciel: Trinklit Supreme - (.WildTangent.) [HKLM][64Bits] -- WTA-01680804-1943-4001-a994-9acf95590cc7
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Visual Studio Tools for the Office system 3.0 Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer
O42 - Logiciel: WinRAR 5.10 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: abDocs - (.Acer Incorporated.) [HKLM][64Bits] -- {CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
O42 - Logiciel: abFiles - (.Acer Incorporated.) [HKLM][64Bits] -- {13885028-098C-4799-9B71-27DAC96502D5}
O42 - Logiciel: abMedia - (.Acer Incorporated.) [HKLM][64Bits] -- {E9AF1707-3F3A-49E2-8345-4F2D629D0876}
O42 - Logiciel: abPhoto - (.Acer Incorporated.) [HKLM][64Bits] -- {B5AD89F2-03D3-4206-8487-018298007DD0}
O42 - Logiciel: avast! Premier v9.0.2021 - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {91589413-6675-4C27-8AFC-EFB9103B90A5} =>Toolbar.eBay
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
~ Logic: 56 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Google]
[HKCU\Software\IO Interactive]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Rocket Browser] =>PUP.RockTurner
[HKCU\Software\RocketUpdater] =>PUP.RockTurner
[HKCU\Software\Synaptics]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\Valve]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ankama]
[HKLM\Software\Atheros]
[HKLM\Software\Classes]
[HKLM\Software\Clearfi]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\Google]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Norton]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Synaptics]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clearfi]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Ubisoft]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node]
[HKLM\Software\acer]
~ Key Software: 242 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/07/2014 - 09:39:48 - [] ----D C:\Program Files (x86)\Acer
O43 - CFD: 02/07/2014 - 15:12:43 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 16/07/2014 - 10:32:39 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 26/03/2014 - 08:16:56 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 14/07/2014 - 16:31:02 - [] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 21/06/2014 - 15:01:17 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 26/03/2014 - 08:16:02 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 26/03/2014 - 07:45:33 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 10/07/2014 - 11:06:31 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/07/2014 - 10:32:27 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 26/03/2014 - 08:14:37 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 29/06/2014 - 00:36:09 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 15/07/2014 - 18:32:38 - [] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 15/07/2014 - 18:31:26 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 06/11/2013 - 13:40:39 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 07/11/2013 - 03:46:51 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 21/06/2014 - 14:32:55 - [] ----D C:\Program Files (x86)\OEM
O43 - CFD: 26/03/2014 - 08:08:26 - [] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 26/03/2014 - 07:58:33 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 26/03/2014 - 07:52:46 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 06/11/2013 - 13:40:39 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 10/07/2014 - 17:20:21 - [] ----D C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect
O43 - CFD: 26/03/2014 - 08:03:01 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 07/11/2013 - 03:48:51 - [] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 05/07/2014 - 19:26:20 - [] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 26/03/2014 - 07:50:41 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 08/07/2014 - 16:25:48 - [0] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 03/07/2014 - 15:30:44 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 07/11/2013 - 03:42:56 - [] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 21/06/2014 - 14:41:05 - [] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 27/06/2014 - 23:58:10 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/08/2013 - 17:36:30 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 17/07/2014 - 19:20:48 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 25/06/2014 - 11:00:39 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 02/07/2014 - 15:12:37 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 26/03/2014 - 07:55:53 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 15/07/2014 - 18:31:33 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 26/03/2014 - 07:49:57 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 26/03/2014 - 07:43:04 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 16/07/2014 - 10:32:39 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 15/07/2014 - 18:31:34 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 07/11/2013 - 03:46:33 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 22/08/2013 - 17:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 02/07/2014 - 15:03:21 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 26/03/2014 - 08:28:00 - [] ----D C:\ProgramData\acer
O43 - CFD: 04/07/2014 - 16:06:33 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 26/03/2014 - 08:01:09 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 02/07/2014 - 14:41:26 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 21/06/2014 - 14:41:22 - [] ----D C:\ProgramData\BlueStacks
O43 - CFD: 02/07/2014 - 15:07:59 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 08/07/2014 - 09:39:40 - [] ----D C:\ProgramData\clear.fi
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 26/03/2014 - 07:45:31 - [] ----D C:\ProgramData\Intel
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 15/07/2014 - 18:32:11 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/07/2014 - 18:32:22 - [] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 07/11/2013 - 03:46:33 - [] ----D C:\ProgramData\Nero
O43 - CFD: 04/07/2014 - 16:05:07 - [] ----D C:\ProgramData\Norton
O43 - CFD: 02/07/2014 - 15:09:38 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 03/07/2014 - 21:09:01 - [] ----D C:\ProgramData\OEM
O43 - CFD: 21/06/2014 - 14:32:23 - [] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 16/07/2014 - 10:42:57 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 08/07/2014 - 16:57:47 - [] ----D C:\ProgramData\Orbit
O43 - CFD: 07/11/2013 - 03:45:32 - [] ----D C:\ProgramData\Packard Bell
O43 - CFD: 26/03/2014 - 07:55:11 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 15/07/2014 - 19:08:56 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 17/07/2014 - 18:11:42 - [] ----D C:\ProgramData\RogueKiller
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 08/07/2014 - 16:57:48 - [] ----D C:\ProgramData\Steam
O43 - CFD: 02/07/2014 - 15:15:30 - [] ----D C:\ProgramData\Sun
O43 - CFD: 05/07/2014 - 19:26:20 - [] ----D C:\ProgramData\SystemRequirementsLab
O43 - CFD: 26/03/2014 - 08:16:29 - [] ----D C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 21/06/2014 - 14:43:08 - [] ----D C:\ProgramData\Wild Tangent
O43 - CFD: 21/06/2014 - 14:43:08 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/06/2014 - 17:42:10 - [] ----D C:\Users\ramzy\AppData\Roaming\acer
O43 - CFD: 04/07/2014 - 15:34:05 - [] ----D C:\Users\ramzy\AppData\Roaming\Adobe
O43 - CFD: 11/07/2014 - 18:07:38 - [] ----D C:\Users\ramzy\AppData\Roaming\AnkamaCertificates
O43 - CFD: 11/07/2014 - 18:06:25 - [] ----D C:\Users\ramzy\AppData\Roaming\app
O43 - CFD: 21/06/2014 - 14:33:55 - [] ----D C:\Users\ramzy\AppData\Roaming\Atheros
O43 - CFD: 02/07/2014 - 15:00:10 - [] ----D C:\Users\ramzy\AppData\Roaming\AVAST Software
O43 - CFD: 11/07/2014 - 18:06:19 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus
O43 - CFD: 11/07/2014 - 18:28:14 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus-2
O43 - CFD: 12/07/2014 - 00:18:14 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus-3
O43 - CFD: 13/07/2014 - 21:04:09 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus2
O43 - CFD: 17/07/2014 - 13:37:54 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus2Beta
O43 - CFD: 16/07/2014 - 00:02:29 - [] ----D C:\Users\ramzy\AppData\Roaming\DofusBeta
O43 - CFD: 17/07/2014 - 13:35:55 - [] ----D C:\Users\ramzy\AppData\Roaming\DofusBeta-2
O43 - CFD: 21/06/2014 - 14:40:24 - [] ----D C:\Users\ramzy\AppData\Roaming\Macromedia
O43 - CFD: 15/07/2014 - 18:55:28 - [] -S--D C:\Users\ramzy\AppData\Roaming\Microsoft
O43 - CFD: 11/07/2014 - 18:06:25 - [] ----D C:\Users\ramzy\AppData\Roaming\RegLocal
O43 - CFD: 13/07/2014 - 14:54:24 - [] ----D C:\Users\ramzy\AppData\Roaming\RocketUpdater =>PUP.RockTurner
O43 - CFD: 27/06/2014 - 18:43:58 - [] ----D C:\Users\ramzy\AppData\Roaming\Spotify
O43 - CFD: 21/06/2014 - 14:35:08 - [] ----D C:\Users\ramzy\AppData\Roaming\Synaptics
O43 - CFD: 06/07/2014 - 20:27:12 - [] ----D C:\Users\ramzy\AppData\Roaming\Unity
O43 - CFD: 13/07/2014 - 14:57:53 - [] ----D C:\Users\ramzy\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 12/07/2014 - 20:33:46 - [] ----D C:\Users\ramzy\AppData\Roaming\vlc
O43 - CFD: 21/06/2014 - 15:06:48 - [] ----D C:\Users\ramzy\AppData\Roaming\WildTangent
O43 - CFD: 04/07/2014 - 15:11:11 - [] ----D C:\Users\ramzy\AppData\Roaming\WinRAR
O43 - CFD: 17/07/2014 - 19:22:46 - [] ----D C:\Users\ramzy\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 21/06/2014 - 18:14:54 - [] ----D C:\Users\ramzy\AppData\Local\Acer
O43 - CFD: 21/06/2014 - 17:05:19 - [] ----D C:\Users\ramzy\AppData\Local\Acer Aspire R7 Tutorial
O43 - CFD: 21/06/2014 - 17:57:29 - [] ----D C:\Users\ramzy\AppData\Local\AcerCloud
O43 - CFD: 03/07/2014 - 21:07:52 - [] ----D C:\Users\ramzy\AppData\Local\AcerPortal
O43 - CFD: 03/07/2014 - 21:03:05 - [] ----D C:\Users\ramzy\AppData\Local\AcerRemoteFile
O43 - CFD: 04/07/2014 - 15:34:05 - [] ----D C:\Users\ramzy\AppData\Local\Adobe
O43 - CFD: 15/07/2014 - 21:06:35 - [] ----D C:\Users\ramzy\AppData\Local\Ankama
O43 - CFD: 03/07/2014 - 21:04:14 - [] ----D C:\Users\ramzy\AppData\Local\AOP SDK
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Application Data
O43 - CFD: 15/07/2014 - 18:27:19 - [] ----D C:\Users\ramzy\AppData\Local\clear.fi
O43 - CFD: 21/06/2014 - 17:48:42 - [] ----D C:\Users\ramzy\AppData\Local\ClearfiMedia
O43 - CFD: 21/06/2014 - 17:41:53 - [] ----D C:\Users\ramzy\AppData\Local\ClearfiPhoto
O43 - CFD: 17/07/2014 - 10:15:42 - [] ----D C:\Users\ramzy\AppData\Local\CrashDumps
O43 - CFD: 07/07/2014 - 14:54:46 - [] ----D C:\Users\ramzy\AppData\Local\Diagnostics
O43 - CFD: 21/06/2014 - 17:51:52 - [] ----D C:\Users\ramzy\AppData\Local\Doc
O43 - CFD: 28/06/2014 - 12:24:37 - [] -SH-D C:\Users\ramzy\AppData\Local\EmieSiteList
O43 - CFD: 28/06/2014 - 12:24:37 - [] -SH-D C:\Users\ramzy\AppData\Local\EmieUserList
O43 - CFD: 21/06/2014 - 15:01:32 - [] ----D C:\Users\ramzy\AppData\Local\Google
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Historique
O43 - CFD: 04/07/2014 - 15:44:49 - [] ----D C:\Users\ramzy\AppData\Local\iGware
O43 - CFD: 15/07/2014 - 18:32:22 - [] ----D C:\Users\ramzy\AppData\Local\Microsoft
O43 - CFD: 14/07/2014 - 01:22:31 - [] ----D C:\Users\ramzy\AppData\Local\Packages
O43 - CFD: 02/07/2014 - 15:41:46 - [0] ----D C:\Users\ramzy\AppData\Local\PackageStaging
O43 - CFD: 21/06/2014 - 14:35:15 - [] ----D C:\Users\ramzy\AppData\Local\Packard Bell
O43 - CFD: 08/07/2014 - 16:32:15 - [] ----D C:\Users\ramzy\AppData\Local\Programs
O43 - CFD: 15/07/2014 - 00:00:30 - [] ----D C:\Users\ramzy\AppData\Local\PunkBuster
O43 - CFD: 07/07/2014 - 21:34:21 - [] ----D C:\Users\ramzy\AppData\Local\SearchProtect =>PUP.SearchProtect
O43 - CFD: 09/07/2014 - 18:24:59 - [] ----D C:\Users\ramzy\AppData\Local\SKIDROW
O43 - CFD: 27/06/2014 - 18:43:53 - [] ----D C:\Users\ramzy\AppData\Local\Spotify
O43 - CFD: 17/07/2014 - 19:21:37 - [] ----D C:\Users\ramzy\AppData\Local\Temp
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Temporary Internet Files
O43 - CFD: 08/07/2014 - 16:25:48 - [0] ----D C:\Users\ramzy\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 06/07/2014 - 20:21:14 - [] ----D C:\Users\ramzy\AppData\Local\Unity
O43 - CFD: 15/07/2014 - 18:26:03 - [] ----D C:\Users\ramzy\AppData\Local\VirtualStore
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 28/06/2014 - 10:54:23 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CF
~ Lancé par ramzy (17/07/2014 19:21:49)
~ Adresse du Site Web https://nicolascoolman.eu
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17207
GCIE: Google Chrome v36.0.1985.125 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : XD6R3
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
avast! Premier v9.0.2021
Windows Defender W8 (Deactivate)
---\\ Logiciels d'optimisation du système
CCleaner v4.15
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Reader XI
Java 7 Update 60
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 55 Stepping 3, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3979 MB (46% free)
System Restore: Activé (Enable)
System drive C: has 373 GB (83%) free of 448 GB
---\\ Mode de connexion au système
~ Computer Name: PACKARD-BELL
~ User Name: ramzy
~ All Users Names: ramzy, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\ramzy\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\ramzy\AppData\Roaming\
~ %Desktop% : C:\Users\ramzy\Desktop\
~ %Favorites% : C:\Users\ramzy\Favorites\
~ %LocalAppData% : C:\Users\ramzy\AppData\Local\
~ %StartMenu% : C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 373 Go of 448 Go)
D: CD-ROM drive (Not Inserted)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Explorateur Windows.) (.04/03/2014 - 13:25:49.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 23:58:27.) -- C:\Windows\System32\wininet.dll [2266112]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.22/02/2014 - 10:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/12/2013 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.30/05/2014 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.498288DD5CA42C2D36D125893E968C53] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.18/03/2014 - 09:19:14.) -- C:\Windows\system32\Drivers\HDAudBus.sys [77312]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.0696F66E4D423793951A60562F794D14] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.03/04/2014 - 03:23:05.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402432]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.20/03/2014 - 04:41:24.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.22/08/2013 - 20:11:06.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.4BB9BC49DEE1A319EC58274A7BBED663] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/03/2014 - 13:42:44.) -- C:\Windows\system32\Drivers\volsnap.sys [310616]
~ Generic Processes: Scanned in 00mn 01s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/116
~ Mes musiques (My Musics) : 1/4
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 1/1013
~ Mon Bureau (My Desktop) : 2/8
~ Menu demarrer (Programs) : 1/29
~ Hidden Files: Scanned in 00mn 04s
---\\ Processus lancés
[MD5.2F03C763EE0DFB4DE56176737DEFB2E2] - (.Microsoft Corporation - Touch Keyboard and Handwriting Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [21184] [PID.2764]
[MD5.DD9EAE1C80561C509A8B8801E16BAA38] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1104384] [PID.3940]
[MD5.26AFC1F16494FFE66F2197153B342A27] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432] [PID.1244]
[MD5.65B475F5CBD02FC1DED9B13209BE44B7] - (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [53504] [PID.4000]
[MD5.1DE859B82E381A645C44284A5044BC33] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896] [PID.6536]
[MD5.2F5572C210B6A8E0C5EC4D3288E6C671] - (.Acer Incorporated - Gesture Detection.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\GestureDetection.exe [2320256] [PID.2412]
[MD5.95BEBCAF62541B9FD006F3B5EC893AD0] - (.Acer Incorporated - Launch Screen Grasp.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\Launch Screen Grasp.exe [38440] [PID.4680]
[MD5.07172AE32812C00603887C0D54DEADA0] - (.Microsoft Corporation - Microsoft Office Document Cache Sync Client.) -- C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.exe [79600] [PID.6980]
[MD5.BCD68F99E6751218BE8D513BF24896F3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8076800] [PID.1924]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.fr/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [aapbdbdomjkkjkaonfhkkikfgjllcleb] Google Translate v.1.2.5 (Activé)
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Docs v.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Extutil v.0.1 (Activé) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activé) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2021.112, (Activé)
G2 - GCE: Preference [User Data\Default] [ibnjmihbbanannlbobkbmnmckjnmdnom] Rocket New Tab v.0.2.4, (Désactivé) =>PUP.RockTurner
G2 - GCE: Preference [User Data\Default] [kmendfapggjehodndflmmgagdbamhnfd] CryptoTokenExtension v.0.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mkfokfffehpeedafpekjeddnmnjhmcmk] Norton Identity Protection v.2014.7.0.48, (Désactivé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [njgpiocdhdmnglomggfjkkonjjfahnom] Norton Identity Safe v.1.0.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Google+ Hangouts v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [oiokahphinmbmakkehgelkmpolmnbkdh] Battlefield Play4Free v.1.0.96.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [Google Translate]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Google Docs]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgpiocdhdmnglomggfjkkonjjfahnom [Norton Identity Safe]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [Battlefield Play4Free]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 36 Scanned in 00mn 13s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.5.1f3.) -- C:\Users\ramzy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Firefox Browser: 2 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/ =>PUP.RockTurner
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer13.msn.com&ocid=AARDHP&pc=MAARJS
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17031 (winblue_gdr.140221-1952)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} Clé orpheline
O2 - BHO: (no name) [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} Clé orpheline
~ BHO: 6 Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [ramzy]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ramzy\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [ramzy]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ramzy\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 2 Scanned in 00mn 03s
---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [BacKGround Agent] . (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm®Atheros® - Extension Core.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
O4 - HKUS\S-1-5-21-445915333-4135183564-3990401680-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D43CDC24-A3D6-4BA5-AF31-F31032D9FB88}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4}: DhcpDomain = WDS02.COM
O17 - HKLM\System\CS1\Services\Tcpip\..\{D43CDC24-A3D6-4BA5-AF31-F31032D9FB88}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4}: DhcpDomain = WDS02.COM
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll =>PUP.SearchProtect
~ AppInit DLL: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent - WildTangent Games App Integration Service.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Launch Manager Service (LMSvc) . (.Acer Incorporate - LMSvc.) - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
O23 - Service: c:\Program Files (x86)\Nero\Update\NASvc.exe (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
~ Services: 11 Scanned in 00mn 12s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.D2151ED5147A70F77AA6C07B10F4499D] [APT] [AcerCloud] (...) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2524416]
[MD5.0C9D9446E7430E2D40F1A88EACD76F6E] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4150312]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.1AD8512A5C40AD1A0558498D8E0AC2AA] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [808448]
[MD5.11543DEB4316B9DBB42999C83495838F] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4624152]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.284B7132DF91F48C83E61A2B437F1776] [APT] [Launch Manager] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMLauncher.exe [437288]
[MD5.95BEBCAF62541B9FD006F3B5EC893AD0] [APT] [Launch Screen Grasp_First] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\Launch Screen Grasp.exe [38440]
[MD5.63FC3383151D90D4E7CF135661CE8342] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5306408]
[MD5.A90ECB8E6F0C23756E858560EF30753C] [APT] [Prelauncher] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\InputTask.exe [23592]
[MD5.A90ECB8E6F0C23756E858560EF30753C] [APT] [prelauncher_First] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\InputTask.exe [23592]
[MD5.4F57B40BEE426AEEB16E54042E8A0FE6] [APT] [Quick Access] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Quick Access\QALauncher.exe [322088]
[MD5.2F5572C210B6A8E0C5EC4D3288E6C671] [APT] [Screen Grasp GestureDetection] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\GestureDetection.exe [2320256]
[MD5.C4D6627A4AF540BC70DFFAB03D169797] [APT] [Synaptics TouchPad Enhancements] (.Synaptics Incorporated.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778352]
[MD5.47AACF204D22F4CD64CDD9B1C0BACF2A] [APT] [Notification] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [282152]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1088]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1088]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1092]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1092]
~ Scheduled Task: 21 Scanned in 00mn 13s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 40 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: AOP Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {4A37A114-702F-4055-A4B6-16571D4A5353}
O42 - Logiciel: Acer Docs Office AddIn - (.Acer.) [HKLM][64Bits] -- {DCBF3379-246B-47E1-8173-639B63940838}
O42 - Logiciel: Acer Portal - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {77D28FF5-242F-488A-8215-937D6A4D69E0}
O42 - Logiciel: Adobe Reader XI (11.0.07) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-01839e4e-604a-4c64-9b5f-fa161516c954
O42 - Logiciel: Battlefield Play4Free - (.EA Digital illusions.) [HKLM][64Bits] -- {87686C21-8A15-4b4d-A3F1-11141D9BE094}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Canaux de jeu - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-genres
O42 - Logiciel: Canaux de jeu - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-main
O42 - Logiciel: Cradle Of Egypt Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-d9f4f044-e406-49a0-8225-d09406211f2e
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-1d34fa71-fc61-49a0-bf41-2fbd0d143b09
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {176E2755-0A17-42C6-88E2-192AB2131278}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {BCCACFE6-91A0-4F32-80A0-ADC0CA048C7B}
O42 - Logiciel: Intel(R) Trusted Execution Engine Driver - (.Intel Corporation.) [HKLM][64Bits] -- {3685B5E8-A0A8-494B-B035-B221547A4B63}
O42 - Logiciel: Java 7 Update 60 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F03217060FF}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Luxor Evolved - (.WildTangent.) [HKLM][64Bits] -- WTA-1537fdda-11fb-43cd-ad02-a81c94607ea9
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-1ed7b411-1a2d-493a-96cf-0b27c3791d38
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {551AC8F2-FEA2-4B45-ACF7-C98681233CC9}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: Office Addin - (.Acer.) [HKLM][64Bits] -- {6D2BBE1D-E600-4695-BA37-0B0E605542CC}
O42 - Logiciel: Packard Bell Games - (.Pokki.) [HKCU][64Bits] -- Pokki_c3e2005ede46d0c9848c79a4f19e87561ed8d0aa
O42 - Logiciel: Packard Bell Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- {C18D55BD-1EC6-466D-B763-8EEDDDA9100E}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Quick Access - (.Packard Bell.) [HKLM][64Bits] -- {C1FA525F-D701-4B31-9D32-504FC0CF0B98}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: Packard Bell Screen Grasp - (.Packard Bell.) [HKLM][64Bits] -- {84443E5D-0767-438B-B1C8-6A52FAB2101B}
O42 - Logiciel: Packard Bell Touch Tools - (.Packard Bell.) [HKLM][64Bits] -- {BB1F8130-3CB3-4896-9D28-770DFFFDE59C}
O42 - Logiciel: Peggle Nights - (.WildTangent.) [HKLM][64Bits] -- WTA-206d19b3-6f63-4dc9-a99f-483e8d871741
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-dc19bffc-d5d1-40ae-9371-ab272dd7f4ed
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Search Protect - (.Client Connect LTD.) [HKLM][64Bits] -- SearchProtect =>PUP.SearchProtect
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {19B0831B-0C18-4103-86E4-90FCD04CD3B9}
O42 - Logiciel: The Chronicles of Emerland Solitaire - (.WildTangent.) [HKLM][64Bits] -- WTA-988907e9-dad5-4bc7-9946-d4600839f89f
O42 - Logiciel: Trinklit Supreme - (.WildTangent.) [HKLM][64Bits] -- WTA-01680804-1943-4001-a994-9acf95590cc7
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Visual Studio Tools for the Office system 3.0 Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer
O42 - Logiciel: WinRAR 5.10 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: abDocs - (.Acer Incorporated.) [HKLM][64Bits] -- {CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
O42 - Logiciel: abFiles - (.Acer Incorporated.) [HKLM][64Bits] -- {13885028-098C-4799-9B71-27DAC96502D5}
O42 - Logiciel: abMedia - (.Acer Incorporated.) [HKLM][64Bits] -- {E9AF1707-3F3A-49E2-8345-4F2D629D0876}
O42 - Logiciel: abPhoto - (.Acer Incorporated.) [HKLM][64Bits] -- {B5AD89F2-03D3-4206-8487-018298007DD0}
O42 - Logiciel: avast! Premier v9.0.2021 - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {91589413-6675-4C27-8AFC-EFB9103B90A5} =>Toolbar.eBay
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
~ Logic: 56 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Google]
[HKCU\Software\IO Interactive]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Rocket Browser] =>PUP.RockTurner
[HKCU\Software\RocketUpdater] =>PUP.RockTurner
[HKCU\Software\Synaptics]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\Valve]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ankama]
[HKLM\Software\Atheros]
[HKLM\Software\Classes]
[HKLM\Software\Clearfi]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\Google]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Norton]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Synaptics]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clearfi]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Ubisoft]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node]
[HKLM\Software\acer]
~ Key Software: 242 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/07/2014 - 09:39:48 - [] ----D C:\Program Files (x86)\Acer
O43 - CFD: 02/07/2014 - 15:12:43 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 16/07/2014 - 10:32:39 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 26/03/2014 - 08:16:56 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 14/07/2014 - 16:31:02 - [] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 21/06/2014 - 15:01:17 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 26/03/2014 - 08:16:02 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 26/03/2014 - 07:45:33 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 10/07/2014 - 11:06:31 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/07/2014 - 10:32:27 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 26/03/2014 - 08:14:37 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 29/06/2014 - 00:36:09 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 15/07/2014 - 18:32:38 - [] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 15/07/2014 - 18:31:26 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 06/11/2013 - 13:40:39 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 07/11/2013 - 03:46:51 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 21/06/2014 - 14:32:55 - [] ----D C:\Program Files (x86)\OEM
O43 - CFD: 26/03/2014 - 08:08:26 - [] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 26/03/2014 - 07:58:33 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 26/03/2014 - 07:52:46 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 06/11/2013 - 13:40:39 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 10/07/2014 - 17:20:21 - [] ----D C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect
O43 - CFD: 26/03/2014 - 08:03:01 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 07/11/2013 - 03:48:51 - [] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 05/07/2014 - 19:26:20 - [] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 26/03/2014 - 07:50:41 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 08/07/2014 - 16:25:48 - [0] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 03/07/2014 - 15:30:44 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 07/11/2013 - 03:42:56 - [] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 21/06/2014 - 14:41:05 - [] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 27/06/2014 - 23:58:10 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/08/2013 - 17:36:30 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 17/07/2014 - 19:20:48 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 25/06/2014 - 11:00:39 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 02/07/2014 - 15:12:37 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 26/03/2014 - 07:55:53 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 15/07/2014 - 18:31:33 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 26/03/2014 - 07:49:57 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 26/03/2014 - 07:43:04 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 16/07/2014 - 10:32:39 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 15/07/2014 - 18:31:34 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 07/11/2013 - 03:46:33 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 22/08/2013 - 17:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 02/07/2014 - 15:03:21 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 26/03/2014 - 08:28:00 - [] ----D C:\ProgramData\acer
O43 - CFD: 04/07/2014 - 16:06:33 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 26/03/2014 - 08:01:09 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 02/07/2014 - 14:41:26 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 21/06/2014 - 14:41:22 - [] ----D C:\ProgramData\BlueStacks
O43 - CFD: 02/07/2014 - 15:07:59 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 08/07/2014 - 09:39:40 - [] ----D C:\ProgramData\clear.fi
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 26/03/2014 - 07:45:31 - [] ----D C:\ProgramData\Intel
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 15/07/2014 - 18:32:11 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/07/2014 - 18:32:22 - [] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 07/11/2013 - 03:46:33 - [] ----D C:\ProgramData\Nero
O43 - CFD: 04/07/2014 - 16:05:07 - [] ----D C:\ProgramData\Norton
O43 - CFD: 02/07/2014 - 15:09:38 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 03/07/2014 - 21:09:01 - [] ----D C:\ProgramData\OEM
O43 - CFD: 21/06/2014 - 14:32:23 - [] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 16/07/2014 - 10:42:57 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 08/07/2014 - 16:57:47 - [] ----D C:\ProgramData\Orbit
O43 - CFD: 07/11/2013 - 03:45:32 - [] ----D C:\ProgramData\Packard Bell
O43 - CFD: 26/03/2014 - 07:55:11 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 15/07/2014 - 19:08:56 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 17/07/2014 - 18:11:42 - [] ----D C:\ProgramData\RogueKiller
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 08/07/2014 - 16:57:48 - [] ----D C:\ProgramData\Steam
O43 - CFD: 02/07/2014 - 15:15:30 - [] ----D C:\ProgramData\Sun
O43 - CFD: 05/07/2014 - 19:26:20 - [] ----D C:\ProgramData\SystemRequirementsLab
O43 - CFD: 26/03/2014 - 08:16:29 - [] ----D C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 21/06/2014 - 14:43:08 - [] ----D C:\ProgramData\Wild Tangent
O43 - CFD: 21/06/2014 - 14:43:08 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/06/2014 - 17:42:10 - [] ----D C:\Users\ramzy\AppData\Roaming\acer
O43 - CFD: 04/07/2014 - 15:34:05 - [] ----D C:\Users\ramzy\AppData\Roaming\Adobe
O43 - CFD: 11/07/2014 - 18:07:38 - [] ----D C:\Users\ramzy\AppData\Roaming\AnkamaCertificates
O43 - CFD: 11/07/2014 - 18:06:25 - [] ----D C:\Users\ramzy\AppData\Roaming\app
O43 - CFD: 21/06/2014 - 14:33:55 - [] ----D C:\Users\ramzy\AppData\Roaming\Atheros
O43 - CFD: 02/07/2014 - 15:00:10 - [] ----D C:\Users\ramzy\AppData\Roaming\AVAST Software
O43 - CFD: 11/07/2014 - 18:06:19 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus
O43 - CFD: 11/07/2014 - 18:28:14 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus-2
O43 - CFD: 12/07/2014 - 00:18:14 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus-3
O43 - CFD: 13/07/2014 - 21:04:09 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus2
O43 - CFD: 17/07/2014 - 13:37:54 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus2Beta
O43 - CFD: 16/07/2014 - 00:02:29 - [] ----D C:\Users\ramzy\AppData\Roaming\DofusBeta
O43 - CFD: 17/07/2014 - 13:35:55 - [] ----D C:\Users\ramzy\AppData\Roaming\DofusBeta-2
O43 - CFD: 21/06/2014 - 14:40:24 - [] ----D C:\Users\ramzy\AppData\Roaming\Macromedia
O43 - CFD: 15/07/2014 - 18:55:28 - [] -S--D C:\Users\ramzy\AppData\Roaming\Microsoft
O43 - CFD: 11/07/2014 - 18:06:25 - [] ----D C:\Users\ramzy\AppData\Roaming\RegLocal
O43 - CFD: 13/07/2014 - 14:54:24 - [] ----D C:\Users\ramzy\AppData\Roaming\RocketUpdater =>PUP.RockTurner
O43 - CFD: 27/06/2014 - 18:43:58 - [] ----D C:\Users\ramzy\AppData\Roaming\Spotify
O43 - CFD: 21/06/2014 - 14:35:08 - [] ----D C:\Users\ramzy\AppData\Roaming\Synaptics
O43 - CFD: 06/07/2014 - 20:27:12 - [] ----D C:\Users\ramzy\AppData\Roaming\Unity
O43 - CFD: 13/07/2014 - 14:57:53 - [] ----D C:\Users\ramzy\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 12/07/2014 - 20:33:46 - [] ----D C:\Users\ramzy\AppData\Roaming\vlc
O43 - CFD: 21/06/2014 - 15:06:48 - [] ----D C:\Users\ramzy\AppData\Roaming\WildTangent
O43 - CFD: 04/07/2014 - 15:11:11 - [] ----D C:\Users\ramzy\AppData\Roaming\WinRAR
O43 - CFD: 17/07/2014 - 19:22:46 - [] ----D C:\Users\ramzy\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 21/06/2014 - 18:14:54 - [] ----D C:\Users\ramzy\AppData\Local\Acer
O43 - CFD: 21/06/2014 - 17:05:19 - [] ----D C:\Users\ramzy\AppData\Local\Acer Aspire R7 Tutorial
O43 - CFD: 21/06/2014 - 17:57:29 - [] ----D C:\Users\ramzy\AppData\Local\AcerCloud
O43 - CFD: 03/07/2014 - 21:07:52 - [] ----D C:\Users\ramzy\AppData\Local\AcerPortal
O43 - CFD: 03/07/2014 - 21:03:05 - [] ----D C:\Users\ramzy\AppData\Local\AcerRemoteFile
O43 - CFD: 04/07/2014 - 15:34:05 - [] ----D C:\Users\ramzy\AppData\Local\Adobe
O43 - CFD: 15/07/2014 - 21:06:35 - [] ----D C:\Users\ramzy\AppData\Local\Ankama
O43 - CFD: 03/07/2014 - 21:04:14 - [] ----D C:\Users\ramzy\AppData\Local\AOP SDK
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Application Data
O43 - CFD: 15/07/2014 - 18:27:19 - [] ----D C:\Users\ramzy\AppData\Local\clear.fi
O43 - CFD: 21/06/2014 - 17:48:42 - [] ----D C:\Users\ramzy\AppData\Local\ClearfiMedia
O43 - CFD: 21/06/2014 - 17:41:53 - [] ----D C:\Users\ramzy\AppData\Local\ClearfiPhoto
O43 - CFD: 17/07/2014 - 10:15:42 - [] ----D C:\Users\ramzy\AppData\Local\CrashDumps
O43 - CFD: 07/07/2014 - 14:54:46 - [] ----D C:\Users\ramzy\AppData\Local\Diagnostics
O43 - CFD: 21/06/2014 - 17:51:52 - [] ----D C:\Users\ramzy\AppData\Local\Doc
O43 - CFD: 28/06/2014 - 12:24:37 - [] -SH-D C:\Users\ramzy\AppData\Local\EmieSiteList
O43 - CFD: 28/06/2014 - 12:24:37 - [] -SH-D C:\Users\ramzy\AppData\Local\EmieUserList
O43 - CFD: 21/06/2014 - 15:01:32 - [] ----D C:\Users\ramzy\AppData\Local\Google
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Historique
O43 - CFD: 04/07/2014 - 15:44:49 - [] ----D C:\Users\ramzy\AppData\Local\iGware
O43 - CFD: 15/07/2014 - 18:32:22 - [] ----D C:\Users\ramzy\AppData\Local\Microsoft
O43 - CFD: 14/07/2014 - 01:22:31 - [] ----D C:\Users\ramzy\AppData\Local\Packages
O43 - CFD: 02/07/2014 - 15:41:46 - [0] ----D C:\Users\ramzy\AppData\Local\PackageStaging
O43 - CFD: 21/06/2014 - 14:35:15 - [] ----D C:\Users\ramzy\AppData\Local\Packard Bell
O43 - CFD: 08/07/2014 - 16:32:15 - [] ----D C:\Users\ramzy\AppData\Local\Programs
O43 - CFD: 15/07/2014 - 00:00:30 - [] ----D C:\Users\ramzy\AppData\Local\PunkBuster
O43 - CFD: 07/07/2014 - 21:34:21 - [] ----D C:\Users\ramzy\AppData\Local\SearchProtect =>PUP.SearchProtect
O43 - CFD: 09/07/2014 - 18:24:59 - [] ----D C:\Users\ramzy\AppData\Local\SKIDROW
O43 - CFD: 27/06/2014 - 18:43:53 - [] ----D C:\Users\ramzy\AppData\Local\Spotify
O43 - CFD: 17/07/2014 - 19:21:37 - [] ----D C:\Users\ramzy\AppData\Local\Temp
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Temporary Internet Files
O43 - CFD: 08/07/2014 - 16:25:48 - [0] ----D C:\Users\ramzy\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 06/07/2014 - 20:21:14 - [] ----D C:\Users\ramzy\AppData\Local\Unity
O43 - CFD: 15/07/2014 - 18:26:03 - [] ----D C:\Users\ramzy\AppData\Local\VirtualStore
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 28/06/2014 - 10:54:23 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CF