cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.27.104 Par Nicolas Coolman (2015/07/27)
~ Démarré par Utilisateur (Administrator) (2015/07/28 08:16:42)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Utilisateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 8.1, 64-bit (Build 9600)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v43.0.2357.124
MFIE: Mozilla Firefox 36.0.1 (x86 fr) v36.0.1
MSIE: Internet Explorer v11.0.9600.17905

---\\ Informations sur les produits Windows (4) - 2s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Demand)
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Malwarebytes Anti-Malware version 2.1.6.1022

---\\ Surveillance de Logiciels (2) - 1s
Adobe Flash Player 18 NPAPI
Adobe Reader XI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 7, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8387.06 MB (74% free)
~ System Restore: Activé (Enable)
~ System drive C: has 197 GB free of 476 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: ZALMAN_GAMING
~ User Name: Utilisateur
~ Logged in as Administrator

---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 197 GB free of 476 GB (System)

---\\ Etat du Centre de Sécurité Windows (12) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2501368]
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [54784]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [145920]
[MD5.98C6A46E9E2822BF83196C2EAE43DBD4] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427392]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [76800]
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [108544]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [142848]
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [401408]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [310080]

---\\ Processus lancés (9) - 0s
[MD5.DACBEBE491EB6029FD72F600AB2E7171] - (.Tencent - ????-??????.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCRTP.exe [297608] [PID.316] =>PUP.Optional.TencentAddressBar
[MD5.8B287372151AE026AE02CEFECE7F538E] - (.Beijing Rising Information Technology Co., Ltd. - RsMgrSvc Application.) -- C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe [184088] [PID.392]
[MD5.A619DDCBA5B782F88B6976F78C82C442] - (.Hercules® - Hercules® Install Service.) -- C:\Program Files\Hercules\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [50688] [PID.2244]
[MD5.75736425D9B4A1D0CEF604FF41EA5FCE] - (.Hi-Rez Studios - HiPatchService.) -- C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704] [PID.2264]
[MD5.77ED10C64F9DE2BF3F4F0B92541422F6] - (.AnchorFree Inc. - Hotspot Shield 3.42.) -- C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [919040] [PID.2964]
[MD5.7DAA3AD430214EFF098C7100CC827495] - (...) -- C:\Program Files (x86)\WajaInternetEnhancer\WajaInternetEnhancer Internet Enhancer\InternetEnhancerService.exe [1155072] [PID.3692]
[MD5.DFAE742BD634E29F9172A651C3593644] - (.Hercules® - Hercules® DJ Series Tray Bar.) -- C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [3574576] [PID.4800]
[MD5.635AB3D78E910C727A0302A77220DAD7] - (.Hercules® - DJ Series Control Panel.) -- C:\Program Files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe [3410224] [PID.4268]
[MD5.891C45900D24CCF579D249579A714B02] - (.Hercules® - DJ Series2 Control Panel.) -- C:\Program Files\Hercules\Audio\DJ Console Series\cpl2\HDJSeries2CPL.exe [3286320] [PID.5280]

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (16) - 1s
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Preference [User Data\Default] [cohcnmmdmcgbjcfbfdfoeicfompmjkhj] EnoRmoeuSaLEs
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dflnhmchphajjkfadohcpiobjdhnfaed] Corobizar.com - Alerte Live
G2 - GCE: Preference [User Data\Default] [dhdgffkkebhmkfjojejmpbldmpobfkfo] Tampermonkey
G2 - GCE: Preference [User Data\Default] [jndclpdbaamdhonoechobihbbiimdgai] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [mgamelhnfokapndfdodnmfiningckjia] Clickable Links
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [oiokahphinmbmakkehgelkmpolmnbkdh] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ooebklgpfnbcnpokahmdidgbmlcdepkm] ????????
G2 - GCE: Preference [User Data\Default] [opjonmehjfmkejjifhhknofdnacklmjk] __MSG_themeName__
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (29) - 4s
P2 - EXT FILE: (...) -- C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.AnchorFree Inc - Hotspot Shield Extension.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (. - DiscountSmasher.) -- C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\hd_lq_xxdpgbjyad@zyhzhykhmnrkqrfs.com
P2 - EXT: (. - PriceMInuss.) -- C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\k@Bk2.org
P2 - EXT: (. - EnoRmoeuSaLEs.) -- C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\P5@8owfnBfbq.org
P2 - EXT: (. - bestadblocker.) -- C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\PvF@a.edu
P2 - EXT: (.lightningnewtab.com - QuickSearch.) -- C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\searchffv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - EXT: (.lipton - Search Enginer.) -- C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\sweetsearch@gmail.com =>PUP.Optional.SweetSearch
P2 - FPN: [HKCU] [@iqiyi.com/npWebPlayer] - (.?????.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>PUP.Optional.IQIYIVideo
P2 - FPN: [HKCU] [@my.com/Games] - (.My.com, Inc.) -- C:\Users\Utilisateur\AppData\Local\MyComGames\NPMyComDetector.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS.) -- C:\Users\Utilisateur\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@iqiyi.com/npclient] - (.iQiyi.com.) -- C:\IQIYI Video\LStyle\npclient.dll =>PUP.Optional.IQIYIVideo
P2 - FPN: [HKLM] [@iqiyi.com/npWebPlayer] - (.?????.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>PUP.Optional.IQIYIVideo
P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks Inc..) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
P2 - FPN: [HKLM] [@qq.com/npAndroidAssistant] - (.????.) -- C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/QQPCMgr] - (.Tencent Technology (Shenzhen) Company Limited.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.0] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (20) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Orphean
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>;
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (23)

---\\ Browser Helper Object de navigateur (BHO) (O2) (3) - 0s
O2 - BHO: QPMIEHelper [64Bits] - {50F4150A-48B2-417A-BE4C-C83F580FB904} (Orphean)
O2 - BHO: (no name) [64Bits] - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} (Orphean)
O2 - BHO: (no name) [64Bits] - {FB4F6285-4C32-49F2-950F-A5998F9CEC6C} (Orphean)

---\\ Applications lancées au démarrage du sytème (O4) (31) - 1s
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKLM\..\Run: [Hercules DJ Series TrayAgent] . (.Hercules® - Hercules® DJ Series Tray Bar.) -- C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [MKLOL] . (...) -- C:\Program Files (x86)\MKJogo\MKLOL\Bin\MKIM.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Utilisateur\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe
O4 - HKCU\..\Run: [puush] . (. - puush.) -- C:\Program Files (x86)\puush\puush.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe
O4 - HKCU\..\Run: [WindApp] C:\Users\Utilisateur\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKCU\..\Run: [Selection Tools] C:\Users\Utilisateur\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKCU\..\Run: [HCDNClient] . (.iQIYI.COM - ???HCDN????????.) -- C:\IQIYI Video\Common\QyKernel.exe =>PUP.Optional.IQIYIVideo
O4 - HKCU\..\Run: [MyComGames] . (...) -- C:\Users\Utilisateur\AppData\Local\MyComGames\MyComGames.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Wow6432Node\Run: [Aeria Ignite] . (.Aeria Games & Entertainment - Aeria Ignite.) -- C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [ QQPCTray] . (.Tencent - ????.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O4 - HKLM\..\Wow6432Node\Run: [RSDTRAY] . (.Beijing Rising Information Technology Co., Ltd. - tray ????.) -- C:\Program Files (x86)\Rising\RSD\popwndexe.exe
O4 - HKLM\..\Wow6432Node\Run: [Anti DDoS] . (.BeeThink SoftWare, Inc. - BeeThink Network Security Tool.) -- C:\Program Files (x86)\Anti DDoS Guardian 3.3\AntiDDoS.exe
O4 - HKLM\..\Wow6432Node\Run: [MINI IP Blocker] . (.BeeThink SoftWare, Inc. - Mini IP Blocker.) -- C:\Program Files (x86)\Anti DDoS Guardian 3.3\MiniIPBlocker.exe
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [MKLOL] . (...) -- C:\Program Files (x86)\MKJogo\MKLOL\Bin\MKIM.exe
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Utilisateur\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [puush] . (. - puush.) -- C:\Program Files (x86)\puush\puush.exe
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [WindApp] C:\Users\Utilisateur\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [Selection Tools] C:\Users\Utilisateur\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [HCDNClient] . (.iQIYI.COM - ???HCDN????????.) -- C:\IQIYI Video\Common\QyKernel.exe =>PUP.Optional.IQIYIVideo
O4 - HKUS\S-1-5-21-3565770787-717050932-59827244-1001\..\Run: [MyComGames] . (...) -- C:\Users\Utilisateur\AppData\Local\MyComGames\MyComGames.exe

---\\ Raccourcis Global Startup (O4G) (7) - 11s
O4 - GS\Desktop [Administrateur]: ????????.lnk . (.??? - ????????.) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
O4 - GS\Quicklaunch [Administrateur]: ????????.lnk . (.??? - ????????.) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
O4 - GS\Desktop [Invité]: ????????.lnk . (.??? - ????????.) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
O4 - GS\Quicklaunch [Invité]: ????????.lnk . (.??? - ????????.) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
O4 - GS\Desktop [Utilisateur]: ????????.lnk . (.??? - ????????.) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
O4 - GS\Quicklaunch [Utilisateur]: ????????.lnk . (.??? - ????????.) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
O4 - GS\Programs [Public]: ????????.lnk . (.??? - ????????.) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo

---\\ Modification Domaine/Adresses DNS (O17) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (24) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BeeThink IP Blocker Service (BeeThinkBlockerService) . (...) - C:\Program Files (x86)\Anti DDoS Guardian 3.3\BlockerService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc. - BlueStacks Service.) - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Hercules DJ Control MP3 (HerculesDJControlMP3) . (.Hercules® - Hercules® Install Service.) - C:\Program Files\Hercules\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) . (.Hi-Rez Studios - HiPatchService.) - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: Hotspot Shield Service (hshld) . (.AnchorFree Inc. - Hotspot Shield 3.42.) - C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
O23 - Service: Hotspot Shield Monitoring Service (HssWd) . (...) - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 337.8.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: Rsd Service (RsMgrSvc) . (.Beijing Rising Information Technology Co., Ltd. - RsMgrSvc Application.) - C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) . (...) - C:\Windows\System32\vmnetdhcp.exe (.not file.)
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (...) - C:\Windows\System32\vmnat.exe (.not file.)
O23 - Service: WajaInternetEnhancer Service (WajaInternetEnhancer Service) . (...) - C:\Program Files (x86)\WajaInternetEnhancer\WajaInternetEnhancer Internet Enhancer\InternetEnhancerService.exe

---\\ Tâches planifiées en automatique (O39) (17) - 3s
[MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152]
[MD5.9B3355B29942AF67F014EA90CE1EA960] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.00000000000000000000000000000000] [APT] [RsDelayLauncher_{8A34248E-7D35-4832-8378-7659E0B0A380}] (...) -- C:\PROGRAM FILES (X86)\RISING\RAV\rsdelaylauncher.exe (.not file.) [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [932]
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [936]
O39 - APT: Adobe Acrobat Update Task - (...) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886]
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3890]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\CreateChoiceProcessTask [3572]
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3672]
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3908]
O39 - APT: RsDelayLauncher_{8A34248E-7D35-4832-8378-7659E0B0A380} - (...) -- C:\Windows\System32\Tasks\RsDelayLauncher_{8A34248E-7D35-4832-8378-7659E0B0A380} [3336]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{51486F84-BFBD-49F1-8A5D-213FEB583D9D} [3138]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{74ECBC8E-DC7C-47D3-8F5B-24868994DB3C} [3180]

---\\ Logiciels installés (O42) (109) - 16s
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: WinRAR 5.01 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Java 7 Update 51 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86417051FF}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {787136D2-F0F8-4625-AA3F-72D7795AC842}
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: NVIDIA Pilote 3D Vision 337.88 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote graphique 337.88 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA GeForce Experience 1.8.2.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 337.88 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Virtual Audio 1.2.20 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {B8BA155B-1E75-405F-9CB4-8A99615D09DC}
O42 - Logiciel: VMware Player - (.VMware, Inc..) [HKLM][64Bits] -- {E452E727-86B8-4233-8CC3-41FD817AFAFF}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Aeria Ignite - (.Aeria Games & Entertainment.) [HKLM][64Bits] -- Aeria Ignite 1.13.3296
O42 - Logiciel: Anti DDoS Guardian 3.3 - (.BeeThink Software, Inc..) [HKLM][64Bits] -- Anti DDoS Guardian_is1
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player
O42 - Logiciel: Counter-Strike Global Offensive No-Steam - (.Valve Software.) [HKLM][64Bits] -- Counter-Strike Global Offensive_is1
O42 - Logiciel: FileZilla Client 3.9.0.5 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: Fraps - (...) [HKLM][64Bits] -- Fraps
O42 - Logiciel: ???????? - (.???.) [HKLM][64Bits] -- GeePlayer
O42 - Logiciel: Git version 1.9.5-preview20150319 - (.The Git Development Community.) [HKLM][64Bits] -- Git_is1
O42 - Logiciel: Goat Simulator - (.R.G. Mechanics, markfiter.) [HKLM][64Bits] -- Goat Simulator_R.G. Mechanics_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: GrandFantasia-FR - (...) [HKLM][64Bits] -- GrandFantasia-FR
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm
O42 - Logiciel: Hotspot Shield 3.42 - (.AnchorFree Inc..) [HKLM][64Bits] -- HotspotShield
O42 - Logiciel: ????? - (.???.) [HKLM][64Bits] -- IQIYI Video =>PUP.Optional.IQIYIVideo
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- League of Legends 3.0.1
O42 - Logiciel: LOLReplay - (.www.leaguereplays.com.) [HKLM][64Bits] -- LOLReplay
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mixxx 1.11.0 - (.The Mixxx Development Team.) [HKLM][64Bits] -- Mixxx (1.11.0)
O42 - Logiciel: Mozilla Firefox 36.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 36.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Nostale(FR) - (.Gameforge 4D GmbH.) [HKLM][64Bits] -- NosTale(FR)_is1
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Open Broadcaster Software - (...) [HKLM][64Bits] -- Open Broadcaster Software
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin
O42 - Logiciel: RocketTab - (.RocketTab.) [HKLM][64Bits] -- RocketTab =>PUP.Optional.RocketTab
O42 - Logiciel: S.K.I.L.L. - Special Force 2 - (...) [HKLM][64Bits] -- Special Force 2 Beta_is1
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam
O42 - Logiciel: Saints Row IV - (.Deep Silver Volition.) [HKLM][64Bits] -- Steam App 206420
O42 - Logiciel: Archeblade - (.CodeBrush Games.) [HKLM][64Bits] -- Steam App 207230
O42 - Logiciel: Loadout - (.Edge of Reality.) [HKLM][64Bits] -- Steam App 208090
O42 - Logiciel: theHunter - (.Expansive Worlds.) [HKLM][64Bits] -- Steam App 253710
O42 - Logiciel: Robocraft - (.Freejam.) [HKLM][64Bits] -- Steam App 301520
O42 - Logiciel: Unturned - (.Nelson Sexton.) [HKLM][64Bits] -- Steam App 304930
O42 - Logiciel: Team Fortress 2 - (.Valve.) [HKLM][64Bits] -- Steam App 440
O42 - Logiciel: Bloodline Champions - (.Stunlock Studios.) [HKLM][64Bits] -- Steam App 6370
O42 - Logiciel: The Witcher Enhanced Edition version 1.6 - (.CD Projekt RED.) [HKLM][64Bits] -- The Witcher Enhanced Edition_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: VMware Player - (.VMware, Inc.) [HKLM][64Bits] -- VMware_Player
O42 - Logiciel: Wajam - (.WajaInternetEnhancer.) [HKLM][64Bits] -- WajaInternetEnhancer =>PUP.Optional.Wajam
O42 - Logiciel: WolfTeam-FR - (...) [HKLM][64Bits] -- WolfTeam-FR
O42 - Logiciel: PriceMinus - (...) [HKLM][64Bits] -- {06B99631-BFA2-3B7A-F58B-D067C2BA59B7} =>PUP.Optional.Multiplug
O42 - Logiciel: Skype™ 6.14 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {1845470B-EB14-4ABC-835B-E36C693DC07D}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}
O42 - Logiciel: Minecraft - (.Mojang.) [HKLM][64Bits] -- {1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}
O42 - Logiciel: Aeria Ignite - (.Aeria Games & Entertainment.) [HKLM][64Bits] -- {22A72F06-FA80-42CB-9A8C-46C6AE53425C}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}
O42 - Logiciel: Java SE Development Kit 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0180450}
O42 - Logiciel: Hercules DJ Products Series drivers - (.Hercules.) [HKLM][64Bits] -- {33999F1F-EA46-4E55-A239-1BA803235396}
O42 - Logiciel: DealNoDeal - (.DealNoDeal.) [HKLM][64Bits] -- {37476589-E48E-439E-A706-56189E2ED4C4}
O42 - Logiciel: Need For Speed™ World - (.Electronic Arts.) [HKLM][64Bits] -- {3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}
O42 - Logiciel: Smite - (.Hi-Rez Studios.) [HKLM][64Bits] -- {3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}
O42 - Logiciel: Hi-Rez Studios Authenticate and Update Service - (.Hi-Rez Studios.) [HKLM][64Bits] -- {3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {3E75652D-99B1-417E-B163-BEF33CAD3F16}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: bestadblocker - (...) [HKLM][64Bits] -- {4820778D-AB0D-6D18-C316-52A6A0E1D507} =>PUP.Optional.BestADBlocker
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: XSplit Broadcaster - (.SplitMediaLabs.) [HKLM][64Bits] -- {6459F338-FE52-4034-BCA7-74772DA0F24D}
O42 - Logiciel: RAR Password Unlocker - (.RAR Password Unlocker, Inc..) [HKLM][64Bits] -- {69B77D45-F5AD-4AB9-933D-352703324469}_is1
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65}
O42 - Logiciel: OpenOffice 4.0.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: Gameforge Live 2.0.8 - (.Gameforge.) [HKLM][64Bits] -- {9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {AAC5D43E-816D-4C2D-8E51-55FFF35BE301}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130}
O42 - Logiciel: Adobe Reader XI (11.0.09) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B92C2C6C-F70E-497B-88A7-1FEF9888272B}
O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {C322F3EC-3737-47E7-8FAF-1E1A1DE237ED}
O42 - Logiciel: puush - (.Dean Herbert.) [HKLM][64Bits] -- {C3592426-531E-4110-911D-BFECE2CE284B}
O42 - Logiciel: Curse - (.Curse.) [HKLM][64Bits] -- {DEE70742-F4E9-44CA-B2B9-EE95DCF37295}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: War Thunder Launcher 1.0.1.530 - (.Gaijin Entertainment.) [HKLM][64Bits] -- {ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1
O42 - Logiciel: VirtualDJ Home FREE - (.Atomix Productions.) [HKLM][64Bits] -- {EE9E75F0-1FB8-440A-A34A-058F7456E113}
O42 - Logiciel: Mumble 1.2.5 - (.Thorvald Natvig.) [HKLM][64Bits] -- {F818243E-51A8-418D-8A71-595D5121BECA}
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {FE5ABB0E-EDEA-4023-B0FB-9DEA39A98D76}
O42 - Logiciel: Dofus - (.Ankama.) [HKCU][64Bits] -- 2744A393-554C-4E35-A24F-DEF0392B4484-2
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: My.com Game Center - (.My.com B.V..) [HKCU][64Bits] -- MyComGames
O42 - Logiciel: PhotoFiltre Studio X - (...) [HKCU][64Bits] -- PhotoFiltre Studio X
O42 - Logiciel: skyforge_mycom - (.My.com B.V..) [HKCU][64Bits] -- skyforge_mycom
O42 - Logiciel: PlanetSide 2 - (.Sony Online Entertainment.) [HKCU][64Bits] -- SOE-PlanetSide 2 PSG
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer

---\\ HKCU & HKLM Software Keys (185) - 16s
HKLM\SOFTWARE\Wow6432Node\"alpha_installer"/n
HKLM\SOFTWARE\Wow6432Node\86fca40b-f24c-ff65-617d-e4b3d8188288 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Aeria Games
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\AIM Toolbar
HKLM\SOFTWARE\Wow6432Node\anset
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CD Projekt RED
HKLM\SOFTWARE\Wow6432Node\Client
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\DJOnlineFB
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Fraps
HKLM\SOFTWARE\Wow6432Node\fst =>PUP.Optional.FreeSoftToday
HKLM\SOFTWARE\Wow6432Node\Gameforge
HKLM\SOFTWARE\Wow6432Node\Gameforge4d
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hercules
HKLM\SOFTWARE\Wow6432Node\Hi-Rez Studios
HKLM\SOFTWARE\Wow6432Node\HiRez Studios
HKLM\SOFTWARE\Wow6432Node\HotspotShield
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LOLReplay
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MaxPower
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Metin2_FR
HKLM\SOFTWARE\Wow6432Node\Mojang
HKLM\SOFTWARE\Wow6432Node\Monolith Productions
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nostale_FR
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Open Broadcaster Software
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\Overwolf
HKLM\SOFTWARE\Wow6432Node\Pando Networks
HKLM\SOFTWARE\Wow6432Node\Reto-Moto
HKLM\SOFTWARE\Wow6432Node\Riot Games
HKLM\SOFTWARE\Wow6432Node\rising
HKLM\SOFTWARE\Wow6432Node\Runes of Magic
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\SpeedBit
HKLM\SOFTWARE\Wow6432Node\SplitMediaLabs
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\ThinPrint
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\WajaInternetEnhancer
HKLM\SOFTWARE\Wow6432Node\Zemi Interactive
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\8a77a095790cf25c86035fa709021a20 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Aeria Games
HKCU\SOFTWARE\Akamai
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\Ankama
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\BeeThink
HKCU\SOFTWARE\bf51bb545182cae0b29b1f6d820670cc =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Bossa Studios
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\Bugsplat
HKCU\SOFTWARE\Canneverbe Limited
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\CD Projekt RED
HKCU\SOFTWARE\Cheat Engine
HKCU\SOFTWARE\ClassesB
HKCU\SOFTWARE\Curse
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\Firestonegames
HKCU\SOFTWARE\Fraps3
HKCU\SOFTWARE\Freejam
HKCU\SOFTWARE\Gaijin
HKCU\SOFTWARE\Gameforge4d
HKCU\SOFTWARE\Genesis =>PUP.Optional.Genesis
HKCU\SOFTWARE\Git-Cheetah
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Guillemot
HKCU\SOFTWARE\Guillemot Corporation
HKCU\SOFTWARE\Hercules Technologies
HKCU\SOFTWARE\HmelyoffLabs
HKCU\SOFTWARE\id Software
HKCU\SOFTWARE\IGA
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\IvoSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\L2j Community Network
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\LOLReplay
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mojang
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Mumble
HKCU\SOFTWARE\MyComGames
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\Pando Networks
HKCU\SOFTWARE\PhotoFiltre Studio X
HKCU\SOFTWARE\PPStream
HKCU\SOFTWARE\PremiumSoft
HKCU\SOFTWARE\puush
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\QyGameClient =>PUP.Optional.IQIYIVideo
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\rttasks =>PUP.Optional.RocketTab
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Smartly Dressed Games
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SourceForge
HKCU\SOFTWARE\Spiderling Games
HKCU\SOFTWARE\SplitMediaLabs
HKCU\SOFTWARE\Store =>PUP.Optional
HKCU\SOFTWARE\TCP Optimizer
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\Terraria
HKCU\SOFTWARE\tfdfu
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\Video Player
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\VMware, Inc.
HKCU\SOFTWARE\WajaInternetEnhancer
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WTools
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\CheckMeUp =>PUP.Optional.CheckMeUp
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\ThinPrint
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (352) - 16s
O43 - CFD: 2014/03/10 18:24:07 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2014/07/06 19:38:07 - [] D -- C:\Program Files (x86)\Aeria Games
O43 - CFD: 2014/03/10 19:58:15 - [0] D -- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 2015/07/14 20:04:20 - [] D -- C:\Program Files (x86)\Anti DDoS Guardian 3.3
O43 - CFD: 2014/03/10 18:28:26 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2015/04/23 15:59:56 - [] D -- C:\Program Files (x86)\AVI Player
O43 - CFD: 2015/07/17 06:20:48 - [] D -- C:\Program Files (x86)\baidu
O43 - CFD: 2015/04/15 10:24:07 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 2015/07/01 11:46:56 - [] D -- C:\Program Files (x86)\bestadblocker =>PUP.Optional.Adblocker
O43 - CFD: 2014/06/23 05:55:40 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 2014/03/10 18:28:23 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2014/05/03 14:28:04 - [0] D -- C:\Program Files (x86)\BrowseMark =>PUP.Optional.BrowseMark
O43 - CFD: 2015/07/11 01:44:06 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/06/12 21:29:47 - [] D -- C:\Program Files (x86)\Counter-Strike Global Offensive
O43 - CFD: 2015/04/20 16:49:42 - [] D -- C:\Program Files (x86)\DealNoDeal
O43 - CFD: 2014/10/05 13:01:59 - [] D -- C:\Program Files (x86)\F39EE28F-D410-4882-9303-A2D760308B70 =>PUP.Optional.CrossRider
O43 - CFD: 2014/11/14 20:28:55 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 2015/07/12 05:36:58 - [] D -- C:\Program Files (x86)\GameforgeLive
O43 - CFD: 2015/06/23 01:06:15 - [] D -- C:\Program Files (x86)\Git
O43 - CFD: 2014/08/30 18:58:00 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/06/20 00:03:09 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2014/11/22 22:51:24 - [] D -- C:\Program Files (x86)\Hearthstone
O43 - CFD: 2015/04/20 03:49:16 - [] D -- C:\Program Files (x86)\Heroes of the Storm
O43 - CFD: 2015/07/17 22:05:21 - [] D -- C:\Program Files (x86)\Hi-Rez Studios
O43 - CFD: 2014/07/15 18:08:53 - [] D -- C:\Program Files (x86)\Hotspot Shield
O43 - CFD: 2015/03/28 15:17:40 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/07/16 07:29:47 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2014/03/10 18:28:59 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2015/06/23 00:25:51 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/07/28 07:47:55 - [] D -- C:\Program Files (x86)\LoLRADS_EUW
O43 - CFD: 2015/06/11 22:16:47 - [] D -- C:\Program Files (x86)\LOLReplay
O43 - CFD: 2015/05/01 19:43:55 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2015/05/23 11:26:43 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2014/07/16 23:05:45 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2014/03/26 19:26:10 - [] D -- C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/05/01 20:12:52 - [0] D -- C:\Program Files (x86)\MicrosoftServices
O43 - CFD: 2015/02/14 17:26:40 - [] D -- C:\Program Files (x86)\Minecraft
O43 - CFD: 2015/03/28 15:54:02 - [] D -- C:\Program Files (x86)\Mixxx
O43 - CFD: 2014/03/26 17:14:20 - [] D -- C:\Program Files (x86)\MKJogo
O43 - CFD: 2015/04/20 16:49:55 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/03/09 09:01:25 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2014/03/30 20:39:12 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2014/06/11 19:58:57 - [] D -- C:\Program Files (x86)\Mumble
O43 - CFD: 2014/10/11 18:23:16 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2014/07/10 23:38:13 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2014/04/20 11:40:02 - [] D -- C:\Program Files (x86)\OBS
O43 - CFD: 2014/03/10 18:26:31 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 2015/05/24 01:01:14 - [] D -- C:\Program Files (x86)\Origin
O43 - CFD: 2014/07/01 17:34:15 - [] D -- C:\Program Files (x86)\Origin Games
O43 - CFD: 2014/03/22 16:54:02 - [] D -- C:\Program Files (x86)\Pando Networks
O43 - CFD: 2014/04/20 12:36:35 - [] D -- C:\Program Files (x86)\PhotoFiltre Studio X
O43 - CFD: 2014/06/23 05:57:00 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 2015/07/01 12:04:10 - [] D -- C:\Program Files (x86)\PriceMinus =>PUP.Optional.Multiplug
O43 - CFD: 2015/07/16 23:12:13 - [] D -- C:\Program Files (x86)\PriceMInuss =>PUP.Optional.Multiplug
O43 - CFD: 2015/04/04 13:30:18 - [] D -- C:\Program Files (x86)\puush
O43 - CFD: 2015/05/03 05:21:54 - [] D -- C:\Program Files (x86)\R.G. Mechanics
O43 - CFD: 2015/06/20 15:15:49 - [] D -- C:\Program Files (x86)\RAR Password Unlocker
O43 - CFD: 2014/03/30 20:39:12 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/04/20 02:19:10 - [] D -- C:\Program Files (x86)\Riot Games
O43 - CFD: 2015/07/27 20:30:36 - [] D -- C:\Program Files (x86)\Rising
O43 - CFD: 2015/05/03 20:24:37 - [] D -- C:\Program Files (x86)\Search Extensions =>PUP.Optional.RocketTab
O43 - CFD: 2014/03/10 18:23:35 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2014/06/27 12:32:01 - [] D -- C:\Program Files (x86)\Software =>PUP.Optional.Boxore
O43 - CFD: 2014/03/30 20:26:14 - [] D -- C:\Program Files (x86)\SplitMediaLabs
O43 - CFD: 2015/07/24 18:43:59 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2015/07/11 01:43:11 - [] D -- C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2014/04/20 15:42:15 - [] D -- C:\Program Files (x86)\The Witcher Enhanced Edition
O43 - CFD: 2015/05/01 20:14:01 - [0] D -- C:\Program Files (x86)\TrimFoobar
O43 - CFD: 2015/05/01 20:14:01 - [0] D -- C:\Program Files (x86)\UpgradeText
O43 - CFD: 2014/03/10 18:23:20 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/03/28 14:42:23 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2014/08/29 20:50:00 - [] D -- C:\Program Files (x86)\VMware
O43 - CFD: 2015/07/14 00:43:54 - [] D -- C:\Program Files (x86)\WajaInternetEnhancer
O43 - CFD: 2015/06/20 00:00:17 - [] D -- C:\Program Files (x86)\Wajam =>PUP.Optional.Wajam
O43 - CFD: 2015/03/14 23:48:39 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2014/07/16 23:05:43 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2015/03/12 23:41:12 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/03/12 23:41:12 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/03/12 23:41:12 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/03/12 23:41:12 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/03/12 23:41:12 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/08/22 17:36:30 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/03/12 23:42:47 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/03/13 20:19:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/12 23:42:47 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/07/06 19:38:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 2015/07/14 20:02:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anti DDoS Guardian 3.3
O43 - CFD: 2014/08/31 05:31:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 2014/03/29 17:13:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 2015/06/11 14:15:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Global Offensive
O43 - CFD: 2015/06/11 13:52:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2014/10/11 18:10:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2014/07/16 20:49:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
O43 - CFD: 2015/07/12 05:38:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
O43 - CFD: 2014/07/01 14:33:35 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/06/23 01:06:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
O43 - CFD: 2015/06/20 00:03:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2014/11/22 22:48:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 2015/04/15 12:03:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
O43 - CFD: 2015/07/18 04:44:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
O43 - CFD: 2014/07/15 18:08:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
O43 - CFD: 2014/03/10 18:29:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2015/06/22 23:41:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/06/23 00:25:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 2014/03/22 17:13:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/05/01 19:43:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2015/05/22 20:26:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/02/14 17:01:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
O43 - CFD: 2015/03/28 15:54:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mixxx
O43 - CFD: 2014/06/11 19:58:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
O43 - CFD: 2014/07/06 19:38:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed World
O43 - CFD: 2014/04/29 16:40:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nostale(FR)
O43 - CFD: 2014/10/11 18:23:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2014/07/10 23:38:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2014/03/10 18:26:58 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.0.1
O43 - CFD: 2015/05/24 01:01:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
O43 - CFD: 2014/04/20 12:36:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 2014/07/10 17:20:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
O43 - CFD: 2015/05/03 05:24:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
O43 - CFD: 2015/06/20 15:11:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Unlocker
O43 - CFD: 2014/03/10 18:23:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/06/12 20:08:29 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2014/03/26 20:31:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2015/03/12 23:42:47 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2013/08/23 00:26:19 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/05/03 19:22:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 2014/04/20 15:42:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher Enhanced Edition
O43 - CFD: 2014/03/10 18:23:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2014/08/29 20:50:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
O43 - CFD: 2015/06/20 00:00:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WajaInternetEnhancer
O43 - CFD: 2014/03/10 18:23:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/04/20 11:27:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
O43 - CFD: 2015/07/11 04:46:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\????
O43 - CFD: 2014/03/10 18:29:01 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2015/06/19 22:37:30 - [] D -- C:\ProgramData\5761551998488114339
O43 - CFD: 2014/03/10 19:30:20 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/06/29 04:40:38 - [] D -- C:\ProgramData\Aeria Games
O43 - CFD: 2014/03/10 18:28:31 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2014/03/10 18:28:38 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/08/31 05:22:55 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 2015/04/15 14:08:12 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 2014/03/29 17:13:29 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 2014/03/29 17:26:17 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 2014/03/10 17:59:56 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/04/04 10:28:13 - [0] D -- C:\ProgramData\c4b473fa00001eba
O43 - CFD: 2015/06/11 13:51:53 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2014/07/11 23:59:06 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 2014/04/02 20:31:45 - [] D -- C:\ProgramData\Hi-Rez Studios
O43 - CFD: 2015/04/20 00:08:23 - [] D -- C:\ProgramData\Hotspot Shield
O43 - CFD: 2014/08/28 22:07:14 - [] D -- C:\ProgramData\Hunter
O43 - CFD: 2015/07/12 03:36:44 - [0] D -- C:\ProgramData\IQIYI Video =>PUP.Optional.IQIYIVideo
O43 - CFD: 2015/07/12 03:42:43 - [] D -- C:\ProgramData\LocalStorage
O43 - CFD: 2014/04/05 22:46:00 - [] D -- C:\ProgramData\LogMeIn
O43 - CFD: 2014/10/05 14:52:53 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/03/26 14:40:58 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2014/03/10 17:59:56 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/07/14 20:16:28 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/03/10 17:59:56 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/03/10 18:20:23 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/07/28 07:49:52 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/03/10 18:14:50 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/06/19 22:35:28 - [] D -- C:\ProgramData\ookdicgnhlhkcibiiccikhchacdeimhg
O43 - CFD: 2015/06/23 00:12:05 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/05/24 02:24:11 - [] D -- C:\ProgramData\Origin
O43 - CFD: 2014/07/07 17:17:10 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/03/12 23:41:11 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2014/07/16 10:52:24 - [] D -- C:\ProgramData\Riot Games
O43 - CFD: 2015/07/27 20:30:37 - [] D -- C:\ProgramData\Rising
O43 - CFD: 2014/03/10 18:23:31 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2014/06/27 12:32:01 - [] D -- C:\ProgramData\Software =>PUP.Optional.Boxore
O43 - CFD: 2014/03/30 20:26:14 - [] D -- C:\ProgramData\SplitMediaLabs
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/05/03 05:24:32 - [] D -- C:\ProgramData\Steam
O43 - CFD: 2014/03/10 18:22:25 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/07/11 01:59:13 - [] D -- C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2015/07/11 01:59:13 - [0] D -- C:\ProgramData\TXQMPC
O43 - CFD: 2015/07/28 07:51:26 - [] D -- C:\ProgramData\VMware
O43 - CFD: 2015/05/02 13:27:06 - [] D -- C:\ProgramData\{504c7e05-573e-aa4c-504c-c7e05573f815}
O43 - CFD: 2015/04/20 00:08:23 - [] D -- C:\ProgramData\{65df4f0b-0658-6b0c-65df-f4f0b0653c2c}
O43 - CFD: 2015/04/20 18:54:42 - [] D -- C:\ProgramData\{b9bfd85a-90db-291d-b9bf-fd85a90d616a}
O43 - CFD: 2015/05/02 13:27:03 - [] D -- C:\ProgramData\{c04dffc0-1c6f-76b5-c04d-dffc01c6ff00}
O43 - CFD: 2015/03/15 07:41:11 - [] D -- C:\ProgramData\{dcaa133c-b774-4457-dcaa-a133cb774cf2}
O43 - CFD: 2015/05/02 07:21:21 - [] D -- C:\ProgramData\{dfa27c21-fbc3-2cd2-dfa2-27c21fbcf087}
O43 - CFD: 2015/03/15 07:41:11 - [] D -- C:\ProgramData\{e62bc352-72c2-109a-e62b-bc35272c0d49}
O43 - CFD: 2015/07/02 10:34:19 - [] D -- C:\ProgramData\{fc7cc250-185d-45da-fc7c-cc2501850940}
O43 - CFD: 2014/03/10 18:24:15 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/03/10 18:22:09 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2014/03/10 18:28:38 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2014/11/22 22:48:59 - [] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 2014/11/14 21:40:24 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 2015/06/22 23:42:01 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2014/03/26 19:26:10 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/03/10 18:23:35 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/07/11 00:30:10 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2015/03/12 23:41:11 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/07/11 04:44:39 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2014/08/29 20:50:00 - [] D -- C:\Program Files (x86)\Common Files\VMware
O43 - CFD: 2014/07/16 22:33:41 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/02/19 19:58:06 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.craftezia
O43 - CFD: 2014/10/05 16:32:02 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.hardfight
O43 - CFD: 2014/07/16 17:07:02 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.lifecraft
O43 - CFD: 2015/07/05 17:54:06 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.minecraft
O43 - CFD: 2014/04/06 19:03:53 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.mineria
O43 - CFD: 2015/02/26 21:43:26 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.NationsGloryP
O43 - CFD: 2014/07/18 15:28:55 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.obsifight
O43 - CFD: 2014/05/08 06:10:54 - [] D -- C:\Users\Utilisateur\AppData\Roaming\.Pixelmon-Fr
O43 - CFD: 2015/03/15 05:04:11 - [] D -- C:\Users\Utilisateur\AppData\Roaming\00000000-1426388650-0000-0000-1C6F65F8FD2F
O43 - CFD: 2015/03/15 05:06:46 - [] D -- C:\Users\Utilisateur\AppData\Roaming\00000000-1426388805-0000-0000-1C6F65F8FD2F
O43 - CFD: 2014/03/10 18:41:30 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Adobe
O43 - CFD: 2014/06/29 04:39:20 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Aeria Games & Entertainment
O43 - CFD: 2014/07/11 05:32:07 - [] D -- C:\Users\Utilisateur\AppData\Roaming\AnkamaCertificates
O43 - CFD: 2014/07/11 05:28:17 - [] D -- C:\Users\Utilisateur\AppData\Roaming\app
O43 - CFD: 2015/04/01 21:12:30 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Apple Computer
O43 - CFD: 2014/04/02 20:32:13 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Awesomium
O43 - CFD: 2015/04/20 00:08:23 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Battle.net
O43 - CFD: 2014/03/10 18:29:08 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Canneverbe Limited
O43 - CFD: 2014/06/23 05:55:16 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ClassicShell
O43 - CFD: 2014/05/09 04:35:51 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Curse
O43 - CFD: 2014/11/14 20:36:19 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Curse Client
O43 - CFD: 2015/06/11 13:53:28 - [] D -- C:\Users\Utilisateur\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/05/22 22:54:02 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Dofus
O43 - CFD: 2014/07/11 16:14:48 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Dofus-2
O43 - CFD: 2015/04/17 07:02:53 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Dofus-3
O43 - CFD: 2014/10/05 14:07:13 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Dofus2
O43 - CFD: 2015/06/11 23:53:19 - [] D -- C:\Users\Utilisateur\AppData\Roaming\dvdcss
O43 - CFD: 2015/06/25 18:53:47 - [] D -- C:\Users\Utilisateur\AppData\Roaming\FileZilla
O43 - CFD: 2014/10/11 11:06:38 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ftblauncher
O43 - CFD: 2015/05/03 05:24:15 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Goat Simulator
O43 - CFD: 2014/07/15 18:08:06 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Hotspot Shield
O43 - CFD: 2015/03/13 20:00:59 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Identities
O43 - CFD: 2015/05/01 20:12:52 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Imminent
O43 - CFD: 2015/03/28 15:17:22 - [] D -- C:\Users\Utilisateur\AppData\Roaming\InstallShield
O43 - CFD: 2015/07/24 21:59:49 - [] D -- C:\Users\Utilisateur\AppData\Roaming\IQIYI Video =>PUP.Optional.IQIYIVideo
O43 - CFD: 2015/02/14 17:26:54 - [] D -- C:\Users\Utilisateur\AppData\Roaming\java
O43 - CFD: 2015/03/15 05:10:40 - [] D -- C:\Users\Utilisateur\AppData\Roaming\LeagueSharp9AEF906A
O43 - CFD: 2014/03/22 18:03:28 - [] D -- C:\Users\Utilisateur\AppData\Roaming\LolClient
O43 - CFD: 2014/03/10 18:18:12 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Macromedia
O43 - CFD: 2015/07/14 20:16:28 - [] SD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft
O43 - CFD: 2014/03/10 18:41:29 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Mozilla
O43 - CFD: 2014/09/01 01:36:16 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Mumble
O43 - CFD: 2014/07/04 01:21:08 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Need for Speed World
O43 - CFD: 2015/07/12 03:27:08 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
O43 - CFD: 2014/10/11 18:43:21 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Notepad++
O43 - CFD: 2014/07/05 22:53:10 - [] D -- C:\Users\Utilisateur\AppData\Roaming\NVIDIA
O43 - CFD: 2014/04/20 11:40:16 - [] D -- C:\Users\Utilisateur\AppData\Roaming\OBS
O43 - CFD: 2014/03/10 18:41:52 - [] D -- C:\Users\Utilisateur\AppData\Roaming\OpenOffice
O43 - CFD: 2015/05/24 02:18:34 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Origin
O43 - CFD: 2014/04/20 13:01:15 - [] D -- C:\Users\Utilisateur\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 2015/07/24 21:59:48 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\ppslog
O43 - CFD: 2014/10/05 14:56:41 - [] D -- C:\Users\Utilisateur\AppData\Roaming\puush
O43 - CFD: 2014/08/26 00:48:27 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Reg
O43 - CFD: 2014/07/11 05:28:17 - [] D -- C:\Users\Utilisateur\AppData\Roaming\RegLocal
O43 - CFD: 2014/03/22 16:53:51 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Riot Games
O43 - CFD: 2014/08/27 14:00:36 - [] D -- C:\Users\Utilisateur\AppData\Roaming\SGB
O43 - CFD: 2015/07/28 08:15:17 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Skype
O43 - CFD: 2014/03/30 20:25:23 - [] D -- C:\Users\Utilisateur\AppData\Roaming\SplitMediaLabs
O43 - CFD: 2015/07/12 03:29:54 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Store =>PUP.Optional.Nosibay
O43 - CFD: 2015/07/12 18:49:47 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2014/08/28 22:07:15 - [] D -- C:\Users\Utilisateur\AppData\Roaming\theHunterSteam
O43 - CFD: 2015/06/10 20:01:03 - [] D -- C:\Users\Utilisateur\AppData\Roaming\TS3Client
O43 - CFD: 2014/05/31 16:48:01 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Unity
O43 - CFD: 2015/06/27 05:09:42 - [] D -- C:\Users\Utilisateur\AppData\Roaming\vlc
O43 - CFD: 2014/08/29 23:44:29 - [] D -- C:\Users\Utilisateur\AppData\Roaming\VMware
O43 - CFD: 2014/03/26 19:24:53 - [] D -- C:\Users\Utilisateur\AppData\Roaming\WinRAR
O43 - CFD: 2015/07/12 03:28:43 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\WTools
O43 - CFD: 2015/07/28 08:17:06 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ZHP
O43 - CFD: 2014/10/05 02:16:19 - [] D -- C:\Users\Utilisateur\AppData\Local\4797
O43 - CFD: 2014/10/05 14:56:41 - [] D -- C:\Users\Utilisateur\AppData\Local\5511
O43 - CFD: 2014/10/05 15:11:23 - [] D -- C:\Users\Utilisateur\AppData\Local\Adobe
O43 - CFD: 2014/06/29 04:41:05 - [] D -- C:\Users\Utilisateur\AppData\Local\Aeria Games
O43 - CFD: 2015/05/24 00:49:35 - [] D -- C:\Users\Utilisateur\AppData\Local\Akamai
O43 - CFD: 2014/04/29 13:41:14 - [] D -- C:\Users\Utilisateur\AppData\Local\Ankama
O43 - CFD: 2014/03/10 18:28:26 - [] D -- C:\Users\Utilisateur\AppData\Local\Apple
O43 - CFD: 2014/03/10 18:29:04 - [] D -- C:\Users\Utilisateur\AppData\Local\Apple Computer
O43 - CFD: 2014/03/10 18:05:38 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Application Data
O43 - CFD: 2015/04/20 06:33:20 - [] D -- C:\Users\Utilisateur\AppData\Local\Battle.net
O43 - CFD: 2014/08/31 09:51:05 - [] D -- C:\Users\Utilisateur\AppData\Local\Blizzard Entertainment
O43 - CFD: 2014/03/29 17:12:57 - [] D -- C:\Users\Utilisateur\AppData\Local\Bluestacks
O43 - CFD: 2015/07/19 06:28:00 - [] D -- C:\Users\Utilisateur\AppData\Local\Diagnostics
O43 - CFD: 2015/06/11 13:53:46 - [] D -- C:\Users\Utilisateur\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 2015/06/24 23:46:50 - [] D -- C:\Users\Utilisateur\AppData\Local\Eclipse
O43 - CFD: 2015/02/18 17:30:50 - [] D -- C:\Users\Utilisateur\AppData\Local\EdgeOfReality
O43 - CFD: 2014/07/03 16:41:08 - [] D -- C:\Users\Utilisateur\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 2015/05/23 12:05:39 - [0] D -- C:\Users\Utilisateur\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/06/19 23:56:47 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/19 23:56:47 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/19 23:56:47 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\EmieUserList
O43 - CFD: 2014/10/11 11:29:19 - [] D -- C:\Users\Utilisateur\AppData\Local\ftblauncher
O43 - CFD: 2014/04/29 14:37:46 - [] D -- C:\Users\Utilisateur\AppData\Local\Gameforge4d
O43 - CFD: 2014/08/30 00:53:33 - [] D -- C:\Users\Utilisateur\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/04/20 00:04:54 - [] D -- C:\Users\Utilisateur\AppData\Local\Google
O43 - CFD: 2015/06/02 19:17:14 - [] D -- C:\Users\Utilisateur\AppData\Local\GWX
O43 - CFD: 2014/03/10 18:05:38 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Historique
O43 - CFD: 2014/05/18 04:36:40 - [] D -- C:\Users\Utilisateur\AppData\Local\id Software
O43 - CFD: 2014/05/18 04:36:40 - [] D -- C:\Users\Utilisateur\AppData\Local\Launcher
O43 - CFD: 2014/04/05 22:46:00 - [] D -- C:\Users\Utilisateur\AppData\Local\LogMeIn
O43 - CFD: 2014/03/26 15:16:42 - [] D -- C:\Users\Utilisateur\AppData\Local\Macromedia
O43 - CFD: 2015/07/11 03:18:47 - [] D -- C:\Users\Utilisateur\AppData\Local\Microsoft
O43 - CFD: 2015/04/14 18:24:20 - [] D -- C:\Users\Utilisateur\AppData\Local\Mixxx
O43 - CFD: 2014/03/10 18:41:26 - [] D -- C:\Users\Utilisateur\AppData\Local\Mozilla
O43 - CFD: 2015/07/28 07:53:37 - [] D -- C:\Users\Utilisateur\AppData\Local\MyComGames
O43 - CFD: 2014/07/10 18:43:42 - [] D -- C:\Users\Utilisateur\AppData\Local\NVIDIA
O43 - CFD: 2014/03/10 20:00:55 - [] D -- C:\Users\Utilisateur\AppData\Local\NVIDIA Corporation
O43 - CFD: 2015/04/16 17:12:28 - [] D -- C:\Users\Utilisateur\AppData\Local\openvr
O43 - CFD: 2014/06/04 20:32:59 - [] D -- C:\Users\Utilisateur\AppData\Local\Origin
O43 - CFD: 2014/03/10 19:29:44 - [] D -- C:\Users\Utilisateur\AppData\Local\Packages
O43 - CFD: 2014/04/29 14:37:20 - [] D -- C:\Users\Utilisateur\AppData\Local\Programs
O43 - CFD: 2014/05/18 04:35:17 - [] D -- C:\Users\Utilisateur\AppData\Local\SCE
O43 - CFD: 2014/03/10 19:30:27 - [] D -- C:\Users\Utilisateur\AppData\Local\Skype
O43 - CFD: 2014/06/27 12:27:12 - [] D -- C:\Users\Utilisateur\AppData\Local\Software =>PUP.Optional.Boxore
O43 - CFD: 2014/03/30 20:41:12 - [] D -- C:\Users\Utilisateur\AppData\Local\SplitMediaLabs
O43 - CFD: 2015/02/20 14:45:23 - [] D -- C:\Users\Utilisateur\AppData\Local\Steam
O43 - CFD: 2015/07/11 01:08:12 - [] D -- C:\Users\Utilisateur\AppData\Local\SysassistByHotWheel =>PUP.Optional
O43 - CFD: 2015/07/28 08:17:00 - [] D -- C:\Users\Utilisateur\AppData\Local\Temp
O43 - CFD: 2014/03/10 18:05:38 - [0] SHD -- C:\Users\Utilisateur\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/10/05 16:10:09 - [] D -- C:\Users\Utilisateur\AppData\Local\The Witcher
O43 - CFD: 2015/07/12 03:37:56 - [] D -- C:\Users\Utilisateur\AppData\Local\Unity
O43 - CFD: 2015/07/11 01:44:18 - [] D -- C:\Users\Utilisateur\AppData\Local\VirtualStore
O43 - CFD: 2014/08/29 20:53:00 - [] D -- C:\Users\Utilisateur\AppData\Local\VMware
O43 - CFD: 2015/03/28 23:52:36 - [] D -- C:\Users\Utilisateur\AppData\Local\Windows Live
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/16 07:39:34 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/11/22 04:10:14 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 2015/05/03 04:35:10 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike
O43 - CFD: 2015/05/03 04:35:10 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Half-Life
O43 - CFD: 2015/05/03 04:35:10 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HLDS
O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/04/05 21:41:25 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
O43 - CFD: 2015/07/19 10:50:09 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com
O43 - CFD: 2015/07/18 02:20:28 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
O43 - CFD: 2014/10/11 18:23:09 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2014/04/20 11:40:02 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
O43 - CFD: 2014/04/20 12:36:35 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 2015/07/16 07:39:34 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/07/14 05:59:46 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/03/28 14:42:24 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
O43 - CFD: 2015/05/24 03:49:20 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
O43 - CFD: 2014/03/10 18:23:12 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/07/24 21:59:47 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\???
O43 - CFD: 2015/07/11 04:44:52 - [0] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\????
O43 - CFD: 2014/08/31 16:48:43 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HKEY_LOCAL_MACHINE

---\\ Derniers fichiers créés dans Windows Prefetcher (O45) (1) - 13s
O45 - LFCP:[MD5.93A1A2CA01EF009552C9753F5DF2C268] 2015/07/28 07:54:35 A -- C:\Windows\Prefetch\TENCENTDL.EXE-D4BCC9C9.pf =>PUP.Optional.TencentAddressBar

---\\ Liste des pilotes du système (SDL) (O58) (68) - 9s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [108896]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [782176]
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79200]
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [25952]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [114016]
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2015/06/11 13:52:54 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtlitescsibus.sys [30264]
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3357024]
O58 - SDL:2012/08/21 14:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:2014/11/03 19:12:12 AH . (.LogMeIn Inc. - LogMeIn Hamachi Virtual Miniport Driver.) -- C:\Windows\System32\drivers\Hamdrv.sys [46136]
O58 - SDL:2014/02/27 18:40:32 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [54464]
O58 - SDL:2014/03/05 18:49:38 A . (.© Guillemot R&D, 2014. All rights reserved. - DJ Series ASIO kernel driver.) -- C:\Windows\System32\drivers\HDJAsioK.sys [323376]
O58 - SDL:2014/03/05 18:49:36 A . (.© Guillemot R&D, 2014. All rights reserved. - DJ Series Bulk driver.) -- C:\Windows\System32\drivers\HDJBulk.sys [296240]
O58 - SDL:2014/03/05 18:49:36 A . (.© Guillemot R&D, 2014. All rights reserved. - Hercules DJ Control MP3 Filter Driver.) -- C:\Windows\System32\drivers\HDJCtrl.sys [38704]
O58 - SDL:2014/03/05 18:49:34 A . (.© Guillemot R&D, 2014. All rights reserved. - DJ Series MIDI kernel driver.) -- C:\Windows\System32\drivers\HDJMidi.sys [276272]
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2014/05/17 04:35:04 A . (.AnchorFree Inc. - Hotspot Shield Routing Driver.) -- C:\Windows\System32\drivers\hssdrv6.sys [44744]
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [651248]
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [109408]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [93536]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [81760]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2015/04/14 09:37:42 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816]
O58 - SDL:2015/04/14 09:37:46 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [107736]
O58 - SDL:2015/07/28 07:51:13 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [136408]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [56672]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840]
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840]
O58 - SDL:2015/04/14 09:38:00 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [64216]
O58 - SDL:2014/08/21 12:35:16 A . (.BeeThink SoftWare, Inc. - BeeThink Network Blocker Driver.) -- C:\Windows\System32\drivers\nblocker.sys [36568]
O58 - SDL:2014/07/31 22:20:42 A . (.NetFilterSDK.com - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\netfilter64.sys [46376]
O58 - SDL:2010/04/07 13:14:50 A . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr6164.sys [446304]
O58 - SDL:2013/11/28 15:38:18 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [197408]
O58 - SDL:2014/05/20 04:44:03 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [12688328]
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368]
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [168288]
O58 - SDL:2013/12/27 20:42:26 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [39200]
O58 - SDL:2013/06/18 16:46:17 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\drivers\Rt630x64.sys [591360]
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [108800]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [206080]
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072]
O58 - SDL:2015/07/11 01:44:01 A . (.Tencent - ????-TAO????????.) -- C:\Windows\System32\drivers\TAOAccelerator64.sys [99640] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/07/11 01:44:02 A . (.Tencent Technology(Shenzhen) Company Limited - TAOKernel.) -- C:\Windows\System32\drivers\TAOKernel64.sys [174392]
O58 - SDL:2014/05/17 02:42:36 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42184]
O58 - SDL:2015/07/11 01:44:02 A . (.???? - ????-????.) -- C:\Windows\System32\drivers\TFsFltX64.sys [87864]
O58 - SDL:2013/03/18 17:51:08 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [19808]
O58 - SDL:2013/10/08 18:21:06 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [85584]
O58 - SDL:2014/06/12 18:21:58 A . (.VMware, Inc. - VMware keyboard filter driver (64-bit).) -- C:\Windows\System32\drivers\VMkbd.sys [33496]
O58 - SDL:2014/06/12 18:22:02 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [24656]
O58 - SDL:2014/06/12 18:22:02 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [20560]
O58 - SDL:2014/06/12 18:22:02 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [46160]
O58 - SDL:2014/06/12 18:22:50 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [31448]
O58 - SDL:2014/06/12 18:22:42 A . (.VMware, Inc. - VMware parallel port driver.) -- C:\Windows\System32\drivers\VMparport.sys [32472]
O58 - SDL:2014/06/12 18:23:04 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [64728]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [168800]
O58 - SDL:2013/10/08 18:21:10 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [73296]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:2014/11/22 04:33:49 A . (...) -- C:\Windows\System32\wolfk64.sys [86352]
O58 - SDL:2014/11/22 04:33:49 A . (...) -- C:\Windows\System32\wolfsken64.sys [29008]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (6) - 123s
O61 - LFC: 2015/07/24 22:00:35 A . (.???.) -- C:\Users\Utilisateur\AppData\Roaming\IQIYI Video\GeePlayer\GpUpdate\GeePlayerSetup_update20150523.exe [1732920] =>PUP.Optional.IQIYIVideo
O61 - LFC: 2015/07/25 19:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\NVIDIA\NvBackend\Packages\00007af6\DAO.19793760.exe [5917592]
O61 - LFC: 2015/07/24 18:26:05 A . (.MY.COM B.V..) -- C:\Users\Utilisateur\AppData\Local\MyComGames\gclay.dll [311752]
O61 - LFC: 2015/07/24 18:26:06 A . (.MY.COM B.V..) -- C:\Users\Utilisateur\AppData\Local\MyComGames\gclay64.dll [491464]
O61 - LFC: 2015/07/24 18:26:08 A . (..) -- C:\Users\Utilisateur\AppData\Local\MyComGames\MyComGames.exe [4071368]
O61 - LFC: 2015/07/28 07:58:34 A . (..) -- C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]

---\\ Associations Shell Spawning (O67) (1) - 0s
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe

---\\ Menu de démarrage Internet (SMI) (O68) (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (3) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (e) - http://www.omniboxes.com/ =>PUP.Optional.Omniboxes
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.omniboxes.com/ =>PUP.Optional.Omniboxes

---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) (1) - 679s
O82 - LFC: 2015/06/24 22:16:08 A . (...) -- C:\Users\Utilisateur\Downloads\Minecraft_Cracker.zip [174861294] =>.Crack,Keygen

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (34) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [214528]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [156160]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [156160]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [329216]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1360896]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1084416]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [926208]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [31744]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1265152]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [230400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [71168]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [135168]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [227328]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [101376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [348672]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\system32\wlidsvc.dll [1639424]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [59392]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [206848]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [166400]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [102912]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [542208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [73728]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [3701760]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [933376]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (99) - 24s
O87 - FAEL: "WMP-In-UDP-x86" [In-None-P17-FALSE] .(...) -- C:\ProgramFiles(x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP-x86" [Out-None-P17-FALSE] .(...) -- C:\ProgramFiles(x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-TCP-x86" [Out-None-P6-FALSE] .(...) -- C:\ProgramFiles(x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" [In-None-P6-FALSE] .(...) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" [Out-None-P6-FALSE] .(...) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" [In-None-P17-FALSE] .(...) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" [Out-None-P17-FALSE] .(...) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "WMPNSS-In-UDP-NoScope" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" [Out-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-TCP-NoScope" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" [Out-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-UDP" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-UDP" [Out-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-In-TCP" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "WMPNSS-Out-TCP" [Out-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" [In-None-P6-FALSE] .(...) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP-NoScope" [Out-None-P6-FALSE] .(...) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-In-UDP" [In-None-P17-FALSE] .(...) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-Out-UDP" [Out-None-P17-FALSE] .(...) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP" [In-None-P6-FALSE] .(...) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP" [Out-None-P6-FALSE] .(...) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "MCX-In-TCP" [In-None-P6-FALSE] .(...) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" [Out-None-P6-FALSE] .(...) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-In-UDP" [In-None-P17-FALSE] .(...) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" [Out-None-P17-FALSE] .(...) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Prov-Out-TCP" [Out-None-P6-FALSE] .(...) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" [Out-None-P6-FALSE] .(...) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "{88DAED92-F605-4926-A3CE-D4BEF9EB2B6C}" [Out-None-P6-TRUE] .(...) -- C:\ProgramFiles(x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{A097F5C3-4EF8-4AE3-AA58-1F96AD887302}" [Out-None-P17-TRUE] .(...) -- C:\ProgramFiles(x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{C023A510-FD65-495B-8376-BE8C3F7F3DC6}" [In-None-P17-TRUE] .(...) -- C:\ProgramFiles(x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{B2D98156-A01A-41C2-83C6-5D23956A2D1A}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{7D3352E6-4F75-41A4-A3BD-534649510643}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{0B4A3729-1AF4-480F-A0AB-CECA6A58A674}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{4BEE933C-623F-4F99-BDED-492F108D02F1}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
O87 - FAEL: "{4E65E1E4-9419-4C20-B003-1A5E72EBAB26}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
O87 - FAEL: "{30D4968C-5472-48BA-A5C4-A8136546F5D9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
O87 - FAEL: "TCP Query User{6E542EDD-7BF6-4708-8322-AD6AEFB3C04A}C:\program files\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "UDP Query User{82B9724C-343B-410A-A61E-F9C11AD2B061}C:\program files\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "TCP Query User{89AF856B-7E55-4746-84F8-37B8093A6DC8}C:\program files\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "UDP Query User{DE01CDFD-02D2-446F-96C2-49AA105665E7}C:\program files\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "TCP Query User{033811BA-FAF0-4947-80C7-CAF6ED40B160}C:\users\utilisateur\appdata\local\akamai\netsession_win.exe" [In-None-P6-TRUE] .(.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\users\utilisateur\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "UDP Query User{8A0525F5-913C-4326-97F2-465892A3C551}C:\users\utilisateur\appdata\local\akamai\netsession_win.exe" [In-None-P17-TRUE] .(.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\users\utilisateur\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "{242CE0B4-218C-4424-816C-BE2024D8FCC6}" [In-None-P17-TRUE] .(.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\users\utilisateur\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "{81B07E63-2550-4E66-8054-9D1B2E56AE61}" [In-None-P6-TRUE] .(.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\users\utilisateur\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "TCP Query User{07A6FD95-F4E8-4441-AEEC-2A9DA9E114B1}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe" [In-None-P6-TRUE] .(.Hirez Studios, Inc. - .) -- C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
O87 - FAEL: "UDP Query User{CE0299E2-9B0E-48C8-BDD0-15B390FAFFE5}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe" [In-None-P17-TRUE] .(.Hirez Studios, Inc. - .) -- C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
O87 - FAEL: "{AC336B96-2E5D-46D0-9561-D8D96BF338FA}" [In-None-P17-TRUE] .(.Hirez Studios, Inc. - .) -- C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
O87 - FAEL: "{B539BAAD-37F3-478B-9B0D-A6802CD086F2}" [In-None-P6-TRUE] .(.Hirez Studios, Inc. - .) -- C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
O87 - FAEL: "TCP Query User{CD1FA4D5-D30D-4B99-8A93-3397D23F299D}C:\users\utilisateur\desktop\killcraft.exe" [In-None-P6-TRUE] .(...) -- C:\users\utilisateur\desktop\killcraft.exe
O87 - FAEL: "UDP Query User{4109051C-05F2-4FAA-A0F4-49D60000C02A}C:\users\utilisateur\desktop\killcraft.exe" [In-None-P17-TRUE] .(...) -- C:\users\utilisateur\desktop\killcraft.exe
O87 - FAEL: "{B9A1E323-7642-48DD-AF10-A9A17828DCD7}" [In-None-P17-TRUE] .(...) -- C:\users\utilisateur\desktop\killcraft.exe
O87 - FAEL: "{BDA60B5E-CE5F-4958-B4FA-F8977A2178D5}" [In-None-P6-TRUE] .(...) -- C:\users\utilisateur\desktop\killcraft.exe
O87 - FAEL: "TCP Query User{97577FA1-58C0-4E0B-957F-18B0F2910A1A}C:\users\utilisateur\appdata\local\id software\quakelive\quakelive.exe" [In-None-P6-TRUE] .(.id Software Inc. - Quake Live.) -- C:\users\utilisateur\appdata\local\id software\quakelive\quakelive.exe
O87 - FAEL: "UDP Query User{7DB3F4D2-52EB-4009-B85F-C9D4F4623AC8}C:\users\utilisateur\appdata\local\id software\quakelive\quakelive.exe" [In-None-P17-TRUE] .(.id Software Inc. - Quake Live.) -- C:\users\utilisateur\appdata\local\id software\quakelive\quakelive.exe
O87 - FAEL: "{E2E4435A-A34B-4419-9D8D-9A7052681782}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Heroes & Generals\live\hng.exe
O87 - FAEL: "{DF8FCD52-ECA4-45ED-A21D-D0CC1CF4EDDF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Heroes & Generals\live\hng.exe
O87 - FAEL: "{76957F35-5889-4057-958D-66D8927DA239}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{D3FAAEE7-81A2-4090-8D2B-9DC3C9AAC905}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{80EA86AA-A06F-4D49-BC33-174D16984943}" [In-None-P6-TRUE] .(.Stunlock Studios - Bloodline Champions Loader.) -- C:\Program Files (x86)\Steam\SteamApps\common\Bloodline Champions\Binary\BloodlineChampionsLoader.exe
O87 - FAEL: "{BC6C447B-F743-4758-A707-FEA618A7385B}" [In-None-P17-TRUE] .(.Stunlock Studios - Bloodline Champions Loader.) -- C:\Program Files (x86)\Steam\SteamApps\common\Bloodline Champions\Binary\BloodlineChampionsLoader.exe
O87 - FAEL: "TCP Query User{8A5946F2-8616-417D-8EB3-5051C907CAB4}C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe" [In-None-P6-TRUE] .(.Stunlock Studios - Bloodline Champions.) -- C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe
O87 - FAEL: "UDP Query User{AA1E3BF2-91C5-4DC4-A3C6-CEC29CB7E800}C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe" [In-None-P17-TRUE] .(.Stunlock Studios - Bloodline Champions.) -- C:\program files (x86)\steam\steamapps\common\bloodline champions\binary\bloodlinechampions.exe
O87 - FAEL: "{7A2AE751-1F36-4BC5-925E-5BF9187C5BFE}" [In-None-P6-TRUE] .(.Expansive Worlds - theHunter Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\theHunter\launcher\launcher.exe
O87 - FAEL: "{10C221B5-4769-49B0-8DA8-02C7E2C5CC3F}" [In-None-P17-TRUE] .(.Expansive Worlds - theHunter Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\theHunter\launcher\launcher.exe
O87 - FAEL: "{3E3484F3-8A0C-4A22-97F4-130CEA0E8643}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
O87 - FAEL: "{3CFE1893-6E44-4041-A773-171A4146F29E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
O87 - FAEL: "{1458ECC2-4D03-4936-B881-A65C9FA1B274}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
O87 - FAEL: "{19B76D84-4FF3-492D-9CDD-0D47DBEF37E7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
O87 - FAEL: "TCP Query User{750029B8-19CF-41E0-AD92-7CBD0B669951}C:\program files (x86)\mkjogo\mklol\bin\mkim.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\mkjogo\mklol\bin\mkim.exe
O87 - FAEL: "UDP Query User{AE3B1848-97AA-4D52-BFBF-D02320E9ACCF}C:\program files (x86)\mkjogo\mklol\bin\mkim.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\mkjogo\mklol\bin\mkim.exe
O87 - FAEL: "TCP Query User{EF485FFA-B03A-495E-8817-B667A9AB30A2}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe" [In-None-P6-TRUE] .(...) -- C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
O87 - FAEL: "UDP Query User{8B371C48-DE3D-4D05-A68A-281246D0C36D}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe" [In-None-P17-TRUE] .(...) -- C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe
O87 - FAEL: "TCP Query User{294F300F-F775-4644-B4BB-A98E198B78E0}C:\program files (x86)\java\jre7\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\java.exe
O87 - FAEL: "UDP Query User{1A7554BA-F48C-414D-9347-45F111535885}C:\program files (x86)\java\jre7\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\java.exe
O87 - FAEL: "{3A8CAF37-B3EE-4F4A-80DC-78133D8E4E18}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
O87 - FAEL: "{245FC0BC-0FEB-4064-8ADF-0CF20D75FB00}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
O87 - FAEL: "{4E18C3C2-83D5-49FD-912D-17F7F3C53185}" [In-None-P6-TRUE] .(...) -- C:\Users\Utilisateur\AppData\Local\Temp\WnSvrass.exe
O87 - FAEL: "{B8D2CEB7-2141-4519-8CF6-7DC7306A97D5}" [In-None-P17-TRUE] .(...) -- C:\Users\Utilisateur\AppData\Local\Temp\WnSvrass.exe
O87 - FAEL: "TCP Query User{CB456648-4CED-4BD3-B344-271BA64671AA}C:\aeriagames\wolfteam-fr\wolfteam.bin" [In-None-P6-TRUE] .(.Softnyx Co., Ltd. - WolfTeam.) -- C:\aeriagames\wolfteam-fr\wolfteam.bin
O87 - FAEL: "UDP Query User{0D59D8B7-8269-4FD8-B2E5-FC20CF76010B}C:\aeriagames\wolfteam-fr\wolfteam.bin" [In-None-P17-TRUE] .(.Softnyx Co., Ltd. - WolfTeam.) -- C:\aeriagames\wolfteam-fr\wolfteam.bin
O87 - FAEL: "{F416E45B-1315-43C3-93E0-D40E65193841}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hearthstone\Hearthstone.exe
O87 - FAEL: "{A58116B0-ECC5-421F-8114-CD34762A4C18}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Hearthstone\Hearthstone.exe
O87 - FAEL: "TCP Query User{F5CC58E4-6BD0-4B90-94C0-D3F0DEA94310}I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe" [In-None-P6-TRUE] .(...) -- I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
O87 - FAEL: "UDP Query User{47B0A7C8-F31A-4A9A-818A-982DBC548603}I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe" [In-None-P17-TRUE] .(...) -- I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
O87 - FAEL: "TCP Query User{C5BE399E-CC5E-4AF1-B3FA-D549092AD8A3}I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe" [In-None-P6-TRUE] .(...) -- I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
O87 - FAEL: "UDP Query User{6814179D-D2CB-42A0-804A-0B7E86556F5E}I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe" [In-None-P17-TRUE] .(...) -- I:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
O87 - FAEL: "{DA9F7EC1-5886-4C9E-88FF-FF52BA39DDDA}" [In-None-P6-TRUE] .(.Koch Media GmbH - Saints Row IV.) -- C:\Program Files (x86)\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
O87 - FAEL: "{252E74E0-0C81-494F-8866-EF741F183EDB}" [In-None-P17-TRUE] .(.Koch Media GmbH - Saints Row IV.) -- C:\Program Files (x86)\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
O87 - FAEL: "TCP Query User{0B107327-3E07-4D4A-BB57-A7729AC299EF}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe" [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
O87 - FAEL: "UDP Query User{036EB492-4E59-4AAE-8594-8D9BEDD96C83}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe" [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
O87 - FAEL: "{3AC64CC2-FA81-4129-AB47-68DA3DF9E668}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Loadout\Loadout.exe
O87 - FAEL: "{AB2BD748-D9D6-4C8B-AE3F-EA78043A9FD5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Loadout\Loadout.exe
O87 - FAEL: "{5C1C7EA5-C59C-4EA0-B952-454D2FCD26D2}" [In-None-P6-TRUE] .(...) -- C:\Users\Utilisateur\AppData\Roaming\Tskmgr.exe
O87 - FAEL: "{403AB3E2-653B-4ED9-BA11-E229000754ED}" [In-None-P17-TRUE] .(...) -- C:\Users\Utilisateur\AppData\Roaming\Tskmgr.exe
O87 - FAEL: "TCP Query User{87A7ED42-A9A9-469F-931A-3E0FB0F7752C}C:\program files\guillemot\hdjtray\hdjseries2traybar.exe" [In-None-P6-TRUE] .(.Hercules® - Hercules® DJ Series Tray Bar.) -- C:\program files\guillemot\hdjtray\hdjseries2traybar.exe
O87 - FAEL: "UDP Query User{F049C222-2D28-40CA-A97A-24AAEB82EBAC}C:\program files\guillemot\hdjtray\hdjseries2traybar.exe" [In-None-P17-TRUE] .(.Hercules® - Hercules® DJ Series Tray Bar.) -- C:\program files\guillemot\hdjtray\hdjseries2traybar.exe
O87 - FAEL: "{6B3491A1-CB7E-4480-BACF-AC4DF3921C69}" [In-None-P6-TRUE] .(...) -- D:\WarThunder\launcher.exe
O87 - FAEL: "{4BC827E4-1357-4463-AA39-F20E2B2C8627}" [In-None-P17-TRUE] .(...) -- D:\WarThunder\launcher.exe
O87 - FAEL: "{5D9A6A95-30B5-4DCC-8C9F-67B0E8993C5E}" [In-None-P6-TRUE] .(...) -- D:\WarThunder\bpreport.exe

---\\ Recherche de clés de registre Tracing (O100) (16) - 2s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BrowseMark_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BrowseMark_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateBrowseMark_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateBrowseMark_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateZebar_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateZebar_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilBrowseMark_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilBrowseMark_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilZebar_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilZebar_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32 =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ZebarUntemp_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ZebarUntemp_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Zebar_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Zebar_RASMANCS =>PUP.Optional.Sambreel

---\\ Scan Additionnel (O88) (83) - 0s
C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing
C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\searchffv2@gmail.com =>PUP.Optional.LightningNewTab
C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\8glxy52u.default\extensions\sweetsearch@gmail.com =>PUP.Optional.SweetSearch
C:\IQIYI Video\LStyle\npWebPlayer.dll =>PUP.Optional.IQIYIVideo
C:\IQIYI Video\LStyle\npclient.dll =>PUP.Optional.IQIYIVideo
C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
C:\IQIYI Video\Common\QyKernel.exe =>PUP.Optional.IQIYIVideo
C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\QQPCTray.exe =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IQIYI Video =>PUP.Optional.IQIYIVideo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RocketTab =>PUP.Optional.RocketTab
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WajaInternetEnhancer =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{06B99631-BFA2-3B7A-F58B-D067C2BA59B7} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} =>PUP.Optional.BestADBlocker
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\fst =>PUP.Optional.FreeSoftToday
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\Genesis =>PUP.Optional.Genesis
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\QyGameClient =>PUP.Optional.IQIYIVideo
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Store =>PUP.Optional
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\AppDataLow\Software\CheckMeUp =>PUP.Optional.CheckMeUp =>PUP.Optional.CheckMeUp
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE =>PUP.Optional.DynConIE
C:\Program Files (x86)\bestadblocker =>PUP.Optional.Adblocker
C:\Program Files (x86)\BrowseMark =>PUP.Optional.BrowseMark
C:\Program Files (x86)\F39EE28F-D410-4882-9303-A2D760308B70 =>PUP.Optional.CrossRider
C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\Program Files (x86)\PriceMinus =>PUP.Optional.Multiplug
C:\Program Files (x86)\PriceMInuss =>PUP.Optional.Multiplug
C:\Program Files (x86)\Search Extensions =>PUP.Optional.RocketTab
C:\Program Files (x86)\Software =>PUP.Optional.Boxore
C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Wajam =>PUP.Optional.Wajam
C:\ProgramData\IQIYI Video =>PUP.Optional.IQIYIVideo
C:\ProgramData\Software =>PUP.Optional.Boxore
C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\Utilisateur\AppData\Roaming\IQIYI Video =>PUP.Optional.IQIYIVideo
C:\Users\Utilisateur\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
C:\Users\Utilisateur\AppData\Roaming\Store =>PUP.Optional.Nosibay
C:\Users\Utilisateur\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\Utilisateur\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\Utilisateur\AppData\Local\Software =>PUP.Optional.Boxore
C:\Users\Utilisateur\AppData\Local\SysassistByHotWheel =>PUP.Optional
C:\Windows\Prefetch\TENCENTDL.EXE-D4BCC9C9.pf =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TAOAccelerator64.sys =>PUP.Optional.TencentAddressBar
C:\Users\Utilisateur\AppData\Roaming\IQIYI Video\GeePlayer\GpUpdate\GeePlayerSetup_update20150523.exe =>PUP.Optional.IQIYIVideo
HKLM\SYSTEM\CurrentControlSet\Services\QQPCRTP =>PUP.Optional.TencentAddressBar
HKLM\SYSTEM\CurrentControlSet\Services\TAOFrame =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.10.16434.218\TAOFrame.exe =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BrowseMark_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BrowseMark_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateBrowseMark_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateBrowseMark_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateZebar_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateZebar_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilBrowseMark_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilBrowseMark_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilZebar_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilZebar_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32 =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ZebarUntemp_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ZebarUntemp_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Zebar_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Zebar_RASMANCS =>PUP.Optional.Sambreel

---\\ Récapitulatif des éléments trouvées sur votre station (34) - 0s
http://www.nicolascoolman.fr/adware-tencentaddressbar/ =>PUP.Optional.TencentAddressBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/blog =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.IQIYIVideo
http://www.nicolascoolman.fr/blog =>PUP.Optional.Nosibay
http://www.nicolascoolman.fr/blog =>PUP.Optional.RocketTab
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/pup-mutiplug/ =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/blog =>PUP.Optional.BestADBlocker
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/adware-freesofttoday/ =>PUP.Optional.FreeSoftToday
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/pup-genesis/ =>PUP.Optional.Genesis
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/adware-spointer/ =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/pup-optimizerpro/ =>PUP.Optional.OptimizerPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimplyTech
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/blog =>PUP.Optional
http://www.nicolascoolman.fr/blog =>PUP.Optional.CheckMeUp
http://www.nicolascoolman.fr/blog =>PUP.Optional.DynConIE
http://www.nicolascoolman.fr/blog =>PUP.Optional.Adblocker
http://www.nicolascoolman.fr/pup-browsemark/ =>PUP.Optional.BrowseMark
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/pup-bubbledock/ =>PUP.Optional.BubbleDock
http://www.nicolascoolman.fr/blog =>PUP.Optional.Omniboxes
http://www.nicolascoolman.fr/blog =>PUP.Optional.Sambreel

~ End of the scan, 26723 items in 943 seconds (1264)(1)()

Publicité


Signaler le contenu de ce document

Publicité