Free : Problème de transmission de fichier : wifi ou ethernet ?

Résolu/Fermé
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014 - Modifié par baladur13 le 17/07/2014 à 21:11
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014 - 17 juil. 2014 à 21:00
Bonjour,

J'ai un problème sur mon ordinateur à chaque fois que je veux lancer un téléchargement au bout de 40 - 80 mo il y a une érreur réseau qui s'affiche


A voir également:

5 réponses

Ryan453 Messages postés 810 Date d'inscription lundi 1 juillet 2013 Statut Membre Dernière intervention 25 mars 2020 76
13 juil. 2014 à 23:27
Tu ne subirais pas des micros coupures de réseaux par hasard ?

C'est souvent la cause de ce problème.
0
Bonjour, je ne sais pas du tout. Sinon je voudrais bien savoir comment savoir si je subit des coupures de connexion.

PS : je suis chez free
0
Ryan453 Messages postés 810 Date d'inscription lundi 1 juillet 2013 Statut Membre Dernière intervention 25 mars 2020 76
17 juil. 2014 à 04:22
Par exemple ton PC se déconnecte du wifi, et se reconnecte juste après, sa arrive souvent chez Free justement, c'était mon cas mais ça s'est arrêter...
0
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014
17 juil. 2014 à 13:54
Non je ne subit pas de coupure de connexion.
0
Ryan453 Messages postés 810 Date d'inscription lundi 1 juillet 2013 Statut Membre Dernière intervention 25 mars 2020 76
17 juil. 2014 à 15:06
As tu essayer avec un autre navigateur ?
0
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014
17 juil. 2014 à 15:25
oui, avec IE et tjrs le même problème.
0
Ryan453 Messages postés 810 Date d'inscription lundi 1 juillet 2013 Statut Membre Dernière intervention 25 mars 2020 76
17 juil. 2014 à 15:43
Cela se produit avec tout les téléchargement ou juste un fichier ?
0
Ryan453 Messages postés 810 Date d'inscription lundi 1 juillet 2013 Statut Membre Dernière intervention 25 mars 2020 76
17 juil. 2014 à 17:46
Lance RogueKiller , mais d'abord ferme tout tes programme, histoire de vérifier un petit truc... lance le en tant qu'admin et lance un scan, ensuite colle le rapport ici.
0
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014
17 juil. 2014 à 18:39
voila le rapport : RogueKiller V9.2.3.0 (x64) [Jul 11 2014] par Adlice Software
Mail : https://www.adlice.com/contact/
Remontées : https://forum.adlice.com/
Site Web : http://www.surlatoile.org/RogueKiller/
Blog : https://www.adlice.com/

Système d'exploitation : Windows 8.1 (6.3.9200 ) 64 bits version
Démarrage : Mode normal
Utilisateur : ramzy [Droits d'admin]
Mode : Recherche -- Date : 07/17/2014 18:38:14

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrées de registre : 12 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-445915333-4135183564-3990401680-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce | Application Restart #2 : C:\Users\ramzy\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\ramzy\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --enable-touch-events --flag-switches-begin --flag-switches-end --restore-last-session -> TROUVÉ
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-445915333-4135183564-3990401680-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce | Application Restart #2 : C:\Users\ramzy\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\ramzy\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --enable-touch-events --flag-switches-begin --flag-switches-end --restore-last-session -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\OATool -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\TDKLIB -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\OATool -> TROUVÉ
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\TDKLIB -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4} | DhcpNameServer : 150.200.3.2 -> TROUVÉ
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4} | DhcpNameServer : 150.200.3.2 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> TROUVÉ
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> TROUVÉ

¤¤¤ Tâches planifiées : 2 ¤¤¤
[Suspicious.Path] Rocket Updater.job -- C:\Users\ramzy\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE (/Check) -> TROUVÉ
[Suspicious.Path] \\Rocket Updater -- C:\Users\ramzy\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE (/Check) -> TROUVÉ

¤¤¤ Fichiers : 0 ¤¤¤

¤¤¤ Fichier HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: CHARGE) ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ MBR Verif : ¤¤¤
+++++ PhysicalDrive0: WDC WD5000LPVX-22V0TT0 +++++
--- User ---
[MBR] a42e1dc26bc6bc3adaab8af1466dd41a
[BSP] be973148778c5e21e3d4e703eff23715 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK
User = LL2 ... OK
0
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014
17 juil. 2014 à 18:40
tout ce qui est suspect je le supprime?
0
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014
17 juil. 2014 à 18:13
d'accord.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Ryan453 Messages postés 810 Date d'inscription lundi 1 juillet 2013 Statut Membre Dernière intervention 25 mars 2020 76
17 juil. 2014 à 18:57
Sa fait un petit paquet lol, oui supprime.

Ensuite lance ZHPDiag en mode recherche et poste le rapport

0
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014
17 juil. 2014 à 19:06
Je ferme tout les programmes là aussi?
0
Ryan453 Messages postés 810 Date d'inscription lundi 1 juillet 2013 Statut Membre Dernière intervention 25 mars 2020 76
17 juil. 2014 à 19:09
C'est mieux pour éviter les beugs.
0
loboroxe Messages postés 10 Date d'inscription dimanche 13 juillet 2014 Statut Membre Dernière intervention 17 juillet 2014
17 juil. 2014 à 21:00
voila le rapport de ZHPDiag : ~ Rapport de ZHPDiag v2014.7.16.105 - Nicolas Coolman (16/07/2014)
~ Lancé par ramzy (17/07/2014 19:21:49)
~ Adresse du Site Web https://nicolascoolman.eu
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17207
GCIE: Google Chrome v36.0.1985.125 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : XD6R3
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
avast! Premier v9.0.2021
Windows Defender W8 (Deactivate)

---\\ Logiciels d'optimisation du système
CCleaner v4.15

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Reader XI
Java 7 Update 60

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 55 Stepping 3, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3979 MB (46% free)
System Restore: Activé (Enable)
System drive C: has 373 GB (83%) free of 448 GB

---\\ Mode de connexion au système
~ Computer Name: PACKARD-BELL
~ User Name: ramzy
~ All Users Names: ramzy, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\ramzy\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\ramzy\AppData\Roaming\
~ %Desktop% : C:\Users\ramzy\Desktop\
~ %Favorites% : C:\Users\ramzy\Favorites\
~ %LocalAppData% : C:\Users\ramzy\AppData\Local\
~ %StartMenu% : C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 373 Go of 448 Go)
D: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Explorateur Windows.) (.04/03/2014 - 13:25:49.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 23:58:27.) -- C:\Windows\System32\wininet.dll [2266112]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.22/02/2014 - 10:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/12/2013 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.30/05/2014 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.498288DD5CA42C2D36D125893E968C53] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.18/03/2014 - 09:19:14.) -- C:\Windows\system32\Drivers\HDAudBus.sys [77312]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.0696F66E4D423793951A60562F794D14] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.03/04/2014 - 03:23:05.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402432]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.20/03/2014 - 04:41:24.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.22/08/2013 - 20:11:06.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.4BB9BC49DEE1A319EC58274A7BBED663] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/03/2014 - 13:42:44.) -- C:\Windows\system32\Drivers\volsnap.sys [310616]
~ Generic Processes: Scanned in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/116
~ Mes musiques (My Musics) : 1/4
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 1/1013
~ Mon Bureau (My Desktop) : 2/8
~ Menu demarrer (Programs) : 1/29
~ Hidden Files: Scanned in 00mn 04s



---\\ Processus lancés
[MD5.2F03C763EE0DFB4DE56176737DEFB2E2] - (.Microsoft Corporation - Touch Keyboard and Handwriting Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [21184] [PID.2764]
[MD5.DD9EAE1C80561C509A8B8801E16BAA38] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1104384] [PID.3940]
[MD5.26AFC1F16494FFE66F2197153B342A27] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432] [PID.1244]
[MD5.65B475F5CBD02FC1DED9B13209BE44B7] - (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [53504] [PID.4000]
[MD5.1DE859B82E381A645C44284A5044BC33] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896] [PID.6536]
[MD5.2F5572C210B6A8E0C5EC4D3288E6C671] - (.Acer Incorporated - Gesture Detection.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\GestureDetection.exe [2320256] [PID.2412]
[MD5.95BEBCAF62541B9FD006F3B5EC893AD0] - (.Acer Incorporated - Launch Screen Grasp.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\Launch Screen Grasp.exe [38440] [PID.4680]
[MD5.07172AE32812C00603887C0D54DEADA0] - (.Microsoft Corporation - Microsoft Office Document Cache Sync Client.) -- C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.exe [79600] [PID.6980]
[MD5.BCD68F99E6751218BE8D513BF24896F3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8076800] [PID.1924]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.fr/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [aapbdbdomjkkjkaonfhkkikfgjllcleb] Google Translate v.1.2.5 (Activé)
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Docs v.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Extutil v.0.1 (Activé) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activé) =>PUP.Manager
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2021.112, (Activé)
G2 - GCE: Preference [User Data\Default] [ibnjmihbbanannlbobkbmnmckjnmdnom] Rocket New Tab v.0.2.4, (Désactivé) =>PUP.RockTurner
G2 - GCE: Preference [User Data\Default] [kmendfapggjehodndflmmgagdbamhnfd] CryptoTokenExtension v.0.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mkfokfffehpeedafpekjeddnmnjhmcmk] Norton Identity Protection v.2014.7.0.48, (Désactivé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [njgpiocdhdmnglomggfjkkonjjfahnom] Norton Identity Safe v.1.0.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Google+ Hangouts v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [oiokahphinmbmakkehgelkmpolmnbkdh] Battlefield Play4Free v.1.0.96.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [Google Translate]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Google Docs]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgpiocdhdmnglomggfjkkonjjfahnom [Norton Identity Safe]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [Battlefield Play4Free]
G2 - EXT: C:\Users\ramzy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 36 Scanned in 00mn 13s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.5.1f3.) -- C:\Users\ramzy\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Firefox Browser: 2 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://speedial.com/ =>PUP.RockTurner
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer13.msn.com&ocid=AARDHP&pc=MAARJS
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17031 (winblue_gdr.140221-1952)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} Clé orpheline
O2 - BHO: (no name) [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} Clé orpheline
~ BHO: 6 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [ramzy]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ramzy\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [ramzy]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\ramzy\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 2 Scanned in 00mn 03s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [BacKGround Agent] . (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm®Atheros® - Extension Core.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
O4 - HKUS\S-1-5-21-445915333-4135183564-3990401680-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D43CDC24-A3D6-4BA5-AF31-F31032D9FB88}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4}: DhcpDomain = WDS02.COM
O17 - HKLM\System\CS1\Services\Tcpip\..\{D43CDC24-A3D6-4BA5-AF31-F31032D9FB88}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{FBFCEAA7-B3D8-40AF-883F-6F34417F3BE4}: DhcpDomain = WDS02.COM
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll =>PUP.SearchProtect
~ AppInit DLL: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent - WildTangent Games App Integration Service.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Launch Manager Service (LMSvc) . (.Acer Incorporate - LMSvc.) - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
O23 - Service: c:\Program Files (x86)\Nero\Update\NASvc.exe (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
~ Services: 11 Scanned in 00mn 12s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.D2151ED5147A70F77AA6C07B10F4499D] [APT] [AcerCloud] (...) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2524416]
[MD5.0C9D9446E7430E2D40F1A88EACD76F6E] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4150312]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.1AD8512A5C40AD1A0558498D8E0AC2AA] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [808448]
[MD5.11543DEB4316B9DBB42999C83495838F] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4624152]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.284B7132DF91F48C83E61A2B437F1776] [APT] [Launch Manager] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMLauncher.exe [437288]
[MD5.95BEBCAF62541B9FD006F3B5EC893AD0] [APT] [Launch Screen Grasp_First] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\Launch Screen Grasp.exe [38440]
[MD5.63FC3383151D90D4E7CF135661CE8342] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5306408]
[MD5.A90ECB8E6F0C23756E858560EF30753C] [APT] [Prelauncher] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\InputTask.exe [23592]
[MD5.A90ECB8E6F0C23756E858560EF30753C] [APT] [prelauncher_First] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\InputTask.exe [23592]
[MD5.4F57B40BEE426AEEB16E54042E8A0FE6] [APT] [Quick Access] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Quick Access\QALauncher.exe [322088]
[MD5.2F5572C210B6A8E0C5EC4D3288E6C671] [APT] [Screen Grasp GestureDetection] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Screen Grasp\GestureDetection.exe [2320256]
[MD5.C4D6627A4AF540BC70DFFAB03D169797] [APT] [Synaptics TouchPad Enhancements] (.Synaptics Incorporated.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778352]
[MD5.47AACF204D22F4CD64CDD9B1C0BACF2A] [APT] [Notification] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [282152]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1088]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1088]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1092]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1092]
~ Scheduled Task: 21 Scanned in 00mn 13s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 40 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: AOP Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {4A37A114-702F-4055-A4B6-16571D4A5353}
O42 - Logiciel: Acer Docs Office AddIn - (.Acer.) [HKLM][64Bits] -- {DCBF3379-246B-47E1-8173-639B63940838}
O42 - Logiciel: Acer Portal - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {77D28FF5-242F-488A-8215-937D6A4D69E0}
O42 - Logiciel: Adobe Reader XI (11.0.07) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-01839e4e-604a-4c64-9b5f-fa161516c954
O42 - Logiciel: Battlefield Play4Free - (.EA Digital illusions.) [HKLM][64Bits] -- {87686C21-8A15-4b4d-A3F1-11141D9BE094}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Canaux de jeu - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-genres
O42 - Logiciel: Canaux de jeu - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-main
O42 - Logiciel: Cradle Of Egypt Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-d9f4f044-e406-49a0-8225-d09406211f2e
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-1d34fa71-fc61-49a0-bf41-2fbd0d143b09
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {176E2755-0A17-42C6-88E2-192AB2131278}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {BCCACFE6-91A0-4F32-80A0-ADC0CA048C7B}
O42 - Logiciel: Intel(R) Trusted Execution Engine Driver - (.Intel Corporation.) [HKLM][64Bits] -- {3685B5E8-A0A8-494B-B035-B221547A4B63}
O42 - Logiciel: Java 7 Update 60 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F03217060FF}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Luxor Evolved - (.WildTangent.) [HKLM][64Bits] -- WTA-1537fdda-11fb-43cd-ad02-a81c94607ea9
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-1ed7b411-1a2d-493a-96cf-0b27c3791d38
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {551AC8F2-FEA2-4B45-ACF7-C98681233CC9}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: Office Addin - (.Acer.) [HKLM][64Bits] -- {6D2BBE1D-E600-4695-BA37-0B0E605542CC}
O42 - Logiciel: Packard Bell Games - (.Pokki.) [HKCU][64Bits] -- Pokki_c3e2005ede46d0c9848c79a4f19e87561ed8d0aa
O42 - Logiciel: Packard Bell Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- {C18D55BD-1EC6-466D-B763-8EEDDDA9100E}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Quick Access - (.Packard Bell.) [HKLM][64Bits] -- {C1FA525F-D701-4B31-9D32-504FC0CF0B98}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: Packard Bell Screen Grasp - (.Packard Bell.) [HKLM][64Bits] -- {84443E5D-0767-438B-B1C8-6A52FAB2101B}
O42 - Logiciel: Packard Bell Touch Tools - (.Packard Bell.) [HKLM][64Bits] -- {BB1F8130-3CB3-4896-9D28-770DFFFDE59C}
O42 - Logiciel: Peggle Nights - (.WildTangent.) [HKLM][64Bits] -- WTA-206d19b3-6f63-4dc9-a99f-483e8d871741
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-dc19bffc-d5d1-40ae-9371-ab272dd7f4ed
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Search Protect - (.Client Connect LTD.) [HKLM][64Bits] -- SearchProtect =>PUP.SearchProtect
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {19B0831B-0C18-4103-86E4-90FCD04CD3B9}
O42 - Logiciel: The Chronicles of Emerland Solitaire - (.WildTangent.) [HKLM][64Bits] -- WTA-988907e9-dad5-4bc7-9946-d4600839f89f
O42 - Logiciel: Trinklit Supreme - (.WildTangent.) [HKLM][64Bits] -- WTA-01680804-1943-4001-a994-9acf95590cc7
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Visual Studio Tools for the Office system 3.0 Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer
O42 - Logiciel: WinRAR 5.10 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: abDocs - (.Acer Incorporated.) [HKLM][64Bits] -- {CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
O42 - Logiciel: abFiles - (.Acer Incorporated.) [HKLM][64Bits] -- {13885028-098C-4799-9B71-27DAC96502D5}
O42 - Logiciel: abMedia - (.Acer Incorporated.) [HKLM][64Bits] -- {E9AF1707-3F3A-49E2-8345-4F2D629D0876}
O42 - Logiciel: abPhoto - (.Acer Incorporated.) [HKLM][64Bits] -- {B5AD89F2-03D3-4206-8487-018298007DD0}
O42 - Logiciel: avast! Premier v9.0.2021 - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {91589413-6675-4C27-8AFC-EFB9103B90A5} =>Toolbar.eBay
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
~ Logic: 56 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Google]
[HKCU\Software\IO Interactive]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Rocket Browser] =>PUP.RockTurner
[HKCU\Software\RocketUpdater] =>PUP.RockTurner
[HKCU\Software\Synaptics]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\Valve]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ankama]
[HKLM\Software\Atheros]
[HKLM\Software\Classes]
[HKLM\Software\Clearfi]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\Google]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Norton]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Synaptics]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clearfi]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Ubisoft]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node]
[HKLM\Software\acer]
~ Key Software: 242 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/07/2014 - 09:39:48 - [] ----D C:\Program Files (x86)\Acer
O43 - CFD: 02/07/2014 - 15:12:43 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 16/07/2014 - 10:32:39 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 26/03/2014 - 08:16:56 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 14/07/2014 - 16:31:02 - [] ----D C:\Program Files (x86)\EA Games
O43 - CFD: 21/06/2014 - 15:01:17 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 26/03/2014 - 08:16:02 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 26/03/2014 - 07:45:33 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 10/07/2014 - 11:06:31 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/07/2014 - 10:32:27 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 26/03/2014 - 08:14:37 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 29/06/2014 - 00:36:09 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 15/07/2014 - 18:32:38 - [] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 15/07/2014 - 18:31:26 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 06/11/2013 - 13:40:39 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 07/11/2013 - 03:46:51 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 21/06/2014 - 14:32:55 - [] ----D C:\Program Files (x86)\OEM
O43 - CFD: 26/03/2014 - 08:08:26 - [] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 26/03/2014 - 07:58:33 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 26/03/2014 - 07:52:46 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 06/11/2013 - 13:40:39 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 10/07/2014 - 17:20:21 - [] ----D C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect
O43 - CFD: 26/03/2014 - 08:03:01 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 07/11/2013 - 03:48:51 - [] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 05/07/2014 - 19:26:20 - [] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 26/03/2014 - 07:50:41 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 08/07/2014 - 16:25:48 - [0] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 03/07/2014 - 15:30:44 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 07/11/2013 - 03:42:56 - [] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 21/06/2014 - 14:41:05 - [] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 27/06/2014 - 23:58:10 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 27/06/2014 - 23:57:05 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/08/2013 - 17:36:30 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 17/07/2014 - 19:20:48 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 25/06/2014 - 11:00:39 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 02/07/2014 - 15:12:37 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 26/03/2014 - 07:55:53 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 15/07/2014 - 18:31:33 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 26/03/2014 - 07:49:57 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 26/03/2014 - 07:43:04 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 16/07/2014 - 10:32:39 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 15/07/2014 - 18:31:34 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 07/11/2013 - 03:46:33 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 22/08/2013 - 17:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 02/07/2014 - 15:03:21 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 26/03/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 26/03/2014 - 08:28:00 - [] ----D C:\ProgramData\acer
O43 - CFD: 04/07/2014 - 16:06:33 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 26/03/2014 - 08:01:09 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 02/07/2014 - 14:41:26 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 21/06/2014 - 14:41:22 - [] ----D C:\ProgramData\BlueStacks
O43 - CFD: 02/07/2014 - 15:07:59 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 08/07/2014 - 09:39:40 - [] ----D C:\ProgramData\clear.fi
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 26/03/2014 - 08:17:37 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 26/03/2014 - 07:45:31 - [] ----D C:\ProgramData\Intel
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 15/07/2014 - 18:32:11 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/07/2014 - 18:32:22 - [] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 26/03/2014 - 08:47:10 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 07/11/2013 - 03:46:33 - [] ----D C:\ProgramData\Nero
O43 - CFD: 04/07/2014 - 16:05:07 - [] ----D C:\ProgramData\Norton
O43 - CFD: 02/07/2014 - 15:09:38 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 03/07/2014 - 21:09:01 - [] ----D C:\ProgramData\OEM
O43 - CFD: 21/06/2014 - 14:32:23 - [] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 16/07/2014 - 10:42:57 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 08/07/2014 - 16:57:47 - [] ----D C:\ProgramData\Orbit
O43 - CFD: 07/11/2013 - 03:45:32 - [] ----D C:\ProgramData\Packard Bell
O43 - CFD: 26/03/2014 - 07:55:11 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 15/07/2014 - 19:08:56 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 17/07/2014 - 18:11:42 - [] ----D C:\ProgramData\RogueKiller
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 08/07/2014 - 16:57:48 - [] ----D C:\ProgramData\Steam
O43 - CFD: 02/07/2014 - 15:15:30 - [] ----D C:\ProgramData\Sun
O43 - CFD: 05/07/2014 - 19:26:20 - [] ----D C:\ProgramData\SystemRequirementsLab
O43 - CFD: 26/03/2014 - 08:16:29 - [] ----D C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 21/06/2014 - 14:43:08 - [] ----D C:\ProgramData\Wild Tangent
O43 - CFD: 21/06/2014 - 14:43:08 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/06/2014 - 17:42:10 - [] ----D C:\Users\ramzy\AppData\Roaming\acer
O43 - CFD: 04/07/2014 - 15:34:05 - [] ----D C:\Users\ramzy\AppData\Roaming\Adobe
O43 - CFD: 11/07/2014 - 18:07:38 - [] ----D C:\Users\ramzy\AppData\Roaming\AnkamaCertificates
O43 - CFD: 11/07/2014 - 18:06:25 - [] ----D C:\Users\ramzy\AppData\Roaming\app
O43 - CFD: 21/06/2014 - 14:33:55 - [] ----D C:\Users\ramzy\AppData\Roaming\Atheros
O43 - CFD: 02/07/2014 - 15:00:10 - [] ----D C:\Users\ramzy\AppData\Roaming\AVAST Software
O43 - CFD: 11/07/2014 - 18:06:19 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus
O43 - CFD: 11/07/2014 - 18:28:14 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus-2
O43 - CFD: 12/07/2014 - 00:18:14 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus-3
O43 - CFD: 13/07/2014 - 21:04:09 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus2
O43 - CFD: 17/07/2014 - 13:37:54 - [] ----D C:\Users\ramzy\AppData\Roaming\Dofus2Beta
O43 - CFD: 16/07/2014 - 00:02:29 - [] ----D C:\Users\ramzy\AppData\Roaming\DofusBeta
O43 - CFD: 17/07/2014 - 13:35:55 - [] ----D C:\Users\ramzy\AppData\Roaming\DofusBeta-2
O43 - CFD: 21/06/2014 - 14:40:24 - [] ----D C:\Users\ramzy\AppData\Roaming\Macromedia
O43 - CFD: 15/07/2014 - 18:55:28 - [] -S--D C:\Users\ramzy\AppData\Roaming\Microsoft
O43 - CFD: 11/07/2014 - 18:06:25 - [] ----D C:\Users\ramzy\AppData\Roaming\RegLocal
O43 - CFD: 13/07/2014 - 14:54:24 - [] ----D C:\Users\ramzy\AppData\Roaming\RocketUpdater =>PUP.RockTurner
O43 - CFD: 27/06/2014 - 18:43:58 - [] ----D C:\Users\ramzy\AppData\Roaming\Spotify
O43 - CFD: 21/06/2014 - 14:35:08 - [] ----D C:\Users\ramzy\AppData\Roaming\Synaptics
O43 - CFD: 06/07/2014 - 20:27:12 - [] ----D C:\Users\ramzy\AppData\Roaming\Unity
O43 - CFD: 13/07/2014 - 14:57:53 - [] ----D C:\Users\ramzy\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 12/07/2014 - 20:33:46 - [] ----D C:\Users\ramzy\AppData\Roaming\vlc
O43 - CFD: 21/06/2014 - 15:06:48 - [] ----D C:\Users\ramzy\AppData\Roaming\WildTangent
O43 - CFD: 04/07/2014 - 15:11:11 - [] ----D C:\Users\ramzy\AppData\Roaming\WinRAR
O43 - CFD: 17/07/2014 - 19:22:46 - [] ----D C:\Users\ramzy\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 21/06/2014 - 18:14:54 - [] ----D C:\Users\ramzy\AppData\Local\Acer
O43 - CFD: 21/06/2014 - 17:05:19 - [] ----D C:\Users\ramzy\AppData\Local\Acer Aspire R7 Tutorial
O43 - CFD: 21/06/2014 - 17:57:29 - [] ----D C:\Users\ramzy\AppData\Local\AcerCloud
O43 - CFD: 03/07/2014 - 21:07:52 - [] ----D C:\Users\ramzy\AppData\Local\AcerPortal
O43 - CFD: 03/07/2014 - 21:03:05 - [] ----D C:\Users\ramzy\AppData\Local\AcerRemoteFile
O43 - CFD: 04/07/2014 - 15:34:05 - [] ----D C:\Users\ramzy\AppData\Local\Adobe
O43 - CFD: 15/07/2014 - 21:06:35 - [] ----D C:\Users\ramzy\AppData\Local\Ankama
O43 - CFD: 03/07/2014 - 21:04:14 - [] ----D C:\Users\ramzy\AppData\Local\AOP SDK
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Application Data
O43 - CFD: 15/07/2014 - 18:27:19 - [] ----D C:\Users\ramzy\AppData\Local\clear.fi
O43 - CFD: 21/06/2014 - 17:48:42 - [] ----D C:\Users\ramzy\AppData\Local\ClearfiMedia
O43 - CFD: 21/06/2014 - 17:41:53 - [] ----D C:\Users\ramzy\AppData\Local\ClearfiPhoto
O43 - CFD: 17/07/2014 - 10:15:42 - [] ----D C:\Users\ramzy\AppData\Local\CrashDumps
O43 - CFD: 07/07/2014 - 14:54:46 - [] ----D C:\Users\ramzy\AppData\Local\Diagnostics
O43 - CFD: 21/06/2014 - 17:51:52 - [] ----D C:\Users\ramzy\AppData\Local\Doc
O43 - CFD: 28/06/2014 - 12:24:37 - [] -SH-D C:\Users\ramzy\AppData\Local\EmieSiteList
O43 - CFD: 28/06/2014 - 12:24:37 - [] -SH-D C:\Users\ramzy\AppData\Local\EmieUserList
O43 - CFD: 21/06/2014 - 15:01:32 - [] ----D C:\Users\ramzy\AppData\Local\Google
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Historique
O43 - CFD: 04/07/2014 - 15:44:49 - [] ----D C:\Users\ramzy\AppData\Local\iGware
O43 - CFD: 15/07/2014 - 18:32:22 - [] ----D C:\Users\ramzy\AppData\Local\Microsoft
O43 - CFD: 14/07/2014 - 01:22:31 - [] ----D C:\Users\ramzy\AppData\Local\Packages
O43 - CFD: 02/07/2014 - 15:41:46 - [0] ----D C:\Users\ramzy\AppData\Local\PackageStaging
O43 - CFD: 21/06/2014 - 14:35:15 - [] ----D C:\Users\ramzy\AppData\Local\Packard Bell
O43 - CFD: 08/07/2014 - 16:32:15 - [] ----D C:\Users\ramzy\AppData\Local\Programs
O43 - CFD: 15/07/2014 - 00:00:30 - [] ----D C:\Users\ramzy\AppData\Local\PunkBuster
O43 - CFD: 07/07/2014 - 21:34:21 - [] ----D C:\Users\ramzy\AppData\Local\SearchProtect =>PUP.SearchProtect
O43 - CFD: 09/07/2014 - 18:24:59 - [] ----D C:\Users\ramzy\AppData\Local\SKIDROW
O43 - CFD: 27/06/2014 - 18:43:53 - [] ----D C:\Users\ramzy\AppData\Local\Spotify
O43 - CFD: 17/07/2014 - 19:21:37 - [] ----D C:\Users\ramzy\AppData\Local\Temp
O43 - CFD: 21/06/2014 - 14:31:43 - [] -SH-D C:\Users\ramzy\AppData\Local\Temporary Internet Files
O43 - CFD: 08/07/2014 - 16:25:48 - [0] ----D C:\Users\ramzy\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 06/07/2014 - 20:21:14 - [] ----D C:\Users\ramzy\AppData\Local\Unity
O43 - CFD: 15/07/2014 - 18:26:03 - [] ----D C:\Users\ramzy\AppData\Local\VirtualStore
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 28/06/2014 - 10:54:23 - [] R---D C:\Users\ramzy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CF
0